open-telecom.co.uk/
149.202.166.135301 Moved Permanently 162 B IP 149.202.166.135:0
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 4f8e702cc244ec5d4de32740c0ecbd97
3adb1f02d5b6054de0046e367c1d687b6cdf7aff
9e17cb15dd75bbbd5dbb984eda674863c3b10ab72613cf8a39a00c3e11a8492a
GET / HTTP/1.1
Host: open-telecom.co.uk
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Server: nginx
Date: Wed, 21 Sep 2022 03:25:34 GMT
Content-Type: text/html
Content-Length: 162
Connection: keep-alive
Location: https://open-telecom.co.uk/
firefox.settings.services.mozilla.com/v1/
143.204.55.115200 OK 939 B URL HTTP/1.1 firefox.settings.services.mozilla.com/v1/
IP 143.204.55.115:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 804f8bbb7f556d51a5f52d5ebd5b6eef
922cd7e06df278615a04abb81d811d14596c8180
ef4804d381a34ab67873a7755621081c49c646310e085a9b2356ae07098f6021
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 939
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Alert, Content-Length, Backoff, Retry-After, Content-Type
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Date: Wed, 21 Sep 2022 03:13:30 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
X-Cache: Hit from cloudfront
Via: 1.1 f66e3db0f0449307dba3fbf72bbf3bac.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: h8vZ_IA_vBT3ci-a-nglhtRPiiPpp0zl2NObHk8OKr-gW64s_zkOjQ==
Age: 724
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash a26d0784548ecab22f417f3d689daf23
8893b79366bbadeb5c8d587b8f023e310694df1c
35baaae7b3ce3110ebb2b075881cfab55ecf3eab57d834283fd18ac691b41fa2
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "35BAAAE7B3CE3110EBB2B075881CFAB55ECF3EAB57D834283FD18AC691B41FA2"
Last-Modified: Tue, 20 Sep 2022 18:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=15181
Expires: Wed, 21 Sep 2022 07:38:35 GMT
Date: Wed, 21 Sep 2022 03:25:34 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-30-18-47-44.chain
143.204.55.110200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-30-18-47-44.chain
IP 143.204.55.110:0
File type PEM certificate\012- , ASCII text
Hash 6113f8408c59aebe188d6af273b90743
7398873bf00f99944eaa77ad3ebc0d43c23dba6b
b6e0cc9ad68306208a160f3835fb8da76acc5a82d8fde1da5a98e1de1c11a770
GET /chains/remote-settings.content-signature.mozilla.org-2022-10-30-18-47-44.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: binary/octet-stream
content-length: 5348
last-modified: Sat, 10 Sep 2022 18:47:45 GMT
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
date: Tue, 20 Sep 2022 04:35:14 GMT
etag: "6113f8408c59aebe188d6af273b90743"
x-cache: Hit from cloudfront
via: 1.1 501ad2910f631f0520a6d389d6f053e8.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: P3c75qKsV-xt2rR6X5IzkvTZGA_PSlw_3B7eCWvnWjGhkz094Od-xQ==
age: 82221
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Wed, 21 Sep 2022 03:25:34 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 32ad678267694f5fddf4637daca61bec
61089a8b5f68903d059b35f8cb1198c2fc059548
21956a4d87e63d19a495788a8a8d99b26a1b3e4631716b13509cffba463fe182
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "21956A4D87E63D19A495788A8A8D99B26A1B3E4631716B13509CFFBA463FE182"
Last-Modified: Mon, 19 Sep 2022 01:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21600
Expires: Wed, 21 Sep 2022 09:25:34 GMT
Date: Wed, 21 Sep 2022 03:25:34 GMT
Connection: keep-alive
open-telecom.co.uk/
149.202.166.135200 OK 141 B IP 149.202.166.135:0
File type HTML document text\012- HTML document text\012- HTML document, ASCII text
Hash 7d049bb7289f099088876fa51669f58d
493cfa3929aced21e82a0598d5f562363330fdf3
ef8a38d01cb9eb2fb311d33593bde6627face5c27c14735071fe10c33ea3489e
GET / HTTP/1.1
Host: open-telecom.co.uk
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 200 OK
server: nginx
date: Wed, 21 Sep 2022 03:25:34 GMT
content-type: text/html
content-length: 141
x-accel-version: 0.01
last-modified: Sun, 14 Jun 2020 10:13:47 GMT
etag: "9e-5a80890e81308-gzip"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
x-powered-by: PleskLin
X-Firefox-Spdy: h2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
143.204.55.115200 OK 329 B URL HTTP/1.1 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 143.204.55.115:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 329
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: ETag, Expires, Content-Length, Cache-Control, Pragma, Content-Type, Alert, Backoff, Last-Modified, Retry-After
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Last-Modified: Fri, 25 Mar 2022 17:45:46 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
Date: Wed, 21 Sep 2022 03:03:23 GMT
Cache-Control: max-age=3600
Expires: Wed, 21 Sep 2022 03:33:50 GMT
ETag: "1648230346554"
X-Cache: Hit from cloudfront
Via: 1.1 6480520a5e02f3163410e3134bd77baa.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: _Z4rQopOqR9TMrRlOO_P2P5GRWojPSPxg1m0KnkcS_oCMpYLix4WOQ==
Age: 1333
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash e6ca4e43a644c06c08b75fc86fe54ed7
a7e578b3568e6a1bfd8414759581a2cad453c89a
acad288cc43dedb58c5fe94c8fb936426f4d23e9e1827287ed2a139669107bc5
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "ACAD288CC43DEDB58C5FE94C8FB936426F4D23E9E1827287ED2A139669107BC5"
Last-Modified: Tue, 20 Sep 2022 01:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10801
Expires: Wed, 21 Sep 2022 06:25:36 GMT
Date: Wed, 21 Sep 2022 03:25:35 GMT
Connection: keep-alive
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash edf07cd621f733b0eb50c632387ebf4f
61a082d26501c2c8d481b1676d0de2e585269613
e5c4324e4c55824b86f48bf0b9a1d317a82e7d3c19bdea7a91d78ce98d68a980
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4063
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Wed, 21 Sep 2022 03:25:35 GMT
Last-Modified: Wed, 21 Sep 2022 02:17:52 GMT
Server: ECS (ska/F71A)
X-Cache: HIT
Content-Length: 471
www.didcomms.co.uk/
149.202.166.135200 OK 22 kB IP 149.202.166.135:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (8047), with CRLF, LF line terminators
Hash 93ab9bd5b06e408ee285947e07c847b0
46d917cec4d4d0d584f95232132a52931bd008cb
27b0d94e1294ef9068bd43f530adc3a732f523f19f2e5ef06c67c6026634cfb9
Analyzer Verdict Alert fortinet Phishing
GET / HTTP/1.1
Host: www.didcomms.co.uk
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Connection: keep-alive
HTTP/2 200 OK
server: nginx
date: Wed, 21 Sep 2022 03:25:35 GMT
content-type: text/html; charset=UTF-8
content-length: 21750
vary: Accept-Encoding,Cookie
cache-control: max-age=3, must-revalidate
content-encoding: gzip
last-modified: Wed, 21 Sep 2022 02:56:45 GMT
x-powered-by: PHP/7.4.16, PleskLin
X-Firefox-Spdy: h2
www.didcomms.co.uk/wp-content/plugins/adsense-plugin/css/adsns.css?ver=1.50
149.202.166.135200 OK 94 B URL HTTP/2 www.didcomms.co.uk/wp-content/plugins/adsense-plugin/css/adsns.css?ver=1.50
IP 149.202.166.135:0
Hash 9296398a1376d327c2d408a1ccebf451
803db12192bf32d36d5f9d039ac6662596cc41be
70690739c306dbe84d691b5f7752b2f1be444c166476f514a5d2392839f0b605
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/adsense-plugin/css/adsns.css?ver=1.50 HTTP/1.1
Host: www.didcomms.co.uk
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.didcomms.co.uk/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 21 Sep 2022 03:25:35 GMT
content-type: text/css
content-length: 94
x-accel-version: 0.01
last-modified: Thu, 16 Jul 2020 16:33:28 GMT
etag: "51-5aa9199a5f4b3-gzip"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
x-powered-by: PleskLin
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash bcbb61a4f6f0beed45a5f963bfba6e9d
a07136aeace7036e3b7427d63c60576adbdc388f
3a910cde9f8f65341f3422d28e35ca877558e136c99067b72daaeb56b3d9e76d
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 21 Sep 2022 03:25:35 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.didcomms.co.uk/wp-content/plugins/download-after-email/css/download.css?ver=1658675449
149.202.166.135200 OK 118 kB URL HTTP/2 www.didcomms.co.uk/wp-content/plugins/download-after-email/css/download.css?ver=1658675449
IP 149.202.166.135:0
File type ASCII text, with CRLF line terminators
Size 118 kB (117680 bytes)
Hash 8bccfac35b175bdb564c167ff914d1f3
0c9b2337b4bc28e7028ab8af7fe2c126c1c1da1a
0bd9d3e9c84be8706b1104d3d6a929e5b636fd0dcc454007d5f77b4eca9ea1ea
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/download-after-email/css/download.css?ver=1658675449 HTTP/1.1
Host: www.didcomms.co.uk
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.didcomms.co.uk/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 21 Sep 2022 03:25:35 GMT
content-type: text/css
last-modified: Sun, 24 Jul 2022 15:10:49 GMT
etag: W/"62dd60f9-23ac"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
www.didcomms.co.uk/wp-content/plugins/email-subscribers-premium/starter/assets/css/starter-main.css?ver=4.8.3
149.202.166.135200 OK 365 B URL HTTP/2 www.didcomms.co.uk/wp-content/plugins/email-subscribers-premium/starter/assets/css/starter-main.css?ver=4.8.3
IP 149.202.166.135:0
Hash 2ffbc7cbe67ccaa03556cbb55b70c20a
be0dabbd7c2b9898a1150df38b3b2b0a3e189f7d
a79ac30db08fde6a59b03a59be7b4797ef62f91986be40afd290dde2b53baa67
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/email-subscribers-premium/starter/assets/css/starter-main.css?ver=4.8.3 HTTP/1.1
Host: www.didcomms.co.uk
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.didcomms.co.uk/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 21 Sep 2022 03:25:35 GMT
content-type: text/css
content-length: 365
x-accel-version: 0.01
last-modified: Wed, 29 Sep 2021 11:38:44 GMT
etag: "31f-5cd20c5c691fa-gzip"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
x-powered-by: PleskLin
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash bb4bdc4c3c6869c822618f0b9ef1bdc5
6a438b8d9d87aa30e0989ace7fc0d4cafce1f29d
eb762661b0a0ecc4ccdf50229ce134d0062e8d60698b7ed1970c5073b18f31ac
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 21 Sep 2022 03:25:35 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.didcomms.co.uk/wp-content/plugins/addthis-all/frontend/build/addthis_wordpress_public.min.css?ver=6.0.2
149.202.166.135200 OK 284 B URL HTTP/2 www.didcomms.co.uk/wp-content/plugins/addthis-all/frontend/build/addthis_wordpress_public.min.css?ver=6.0.2
IP 149.202.166.135:0
File type ASCII text, with very long lines (504)
Hash 12711e1c856d6b459fda3d6bd0bf6eda
bd6750d02ccb8f9a340d77b35f4cbf53284c3488
e9f5c7fe2e69f18c19d456bb52706b71bb6a858a15019822ee6f5385c593e9f9
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/addthis-all/frontend/build/addthis_wordpress_public.min.css?ver=6.0.2 HTTP/1.1
Host: www.didcomms.co.uk
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.didcomms.co.uk/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 21 Sep 2022 03:25:35 GMT
content-type: text/css
content-length: 284
x-accel-version: 0.01
last-modified: Mon, 30 May 2022 16:21:45 GMT
etag: "24b-5e03d0d643a80-gzip"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
x-powered-by: PleskLin
X-Firefox-Spdy: h2
didcomms.co.uk/wp-content/uploads/2017/02/economic-1050731_1920-150x150.jpg
149.202.166.135200 OK 7.0 kB URL HTTP/2 didcomms.co.uk/wp-content/uploads/2017/02/economic-1050731_1920-150x150.jpg
IP 149.202.166.135:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v80), quality = 82", baseline, precision 8, 150x150, components 3\012- data
Hash 53ecee6be52b3def07067ae472a6bfe1
9ee5235cf461319024940cb48d7df15abe6a9ccb
d5ac40d3e0a24af0d1bfe7f9deaf767ccfc269498a22dc85614ecd0cc14480ea
GET /wp-content/uploads/2017/02/economic-1050731_1920-150x150.jpg HTTP/1.1
Host: didcomms.co.uk
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.didcomms.co.uk/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 21 Sep 2022 03:25:35 GMT
content-type: image/jpeg
content-length: 7041
last-modified: Sun, 14 Jun 2020 14:53:51 GMT
etag: "5ee639ff-1b81"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
didcomms.co.uk/wp-content/uploads/2017/02/voice-fax-and-messaging-150x150.jpg
149.202.166.135200 OK 5.7 kB URL HTTP/2 didcomms.co.uk/wp-content/uploads/2017/02/voice-fax-and-messaging-150x150.jpg
IP 149.202.166.135:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v80), quality = 82", baseline, precision 8, 150x150, components 3\012- data
Hash 9dcf8d65c5e2efd998f7151be11ef934
0154dac0a1170dcc7d5ccb0951ec564436ea17ab
93979278701da357f3dde0b21ea5e294540267e97a616d27452cb9dea1c9ad1f
GET /wp-content/uploads/2017/02/voice-fax-and-messaging-150x150.jpg HTTP/1.1
Host: didcomms.co.uk
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.didcomms.co.uk/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 21 Sep 2022 03:25:35 GMT
content-type: image/jpeg
content-length: 5740
last-modified: Sun, 14 Jun 2020 14:53:51 GMT
etag: "5ee639ff-166c"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
www.didcomms.co.uk/wp-content/plugins/sendpress//img/ajax-loader.gif
149.202.166.135200 OK 673 B URL HTTP/2 www.didcomms.co.uk/wp-content/plugins/sendpress//img/ajax-loader.gif
IP 149.202.166.135:0
File type GIF image data, version 89a, 16 x 16\012- data
Hash 73e57937304d89f251e7e540a24b095a
a3243ca6a628b77b3523a18aff6bafae85b45adc
43a526a07a078d736e5c9d67d8479dd54072b7e5c6ddd2cd466f86a086e49ef5
GET /wp-content/plugins/sendpress//img/ajax-loader.gif HTTP/1.1
Host: www.didcomms.co.uk
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.didcomms.co.uk/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 21 Sep 2022 03:25:35 GMT
content-type: image/gif
content-length: 673
x-accel-version: 0.01
last-modified: Thu, 31 Mar 2022 16:25:33 GMT
etag: "2a1-5db861c7da895"
accept-ranges: bytes
x-powered-by: PleskLin
X-Firefox-Spdy: h2
www.didcomms.co.uk/wp-content/plugins/wp-whatsapp/assets/dist/css/style.css?ver=6.0.2
149.202.166.135200 OK 16 kB URL HTTP/2 www.didcomms.co.uk/wp-content/plugins/wp-whatsapp/assets/dist/css/style.css?ver=6.0.2
IP 149.202.166.135:0
File type ASCII text, with very long lines (42449), with no line terminators
Hash c96343650c5149c89de0e5e7badaf5e2
ed8056c35d305d756162378d6f41e5af16a493d6
691ccf4716c3719913656fb946465db8e1fbd49a9ff4afb1d34e71ef69949d81
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/wp-whatsapp/assets/dist/css/style.css?ver=6.0.2 HTTP/1.1
Host: www.didcomms.co.uk
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.didcomms.co.uk/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 21 Sep 2022 03:25:35 GMT
content-type: text/css
last-modified: Wed, 13 Jul 2022 15:11:09 GMT
etag: W/"62cee08d-a5d1"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
www.didcomms.co.uk/wp-includes/css/dist/block-library/style.css?ver=6.0.2
149.202.166.135200 OK 13 kB URL HTTP/2 www.didcomms.co.uk/wp-includes/css/dist/block-library/style.css?ver=6.0.2
IP 149.202.166.135:0
Hash ce3a2689be15ba43a68f6f57b2310d01
0bd8f23e65f55eaa70e6fc438f6e209d89b83bc5
0b48ba335d3626e563de2637de544718a14759218cb9f71562595bb39970b231
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/css/dist/block-library/style.css?ver=6.0.2 HTTP/1.1
Host: www.didcomms.co.uk
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.didcomms.co.uk/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 21 Sep 2022 03:25:35 GMT
content-type: text/css
last-modified: Wed, 13 Jul 2022 15:11:16 GMT
etag: W/"62cee094-193c1"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
didcomms.co.uk/wp-content/uploads/2020/05/cropped-new-generic-logo-265x75-1-2.gif
149.202.166.135200 OK 2.7 kB URL HTTP/2 didcomms.co.uk/wp-content/uploads/2020/05/cropped-new-generic-logo-265x75-1-2.gif
IP 149.202.166.135:0
File type GIF image data, version 87a, 265 x 75\012- data
Hash b8f000923cf6afadb0f7a1a40319fca5
0e2916b567ef303e25f2d3230e660e3f09bc17e0
a30aa4fceae89f1eb33972f87695a5e5cf8351e284875662320a165ab923d3a9
GET /wp-content/uploads/2020/05/cropped-new-generic-logo-265x75-1-2.gif HTTP/1.1
Host: didcomms.co.uk
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.didcomms.co.uk/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 21 Sep 2022 03:25:35 GMT
content-type: image/gif
content-length: 2733
last-modified: Sun, 14 Jun 2020 14:53:49 GMT
