firefox.settings.services.mozilla.com/v1/
143.204.55.36200 OK 939 B URL HTTP/1.1 firefox.settings.services.mozilla.com/v1/
IP 143.204.55.36:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 91dd975a7b17b2922dd23c0e49314e40
57a2ece1e3cee7c4ebf927f2ba92f52cac395fe2
09966873bbf317f8910c59544cfde2a6d46e8acd2905797cc7c85c6b4d18ea8a
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 939
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Content-Length, Content-Type, Alert, Backoff, Retry-After
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Date: Fri, 02 Sep 2022 19:42:07 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
X-Cache: Hit from cloudfront
Via: 1.1 2afd697fc5d0058ea30d6c4b939e714c.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: iVQd0VqHrptkgx08SlMW46JTLsEjoK41yQ4E71gVlXzD3AnLJ_05Kw==
Age: 2568
portal.cpschool.uk/
94.130.143.20200 OK 35 kB IP 94.130.143.20:0
ASN #24940 Hetzner Online GmbH
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (405), with CRLF line terminators
Hash f9ea748ec5ed5c4e106efd0a1466ae0e
21f84d2fb8243cee8e3ffafab4c466a1dc42e879
e163861a9d65c2cf70069dbfd983a5272239fd41f9eb1c19e97698fa4d21b3b7
Analyzer Verdict Alert fortinet Malware
GET / HTTP/1.1
Host: portal.cpschool.uk
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 200 OK
Cache-Control: no-cache, no-store
Pragma: no-cache
Content-Type: text/html; charset=utf-8
Expires: -1
Server: Microsoft-IIS/10.0
X-AspNetMvc-Version: 5.2
X-AspNet-Version: 4.0.30319
Set-Cookie: ASP.NET_SessionId=gjio324liu5ois3fslcnpxhw; path=/; HttpOnly; SameSite=Lax
ASP.NET_SessionId=gjio324liu5ois3fslcnpxhw; path=/; HttpOnly; SameSite=Lax
__RequestVerificationToken=jNNaae52u2hI-E6zoFv-eUOo4rMrRVN4c3YZrxGhsjdzpPL1TdSFIbeemHTEqs46CG0sRjcyjaqaY-HJv6CuDYiXkH9afTnHK7yCcNns_Ss1; path=/; HttpOnly
X-Frame-Options: AllowAll
X-Powered-By: ASP.NET
Access-Control-Allow-Origin: *
Date: Fri, 02 Sep 2022 20:24:55 GMT
Content-Length: 34639
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash bcdebf7a2bad5db595e8a0c1abb2ddcb
249dda2fa5e37b8a8f3a8c797193bf0874b6eedc
9b43ec48b16f96449208a0094c4d660806a2a2d344b5862dbff4c393bf3f9f9f
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "9B43EC48B16F96449208A0094C4D660806A2A2D344B5862DBFF4C393BF3F9F9F"
Last-Modified: Thu, 01 Sep 2022 11:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=18349
Expires: Sat, 03 Sep 2022 01:30:44 GMT
Date: Fri, 02 Sep 2022 20:24:55 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-09-23-18-04.chain
143.204.55.110200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-09-23-18-04.chain
IP 143.204.55.110:0
File type PEM certificate\012- , ASCII text
Hash 742edb4038f38bc533514982f3d2e861
cc3a20c8dc2a8c632ef9387a2744253f1e3fdef1
b6bfa49d3d135035701231db2fffc0c0643444394009a94c6a1b4d829d6b8345
GET /chains/remote-settings.content-signature.mozilla.org-2022-10-09-23-18-04.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: binary/octet-stream
content-length: 5348
last-modified: Sat, 20 Aug 2022 23:18:05 GMT
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
date: Fri, 02 Sep 2022 01:15:17 GMT
etag: "742edb4038f38bc533514982f3d2e861"
x-cache: Hit from cloudfront
via: 1.1 8e6dce34fd223e0c9d89fd938d1784a2.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: cS4eeuyrP2YaHbockIn4acey7l82M7_IkHvORTPvRzkp_28aZQ2qZw==
age: 68978
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Fri, 02 Sep 2022 20:24:55 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
portal.cpschool.uk/Content/assets/css/fullcalendar/portal_calendar.css?v=1_351
94.130.143.20200 OK 11 kB URL HTTP/1.1 portal.cpschool.uk/Content/assets/css/fullcalendar/portal_calendar.css?v=1_351
IP 94.130.143.20:0
ASN #24940 Hetzner Online GmbH
File type Unicode text, UTF-8 (with BOM) text, with CRLF line terminators
Hash df225d121748b8ea755f7e4eac5e6fbc
b329e59c5fd40f72b14d44ec3f6ac6bf04b693e8
b0c2ed8d0acc94013b953c5bc0fbbacbcfff8050088682770835f7a5e4291540
Analyzer Verdict Alert fortinet Malware
GET /Content/assets/css/fullcalendar/portal_calendar.css?v=1_351 HTTP/1.1
Host: portal.cpschool.uk
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://portal.cpschool.uk/
Cookie: ASP.NET_SessionId=gjio324liu5ois3fslcnpxhw; __RequestVerificationToken=jNNaae52u2hI-E6zoFv-eUOo4rMrRVN4c3YZrxGhsjdzpPL1TdSFIbeemHTEqs46CG0sRjcyjaqaY-HJv6CuDYiXkH9afTnHK7yCcNns_Ss1
HTTP/1.1 200 OK
Content-Type: text/css
Last-Modified: Sat, 15 Jan 2022 19:35:51 GMT
Accept-Ranges: bytes
ETag: "e8f7bc1a47ad81:0"
Server: Microsoft-IIS/10.0
