Overview

URL virtualedufairnepal.com/plus2/amarjyoti
IP172.104.49.54
ASNLinode, LLC
Location Singapore
Report completed2022-09-26 11:42:40 UTC
StatusLoading report..
urlquery Alerts No alerts detected


Settings

UserAgentMozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Referer


Intrusion Detection Systems

Suricata /w Emerging Threats Pro  No alerts detected


Blocklists

OpenPhish  No alerts detected
PhishTank  No alerts detected
Fortinet's Web Filter
Scan Date Severity Indicator Comment
2022-09-26 2 virtualedufairnepal.com/plus2/amarjyoti Phishing
2022-09-26 2 virtualedufairnepal.com/plus2/edufair/amarjyoti Phishing
2022-09-26 2 virtualedufairnepal.com/vendor/livewire/livewire.js?id=c69d0f2801c01fcf8166 Phishing
2022-09-26 2 virtualedufairnepal.com/theme/assets/js/dashmix.core.min.js Phishing
2022-09-26 2 virtualedufairnepal.com/theme/assets/js/main.js Phishing
2022-09-26 2 virtualedufairnepal.com/theme/assets/js/plugins/magnific-popup/jquery.magni (...) Phishing
2022-09-26 2 virtualedufairnepal.com/theme/assets/js/dashmix.app.min.js Phishing
2022-09-26 2 virtualedufairnepal.com/plus2/theme/assets/js/plugins/select2/js/select2.fu (...) Phishing
2022-09-26 2 virtualedufairnepal.com/theme/assets/js/plugins/bootstrap-notify/bootstrap- (...) Phishing
2022-09-26 2 virtualedufairnepal.com/theme/assets/js/plugins/magnific-popup/jquery.magni (...) Phishing
2022-09-26 2 virtualedufairnepal.com/plus2/theme/assets/js/plugins/select2/js/select2.fu (...) Phishing
2022-09-26 2 virtualedufairnepal.com/theme/assets/js/plugins/bootstrap-notify/bootstrap- (...) Phishing
mnemonic secure dns  No alerts detected
Quad9 DNS  No alerts detected


Files

URL fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2
IP  142.250.74.163
Magic gzip compressed data, max compression\012- data
Size 16002
MD5 2c5e576c986fa3babe2c32f4a7ca3f3c
SHA1 2f9f0aaf63ec000b07fc073c26fddfb6ab4e4466
SHA256 f560931ec3844307c32fb2b1503925261fc99f30ecd22d27664b104e13e5567c
Analyzer Analysed Verdict Comment
VirusTotal 0/0


Passive DNS (19)

Passive DNS Source Fully Qualifying Domain Name Rank First Seen Last Seen IP Comment
mnemonic passive DNS firefox.settings.services.mozilla.com (2) 867 2020-06-04 20:08:41 UTC 2022-09-26 04:51:20 UTC 143.204.55.36
mnemonic passive DNS content-signature-2.cdn.mozilla.net (1) 1152 2020-11-03 12:26:46 UTC 2022-09-26 04:26:56 UTC 143.204.55.25
mnemonic passive DNS www.facebook.com (3) 99 2017-01-30 05:00:00 UTC 2022-09-26 04:27:04 UTC 157.240.200.35
mnemonic passive DNS r3.o.lencr.org (5) 344 2020-12-02 08:52:13 UTC 2022-09-26 04:35:11 UTC 23.36.77.32
mnemonic passive DNS push.services.mozilla.com (1) 2140 2015-09-03 10:29:36 UTC 2022-09-26 05:45:55 UTC 35.160.51.228
mnemonic passive DNS ocsp.pki.goog (7) 175 2017-06-14 07:23:31 UTC 2022-09-26 04:27:13 UTC 142.250.74.3
mnemonic passive DNS img-getpocket.cdn.mozilla.net (6) 1631 2017-09-01 03:40:57 UTC 2022-09-26 04:43:33 UTC 34.120.237.76
mnemonic passive DNS www.google.com (1) 7 2016-08-04 12:36:31 UTC 2022-09-26 09:21:47 UTC 142.250.74.164
mnemonic passive DNS maps.gstatic.com (1) 0 2016-01-11 16:55:17 UTC 2022-09-26 06:51:08 UTC 142.250.74.163 Domain (gstatic.com) ranked at: 540
mnemonic passive DNS connect.facebook.net (1) 139 2012-05-22 02:51:28 UTC 2022-09-26 04:27:04 UTC 157.240.200.14
mnemonic passive DNS socialplugin.facebook.net (1) 0 2022-07-19 20:27:01 UTC 2022-09-26 05:42:10 UTC 157.240.200.16 Domain (facebook.net) ranked at: 20561
mnemonic passive DNS contile.services.mozilla.com (1) 1114 2021-05-27 18:32:35 UTC 2022-09-26 04:28:07 UTC 34.117.237.239
mnemonic passive DNS virtualedufairnepal.com (22) 0 2020-07-24 03:22:03 UTC 2022-09-21 13:44:50 UTC 172.104.49.54 Unknown ranking
mnemonic passive DNS code.jquery.com (1) 634 2012-05-21 17:28:02 UTC 2022-09-26 04:31:10 UTC 69.16.175.10
mnemonic passive DNS ocsp.digicert.com (3) 86 2012-05-21 07:02:23 UTC 2022-09-26 10:05:36 UTC 93.184.220.29
mnemonic passive DNS maps.google.com (1) 1899 2016-05-21 18:40:38 UTC 2022-09-26 09:18:44 UTC 216.58.211.14
mnemonic passive DNS theedunepal.ap-south-1.linodeobjects.com (2) 0 2022-09-06 16:59:12 UTC 2022-09-06 16:59:12 UTC 172.104.52.240 Unknown ranking
mnemonic passive DNS fonts.gstatic.com (2) 0 2014-08-29 13:43:22 UTC 2022-09-26 04:26:58 UTC 142.250.74.163 Domain (gstatic.com) ranked at: 540
mnemonic passive DNS fonts.googleapis.com (1) 8877 2013-06-10 20:14:26 UTC 2022-09-26 04:56:07 UTC 142.250.74.10


Recent reports on same IP/ASN/Domain/Screenshot

Last 4 reports on IP: 172.104.49.54

Date UQ / IDS / BL URL IP
2022-11-04 20:36:05 +0000
0 - 0 - 21 modelnepal.com/ 172.104.49.54
2022-09-26 11:42:40 +0000
0 - 0 - 12 virtualedufairnepal.com/plus2/amarjyoti 172.104.49.54
2022-09-10 21:35:36 +0000
0 - 0 - 23 modelnepal.com/jennifer-lama/ 172.104.49.54
2022-09-06 16:59:15 +0000
0 - 0 - 11 virtualedufairnepal.com/ 172.104.49.54

Last 5 reports on ASN: Linode, LLC

Date UQ / IDS / BL URL IP
2022-11-30 14:25:43 +0000
0 - 0 - 1 o99.net/mtm/direct/.eJxdycsKAjEMheF3yXIsE5d2x (...) 45.33.2.79
2022-11-30 14:25:41 +0000
0 - 0 - 2 www.turf.design.com/ 72.14.178.174
2022-11-30 13:54:45 +0000
0 - 0 - 3 trinity-healthy.org/mtm/direct/.eJxtiksOwjAMB (...) 45.56.79.23
2022-11-30 13:34:33 +0000
0 - 0 - 18 www.blinkstudio.co.ke/ 176.58.98.10
2022-11-30 12:49:45 +0000
0 - 0 - 2 drawingbytrent.com/ 72.14.178.174

Last 2 reports on domain: virtualedufairnepal.com

Date UQ / IDS / BL URL IP
2022-09-26 11:42:40 +0000
0 - 0 - 12 virtualedufairnepal.com/plus2/amarjyoti 172.104.49.54
2022-09-06 16:59:15 +0000
0 - 0 - 11 virtualedufairnepal.com/ 172.104.49.54

No other reports with similar screenshot



JavaScript

Executed Scripts (27)


Executed Evals (0)


Executed Writes (0)



HTTP Transactions (62)


Request Response
                                        
                                            GET /v1/ HTTP/1.1 
Host: firefox.settings.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         143.204.55.36
HTTP/1.1 200 OK
Content-Type: application/json
                                        
Content-Length: 939
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Content-Type, Alert, Backoff, Retry-After, Content-Length
Cache-Control: max-age=3600
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Date: Mon, 26 Sep 2022 11:15:18 GMT
X-Content-Type-Options: nosniff
X-Cache: Hit from cloudfront
Via: 1.1 8ddb6d7670d8c5a85c04a10525a71b90.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: wFgJif-1-eMhL8NkaUcBPCx8fC8Lq2NJMEbXvU2c6hbIa8Aj0vBl4Q==
Age: 1631


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Size:   939
Md5:    2d12f67fe57a87e7366b662d153a5582
Sha1:   d7b02d81cc74f24a251d9363e0f4b0a149264ec1
Sha256: 73c273c0b5a2de3cb970b8e8c187999d3b55e760dc7766dab4bb76428d19b551
                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "4397E6B45B5822FBAB9B83ABE0B96EE70EFBA7CD2160B51936159865EDE5FDB1"
Last-Modified: Sun, 25 Sep 2022 18:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5222
Expires: Mon, 26 Sep 2022 13:09:31 GMT
Date: Mon, 26 Sep 2022 11:42:29 GMT
Connection: keep-alive

                                        
                                            GET /chains/remote-settings.content-signature.mozilla.org-2022-10-30-18-47-44.chain HTTP/1.1 
Host: content-signature-2.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         143.204.55.25
HTTP/2 200 OK
content-type: binary/octet-stream
                                        
content-length: 5348
last-modified: Sat, 10 Sep 2022 18:47:45 GMT
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
date: Mon, 26 Sep 2022 04:35:16 GMT
etag: "6113f8408c59aebe188d6af273b90743"
x-cache: Hit from cloudfront
via: 1.1 a7d2a4ec2f50830f128dc406960aef9a.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: bHzYF38I86oI4d_9Sef-ShxhkRNaNrRYyKkCJ4Qu3hfGR377v150Nw==
age: 25634
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PEM certificate\012- , ASCII text
Size:   5348
Md5:    6113f8408c59aebe188d6af273b90743
Sha1:   7398873bf00f99944eaa77ad3ebc0d43c23dba6b
Sha256: b6e0cc9ad68306208a160f3835fb8da76acc5a82d8fde1da5a98e1de1c11a770
                                        
                                            GET /v1/tiles HTTP/1.1 
Host: contile.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.117.237.239
HTTP/2 200 OK
content-type: application/json
                                        
server: nginx
date: Mon, 26 Sep 2022 11:42:29 GMT
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with no line terminators
Size:   12
Md5:    23e88fb7b99543fb33315b29b1fad9d6
Sha1:   a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
Sha256: 7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
                                        
                                            GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1 
Host: firefox.settings.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         143.204.55.36
HTTP/1.1 200 OK
Content-Type: application/json
                                        
Content-Length: 329
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: ETag, Expires, Content-Length, Cache-Control, Pragma, Content-Type, Alert, Backoff, Last-Modified, Retry-After
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Last-Modified: Fri, 25 Mar 2022 17:45:46 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
Cache-Control: max-age=3600, max-age=3600
Date: Mon, 26 Sep 2022 11:10:46 GMT
Expires: Mon, 26 Sep 2022 11:28:27 GMT
ETag: "1648230346554"
X-Cache: Hit from cloudfront
Via: 1.1 475d4ecb64796af058573c6f1048e898.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: qwGv5TvYrMFZlEjQpjSZU273r_AfsZ6New4-tWE7LKd3curdOvfcYg==
Age: 1903


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Size:   329
Md5:    0333b0655111aa68de771adfcc4db243
Sha1:   63f295a144ac87a7c8e23417626724eeca68a7eb
Sha256: 60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
                                        
                                            GET /plus2/amarjyoti HTTP/1.1 
Host: virtualedufairnepal.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1

                                         
                                         172.104.49.54
HTTP/1.1 302 Found
Content-Type: text/html; charset=UTF-8
                                        
Server: nginx
Date: Mon, 26 Sep 2022 11:42:29 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: no-cache, private
Set-Cookie: XSRF-TOKEN=eyJpdiI6Ik1xUG1XN2pyQWdyR29RTFFqbkFyNHc9PSIsInZhbHVlIjoiYTk2Nm9MMGduTGhMcXdIaVpLWE1aRXdKYXJLQXFpQXhzRThrSWJBZDhZOW1FalpUODEybnhFZC8xS3ZnRDRJRkpBOWhvSVNMd0NVbml2L2Q4NlN5U2V5WjFaVi9MMXZPd2hrRGZ0clB3VEFDeDBFeG5nRGhHaXZqMGdybTB0dWQiLCJtYWMiOiJkY2E4NDNjY2ZiYzEyNTk5ODE5ODBiYzA0ZWJmYTUwNzkxYTBjMDU5MGYwZTQzNjM0ODY0ODkyYjVhNDM3Y2I1In0%3D; expires=Mon, 26-Sep-2022 13:42:29 GMT; Max-Age=7200; path=/; samesite=lax laravel_session=eyJpdiI6IkNiSVdmTlZSUkVxYnlsRzZUSDBGUVE9PSIsInZhbHVlIjoiTE01aSs4cnNTR240L3IraGVZVWJOMEF3NnVLR1BiSHJvM1MrdkhJT0JFS2pkK2RiMXowRE9ZeXE0dVZMVjMxbDdaM1NQeDBweVRKdWtHN1h5MFNmUlBtaElranpwZlZoQUJQeTVNa0IrdGZ1UUtCQ0hjbysrdEpDMlF6Y25GSS8iLCJtYWMiOiI5ZjBjMTgzYTBmYjkwNzlkOTZjZDVjNjAyODNhZmNjNDg3OWVmNzI5MGRmM2NlMzYyMzkyZjVjYTAxNjhlYTk2In0%3D; expires=Mon, 26-Sep-2022 13:42:29 GMT; Max-Age=7200; path=/; httponly; samesite=lax
Location: http://virtualedufairnepal.com/plus2/edufair/amarjyoti
Vary: Accept-Encoding,User-Agent