etag: "5ee639fd-aad"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash 596ea0e7cffcb12819c214fd7e55e6b5
fdf581b35743d7693bf8c7f6154471a1b2646f06
a78eee2be3725b096407fde832e7762dad74ac69165f57a10b1ef76b5b2d9874
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 21 Sep 2022 03:25:35 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.didcomms.co.uk/wp-content/plugins/wp-whatsapp/assets/js/whatsapp-button.js?ver=3.2
149.202.166.135200 OK 451 B URL HTTP/2 www.didcomms.co.uk/wp-content/plugins/wp-whatsapp/assets/js/whatsapp-button.js?ver=3.2
IP 149.202.166.135:0
Hash 2cbb2b431f51472b160ee5177f584f6a
0a7dc89f53c513fa63437a6d42e7612ef4072994
542ff8abd5797378bf66e504fbcd1ba9adb45e57369fe71ccc903d534ed13dc6
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/wp-whatsapp/assets/js/whatsapp-button.js?ver=3.2 HTTP/1.1
Host: www.didcomms.co.uk
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.didcomms.co.uk/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 21 Sep 2022 03:25:35 GMT
content-type: application/javascript
content-length: 451
x-accel-version: 0.01
last-modified: Wed, 13 Jul 2022 15:11:09 GMT
etag: "378-5e3b131e280bb-gzip"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
x-powered-by: PleskLin
X-Firefox-Spdy: h2
didcomms.co.uk/wp-content/uploads/2017/02/solutions-banner-1-150x150.jpg
149.202.166.135200 OK 3.4 kB URL HTTP/2 didcomms.co.uk/wp-content/uploads/2017/02/solutions-banner-1-150x150.jpg
IP 149.202.166.135:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v80), quality = 82", baseline, precision 8, 150x150, components 3\012- data
Hash 0e838c03281b5cf7a8cb02dc5a26048e
c489e1ccbb3f301bd868adc775c555eb7ce3e338
1f96d854de09e82fe81a463e221795bee01b7fcd3e4c98a4507fce1b76374509
GET /wp-content/uploads/2017/02/solutions-banner-1-150x150.jpg HTTP/1.1
Host: didcomms.co.uk
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.didcomms.co.uk/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 21 Sep 2022 03:25:35 GMT
content-type: image/jpeg
content-length: 3403
last-modified: Sun, 14 Jun 2020 14:53:51 GMT
etag: "5ee639ff-d4b"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
didcomms.co.uk/wp-content/uploads/2017/02/excited-2-150x150.jpg
149.202.166.135200 OK 5.9 kB URL HTTP/2 didcomms.co.uk/wp-content/uploads/2017/02/excited-2-150x150.jpg
IP 149.202.166.135:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v80), quality = 82", baseline, precision 8, 150x150, components 3\012- data
Hash df0447ddb11e35e34cdfa5facfd90670
493a2e1175ee34698cb1fae24e5e31084986b57b
6f7987b397991ef7e1bd161679a66744932c82bc7debe6f1137d3c75c566d610
GET /wp-content/uploads/2017/02/excited-2-150x150.jpg HTTP/1.1
Host: didcomms.co.uk
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.didcomms.co.uk/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 21 Sep 2022 03:25:35 GMT
content-type: image/jpeg
content-length: 5931
last-modified: Sun, 14 Jun 2020 14:53:51 GMT
etag: "5ee639ff-172b"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash bcbb61a4f6f0beed45a5f963bfba6e9d
a07136aeace7036e3b7427d63c60576adbdc388f
3a910cde9f8f65341f3422d28e35ca877558e136c99067b72daaeb56b3d9e76d
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 21 Sep 2022 03:25:35 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.googletagmanager.com/gtag/js?id=UA-169366328-1
142.250.74.72200 OK 42 kB URL HTTP/2 www.googletagmanager.com/gtag/js?id=UA-169366328-1
IP 142.250.74.72:0
File type ASCII text, with very long lines (1720)
Hash 35f4eb6c7867882625dfe46aea670059
2709aa74cda64fdeda7941902263d564b5e684e7
a5d2580882c2ddc1a2304c8b146a77a0fdcc13bdac225844e3dcf3f362c459dd
GET /gtag/js?id=UA-169366328-1 HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.didcomms.co.uk/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Wed, 21 Sep 2022 03:25:35 GMT
expires: Wed, 21 Sep 2022 03:25:35 GMT
cache-control: private, max-age=900
last-modified: Wed, 21 Sep 2022 03:00:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 42192
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.didcomms.co.uk/wp-content/plugins/wp-whatsapp/assets/js/whatsapp-popup.js?ver=6.0.2
149.202.166.135200 OK 291 B URL HTTP/2 www.didcomms.co.uk/wp-content/plugins/wp-whatsapp/assets/js/whatsapp-popup.js?ver=6.0.2
IP 149.202.166.135:0
Hash 00021be9910089c4ac4192ff08025905
b9056c380e58263a10319539d83cd7adadee5c69
dfaffd20072b35ac0f06f5ae7e3cba0e6c87346b46016b346f1f277ce9bf6042
GET /wp-content/plugins/wp-whatsapp/assets/js/whatsapp-popup.js?ver=6.0.2 HTTP/1.1
Host: www.didcomms.co.uk
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.didcomms.co.uk/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 21 Sep 2022 03:25:35 GMT
content-type: application/javascript
content-length: 291
x-accel-version: 0.01
last-modified: Wed, 13 Jul 2022 15:11:09 GMT
etag: "21f-5e3b131e280bb-gzip"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
x-powered-by: PleskLin
X-Firefox-Spdy: h2
push.services.mozilla.com/
34.208.31.97101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 34.208.31.97:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: qJNix5UT4W+aDi7ksiDJjQ==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: bq7oOONmAtO4QuSb2axvWSF6fP0=
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash 596ea0e7cffcb12819c214fd7e55e6b5
fdf581b35743d7693bf8c7f6154471a1b2646f06
a78eee2be3725b096407fde832e7762dad74ac69165f57a10b1ef76b5b2d9874
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 21 Sep 2022 03:25:35 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash bb4bdc4c3c6869c822618f0b9ef1bdc5
6a438b8d9d87aa30e0989ace7fc0d4cafce1f29d
eb762661b0a0ecc4ccdf50229ce134d0062e8d60698b7ed1970c5073b18f31ac
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 21 Sep 2022 03:25:35 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.didcomms.co.uk/wp-content/themes/accesspress-pro/css/style.php?ver=6.0.2
149.202.166.135200 OK 1.4 kB URL HTTP/2 www.didcomms.co.uk/wp-content/themes/accesspress-pro/css/style.php?ver=6.0.2
IP 149.202.166.135:0
File type CSV text\012- assembler source, ASCII text
Hash 24607870e46c70bfe5136b31661ed2c0
3ba45eeb1df537842520297bcbacbfd461570d76
24a9099241e2f45fcf5f239b58c0d5758b0d4e25dc8a62dcb67e91442e0429ad
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/accesspress-pro/css/style.php?ver=6.0.2 HTTP/1.1
Host: www.didcomms.co.uk
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.didcomms.co.uk/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 21 Sep 2022 03:25:35 GMT
content-type: text/css;charset=UTF-8
content-length: 1401
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: no-store, no-cache, must-revalidate
pragma: no-cache
vary: Accept-Encoding,Cookie
set-cookie: PHPSESSID=qgoa6p5hfllets4h97c9vhqnpe; path=/
content-encoding: gzip
x-powered-by: PHP/7.4.16, PleskLin
X-Firefox-Spdy: h2
www.didcomms.co.uk/arc-widget
149.202.166.135200 OK 3.3 kB URL HTTP/2 www.didcomms.co.uk/arc-widget
IP 149.202.166.135:0
File type ASCII text, with very long lines (7592), with no line terminators
Hash f7447157469c8b4d1d9360fced9d9c19
325a17f8c3e89e08fd086380ad2986af849e5b54
90780d8b5deee31b640f3428faef3312e7da6624ffdcd8971b3aa0227d63bee2
Analyzer Verdict Alert fortinet Phishing
GET /arc-widget HTTP/1.1
Host: www.didcomms.co.uk
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.didcomms.co.uk/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 21 Sep 2022 03:25:35 GMT
content-type: application/javascript
content-length: 3332
expires: Thu, 19 Nov 1981 08:52:00 GMT
pragma: no-cache
access-control-allow-origin: *
strict-transport-security: max-age=15724800; includeSubDomains
cache-control: public, max-age=3600, stale-while-revalidate=864000
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 368b317059d70e3ee45b9259c7201782.cloudfront.net (CloudFront)
x-amz-cf-pop: LHR61-C1
x-amz-cf-id: 2h8fJc1MJgaUK5qwLtxZIycLDj1RFoT9DdOu_Gf5NrRTAfZYUXFYQw==
age: 2934
set-cookie: PHPSESSID=jp83q2kj1tla53gt777cikqdrg; path=/
last-modified: Fri, 16 Sep 2022 20:27:41 GMT
etag: "6324dc3d-d04-gzip"
content-encoding: gzip
x-powered-by: PHP/7.4.16, PleskLin
X-Firefox-Spdy: h2
www.didcomms.co.uk/wp-content/themes/accesspress-pro/images/bgheader.jpg
149.202.166.135200 OK 173 kB URL HTTP/2 www.didcomms.co.uk/wp-content/themes/accesspress-pro/images/bgheader.jpg
IP 149.202.166.135:0
File type JPEG image data, Exif standard: [TIFF image data, big-endian, direntries=12, height=55, bps=0, PhotometricIntepretation=RGB, orientation=upper-left, width=8], baseline, precision 8, 8x55, components 3\012- data
Size 173 kB (173147 bytes)
Hash 0e35c3342cf1058222adf41a18739538
a2975d85d0c5211235a1aa2edfe61e48ebb7ebbb
7dc65aa448ec9880d46e658d8ad71dbd11dd61c230f1f8c59d0d2ba4eac5e8a2
GET /wp-content/themes/accesspress-pro/images/bgheader.jpg HTTP/1.1
Host: www.didcomms.co.uk
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.didcomms.co.uk/wp-content/themes/accesspress-pro/style.css?ver=6.0.2
Cookie: PHPSESSID=jp83q2kj1tla53gt777cikqdrg
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 21 Sep 2022 03:25:36 GMT
content-type: image/jpeg
content-length: 173147
last-modified: Sun, 14 Jun 2020 14:53:51 GMT
etag: "5ee639ff-2a45b"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash c683e61e63df92799aa274fdac42cd3b
191aeec95861fa8596a90a10c60b22434431c033
898c007bc0e7d5f4d3180c9fe28b88036102ba64912d0773c023e1f4f07d7beb
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 21 Sep 2022 03:25:36 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash c683e61e63df92799aa274fdac42cd3b
191aeec95861fa8596a90a10c60b22434431c033
898c007bc0e7d5f4d3180c9fe28b88036102ba64912d0773c023e1f4f07d7beb
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 21 Sep 2022 03:25:36 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
didcomms.co.uk/wp-content/uploads/2017/02/connecting-people-worldwide.jpg
149.202.166.135200 OK 245 kB URL HTTP/2 didcomms.co.uk/wp-content/uploads/2017/02/connecting-people-worldwide.jpg
IP 149.202.166.135:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 300x300, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=7, orientation=upper-left, xresolution=98, yresolution=106, resolutionunit=2, software=Adobe Photoshop CC 2015 (Windows), datetime=2017:02:16 01:11:43], baseline, precision 8, 1920x788, components 3\012- data
Size 245 kB (245304 bytes)
Hash 0105bae5289e4e8542776d465b5d8e78
ccebf03d275bdd88b68399efaf5d1c4018b96207
bb4a063a10157cd7ba5030111569152829a1ff6a0f0aabd1d5974c3237bca60f
GET /wp-content/uploads/2017/02/connecting-people-worldwide.jpg HTTP/1.1
Host: didcomms.co.uk
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.didcomms.co.uk/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 21 Sep 2022 03:25:36 GMT
content-type: image/jpeg
content-length: 245304
last-modified: Sun, 14 Jun 2020 14:53:51 GMT
etag: "5ee639ff-3be38"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
www.didcomms.co.uk/wp-content/themes/accesspress-pro/js/custom.js?ver=1.0
149.202.166.135200 OK 383 kB URL HTTP/2 www.didcomms.co.uk/wp-content/themes/accesspress-pro/js/custom.js?ver=1.0
IP 149.202.166.135:0
Size 383 kB (382876 bytes)
Hash eee78a3fc03e695c3ef269a0522c6bdc
1271bfab79f2e260779b26ea1dccc76fb33d2437
399f4216190115872142f50054b265acc9db790ded4402b18e1929fb2b853957
GET /wp-content/themes/accesspress-pro/js/custom.js?ver=1.0 HTTP/1.1
Host: www.didcomms.co.uk
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.didcomms.co.uk/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 21 Sep 2022 03:25:35 GMT
content-type: application/javascript
last-modified: Sun, 14 Jun 2020 14:53:51 GMT
etag: W/"5ee639ff-1abe"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
fonts.gstatic.com/s/opensans/v34/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2
142.250.74.163200 OK 45 kB URL HTTP/2 fonts.gstatic.com/s/opensans/v34/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2
IP 142.250.74.163:0
File type Web Open Font Format (Version 2), TrueType, length 44856, version 1.0\012- data
Hash 565ce506190ad3af920b40baf1794cec
ad3cba5d06100e09449a864d3b5e58403b478b3d
8778e9af2422858d7052ff9a0f3c12c08ae976bdd6e0316db144cd5579cd97db
GET /s/opensans/v34/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.didcomms.co.uk
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 44856
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 20 Sep 2022 08:31:01 GMT
expires: Wed, 20 Sep 2023 08:31:01 GMT
cache-control: public, max-age=31536000
age: 68075
last-modified: Mon, 15 Aug 2022 18:20:18 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.didcomms.co.uk/wp-content/themes/accesspress-pro/js/plugins.js?ver=1.0
149.202.166.135200 OK 77 kB URL HTTP/2 www.didcomms.co.uk/wp-content/themes/accesspress-pro/js/plugins.js?ver=1.0
IP 149.202.166.135:0
File type ASCII text, with very long lines (32003), with CRLF line terminators
Hash dae2a3f29e7c08a55079e5f61b21f82c
f0953a2b410efd54b9a852cb0d2425dc4ad92309
6957d482f033d2e885c0da48798ce2e3f22bba62623944164766ea939bfbc6ec
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/accesspress-pro/js/plugins.js?ver=1.0 HTTP/1.1
Host: www.didcomms.co.uk
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.didcomms.co.uk/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 21 Sep 2022 03:25:35 GMT
content-type: application/javascript
last-modified: Sun, 14 Jun 2020 14:53:51 GMT
etag: W/"5ee639ff-17c63"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
fonts.gstatic.com/s/opensanscondensed/v23/z7NFdQDnbTkabZAIOl9il_O6KJj73e7Ff1GhDuXMRw.woff2
142.250.74.163200 OK 15 kB URL HTTP/2 fonts.gstatic.com/s/opensanscondensed/v23/z7NFdQDnbTkabZAIOl9il_O6KJj73e7Ff1GhDuXMRw.woff2
IP 142.250.74.163:0
File type Web Open Font Format (Version 2), TrueType, length 14964, version 1.0\012- data
Hash 44b4e1e6aecc684d11fe7501dd36df19
59e2710168a0d6889a24eaaa5134114f7e258461
6b0b111ca14c2147a0f0cb51f1317290eb5ec19b4a9bea595a5ad7ffb7d9661a
GET /s/opensanscondensed/v23/z7NFdQDnbTkabZAIOl9il_O6KJj73e7Ff1GhDuXMRw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.didcomms.co.uk
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 14964
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 20 Sep 2022 22:47:39 GMT
expires: Wed, 20 Sep 2023 22:47:39 GMT
cache-control: public, max-age=31536000
age: 16677
last-modified: Tue, 19 Apr 2022 18:08:11 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.didcomms.co.uk/wp-content/plugins/scroll-to-anchor/js/scroll-to-anchor.js?ver=6.0.2
149.202.166.135200 OK 200 kB URL HTTP/2 www.didcomms.co.uk/wp-content/plugins/scroll-to-anchor/js/scroll-to-anchor.js?ver=6.0.2
IP 149.202.166.135:0
Size 200 kB (199815 bytes)
Hash 5788648021bcd18160044f66d09e4047
3b1b9031e396e8a058e7f04bf59770319042156c
88c4d7369dc6cf48d527d10bf36d792ac0237224d1f5a889d75d423e3ce086c4
GET /wp-content/plugins/scroll-to-anchor/js/scroll-to-anchor.js?ver=6.0.2 HTTP/1.1
Host: www.didcomms.co.uk
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.didcomms.co.uk/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 21 Sep 2022 03:25:35 GMT
content-type: application/javascript
last-modified: Sun, 14 Jun 2020 14:53:55 GMT
etag: W/"5ee63a03-88b"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
translate.google.com/translate_a/element.js?cb=GoogleLanguageTranslatorInit
142.250.74.46200 OK 28 kB URL HTTP/2 translate.google.com/translate_a/element.js?cb=GoogleLanguageTranslatorInit
IP 142.250.74.46:0
Hash e72d627e825d2030306dffec22f05dd6
00f7b8b73f96b3e4e0019f6fddfad355a223f925
f918f341c1725d7e4629c804417928e3defca5fd5aea2f5f63800975126f46b8
GET /translate_a/element.js?cb=GoogleLanguageTranslatorInit HTTP/1.1
Host: translate.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.didcomms.co.uk/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/javascript; charset=utf-8
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Wed, 21 Sep 2022 03:25:35 GMT
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
set-cookie: CONSENT=PENDING+590; expires=Fri, 20-Sep-2024 03:25:35 GMT; path=/; domain=.google.com; Secure
p3p: CP="This is not a P3P policy! See g.co/p3phelp for more info."