X-Powered-By: ASP.NET
Access-Control-Allow-Origin: *
Date: Fri, 02 Sep 2022 20:24:55 GMT
Content-Length: 11393
portal.cpschool.uk/Content/assets/js/Custom/ForgotPassword.js?v=1_351
94.130.143.20200 OK 3.6 kB URL HTTP/1.1 portal.cpschool.uk/Content/assets/js/Custom/ForgotPassword.js?v=1_351
IP 94.130.143.20:0
ASN #24940 Hetzner Online GmbH
File type Unicode text, UTF-8 (with BOM) text, with CRLF line terminators
Hash be128f235ef7474b592a017313bbcdb7
9c3e3ac9754b66fc07f9211972c247df5e6c4fed
13eca7952f05daa59713cd6614839fb730c73868d78090d6c17765ec122f2c50
Analyzer Verdict Alert fortinet Malware
GET /Content/assets/js/Custom/ForgotPassword.js?v=1_351 HTTP/1.1
Host: portal.cpschool.uk
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://portal.cpschool.uk/
Cookie: ASP.NET_SessionId=gjio324liu5ois3fslcnpxhw; __RequestVerificationToken=jNNaae52u2hI-E6zoFv-eUOo4rMrRVN4c3YZrxGhsjdzpPL1TdSFIbeemHTEqs46CG0sRjcyjaqaY-HJv6CuDYiXkH9afTnHK7yCcNns_Ss1
HTTP/1.1 200 OK
Content-Type: application/javascript
Last-Modified: Sat, 15 Jan 2022 19:36:02 GMT
Accept-Ranges: bytes
ETag: "99a0792147ad81:0"
Server: Microsoft-IIS/10.0
X-Powered-By: ASP.NET
Access-Control-Allow-Origin: *
Date: Fri, 02 Sep 2022 20:24:55 GMT
Content-Length: 3612
portal.cpschool.uk/Content/assets/js/Custom/Home/GuestHome.js?v=1_351
94.130.143.20200 OK 12 kB URL HTTP/1.1 portal.cpschool.uk/Content/assets/js/Custom/Home/GuestHome.js?v=1_351
IP 94.130.143.20:0
ASN #24940 Hetzner Online GmbH
File type Unicode text, UTF-8 (with BOM) text, with CRLF line terminators
Hash 6f200403e07cd36936b2b450fb499d0b
d550e2294ece4986a93c3f42454e5f9cd8c5c426
6427d3501a7a5741d482c660e042de9f09b24359290e20791f52b1ff71ed76dd
Analyzer Verdict Alert fortinet Malware
GET /Content/assets/js/Custom/Home/GuestHome.js?v=1_351 HTTP/1.1
Host: portal.cpschool.uk
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://portal.cpschool.uk/
Cookie: ASP.NET_SessionId=gjio324liu5ois3fslcnpxhw; __RequestVerificationToken=jNNaae52u2hI-E6zoFv-eUOo4rMrRVN4c3YZrxGhsjdzpPL1TdSFIbeemHTEqs46CG0sRjcyjaqaY-HJv6CuDYiXkH9afTnHK7yCcNns_Ss1
HTTP/1.1 200 OK
Content-Type: application/javascript
Last-Modified: Thu, 24 Mar 2022 19:06:54 GMT
Accept-Ranges: bytes
ETag: "906e4b53b23fd81:0"
Server: Microsoft-IIS/10.0
X-Powered-By: ASP.NET
Access-Control-Allow-Origin: *
Date: Fri, 02 Sep 2022 20:24:55 GMT
Content-Length: 12092
portal.cpschool.uk/Content/assets/js/Common/Calendar.js?v=1_351
94.130.143.20200 OK 19 kB URL HTTP/1.1 portal.cpschool.uk/Content/assets/js/Common/Calendar.js?v=1_351
IP 94.130.143.20:0
ASN #24940 Hetzner Online GmbH
File type Unicode text, UTF-8 (with BOM) text, with CRLF line terminators
Hash 8373f16f451cd13281ccec93b04b1892
d2167b487a433709ba9277e22581bddb64ffd7b6
10455e79e47e5562dbca0a3b4ab1b6f0764062c233c888d5534e9a6ae3ab8247
Analyzer Verdict Alert fortinet Malware
GET /Content/assets/js/Common/Calendar.js?v=1_351 HTTP/1.1
Host: portal.cpschool.uk
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://portal.cpschool.uk/
Cookie: ASP.NET_SessionId=gjio324liu5ois3fslcnpxhw; __RequestVerificationToken=jNNaae52u2hI-E6zoFv-eUOo4rMrRVN4c3YZrxGhsjdzpPL1TdSFIbeemHTEqs46CG0sRjcyjaqaY-HJv6CuDYiXkH9afTnHK7yCcNns_Ss1
HTTP/1.1 200 OK
Content-Type: application/javascript
Last-Modified: Fri, 11 Mar 2022 03:55:07 GMT
Accept-Ranges: bytes
ETag: "27a21cccfb34d81:0"
Server: Microsoft-IIS/10.0
X-Powered-By: ASP.NET
Access-Control-Allow-Origin: *
Date: Fri, 02 Sep 2022 20:24:55 GMT
Content-Length: 19157
cportal.cpschool.uk/Content/assets/css/jquery/jquery.mCustomScrollbar.css?v=1_351
94.130.143.20200 OK 5.6 kB URL HTTP/1.1 cportal.cpschool.uk/Content/assets/css/jquery/jquery.mCustomScrollbar.css?v=1_351
IP 94.130.143.20:0
ASN #24940 Hetzner Online GmbH
Hash fdf2602c65a4536925ab6d28da3f86cb
f5e0a72bee24996444fabf8bd1422ac71e5029ef
156ba2d89d692d083ee4c3ab4b3e485e9496680cee70c2c570a8c64f100ab33f
Analyzer Verdict Alert fortinet Malware
GET /Content/assets/css/jquery/jquery.mCustomScrollbar.css?v=1_351 HTTP/1.1
Host: cportal.cpschool.uk
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://portal.cpschool.uk/
HTTP/1.1 200 OK
Content-Type: text/css
Content-Encoding: gzip
Last-Modified: Sat, 15 Jan 2022 19:32:37 GMT
Accept-Ranges: bytes
ETag: "80f8cea646ad81:0"
Vary: Accept-Encoding
Server: Microsoft-IIS/10.0
X-Powered-By: ASP.NET
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: Content-Type
Date: Fri, 02 Sep 2022 20:24:55 GMT
Content-Length: 5583
cportal.cpschool.uk/Content/assets/css/portal_custom.css?v=1_351