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Size:   462
Md5:    c2af33c7f9445519be3e9c4ad79081ef
Sha1:   c5923bac770f3d10d6b86487748e093063f6ed12
Sha256: 7b39c05a535978448dfb193e40aee2c92c7f9520ab0c378b281ce734b32e229c

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Age: 3849
Cache-Control: 'max-age=158059'
Date: Mon, 26 Sep 2022 11:42:30 GMT
Last-Modified: Mon, 26 Sep 2022 10:38:21 GMT
Server: ECS (ska/F711)
X-Cache: HIT
Content-Length: 471

                                        
                                            GET / HTTP/1.1 
Host: push.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: YwNEFImZFhOsuRW29NRXqw==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket

                                         
                                         35.160.51.228
HTTP/1.1 101 Switching Protocols
                                        
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: 7ucLnu7ReaRFsLdkRNHiZu3W8BM=

                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Mon, 26 Sep 2022 11:42:30 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Mon, 26 Sep 2022 11:42:30 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /theme/assets/js/plugins/slick-carousel/slick-theme.css HTTP/1.1 
Host: virtualedufairnepal.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://virtualedufairnepal.com/plus2/edufair/amarjyoti
Cookie: XSRF-TOKEN=eyJpdiI6IjN4L045ZWVCWW40Zm8xRi90TXJFcnc9PSIsInZhbHVlIjoiSlJwWUZ1dWFpOXczWmJBRGIzY2RBYlJ6aFNMMGIrdTBtMzJObWtEOFlQbEJYbDZaUDV2NDdnSm9SYVVwdmJjU2FQdGk4OWphNTRmUllHVDBDVnUvb25ueHVXQk5FMG9OMFEzMmRub3JtY1NCeW9xaGNXVW1pbFdWRWVuMThpTFAiLCJtYWMiOiI0NmZkZTUxMjgxMjkzMzBmOWYyNjFmNDA1YjUxNWRlZGRiODdmZTgzZThiMGEwMzZiNmI4ZGYyYzlmMGU3ZTMxIn0%3D; laravel_session=eyJpdiI6IkQ3QzNacDRtSE1UMkpJVkNqRnFxNEE9PSIsInZhbHVlIjoib3BvNE9xQTVHRnZSYjM1dHd4aThsYXNlNW1vL1Jmam1jQndaT2Zsckk2UEZlaXhPdEcxKy9RakhDT29LZ0NPUlRyWjVzUlYwRXJQTTAyK0tQbTFpTEtZNmhuRmNZTU1yRFhLS0I0SC9qZ3BIa1c5WEE5dncyaGZBajFKVEN3S0siLCJtYWMiOiJhYTZkMjEyNTk1NDllNzdjN2Q5Zjc4NjBiMGJiZjE3NzM4YmYxYzRmZWVhYWYxMTBjNjA3NmYzZGE5MTE1OWQ5In0%3D

                                         
                                         172.104.49.54
HTTP/1.1 404 Not Found
Content-Type: text/html; charset=UTF-8
                                        
Server: nginx
Date: Mon, 26 Sep 2022 11:42:30 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding,User-Agent


--- Additional Info ---
Magic:  ASCII text
Size:   16
Md5:    4845f01eaa8068384625e302e9a4eb05
Sha1:   fb6ff8293fa45e17ba97f84954e7d1d5b0d38f87
Sha256: 8a482f2271a42c5f54c96e816a84340a6f2357a5b81f927d07d00788f5140a41
                                        
                                            GET /jquery-3.5.1.slim.min.js HTTP/1.1 
Host: code.jquery.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://virtualedufairnepal.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         69.16.175.10
HTTP/2 200 OK
content-type: application/javascript; charset=utf-8
                                        
date: Mon, 26 Sep 2022 11:42:31 GMT
content-encoding: gzip
content-length: 24606
last-modified: Wed, 16 Feb 2022 10:50:39 GMT
accept-ranges: bytes
server: nginx
etag: W/"620cd6ff-11abc"
cache-control: max-age=315360000, public
access-control-allow-origin: *
vary: Accept-Encoding
x-hw: 1664192551.dop225.sk1.t,1664192551.cds254.sk1.hn,1664192551.cds202.sk1.c
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (65245)
Size:   24606
Md5:    63f8c134408852106835db2f928cf0e0
Sha1:   7ca0035d2a05154f1f93e19793b2298973cc8733
Sha256: 2555d061e6c2337cc0b62e309c8d0464e8f88d6a44dab74246c37cd0154d73a5
                                        
                                            GET /theme/assets/js/plugins/slick-carousel/slick.css HTTP/1.1 
Host: virtualedufairnepal.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://virtualedufairnepal.com/plus2/edufair/amarjyoti
Cookie: XSRF-TOKEN=eyJpdiI6IjN4L045ZWVCWW40Zm8xRi90TXJFcnc9PSIsInZhbHVlIjoiSlJwWUZ1dWFpOXczWmJBRGIzY2RBYlJ6aFNMMGIrdTBtMzJObWtEOFlQbEJYbDZaUDV2NDdnSm9SYVVwdmJjU2FQdGk4OWphNTRmUllHVDBDVnUvb25ueHVXQk5FMG9OMFEzMmRub3JtY1NCeW9xaGNXVW1pbFdWRWVuMThpTFAiLCJtYWMiOiI0NmZkZTUxMjgxMjkzMzBmOWYyNjFmNDA1YjUxNWRlZGRiODdmZTgzZThiMGEwMzZiNmI4ZGYyYzlmMGU3ZTMxIn0%3D; laravel_session=eyJpdiI6IkQ3QzNacDRtSE1UMkpJVkNqRnFxNEE9PSIsInZhbHVlIjoib3BvNE9xQTVHRnZSYjM1dHd4aThsYXNlNW1vL1Jmam1jQndaT2Zsckk2UEZlaXhPdEcxKy9RakhDT29LZ0NPUlRyWjVzUlYwRXJQTTAyK0tQbTFpTEtZNmhuRmNZTU1yRFhLS0I0SC9qZ3BIa1c5WEE5dncyaGZBajFKVEN3S0siLCJtYWMiOiJhYTZkMjEyNTk1NDllNzdjN2Q5Zjc4NjBiMGJiZjE3NzM4YmYxYzRmZWVhYWYxMTBjNjA3NmYzZGE5MTE1OWQ5In0%3D

                                         
                                         172.104.49.54
HTTP/1.1 404 Not Found
Content-Type: text/html; charset=UTF-8
                                        
Server: nginx
Date: Mon, 26 Sep 2022 11:42:30 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding,User-Agent


--- Additional Info ---
Magic:  ASCII text
Size:   16
Md5:    4845f01eaa8068384625e302e9a4eb05
Sha1:   fb6ff8293fa45e17ba97f84954e7d1d5b0d38f87
Sha256: 8a482f2271a42c5f54c96e816a84340a6f2357a5b81f927d07d00788f5140a41
                                        
                                            GET /theme/assets/css/dashmix.min.css HTTP/1.1 
Host: virtualedufairnepal.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://virtualedufairnepal.com/plus2/edufair/amarjyoti
Cookie: XSRF-TOKEN=eyJpdiI6IjN4L045ZWVCWW40Zm8xRi90TXJFcnc9PSIsInZhbHVlIjoiSlJwWUZ1dWFpOXczWmJBRGIzY2RBYlJ6aFNMMGIrdTBtMzJObWtEOFlQbEJYbDZaUDV2NDdnSm9SYVVwdmJjU2FQdGk4OWphNTRmUllHVDBDVnUvb25ueHVXQk5FMG9OMFEzMmRub3JtY1NCeW9xaGNXVW1pbFdWRWVuMThpTFAiLCJtYWMiOiI0NmZkZTUxMjgxMjkzMzBmOWYyNjFmNDA1YjUxNWRlZGRiODdmZTgzZThiMGEwMzZiNmI4ZGYyYzlmMGU3ZTMxIn0%3D; laravel_session=eyJpdiI6IkQ3QzNacDRtSE1UMkpJVkNqRnFxNEE9PSIsInZhbHVlIjoib3BvNE9xQTVHRnZSYjM1dHd4aThsYXNlNW1vL1Jmam1jQndaT2Zsckk2UEZlaXhPdEcxKy9RakhDT29LZ0NPUlRyWjVzUlYwRXJQTTAyK0tQbTFpTEtZNmhuRmNZTU1yRFhLS0I0SC9qZ3BIa1c5WEE5dncyaGZBajFKVEN3S0siLCJtYWMiOiJhYTZkMjEyNTk1NDllNzdjN2Q5Zjc4NjBiMGJiZjE3NzM4YmYxYzRmZWVhYWYxMTBjNjA3NmYzZGE5MTE1OWQ5In0%3D

                                         
                                         172.104.49.54
HTTP/1.1 404 Not Found
Content-Type: text/html; charset=UTF-8
                                        
Server: nginx
Date: Mon, 26 Sep 2022 11:42:31 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding,User-Agent


--- Additional Info ---
Magic:  ASCII text
Size:   16
Md5:    4845f01eaa8068384625e302e9a4eb05
Sha1:   fb6ff8293fa45e17ba97f84954e7d1d5b0d38f87
Sha256: 8a482f2271a42c5f54c96e816a84340a6f2357a5b81f927d07d00788f5140a41
                                        
                                            GET /theme/assets/css/responsive_front_custom.css HTTP/1.1 
Host: virtualedufairnepal.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://virtualedufairnepal.com/plus2/edufair/amarjyoti
Cookie: XSRF-TOKEN=eyJpdiI6IjN4L045ZWVCWW40Zm8xRi90TXJFcnc9PSIsInZhbHVlIjoiSlJwWUZ1dWFpOXczWmJBRGIzY2RBYlJ6aFNMMGIrdTBtMzJObWtEOFlQbEJYbDZaUDV2NDdnSm9SYVVwdmJjU2FQdGk4OWphNTRmUllHVDBDVnUvb25ueHVXQk5FMG9OMFEzMmRub3JtY1NCeW9xaGNXVW1pbFdWRWVuMThpTFAiLCJtYWMiOiI0NmZkZTUxMjgxMjkzMzBmOWYyNjFmNDA1YjUxNWRlZGRiODdmZTgzZThiMGEwMzZiNmI4ZGYyYzlmMGU3ZTMxIn0%3D; laravel_session=eyJpdiI6IkQ3QzNacDRtSE1UMkpJVkNqRnFxNEE9PSIsInZhbHVlIjoib3BvNE9xQTVHRnZSYjM1dHd4aThsYXNlNW1vL1Jmam1jQndaT2Zsckk2UEZlaXhPdEcxKy9RakhDT29LZ0NPUlRyWjVzUlYwRXJQTTAyK0tQbTFpTEtZNmhuRmNZTU1yRFhLS0I0SC9qZ3BIa1c5WEE5dncyaGZBajFKVEN3S0siLCJtYWMiOiJhYTZkMjEyNTk1NDllNzdjN2Q5Zjc4NjBiMGJiZjE3NzM4YmYxYzRmZWVhYWYxMTBjNjA3NmYzZGE5MTE1OWQ5In0%3D

                                         
                                         172.104.49.54
HTTP/1.1 404 Not Found
Content-Type: text/html; charset=UTF-8
                                        
Server: nginx
Date: Mon, 26 Sep 2022 11:42:31 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding,User-Agent


--- Additional Info ---
Magic:  ASCII text
Size:   16
Md5:    4845f01eaa8068384625e302e9a4eb05
Sha1:   fb6ff8293fa45e17ba97f84954e7d1d5b0d38f87
Sha256: 8a482f2271a42c5f54c96e816a84340a6f2357a5b81f927d07d00788f5140a41
                                        
                                            GET /theme/assets/css/edufair.css HTTP/1.1 
Host: virtualedufairnepal.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://virtualedufairnepal.com/plus2/edufair/amarjyoti
Cookie: XSRF-TOKEN=eyJpdiI6IjN4L045ZWVCWW40Zm8xRi90TXJFcnc9PSIsInZhbHVlIjoiSlJwWUZ1dWFpOXczWmJBRGIzY2RBYlJ6aFNMMGIrdTBtMzJObWtEOFlQbEJYbDZaUDV2NDdnSm9SYVVwdmJjU2FQdGk4OWphNTRmUllHVDBDVnUvb25ueHVXQk5FMG9OMFEzMmRub3JtY1NCeW9xaGNXVW1pbFdWRWVuMThpTFAiLCJtYWMiOiI0NmZkZTUxMjgxMjkzMzBmOWYyNjFmNDA1YjUxNWRlZGRiODdmZTgzZThiMGEwMzZiNmI4ZGYyYzlmMGU3ZTMxIn0%3D; laravel_session=eyJpdiI6IkQ3QzNacDRtSE1UMkpJVkNqRnFxNEE9PSIsInZhbHVlIjoib3BvNE9xQTVHRnZSYjM1dHd4aThsYXNlNW1vL1Jmam1jQndaT2Zsckk2UEZlaXhPdEcxKy9RakhDT29LZ0NPUlRyWjVzUlYwRXJQTTAyK0tQbTFpTEtZNmhuRmNZTU1yRFhLS0I0SC9qZ3BIa1c5WEE5dncyaGZBajFKVEN3S0siLCJtYWMiOiJhYTZkMjEyNTk1NDllNzdjN2Q5Zjc4NjBiMGJiZjE3NzM4YmYxYzRmZWVhYWYxMTBjNjA3NmYzZGE5MTE1OWQ5In0%3D