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.didcomms.co.uk/wp-includes/css/dashicons.css?ver=6.0.2
149.202.166.135200 OK 36 kB URL HTTP/2 www.didcomms.co.uk/wp-includes/css/dashicons.css?ver=6.0.2
IP 149.202.166.135:0
File type ASCII text, with very long lines (42379)
Hash 81c91ceffc5e8293dbc018ee87227aea
05d6f38fcb3ceed4defc3244822b09ad577942c6
6c190de2c4682d88fb84df0b8f809d03c8315b6dffcfda3af5dec7b17a7d156c
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/css/dashicons.css?ver=6.0.2 HTTP/1.1
Host: www.didcomms.co.uk
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.didcomms.co.uk/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 21 Sep 2022 03:25:35 GMT
content-type: text/css
last-modified: Wed, 09 Dec 2020 13:36:08 GMT
etag: W/"5fd0d2c8-f399"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
didcomms.co.uk/wp-content/uploads/2017/02/voice-fax-and-messaging.jpg
149.202.166.135200 OK 263 kB URL HTTP/2 didcomms.co.uk/wp-content/uploads/2017/02/voice-fax-and-messaging.jpg
IP 149.202.166.135:0
File type JPEG image data, Exif standard: [TIFF image data, big-endian, direntries=7, orientation=upper-left, xresolution=98, yresolution=106, resolutionunit=2, software=Adobe Photoshop CC 2015 (Windows), datetime=2017:02:16 01:07:28], baseline, precision 8, 1920x790, components 3\012- data
Size 263 kB (263168 bytes)
Hash 1288b087e575183e2d9c693d825588f6
d514a07529eac9a1d6e18279791686cf61be37d8
b02fe5020a61c01c3d5f1fe1decec64b5f96fe58b7b3403d0e367274fbb11809
GET /wp-content/uploads/2017/02/voice-fax-and-messaging.jpg HTTP/1.1
Host: didcomms.co.uk
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.didcomms.co.uk/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 21 Sep 2022 03:25:36 GMT
content-type: image/jpeg
content-length: 263168
last-modified: Sun, 14 Jun 2020 14:53:51 GMT
etag: "5ee639ff-40400"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
didcomms.co.uk/wp-content/uploads/2017/02/economic-1050731_1920.jpg
149.202.166.135200 OK 370 kB URL HTTP/2 didcomms.co.uk/wp-content/uploads/2017/02/economic-1050731_1920.jpg
IP 149.202.166.135:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 1920x1280, components 3\012- data
Size 370 kB (370398 bytes)
Hash 92f359f2af7c8b6831178ee4b1206459
4bc5c109d5d9f35c9a192b3e719ae3c321b0e0ac
fb83ee64d1bccf3cbb1c0c42eea92705fd3f22bcec6fd7e26a82e067c3fe742e
GET /wp-content/uploads/2017/02/economic-1050731_1920.jpg HTTP/1.1
Host: didcomms.co.uk
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.didcomms.co.uk/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 21 Sep 2022 03:25:36 GMT
content-type: image/jpeg
content-length: 370398
last-modified: Sun, 14 Jun 2020 14:53:51 GMT
etag: "5ee639ff-5a6de"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash bef108ea896699c657bccae974ecb5a3
a44419b72fb97fba2f546a6a8548fad147c4e0c1
6b69470892677538dd21749c5b3e7e61c6d59bbe569d8c73aa439054ad1e813f
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "6B69470892677538DD21749C5B3E7E61C6D59BBE569D8C73AA439054AD1E813F"
Last-Modified: Sun, 18 Sep 2022 16:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=16373
Expires: Wed, 21 Sep 2022 07:58:29 GMT
Date: Wed, 21 Sep 2022 03:25:36 GMT
Connection: keep-alive
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash c683e61e63df92799aa274fdac42cd3b
191aeec95861fa8596a90a10c60b22434431c033
898c007bc0e7d5f4d3180c9fe28b88036102ba64912d0773c023e1f4f07d7beb
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 21 Sep 2022 03:25:36 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.didcomms.co.uk/wp-content/plugins/site-reviews/assets/scripts/site-reviews.js?ver=6.0.5
149.202.166.135200 OK 10 kB URL HTTP/2 www.didcomms.co.uk/wp-content/plugins/site-reviews/assets/scripts/site-reviews.js?ver=6.0.5
IP 149.202.166.135:0
File type ASCII text, with very long lines (32340)
Hash b9d1ec48d19fef38c3d98f226df65eb2
41399733c0f7c10bc23603345fb7f1baba9a3dd1
7614574c23caee4fef1321a53f6fdb23bc95a9012430fd7753c67389ccb5294a
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/site-reviews/assets/scripts/site-reviews.js?ver=6.0.5 HTTP/1.1
Host: www.didcomms.co.uk
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.didcomms.co.uk/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 21 Sep 2022 03:25:35 GMT
content-type: application/javascript
last-modified: Fri, 16 Sep 2022 15:11:46 GMT
etag: W/"63249232-7e55"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash e5d7d983b288c67e17280c6a1c0d80d9
8a1e575f8b8427e872c1e4c5645d9ce3e5445e52
a08530049c460e7e3cf236a9969b94b4a794d83f3f4279ac43934194f39dedd6
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 21 Sep 2022 03:25:36 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
translate.googleapis.com/translate_static/css/translateelement.css
142.250.74.74200 OK 3.6 kB URL HTTP/2 translate.googleapis.com/translate_static/css/translateelement.css
IP 142.250.74.74:0
File type ASCII text, with very long lines (18670)
Hash 897ba9a21d9625286674da769dacc2e2
84b4923ab7dee562395160824d53496314499b77
696cbf5c2f3f1efae555562b72abbbb22bed02eff03d62074555cab241190ae0
GET /translate_static/css/translateelement.css HTTP/1.1
Host: translate.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.didcomms.co.uk/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/rosetta
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="rosetta"
report-to: {"group":"rosetta","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/rosetta"}]}
content-length: 3619
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 21 Sep 2022 03:14:55 GMT
expires: Wed, 21 Sep 2022 04:14:55 GMT
cache-control: public, max-age=3600
age: 641
last-modified: Wed, 17 Aug 2022 23:38:00 GMT
content-type: text/css
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash e5d7d983b288c67e17280c6a1c0d80d9
8a1e575f8b8427e872c1e4c5645d9ce3e5445e52
a08530049c460e7e3cf236a9969b94b4a794d83f3f4279ac43934194f39dedd6
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 21 Sep 2022 03:25:36 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.didcomms.co.uk/wp-content/themes/accesspress-pro/css/responsive.css?ver=6.0.2
149.202.166.135200 OK 29 kB URL HTTP/2 www.didcomms.co.uk/wp-content/themes/accesspress-pro/css/responsive.css?ver=6.0.2
IP 149.202.166.135:0
File type assembler source, ASCII text, with CRLF line terminators
Hash a51226d76f9a8b9c2780d9fd3f7e4917
960e080d08d216b5ce15b38125dc96d27be31509
62e0dac6987a5e28ee6b37491a41a98f0ffce9202312ee5bdebdd1631f11483e
GET /wp-content/themes/accesspress-pro/css/responsive.css?ver=6.0.2 HTTP/1.1
Host: www.didcomms.co.uk
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.didcomms.co.uk/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 21 Sep 2022 03:25:35 GMT
content-type: text/css
last-modified: Sun, 14 Jun 2020 14:53:51 GMT
etag: W/"5ee639ff-3418"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
www.didcomms.co.uk/wp-content/plugins/download-after-email/css/all.css?ver=6.0.2
149.202.166.135200 OK 13 kB URL HTTP/2 www.didcomms.co.uk/wp-content/plugins/download-after-email/css/all.css?ver=6.0.2
IP 149.202.166.135:0
Hash 0f12f9daf46d34f57be2fe425951ecc5
ce4e54a7c6d4772c6707be2f9e022ab68a53587b
7cf1979f1ccfdd0c083f44726c44d2e3c49cdf3dd4b925e42534075c76cb8cdb
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/download-after-email/css/all.css?ver=6.0.2 HTTP/1.1
Host: www.didcomms.co.uk
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.didcomms.co.uk/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 21 Sep 2022 03:25:35 GMT
content-type: text/css
last-modified: Sun, 24 Jul 2022 15:10:49 GMT
etag: W/"62dd60f9-11345"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
www.didcomms.co.uk/wp-content/themes/accesspress-pro/css/fonts.css?ver=6.0.2
149.202.166.135200 OK 97 kB URL HTTP/2 www.didcomms.co.uk/wp-content/themes/accesspress-pro/css/fonts.css?ver=6.0.2
IP 149.202.166.135:0
File type ASCII text, with very long lines (5656)
Hash 36adc649e5afbead00f3c4e0942b4a67
600b6770e4a9ee06ecae46183e293908c79f1350
3e804587d60beab02a2b014ac10a7edd3189f76d550e8469695f5b51f2449199
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/accesspress-pro/css/fonts.css?ver=6.0.2 HTTP/1.1
Host: www.didcomms.co.uk
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.didcomms.co.uk/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 21 Sep 2022 03:25:35 GMT
content-type: text/css
last-modified: Sun, 14 Jun 2020 14:53:51 GMT
etag: W/"5ee639ff-4d27"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
www.didcomms.co.uk/wp-content/plugins/google-language-translator/css/toolbar.css?ver=6.0.15
149.202.166.135200 OK 96 kB URL HTTP/2 www.didcomms.co.uk/wp-content/plugins/google-language-translator/css/toolbar.css?ver=6.0.15
IP 149.202.166.135:0
File type ASCII text, with very long lines (681)
Hash b4839af120933550db5420838cbef105
c73a3433e63aa57966adc64ef23ccdfd7fe8744e
35ecd52a7ba98a3a71528f40e65d6261b787a65b28757a4de6478546a55ad51c
GET /wp-content/plugins/google-language-translator/css/toolbar.css?ver=6.0.15 HTTP/1.1
Host: www.didcomms.co.uk
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.didcomms.co.uk/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 21 Sep 2022 03:25:35 GMT
content-type: text/css
last-modified: Wed, 11 May 2022 15:10:52 GMT
etag: W/"627bd1fc-1664"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 9405985bfe6aab7c008cf3a305f79b0f
d698b786300ea45e2cd1b9d3fadf2639e71efe5e
28c7a840f64d83b92b41d7255788845fbe83aefbee8acf3d8cb131ffd81f6267
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4046
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Wed, 21 Sep 2022 03:25:36 GMT
Last-Modified: Wed, 21 Sep 2022 02:18:10 GMT
Server: ECS (ska/F71A)
X-Cache: HIT
Content-Length: 471
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 9baaa3878151bf5d83c8d7014da17e5d
d8952bdd01ddec1d9a5a480f17ff5e39f6bdb037
1734ff9035c0a9c965cb5047e9fdbc2c1184b6c568066e856c6dbf0b8dc51df3
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 21 Sep 2022 03:25:36 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.didcomms.co.uk/wp-content/plugins/email-subscribers-premium/lite/public/css/email-subscribers-public.css?ver=4.8.3
149.202.166.135200 OK 30 kB URL HTTP/2 www.didcomms.co.uk/wp-content/plugins/email-subscribers-premium/lite/public/css/email-subscribers-public.css?ver=4.8.3
IP 149.202.166.135:0
Hash 33250d92d9a2a63f974133b153459fc4
48c7a0ee606ab600904f8950dc7c0b3164d6de80
3ac2a84531a02a6a3acf62a2b4664737302ae5b919d016573ff247dbe660fef9
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/email-subscribers-premium/lite/public/css/email-subscribers-public.css?ver=4.8.3 HTTP/1.1
Host: www.didcomms.co.uk
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.didcomms.co.uk/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 21 Sep 2022 03:25:35 GMT
content-type: text/css
last-modified: Wed, 29 Sep 2021 11:38:44 GMT
etag: W/"61545044-71e"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
connect.facebook.net/en_US/sdk.js
157.240.200.14200 OK 1.7 kB URL HTTP/2 connect.facebook.net/en_US/sdk.js
IP 157.240.200.14:0
File type ASCII text, with very long lines (1961)
Hash 16a7b9aac87a1554be620d8a921357df
32230428661e31a4c4f8f0c5068e41f87bff617f
5c5afa28137f8037f7ba90f536616d7e20a3c35943cae07d3222dafaceebd9cb
GET /en_US/sdk.js HTTP/1.1
Host: connect.facebook.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.didcomms.co.uk/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
vary: Accept-Encoding
content-encoding: gzip
access-control-expose-headers: X-FB-Content-MD5
x-fb-content-md5: f71f050736fd2ad5ce94ed20614d0690
etag: "48b47ea6b510e7af2e0e8197b66a26c4"
content-type: application/x-javascript; charset=utf-8
timing-allow-origin: *
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
expires: Wed, 21 Sep 2022 03:33:46 GMT
cache-control: public,max-age=1200,stale-while-revalidate=3600
document-policy: force-load-at-top
cross-origin-opener-policy: same-origin-allow-popups
x-content-type-options: nosniff
x-fb-rlafr: 0
x-frame-options: DENY
strict-transport-security: max-age=31536000; preload; includeSubDomains
content-md5: Fqe5qsh6FVS+Yg2KkhNX3w==
x-fb-debug: 7woat2fneKsqSdC1o0CPOoWQLyrKgTPMFBa0FEpLuz/+MMAJA41jxly+daM7jNwf6zbn3y0s4Y9hjfsGqZAQAQ==
priority: u=3,i
content-length: 1684
x-fb-trip-id: 1679558926
date: Wed, 21 Sep 2022 03:25:36 GMT
alt-svc: h3=":443"; ma=86400,h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
connect.facebook.net/en_US/fbevents.js
157.240.200.14200 OK 28 kB URL HTTP/2 connect.facebook.net/en_US/fbevents.js
IP 157.240.200.14:0
Hash d496da83eaed3719a91dd4721d23f9b0
cda90ca7369bb2a453635d33e860adcc5d2a9c91
04520ded12933749dedbd65519aa4b20b3d04ae88050984b14b1d7acbbffc37e
GET /en_US/fbevents.js HTTP/1.1
Host: connect.facebook.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.didcomms.co.uk/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
vary: Accept-Encoding
content-encoding: gzip
content-type: application/x-javascript; charset=utf-8
content-security-policy: default-src facebook.net *.facebook.net fbcdn.net *.fbcdn.net fbsbx.com *.fbsbx.com data: blob: 'self';script-src *.fbcdn.net *.facebook.net 'unsafe-inline' 'unsafe-eval' blob: data: 'self';style-src data: blob: 'unsafe-inline' facebook.net *.facebook.net fbcdn.net *.fbcdn.net fbsbx.com *.fbsbx.com;connect-src *.fbcdn.net *.facebook.net wss://*.fbcdn.net attachment.fbsbx.com blob: 'self';block-all-mixed-content;upgrade-insecure-requests;report-uri https://www.facebook.com/csp/reporting/?m=c&minimize=0;
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
pragma: public
cache-control: public, max-age=1200
expires: Sat, 01 Jan 2000 00:00:00 GMT
x-content-type-options: nosniff
x-xss-protection: 0
x-frame-options: DENY
strict-transport-security: max-age=31536000; preload; includeSubDomains
x-fb-debug: HLrmIPrf6bOCEy5BNeFzIWy6xGSAEYxXr+T9aBM0JT27s7nQ9j2UkLX2i72uKubvcxj/MdpIsOVaYJHT07nyaA==
content-length: 26839
x-fb-trip-id: 1679558926
date: Wed, 21 Sep 2022 03:25:36 GMT
alt-svc: h3=":443"; ma=86400,h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
pagead2.googlesyndication.com/pagead/js/adsbygoogle.js?client=ca-pub-2896365872506862
142.250.74.98200 OK 58 kB URL HTTP/2 pagead2.googlesyndication.com/pagead/js/adsbygoogle.js?client=ca-pub-2896365872506862
IP 142.250.74.98:0
File type ASCII text, with very long lines (2903)
Hash 151e3c928b9eb21bfb95f7caf3269046
f7de9188416a1442551dbb19fef7fdbf6677e8b2
e4718bb97549723d708a3f4f3f8568cf2a67ac70a516542678084bba493e9022
GET /pagead/js/adsbygoogle.js?client=ca-pub-2896365872506862 HTTP/1.1
Host: pagead2.googlesyndication.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.didcomms.co.uk
Connection: keep-alive
Referer: https://www.didcomms.co.uk/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
vary: Accept-Encoding, Origin
date: Wed, 21 Sep 2022 03:25:36 GMT
expires: Wed, 21 Sep 2022 03:25:36 GMT
cache-control: private, max-age=3600
content-type: text/javascript; charset=UTF-8
etag: 1403018200964974420
access-control-allow-origin: *
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: gzip
server: cafe
content-length: 58248
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 9405985bfe6aab7c008cf3a305f79b0f
d698b786300ea45e2cd1b9d3fadf2639e71efe5e
28c7a840f64d83b92b41d7255788845fbe83aefbee8acf3d8cb131ffd81f6267
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4046
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Wed, 21 Sep 2022 03:25:36 GMT
Last-Modified: Wed, 21 Sep 2022 02:18:10 GMT
Server: ECS (ska/F71A)
X-Cache: HIT
Content-Length: 471
www.didcomms.co.uk/arc-sw?propertyId=7DEbpruv&seeder=true
149.202.166.135200 OK 1.4 kB URL HTTP/2 www.didcomms.co.uk/arc-sw?propertyId=7DEbpruv&seeder=true
IP 149.202.166.135:0
File type ASCII text, with very long lines (3351), with no line terminators
Hash bd4728fd091146312db3659d9d72fabb
506e705786c99f15dad2598a3dcb6355440cbe9d
178e2994e65363f4498d2605abf14c75a43f5926af3f1f58b30f2d9933ec52cd
GET /arc-sw?propertyId=7DEbpruv&seeder=true HTTP/1.1
Host: www.didcomms.co.uk
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Service-Worker: script
Connection: keep-alive
Cookie: PHPSESSID=jp83q2kj1tla53gt777cikqdrg
Sec-Fetch-Dest: serviceworker
Sec-Fetch-Mode: same-origin
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 21 Sep 2022 03:25:36 GMT