94.130.143.20200 OK 5.5 kB URL HTTP/1.1 cportal.cpschool.uk/Content/assets/css/portal_custom.css?v=1_351
IP 94.130.143.20:0
ASN #24940 Hetzner Online GmbH
File type assembler source, Unicode text, UTF-8 (with BOM) text, with CRLF line terminators
Hash 06e16a713a15256691b090ca97742d16
946c92b58e6be92838ef38693b4bd1a913603ae9
4a37f90187c4fd870a02d44af3b7475f885ecf0be3f768709833bcb64d6ac3d4
GET /Content/assets/css/portal_custom.css?v=1_351 HTTP/1.1
Host: cportal.cpschool.uk
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://portal.cpschool.uk/
HTTP/1.1 200 OK
Content-Type: text/css
Content-Encoding: gzip
Last-Modified: Sat, 15 Jan 2022 19:32:36 GMT
Accept-Ranges: bytes
ETag: "06236a646ad81:0"
Vary: Accept-Encoding
Server: Microsoft-IIS/10.0
X-Powered-By: ASP.NET
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: Content-Type
Date: Fri, 02 Sep 2022 20:24:55 GMT
Content-Length: 5484
cportal.cpschool.uk/Content/assets/css/buttons.dataTables.min.css
94.130.143.20200 OK 1.4 kB URL HTTP/1.1 cportal.cpschool.uk/Content/assets/css/buttons.dataTables.min.css
IP 94.130.143.20:0
ASN #24940 Hetzner Online GmbH
File type Unicode text, UTF-8 (with BOM) text, with very long lines (382), with CRLF line terminators
Hash f50f6d8b49a32a60f8e090701cbf6168
2dfb0887ce679294774fde0d247334c7fd1cfbe0
36d3db19c73aad3e5f534be4b017ff8e6e61348248084f234ab55a2dc71c5558
GET /Content/assets/css/buttons.dataTables.min.css HTTP/1.1
Host: cportal.cpschool.uk
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://portal.cpschool.uk/
HTTP/1.1 200 OK
Content-Type: text/css
Content-Encoding: gzip
Last-Modified: Sat, 15 Jan 2022 19:32:36 GMT
Accept-Ranges: bytes
ETag: "06236a646ad81:0"
Vary: Accept-Encoding
Server: Microsoft-IIS/10.0
X-Powered-By: ASP.NET
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: Content-Type
Date: Fri, 02 Sep 2022 20:24:55 GMT
Content-Length: 1437
cportal.cpschool.uk/Content/assets/js/plugins/jquery/jquery.validate.min.js
94.130.143.20200 OK 6.8 kB URL HTTP/1.1 cportal.cpschool.uk/Content/assets/js/plugins/jquery/jquery.validate.min.js
IP 94.130.143.20:0
ASN #24940 Hetzner Online GmbH
File type Unicode text, UTF-8 (with BOM) text, with very long lines (20965)
Hash 0d477ebae2db2d45477daa09b5e4e68e
656f5c728c2b79c1b8abff2f2c77236573169dc1
ae3a0c2d264b75d50f20bc40800d0339e6e1a336fa7bdf8b63b751ba7f6250a2
Analyzer Verdict Alert fortinet Malware
GET /Content/assets/js/plugins/jquery/jquery.validate.min.js HTTP/1.1
Host: cportal.cpschool.uk
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://portal.cpschool.uk/
HTTP/1.1 200 OK
Content-Type: application/javascript
Content-Encoding: gzip
Last-Modified: Sat, 15 Jan 2022 19:33:09 GMT
Accept-Ranges: bytes
ETag: "80c8e1b946ad81:0"
Vary: Accept-Encoding
Server: Microsoft-IIS/10.0
X-Powered-By: ASP.NET
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: Content-Type
Date: Fri, 02 Sep 2022 20:24:55 GMT
Content-Length: 6789
cportal.cpschool.uk/Content/assets/js/plugins/jquery/jquery.validate.unobtrusive.min.js
94.130.143.20200 OK 2.3 kB URL HTTP/1.1 cportal.cpschool.uk/Content/assets/js/plugins/jquery/jquery.validate.unobtrusive.min.js
IP 94.130.143.20:0
ASN #24940 Hetzner Online GmbH
File type ASCII text, with very long lines (4762), with CRLF line terminators
Hash 700c6f5186f64e66d9d693f589c49f59
3ee64a5d1054e8e2bbda2fb4f78808546edfeb44
4cec39ddf160f262fbdc3ccc01bf9bbea7246140109afae30bf8d29466b135a3
Analyzer Verdict Alert fortinet Malware
GET /Content/assets/js/plugins/jquery/jquery.validate.unobtrusive.min.js HTTP/1.1
Host: cportal.cpschool.uk
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://portal.cpschool.uk/
HTTP/1.1 200 OK
Content-Type: application/javascript
Content-Encoding: gzip
Last-Modified: Sat, 15 Jan 2022 19:33:10 GMT
Accept-Ranges: bytes
ETag: "05f7aba46ad81:0"
Vary: Accept-Encoding
Server: Microsoft-IIS/10.0
X-Powered-By: ASP.NET
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: Content-Type
Date: Fri, 02 Sep 2022 20:24:55 GMT
Content-Length: 2302
cportal.cpschool.uk/Content/assets/js/Common/jquery.validate.custom.js
94.130.143.20200 OK 1.5 kB URL HTTP/1.1 cportal.cpschool.uk/Content/assets/js/Common/jquery.validate.custom.js
IP 94.130.143.20:0
ASN #24940 Hetzner Online GmbH
File type Unicode text, UTF-8 (with BOM) text, with CRLF line terminators
Hash 2b2173990815ba3302441336a88c255a
2cfabcd671d58ec76f94ddbd77a3c8031260bf19
5324690c646e63e557f9880b6acd64ab6637541205a05a4175a56ad4a0109028
Analyzer Verdict Alert fortinet Malware