                                         
                                         172.104.49.54
HTTP/1.1 404 Not Found
Content-Type: text/html; charset=UTF-8
                                        
Server: nginx
Date: Mon, 26 Sep 2022 11:42:31 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding,User-Agent


--- Additional Info ---
Magic:  ASCII text
Size:   16
Md5:    4845f01eaa8068384625e302e9a4eb05
Sha1:   fb6ff8293fa45e17ba97f84954e7d1d5b0d38f87
Sha256: 8a482f2271a42c5f54c96e816a84340a6f2357a5b81f927d07d00788f5140a41
                                        
                                            GET /theme/assets/css/front_custom.css HTTP/1.1 
Host: virtualedufairnepal.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://virtualedufairnepal.com/plus2/edufair/amarjyoti
Cookie: XSRF-TOKEN=eyJpdiI6IjN4L045ZWVCWW40Zm8xRi90TXJFcnc9PSIsInZhbHVlIjoiSlJwWUZ1dWFpOXczWmJBRGIzY2RBYlJ6aFNMMGIrdTBtMzJObWtEOFlQbEJYbDZaUDV2NDdnSm9SYVVwdmJjU2FQdGk4OWphNTRmUllHVDBDVnUvb25ueHVXQk5FMG9OMFEzMmRub3JtY1NCeW9xaGNXVW1pbFdWRWVuMThpTFAiLCJtYWMiOiI0NmZkZTUxMjgxMjkzMzBmOWYyNjFmNDA1YjUxNWRlZGRiODdmZTgzZThiMGEwMzZiNmI4ZGYyYzlmMGU3ZTMxIn0%3D; laravel_session=eyJpdiI6IkQ3QzNacDRtSE1UMkpJVkNqRnFxNEE9PSIsInZhbHVlIjoib3BvNE9xQTVHRnZSYjM1dHd4aThsYXNlNW1vL1Jmam1jQndaT2Zsckk2UEZlaXhPdEcxKy9RakhDT29LZ0NPUlRyWjVzUlYwRXJQTTAyK0tQbTFpTEtZNmhuRmNZTU1yRFhLS0I0SC9qZ3BIa1c5WEE5dncyaGZBajFKVEN3S0siLCJtYWMiOiJhYTZkMjEyNTk1NDllNzdjN2Q5Zjc4NjBiMGJiZjE3NzM4YmYxYzRmZWVhYWYxMTBjNjA3NmYzZGE5MTE1OWQ5In0%3D

                                         
                                         172.104.49.54
HTTP/1.1 404 Not Found
Content-Type: text/html; charset=UTF-8
                                        
Server: nginx
Date: Mon, 26 Sep 2022 11:42:31 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding,User-Agent


--- Additional Info ---
Magic:  ASCII text
Size:   16
Md5:    4845f01eaa8068384625e302e9a4eb05
Sha1:   fb6ff8293fa45e17ba97f84954e7d1d5b0d38f87
Sha256: 8a482f2271a42c5f54c96e816a84340a6f2357a5b81f927d07d00788f5140a41
                                        
                                            GET /theme/assets/js/plugins/select2/css/select2.min.css HTTP/1.1 
Host: virtualedufairnepal.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://virtualedufairnepal.com/plus2/edufair/amarjyoti
Cookie: XSRF-TOKEN=eyJpdiI6IjN4L045ZWVCWW40Zm8xRi90TXJFcnc9PSIsInZhbHVlIjoiSlJwWUZ1dWFpOXczWmJBRGIzY2RBYlJ6aFNMMGIrdTBtMzJObWtEOFlQbEJYbDZaUDV2NDdnSm9SYVVwdmJjU2FQdGk4OWphNTRmUllHVDBDVnUvb25ueHVXQk5FMG9OMFEzMmRub3JtY1NCeW9xaGNXVW1pbFdWRWVuMThpTFAiLCJtYWMiOiI0NmZkZTUxMjgxMjkzMzBmOWYyNjFmNDA1YjUxNWRlZGRiODdmZTgzZThiMGEwMzZiNmI4ZGYyYzlmMGU3ZTMxIn0%3D; laravel_session=eyJpdiI6IkQ3QzNacDRtSE1UMkpJVkNqRnFxNEE9PSIsInZhbHVlIjoib3BvNE9xQTVHRnZSYjM1dHd4aThsYXNlNW1vL1Jmam1jQndaT2Zsckk2UEZlaXhPdEcxKy9RakhDT29LZ0NPUlRyWjVzUlYwRXJQTTAyK0tQbTFpTEtZNmhuRmNZTU1yRFhLS0I0SC9qZ3BIa1c5WEE5dncyaGZBajFKVEN3S0siLCJtYWMiOiJhYTZkMjEyNTk1NDllNzdjN2Q5Zjc4NjBiMGJiZjE3NzM4YmYxYzRmZWVhYWYxMTBjNjA3NmYzZGE5MTE1OWQ5In0%3D

                                         
                                         172.104.49.54
HTTP/1.1 404 Not Found
Content-Type: text/html; charset=UTF-8
                                        
Server: nginx
Date: Mon, 26 Sep 2022 11:42:31 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding,User-Agent


--- Additional Info ---
Magic:  ASCII text
Size:   16
Md5:    4845f01eaa8068384625e302e9a4eb05
Sha1:   fb6ff8293fa45e17ba97f84954e7d1d5b0d38f87
Sha256: 8a482f2271a42c5f54c96e816a84340a6f2357a5b81f927d07d00788f5140a41
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Mon, 26 Sep 2022 11:42:31 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /maps?q=Amar%20Jyoti%20Model%20School%09&t=&z=13&ie=UTF8&iwloc=&output=embed HTTP/1.1 
Host: maps.google.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://virtualedufairnepal.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site

                                         
                                         216.58.211.14
HTTP/2 301 Moved Permanently
content-type: text/html; charset=UTF-8
                                        
date: Mon, 26 Sep 2022 11:42:31 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
location: https://www.google.com/maps/embed?origin=mfe&pb=!1m3!2m1!1sAmar+Jyoti+Model+School!6i13
server: mafe
content-length: 288
x-xss-protection: 0
x-frame-options: SAMEORIGIN
server-timing: gfet4t7; dur=1
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF, LF line terminators
Size:   288
Md5:    e934844f10aa6f919342aad85d5aae90
Sha1:   f9423245ace453183ca4e1afc94537a67896324a
Sha256: de783eaf1017c3dfb3fc0ee29be7878c970884e0a7a343c9a39f9436e93cf4c7
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Mon, 26 Sep 2022 11:42:31 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "0E47D6E33FE9F6E588D308B62FA059C960A000C56651713E30BAF6CD09B7DE41"
Last-Modified: Sun, 25 Sep 2022 22:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3579
Expires: Mon, 26 Sep 2022 12:42:10 GMT
Date: Mon, 26 Sep 2022 11:42:31 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "0E47D6E33FE9F6E588D308B62FA059C960A000C56651713E30BAF6CD09B7DE41"
Last-Modified: Sun, 25 Sep 2022 22:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3579
Expires: Mon, 26 Sep 2022 12:42:10 GMT
Date: Mon, 26 Sep 2022 11:42:31 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "0E47D6E33FE9F6E588D308B62FA059C960A000C56651713E30BAF6CD09B7DE41"
Last-Modified: Sun, 25 Sep 2022 22:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3579
Expires: Mon, 26 Sep 2022 12:42:10 GMT
Date: Mon, 26 Sep 2022 11:42:31 GMT
Connection: keep-alive

                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Mon, 26 Sep 2022 11:42:31 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9723d426-a6ee-4860-8067-0b8d98143233.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 8637
x-amzn-requestid: 07dc23e0-000f-4f6c-8d2b-0e65d88be270
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZCSvvEenoAMFr0Q=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6330cb31-520803124760abc216152d7b;Sampled=0
x-amzn-remapped-date: Sun, 25 Sep 2022 21:42:09 GMT
x-amz-cf-pop: SEA19-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: HCJ483GPdpPhC7oYm1GrA02BqqST9sfqfCBSA93rZqaQYl-jezgP5Q==
via: 1.1 27a84054de24e45f952ea4056a821764.cloudfront.net (CloudFront), 1.1 2ab6211e66998c8b58132661a7e3cade.cloudfront.net (CloudFront), 1.1 google
date: Sun, 25 Sep 2022 22:20:40 GMT
age: 48111
etag: "e49306a3713cb724be024a4ddb5e90645718a718"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   8637
Md5:    d02ede0c964f3346fd53ae2950bf2a62
Sha1:   e49306a3713cb724be024a4ddb5e90645718a718
Sha256: c0e653d89656016c55aca9b198b9191620f1ae9a3c45742a90744bd74c4f9505
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1deb918e-bcb0-4629-aaa7-0ae0322969be.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 12826
x-amzn-requestid: f075cf62-acfc-4bc1-be14-7c3dafb7aaed
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YfVRNFP-oAMFgrA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6322cf3a-184b678042d64ac9266b1128;Sampled=0
x-amzn-remapped-date: Thu, 15 Sep 2022 07:07:38 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: rN_8rm10Pxb0AUKW6ECfNulcYxBaS7FgGD15gT14dX-FlsGJfqahxA==
via: 1.1 7f5e0d3b9ea85d0d75063a66c0ebc840.cloudfront.net (CloudFront), 1.1 89791e6b21b9a30cc51cac1bc51cf098.cloudfront.net (CloudFront), 1.1 google
date: Sun, 25 Sep 2022 21:37:35 GMT
age: 50696
etag: "b6d56333d7f1ea7ddc8838d84de498ff913c5464"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3 DIY-Thermocam raw data\012- (Lepton 2.x), scale 3-257, spot sensor temperature 0.000000, unit celsius, color scheme 0, show scale bar, calibration: offset 0.000000, slope 241253891388563521536.000000\012- data
Size:   12826
Md5:    b3a72e81317074689a71dac7059e4b6a
Sha1:   b6d56333d7f1ea7ddc8838d84de498ff913c5464
Sha256: e665a8821b5e7b2e78787647a08d629bf70cbf4cbfee2057c8601cf0565154a1
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F744f3733-ce02-4fd8-bd5a-62fdf6e03e58.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 14161
x-amzn-requestid: e2dec384-fbe8-44d6-9024-dcf46ed71e27
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZCSJuGQFIAMFS9A=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6330ca3e-004eb3805201c42170903ac5;Sampled=0
x-amzn-remapped-date: Sun, 25 Sep 2022 21:38:06 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: ydsxR8YxLX5go4Ti83lBg05bRXvYryUWiFQe_qxYqerzlChGKwYV9A==
via: 1.1 a4fe306096165bb1e86e69365dc8fac2.cloudfront.net (CloudFront), 1.1 0d4ebcaa87ba94709def0eaac9371e5a.cloudfront.net (CloudFront), 1.1 google
date: Sun, 25 Sep 2022 21:49:24 GMT
age: 49987
etag: "f31946e5ed8806c8c8ca0b7e7bcc8e3ea8df9c85"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   14161
Md5:    45bfaa4f09146505d73d50365c63e9df
Sha1:   f31946e5ed8806c8c8ca0b7e7bcc8e3ea8df9c85
Sha256: 107d33f184be7c156e133b679752ee324be33c9c5e242ce67e0aafad811a592e
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3a7e9af9-ebe4-49ea-9af4-d118f2ef0b43.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 8851
x-amzn-requestid: dbe6ba4c-3d38-48e8-9d08-088d8e26e7a4
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZCUDAE23oAMF_yg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6330cd46-4f3b85952fa3109d2921d0e1;Sampled=0
x-amzn-remapped-date: Sun, 25 Sep 2022 21:51:02 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: wbbfzE5nQkhK_nsXX8XGJbOl3Yf6NDA1r_AC-0dOzqJDkLQ2BLxK9A==
via: 1.1 ddd913fbbe7367d44af4ac06097e7a2a.cloudfront.net (CloudFront), 1.1 09331f0822fc98eebaf04130a83dbd44.cloudfront.net (CloudFront), 1.1 google
date: Sun, 25 Sep 2022 23:15:06 GMT
age: 44845
etag: "4b32113aaf50132b38c8034017a6eb5a32d7040b"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   8851
Md5:    431ff1171a3d7c60a31cc1c3f62164ee
Sha1:   4b32113aaf50132b38c8034017a6eb5a32d7040b
Sha256: 65d598db252fb3979d3df3cb8d052861bb31d6187552f9c694ec27a322b308c9
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Febd85aa2-fe15-49c2-aa3e-38b97cb99849.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 5157
x-amzn-requestid: b5748f49-693f-4bc3-a850-cb68e770de24
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZCUG9GUHIAMF7pw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6330cd5f-5d2aaa212cf1be2506593746;Sampled=0
x-amzn-remapped-date: Sun, 25 Sep 2022 21:51:27 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: 4h9lb_7egxb2hBbxjcS_cpZ5lDq6Lx-c_WUZyRHdUA0YTwr6kgDuiQ==
via: 1.1 86b676273517904f44af31586adb06ae.cloudfront.net (CloudFront), 1.1 5fe5f2a3903f1378941d92eceaf3fa16.cloudfront.net (CloudFront), 1.1 google
date: Sun, 25 Sep 2022 22:10:16 GMT
age: 48735
etag: "85e378d0fff856832a8dd01743516b9476fed8c6"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   5157
Md5:    2fe8c4f0c70fb6c1f4259eabedc7015e
Sha1:   85e378d0fff856832a8dd01743516b9476fed8c6
Sha256: 508a1c7d350fcf82d1ece0b99f8557b2f300c7c1148f28c3ae9fece20530e4b6
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7838a122-2b2e-4e4c-9bcc-7c6b46a93b1e.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 11728
x-amzn-requestid: bf60e58f-c4f4-45c7-923b-0d1539f720f5
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZCUCGGw7oAMF3wQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6330cd40-32043c1b1411544f5d00edc0;Sampled=0
x-amzn-remapped-date: Sun, 25 Sep 2022 21:50:56 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: H4KXhBaRw3SvzBrbl30mV6R_vJ8bXBkyicb8fQiTp6YSBHjE8iFkNQ==
via: 1.1 26ca01ec7377e425b59b6a08cb1ec342.cloudfront.net (CloudFront), 1.1 ce71f64ad5dca81beca846466f2d5008.cloudfront.net (CloudFront), 1.1 google
date: Sun, 25 Sep 2022 22:49:56 GMT
etag: "9660bb2d38079182efbd11d7a687bfc7f9d30751"
age: 46355
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   11728
Md5:    968b9c138702fb5994d1d9eab1a697fa
Sha1:   9660bb2d38079182efbd11d7a687bfc7f9d30751
Sha256: 5ba74820ad451747c8ed25529f06b037bebf4c0616a1f2165c9197c1171db7a6
                                        