content-type: application/javascript
content-length: 1385
expires: Thu, 19 Nov 1981 08:52:00 GMT
pragma: no-cache
access-control-allow-origin: *
strict-transport-security: max-age=15724800; includeSubDomains
cache-control: public, max-age=3600, must-revalidate
vary: Accept-Encoding
x-cache: RefreshHit from cloudfront
via: 1.1 c334b6410f9d489eb2a951a4371f3d18.cloudfront.net (CloudFront)
x-amz-cf-pop: LHR61-C1
x-amz-cf-id: HuBwO22T7t-xte0JLdp3QG5VFQcAUUXn0EdjBXjGJ89wzkWRRzRtOg==
last-modified: Sat, 31 Jul 2021 01:05:06 GMT
etag: "6104a1c2-569-gzip"
content-encoding: gzip
x-powered-by: PHP/7.4.16, PleskLin
X-Firefox-Spdy: h2
connect.facebook.net/en_US/sdk.js?hash=f8780ad8111dfe81aebb1e8678d68d1a
157.240.200.14200 OK 89 kB URL HTTP/2 connect.facebook.net/en_US/sdk.js?hash=f8780ad8111dfe81aebb1e8678d68d1a
IP 157.240.200.14:0
File type ASCII text, with very long lines (18598)
Hash 81aebce29546898e8c0bf90490865b9f
e6b0d2f996537734a380db540257dd74f959be15
c5f90f94889dee749cf34303566b25882f2a5e7c22bfd5440a45aab13b83384d
GET /en_US/sdk.js?hash=f8780ad8111dfe81aebb1e8678d68d1a HTTP/1.1
Host: connect.facebook.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.didcomms.co.uk
Connection: keep-alive
Referer: https://www.didcomms.co.uk/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
vary: Accept-Encoding
content-encoding: gzip
access-control-expose-headers: X-FB-Content-MD5
x-fb-content-md5: 5c3b90163eaa700eb703c3f855284243
etag: "947d2900355b06796db084498d562831"
content-type: application/x-javascript; charset=utf-8
timing-allow-origin: *
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
expires: Wed, 20 Sep 2023 23:08:48 GMT
cache-control: public,max-age=31536000,stale-while-revalidate=3600,immutable
document-policy: force-load-at-top
cross-origin-opener-policy: same-origin-allow-popups
x-content-type-options: nosniff
x-fb-rlafr: 0
x-frame-options: DENY
strict-transport-security: max-age=31536000; preload; includeSubDomains
content-md5: ga684pVGiY6MC/kEkIZbnw==
x-fb-debug: lzitbbSBWkNbvlb7iXLYU9NxPWw7653Pw17eepjhpsAWzvg4y13U6hbLFNQNQt9WXNoTjq324WYxbFzZgNcFZA==
priority: u=3,i
content-length: 88799
x-fb-trip-id: 1679558926
date: Wed, 21 Sep 2022 03:25:36 GMT
alt-svc: h3=":443"; ma=86400,h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 9baaa3878151bf5d83c8d7014da17e5d
d8952bdd01ddec1d9a5a480f17ff5e39f6bdb037
1734ff9035c0a9c965cb5047e9fdbc2c1184b6c568066e856c6dbf0b8dc51df3
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 21 Sep 2022 03:25:36 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
platform.twitter.com/widgets/widget_iframe.c4bdc17e77719578b594d5555bee90db.html?origin=https%3A%2F%2Fwww.didcomms.co.uk
93.184.220.66200 OK 105 kB URL HTTP/1.1 platform.twitter.com/widgets/widget_iframe.c4bdc17e77719578b594d5555bee90db.html?origin=https%3A%2F%2Fwww.didcomms.co.uk
IP 93.184.220.66:0
File type HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (56168)
Size 105 kB (105445 bytes)
Hash aa228863765c3263e12f1d7c71015518
619739a12e0f16eab26a43a913b35779edea57a6
cf9a241903646ee9b88b76da2bb3e11d16f36246f7bbc53bbe2c98466e5ea12a
GET /widgets/widget_iframe.c4bdc17e77719578b594d5555bee90db.html?origin=https%3A%2F%2Fwww.didcomms.co.uk HTTP/1.1
Host: platform.twitter.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.didcomms.co.uk/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Encoding: gzip
Access-Control-Allow-Methods: GET
Access-Control-Allow-Origin: *
Age: 1752145
Cache-Control: public, max-age=315360000
Content-Type: text/html; charset=utf-8
Date: Wed, 21 Sep 2022 03:25:36 GMT
Etag: "50d73c0b4a4c7e4697b9c6ac6f1ecd75+gzip"
Last-Modified: Wed, 31 Aug 2022 20:40:57 GMT
P3P: CP="CAO DSP LAW CURa ADMa DEVa TAIa PSAa PSDa IVAa IVDa OUR BUS IND UNI COM NAV INT"
Server: ECS (ska/F706)
Server-Timing: x-cache;desc= HIT,x-tw-cdn;desc=VZ,edge;dur=1
Vary: Accept-Encoding
X-Cache: HIT
x-tw-cdn: VZ
Content-Length: 105445
m.addthis.com/live/red_lojson/300lo.json?si=632a8430ccdc0eee&bkl=0&bl=5&pdt=387&sid=632a8430ccdc0eee&pub=ra-536530f652c04fc6&rev=v8.28.8-wp&ln=en&pc=wpwt&cb=0&ab=-&dp=www.didcomms.co.uk&fp=&fr=&of=0&pd=0&irt=0&vcl=0&md=0&ct=1&tct=0&abt=1&cdn=0&pi=1&rb=0&gen=100&chr=UTF-8&colc=1663730736418&wpv=wpwt-3.2.7&addthis_plugin_info=%7B%22info_status%22%3A%22enabled%22%2C%22cms_name%22%3A%22WordPress%22%2C%22plugin_name%22%3A%22Website%20Tools%20by%20AddThis%22%2C%22plugin_version%22%3A%223.2.7%22%2C%22plugin_mode%22%3A%22AddThis%22%2C%22anonymous_profile_id%22%3A%22wp-55b742b6230b7a471dfc2e2fbad70abc%22%2C%22page_info%22%3A%7B%22template%22%3A%22home%22%2C%22post_type%22%3A%22%22%7D%2C%22sharing_enabled_on_post_via_metabox%22%3Afalse%7D&jsl=1&uvs=632a843006807be5000&skipb=1&callback=addthis.cbs.jsonp__114376624572249730
23.38.200.123200 OK 90 B URL HTTP/2 m.addthis.com/live/red_lojson/300lo.json?si=632a8430ccdc0eee&bkl=0&bl=5&pdt=387&sid=632a8430ccdc0eee&pub=ra-536530f652c04fc6&rev=v8.28.8-wp&ln=en&pc=wpwt&cb=0&ab=-&dp=www.didcomms.co.uk&fp=&fr=&of=0&pd=0&irt=0&vcl=0&md=0&ct=1&tct=0&abt=1&cdn=0&pi=1&rb=0&gen=100&chr=UTF-8&colc=1663730736418&wpv=wpwt-3.2.7&addthis_plugin_info=%7B%22info_status%22%3A%22enabled%22%2C%22cms_name%22%3A%22WordPress%22%2C%22plugin_name%22%3A%22Website%20Tools%20by%20AddThis%22%2C%22plugin_version%22%3A%223.2.7%22%2C%22plugin_mode%22%3A%22AddThis%22%2C%22anonymous_profile_id%22%3A%22wp-55b742b6230b7a471dfc2e2fbad70abc%22%2C%22page_info%22%3A%7B%22template%22%3A%22home%22%2C%22post_type%22%3A%22%22%7D%2C%22sharing_enabled_on_post_via_metabox%22%3Afalse%7D&jsl=1&uvs=632a843006807be5000&skipb=1&callback=addthis.cbs.jsonp__114376624572249730
IP 23.38.200.123:0
File type ASCII text, with no line terminators
Hash abe6eabdfedfd23939ac516a9181a22e
533c176e31df42689b120c99e0abf8d2ae96e0ab
a17b25b496fbe81b922dfffcf2c97a2dd15e287a7d4026732d11cbd061d2d071
GET /live/red_lojson/300lo.json?si=632a8430ccdc0eee&bkl=0&bl=5&pdt=387&sid=632a8430ccdc0eee&pub=ra-536530f652c04fc6&rev=v8.28.8-wp&ln=en&pc=wpwt&cb=0&ab=-&dp=www.didcomms.co.uk&fp=&fr=&of=0&pd=0&irt=0&vcl=0&md=0&ct=1&tct=0&abt=1&cdn=0&pi=1&rb=0&gen=100&chr=UTF-8&colc=1663730736418&wpv=wpwt-3.2.7&addthis_plugin_info=%7B%22info_status%22%3A%22enabled%22%2C%22cms_name%22%3A%22WordPress%22%2C%22plugin_name%22%3A%22Website%20Tools%20by%20AddThis%22%2C%22plugin_version%22%3A%223.2.7%22%2C%22plugin_mode%22%3A%22AddThis%22%2C%22anonymous_profile_id%22%3A%22wp-55b742b6230b7a471dfc2e2fbad70abc%22%2C%22page_info%22%3A%7B%22template%22%3A%22home%22%2C%22post_type%22%3A%22%22%7D%2C%22sharing_enabled_on_post_via_metabox%22%3Afalse%7D&jsl=1&uvs=632a843006807be5000&skipb=1&callback=addthis.cbs.jsonp__114376624572249730 HTTP/1.1
Host: m.addthis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.didcomms.co.uk/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript;charset=utf-8
content-length: 90
cache-control: max-age=0, no-cache, no-store, no-transform
pragma: no-cache
content-disposition: attachment; filename=1.txt
date: Wed, 21 Sep 2022 03:25:36 GMT
X-Firefox-Spdy: h2
static.arc.io/widget/css/widget.css?11d024e
194.242.11.186200 OK 9.5 kB URL HTTP/2 static.arc.io/widget/css/widget.css?11d024e
IP 194.242.11.186:0
ASN #34989 ServeTheWorld AS
File type ASCII text, with very long lines (13367)
Hash 9b10e3d7a0513732fa8408b388661217
c0d4c12f2e5574d7bce3983019d578ccf755c6b0
03872e158a99caf12bf4049f0ac75545eff9a711d5b21d203ee1ddb9dee2857d
GET /widget/css/widget.css?11d024e HTTP/1.1
Host: static.arc.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.didcomms.co.uk/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 21 Sep 2022 03:25:36 GMT
content-type: text/css
server: BunnyCDN-NO-830
cdn-pullzone: 786569
cdn-uid: 1756f224-b505-436a-b48a-b92ddf4fdbea
cdn-requestcountrycode: NO
vary: Accept-Encoding, Accept-Encoding
access-control-allow-origin: *
access-control-allow-headers: Server, x-goog-meta-frames, Content-Length, Content-Type, Range, X-Requested-With, If-Modified-Since, If-None-Match
access-control-expose-headers: Server, x-goog-meta-frames, Content-Length, Content-Type, Range, X-Requested-With, If-Modified-Since, If-None-Match
access-control-allow-methods: GET, HEAD
access-control-max-age: 86400
cache-control: public, max-age=2592000, stale-while-revalidate=864000
etag: W/"ce66dd39d9339eebd65264a9ecc334be"
last-modified: Fri, 16 Sep 2022 20:28:02 GMT
x-amz-id-2: aphsKMYqwuhy8PCqlM///t9ofrTW0GkFR5nsc70TTK8R8shAbciXCm2mcVtH7CZrDA1H2L3Y6Gk=
x-amz-request-id: 12RG1TRARBHMDHYE
cdn-proxyver: 1.02
cdn-requestpullsuccess: True
cdn-requestpullcode: 200
cdn-cachedat: 09/16/2022 20:39:55
cdn-edgestorageid: 830
cdn-status: 200
cdn-requestid: 480f03b45c47fe1f95a2f8d636d96d1c
cdn-cache: HIT
content-encoding: br
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 3ef019ce781ddbb79938868e1bf969be
27db5803c535a597bb29c96fc111255b14f4219d
60ade2388afdea80bb7c88016be34c92f7005c21dda6fe6ad07d4dba060744d2
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 21 Sep 2022 03:25:36 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
browser.sentry-cdn.com/6.2.2/bundle.min.js
151.101.130.217200 OK 21 kB URL HTTP/2 browser.sentry-cdn.com/6.2.2/bundle.min.js
IP 151.101.130.217:0
File type ASCII text, with very long lines (65448)
Hash a948fc086ec14683f3f2270913c7f702
945e9d1a6a70d4e3f87dbd1058879bcddcb40a1d
0bb5309b61da0b307549c7c9edd6a61766a86d3dd317d093525fddeebeb212e9
GET /6.2.2/bundle.min.js HTTP/1.1
Host: browser.sentry-cdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.didcomms.co.uk
Connection: keep-alive
Referer: https://www.didcomms.co.uk/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
cache-control: public, max-age=31536000
expires: Fri, 17 Mar 2023 07:22:09 GMT
last-modified: Thu, 11 Mar 2021 09:25:54 GMT
etag: "a948fc086ec14683f3f2270913c7f702"
content-type: application/javascript; charset=utf-8
content-encoding: gzip
accept-ranges: bytes
date: Wed, 21 Sep 2022 03:25:36 GMT
age: 16229006
vary: Accept-Encoding
access-control-allow-origin: *
server: Fastly
strict-transport-security: max-age=31536000; includeSubDomains
content-length: 20633
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 8ebb267e443b81854ef9a01b3eb6489d
b932e9e5679da5a9160da5429458041765509b52
4ac5aa5b4fb4a85282b825c5c0ed7b1aaf2b39ffe77d69dec5123a84709f3fe2
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "4AC5AA5B4FB4A85282B825C5C0ED7B1AAF2B39FFE77D69DEC5123A84709F3FE2"
Last-Modified: Tue, 20 Sep 2022 22:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=17933
Expires: Wed, 21 Sep 2022 08:24:29 GMT
Date: Wed, 21 Sep 2022 03:25:36 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 8ebb267e443b81854ef9a01b3eb6489d
b932e9e5679da5a9160da5429458041765509b52
4ac5aa5b4fb4a85282b825c5c0ed7b1aaf2b39ffe77d69dec5123a84709f3fe2
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "4AC5AA5B4FB4A85282B825C5C0ED7B1AAF2B39FFE77D69DEC5123A84709F3FE2"
Last-Modified: Tue, 20 Sep 2022 22:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=17933
Expires: Wed, 21 Sep 2022 08:24:29 GMT
Date: Wed, 21 Sep 2022 03:25:36 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 8ebb267e443b81854ef9a01b3eb6489d
b932e9e5679da5a9160da5429458041765509b52
4ac5aa5b4fb4a85282b825c5c0ed7b1aaf2b39ffe77d69dec5123a84709f3fe2
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "4AC5AA5B4FB4A85282B825C5C0ED7B1AAF2B39FFE77D69DEC5123A84709F3FE2"
Last-Modified: Tue, 20 Sep 2022 22:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=17933
Expires: Wed, 21 Sep 2022 08:24:29 GMT
Date: Wed, 21 Sep 2022 03:25:36 GMT
Connection: keep-alive
googleads.g.doubleclick.net/pagead/html/r20220915/r20190131/zrt_lookup.html
172.217.21.162200 OK 4.4 kB URL HTTP/2 googleads.g.doubleclick.net/pagead/html/r20220915/r20190131/zrt_lookup.html
IP 172.217.21.162:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (1731)
Hash 682bf699cccbc0ff817e1fcb7b95262a
11ad3edf0008f52b733c2d6d7199e1f052318d58
bd42f773d589f85cf6884d7893746d5d4e0c082f78e1c80511cf3aefa1c69a0f
GET /pagead/html/r20220915/r20190131/zrt_lookup.html HTTP/1.1
Host: googleads.g.doubleclick.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.didcomms.co.uk/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
vary: Accept-Encoding
x-content-type-options: nosniff
content-encoding: gzip
server: cafe
content-length: 4420
x-xss-protection: 0
date: Tue, 20 Sep 2022 20:35:43 GMT
expires: Tue, 04 Oct 2022 20:35:43 GMT
cache-control: public, max-age=1209600
age: 24593
etag: 9671129459699598864
content-type: text/html; charset=UTF-8
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1874c3ef-e614-4fd9-9d88-b87eac5ea0e6.jpeg
34.120.237.76200 OK 9.2 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1874c3ef-e614-4fd9-9d88-b87eac5ea0e6.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash a692964324dbb9c460a1b855808d02e6
1eef1ab0099d09d1cf965b6e7b55fe2aa4e18e54
3fa9e780d62fffb635064aeed542c8e04923ff943c6080476836fab6c24e2426
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1874c3ef-e614-4fd9-9d88-b87eac5ea0e6.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9201
x-amzn-requestid: 6dbfae76-f9ab-4f31-9b62-bcf5d9ce4515
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YxzxlEYcoAMFaQQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-632a333d-7d147481402cc46a751b72ed;Sampled=0
x-amzn-remapped-date: Tue, 20 Sep 2022 21:40:13 GMT
x-amz-cf-pop: SFO5-P2, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: JEb0g486u6AjYFbf8rSbreKjh0m1GsAGbvykHl0oahmVN2ciqe5FOw==
via: 1.1 7dcaa43cd0535d889b549e6a30a57aa0.cloudfront.net (CloudFront), 1.1 7e87179efaa9e3c316bd3d3a74cfded8.cloudfront.net (CloudFront), 1.1 google
date: Tue, 20 Sep 2022 22:14:57 GMT
etag: "1eef1ab0099d09d1cf965b6e7b55fe2aa4e18e54"
content-type: image/jpeg
age: 18639
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F60ffb31d-d07d-4e81-9477-522f011ae13e.jpeg
34.120.237.76200 OK 8.9 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F60ffb31d-d07d-4e81-9477-522f011ae13e.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash a504981ee10d8341b64f19001464ae8a
56f228d7358ba9deef000f53214dc7c1dc358109
0ea3b6ed12f3adf9d56e7d9b61f284d28107d99f28ee4e66b4c078a9a1a0cbee
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F60ffb31d-d07d-4e81-9477-522f011ae13e.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8861
x-amzn-requestid: 873e88ab-7afc-4b14-b428-d90ec2079741
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YO2wuE0AoAMF7Gw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-631c3804-0d25ab397a16c78907914e23;Sampled=0
x-amzn-remapped-date: Sat, 10 Sep 2022 07:08:52 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: UStTyIXPucbY9WmDl3W5bTyeT-2SJ5CTUjv8TLeexqZtKd1p2sJrNA==
via: 1.1 030fe0607711293dda988e571617a9f2.cloudfront.net (CloudFront), 1.1 28390a4d24ed4fdccd685d99cd06cf4e.cloudfront.net (CloudFront), 1.1 google
date: Wed, 21 Sep 2022 03:10:59 GMT
age: 877
etag: "56f228d7358ba9deef000f53214dc7c1dc358109"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb19a7100-8d4f-4c0a-8865-191670cb2db4.jpeg
34.120.237.76200 OK 6.7 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb19a7100-8d4f-4c0a-8865-191670cb2db4.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 9c4ba493d60a12accc1dc9c3299fa01d
65886e11d9f792452cceea23444722ff4028b081
b287b0bf2b3dc834a657dc98a9eef006577554306fa481bbc9de5a16943129f1
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb19a7100-8d4f-4c0a-8865-191670cb2db4.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6667
x-amzn-requestid: 1798057c-208d-471e-8d5c-602631418afd
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Yxy1nHvsoAMF23A=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-632a31bd-121c21f710767cde77a06945;Sampled=0
x-amzn-remapped-date: Tue, 20 Sep 2022 21:33:49 GMT
x-amz-cf-pop: YVR50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: vdjC0dj8L5qN-SdmlBD_TD0T0hdFtWzmnC9_AdJVP5qTi9dWz6_K9g==
via: 1.1 e71753cf85369390852fdcb22bf59aa8.cloudfront.net (CloudFront), 1.1 570075675953459325e00b7bcd171df2.cloudfront.net (CloudFront), 1.1 google
date: Tue, 20 Sep 2022 21:40:13 GMT
age: 20723
etag: "65886e11d9f792452cceea23444722ff4028b081"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe6be1360-d048-4319-9cac-dfebe92db87f.jpeg