GET /Content/assets/js/Common/jquery.validate.custom.js HTTP/1.1
Host: cportal.cpschool.uk
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://portal.cpschool.uk/
HTTP/1.1 200 OK
Content-Type: application/javascript
Last-Modified: Sat, 15 Jan 2022 19:32:48 GMT
Accept-Ranges: bytes
ETag: "2617ead46ad81:0"
Server: Microsoft-IIS/10.0
X-Powered-By: ASP.NET
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: Content-Type
Date: Fri, 02 Sep 2022 20:24:55 GMT
Content-Length: 1475
cportal.cpschool.uk/Content/assets/js/Common/DynamicGrid.js?v=1_351
94.130.143.20200 OK 5.2 kB URL HTTP/1.1 cportal.cpschool.uk/Content/assets/js/Common/DynamicGrid.js?v=1_351
IP 94.130.143.20:0
ASN #24940 Hetzner Online GmbH
File type Unicode text, UTF-8 (with BOM) text, with CRLF line terminators
Hash 8757a8edfdd8fb10f61a2a87bb1d61e7
35f2e3e199aab0970e3397b27d83c470fa65f13c
b2893cfe3b74f5d06783593caaebcb17f6e547d2f8baf312299cd1f38393b265
GET /Content/assets/js/Common/DynamicGrid.js?v=1_351 HTTP/1.1
Host: cportal.cpschool.uk
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://portal.cpschool.uk/
HTTP/1.1 200 OK
Content-Type: application/javascript
Content-Encoding: gzip
Last-Modified: Sun, 19 Jun 2022 15:13:09 GMT
Accept-Ranges: bytes
ETag: "80f09515ef83d81:0"
Vary: Accept-Encoding
Server: Microsoft-IIS/10.0
X-Powered-By: ASP.NET
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: Content-Type
Date: Fri, 02 Sep 2022 20:24:55 GMT
Content-Length: 5194
cportal.cpschool.uk/Content/assets/css/theme-new.css?v=1_351
94.130.143.20200 OK 45 kB URL HTTP/1.1 cportal.cpschool.uk/Content/assets/css/theme-new.css?v=1_351
IP 94.130.143.20:0
ASN #24940 Hetzner Online GmbH
File type Unicode text, UTF-8 (with BOM) text, with CRLF line terminators
Hash d0815fc99c6c24b0503390e89943121f
6f796334d4bf8b05c8a0d4ad9e456ee92c8287aa
3d3a3750d9180911cf2dce4436020d8fca4962f4c94760c1fd85c41dce9a6913
Analyzer Verdict Alert fortinet Malware
GET /Content/assets/css/theme-new.css?v=1_351 HTTP/1.1
Host: cportal.cpschool.uk
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://portal.cpschool.uk/
HTTP/1.1 200 OK
Content-Type: text/css
Content-Encoding: gzip
Last-Modified: Thu, 11 Aug 2022 13:12:05 GMT
Accept-Ranges: bytes
ETag: "8040ccf383add81:0"
Vary: Accept-Encoding
Server: Microsoft-IIS/10.0
X-Powered-By: ASP.NET
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: Content-Type
Date: Fri, 02 Sep 2022 20:24:55 GMT
Content-Length: 44604
cportal.cpschool.uk/Content/assets/js/Common/plugins.js?v=1_351
94.130.143.20200 OK 8.3 kB URL HTTP/1.1 cportal.cpschool.uk/Content/assets/js/Common/plugins.js?v=1_351
IP 94.130.143.20:0
ASN #24940 Hetzner Online GmbH
File type Unicode text, UTF-8 (with BOM) text, with CRLF line terminators
Hash 43179376e6909e6d090831500fc792f0
e5286cff987a69d355c5d3d8779e2b295ddd97a7
ca3afb2a3e1dc4294e03b0a0ead74718259701c87adc0b5497bd18050308bb8c
Analyzer Verdict Alert fortinet Malware
GET /Content/assets/js/Common/plugins.js?v=1_351 HTTP/1.1
Host: cportal.cpschool.uk
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://portal.cpschool.uk/
HTTP/1.1 200 OK
Content-Type: application/javascript
Content-Encoding: gzip
Last-Modified: Wed, 26 Jan 2022 20:37:36 GMT
Accept-Ranges: bytes
ETag: "068568df412d81:0"
Vary: Accept-Encoding
Server: Microsoft-IIS/10.0
X-Powered-By: ASP.NET
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: Content-Type
Date: Fri, 02 Sep 2022 20:24:55 GMT
Content-Length: 8291
cportal.cpschool.uk/Content/assets/js/plugins/highcharts/highcharts-data.js
94.130.143.20200 OK 5.6 kB URL HTTP/1.1 cportal.cpschool.uk/Content/assets/js/plugins/highcharts/highcharts-data.js
IP 94.130.143.20:0
ASN #24940 Hetzner Online GmbH
File type ASCII text, with very long lines (545)
Hash 3312cc426a425e6341f9d0e4717b2d6a
b1204c875fa243fd1db205ed773a2f519cc4949f
9ca1b6a47de9582519f232a1df4712537d7ea48351ffc6945dffd032cb986eaf
Analyzer Verdict Alert fortinet Malware
GET /Content/assets/js/plugins/highcharts/highcharts-data.js HTTP/1.1
Host: cportal.cpschool.uk
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://portal.cpschool.uk/
HTTP/1.1 200 OK
Content-Type: application/javascript
Content-Encoding: gzip
Last-Modified: Sat, 15 Jan 2022 19:33:09 GMT
Accept-Ranges: bytes
ETag: "80c8e1b946ad81:0"
Vary: Accept-Encoding
Server: Microsoft-IIS/10.0
X-Powered-By: ASP.NET
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: Content-Type
Date: Fri, 02 Sep 2022 20:24:55 GMT
Content-Length: 5552
cportal.cpschool.uk/Content/assets/js/plugins/highcharts/highcharts-exporting.js