                                            GET /plus2/edufair/amarjyoti HTTP/1.1 
Host: virtualedufairnepal.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Cookie: XSRF-TOKEN=eyJpdiI6Ik1xUG1XN2pyQWdyR29RTFFqbkFyNHc9PSIsInZhbHVlIjoiYTk2Nm9MMGduTGhMcXdIaVpLWE1aRXdKYXJLQXFpQXhzRThrSWJBZDhZOW1FalpUODEybnhFZC8xS3ZnRDRJRkpBOWhvSVNMd0NVbml2L2Q4NlN5U2V5WjFaVi9MMXZPd2hrRGZ0clB3VEFDeDBFeG5nRGhHaXZqMGdybTB0dWQiLCJtYWMiOiJkY2E4NDNjY2ZiYzEyNTk5ODE5ODBiYzA0ZWJmYTUwNzkxYTBjMDU5MGYwZTQzNjM0ODY0ODkyYjVhNDM3Y2I1In0%3D; laravel_session=eyJpdiI6IkNiSVdmTlZSUkVxYnlsRzZUSDBGUVE9PSIsInZhbHVlIjoiTE01aSs4cnNTR240L3IraGVZVWJOMEF3NnVLR1BiSHJvM1MrdkhJT0JFS2pkK2RiMXowRE9ZeXE0dVZMVjMxbDdaM1NQeDBweVRKdWtHN1h5MFNmUlBtaElranpwZlZoQUJQeTVNa0IrdGZ1UUtCQ0hjbysrdEpDMlF6Y25GSS8iLCJtYWMiOiI5ZjBjMTgzYTBmYjkwNzlkOTZjZDVjNjAyODNhZmNjNDg3OWVmNzI5MGRmM2NlMzYyMzkyZjVjYTAxNjhlYTk2In0%3D
Upgrade-Insecure-Requests: 1

                                         
                                         172.104.49.54
HTTP/1.1 200 OK
Content-Type: text/html; charset=UTF-8
                                        
Server: nginx
Date: Mon, 26 Sep 2022 11:42:30 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: max-age=0, must-revalidate, no-cache, no-store, private
Pragma: no-cache
Expires: Fri, 01 Jan 1990 00:00:00 GMT
Set-Cookie: XSRF-TOKEN=eyJpdiI6IjN4L045ZWVCWW40Zm8xRi90TXJFcnc9PSIsInZhbHVlIjoiSlJwWUZ1dWFpOXczWmJBRGIzY2RBYlJ6aFNMMGIrdTBtMzJObWtEOFlQbEJYbDZaUDV2NDdnSm9SYVVwdmJjU2FQdGk4OWphNTRmUllHVDBDVnUvb25ueHVXQk5FMG9OMFEzMmRub3JtY1NCeW9xaGNXVW1pbFdWRWVuMThpTFAiLCJtYWMiOiI0NmZkZTUxMjgxMjkzMzBmOWYyNjFmNDA1YjUxNWRlZGRiODdmZTgzZThiMGEwMzZiNmI4ZGYyYzlmMGU3ZTMxIn0%3D; expires=Mon, 26-Sep-2022 13:42:30 GMT; Max-Age=7200; path=/; samesite=lax laravel_session=eyJpdiI6IkQ3QzNacDRtSE1UMkpJVkNqRnFxNEE9PSIsInZhbHVlIjoib3BvNE9xQTVHRnZSYjM1dHd4aThsYXNlNW1vL1Jmam1jQndaT2Zsckk2UEZlaXhPdEcxKy9RakhDT29LZ0NPUlRyWjVzUlYwRXJQTTAyK0tQbTFpTEtZNmhuRmNZTU1yRFhLS0I0SC9qZ3BIa1c5WEE5dncyaGZBajFKVEN3S0siLCJtYWMiOiJhYTZkMjEyNTk1NDllNzdjN2Q5Zjc4NjBiMGJiZjE3NzM4YmYxYzRmZWVhYWYxMTBjNjA3NmYzZGE5MTE1OWQ5In0%3D; expires=Mon, 26-Sep-2022 13:42:30 GMT; Max-Age=7200; path=/; httponly; samesite=lax
Vary: Accept-Encoding,User-Agent


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (335), with CRLF, LF line terminators
Size:   178929
Md5:    5bdb62e77310b527d6f0115928dda7d9
Sha1:   470c0b6d50993a666e130a44f64b115ff0f8af2a
Sha256: b1d073b2c7cbf2edd11b67a9e51509f1414deeaeee45607730affe3a59f8b02e

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /plus2/theme/assets/media/logo/edu_logo.png HTTP/1.1 
Host: virtualedufairnepal.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://virtualedufairnepal.com/plus2/edufair/amarjyoti
Cookie: XSRF-TOKEN=eyJpdiI6IjN4L045ZWVCWW40Zm8xRi90TXJFcnc9PSIsInZhbHVlIjoiSlJwWUZ1dWFpOXczWmJBRGIzY2RBYlJ6aFNMMGIrdTBtMzJObWtEOFlQbEJYbDZaUDV2NDdnSm9SYVVwdmJjU2FQdGk4OWphNTRmUllHVDBDVnUvb25ueHVXQk5FMG9OMFEzMmRub3JtY1NCeW9xaGNXVW1pbFdWRWVuMThpTFAiLCJtYWMiOiI0NmZkZTUxMjgxMjkzMzBmOWYyNjFmNDA1YjUxNWRlZGRiODdmZTgzZThiMGEwMzZiNmI4ZGYyYzlmMGU3ZTMxIn0%3D; laravel_session=eyJpdiI6IkQ3QzNacDRtSE1UMkpJVkNqRnFxNEE9PSIsInZhbHVlIjoib3BvNE9xQTVHRnZSYjM1dHd4aThsYXNlNW1vL1Jmam1jQndaT2Zsckk2UEZlaXhPdEcxKy9RakhDT29LZ0NPUlRyWjVzUlYwRXJQTTAyK0tQbTFpTEtZNmhuRmNZTU1yRFhLS0I0SC9qZ3BIa1c5WEE5dncyaGZBajFKVEN3S0siLCJtYWMiOiJhYTZkMjEyNTk1NDllNzdjN2Q5Zjc4NjBiMGJiZjE3NzM4YmYxYzRmZWVhYWYxMTBjNjA3NmYzZGE5MTE1OWQ5In0%3D

                                         
                                         172.104.49.54
HTTP/1.1 404 Not Found
Content-Type: text/html; charset=UTF-8
                                        
Server: nginx
Date: Mon, 26 Sep 2022 11:42:31 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: no-cache, private
Vary: Accept-Encoding,User-Agent


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with CRLF line terminators
Size:   7984
Md5:    9f4051323cfa195166449537c9c11dba
Sha1:   07b6a493f38c262047b7dc3af02356022da08ac2
Sha256: 70a6a943c894e645dbfb5d4be6c2edcfc9f5a6c7adea9f4eaf57662a6bba1873
                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "7E5263DCFDD59BD0D9E4D1C5E4C4C9A1F784918185469217B820B2F75AE1DFD2"
Last-Modified: Mon, 26 Sep 2022 04:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=15163
Expires: Mon, 26 Sep 2022 15:55:14 GMT
Date: Mon, 26 Sep 2022 11:42:31 GMT
Connection: keep-alive

                                        
                                            GET /plus2/theme/assets/media/img/speaker_bg.png HTTP/1.1 
Host: virtualedufairnepal.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://virtualedufairnepal.com/plus2/edufair/amarjyoti
Cookie: XSRF-TOKEN=eyJpdiI6IjN4L045ZWVCWW40Zm8xRi90TXJFcnc9PSIsInZhbHVlIjoiSlJwWUZ1dWFpOXczWmJBRGIzY2RBYlJ6aFNMMGIrdTBtMzJObWtEOFlQbEJYbDZaUDV2NDdnSm9SYVVwdmJjU2FQdGk4OWphNTRmUllHVDBDVnUvb25ueHVXQk5FMG9OMFEzMmRub3JtY1NCeW9xaGNXVW1pbFdWRWVuMThpTFAiLCJtYWMiOiI0NmZkZTUxMjgxMjkzMzBmOWYyNjFmNDA1YjUxNWRlZGRiODdmZTgzZThiMGEwMzZiNmI4ZGYyYzlmMGU3ZTMxIn0%3D; laravel_session=eyJpdiI6IkQ3QzNacDRtSE1UMkpJVkNqRnFxNEE9PSIsInZhbHVlIjoib3BvNE9xQTVHRnZSYjM1dHd4aThsYXNlNW1vL1Jmam1jQndaT2Zsckk2UEZlaXhPdEcxKy9RakhDT29LZ0NPUlRyWjVzUlYwRXJQTTAyK0tQbTFpTEtZNmhuRmNZTU1yRFhLS0I0SC9qZ3BIa1c5WEE5dncyaGZBajFKVEN3S0siLCJtYWMiOiJhYTZkMjEyNTk1NDllNzdjN2Q5Zjc4NjBiMGJiZjE3NzM4YmYxYzRmZWVhYWYxMTBjNjA3NmYzZGE5MTE1OWQ5In0%3D

                                         
                                         172.104.49.54
HTTP/1.1 404 Not Found
Content-Type: text/html; charset=UTF-8
                                        
Server: nginx
Date: Mon, 26 Sep 2022 11:42:31 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: no-cache, private
Vary: Accept-Encoding,User-Agent


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with CRLF line terminators
Size:   7984
Md5:    9f4051323cfa195166449537c9c11dba
Sha1:   07b6a493f38c262047b7dc3af02356022da08ac2
Sha256: 70a6a943c894e645dbfb5d4be6c2edcfc9f5a6c7adea9f4eaf57662a6bba1873
                                        
                                            GET /maps/embed?origin=mfe&pb=!1m3!2m1!1sAmar+Jyoti+Model+School!6i13 HTTP/1.1 
Host: www.google.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://virtualedufairnepal.com/
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site

                                         
                                         142.250.74.164
HTTP/2 200 OK
content-type: text/html; charset=UTF-8
                                        
date: Mon, 26 Sep 2022 11:42:32 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
vary: Accept-Language
content-security-policy: object-src 'none';base-uri 'self';script-src 'nonce-UU8BCd5BJRTP5OzZ_PhnPg' 'strict-dynamic' 'report-sample' 'unsafe-eval' 'unsafe-inline' https: http:;report-uri https://csp.withgoogle.com/csp/geo-maps-api/1
content-encoding: gzip
server: mafe
content-length: 1123
x-xss-protection: 0
server-timing: gfet4t7; dur=434
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (2051)
Size:   1123
Md5:    9a15474f4d9a38376e0fcce1c04b3bb5
Sha1:   3a7dcca7da676bca031db153ef27f54fe1ccac20
Sha256: fd94e91e3bbde50b915d5bd65dbdac6b7ad5f52c9d8726ce2046a356538be77c
                                        