34.120.237.76200 OK 9.3 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe6be1360-d048-4319-9cac-dfebe92db87f.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 267173c6b4e4e6ae4a84dc08df92f82f
4183102af1963e1edb3aa572c43aeda7d855e9f5
20487bb2e59f2e6afcaaac3e3c4f1dfec9a8ef761403a44f7f92a6b57d143714
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe6be1360-d048-4319-9cac-dfebe92db87f.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9271
x-amzn-requestid: b8139dfc-8f24-41e0-9948-56bad215416c
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Yx0Q-EkZoAMF_sw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-632a3406-4365026f7f832cee0c12e4d7;Sampled=0
x-amzn-remapped-date: Tue, 20 Sep 2022 21:43:34 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: QhTzqhSMCDgWwTSsmfM_3jBwV-g0fVABMLy-gwrjoxaoE4VomNqahg==
via: 1.1 28a7186077f9b5270d98dd053f31303e.cloudfront.net (CloudFront), 1.1 a847181d425b7fc57e81eb3c800bfdf2.cloudfront.net (CloudFront), 1.1 google
date: Tue, 20 Sep 2022 22:38:46 GMT
age: 17210
etag: "4183102af1963e1edb3aa572c43aeda7d855e9f5"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1002d7b2-c264-4e0d-a7db-a4c5299eda73.jpeg
34.120.237.76200 OK 4.3 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1002d7b2-c264-4e0d-a7db-a4c5299eda73.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash c523ffabe9e2288c7e6951ba0bc4c5d1
0d93de1e5f6a5c64116accbd61d003c349664483
b509944b3e30e23d3983a52e30ce228c29a0d821720794555863f97286d8c70c
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1002d7b2-c264-4e0d-a7db-a4c5299eda73.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 4296
x-amzn-requestid: 29d5dfff-9f81-418b-ab6b-a9700c56da86
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Yl7jcFtLIAMFl5g=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-632572e2-1acb4bbb3ea864a36fe7d70a;Sampled=0
x-amzn-remapped-date: Sat, 17 Sep 2022 07:10:26 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: v3dJNBDYYNoLZ-PB1PUUDJBTHhEpNuDxu8kR1COTfI59RHxmLE-vhQ==
via: 1.1 4dde8ec6d6c12741888c2d3a059d4a2e.cloudfront.net (CloudFront), 1.1 b13f158bdf9805ca47e07c0c35870c12.cloudfront.net (CloudFront), 1.1 google
date: Tue, 20 Sep 2022 22:51:38 GMT
age: 16438
etag: "0d93de1e5f6a5c64116accbd61d003c349664483"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F29be3958-30ed-4b26-8320-662d71b90880.jpeg
34.120.237.76200 OK 7.7 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F29be3958-30ed-4b26-8320-662d71b90880.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 34c353f713d6d470480fdeeb5175a123
f073fc7f24465b76b3681c462c60cd047ed67a6a
0449daa32ab4ec32fa999551cc9ab634c46e15891299162cbb4bbaad6ffa4753
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F29be3958-30ed-4b26-8320-662d71b90880.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7700
x-amzn-requestid: 70bc75e2-b2ac-46b1-872d-1527bddf7726
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YcCkEHMCoAMFsGg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63217e19-7da4b1595f325bc864d1cc27;Sampled=0
x-amzn-remapped-date: Wed, 14 Sep 2022 07:09:13 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: zL6ZurGjH8nArpKRNenog0dn5IIAyWirefe-WA6YulwYhrtTTn0V4A==
via: 1.1 eece508272520f70691e4eebdc5a6dea.cloudfront.net (CloudFront), 1.1 ead78c395f4bede3ec6cd7ea180e3d3a.cloudfront.net (CloudFront), 1.1 google
date: Tue, 20 Sep 2022 22:36:39 GMT
age: 17337
etag: "f073fc7f24465b76b3681c462c60cd047ed67a6a"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
s7.addthis.com/static/layers.fa6cd1947ce26e890d3d.js
23.38.200.123200 OK 78 kB URL HTTP/2 s7.addthis.com/static/layers.fa6cd1947ce26e890d3d.js
IP 23.38.200.123:0
File type Unicode text, UTF-8 text, with very long lines (65533), with no line terminators
Hash 9a77dff666eebb6cf4bbc4c67c7b563b
9e98d7824a7b4e34665c2690d6f52caddad1fe4b
6cdf8e597f3cbe759531153fd926d51aeaebd836a1c9bc1436e079645bfd3ad7
GET /static/layers.fa6cd1947ce26e890d3d.js HTTP/1.1
Host: s7.addthis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.didcomms.co.uk/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx/1.15.8
content-type: application/javascript
last-modified: Mon, 26 Oct 2020 18:11:48 GMT
etag: W/"5f971164-41cf5"
timing-allow-origin: *
cache-control: public, max-age=86313600
strict-transport-security: max-age=15724800; includeSubDomains
content-encoding: gzip
content-length: 77672
date: Wed, 21 Sep 2022 03:25:36 GMT
vary: Accept-Encoding
x-host: s7.addthis.com
X-Firefox-Spdy: h2
arc.io/arc-sw-core.js
54.230.111.25200 OK 68 kB IP 54.230.111.25:0
File type ASCII text, with very long lines (22448)
Hash b62d64ef6acb7d9e69619926d12987fd
d17547ac81a5b9ec9d3cfaa7fbecd563233af351
e82a5776a21790a3b2855755cb37d2aea37274b04b5b4e4ee48c318e8127d7e2
GET /arc-sw-core.js HTTP/1.1
Host: arc.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.didcomms.co.uk/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: application/javascript
content-length: 67725
last-modified: Sat, 31 Jul 2021 01:05:06 GMT
content-encoding: br
access-control-allow-origin: *
strict-transport-security: max-age=15724800; includeSubDomains
date: Wed, 21 Sep 2022 03:01:06 GMT
cache-control: public, max-age=3600, must-revalidate
etag: "6104a1c2-1088d"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 5bcfe2deda0bdbc6bade0af9b61602ca.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: xfWSGdgzd7GbSkC0m3S-71Hzh5NZ4WxbeLPG66aygEscXFNaOydLTw==
age: 1477
X-Firefox-Spdy: h2
www.facebook.com/tr/?id=1698963343673272&ev=PageView&dl=https%3A%2F%2Fwww.didcomms.co.uk%2F&rl=&if=false&ts=1663730736981&sw=1280&sh=1024&v=2.9.83&r=stable&a=wordpress-6.0.2-3.0.7&ec=0&o=30&fbp=fb.2.1663730736980.1991545869&it=1663730736709&coo=false&exp=d0&rqm=GET
157.240.200.35200 OK 44 B URL HTTP/2 www.facebook.com/tr/?id=1698963343673272&ev=PageView&dl=https%3A%2F%2Fwww.didcomms.co.uk%2F&rl=&if=false&ts=1663730736981&sw=1280&sh=1024&v=2.9.83&r=stable&a=wordpress-6.0.2-3.0.7&ec=0&o=30&fbp=fb.2.1663730736980.1991545869&it=1663730736709&coo=false&exp=d0&rqm=GET
IP 157.240.200.35:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash b798f4ce7359fd815df4bdf76503b295
f8cc6addf1707ad236ad9970b0a48f9733d07da5
10d8d42d73a02ddb877101e72fbfa15a0ec820224d97cedee4cf92d571be5caa
GET /tr/?id=1698963343673272&ev=PageView&dl=https%3A%2F%2Fwww.didcomms.co.uk%2F&rl=&if=false&ts=1663730736981&sw=1280&sh=1024&v=2.9.83&r=stable&a=wordpress-6.0.2-3.0.7&ec=0&o=30&fbp=fb.2.1663730736980.1991545869&it=1663730736709&coo=false&exp=d0&rqm=GET HTTP/1.1
Host: www.facebook.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.didcomms.co.uk/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: image/gif
date: Wed, 21 Sep 2022 03:25:37 GMT
expires: Wed, 21 Sep 2022 03:25:37 GMT
last-modified: Fri, 21 Dec 2012 00:00:01 GMT
cache-control: no-cache, must-revalidate, max-age=0
set-cookie:
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
content-length: 44
server: proxygen-bolt
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 05dfa19609343ef6acdaf2ccc3ca8add
5a51311c554ae7a13d677484cb09e408e16f2a50
85609b2731a7e9966f02caa9e9592686859f26a2fe9f43bc5224a8ca82736161
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 21 Sep 2022 03:25:37 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash 32d60a76f04221b40dd32e506b6cd47d
89367db15ef63d7916871a006276a981c8b7aec3
c36ad4f90208ed924129ff27e00a6662cc5cc4bf8c4c70e07d04107ddb47d817
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 21 Sep 2022 03:25:37 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
adservice.google.com/adsid/integrator.js?domain=www.didcomms.co.uk
142.250.74.98200 OK 100 B URL HTTP/2 adservice.google.com/adsid/integrator.js?domain=www.didcomms.co.uk
IP 142.250.74.98:0
File type ASCII text, with no line terminators
Hash 917951a58be8c6c6f3680159550ba3c2
21cd25c2a4eb9ec7e0f37021ce7b69e852dab4b4
cd8c45d9a0d98ca2e23d967483ec538bcafa246afdcf434bf60c8257acfacfac
GET /adsid/integrator.js?domain=www.didcomms.co.uk HTTP/1.1
Host: adservice.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.didcomms.co.uk/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: CP="This is not a P3P policy! See http://support.google.com/accounts/answer/151657 for more info."
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
cache-control: private, no-cache, no-store
content-type: application/javascript; charset=UTF-8
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: gzip
date: Wed, 21 Sep 2022 03:25:37 GMT
server: cafe
content-length: 100
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
adservice.google.no/adsid/integrator.js?domain=www.didcomms.co.uk
142.250.74.162200 OK 100 B URL HTTP/2 adservice.google.no/adsid/integrator.js?domain=www.didcomms.co.uk
IP 142.250.74.162:0
File type ASCII text, with no line terminators
Hash 917951a58be8c6c6f3680159550ba3c2
21cd25c2a4eb9ec7e0f37021ce7b69e852dab4b4
cd8c45d9a0d98ca2e23d967483ec538bcafa246afdcf434bf60c8257acfacfac
GET /adsid/integrator.js?domain=www.didcomms.co.uk HTTP/1.1
Host: adservice.google.no
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.didcomms.co.uk/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: CP="This is not a P3P policy! See http://support.google.com/accounts/answer/151657 for more info."
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
cache-control: private, no-cache, no-store
content-type: application/javascript; charset=UTF-8
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: gzip
date: Wed, 21 Sep 2022 03:25:37 GMT
server: cafe
content-length: 100
x-xss-protection: 0
alt-svc: h3="googleads.g.doubleclick.net:443"; ma=2592000,h3=":443"; ma=2592000,h3-29="googleads.g.doubleclick.net:443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050="googleads.g.doubleclick.net:443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046="googleads.g.doubleclick.net:443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043="googleads.g.doubleclick.net:443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic="googleads.g.doubleclick.net:443"; ma=2592000; v="46,43",quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 312 B IP 93.184.220.29:0
Hash 0468202d191fdd88d10283654810ed42
f30c9a4976793aee6e2de70ef597b5de31ba4ddc
a5e4c0bf15cb95ab739d0cf21cde8fb54ae732e6a509d1ea042826dec3ae0e2d
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5247
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Wed, 21 Sep 2022 03:25:37 GMT
Last-Modified: Wed, 21 Sep 2022 01:58:11 GMT
Server: ECS (ska/F71A)
X-Cache: HIT
Content-Length: 312
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 05dfa19609343ef6acdaf2ccc3ca8add
5a51311c554ae7a13d677484cb09e408e16f2a50
85609b2731a7e9966f02caa9e9592686859f26a2fe9f43bc5224a8ca82736161
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 21 Sep 2022 03:25:37 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 44d9aba2ad4a3e24ba6cd35630b45b5d
c2f0fd8404a6cef796f679b5cc08def17b3b0a95
889f5bc8b58cf09622263509ba32b55c21296b8f292ff0964128989f1ac3f416
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "889F5BC8B58CF09622263509BA32B55C21296B8F292FF0964128989F1AC3F416"
Last-Modified: Sun, 18 Sep 2022 16:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=18421
Expires: Wed, 21 Sep 2022 08:32:38 GMT
Date: Wed, 21 Sep 2022 03:25:37 GMT
Connection: keep-alive
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash fde987c85b17b2242afddd76c3fd3b62
08e87b8185fc39462e6b331d565a864df2fd5865
49bc15e88c546089cc42939f8dc9f7046f1dd98332c31cf52435586bc8ea177c
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 21 Sep 2022 03:25:37 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.google-analytics.com/analytics.js
142.250.74.174200 OK 20 kB URL HTTP/2 www.google-analytics.com/analytics.js
IP 142.250.74.174:0
File type ASCII text, with very long lines (1325)
Hash 56f5d7f608e25d64207135f045f988cb
901eb59372ae330ae85e1384da93479b21ae1082
1910daea79e5a9d04829a91e432dfa56f45a80a3e14a8cf667fec73af9fd3d29
GET /analytics.js HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.didcomms.co.uk/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
strict-transport-security: max-age=10886400; includeSubDomains; preload
x-content-type-options: nosniff
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 20006
date: Wed, 21 Sep 2022 02:41:12 GMT
expires: Wed, 21 Sep 2022 04:41:12 GMT
cache-control: public, max-age=7200
age: 2665
last-modified: Wed, 13 Apr 2022 21:02:38 GMT
content-type: text/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.didcomms.co.uk/wp-content/plugins/google-language-translator/images/flags.png
149.202.166.135200 OK 55 kB URL HTTP/2 www.didcomms.co.uk/wp-content/plugins/google-language-translator/images/flags.png
IP 149.202.166.135:0
File type PNG image data, 169 x 520, 8-bit/color RGBA, non-interlaced\012- data
Hash 89c95031b56b90591fd4ef80558f8c25
9599f52c93b38f3e68686f299b3184be0a9de63a
d64c12a76a61096f3a14aa795d12c3fc0de8e5781ef2e1af3b66517e65d7f00e
GET /wp-content/plugins/google-language-translator/images/flags.png HTTP/1.1
Host: www.didcomms.co.uk
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.didcomms.co.uk/wp-content/plugins/google-language-translator/css/style.css?ver=6.0.15
Cookie: PHPSESSID=jp83q2kj1tla53gt777cikqdrg; __atuvc=1%7C38; __atuvs=632a843006807be5000; _fbp=fb.2.1663730736980.1991545869; __gads=ID=f59277d7db261e55-2271132d28ce00ee:T=1663730737:RT=1663730737:S=ALNI_MY5uIl-DN3z2qz67yBBwgU7M-nyfg
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 21 Sep 2022 03:25:37 GMT
content-type: image/png
content-length: 54996
last-modified: Wed, 11 May 2022 15:10:52 GMT
etag: "627bd1fc-d6d4"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
www.google-analytics.com/j/collect?v=1&_v=j96&aip=1&a=2132715823&t=pageview&_s=1&dl=https%3A%2F%2Fwww.didcomms.co.uk%2F&ul=en-us&de=UTF-8&dt=DIDcomms%20%E2%80%93%20Virtual%20UK%20DID%20Numbers%20VoIP%20Provider&sd=24-bit&sr=1280x1024&vp=1268x939&je=0&_u=YChACUABBAAAAC~&jid=1024505707&gjid=1394876042&cid=653884386.1663730737&tid=UA-169366328-1&_gid=1068428554.1663730737&_r=1>m=2ou9j0&did=dZTNiMT&gdid=dZTNiMT&z=2020205658
142.250.74.174200 OK 1 B URL HTTP/2 www.google-analytics.com/j/collect?v=1&_v=j96&aip=1&a=2132715823&t=pageview&_s=1&dl=https%3A%2F%2Fwww.didcomms.co.uk%2F&ul=en-us&de=UTF-8&dt=DIDcomms%20%E2%80%93%20Virtual%20UK%20DID%20Numbers%20VoIP%20Provider&sd=24-bit&sr=1280x1024&vp=1268x939&je=0&_u=YChACUABBAAAAC~&jid=1024505707&gjid=1394876042&cid=653884386.1663730737&tid=UA-169366328-1&_gid=1068428554.1663730737&_r=1>m=2ou9j0&did=dZTNiMT&gdid=dZTNiMT&z=2020205658
IP 142.250.74.174:0
File type very short file (no magic)
Hash c4ca4238a0b923820dcc509a6f75849b
356a192b7913b04c54574d18c28d46e6395428ab
6b86b273ff34fce19d6b804eff5a3f5747ada4eaa22f1d49c01e52ddb7875b4b
POST /j/collect?v=1&_v=j96&aip=1&a=2132715823&t=pageview&_s=1&dl=https%3A%2F%2Fwww.didcomms.co.uk%2F&ul=en-us&de=UTF-8&dt=DIDcomms%20%E2%80%93%20Virtual%20UK%20DID%20Numbers%20VoIP%20Provider&sd=24-bit&sr=1280x1024&vp=1268x939&je=0&_u=YChACUABBAAAAC~&jid=1024505707&gjid=1394876042&cid=653884386.1663730737&tid=UA-169366328-1&_gid=1068428554.1663730737&_r=1>m=2ou9j0&did=dZTNiMT&gdid=dZTNiMT&z=2020205658 HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 0
Origin: https://www.didcomms.co.uk
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Referer: https://www.didcomms.co.uk/
Connection: keep-alive
TE: trailers
HTTP/2 200 OK
access-control-allow-origin: https://www.didcomms.co.uk
date: Wed, 21 Sep 2022 03:25:37 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
last-modified: Sun, 17 May 1998 03:00:00 GMT
access-control-allow-credentials: true
x-content-type-options: nosniff
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 1
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
syndication.twitter.com/settings?session_id=80d8a0c87a80a00a92db4ba2366f2436b05d20a6
104.244.42.8200 OK 327 B URL HTTP/2 syndication.twitter.com/settings?session_id=80d8a0c87a80a00a92db4ba2366f2436b05d20a6
IP 104.244.42.8:0
File type JSON data\012- , ASCII text, with very long lines (771), with no line terminators
Hash 21b37ea7072f5ae3a8fefdf555c10764
a509a3feca059bd0dc935c1ac59d600db3a68cb1
4d533bada6157ca9a0def76cc78590afd015569b76f1e3444d95be7c5fbd3b5b
GET /settings?session_id=80d8a0c87a80a00a92db4ba2366f2436b05d20a6 HTTP/1.1
Host: syndication.twitter.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://platform.twitter.com/