94.130.143.20200 OK 4.1 kB URL HTTP/1.1 cportal.cpschool.uk/Content/assets/js/plugins/highcharts/highcharts-exporting.js
IP 94.130.143.20:0
ASN #24940 Hetzner Online GmbH
File type ASCII text, with very long lines (565)
Hash f318666cdf422c3c388d5753a4014f87
053096ec5a52fdda586f9c2cb05d088ac7e51caa
25a17e666410665a371632c17ac95e389a1955388358f135822c5f4b48518c06
Analyzer Verdict Alert fortinet Malware
GET /Content/assets/js/plugins/highcharts/highcharts-exporting.js HTTP/1.1
Host: cportal.cpschool.uk
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://portal.cpschool.uk/
HTTP/1.1 200 OK
Content-Type: application/javascript
Content-Encoding: gzip
Last-Modified: Sat, 15 Jan 2022 19:33:09 GMT
Accept-Ranges: bytes
ETag: "80c8e1b946ad81:0"
Vary: Accept-Encoding
Server: Microsoft-IIS/10.0
X-Powered-By: ASP.NET
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: Content-Type
Date: Fri, 02 Sep 2022 20:24:55 GMT
Content-Length: 4122
cportal.cpschool.uk/Content/assets/js/Common/DynamicChart.js
94.130.143.20200 OK 1.5 kB URL HTTP/1.1 cportal.cpschool.uk/Content/assets/js/Common/DynamicChart.js
IP 94.130.143.20:0
ASN #24940 Hetzner Online GmbH
File type Unicode text, UTF-8 (with BOM) text, with CRLF line terminators
Hash 79ec2329a78bd9c6992c39db1e35d682
f95f117dbda5ebf2aa1aa92dff0feef2f1e87e68
7cff2179af31baeb6d00fadddc95633f49b04344a6a3024f86c84f763014f67f
Analyzer Verdict Alert fortinet Malware
GET /Content/assets/js/Common/DynamicChart.js HTTP/1.1
Host: cportal.cpschool.uk
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://portal.cpschool.uk/
HTTP/1.1 200 OK
Content-Type: application/javascript
Last-Modified: Sat, 15 Jan 2022 19:32:47 GMT
Accept-Ranges: bytes
ETag: "34ad5aad46ad81:0"
Server: Microsoft-IIS/10.0
X-Powered-By: ASP.NET
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: Content-Type
Date: Fri, 02 Sep 2022 20:24:55 GMT
Content-Length: 1548
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
143.204.55.36200 OK 329 B URL HTTP/1.1 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 143.204.55.36:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 329
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Retry-After, ETag, Backoff, Last-Modified, Pragma, Cache-Control, Expires, Content-Type, Content-Length, Alert
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Last-Modified: Fri, 25 Mar 2022 17:45:46 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
Cache-Control: max-age=3600
Date: Fri, 02 Sep 2022 19:38:16 GMT
Expires: Fri, 02 Sep 2022 20:15:59 GMT
ETag: "1648230346554"
X-Cache: Hit from cloudfront
Via: 1.1 185768229530368be94556dcab1c486a.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: CjRS2oM1WMsWdl44zn8N6KfFWZioBydtzm8UqzMPJ2Sf8rAVFd4qyw==
Age: 2799
cportal.cpschool.uk/Content/assets/js/plugins/highcharts/highcharts.js
94.130.143.20200 OK 75 kB URL HTTP/1.1 cportal.cpschool.uk/Content/assets/js/plugins/highcharts/highcharts.js
IP 94.130.143.20:0
ASN #24940 Hetzner Online GmbH
File type ASCII text, with very long lines (589)
Hash d9e6e59b08dd1f2d6831cac6cede15cc
ccf35d9e36be634e326e79edc4f321395e2af748
1ffcaed97502113999173bab5971338add1300303febbfabdfc4994e01194c02
Analyzer Verdict Alert fortinet Malware
GET /Content/assets/js/plugins/highcharts/highcharts.js HTTP/1.1
Host: cportal.cpschool.uk
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://portal.cpschool.uk/
HTTP/1.1 200 OK
Content-Type: application/javascript
Content-Encoding: gzip
Last-Modified: Sat, 15 Jan 2022 19:33:09 GMT
Accept-Ranges: bytes
ETag: "80c8e1b946ad81:0"
Vary: Accept-Encoding
Server: Microsoft-IIS/10.0
X-Powered-By: ASP.NET
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: Content-Type
Date: Fri, 02 Sep 2022 20:24:55 GMT
Content-Length: 75035
cportal.cpschool.uk/Content/assets/js/plugins/bootstrap/bootstrap-datepicker.js
94.130.143.20200 OK 12 kB URL HTTP/1.1 cportal.cpschool.uk/Content/assets/js/plugins/bootstrap/bootstrap-datepicker.js
IP 94.130.143.20:0
ASN #24940 Hetzner Online GmbH
Hash 1b5e733f086bf4fc49a726ddcb2b83f6
83838ef21f5fa3f03080fe7a961031e5366d368a
30440585d3ebd9bfef72b6a601f51cb5a5cffc7b2e19e12924880f84c5f9838c
Analyzer Verdict Alert fortinet Malware
GET /Content/assets/js/plugins/bootstrap/bootstrap-datepicker.js HTTP/1.1
Host: cportal.cpschool.uk
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://portal.cpschool.uk/
HTTP/1.1 200 OK
Content-Type: application/javascript
Content-Encoding: gzip
Last-Modified: Sat, 15 Jan 2022 19:32:51 GMT
Accept-Ranges: bytes