                                            GET /vendor/livewire/livewire.js?id=c69d0f2801c01fcf8166 HTTP/1.1 
Host: virtualedufairnepal.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://virtualedufairnepal.com/plus2/edufair/amarjyoti
Cookie: XSRF-TOKEN=eyJpdiI6IjN4L045ZWVCWW40Zm8xRi90TXJFcnc9PSIsInZhbHVlIjoiSlJwWUZ1dWFpOXczWmJBRGIzY2RBYlJ6aFNMMGIrdTBtMzJObWtEOFlQbEJYbDZaUDV2NDdnSm9SYVVwdmJjU2FQdGk4OWphNTRmUllHVDBDVnUvb25ueHVXQk5FMG9OMFEzMmRub3JtY1NCeW9xaGNXVW1pbFdWRWVuMThpTFAiLCJtYWMiOiI0NmZkZTUxMjgxMjkzMzBmOWYyNjFmNDA1YjUxNWRlZGRiODdmZTgzZThiMGEwMzZiNmI4ZGYyYzlmMGU3ZTMxIn0%3D; laravel_session=eyJpdiI6IkQ3QzNacDRtSE1UMkpJVkNqRnFxNEE9PSIsInZhbHVlIjoib3BvNE9xQTVHRnZSYjM1dHd4aThsYXNlNW1vL1Jmam1jQndaT2Zsckk2UEZlaXhPdEcxKy9RakhDT29LZ0NPUlRyWjVzUlYwRXJQTTAyK0tQbTFpTEtZNmhuRmNZTU1yRFhLS0I0SC9qZ3BIa1c5WEE5dncyaGZBajFKVEN3S0siLCJtYWMiOiJhYTZkMjEyNTk1NDllNzdjN2Q5Zjc4NjBiMGJiZjE3NzM4YmYxYzRmZWVhYWYxMTBjNjA3NmYzZGE5MTE1OWQ5In0%3D

                                         
                                         172.104.49.54
HTTP/1.1 404 Not Found
Content-Type: text/html; charset=UTF-8
                                        
Server: nginx
Date: Mon, 26 Sep 2022 11:42:31 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding,User-Agent


--- Additional Info ---
Magic:  ASCII text
Size:   16
Md5:    4845f01eaa8068384625e302e9a4eb05
Sha1:   fb6ff8293fa45e17ba97f84954e7d1d5b0d38f87
Sha256: 8a482f2271a42c5f54c96e816a84340a6f2357a5b81f927d07d00788f5140a41

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /theme/assets/js/dashmix.core.min.js HTTP/1.1 
Host: virtualedufairnepal.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://virtualedufairnepal.com/plus2/edufair/amarjyoti
Cookie: XSRF-TOKEN=eyJpdiI6IjN4L045ZWVCWW40Zm8xRi90TXJFcnc9PSIsInZhbHVlIjoiSlJwWUZ1dWFpOXczWmJBRGIzY2RBYlJ6aFNMMGIrdTBtMzJObWtEOFlQbEJYbDZaUDV2NDdnSm9SYVVwdmJjU2FQdGk4OWphNTRmUllHVDBDVnUvb25ueHVXQk5FMG9OMFEzMmRub3JtY1NCeW9xaGNXVW1pbFdWRWVuMThpTFAiLCJtYWMiOiI0NmZkZTUxMjgxMjkzMzBmOWYyNjFmNDA1YjUxNWRlZGRiODdmZTgzZThiMGEwMzZiNmI4ZGYyYzlmMGU3ZTMxIn0%3D; laravel_session=eyJpdiI6IkQ3QzNacDRtSE1UMkpJVkNqRnFxNEE9PSIsInZhbHVlIjoib3BvNE9xQTVHRnZSYjM1dHd4aThsYXNlNW1vL1Jmam1jQndaT2Zsckk2UEZlaXhPdEcxKy9RakhDT29LZ0NPUlRyWjVzUlYwRXJQTTAyK0tQbTFpTEtZNmhuRmNZTU1yRFhLS0I0SC9qZ3BIa1c5WEE5dncyaGZBajFKVEN3S0siLCJtYWMiOiJhYTZkMjEyNTk1NDllNzdjN2Q5Zjc4NjBiMGJiZjE3NzM4YmYxYzRmZWVhYWYxMTBjNjA3NmYzZGE5MTE1OWQ5In0%3D

                                         
                                         172.104.49.54
HTTP/1.1 404 Not Found
Content-Type: text/html; charset=UTF-8
                                        
Server: nginx
Date: Mon, 26 Sep 2022 11:42:31 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding,User-Agent


--- Additional Info ---
Magic:  ASCII text
Size:   16
Md5:    4845f01eaa8068384625e302e9a4eb05
Sha1:   fb6ff8293fa45e17ba97f84954e7d1d5b0d38f87
Sha256: 8a482f2271a42c5f54c96e816a84340a6f2357a5b81f927d07d00788f5140a41

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /theme/assets/js/main.js HTTP/1.1 
Host: virtualedufairnepal.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://virtualedufairnepal.com/plus2/edufair/amarjyoti
Cookie: XSRF-TOKEN=eyJpdiI6IjN4L045ZWVCWW40Zm8xRi90TXJFcnc9PSIsInZhbHVlIjoiSlJwWUZ1dWFpOXczWmJBRGIzY2RBYlJ6aFNMMGIrdTBtMzJObWtEOFlQbEJYbDZaUDV2NDdnSm9SYVVwdmJjU2FQdGk4OWphNTRmUllHVDBDVnUvb25ueHVXQk5FMG9OMFEzMmRub3JtY1NCeW9xaGNXVW1pbFdWRWVuMThpTFAiLCJtYWMiOiI0NmZkZTUxMjgxMjkzMzBmOWYyNjFmNDA1YjUxNWRlZGRiODdmZTgzZThiMGEwMzZiNmI4ZGYyYzlmMGU3ZTMxIn0%3D; laravel_session=eyJpdiI6IkQ3QzNacDRtSE1UMkpJVkNqRnFxNEE9PSIsInZhbHVlIjoib3BvNE9xQTVHRnZSYjM1dHd4aThsYXNlNW1vL1Jmam1jQndaT2Zsckk2UEZlaXhPdEcxKy9RakhDT29LZ0NPUlRyWjVzUlYwRXJQTTAyK0tQbTFpTEtZNmhuRmNZTU1yRFhLS0I0SC9qZ3BIa1c5WEE5dncyaGZBajFKVEN3S0siLCJtYWMiOiJhYTZkMjEyNTk1NDllNzdjN2Q5Zjc4NjBiMGJiZjE3NzM4YmYxYzRmZWVhYWYxMTBjNjA3NmYzZGE5MTE1OWQ5In0%3D

                                         
                                         172.104.49.54
HTTP/1.1 404 Not Found
Content-Type: text/html; charset=UTF-8
                                        
Server: nginx
Date: Mon, 26 Sep 2022 11:42:31 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding,User-Agent


--- Additional Info ---
Magic:  ASCII text
Size:   16
Md5:    4845f01eaa8068384625e302e9a4eb05
Sha1:   fb6ff8293fa45e17ba97f84954e7d1d5b0d38f87
Sha256: 8a482f2271a42c5f54c96e816a84340a6f2357a5b81f927d07d00788f5140a41

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /theme/assets/js/plugins/magnific-popup/jquery.magnific-popup.min.js HTTP/1.1 
Host: virtualedufairnepal.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://virtualedufairnepal.com/plus2/edufair/amarjyoti
Cookie: XSRF-TOKEN=eyJpdiI6IjN4L045ZWVCWW40Zm8xRi90TXJFcnc9PSIsInZhbHVlIjoiSlJwWUZ1dWFpOXczWmJBRGIzY2RBYlJ6aFNMMGIrdTBtMzJObWtEOFlQbEJYbDZaUDV2NDdnSm9SYVVwdmJjU2FQdGk4OWphNTRmUllHVDBDVnUvb25ueHVXQk5FMG9OMFEzMmRub3JtY1NCeW9xaGNXVW1pbFdWRWVuMThpTFAiLCJtYWMiOiI0NmZkZTUxMjgxMjkzMzBmOWYyNjFmNDA1YjUxNWRlZGRiODdmZTgzZThiMGEwMzZiNmI4ZGYyYzlmMGU3ZTMxIn0%3D; laravel_session=eyJpdiI6IkQ3QzNacDRtSE1UMkpJVkNqRnFxNEE9PSIsInZhbHVlIjoib3BvNE9xQTVHRnZSYjM1dHd4aThsYXNlNW1vL1Jmam1jQndaT2Zsckk2UEZlaXhPdEcxKy9RakhDT29LZ0NPUlRyWjVzUlYwRXJQTTAyK0tQbTFpTEtZNmhuRmNZTU1yRFhLS0I0SC9qZ3BIa1c5WEE5dncyaGZBajFKVEN3S0siLCJtYWMiOiJhYTZkMjEyNTk1NDllNzdjN2Q5Zjc4NjBiMGJiZjE3NzM4YmYxYzRmZWVhYWYxMTBjNjA3NmYzZGE5MTE1OWQ5In0%3D

                                         
                                         172.104.49.54
HTTP/1.1 404 Not Found
Content-Type: text/html; charset=UTF-8
                                        
Server: nginx
Date: Mon, 26 Sep 2022 11:42:31 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding,User-Agent


--- Additional Info ---
Magic:  ASCII text
Size:   16
Md5:    4845f01eaa8068384625e302e9a4eb05
Sha1:   fb6ff8293fa45e17ba97f84954e7d1d5b0d38f87
Sha256: 8a482f2271a42c5f54c96e816a84340a6f2357a5b81f927d07d00788f5140a41

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /theme/assets/js/dashmix.app.min.js HTTP/1.1 
Host: virtualedufairnepal.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://virtualedufairnepal.com/plus2/edufair/amarjyoti
Cookie: XSRF-TOKEN=eyJpdiI6IjN4L045ZWVCWW40Zm8xRi90TXJFcnc9PSIsInZhbHVlIjoiSlJwWUZ1dWFpOXczWmJBRGIzY2RBYlJ6aFNMMGIrdTBtMzJObWtEOFlQbEJYbDZaUDV2NDdnSm9SYVVwdmJjU2FQdGk4OWphNTRmUllHVDBDVnUvb25ueHVXQk5FMG9OMFEzMmRub3JtY1NCeW9xaGNXVW1pbFdWRWVuMThpTFAiLCJtYWMiOiI0NmZkZTUxMjgxMjkzMzBmOWYyNjFmNDA1YjUxNWRlZGRiODdmZTgzZThiMGEwMzZiNmI4ZGYyYzlmMGU3ZTMxIn0%3D; laravel_session=eyJpdiI6IkQ3QzNacDRtSE1UMkpJVkNqRnFxNEE9PSIsInZhbHVlIjoib3BvNE9xQTVHRnZSYjM1dHd4aThsYXNlNW1vL1Jmam1jQndaT2Zsckk2UEZlaXhPdEcxKy9RakhDT29LZ0NPUlRyWjVzUlYwRXJQTTAyK0tQbTFpTEtZNmhuRmNZTU1yRFhLS0I0SC9qZ3BIa1c5WEE5dncyaGZBajFKVEN3S0siLCJtYWMiOiJhYTZkMjEyNTk1NDllNzdjN2Q5Zjc4NjBiMGJiZjE3NzM4YmYxYzRmZWVhYWYxMTBjNjA3NmYzZGE5MTE1OWQ5In0%3D

                                         
                                         172.104.49.54
HTTP/1.1 404 Not Found
Content-Type: text/html; charset=UTF-8
                                        
Server: nginx
Date: Mon, 26 Sep 2022 11:42:31 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding,User-Agent


--- Additional Info ---
Magic:  ASCII text
Size:   16
Md5:    4845f01eaa8068384625e302e9a4eb05
Sha1:   fb6ff8293fa45e17ba97f84954e7d1d5b0d38f87
Sha256: 8a482f2271a42c5f54c96e816a84340a6f2357a5b81f927d07d00788f5140a41

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /plus2/public/theme/assets/js/plugins/magnific-popup/magnific-popup.css HTTP/1.1 
Host: virtualedufairnepal.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://virtualedufairnepal.com/plus2/edufair/amarjyoti
Cookie: XSRF-TOKEN=eyJpdiI6IjN4L045ZWVCWW40Zm8xRi90TXJFcnc9PSIsInZhbHVlIjoiSlJwWUZ1dWFpOXczWmJBRGIzY2RBYlJ6aFNMMGIrdTBtMzJObWtEOFlQbEJYbDZaUDV2NDdnSm9SYVVwdmJjU2FQdGk4OWphNTRmUllHVDBDVnUvb25ueHVXQk5FMG9OMFEzMmRub3JtY1NCeW9xaGNXVW1pbFdWRWVuMThpTFAiLCJtYWMiOiI0NmZkZTUxMjgxMjkzMzBmOWYyNjFmNDA1YjUxNWRlZGRiODdmZTgzZThiMGEwMzZiNmI4ZGYyYzlmMGU3ZTMxIn0%3D; laravel_session=eyJpdiI6IkQ3QzNacDRtSE1UMkpJVkNqRnFxNEE9PSIsInZhbHVlIjoib3BvNE9xQTVHRnZSYjM1dHd4aThsYXNlNW1vL1Jmam1jQndaT2Zsckk2UEZlaXhPdEcxKy9RakhDT29LZ0NPUlRyWjVzUlYwRXJQTTAyK0tQbTFpTEtZNmhuRmNZTU1yRFhLS0I0SC9qZ3BIa1c5WEE5dncyaGZBajFKVEN3S0siLCJtYWMiOiJhYTZkMjEyNTk1NDllNzdjN2Q5Zjc4NjBiMGJiZjE3NzM4YmYxYzRmZWVhYWYxMTBjNjA3NmYzZGE5MTE1OWQ5In0%3D

                                         
                                         172.104.49.54
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Server: nginx
Date: Mon, 26 Sep 2022 11:42:31 GMT
Content-Length: 7302
Connection: keep-alive
Last-Modified: Fri, 25 Dec 2020 02:26:04 GMT
Cache-Control: max-age=2592000
Expires: Wed, 26 Oct 2022 11:42:31 GMT
Vary: Accept-Encoding,User-Agent
Accept-Ranges: bytes