Origin: https://platform.twitter.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
HTTP/2 200 OK
date: Wed, 21 Sep 2022 03:25:36 GMT
vary: Origin
server: tsa_o
content-type: application/json; charset=utf-8
cache-control: must-revalidate, max-age=600
last-modified: Wed, 21 Sep 2022 03:25:37 GMT
content-length: 327
content-encoding: gzip
strict-transport-security: max-age=631138519
access-control-allow-origin: https://platform.twitter.com
access-control-allow-credentials: true
x-response-time: 108
x-connection-hash: 1746ae43ac5e6974550b63235e4728a203fb1343358786ad0650449f33f33463
X-Firefox-Spdy: h2
www.didcomms.co.uk/sp-push-worker-fb.js
149.202.166.135200 OK 92 B URL HTTP/2 www.didcomms.co.uk/sp-push-worker-fb.js
IP 149.202.166.135:0
Hash 1902a3e2a076a7729233d182aad3b2e3
e059fc8edd8d29932537d6664f5baaeca8a0508e
16befdcfd3d3803a0502c90beb25df05329d6ac6ddab12b71cf46e7b46312a4d
Analyzer Verdict Alert fortinet Phishing
GET /sp-push-worker-fb.js HTTP/1.1
Host: www.didcomms.co.uk
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Referer: https://www.didcomms.co.uk/
Connection: keep-alive
Cookie: PHPSESSID=jp83q2kj1tla53gt777cikqdrg; __atuvc=1%7C38; __atuvs=632a843006807be5000; _fbp=fb.2.1663730736980.1991545869; __gads=ID=f59277d7db261e55-2271132d28ce00ee:T=1663730737:RT=1663730737:S=ALNI_MY5uIl-DN3z2qz67yBBwgU7M-nyfg; _ga=GA1.3.653884386.1663730737; _gid=GA1.3.1068428554.1663730737; _gat_gtag_UA_169366328_1=1
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 21 Sep 2022 03:25:38 GMT
content-type: application/javascript
content-length: 92
x-accel-version: 0.01
last-modified: Sun, 14 Jun 2020 14:53:48 GMT
etag: "49-5a80c7a4d7635-gzip"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
x-powered-by: PleskLin
X-Firefox-Spdy: h2
cdnjs.cloudflare.com/ajax/libs/normalize/8.0.0/normalize.min.css
104.17.24.14200 OK 631 B URL HTTP/2 cdnjs.cloudflare.com/ajax/libs/normalize/8.0.0/normalize.min.css
IP 104.17.24.14:0
File type ASCII text, with very long lines (1796)
Hash c27520fe60c6f5f7cba22d6912e04494
59bdd4f097d44825326bfa7fdf075669deabaa09
bfbb841e763e8cd7a378b0a6bb83b08251eb3ee0afd7bfcb6d55dae63f6f514d
GET /ajax/libs/normalize/8.0.0/normalize.min.css HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Connection: keep-alive
HTTP/2 200 OK
date: Wed, 21 Sep 2022 03:25:38 GMT
content-type: text/css; charset=utf-8
content-length: 631
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "5eb03f2b-732"
last-modified: Mon, 04 May 2020 16:13:31 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 1467194
expires: Mon, 11 Sep 2023 03:25:38 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=jzUkx2y%2Fx7R%2B1DLjCEuQ3WKYQToIoQTW5OH5maLHJ7HaECWFK%2BVPacDCQKttGb8ApZKGUbC8CxsxleYAuRwq0nUUt4fa8750qpBTNorImffDPYp6bMW4kS6D1ll%2BZTIJZIPdZBDo"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 74dfb1d9eab1b52d-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash 940654a13335a61ca64ca083e4f67a3e
fd78474e4674f58db2c3622ac3bd0c8753342557
129f6f6f87bb21eb345c7cdd66f2ea498a19885f48490018541d4b9367770fca
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 21 Sep 2022 03:25:38 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
tpc.googlesyndication.com/sodar/sodar2.js
142.250.74.33200 OK 6.4 kB URL HTTP/2 tpc.googlesyndication.com/sodar/sodar2.js
IP 142.250.74.33:0
File type ASCII text, with very long lines (1321)
Hash ac906814ed812c4ecdbb624a3bd2f6c3
8e4547eaffaa66a1ee61b36028dbcd7091d0e7de
8ab8cef6156022c4547455defd8252b48b6bcb8b734072849345bb99758705fe
GET /sodar/sodar2.js HTTP/1.1
Host: tpc.googlesyndication.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Referer: https://www.didcomms.co.uk/
Connection: keep-alive
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-type: text/javascript
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="adspam-signals-scs"
report-to: {"group":"adspam-signals-scs","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/adspam-signals-scs"}]}
content-length: 6386
date: Wed, 21 Sep 2022 03:25:38 GMT
expires: Wed, 21 Sep 2022 03:25:38 GMT
cache-control: private, max-age=3000
etag: "1637097310169751"
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
arc.io/arc-sw-core.js
54.230.111.49200 OK 68 kB IP 54.230.111.49:0
File type ASCII text, with very long lines (22448)
Hash b62d64ef6acb7d9e69619926d12987fd
d17547ac81a5b9ec9d3cfaa7fbecd563233af351
e82a5776a21790a3b2855755cb37d2aea37274b04b5b4e4ee48c318e8127d7e2
GET /arc-sw-core.js HTTP/1.1
Host: arc.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Service-Worker: script
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript
content-length: 67725
last-modified: Sat, 31 Jul 2021 01:05:06 GMT
content-encoding: br
access-control-allow-origin: *
strict-transport-security: max-age=15724800; includeSubDomains
date: Wed, 21 Sep 2022 03:01:06 GMT
cache-control: public, max-age=3600, must-revalidate
etag: "6104a1c2-1088d"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 6a0f63864791329e89a4b233ec4c3a36.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: OfmXXTT3HU2LVpCWzyNKroqnYPgS5x1LyGnT8JRK5ASQBpQlqZCbuQ==
age: 1478
X-Firefox-Spdy: h2
www.didcomms.co.uk/wp-content/plugins/search-in-place/css/codepeople_shearch_in_place.min.css?ver=1.0.103
149.202.166.135200 OK 8.8 kB URL HTTP/2 www.didcomms.co.uk/wp-content/plugins/search-in-place/css/codepeople_shearch_in_place.min.css?ver=1.0.103
IP 149.202.166.135:0
File type ASCII text, with very long lines (2781), with no line terminators
Hash 2a52e0c59312f48523bfd309646a8845
c363ffc0ba15fada8cbd65663c8643e9a2bd01c5
1967cef3786781c4f63a97c16b326b3a63d967d1e9355e3d622528ed3dc531e1
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/search-in-place/css/codepeople_shearch_in_place.min.css?ver=1.0.103 HTTP/1.1
Host: www.didcomms.co.uk
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.didcomms.co.uk/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 21 Sep 2022 03:25:35 GMT
content-type: text/css
last-modified: Wed, 07 Sep 2022 16:18:36 GMT
etag: W/"6318c45c-add"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
www.google.com/recaptcha/api2/aframe
142.250.74.164200 OK 511 B URL HTTP/2 www.google.com/recaptcha/api2/aframe
IP 142.250.74.164:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (783), with no line terminators
Hash cbbab62733d77f15a4d3b5384696e86b
e5e01f6c00580d7830eb92bfdbe0d5e36f24c66b
c582256db928902a5a1788bb1c4c05d156eac691269a24195c7405b5c1ee7f82
GET /recaptcha/api2/aframe HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.didcomms.co.uk/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
cross-origin-resource-policy: cross-origin
cross-origin-embedder-policy: require-corp
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
expires: Wed, 21 Sep 2022 03:25:38 GMT
date: Wed, 21 Sep 2022 03:25:38 GMT
cache-control: private, max-age=300
content-type: text/html; charset=utf-8
content-security-policy: script-src 'nonce-UyqUtoHH18eOYca0iZZ9uw' 'unsafe-inline' 'strict-dynamic' https: http: 'unsafe-eval';object-src 'none';base-uri 'self';report-uri https://csp.withgoogle.com/csp/recaptcha/1
content-encoding: gzip
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
content-length: 511
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.googletagservices.com/activeview/js/current/rx_lidar_reach.js?cache=r20110914
142.250.74.34200 OK 72 kB URL HTTP/2 www.googletagservices.com/activeview/js/current/rx_lidar_reach.js?cache=r20110914
IP 142.250.74.34:0
File type ASCII text, with very long lines (3506)
Hash 4817354959684a6e419207c7e404169d
ac23c177f968d1cb287f676140f9f469c348f40d
e278d624c62cc039b715214ad52f850c92b33a77be0832d3eaab1bbebc423cef
GET /activeview/js/current/rx_lidar_reach.js?cache=r20110914 HTTP/1.1
Host: www.googletagservices.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://googleads.g.doubleclick.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-type: text/javascript
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/active-view-scs-read-write-acl
cross-origin-opener-policy: same-origin; report-to="active-view-scs-read-write-acl"
report-to: {"group":"active-view-scs-read-write-acl","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/active-view-scs-read-write-acl"}]}
content-length: 71657
date: Wed, 21 Sep 2022 03:25:38 GMT
expires: Wed, 21 Sep 2022 03:25:38 GMT
cache-control: private, max-age=3000
etag: "1663587528796173"
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.didcomms.co.uk/arc-sw?propertyId=7DEbpruv&seeder=true
149.202.166.135200 OK 1.4 kB URL HTTP/2 www.didcomms.co.uk/arc-sw?propertyId=7DEbpruv&seeder=true
IP 149.202.166.135:0
File type ASCII text, with very long lines (3351), with no line terminators
Hash bd4728fd091146312db3659d9d72fabb
506e705786c99f15dad2598a3dcb6355440cbe9d
178e2994e65363f4498d2605abf14c75a43f5926af3f1f58b30f2d9933ec52cd
GET /arc-sw?propertyId=7DEbpruv&seeder=true HTTP/1.1
Host: www.didcomms.co.uk
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Service-Worker: script
Connection: keep-alive
Cookie: PHPSESSID=jp83q2kj1tla53gt777cikqdrg; __atuvc=1%7C38; __atuvs=632a843006807be5000; _fbp=fb.2.1663730736980.1991545869; __gads=ID=f59277d7db261e55-2271132d28ce00ee:T=1663730737:RT=1663730737:S=ALNI_MY5uIl-DN3z2qz67yBBwgU7M-nyfg; _ga=GA1.3.653884386.1663730737; _gid=GA1.3.1068428554.1663730737; _gat_gtag_UA_169366328_1=1
Sec-Fetch-Dest: serviceworker
Sec-Fetch-Mode: same-origin
Sec-Fetch-Site: same-origin
If-Modified-Since: Sat, 31 Jul 2021 01:05:06 GMT
If-None-Match: "6104a1c2-569-gzip"
Cache-Control: max-age=0
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 21 Sep 2022 03:25:38 GMT
content-type: application/javascript
content-length: 1385
expires: Thu, 19 Nov 1981 08:52:00 GMT
pragma: no-cache
access-control-allow-origin: *
strict-transport-security: max-age=15724800; includeSubDomains
cache-control: public, max-age=3600, must-revalidate
vary: Accept-Encoding
x-cache: RefreshHit from cloudfront
via: 1.1 c334b6410f9d489eb2a951a4371f3d18.cloudfront.net (CloudFront)
x-amz-cf-pop: LHR61-C1
x-amz-cf-id: HuBwO22T7t-xte0JLdp3QG5VFQcAUUXn0EdjBXjGJ89wzkWRRzRtOg==
last-modified: Sat, 31 Jul 2021 01:05:06 GMT
etag: "6104a1c2-569-gzip"
content-encoding: gzip
x-powered-by: PHP/7.4.16, PleskLin
X-Firefox-Spdy: h2
www.didcomms.co.uk/sp-push-worker-fb.js
149.202.166.135200 OK 92 B URL HTTP/2 www.didcomms.co.uk/sp-push-worker-fb.js
IP 149.202.166.135:0
Hash 1902a3e2a076a7729233d182aad3b2e3
e059fc8edd8d29932537d6664f5baaeca8a0508e
16befdcfd3d3803a0502c90beb25df05329d6ac6ddab12b71cf46e7b46312a4d
Analyzer Verdict Alert fortinet Phishing
GET /sp-push-worker-fb.js HTTP/1.1
Host: www.didcomms.co.uk
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Service-Worker: script
Connection: keep-alive
Cookie: PHPSESSID=jp83q2kj1tla53gt777cikqdrg; __atuvc=1%7C38; __atuvs=632a843006807be5000; _fbp=fb.2.1663730736980.1991545869; __gads=ID=f59277d7db261e55-2271132d28ce00ee:T=1663730737:RT=1663730737:S=ALNI_MY5uIl-DN3z2qz67yBBwgU7M-nyfg; _ga=GA1.3.653884386.1663730737; _gid=GA1.3.1068428554.1663730737; _gat_gtag_UA_169366328_1=1
Sec-Fetch-Dest: serviceworker
Sec-Fetch-Mode: same-origin
Sec-Fetch-Site: same-origin
If-Modified-Since: Sun, 14 Jun 2020 14:53:48 GMT
If-None-Match: "49-5a80c7a4d7635-gzip"
Cache-Control: max-age=0
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 21 Sep 2022 03:25:38 GMT
content-type: application/javascript
content-length: 92
x-accel-version: 0.01
last-modified: Sun, 14 Jun 2020 14:53:48 GMT
etag: "49-5a80c7a4d7635-gzip"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
x-powered-by: PleskLin
X-Firefox-Spdy: h2
static.arc.io/broker/js/broker.b281d075.js
194.242.11.186200 OK 22 kB URL HTTP/2 static.arc.io/broker/js/broker.b281d075.js
IP 194.242.11.186:0
ASN #34989 ServeTheWorld AS
File type ASCII text, with very long lines (24373), with no line terminators
Hash b78118f4bd8c1910d0208cb3d4d000db
df07343cea3f63dc63c4f2455cd6783071748c70
1f90a9a75fd1e7b180baf535b4997bcc88cb0a300f9687bd4a507cf9950bdc38
GET /broker/js/broker.b281d075.js HTTP/1.1
Host: static.arc.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://core.arc.io
Connection: keep-alive
Referer: https://core.arc.io/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
date: Wed, 21 Sep 2022 03:25:36 GMT
content-type: application/javascript
server: BunnyCDN-NO-830
cdn-pullzone: 786569
cdn-uid: 1756f224-b505-436a-b48a-b92ddf4fdbea
cdn-requestcountrycode: NO
vary: Accept-Encoding, Accept-Encoding
access-control-allow-methods: GET, HEAD
access-control-allow-origin: *
access-control-expose-headers: Content-Length, Content-Type, Content-MD5, ETag
access-control-max-age: 86400
cache-control: public, max-age=2592000
etag: W/"8c5f6da1d62d33cc4c32a8ce63be2bf6"
last-modified: Wed, 19 Jan 2022 23:33:03 GMT
x-amz-id-2: 15mXd8XH2lx2CE03B29NPUH0DZY/LOqIKeKzeLqmQNgXs1snFjVDp9XICA09Vhudm/HuQ+kRbm0=
x-amz-request-id: 1BTZ9YPB4J9E9E0X
cdn-proxyver: 1.02
cdn-requestpullsuccess: True
cdn-requestpullcode: 200
cdn-cachedat: 08/14/2022 14:32:18
cdn-edgestorageid: 830
cdn-status: 200
cdn-requestid: 94be1d24eedaa89fcb93bdfc6fa64288
cdn-cache: HIT
content-encoding: br
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 7477b093e3c40818346fbf41c78a74f6
a5a2bbd87395998cfaa5981bc45be122f7922731
92d3884b66d9017e642c105c6dd203b6664c43d826023628815243aa84bfa20d
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "92D3884B66D9017E642C105C6DD203B6664C43D826023628815243AA84BFA20D"
Last-Modified: Mon, 19 Sep 2022 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2108
Expires: Wed, 21 Sep 2022 04:00:47 GMT
Date: Wed, 21 Sep 2022 03:25:39 GMT
Connection: keep-alive
warden.arc.io/mailbox/nodes/WKpXxyiB6ZRKrCVZacfeKU
18.223.141.84204 No Content 0 B URL HTTP/2 warden.arc.io/mailbox/nodes/WKpXxyiB6ZRKrCVZacfeKU
IP 18.223.141.84:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /mailbox/nodes/WKpXxyiB6ZRKrCVZacfeKU HTTP/1.1
Host: warden.arc.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 284
Origin: https://www.didcomms.co.uk
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Referer: https://www.didcomms.co.uk/
Connection: keep-alive
HTTP/2 204 No Content
date: Wed, 21 Sep 2022 03:25:39 GMT
access-control-allow-origin: *
etag: W/"a-bAsFyilMr4Ra1hIU5PyoyFRunpI"
strict-transport-security: max-age=15724800; includeSubDomains
X-Firefox-Spdy: h2
static.arc.io/widget/js/widget-sc-client.js?197dbd2e
194.242.11.186200 OK 1.6 kB URL HTTP/2 static.arc.io/widget/js/widget-sc-client.js?197dbd2e
IP 194.242.11.186:0
ASN #34989 ServeTheWorld AS
File type ASCII text, with very long lines (3151), with no line terminators
Hash bcdf529d6cc9b6249e77d7681a9cc4f5
6a039696532a54a72252b30a6299bd34df3d2a9d
103387bb22dc759a42897aa27c2b255d391e8831a4b8ecc69e3f768ede65499b
GET /widget/js/widget-sc-client.js?197dbd2e HTTP/1.1
Host: static.arc.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Referer: https://www.didcomms.co.uk/
Connection: keep-alive
Cookie: widgetOptState={%22state%22:%22UNDECIDED%22%2C%22date%22:%222022-09-21T03:25:36.721Z%22%2C%22dismissedAt%22:null}
TE: trailers
HTTP/2 200 OK
date: Wed, 21 Sep 2022 03:25:39 GMT
content-type: application/javascript
server: BunnyCDN-NO-830
cdn-pullzone: 786569
cdn-uid: 1756f224-b505-436a-b48a-b92ddf4fdbea
cdn-requestcountrycode: NO
vary: Accept-Encoding, Accept-Encoding
access-control-allow-methods: GET, HEAD
access-control-allow-origin: *
access-control-expose-headers: Content-Length, Content-Type, Content-MD5, ETag
access-control-max-age: 86400
cache-control: public, max-age=2592000, stale-while-revalidate=864000
etag: W/"14884d9e881791d580471ec30f89f22a"
last-modified: Mon, 08 Aug 2022 22:09:02 GMT
x-amz-id-2: URaeHor7BKsSAtcnqISpEn6E3w+xeceiV+yk3tYl1MHAPfIYu6QUy/mqJlWlIX9KQaPnVYygXzU=
x-amz-request-id: ZEX3NT5QY6GPK09Y
cdn-proxyver: 1.02
cdn-requestpullsuccess: True
cdn-requestpullcode: 200
cdn-cachedat: 08/09/2022 11:22:23
cdn-edgestorageid: 830
cdn-status: 200
cdn-requestid: 4b94b0ea79c2b69c964f038798daa4d6
cdn-cache: HIT
content-encoding: br
X-Firefox-Spdy: h2
static.arc.io/widget/js/chunk-2d2088b3.js?360a2c90
194.242.11.186200 OK 315 B URL HTTP/2 static.arc.io/widget/js/chunk-2d2088b3.js?360a2c90
IP 194.242.11.186:0
ASN #34989 ServeTheWorld AS
Hash 13eaebe4e29034d425678c249cd51b75
078e1baa91d1761283e0478996fc0087f4805630