ETag: "803327af46ad81:0"
Vary: Accept-Encoding
Server: Microsoft-IIS/10.0
X-Powered-By: ASP.NET
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: Content-Type
Date: Fri, 02 Sep 2022 20:24:55 GMT
Content-Length: 12150
cportal.cpschool.uk/Content/assets/css/jquery/jquery-ui.min.css
94.130.143.20200 OK 5.3 kB URL HTTP/1.1 cportal.cpschool.uk/Content/assets/css/jquery/jquery-ui.min.css
IP 94.130.143.20:0
ASN #24940 Hetzner Online GmbH
File type ASCII text, with very long lines (5014)
Hash 6d8f4852ed9269ab67ae8679d4a932eb
c73b14a9b86fe4f1a0c52ae8501d712cfbc36d17
2941517f80216bdc451d311f6889b28b88207b21116dbce144179da6791b9541
GET /Content/assets/css/jquery/jquery-ui.min.css HTTP/1.1
Host: cportal.cpschool.uk
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://cportal.cpschool.uk/Content/assets/css/theme-new.css?v=1_351
HTTP/1.1 200 OK
Content-Type: text/css
Last-Modified: Sat, 15 Jan 2022 19:32:37 GMT
Accept-Ranges: bytes
ETag: "64d857a746ad81:0"
Server: Microsoft-IIS/10.0
X-Powered-By: ASP.NET
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: Content-Type
Date: Fri, 02 Sep 2022 20:24:55 GMT
Content-Length: 5283
cportal.cpschool.uk/Content/assets/css/fontawesome/font-awesome.min.css
94.130.143.20200 OK 21 kB URL HTTP/1.1 cportal.cpschool.uk/Content/assets/css/fontawesome/font-awesome.min.css
IP 94.130.143.20:0
ASN #24940 Hetzner Online GmbH
File type ASCII text, with very long lines (20604)
Hash bbfef9385083d307ad2692c0cf99f611
63a234ea4d60f6643a60a4d79e28f291b93c1743
b769324e0921f9f649611113e65f528ebae5e140da8a7e63c5d6ea7bc7a33bc0
GET /Content/assets/css/fontawesome/font-awesome.min.css HTTP/1.1
Host: cportal.cpschool.uk
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://cportal.cpschool.uk/Content/assets/css/theme-new.css?v=1_351
HTTP/1.1 200 OK
Content-Type: text/css
Last-Modified: Sat, 15 Jan 2022 19:32:37 GMT
Accept-Ranges: bytes
ETag: "47faa746ad81:0"
Server: Microsoft-IIS/10.0
X-Powered-By: ASP.NET
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: Content-Type
Date: Fri, 02 Sep 2022 20:24:55 GMT
Content-Length: 20766
cportal.cpschool.uk/bundles/portalscripts
94.130.143.20200 OK 373 kB URL HTTP/1.1 cportal.cpschool.uk/bundles/portalscripts
IP 94.130.143.20:0
ASN #24940 Hetzner Online GmbH
File type ASCII text, with very long lines (65536), with no line terminators
Size 373 kB (373090 bytes)
Hash 3afc02a58018f2404931d7de1c70be24
4b8535626734d2bbd6945a6b16eb0e31640670e7
9a627e1370fb0da10ccf192b56b27da478a289f1fe0803fadff4e40001335103
Analyzer Verdict Alert fortinet Malware
GET /bundles/portalscripts HTTP/1.1
Host: cportal.cpschool.uk
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://portal.cpschool.uk/
HTTP/1.1 200 OK
Cache-Control: no-cache, no-store
Pragma: no-cache
Content-Type: text/javascript; charset=utf-8
Expires: -1
Server: Microsoft-IIS/10.0
X-AspNet-Version: 4.0.30319
X-Powered-By: ASP.NET
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: Content-Type
Date: Fri, 02 Sep 2022 20:24:55 GMT
Content-Length: 373090
cportal.cpschool.uk/Content/assets/css/fullcalendar/fullcalendar.css
94.130.143.20200 OK 16 kB URL HTTP/1.1 cportal.cpschool.uk/Content/assets/css/fullcalendar/fullcalendar.css
IP 94.130.143.20:0
ASN #24940 Hetzner Online GmbH
File type troff or preprocessor input, ASCII text, with CRLF line terminators
Hash 38ce8c96d59de80ddcd2509466e3cc64
1e53a75ed66f9c65862e6aae07180f3316ab4752
08a73aff98af1e6b34b8b9acf0af3acebbe17656c2fb9d090bcd77e54502fe41
GET /Content/assets/css/fullcalendar/fullcalendar.css HTTP/1.1
Host: cportal.cpschool.uk
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://cportal.cpschool.uk/Content/assets/css/theme-new.css?v=1_351
HTTP/1.1 200 OK
Content-Type: text/css
Last-Modified: Sat, 15 Jan 2022 19:32:37 GMT
Accept-Ranges: bytes
ETag: "4ff048a746ad81:0"
Server: Microsoft-IIS/10.0
X-Powered-By: ASP.NET
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: Content-Type
Date: Fri, 02 Sep 2022 20:24:55 GMT
Content-Length: 16139
cportal.cpschool.uk/Content/assets/css/dropzone/dropzone.css
94.130.143.20200 OK 10 kB URL HTTP/1.1 cportal.cpschool.uk/Content/assets/css/dropzone/dropzone.css
IP 94.130.143.20:0
ASN #24940 Hetzner Online GmbH
Hash 270de7792428b4ea9fa7cc05fa2c5b52
026a0ec7ff5938c1f91efb1321a6245a9a3a9ed4
9c4bfe208b0b5458fe67dd64ba382da9a725b934ef34975722de927bc8ddc460
GET /Content/assets/css/dropzone/dropzone.css HTTP/1.1
Host: cportal.cpschool.uk
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://cportal.cpschool.uk/Content/assets/css/theme-new.css?v=1_351