--- Additional Info ---
Magic:  ASCII text, with CRLF line terminators
Size:   7302
Md5:    c03fe8704d90e35eba342d2ca2c5a530
Sha1:   74a41372d833195b77dd9e167f82ca395cc4702d
Sha256: 1155981e8193622f58553eed0bba2fa43512af362a3d54dedef64c46970bb371
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Mon, 26 Sep 2022 11:42:32 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /maps-api-v3/embed/js/50/6/init_embed.js HTTP/1.1 
Host: maps.gstatic.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.google.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         142.250.74.163
HTTP/2 200 OK
content-type: text/javascript
                                        
accept-ranges: bytes
vary: Accept-Encoding, Origin
content-encoding: gzip
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/maps-api-js
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="maps-api-js"
report-to: {"group":"maps-api-js","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/maps-api-js"}]}
content-length: 70449
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sun, 25 Sep 2022 19:17:53 GMT
expires: Mon, 25 Sep 2023 19:17:53 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 19 Sep 2022 19:19:29 GMT
age: 59079
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (2669)
Size:   70449
Md5:    28b2f8991cb293000d95bcd22b064bdb
Sha1:   6cd3d214658feca2cd46b21b0e7312e986e60c68
Sha256: 9bc7a89f847eb9ef92849d1ec663511a56a942e60d683ce8f916924684b19300
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Mon, 26 Sep 2022 11:42:32 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /plus2/theme/assets/js/plugins/select2/js/select2.full.min.js HTTP/1.1 
Host: virtualedufairnepal.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://virtualedufairnepal.com/plus2/edufair/amarjyoti
Cookie: XSRF-TOKEN=eyJpdiI6IjN4L045ZWVCWW40Zm8xRi90TXJFcnc9PSIsInZhbHVlIjoiSlJwWUZ1dWFpOXczWmJBRGIzY2RBYlJ6aFNMMGIrdTBtMzJObWtEOFlQbEJYbDZaUDV2NDdnSm9SYVVwdmJjU2FQdGk4OWphNTRmUllHVDBDVnUvb25ueHVXQk5FMG9OMFEzMmRub3JtY1NCeW9xaGNXVW1pbFdWRWVuMThpTFAiLCJtYWMiOiI0NmZkZTUxMjgxMjkzMzBmOWYyNjFmNDA1YjUxNWRlZGRiODdmZTgzZThiMGEwMzZiNmI4ZGYyYzlmMGU3ZTMxIn0%3D; laravel_session=eyJpdiI6IkQ3QzNacDRtSE1UMkpJVkNqRnFxNEE9PSIsInZhbHVlIjoib3BvNE9xQTVHRnZSYjM1dHd4aThsYXNlNW1vL1Jmam1jQndaT2Zsckk2UEZlaXhPdEcxKy9RakhDT29LZ0NPUlRyWjVzUlYwRXJQTTAyK0tQbTFpTEtZNmhuRmNZTU1yRFhLS0I0SC9qZ3BIa1c5WEE5dncyaGZBajFKVEN3S0siLCJtYWMiOiJhYTZkMjEyNTk1NDllNzdjN2Q5Zjc4NjBiMGJiZjE3NzM4YmYxYzRmZWVhYWYxMTBjNjA3NmYzZGE5MTE1OWQ5In0%3D

                                         
                                         172.104.49.54
HTTP/1.1 404 Not Found
Content-Type: text/html; charset=UTF-8
                                        
Server: nginx
Date: Mon, 26 Sep 2022 11:42:32 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: no-cache, private
Vary: Accept-Encoding,User-Agent


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with CRLF line terminators
Size:   7984
Md5:    9f4051323cfa195166449537c9c11dba
Sha1:   07b6a493f38c262047b7dc3af02356022da08ac2
Sha256: 70a6a943c894e645dbfb5d4be6c2edcfc9f5a6c7adea9f4eaf57662a6bba1873

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /theme/assets/js/plugins/bootstrap-notify/bootstrap-notify.min.js HTTP/1.1 
Host: virtualedufairnepal.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://virtualedufairnepal.com/plus2/edufair/amarjyoti
Cookie: XSRF-TOKEN=eyJpdiI6IjN4L045ZWVCWW40Zm8xRi90TXJFcnc9PSIsInZhbHVlIjoiSlJwWUZ1dWFpOXczWmJBRGIzY2RBYlJ6aFNMMGIrdTBtMzJObWtEOFlQbEJYbDZaUDV2NDdnSm9SYVVwdmJjU2FQdGk4OWphNTRmUllHVDBDVnUvb25ueHVXQk5FMG9OMFEzMmRub3JtY1NCeW9xaGNXVW1pbFdWRWVuMThpTFAiLCJtYWMiOiI0NmZkZTUxMjgxMjkzMzBmOWYyNjFmNDA1YjUxNWRlZGRiODdmZTgzZThiMGEwMzZiNmI4ZGYyYzlmMGU3ZTMxIn0%3D; laravel_session=eyJpdiI6IkQ3QzNacDRtSE1UMkpJVkNqRnFxNEE9PSIsInZhbHVlIjoib3BvNE9xQTVHRnZSYjM1dHd4aThsYXNlNW1vL1Jmam1jQndaT2Zsckk2UEZlaXhPdEcxKy9RakhDT29LZ0NPUlRyWjVzUlYwRXJQTTAyK0tQbTFpTEtZNmhuRmNZTU1yRFhLS0I0SC9qZ3BIa1c5WEE5dncyaGZBajFKVEN3S0siLCJtYWMiOiJhYTZkMjEyNTk1NDllNzdjN2Q5Zjc4NjBiMGJiZjE3NzM4YmYxYzRmZWVhYWYxMTBjNjA3NmYzZGE5MTE1OWQ5In0%3D

                                         
                                         172.104.49.54
HTTP/1.1 404 Not Found
Content-Type: text/html; charset=UTF-8
                                        
Server: nginx
Date: Mon, 26 Sep 2022 11:42:32 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding,User-Agent


--- Additional Info ---
Magic:  ASCII text
Size:   16
Md5:    4845f01eaa8068384625e302e9a4eb05
Sha1:   fb6ff8293fa45e17ba97f84954e7d1d5b0d38f87
Sha256: 8a482f2271a42c5f54c96e816a84340a6f2357a5b81f927d07d00788f5140a41

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /theme/assets/js/plugins/magnific-popup/jquery.magnific-popup.min.js HTTP/1.1 
Host: virtualedufairnepal.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://virtualedufairnepal.com/plus2/edufair/amarjyoti
Cookie: XSRF-TOKEN=eyJpdiI6IjN4L045ZWVCWW40Zm8xRi90TXJFcnc9PSIsInZhbHVlIjoiSlJwWUZ1dWFpOXczWmJBRGIzY2RBYlJ6aFNMMGIrdTBtMzJObWtEOFlQbEJYbDZaUDV2NDdnSm9SYVVwdmJjU2FQdGk4OWphNTRmUllHVDBDVnUvb25ueHVXQk5FMG9OMFEzMmRub3JtY1NCeW9xaGNXVW1pbFdWRWVuMThpTFAiLCJtYWMiOiI0NmZkZTUxMjgxMjkzMzBmOWYyNjFmNDA1YjUxNWRlZGRiODdmZTgzZThiMGEwMzZiNmI4ZGYyYzlmMGU3ZTMxIn0%3D; laravel_session=eyJpdiI6IkQ3QzNacDRtSE1UMkpJVkNqRnFxNEE9PSIsInZhbHVlIjoib3BvNE9xQTVHRnZSYjM1dHd4aThsYXNlNW1vL1Jmam1jQndaT2Zsckk2UEZlaXhPdEcxKy9RakhDT29LZ0NPUlRyWjVzUlYwRXJQTTAyK0tQbTFpTEtZNmhuRmNZTU1yRFhLS0I0SC9qZ3BIa1c5WEE5dncyaGZBajFKVEN3S0siLCJtYWMiOiJhYTZkMjEyNTk1NDllNzdjN2Q5Zjc4NjBiMGJiZjE3NzM4YmYxYzRmZWVhYWYxMTBjNjA3NmYzZGE5MTE1OWQ5In0%3D

                                         
                                         172.104.49.54
HTTP/1.1 404 Not Found
Content-Type: text/html; charset=UTF-8
                                        
Server: nginx
Date: Mon, 26 Sep 2022 11:42:32 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding,User-Agent


--- Additional Info ---
Magic:  ASCII text
Size:   16
Md5:    4845f01eaa8068384625e302e9a4eb05
Sha1:   fb6ff8293fa45e17ba97f84954e7d1d5b0d38f87
Sha256: 8a482f2271a42c5f54c96e816a84340a6f2357a5b81f927d07d00788f5140a41

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /uploads/clients/amarjyoti/logo/3947e84b21d0ec4dd5c83143e25762ab-amarjyoti.webp HTTP/1.1 
Host: theedunepal.ap-south-1.linodeobjects.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://virtualedufairnepal.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         172.104.52.240
HTTP/1.1 200 OK
Content-Type: image/webp
                                        
Date: Mon, 26 Sep 2022 11:42:32 GMT
Content-Length: 7336
Connection: keep-alive
Accept-Ranges: bytes
Last-Modified: Sun, 23 Aug 2020 06:13:58 GMT
x-rgw-object-type: Normal
ETag: "de2f9ca3756b27b98e8f5c01ae0f6c29"
x-amz-request-id: tx000000000000007d37e6a-0063319028-5086c40-default


--- Additional Info ---
Magic:  RIFF (little-endian) data, Web/P image, VP8 encoding, 142x144, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Size:   7336
Md5:    de2f9ca3756b27b98e8f5c01ae0f6c29
Sha1:   9abab05a742980e6842b9d03eb65ec371d2b873b
Sha256: fdfec1931c39223d21e3f71e8e25253f94bdc8eb95b1985a14a427d482f9bc67
                                        
                                            GET /plus2/theme/assets/js/plugins/select2/js/select2.full.min.js HTTP/1.1 
Host: virtualedufairnepal.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://virtualedufairnepal.com/plus2/edufair/amarjyoti
Cookie: XSRF-TOKEN=eyJpdiI6IjN4L045ZWVCWW40Zm8xRi90TXJFcnc9PSIsInZhbHVlIjoiSlJwWUZ1dWFpOXczWmJBRGIzY2RBYlJ6aFNMMGIrdTBtMzJObWtEOFlQbEJYbDZaUDV2NDdnSm9SYVVwdmJjU2FQdGk4OWphNTRmUllHVDBDVnUvb25ueHVXQk5FMG9OMFEzMmRub3JtY1NCeW9xaGNXVW1pbFdWRWVuMThpTFAiLCJtYWMiOiI0NmZkZTUxMjgxMjkzMzBmOWYyNjFmNDA1YjUxNWRlZGRiODdmZTgzZThiMGEwMzZiNmI4ZGYyYzlmMGU3ZTMxIn0%3D; laravel_session=eyJpdiI6IkQ3QzNacDRtSE1UMkpJVkNqRnFxNEE9PSIsInZhbHVlIjoib3BvNE9xQTVHRnZSYjM1dHd4aThsYXNlNW1vL1Jmam1jQndaT2Zsckk2UEZlaXhPdEcxKy9RakhDT29LZ0NPUlRyWjVzUlYwRXJQTTAyK0tQbTFpTEtZNmhuRmNZTU1yRFhLS0I0SC9qZ3BIa1c5WEE5dncyaGZBajFKVEN3S0siLCJtYWMiOiJhYTZkMjEyNTk1NDllNzdjN2Q5Zjc4NjBiMGJiZjE3NzM4YmYxYzRmZWVhYWYxMTBjNjA3NmYzZGE5MTE1OWQ5In0%3D

                                         
                                         172.104.49.54
HTTP/1.1 404 Not Found
Content-Type: text/html; charset=UTF-8
                                        
Server: nginx
Date: Mon, 26 Sep 2022 11:42:32 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: no-cache, private
Vary: Accept-Encoding,User-Agent


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with CRLF line terminators
Size:   7984
Md5:    9f4051323cfa195166449537c9c11dba
Sha1:   07b6a493f38c262047b7dc3af02356022da08ac2
Sha256: 70a6a943c894e645dbfb5d4be6c2edcfc9f5a6c7adea9f4eaf57662a6bba1873

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2 HTTP/1.1 
Host: fonts.gstatic.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.google.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         142.250.74.163
HTTP/2 200 OK
content-type: font/woff2
                                        
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15744
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 21 Sep 2022 19:34:08 GMT
expires: Thu, 21 Sep 2023 19:34:08 GMT
cache-control: public, max-age=31536000
age: 403705
last-modified: Wed, 11 May 2022 19:24:48 GMT
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  gzip compressed data, max compression\012- data
Size:   16002
Md5:    2c5e576c986fa3babe2c32f4a7ca3f3c
Sha1:   2f9f0aaf63ec000b07fc073c26fddfb6ab4e4466
Sha256: f560931ec3844307c32fb2b1503925261fc99f30ecd22d27664b104e13e5567c

Alerts:
  File Analyzers:
    - virustotal: 0/0
                                        
                                            GET /s/roboto/v30/KFOlCnqEu92Fr1MmEU9fBBc4.woff2 HTTP/1.1 
Host: fonts.gstatic.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.google.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         142.250.74.163
HTTP/2 200 OK
content-type: font/woff2
                                        