e9ed8048b12e3ec2f7cd4b9775206a6b78c0716594c1cf2ad808ee087556e158
GET /widget/js/chunk-2d2088b3.js?360a2c90 HTTP/1.1
Host: static.arc.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Referer: https://www.didcomms.co.uk/
Connection: keep-alive
Cookie: widgetOptState={%22state%22:%22UNDECIDED%22%2C%22date%22:%222022-09-21T03:25:36.721Z%22%2C%22dismissedAt%22:null}
TE: trailers
HTTP/2 200 OK
date: Wed, 21 Sep 2022 03:25:40 GMT
content-type: application/javascript
server: BunnyCDN-NO-830
cdn-pullzone: 786569
cdn-uid: 1756f224-b505-436a-b48a-b92ddf4fdbea
cdn-requestcountrycode: NO
vary: Accept-Encoding, Accept-Encoding
access-control-allow-methods: GET, HEAD
access-control-allow-origin: *
access-control-expose-headers: Content-Length, Content-Type, Content-MD5, ETag
access-control-max-age: 86400
cache-control: public, max-age=2592000, stale-while-revalidate=864000
etag: W/"bfe83fab8495f421e2bc68ebf7e1230f"
last-modified: Thu, 15 Sep 2022 21:56:05 GMT
x-amz-id-2: CdaLYzLf4kNbULVumCt1u2GlYeTBz0Qq9U/shD3X4sD+8ItoEH2y0blTcTHMSBpVHhnMDh8bdD8=
x-amz-request-id: 0WBFDHT7YDQKBFN9
cdn-proxyver: 1.02
cdn-requestpullsuccess: True
cdn-requestpullcode: 200
cdn-cachedat: 09/15/2022 21:57:01
cdn-edgestorageid: 830
cdn-status: 200
cdn-requestid: 107306db7a53de0ea519e793f564a154
cdn-cache: HIT
content-encoding: br
X-Firefox-Spdy: h2
strn.pl/ipfs/Qmb6SayMEofSSepGERswCNLdZG5ymXEgoqA6AqugS7Ziek/999?format=car&clientId=28acc875-c5e3-43f2-9afa-1751c388d278
37.19.222.215200 OK 558 B URL HTTP/2 strn.pl/ipfs/Qmb6SayMEofSSepGERswCNLdZG5ymXEgoqA6AqugS7Ziek/999?format=car&clientId=28acc875-c5e3-43f2-9afa-1751c388d278
IP 37.19.222.215:0
ASN #60068 Datacamp Limited
Hash d3286ffbcd15b760259a9de96f9a54da
24b575c8e3859028c780e6df131d0f5ff2e930b1
f1616567482bda3c16a637c661c846fb42c97f2d453cc62c87d34818550ad3ab
GET /ipfs/Qmb6SayMEofSSepGERswCNLdZG5ymXEgoqA6AqugS7Ziek/999?format=car&clientId=28acc875-c5e3-43f2-9afa-1751c388d278 HTTP/1.1
Host: strn.pl
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.didcomms.co.uk
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Referer: https://www.didcomms.co.uk/
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Wed, 21 Sep 2022 03:25:41 GMT
content-type: application/vnd.ipld.car; version=1
content-length: 558
cache-control: public, max-age=29030400, immutable
saturn-node-id: e44da331-851c-4786-b630-8e600f8ac2f3
saturn-node-version: 342_6a9edb9
content-disposition: attachment; filename="QmRcQCkjwH1oN6XMmQJMQVqaQvoRK7ud4j7yanUjxvdstx.car"; filename*=UTF-8''QmRcQCkjwH1oN6XMmQJMQVqaQvoRK7ud4j7yanUjxvdstx.car
etag: W/"QmRcQCkjwH1oN6XMmQJMQVqaQvoRK7ud4j7yanUjxvdstx.car"
x-ipfs-path: /ipfs/Qmb6SayMEofSSepGERswCNLdZG5ymXEgoqA6AqugS7Ziek/999
x-ipfs-roots: Qmb6SayMEofSSepGERswCNLdZG5ymXEgoqA6AqugS7Ziek,QmRcQCkjwH1oN6XMmQJMQVqaQvoRK7ud4j7yanUjxvdstx
x-ipfs-datasize: 558
x-content-type-options: nosniff
saturn-cache-status: HIT
saturn-transfer-id: 0c5ee6e6e15d269db6519b5c1cbfa256
timing-allow-origin: *
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range
access-control-expose-headers: *
strict-transport-security: max-age=63072000; includeSubDomains; preload
alt-svc: h3-27=":443"; ma=86400, h3-28=":443"; ma=86400, h3-29=":443"; ma=86400, h3=":443"; ma=86400
X-Firefox-Spdy: h2
strn.pl/ipfs/QmSQqoqC7QMWqtkPhTifgSHuinXEC8JQStVW6qHRN4hNCK?format=car&clientId=28acc875-c5e3-43f2-9afa-1751c388d278
37.19.222.215200 OK 285 B URL HTTP/2 strn.pl/ipfs/QmSQqoqC7QMWqtkPhTifgSHuinXEC8JQStVW6qHRN4hNCK?format=car&clientId=28acc875-c5e3-43f2-9afa-1751c388d278
IP 37.19.222.215:0
ASN #60068 Datacamp Limited
Hash 3cd8a6d2feb391bae7724b8288742d61
e73a32dfb862a5a03c03223bd4e6523e9b80070e
679b0c74bb6821aaf004c4a2d4242fd361d0d6c89e3ffd5cda46a7951cdae6fc
GET /ipfs/QmSQqoqC7QMWqtkPhTifgSHuinXEC8JQStVW6qHRN4hNCK?format=car&clientId=28acc875-c5e3-43f2-9afa-1751c388d278 HTTP/1.1
Host: strn.pl
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.didcomms.co.uk
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Referer: https://www.didcomms.co.uk/
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 21 Sep 2022 03:25:42 GMT
content-type: application/vnd.ipld.car; version=1
content-length: 285
cache-control: public, max-age=29030400, immutable
saturn-node-id: e44da331-851c-4786-b630-8e600f8ac2f3
saturn-node-version: 342_6a9edb9
content-disposition: attachment; filename="QmSQqoqC7QMWqtkPhTifgSHuinXEC8JQStVW6qHRN4hNCK.car"; filename*=UTF-8''QmSQqoqC7QMWqtkPhTifgSHuinXEC8JQStVW6qHRN4hNCK.car
etag: W/"QmSQqoqC7QMWqtkPhTifgSHuinXEC8JQStVW6qHRN4hNCK.car"
x-ipfs-path: /ipfs/QmSQqoqC7QMWqtkPhTifgSHuinXEC8JQStVW6qHRN4hNCK
x-ipfs-roots: QmSQqoqC7QMWqtkPhTifgSHuinXEC8JQStVW6qHRN4hNCK
x-ipfs-datasize: 285
x-content-type-options: nosniff
saturn-cache-status: HIT
saturn-transfer-id: 52f8c41c2316838a9dee4f1c4f9419aa
timing-allow-origin: *
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range
access-control-expose-headers: *
strict-transport-security: max-age=63072000; includeSubDomains; preload
alt-svc: h3-27=":443"; ma=86400, h3-28=":443"; ma=86400, h3-29=":443"; ma=86400, h3=":443"; ma=86400
X-Firefox-Spdy: h2
fonts.googleapis.com/css?family=Open+Sans%3A400%2C400italic%2C300%2C700%7COpen+Sans+Condensed%3A300%2C300italic%2C700&ver=6.0.2
142.250.74.10200 OK 0 B URL HTTP/2 fonts.googleapis.com/css?family=Open+Sans%3A400%2C400italic%2C300%2C700%7COpen+Sans+Condensed%3A300%2C300italic%2C700&ver=6.0.2
IP 142.250.74.10:0
GET /css?family=Open+Sans%3A400%2C400italic%2C300%2C700%7COpen+Sans+Condensed%3A300%2C300italic%2C700&ver=6.0.2 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.didcomms.co.uk/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Wed, 21 Sep 2022 03:25:35 GMT
date: Wed, 21 Sep 2022 03:25:35 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.didcomms.co.uk/wp-content/themes/accesspress-pro/css/nivo-lightbox.css?ver=6.0.2
149.202.166.135200 OK 0 B URL HTTP/2 www.didcomms.co.uk/wp-content/themes/accesspress-pro/css/nivo-lightbox.css?ver=6.0.2
IP 149.202.166.135:0
GET /wp-content/themes/accesspress-pro/css/nivo-lightbox.css?ver=6.0.2 HTTP/1.1
Host: www.didcomms.co.uk
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.didcomms.co.uk/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 21 Sep 2022 03:25:35 GMT
content-type: text/css
last-modified: Sun, 14 Jun 2020 14:53:51 GMT
etag: W/"5ee639ff-202b"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
www.didcomms.co.uk/wp-content/plugins/site-reviews/assets/styles/default.css?ver=6.0.5
149.202.166.135200 OK 0 B URL HTTP/2 www.didcomms.co.uk/wp-content/plugins/site-reviews/assets/styles/default.css?ver=6.0.5
IP 149.202.166.135:0
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/site-reviews/assets/styles/default.css?ver=6.0.5 HTTP/1.1
Host: www.didcomms.co.uk
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.didcomms.co.uk/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 21 Sep 2022 03:25:35 GMT
content-type: text/css
last-modified: Fri, 16 Sep 2022 15:11:46 GMT
etag: W/"63249232-5d74"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
www.didcomms.co.uk/wp-content/themes/accesspress-pro/css/TimeCircles.css?ver=6.0.2
149.202.166.135200 OK 0 B URL HTTP/2 www.didcomms.co.uk/wp-content/themes/accesspress-pro/css/TimeCircles.css?ver=6.0.2
IP 149.202.166.135:0
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/accesspress-pro/css/TimeCircles.css?ver=6.0.2 HTTP/1.1
Host: www.didcomms.co.uk
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.didcomms.co.uk/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 21 Sep 2022 03:25:35 GMT
content-type: text/css
last-modified: Sun, 14 Jun 2020 14:53:51 GMT
etag: W/"5ee639ff-5c1"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
www.didcomms.co.uk/wp-content/plugins/email-subscribers-premium/starter/assets/js/starter-main.js?ver=4.8.3
149.202.166.135200 OK 0 B URL HTTP/2 www.didcomms.co.uk/wp-content/plugins/email-subscribers-premium/starter/assets/js/starter-main.js?ver=4.8.3
IP 149.202.166.135:0
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/email-subscribers-premium/starter/assets/js/starter-main.js?ver=4.8.3 HTTP/1.1
Host: www.didcomms.co.uk
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.didcomms.co.uk/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 21 Sep 2022 03:25:35 GMT
content-type: application/javascript
last-modified: Wed, 29 Sep 2021 11:38:44 GMT
etag: W/"61545044-69e"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
www.didcomms.co.uk/wp-content/themes/accesspress-pro/css/fonts/fontawesome-webfont.woff2?v=4.5.0
149.202.166.135200 OK 0 B URL HTTP/2 www.didcomms.co.uk/wp-content/themes/accesspress-pro/css/fonts/fontawesome-webfont.woff2?v=4.5.0
IP 149.202.166.135:0
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/accesspress-pro/css/fonts/fontawesome-webfont.woff2?v=4.5.0 HTTP/1.1
Host: www.didcomms.co.uk
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://www.didcomms.co.uk/wp-content/themes/accesspress-pro/css/font-awesome.min.css?ver=6.0.2
Cookie: PHPSESSID=jp83q2kj1tla53gt777cikqdrg
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 21 Sep 2022 03:25:36 GMT
content-type: font/woff2
content-length: 66624
last-modified: Sun, 14 Jun 2020 14:53:51 GMT
etag: "5ee639ff-10440"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
static.arc.io/broker/js/chunk-vendors.5e1d8045.js
194.242.11.186200 OK 0 B URL HTTP/2 static.arc.io/broker/js/chunk-vendors.5e1d8045.js
IP 194.242.11.186:0
ASN #34989 ServeTheWorld AS
GET /broker/js/chunk-vendors.5e1d8045.js HTTP/1.1
Host: static.arc.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://core.arc.io
Connection: keep-alive
Referer: https://core.arc.io/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
date: Wed, 21 Sep 2022 03:25:36 GMT
content-type: application/javascript
server: BunnyCDN-NO-830
cdn-pullzone: 786569
cdn-uid: 1756f224-b505-436a-b48a-b92ddf4fdbea
cdn-requestcountrycode: NO
vary: Accept-Encoding, Accept-Encoding
access-control-allow-methods: GET, HEAD
access-control-allow-origin: *
access-control-expose-headers: Content-Length, Content-Type, Content-MD5, ETag
access-control-max-age: 86400
cache-control: public, max-age=2592000
etag: W/"7baaa27cb0e1201fe90ecc5efca8fbcf"
last-modified: Wed, 19 Jan 2022 23:33:03 GMT
x-amz-id-2: Lg09pm0SMLA2gDpgvbsYLOJ6t8VM7iye6bHwugpdkzqKL5tqPfuDc6xQsPbM2BumjX36g9SpKpc=
x-amz-request-id: K2YYHZ7GZXR992N5
cdn-proxyver: 1.02
cdn-requestpullsuccess: True
cdn-requestpullcode: 200
cdn-cachedat: 06/29/2022 22:31:25
cdn-edgestorageid: 830
cdn-status: 200
cdn-requestid: 7ee9a136d2d1adaadde3d337971c8c12
cdn-cache: HIT
content-encoding: br
X-Firefox-Spdy: h2
www.didcomms.co.uk/wp-content/plugins/search-in-place/js/codepeople_shearch_in_place.min.js?ver=1.0.103
149.202.166.135200 OK 0 B URL HTTP/2 www.didcomms.co.uk/wp-content/plugins/search-in-place/js/codepeople_shearch_in_place.min.js?ver=1.0.103
IP 149.202.166.135:0
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/search-in-place/js/codepeople_shearch_in_place.min.js?ver=1.0.103 HTTP/1.1
Host: www.didcomms.co.uk
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.didcomms.co.uk/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 21 Sep 2022 03:25:35 GMT
content-type: application/javascript
last-modified: Wed, 07 Sep 2022 16:18:36 GMT
etag: W/"6318c45c-32bc"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
www.didcomms.co.uk/wp-content/themes/accesspress-pro/js/TimeCircles.js?ver=1.0
149.202.166.135200 OK 0 B URL HTTP/2 www.didcomms.co.uk/wp-content/themes/accesspress-pro/js/TimeCircles.js?ver=1.0
IP 149.202.166.135:0
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/accesspress-pro/js/TimeCircles.js?ver=1.0 HTTP/1.1
Host: www.didcomms.co.uk
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.didcomms.co.uk/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 21 Sep 2022 03:25:35 GMT
content-type: application/javascript
last-modified: Sun, 14 Jun 2020 14:53:51 GMT
etag: W/"5ee639ff-8708"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
static.arc.io/broker/js/lazy-iwc.9b430e25.js
194.242.11.186200 OK 0 B URL HTTP/2 static.arc.io/broker/js/lazy-iwc.9b430e25.js
IP 194.242.11.186:0
ASN #34989 ServeTheWorld AS
GET /broker/js/lazy-iwc.9b430e25.js HTTP/1.1
Host: static.arc.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Moz: prefetch
Connection: keep-alive
Referer: https://core.arc.io/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
date: Wed, 21 Sep 2022 03:25:37 GMT
content-type: application/javascript
server: BunnyCDN-NO-830
cdn-pullzone: 786569
cdn-uid: 1756f224-b505-436a-b48a-b92ddf4fdbea
cdn-requestcountrycode: NO
vary: Accept-Encoding, Accept-Encoding
access-control-allow-methods: GET, HEAD
access-control-allow-origin: *
access-control-expose-headers: Content-Length, Content-Type, Content-MD5, ETag
access-control-max-age: 86400
cache-control: public, max-age=2592000
etag: W/"7fd8734437dbdc553c3513d10d0c0a97"
last-modified: Wed, 19 Jan 2022 23:33:03 GMT
x-amz-id-2: 0pqtvhmktNzG/kuXS+f70yU/1nrs8NiaC5jbPx0Ogn1zHjS1MBw3Ld9u+2vBvs1RgznasANnNaM=
x-amz-request-id: P7W24ZM6DAWWT664
cdn-proxyver: 1.02
cdn-requestpullsuccess: True
cdn-requestpullcode: 200
cdn-cachedat: 07/30/2022 16:48:02
cdn-edgestorageid: 830
cdn-status: 200
cdn-requestid: 4734b0535e3191b8b254a0c1c41b8ebc
cdn-cache: HIT
content-encoding: br
X-Firefox-Spdy: h2
web.webpushs.com/js/push/71be86e99ce47b44ecc258fb25ca629a_1.js
185.76.9.19200 OK 0 B URL HTTP/2 web.webpushs.com/js/push/71be86e99ce47b44ecc258fb25ca629a_1.js
IP 185.76.9.19:0
ASN #60068 Datacamp Limited
GET /js/push/71be86e99ce47b44ecc258fb25ca629a_1.js HTTP/1.1
Host: web.webpushs.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.didcomms.co.uk/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 21 Sep 2022 03:25:35 GMT
content-type: application/javascript
last-modified: Thu, 25 Feb 2021 20:11:00 GMT
etag: W/"1cc20-5bc2ec0182d63"
vary: Accept-Encoding, Accept-Encoding,User-Agent
access-control-allow-origin: *
x-sp-ma: sp-ma-2
content-security-policy: default-src wss://* blob: data: sendpulse.com *.sendpulse.com *.sendpulse.com:4434 data.sendpulse.com *.pulse-stat.com *.stat-pulse.com *.pulse-stat.com:8080 *.stat-pulse.com:8080 http://*.sendpulse.com:4434 wss://ws.binotel.com:9002 http://*.pulse-stat.com http://*.stat-pulse.com http://*.pulse-stat.com:8080 http://*.stat-pulse.com:8080 *.sendpulse.ua *.sendpulse.by *.sendpulse.kz *.sendpulse.cl *.sendpulse.com.tr *.sendpulse.ng sendpul.se *.sendpul.se *.loginsrc.com *.routee.net *.routee.net:444 *.bizml.ru *.jquery.com *.youtube.com *.ytimg.com *.vimeo.com *.vimeocdn.com *.tinymce.com *.ampproject.org *.hotjar.com *.hotjar.io *.ipinfo.io *.highcharts.com *.appspot.com *.doubleclick.net *.facebook.com *.facebook.net *.fbcdn.net *.fbsbx.com *.rawgit.com *.cloudflare.com *.jsdelivr.net *.kissmetrics.com *.bitrix24.com *.quantserve.com *.quantcount.com *.twitter.com *.offershub.ru *.stripe.com *.braintreegateway.com *.mlstatic.com *.cloudpayments.ru *.woopra.com *.jivosite.com *.google.com *.google.com.ua *.googleadservices.com *.google-analytics.com *.googleapis.com *.googletagmanager.com *.gstatic.com *.online-metrix.net *.retently.com *.maxmind.com *.revisionme.com *.yandex.ru *.ymetrica.ru *.mmapiws.com *.bootstrapcdn.com *.kaptcha.com *.paypal.com *.paypalobjects.com *.mercadopago.com.br *.mercadopago.com *.braintree-api.com vk.com api.telegram.org *.webformscr.com *.yandex.net *.cardinalcommerce.com *.mercadolibre.com *.supportsrc.com *.instagram.com s3.eu-central-1.amazonaws.com *.googleoptimize.com *.privatbank.ua *.cardinalcommerce.com 'self' 'unsafe-eval' 'unsafe-inline'; img-src blob: data: *; font-src data: *; style-src * 'unsafe-inline';, frame-ancestors 'self';
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
expires: Wed, 28 Sep 2022 03:25:35 GMT
cache-control: max-age=604800
x-sp-pr: lpr9
x-accel-expires: @1664335535
server: CDN77-Turbo
x-77-nzt: AblMCQ2ZA9/B
x-77-nzt-ray: xbuyz19qfw4
x-cache: MISS
x-77-pop: stockholmSE
x-77-cache: MISS
content-encoding: br
X-Firefox-Spdy: h2
static.arc.io/widget/js/vendors~widget-sc-client.js?35fccb86
194.242.11.186200 OK 0 B URL HTTP/2 static.arc.io/widget/js/vendors~widget-sc-client.js?35fccb86
IP 194.242.11.186:0
ASN #34989 ServeTheWorld AS
GET /widget/js/vendors~widget-sc-client.js?35fccb86 HTTP/1.1