HTTP/1.1 200 OK
Content-Type: text/css
Last-Modified: Sat, 15 Jan 2022 19:32:37 GMT
Accept-Ranges: bytes
ETag: "f6428a746ad81:0"
Server: Microsoft-IIS/10.0
X-Powered-By: ASP.NET
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: Content-Type
Date: Fri, 02 Sep 2022 20:24:55 GMT
Content-Length: 10393
cportal.cpschool.uk/Content/assets/css/remix-icons/remixicon.css
94.130.143.20200 OK 110 kB URL HTTP/1.1 cportal.cpschool.uk/Content/assets/css/remix-icons/remixicon.css
IP 94.130.143.20:0
ASN #24940 Hetzner Online GmbH
Size 110 kB (110461 bytes)
Hash a2936a811e80287929720ec4a5ebc572
1bf4d4f0acd11989488bc571a9bb30e5ad077092
8eb4e61eb976c74a00cb978fd5673179da8fd0cbbc0b869f4ca9f9423fb8d5e0
GET /Content/assets/css/remix-icons/remixicon.css HTTP/1.1
Host: cportal.cpschool.uk
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://cportal.cpschool.uk/Content/assets/css/theme-new.css?v=1_351
HTTP/1.1 200 OK
Content-Type: text/css
Last-Modified: Sat, 15 Jan 2022 19:32:38 GMT
Accept-Ranges: bytes
ETag: "977c6ea746ad81:0"
Server: Microsoft-IIS/10.0
X-Powered-By: ASP.NET
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: Content-Type
Date: Fri, 02 Sep 2022 20:24:55 GMT
Content-Length: 110461
cportal.cpschool.uk/UserData/CPS/logo_images/HeaderBG_1660540786411.jpg
94.130.143.20200 OK 69 kB URL HTTP/1.1 cportal.cpschool.uk/UserData/CPS/logo_images/HeaderBG_1660540786411.jpg
IP 94.130.143.20:0
ASN #24940 Hetzner Online GmbH
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 300x300, segment length 16, baseline, precision 8, 1600x458, components 3\012- data
Hash e79b7d98c40835664702ad46bd5cae9e
85a3a8c9d2021125785ddf5c0b475da8c7a1b3cc
51bb5d5c330c20de47b5c49546b41ced956d7357da5566379af95be14de824d5
GET /UserData/CPS/logo_images/HeaderBG_1660540786411.jpg HTTP/1.1
Host: cportal.cpschool.uk
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://portal.cpschool.uk/
HTTP/1.1 200 OK
Content-Type: image/jpeg
Last-Modified: Mon, 15 Aug 2022 05:19:59 GMT
Accept-Ranges: bytes
ETag: "712acaa66b0d81:0"
Server: Microsoft-IIS/10.0
X-Powered-By: ASP.NET
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: Content-Type
Date: Fri, 02 Sep 2022 20:24:55 GMT
Content-Length: 69174
cportal.cpschool.uk/UserData/CPS/news_images/ImageName_1660542209148.jpg
94.130.143.20200 OK 44 kB URL HTTP/1.1 cportal.cpschool.uk/UserData/CPS/news_images/ImageName_1660542209148.jpg
IP 94.130.143.20:0
ASN #24940 Hetzner Online GmbH
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 100x100, segment length 16, baseline, precision 8, 537x304, components 3\012- data
Hash aea647bbc9c5a9e6b8ea80fbdeef6917
ae9dbe3d79b56e458547208c232f54979529f029
096914756ecdb6e360a5087766db2903c8a31a4c47d994875fead05674416e40
GET /UserData/CPS/news_images/ImageName_1660542209148.jpg HTTP/1.1
Host: cportal.cpschool.uk
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://portal.cpschool.uk/
HTTP/1.1 200 OK
Content-Type: image/jpeg
Last-Modified: Mon, 15 Aug 2022 05:44:00 GMT
Accept-Ranges: bytes
ETag: "5d47c946ab0d81:0"
Server: Microsoft-IIS/10.0
X-Powered-By: ASP.NET
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: Content-Type
Date: Fri, 02 Sep 2022 20:24:55 GMT
Content-Length: 43485
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash 20cc30f2a41f9c5e824ea46460548950
c153b447d44cbbe8f30d7f490605d1a430af20a1
0f8bb96e7dfd8a6bb3d7eae1a958195cb8ca9f20e0ad8cd952c34267ff0625f3
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 02 Sep 2022 20:24:56 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
cportal.cpschool.uk/UserData/CPS/logo_images/LogoImage_1660541171475.png
94.130.143.20200 OK 30 kB URL HTTP/1.1 cportal.cpschool.uk/UserData/CPS/logo_images/LogoImage_1660541171475.png
IP 94.130.143.20:0
ASN #24940 Hetzner Online GmbH
File type PNG image data, 185 x 116, 8-bit/color RGBA, non-interlaced\012- data
Hash 70c8d83e72c8b45685f2315d2f50f901
78ad635d13c24f67cf370f00f57b6db99a0efe06
b415fba7b47d0a4e583b4291c24542751ee15325a520d13642d4d560eda2257d
GET /UserData/CPS/logo_images/LogoImage_1660541171475.png HTTP/1.1
Host: cportal.cpschool.uk
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://portal.cpschool.uk/
HTTP/1.1 200 OK
Content-Type: image/png
Last-Modified: Mon, 15 Aug 2022 05:26:25 GMT
Accept-Ranges: bytes
ETag: "b814549067b0d81:0"
Server: Microsoft-IIS/10.0
X-Powered-By: ASP.NET
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: Content-Type
Date: Fri, 02 Sep 2022 20:24:55 GMT
Content-Length: 30079