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15920
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sun, 25 Sep 2022 18:14:12 GMT
expires: Mon, 25 Sep 2023 18:14:12 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 11 May 2022 19:24:45 GMT
age: 62901
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Web Open Font Format (Version 2), TrueType, length 15920, version 1.0\012- data
Size:   15920
Md5:    3a44e06eb954b96aa043227f3534189d
Sha1:   23cef6993ddb2b2979e8e7647fc3763694e2ba7d
Sha256: b019538234514166ec7665359d097403358f8a4c991901983922fb4d56989f1e
                                        
                                            GET /theme/assets/js/plugins/bootstrap-notify/bootstrap-notify.min.js HTTP/1.1 
Host: virtualedufairnepal.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://virtualedufairnepal.com/plus2/edufair/amarjyoti
Cookie: XSRF-TOKEN=eyJpdiI6IjN4L045ZWVCWW40Zm8xRi90TXJFcnc9PSIsInZhbHVlIjoiSlJwWUZ1dWFpOXczWmJBRGIzY2RBYlJ6aFNMMGIrdTBtMzJObWtEOFlQbEJYbDZaUDV2NDdnSm9SYVVwdmJjU2FQdGk4OWphNTRmUllHVDBDVnUvb25ueHVXQk5FMG9OMFEzMmRub3JtY1NCeW9xaGNXVW1pbFdWRWVuMThpTFAiLCJtYWMiOiI0NmZkZTUxMjgxMjkzMzBmOWYyNjFmNDA1YjUxNWRlZGRiODdmZTgzZThiMGEwMzZiNmI4ZGYyYzlmMGU3ZTMxIn0%3D; laravel_session=eyJpdiI6IkQ3QzNacDRtSE1UMkpJVkNqRnFxNEE9PSIsInZhbHVlIjoib3BvNE9xQTVHRnZSYjM1dHd4aThsYXNlNW1vL1Jmam1jQndaT2Zsckk2UEZlaXhPdEcxKy9RakhDT29LZ0NPUlRyWjVzUlYwRXJQTTAyK0tQbTFpTEtZNmhuRmNZTU1yRFhLS0I0SC9qZ3BIa1c5WEE5dncyaGZBajFKVEN3S0siLCJtYWMiOiJhYTZkMjEyNTk1NDllNzdjN2Q5Zjc4NjBiMGJiZjE3NzM4YmYxYzRmZWVhYWYxMTBjNjA3NmYzZGE5MTE1OWQ5In0%3D

                                         
                                         172.104.49.54
HTTP/1.1 404 Not Found
Content-Type: text/html; charset=UTF-8
                                        
Server: nginx
Date: Mon, 26 Sep 2022 11:42:32 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding,User-Agent


--- Additional Info ---
Magic:  ASCII text
Size:   16
Md5:    4845f01eaa8068384625e302e9a4eb05
Sha1:   fb6ff8293fa45e17ba97f84954e7d1d5b0d38f87
Sha256: 8a482f2271a42c5f54c96e816a84340a6f2357a5b81f927d07d00788f5140a41

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Age: 1777
Cache-Control: 'max-age=158059'
Date: Mon, 26 Sep 2022 11:42:33 GMT
Last-Modified: Mon, 26 Sep 2022 11:12:56 GMT
Server: ECS (ska/F711)
X-Cache: HIT
Content-Length: 471

                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Age: 1777
Cache-Control: 'max-age=158059'
Date: Mon, 26 Sep 2022 11:42:33 GMT
Last-Modified: Mon, 26 Sep 2022 11:12:56 GMT
Server: ECS (ska/F711)
X-Cache: HIT
Content-Length: 471

                                        
                                            GET /en_US/sdk/xfbml.customerchat.js HTTP/1.1 
Host: connect.facebook.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://virtualedufairnepal.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         157.240.200.14
HTTP/2 200 OK
content-type: application/x-javascript; charset=utf-8
                                        
vary: Accept-Encoding
content-encoding: gzip
access-control-expose-headers: X-FB-Content-MD5
x-fb-content-md5: 6057cf077ec5b57834e5e1eff7dfd1da
etag: "c6554bd03074aac32f21f0b1bcdc8e83"
timing-allow-origin: *
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
expires: Mon, 26 Sep 2022 12:00:05 GMT
cache-control: public,max-age=1200,stale-while-revalidate=3600
document-policy: force-load-at-top
cross-origin-opener-policy: same-origin-allow-popups
x-content-type-options: nosniff
x-fb-rlafr: 0
x-frame-options: DENY
strict-transport-security: max-age=31536000; preload; includeSubDomains
content-md5: ERzBjI1n/4uV35sL6GOthQ==
x-fb-debug: QuSSaPRT9+ZQ6hyKmkRXN/C9vtVyGr12RucnrWwbvMdHAtA27fBjqUXYy3Os4YYMJrUd2tJG+9qm+BCugJV+eg==
content-length: 92851
x-fb-trip-id: 1679558926
date: Mon, 26 Sep 2022 11:42:33 GMT
alt-svc: h3=":443"; ma=86400,h3-29=":443"; ma=86400
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (20897)
Size:   92851
Md5:    111cc18c8d67ff8b95df9b0be863ad85
Sha1:   1dbccbd2b01fa97e6badd5cd0e65d764cdf75ca3
Sha256: e0d68099147b9e3ee39c6036bf1fbeef06d0e56dc2474f968ab4c630bdb68930
                                        
                                            GET /uploads/clients/amarjyoti/banner/1596432290_background_banner.png HTTP/1.1 
Host: theedunepal.ap-south-1.linodeobjects.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://virtualedufairnepal.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         172.104.52.240
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Date: Mon, 26 Sep 2022 11:42:32 GMT
Content-Length: 623702
Connection: keep-alive
Accept-Ranges: bytes
Last-Modified: Wed, 19 Aug 2020 05:31:49 GMT
x-rgw-object-type: Normal
ETag: "0fd09099149ee9d2171aa102d1960813"
x-amz-request-id: tx00000000000000cc25465-0063319028-4f5eb53-default


--- Additional Info ---
Magic:  PNG image data, 1300 x 500, 8-bit/color RGB, non-interlaced\012- data
Size:   623702
Md5:    0fd09099149ee9d2171aa102d1960813
Sha1:   ef800f8231f025345b6b1853992844b4939b072f
Sha256: d2c2257ab6e306f63092c63fc4fd6519cf919bcb50f7213fb85c02bfd26e437c
                                        
                                            GET /plugins/customer_chat/SDK/?app_id=&attribution=setup_tool&channel=https%3A%2F%2Fstaticxx.facebook.com%2Fx%2Fconnect%2Fxd_arbiter%2F%3Fversion%3D46%23cb%3Df3075dc2060ccfa%26domain%3Dvirtualedufairnepal.com%26is_canvas%3Dfalse%26origin%3Dhttp%253A%252F%252Fvirtualedufairnepal.com%252Ff1637f066e5648%26relation%3Dparent.parent&current_url=http%3A%2F%2Fvirtualedufairnepal.com%2Fplus2%2Fedufair%2Famarjyoti&event_name=chat_plugin_sdk_facade_create&is_loaded_by_facade=true&loading_time=0&locale=en_US&log_id=7894892a-1002-474b-b8aa-6bc4dd3b5098&logged_in_greeting=Namaste%20!%20How%20Can%20we%20help%20you%20%3F%20Please%20message%20us&logged_out_greeting=Namaste%20!%20How%20Can%20we%20help%20you%20%3F%20Please%20message%20us&page_id=102450104893612&request_time=1664192552058&sdk=joey&should_use_new_domain=false&suppress_http_code=1 HTTP/1.1 
Host: www.facebook.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-type: application/x-www-form-urlencoded
Origin: http://virtualedufairnepal.com
Connection: keep-alive
Referer: http://virtualedufairnepal.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         157.240.200.35
HTTP/2 200 OK
content-type: text/html; charset="utf-8"
                                        
report-to: {"max_age":259200,"endpoints":[{"url":"https:\/\/www.facebook.com\/ajax\/browser_error_reports\/?device_level=unknown"}]}
x-fb-rlafr: 0
content-security-policy-report-only: default-src data: blob: 'self' https://*.fbsbx.com 'unsafe-inline' *.facebook.com 'unsafe-eval' *.fbcdn.net;script-src *.facebook.com *.fbcdn.net *.facebook.net *.google-analytics.com *.google.com 127.0.0.1:* 'unsafe-inline' 'unsafe-eval' blob: data: 'self' connect.facebook.net;style-src fonts.googleapis.com *.fbcdn.net data: *.facebook.com 'unsafe-inline';connect-src *.facebook.com facebook.com *.fbcdn.net *.facebook.net wss://*.facebook.com:* wss://*.whatsapp.com:* wss://*.fbcdn.net attachment.fbsbx.com ws://localhost:* blob: *.cdninstagram.com 'self' wss://gateway.facebook.com wss://edge-chat.facebook.com wss://snaptu-d.facebook.com wss://kaios-d.facebook.com/ v.whatsapp.net *.fbsbx.com *.fb.com;font-src data: *.gstatic.com *.facebook.com *.fbcdn.net *.fbsbx.com;img-src *.fbcdn.net *.facebook.com data: https://*.fbsbx.com *.tenor.co media.tenor.com facebook.com *.cdninstagram.com fbsbx.com fbcdn.net *.giphy.com connect.facebook.net *.carriersignal.info blob: android-webview-video-poster: googleads.g.doubleclick.net www.googleadservices.com *.whatsapp.net *.fb.com *.oculuscdn.com;media-src *.cdninstagram.com blob: *.fbcdn.net *.fbsbx.com www.facebook.com *.facebook.com https://*.giphy.com data:;frame-src *.doubleclick.net *.google.com *.facebook.com www.googleadservices.com *.fbsbx.com fbsbx.com data: www.instagram.com *.fbcdn.net https://paywithmybank.com;worker-src blob: *.facebook.com data:;report-uri https://www.facebook.com/csp/reporting/?minimize=0;
content-security-policy: default-src data: blob: 'self' https://*.fbsbx.com 'unsafe-inline' *.facebook.com 'unsafe-eval' *.fbcdn.net;script-src *.facebook.com *.fbcdn.net *.facebook.net *.google-analytics.com *.google.com 127.0.0.1:* 'unsafe-inline' 'unsafe-eval' blob: data: 'self' connect.facebook.net;style-src fonts.googleapis.com *.fbcdn.net data: *.facebook.com 'unsafe-inline';connect-src *.facebook.com facebook.com *.fbcdn.net *.facebook.net wss://*.facebook.com:* wss://*.whatsapp.com:* wss://*.fbcdn.net attachment.fbsbx.com ws://localhost:* blob: *.cdninstagram.com 'self' wss://gateway.facebook.com wss://edge-chat.facebook.com wss://snaptu-d.facebook.com wss://kaios-d.facebook.com/ v.whatsapp.net *.fbsbx.com *.fb.com;font-src data: *.gstatic.com *.facebook.com *.fbcdn.net *.fbsbx.com;img-src *.fbcdn.net *.facebook.com data: https://*.fbsbx.com *.tenor.co media.tenor.com facebook.com *.cdninstagram.com fbsbx.com fbcdn.net *.giphy.com connect.facebook.net *.carriersignal.info blob: android-webview-video-poster: googleads.g.doubleclick.net www.googleadservices.com *.whatsapp.net *.fb.com *.oculuscdn.com;media-src *.cdninstagram.com blob: *.fbcdn.net *.fbsbx.com www.facebook.com *.facebook.com https://*.giphy.com data:;frame-src *.doubleclick.net *.google.com *.facebook.com www.googleadservices.com *.fbsbx.com fbsbx.com data: www.instagram.com *.fbcdn.net https://paywithmybank.com;worker-src blob: *.facebook.com data:;block-all-mixed-content;upgrade-insecure-requests;
document-policy: force-load-at-top
cross-origin-opener-policy: same-origin-allow-popups
pragma: no-cache
cache-control: private, no-cache, no-store, must-revalidate
expires: Sat, 01 Jan 2000 00:00:00 GMT
x-content-type-options: nosniff
x-xss-protection: 0
x-frame-options: DENY
access-control-allow-origin: http://virtualedufairnepal.com
strict-transport-security: max-age=15552000; preload
x-fb-debug: OzzJo9b75VPeq4Loi+SI///qCN1fHAScU0wgdxOTWpVisyly74TgX2VT2It5IXiiYEKQY7aJ4zqmulpbyF8zLw==
content-length: 0
date: Mon, 26 Sep 2022 11:42:33 GMT
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