Host: static.arc.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Referer: https://www.didcomms.co.uk/
Connection: keep-alive
Cookie: widgetOptState={%22state%22:%22UNDECIDED%22%2C%22date%22:%222022-09-21T03:25:36.721Z%22%2C%22dismissedAt%22:null}
TE: trailers
HTTP/2 200 OK
date: Wed, 21 Sep 2022 03:25:39 GMT
content-type: application/javascript
server: BunnyCDN-NO-830
cdn-pullzone: 786569
cdn-uid: 1756f224-b505-436a-b48a-b92ddf4fdbea
cdn-requestcountrycode: NO
vary: Accept-Encoding, Accept-Encoding
access-control-allow-methods: GET, HEAD
access-control-allow-origin: *
access-control-expose-headers: Content-Length, Content-Type, Content-MD5, ETag
access-control-max-age: 86400
cache-control: public, max-age=2592000, stale-while-revalidate=864000
etag: W/"fa12476f8ee3c92b8369e0c9d3b915f9"
last-modified: Fri, 22 Jul 2022 23:08:54 GMT
x-amz-id-2: gO56M4SIXfLCyIfgDnIkEYznO/aSxbiWzPzBnkEFGYql1RoX90Evh/ZoIMm/6C+bN1XQIlxZGrE=
x-amz-request-id: HMFZR25VHVX61V98
cdn-proxyver: 1.02
cdn-requestpullsuccess: True
cdn-requestpullcode: 200
cdn-cachedat: 07/25/2022 16:03:54
cdn-edgestorageid: 830
cdn-status: 200
cdn-requestid: 7d6e1ce024d76d790221e0e2c041ef79
cdn-cache: HIT
content-encoding: br
X-Firefox-Spdy: h2
static.arc.io/widget/js/vendors~widget-ui.js?c9b0de53
194.242.11.186200 OK 0 B URL HTTP/2 static.arc.io/widget/js/vendors~widget-ui.js?c9b0de53
IP 194.242.11.186:0
ASN #34989 ServeTheWorld AS
GET /widget/js/vendors~widget-ui.js?c9b0de53 HTTP/1.1
Host: static.arc.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.didcomms.co.uk/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 21 Sep 2022 03:25:36 GMT
content-type: application/javascript
server: BunnyCDN-NO-830
cdn-pullzone: 786569
cdn-uid: 1756f224-b505-436a-b48a-b92ddf4fdbea
cdn-requestcountrycode: NO
vary: Accept-Encoding, Accept-Encoding
access-control-allow-methods: GET, HEAD
access-control-allow-origin: *
access-control-expose-headers: Content-Length, Content-Type, Content-MD5, ETag
access-control-max-age: 86400
cache-control: public, max-age=2592000, stale-while-revalidate=864000
etag: W/"5f5181a44cab6b9ccdc03f0d9f46e177"
last-modified: Mon, 08 Aug 2022 22:09:02 GMT
x-amz-id-2: A9pqjKPrqIQflyxmXrVwzuzToR7cxaWclWx6NjnAerAt8ogrYlvolAtqoGvvdIsvqEeqAzY1AX0=
x-amz-request-id: 6ACY3P80RJNPZB5G
cdn-proxyver: 1.02
cdn-requestpullsuccess: True
cdn-requestpullcode: 200
cdn-cachedat: 08/14/2022 14:32:19
cdn-edgestorageid: 830
cdn-status: 200
cdn-requestid: 58af92f673f038579639e3741928775b
cdn-cache: HIT
content-encoding: br
X-Firefox-Spdy: h2
www.didcomms.co.uk/wp-content/themes/accesspress-pro/css/sequence-slider.css?ver=6.0.2
149.202.166.135200 OK 0 B URL HTTP/2 www.didcomms.co.uk/wp-content/themes/accesspress-pro/css/sequence-slider.css?ver=6.0.2
IP 149.202.166.135:0
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/accesspress-pro/css/sequence-slider.css?ver=6.0.2 HTTP/1.1
Host: www.didcomms.co.uk
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.didcomms.co.uk/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 21 Sep 2022 03:25:35 GMT
content-type: text/css
last-modified: Sun, 14 Jun 2020 14:53:51 GMT
etag: W/"5ee639ff-2459"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
www.didcomms.co.uk/wp-content/themes/accesspress-pro/css/superfish.css?ver=6.0.2
149.202.166.135200 OK 0 B URL HTTP/2 www.didcomms.co.uk/wp-content/themes/accesspress-pro/css/superfish.css?ver=6.0.2
IP 149.202.166.135:0
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/accesspress-pro/css/superfish.css?ver=6.0.2 HTTP/1.1
Host: www.didcomms.co.uk
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.didcomms.co.uk/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 21 Sep 2022 03:25:35 GMT
content-type: text/css
last-modified: Sun, 14 Jun 2020 14:53:51 GMT
etag: W/"5ee639ff-95a"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
www.didcomms.co.uk/wp-includes/js/wp-emoji.js?ver=6.0.2
149.202.166.135200 OK 0 B URL HTTP/2 www.didcomms.co.uk/wp-includes/js/wp-emoji.js?ver=6.0.2
IP 149.202.166.135:0
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/wp-emoji.js?ver=6.0.2 HTTP/1.1
Host: www.didcomms.co.uk
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.didcomms.co.uk/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 21 Sep 2022 03:25:35 GMT
content-type: application/javascript
last-modified: Sun, 14 Jun 2020 14:53:55 GMT
etag: W/"5ee63a03-231d"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
www.didcomms.co.uk/wp-content/plugins/sendpress/js/sendpress.signup.js?ver=1.22.3.31
149.202.166.135200 OK 0 B URL HTTP/2 www.didcomms.co.uk/wp-content/plugins/sendpress/js/sendpress.signup.js?ver=1.22.3.31
IP 149.202.166.135:0
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/sendpress/js/sendpress.signup.js?ver=1.22.3.31 HTTP/1.1
Host: www.didcomms.co.uk
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.didcomms.co.uk/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 21 Sep 2022 03:25:35 GMT
content-type: application/javascript
last-modified: Thu, 31 Mar 2022 16:25:33 GMT
etag: W/"6245d5fd-168e"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
www.didcomms.co.uk/wp-includes/js/jquery/jquery-migrate.js?ver=3.3.2
149.202.166.135200 OK 0 B URL HTTP/2 www.didcomms.co.uk/wp-includes/js/jquery/jquery-migrate.js?ver=3.3.2
IP 149.202.166.135:0
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/jquery/jquery-migrate.js?ver=3.3.2 HTTP/1.1
Host: www.didcomms.co.uk
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.didcomms.co.uk/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 21 Sep 2022 03:25:35 GMT
content-type: application/javascript
last-modified: Wed, 09 Dec 2020 13:36:07 GMT
etag: W/"5fd0d2c7-62d4"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
static.arc.io/widget/js/core.js?11d024e
194.242.11.186200 OK 0 B URL HTTP/2 static.arc.io/widget/js/core.js?11d024e
IP 194.242.11.186:0
ASN #34989 ServeTheWorld AS
GET /widget/js/core.js?11d024e HTTP/1.1
Host: static.arc.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.didcomms.co.uk
Connection: keep-alive
Referer: https://www.didcomms.co.uk/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 21 Sep 2022 03:25:36 GMT
content-type: application/javascript
server: BunnyCDN-NO-830
cdn-pullzone: 786569
cdn-uid: 1756f224-b505-436a-b48a-b92ddf4fdbea
cdn-requestcountrycode: NO
vary: Accept-Encoding, Accept-Encoding
access-control-allow-methods: GET, HEAD
access-control-allow-origin: *
access-control-expose-headers: Content-Length, Content-Type, Content-MD5, ETag
access-control-max-age: 86400
cache-control: public, max-age=2592000, stale-while-revalidate=864000
etag: W/"7afb4c5c0ab3ed4ac43e6bb5fbb7776b"
last-modified: Fri, 16 Sep 2022 20:28:02 GMT
x-amz-id-2: xBMVckB11LW7SoW7far4dtH2ocvR4RDMqDdUcrGZ6kOEz0sGg4CPxqNo6fKB41/BFPon38gFdM4=
x-amz-request-id: 9QK6TQFACM36BSAV
cdn-proxyver: 1.02
cdn-requestpullsuccess: True
cdn-requestpullcode: 200
cdn-cachedat: 09/16/2022 20:39:29
cdn-edgestorageid: 830
cdn-status: 200
cdn-requestid: 4cb1df159e9bc3cc3dfc8c472c91e5dc
cdn-cache: HIT
content-encoding: br
X-Firefox-Spdy: h2
www.didcomms.co.uk/wp-content/plugins/google-language-translator/css/style.css?ver=6.0.15
149.202.166.135200 OK 0 B URL HTTP/2 www.didcomms.co.uk/wp-content/plugins/google-language-translator/css/style.css?ver=6.0.15
IP 149.202.166.135:0
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/google-language-translator/css/style.css?ver=6.0.15 HTTP/1.1
Host: www.didcomms.co.uk
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.didcomms.co.uk/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 21 Sep 2022 03:25:35 GMT
content-type: text/css
last-modified: Wed, 11 May 2022 15:10:52 GMT
etag: W/"627bd1fc-1f7d7"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
www.didcomms.co.uk/wp-content/themes/accesspress-pro/style.css?ver=6.0.2
149.202.166.135200 OK 0 B URL HTTP/2 www.didcomms.co.uk/wp-content/themes/accesspress-pro/style.css?ver=6.0.2
IP 149.202.166.135:0
GET /wp-content/themes/accesspress-pro/style.css?ver=6.0.2 HTTP/1.1
Host: www.didcomms.co.uk
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.didcomms.co.uk/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 21 Sep 2022 03:25:35 GMT
content-type: text/css
last-modified: Sun, 14 Jun 2020 14:53:51 GMT
etag: W/"5ee639ff-151c6"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
www.didcomms.co.uk/wp-content/themes/accesspress-pro/css/jquery.bxslider.css?ver=6.0.2
149.202.166.135200 OK 0 B URL HTTP/2 www.didcomms.co.uk/wp-content/themes/accesspress-pro/css/jquery.bxslider.css?ver=6.0.2
IP 149.202.166.135:0
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/accesspress-pro/css/jquery.bxslider.css?ver=6.0.2 HTTP/1.1
Host: www.didcomms.co.uk
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.didcomms.co.uk/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 21 Sep 2022 03:25:35 GMT
content-type: text/css
last-modified: Sun, 14 Jun 2020 14:53:51 GMT
etag: W/"5ee639ff-11d0"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
core.arc.io/broker.html?11d024e
194.242.11.186200 OK 0 B URL HTTP/2 core.arc.io/broker.html?11d024e
IP 194.242.11.186:0
ASN #34989 ServeTheWorld AS
GET /broker.html?11d024e HTTP/1.1
Host: core.arc.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.didcomms.co.uk/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 21 Sep 2022 03:25:36 GMT
content-type: text/html
vary: Accept-Encoding
server: BunnyCDN-NO-830
cdn-pullzone: 786568
cdn-uid: 1756f224-b505-436a-b48a-b92ddf4fdbea
cdn-requestcountrycode: NO
access-control-allow-origin: *
cache-control: public, max-age=2592000
etag: W/"61e89f9d-612"
expires: Sun, 16 Oct 2022 20:56:58 GMT
last-modified: Wed, 19 Jan 2022 23:32:45 GMT
strict-transport-security: max-age=15724800; includeSubDomains
cdn-proxyver: 1.02
cdn-requestpullsuccess: True
cdn-requestpullcode: 200
cdn-cachedat: 09/16/2022 20:56:59
cdn-edgestorageid: 830
cdn-status: 200
cdn-requestid: cbaf721671b2673e3b531c31c462ad37
cdn-cache: HIT
content-encoding: br
X-Firefox-Spdy: h2
www.didcomms.co.uk/wp-content/plugins/wp-whatsapp/assets/dist/js/njt-whatsapp.js?ver=3.2
149.202.166.135200 OK 0 B URL HTTP/2 www.didcomms.co.uk/wp-content/plugins/wp-whatsapp/assets/dist/js/njt-whatsapp.js?ver=3.2
IP 149.202.166.135:0
GET /wp-content/plugins/wp-whatsapp/assets/dist/js/njt-whatsapp.js?ver=3.2 HTTP/1.1
Host: www.didcomms.co.uk
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.didcomms.co.uk/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 21 Sep 2022 03:25:35 GMT
content-type: application/javascript
last-modified: Wed, 13 Jul 2022 15:11:09 GMT
etag: W/"62cee08d-808a"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
static.arc.io/broker/js/lazy-modules.a169b1ec.js
194.242.11.186200 OK 0 B URL HTTP/2 static.arc.io/broker/js/lazy-modules.a169b1ec.js
IP 194.242.11.186:0
ASN #34989 ServeTheWorld AS
GET /broker/js/lazy-modules.a169b1ec.js HTTP/1.1
Host: static.arc.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://core.arc.io/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
date: Wed, 21 Sep 2022 03:25:36 GMT
content-type: application/javascript
server: BunnyCDN-NO-830
cdn-pullzone: 786569
cdn-uid: 1756f224-b505-436a-b48a-b92ddf4fdbea
cdn-requestcountrycode: NO
vary: Accept-Encoding, Accept-Encoding
access-control-allow-methods: GET, HEAD
access-control-allow-origin: *
access-control-expose-headers: Content-Length, Content-Type, Content-MD5, ETag
access-control-max-age: 86400
cache-control: public, max-age=2592000
etag: W/"32ab6174f553ec44ff554a5a2406b76d"
last-modified: Wed, 19 Jan 2022 23:33:03 GMT
x-amz-id-2: 1HPOvli1UWDpUZXFWu6CwdlYyQUcdV4wPGgPy4nfB7B6fDlC7Q604ob7CUR3XzVeynp2AAE8mww=
x-amz-request-id: ST1DTDBD2C8CBP39
cdn-proxyver: 1.02
cdn-requestpullsuccess: True
cdn-requestpullcode: 200
cdn-cachedat: 07/16/2022 07:43:24
cdn-edgestorageid: 830
cdn-status: 200
cdn-requestid: c153244622e6446f984b41d1d3f3c935
cdn-cache: HIT
content-encoding: br
X-Firefox-Spdy: h2
www.didcomms.co.uk/wp-content/plugins/google-language-translator/js/scripts.js?ver=6.0.15
149.202.166.135200 OK 0 B URL HTTP/2 www.didcomms.co.uk/wp-content/plugins/google-language-translator/js/scripts.js?ver=6.0.15
IP 149.202.166.135:0
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/google-language-translator/js/scripts.js?ver=6.0.15 HTTP/1.1
Host: www.didcomms.co.uk
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.didcomms.co.uk/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 21 Sep 2022 03:25:35 GMT
content-type: application/javascript
last-modified: Wed, 11 May 2022 15:10:52 GMT
etag: W/"627bd1fc-35e5"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
gateway.arc.io/cdnConfig/7DEbpruv
194.242.11.186200 OK 0 B URL HTTP/2 gateway.arc.io/cdnConfig/7DEbpruv
IP 194.242.11.186:0
ASN #34989 ServeTheWorld AS
GET /cdnConfig/7DEbpruv HTTP/1.1
Host: gateway.arc.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.didcomms.co.uk/
Origin: https://www.didcomms.co.uk
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 21 Sep 2022 03:25:37 GMT
content-type: application/json; charset=utf-8
vary: Accept-Encoding
server: BunnyCDN-NO-830
cdn-pullzone: 786568
cdn-uid: 1756f224-b505-436a-b48a-b92ddf4fdbea
cdn-requestcountrycode: NO
access-control-allow-origin: *
cache-control: public, max-age=1800, stale-while-revalidate=604800
etag: W/"2a1-CQNoBtyp227E2ViFrZTDIHLuXds"
timing-allow-origin: *
strict-transport-security: max-age=15724800; includeSubDomains
cdn-proxyver: 1.02
cdn-requestpullsuccess: True
cdn-requestpullcode: 200
cdn-cachedat: 09/21/2022 03:25:37
cdn-edgestorageid: 830
cdn-status: 200
cdn-requestid: fd853a7ca56b34e5276ab916fa604cc7
cdn-cache: EXPIRED
content-encoding: br
X-Firefox-Spdy: h2
static.arc.io/widget/js/widget-ui.js?784632c0
194.242.11.186200 OK 0 B URL HTTP/2 static.arc.io/widget/js/widget-ui.js?784632c0
IP 194.242.11.186:0
ASN #34989 ServeTheWorld AS
GET /widget/js/widget-ui.js?784632c0 HTTP/1.1
Host: static.arc.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.didcomms.co.uk/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 21 Sep 2022 03:25:36 GMT
content-type: application/javascript
server: BunnyCDN-NO-830
cdn-pullzone: 786569
cdn-uid: 1756f224-b505-436a-b48a-b92ddf4fdbea
cdn-requestcountrycode: NO
vary: Accept-Encoding, Accept-Encoding
access-control-allow-methods: GET, HEAD
access-control-allow-origin: *
access-control-expose-headers: Content-Length, Content-Type, Content-MD5, ETag
access-control-max-age: 86400
cache-control: public, max-age=2592000, stale-while-revalidate=864000
etag: W/"7b9dc001ae1d02594045f630c0c9760a"
last-modified: Thu, 01 Sep 2022 19:21:28 GMT
x-amz-id-2: sso+CjRy526e+aJLRNdKq8RjhZ6KoGwR6Y604T67KYRlvAXyQ4xEXLctgzgvzzy4W5PmUrRFebM=
x-amz-request-id: 0RKQT4A1JEK82HB5
cdn-proxyver: 1.02
cdn-requestpullsuccess: True
cdn-requestpullcode: 200
cdn-cachedat: 09/01/2022 19:27:00
cdn-edgestorageid: 830
cdn-status: 200
cdn-requestid: 8afd97fb9fa6eabac912940df73fef66
cdn-cache: HIT
content-encoding: br
X-Firefox-Spdy: h2
www.didcomms.co.uk/wp-content/themes/accesspress-pro/css/font-awesome.min.css?ver=6.0.2
149.202.166.135200 OK 0 B URL HTTP/2 www.didcomms.co.uk/wp-content/themes/accesspress-pro/css/font-awesome.min.css?ver=6.0.2
IP 149.202.166.135:0
GET /wp-content/themes/accesspress-pro/css/font-awesome.min.css?ver=6.0.2 HTTP/1.1
Host: www.didcomms.co.uk
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.didcomms.co.uk/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 21 Sep 2022 03:25:35 GMT
content-type: text/css
last-modified: Sun, 14 Jun 2020 14:53:51 GMT
etag: W/"5ee639ff-6b38"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
www.didcomms.co.uk/wp-content/plugins/wplegalpages/admin/js/jquery.cookie.min.js?ver=2.9.0
149.202.166.135200 OK 0 B URL HTTP/2 www.didcomms.co.uk/wp-content/plugins/wplegalpages/admin/js/jquery.cookie.min.js?ver=2.9.0
IP 149.202.166.135:0
GET /wp-content/plugins/wplegalpages/admin/js/jquery.cookie.min.js?ver=2.9.0 HTTP/1.1
Host: www.didcomms.co.uk
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.didcomms.co.uk/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 21 Sep 2022 03:25:35 GMT
content-type: application/javascript
last-modified: Mon, 01 Aug 2022 14:15:22 GMT
etag: W/"62e7dffa-514"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2