                                        
                                            GET /plugins/customer_chat/SDK/?app_id=&attribution=setup_tool&channel=https%3A%2F%2Fstaticxx.facebook.com%2Fx%2Fconnect%2Fxd_arbiter%2F%3Fversion%3D46%23cb%3Df3075dc2060ccfa%26domain%3Dvirtualedufairnepal.com%26is_canvas%3Dfalse%26origin%3Dhttp%253A%252F%252Fvirtualedufairnepal.com%252Ff1637f066e5648%26relation%3Dparent.parent&current_url=http%3A%2F%2Fvirtualedufairnepal.com%2Fplus2%2Fedufair%2Famarjyoti&event_name=chat_plugin_sdk_facade_load&is_loaded_by_facade=true&loading_time=149&locale=en_US&log_id=7894892a-1002-474b-b8aa-6bc4dd3b5098&logged_in_greeting=Namaste%20!%20How%20Can%20we%20help%20you%20%3F%20Please%20message%20us&logged_out_greeting=Namaste%20!%20How%20Can%20we%20help%20you%20%3F%20Please%20message%20us&page_id=102450104893612&request_time=1664192552207&sdk=joey&should_use_new_domain=false&suppress_http_code=1 HTTP/1.1 
Host: www.facebook.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-type: application/x-www-form-urlencoded
Origin: http://virtualedufairnepal.com
Connection: keep-alive
Referer: http://virtualedufairnepal.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         157.240.200.35
HTTP/2 200 OK
content-type: text/html; charset="utf-8"
                                        
report-to: {"max_age":259200,"endpoints":[{"url":"https:\/\/www.facebook.com\/ajax\/browser_error_reports\/?device_level=unknown"}]}
x-fb-rlafr: 0
content-security-policy-report-only: default-src data: blob: 'self' https://*.fbsbx.com 'unsafe-inline' *.facebook.com 'unsafe-eval' *.fbcdn.net;script-src *.facebook.com *.fbcdn.net *.facebook.net *.google-analytics.com *.google.com 127.0.0.1:* 'unsafe-inline' 'unsafe-eval' blob: data: 'self' connect.facebook.net;style-src fonts.googleapis.com *.fbcdn.net data: *.facebook.com 'unsafe-inline';connect-src *.facebook.com facebook.com *.fbcdn.net *.facebook.net wss://*.facebook.com:* wss://*.whatsapp.com:* wss://*.fbcdn.net attachment.fbsbx.com ws://localhost:* blob: *.cdninstagram.com 'self' wss://gateway.facebook.com wss://edge-chat.facebook.com wss://snaptu-d.facebook.com wss://kaios-d.facebook.com/ v.whatsapp.net *.fbsbx.com *.fb.com;font-src data: *.gstatic.com *.facebook.com *.fbcdn.net *.fbsbx.com;img-src *.fbcdn.net *.facebook.com data: https://*.fbsbx.com *.tenor.co media.tenor.com facebook.com *.cdninstagram.com fbsbx.com fbcdn.net *.giphy.com connect.facebook.net *.carriersignal.info blob: android-webview-video-poster: googleads.g.doubleclick.net www.googleadservices.com *.whatsapp.net *.fb.com *.oculuscdn.com;media-src *.cdninstagram.com blob: *.fbcdn.net *.fbsbx.com www.facebook.com *.facebook.com https://*.giphy.com data:;frame-src *.doubleclick.net *.google.com *.facebook.com www.googleadservices.com *.fbsbx.com fbsbx.com data: www.instagram.com *.fbcdn.net https://paywithmybank.com;worker-src blob: *.facebook.com data:;report-uri https://www.facebook.com/csp/reporting/?minimize=0;
content-security-policy: default-src data: blob: 'self' https://*.fbsbx.com 'unsafe-inline' *.facebook.com 'unsafe-eval' *.fbcdn.net;script-src *.facebook.com *.fbcdn.net *.facebook.net *.google-analytics.com *.google.com 127.0.0.1:* 'unsafe-inline' 'unsafe-eval' blob: data: 'self' connect.facebook.net;style-src fonts.googleapis.com *.fbcdn.net data: *.facebook.com 'unsafe-inline';connect-src *.facebook.com facebook.com *.fbcdn.net *.facebook.net wss://*.facebook.com:* wss://*.whatsapp.com:* wss://*.fbcdn.net attachment.fbsbx.com ws://localhost:* blob: *.cdninstagram.com 'self' wss://gateway.facebook.com wss://edge-chat.facebook.com wss://snaptu-d.facebook.com wss://kaios-d.facebook.com/ v.whatsapp.net *.fbsbx.com *.fb.com;font-src data: *.gstatic.com *.facebook.com *.fbcdn.net *.fbsbx.com;img-src *.fbcdn.net *.facebook.com data: https://*.fbsbx.com *.tenor.co media.tenor.com facebook.com *.cdninstagram.com fbsbx.com fbcdn.net *.giphy.com connect.facebook.net *.carriersignal.info blob: android-webview-video-poster: googleads.g.doubleclick.net www.googleadservices.com *.whatsapp.net *.fb.com *.oculuscdn.com;media-src *.cdninstagram.com blob: *.fbcdn.net *.fbsbx.com www.facebook.com *.facebook.com https://*.giphy.com data:;frame-src *.doubleclick.net *.google.com *.facebook.com www.googleadservices.com *.fbsbx.com fbsbx.com data: www.instagram.com *.fbcdn.net https://paywithmybank.com;worker-src blob: *.facebook.com data:;block-all-mixed-content;upgrade-insecure-requests;
document-policy: force-load-at-top
cross-origin-opener-policy: same-origin-allow-popups
pragma: no-cache
cache-control: private, no-cache, no-store, must-revalidate
expires: Sat, 01 Jan 2000 00:00:00 GMT
x-content-type-options: nosniff
x-xss-protection: 0
x-frame-options: DENY
access-control-allow-origin: http://virtualedufairnepal.com
strict-transport-security: max-age=15552000; preload
x-fb-debug: Z1jHfJbR1MfyiFzQhTMuyEEkDuv4pxqaJgw9uig7DKSwwFyyRO+gzZkM7vBXHalwZvvOwNM/2tUOQ2E3fwVEeA==
content-length: 0
date: Mon, 26 Sep 2022 11:42:34 GMT
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

                                        
                                            GET /css?family=Nunito+Sans:300,400,400i,600,700 HTTP/1.1 
Host: fonts.googleapis.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://virtualedufairnepal.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         142.250.74.10
HTTP/2 200 OK
content-type: text/css; charset=utf-8
                                        
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Mon, 26 Sep 2022 11:42:30 GMT
date: Mon, 26 Sep 2022 11:42:30 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
                                        
                                            GET /plugins/customer_chat/facade/?app_id=&attribution=setup_tool&channel=https%3A%2F%2Fstaticxx.facebook.com%2Fx%2Fconnect%2Fxd_arbiter%2F%3Fversion%3D46%23cb%3Df3075dc2060ccfa%26domain%3Dvirtualedufairnepal.com%26is_canvas%3Dfalse%26origin%3Dhttp%253A%252F%252Fvirtualedufairnepal.com%252Ff1637f066e5648%26relation%3Dparent.parent&current_url=http%3A%2F%2Fvirtualedufairnepal.com%2Fplus2%2Fedufair%2Famarjyoti&is_loaded_by_facade=true&locale=en_US&log_id=7894892a-1002-474b-b8aa-6bc4dd3b5098&logged_in_greeting=Namaste%20!%20How%20Can%20we%20help%20you%20%3F%20Please%20message%20us&logged_out_greeting=Namaste%20!%20How%20Can%20we%20help%20you%20%3F%20Please%20message%20us&page_id=102450104893612&request_time=1664192552058&sdk=joey&should_use_new_domain=false&suppress_http_code=1 HTTP/1.1 
Host: www.facebook.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-type: application/x-www-form-urlencoded
Origin: http://virtualedufairnepal.com
Connection: keep-alive
Referer: http://virtualedufairnepal.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         157.240.200.35
HTTP/2 200 OK
content-type: application/json; charset=utf-8
                                        
vary: Accept-Encoding
content-encoding: br
report-to: {"max_age":259200,"endpoints":[{"url":"https:\/\/www.facebook.com\/ajax\/browser_error_reports\/?device_level=unknown"}]}
x-fb-rlafr: 0
content-security-policy-report-only: default-src data: blob: 'self' https://*.fbsbx.com 'unsafe-inline' *.facebook.com 'unsafe-eval' *.fbcdn.net;script-src *.facebook.com *.fbcdn.net *.facebook.net *.google-analytics.com *.google.com 127.0.0.1:* 'unsafe-inline' 'unsafe-eval' blob: data: 'self' connect.facebook.net;style-src fonts.googleapis.com *.fbcdn.net data: *.facebook.com 'unsafe-inline';connect-src *.facebook.com facebook.com *.fbcdn.net *.facebook.net wss://*.facebook.com:* wss://*.whatsapp.com:* wss://*.fbcdn.net attachment.fbsbx.com ws://localhost:* blob: *.cdninstagram.com 'self' wss://gateway.facebook.com wss://edge-chat.facebook.com wss://snaptu-d.facebook.com wss://kaios-d.facebook.com/ v.whatsapp.net *.fbsbx.com *.fb.com;font-src data: *.gstatic.com *.facebook.com *.fbcdn.net *.fbsbx.com;img-src *.fbcdn.net *.facebook.com data: https://*.fbsbx.com *.tenor.co media.tenor.com facebook.com *.cdninstagram.com fbsbx.com fbcdn.net *.giphy.com connect.facebook.net *.carriersignal.info blob: android-webview-video-poster: googleads.g.doubleclick.net www.googleadservices.com *.whatsapp.net *.fb.com *.oculuscdn.com;media-src *.cdninstagram.com blob: *.fbcdn.net *.fbsbx.com www.facebook.com *.facebook.com https://*.giphy.com data:;frame-src *.doubleclick.net *.google.com *.facebook.com www.googleadservices.com *.fbsbx.com fbsbx.com data: www.instagram.com *.fbcdn.net https://paywithmybank.com;worker-src blob: *.facebook.com data:;report-uri https://www.facebook.com/csp/reporting/?minimize=0;
content-security-policy: default-src data: blob: 'self' https://*.fbsbx.com 'unsafe-inline' *.facebook.com 'unsafe-eval' *.fbcdn.net;script-src *.facebook.com *.fbcdn.net *.facebook.net *.google-analytics.com *.google.com 127.0.0.1:* 'unsafe-inline' 'unsafe-eval' blob: data: 'self' connect.facebook.net;style-src fonts.googleapis.com *.fbcdn.net data: *.facebook.com 'unsafe-inline';connect-src *.facebook.com facebook.com *.fbcdn.net *.facebook.net wss://*.facebook.com:* wss://*.whatsapp.com:* wss://*.fbcdn.net attachment.fbsbx.com ws://localhost:* blob: *.cdninstagram.com 'self' wss://gateway.facebook.com wss://edge-chat.facebook.com wss://snaptu-d.facebook.com wss://kaios-d.facebook.com/ v.whatsapp.net *.fbsbx.com *.fb.com;font-src data: *.gstatic.com *.facebook.com *.fbcdn.net *.fbsbx.com;img-src *.fbcdn.net *.facebook.com data: https://*.fbsbx.com *.tenor.co media.tenor.com facebook.com *.cdninstagram.com fbsbx.com fbcdn.net *.giphy.com connect.facebook.net *.carriersignal.info blob: android-webview-video-poster: googleads.g.doubleclick.net www.googleadservices.com *.whatsapp.net *.fb.com *.oculuscdn.com;media-src *.cdninstagram.com blob: *.fbcdn.net *.fbsbx.com www.facebook.com *.facebook.com https://*.giphy.com data:;frame-src *.doubleclick.net *.google.com *.facebook.com www.googleadservices.com *.fbsbx.com fbsbx.com data: www.instagram.com *.fbcdn.net https://paywithmybank.com;worker-src blob: *.facebook.com data:;block-all-mixed-content;upgrade-insecure-requests;
document-policy: force-load-at-top
cross-origin-opener-policy: same-origin-allow-popups
pragma: no-cache
cache-control: private, no-cache, no-store, must-revalidate
expires: Sat, 01 Jan 2000 00:00:00 GMT
x-content-type-options: nosniff
x-xss-protection: 0
x-frame-options: DENY
access-control-allow-origin: http://virtualedufairnepal.com
strict-transport-security: max-age=15552000; preload
x-fb-debug: aam/UMovz7YiOS+Zs+0zYeNefAyNHN5cxKzy7GBAvt1h9QAE4qIaHW5oyV/4IIdymQ5y3S6q2jof8Ytw6wV65Q==
date: Mon, 26 Sep 2022 11:42:33 GMT
priority: u=3,i
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2


--- Additional Info ---
                                        
                                            GET /new_domain_gating/?endpoint=customerchat&page_id=102450104893612&suppress_http_code=1 HTTP/1.1 
Host: socialplugin.facebook.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-type: application/x-www-form-urlencoded
Origin: http://virtualedufairnepal.com
Connection: keep-alive
Referer: http://virtualedufairnepal.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         157.240.200.16
HTTP/2 200 OK
content-type: application/json; charset=utf-8
                                        
vary: Accept-Encoding
content-encoding: br
content-security-policy: default-src * data: blob: 'self';script-src *.facebook.com *.fbcdn.net *.facebook.net *.google-analytics.com *.google.com 127.0.0.1:* 'unsafe-inline' 'unsafe-eval' blob: data: 'self';style-src data: blob: 'unsafe-inline' *;connect-src *.facebook.com facebook.com *.fbcdn.net *.facebook.net wss://*.facebook.com:* wss://*.whatsapp.com:* wss://*.fbcdn.net attachment.fbsbx.com ws://localhost:* blob: *.cdninstagram.com 'self';block-all-mixed-content;upgrade-insecure-requests;
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
pragma: no-cache
cache-control: private, no-cache, no-store, must-revalidate
expires: Sat, 01 Jan 2000 00:00:00 GMT
x-content-type-options: nosniff
x-xss-protection: 0
x-frame-options: DENY
access-control-allow-origin: http://virtualedufairnepal.com
x-fb-debug: lVNKS/CASwgUu1/+ThofZNxyHNDj3pjpwI0spQzNqphSwIbQaXXrq54YZWyNv7pqLEHE5Qnyvnl4ezVL4EfrAQ==
date: Mon, 26 Sep 2022 11:42:33 GMT
priority: u=3,i
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2


--- Additional Info ---