cportal.cpschool.uk/UserData/CPS/news_images/ThumbnailImage_1661677655976.png
94.130.143.20200 OK 170 kB URL HTTP/1.1 cportal.cpschool.uk/UserData/CPS/news_images/ThumbnailImage_1661677655976.png
IP 94.130.143.20:0
ASN #24940 Hetzner Online GmbH
File type PNG image data, 537 x 304, 8-bit/color RGBA, non-interlaced\012- data
Size 170 kB (169960 bytes)
Hash d5dd6b450fc8f88a1cc445dc50aa9ca7
8d8b3c41b6f47a5d481a2be09fd96d69f3b4da91
2286723459753fa867b006338ec67b98732aee779a883bd193ac54416a6da5c1
GET /UserData/CPS/news_images/ThumbnailImage_1661677655976.png HTTP/1.1
Host: cportal.cpschool.uk
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://portal.cpschool.uk/
HTTP/1.1 200 OK
Content-Type: image/png
Last-Modified: Sun, 28 Aug 2022 09:07:53 GMT
Accept-Ranges: bytes
ETag: "ee3e8a8bdbad81:0"
Server: Microsoft-IIS/10.0
X-Powered-By: ASP.NET
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: Content-Type
Date: Fri, 02 Sep 2022 20:24:55 GMT
Content-Length: 169960
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 21daf45cdda2eb462873226bb5c1f0fb
4d4621bbf1461f35f7e536c1dbd9de71978ffa23
8164c742d013bdc2836cac1167acfe482547347ab6a1daefa15475f694dae057
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4207
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Fri, 02 Sep 2022 20:24:56 GMT
Last-Modified: Fri, 02 Sep 2022 19:14:49 GMT
Server: ECS (ska/F71C)
X-Cache: HIT
Content-Length: 471
cportal.cpschool.uk/UserData/CPS/news_images/ImageName_1661681165419.jpeg
94.130.143.20200 OK 83 kB URL HTTP/1.1 cportal.cpschool.uk/UserData/CPS/news_images/ImageName_1661681165419.jpeg
IP 94.130.143.20:0
ASN #24940 Hetzner Online GmbH
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, baseline, precision 8, 1280x908, components 3\012- data
Hash eab2ab9612e44d4327dab669e4367bf4
60be8e92b7bfd3a61350b4b755593aa57895446c
21e41e2e818e1550c06ef218e69e628e2d3f807e7097d1868af908ed2e5d6706
Analyzer Verdict Alert fortinet Malware
GET /UserData/CPS/news_images/ImageName_1661681165419.jpeg HTTP/1.1
Host: cportal.cpschool.uk
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://portal.cpschool.uk/
HTTP/1.1 200 OK
Content-Type: image/jpeg
Last-Modified: Sun, 28 Aug 2022 10:06:41 GMT
Accept-Ranges: bytes
ETag: "c0f080dec5bad81:0"
Server: Microsoft-IIS/10.0
X-Powered-By: ASP.NET
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: Content-Type
Date: Fri, 02 Sep 2022 20:24:55 GMT
Content-Length: 82764
cportal.cpschool.uk/UserData/CPS/news_images/ImageName_1661685480392.png
94.130.143.20200 OK 219 kB URL HTTP/1.1 cportal.cpschool.uk/UserData/CPS/news_images/ImageName_1661685480392.png
IP 94.130.143.20:0
ASN #24940 Hetzner Online GmbH
File type PNG image data, 537 x 304, 8-bit/color RGBA, non-interlaced\012- data
Size 219 kB (218594 bytes)
Hash 941caa96a16ad68b7f04e03915e12ee0
f74634599e5491c8c97e45ba553b221c3514d390
b45e42a71ddfa83a9334f942eb1f6ea5b36854f5d8aee907f0d316bdd9f6d6a4
GET /UserData/CPS/news_images/ImageName_1661685480392.png HTTP/1.1
Host: cportal.cpschool.uk
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://portal.cpschool.uk/
HTTP/1.1 200 OK
Content-Type: image/png
Last-Modified: Sun, 28 Aug 2022 11:18:23 GMT
Accept-Ranges: bytes
ETag: "51ea8e2cfbad81:0"
Server: Microsoft-IIS/10.0
X-Powered-By: ASP.NET
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: Content-Type
Date: Fri, 02 Sep 2022 20:24:55 GMT
Content-Length: 218594
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash 7ce90d6fafa13d92fcf445b688f0389f
480461a46fc291cbcdf6218c7743779d7e862788
dd33483769f6c715aeb257c2955147c1a5a47b0af1684190247701465af8af6c
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 02 Sep 2022 20:24:56 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
cportal.cpschool.uk/UserData/CPS/news_images/ImageName_1660541929030.jpg
94.130.143.20200 OK 34 kB URL HTTP/1.1 cportal.cpschool.uk/UserData/CPS/news_images/ImageName_1660541929030.jpg
IP 94.130.143.20:0
ASN #24940 Hetzner Online GmbH
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 100x100, segment length 16, baseline, precision 8, 537x307, components 3\012- data
Hash 4e404ac3c621f5757c470f4559a44cee
5f083fc10baad10879a7d0d88eee92c1e91dbf8f
73769842a966fee33188464f08b3ed5dd411d9ad609adcdd83686a7460b86330
GET /UserData/CPS/news_images/ImageName_1660541929030.jpg HTTP/1.1
Host: cportal.cpschool.uk
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://portal.cpschool.uk/
HTTP/1.1 200 OK
Content-Type: image/jpeg
Last-Modified: Mon, 15 Aug 2022 05:39:22 GMT
Accept-Ranges: bytes
ETag: "abdc9e5f69b0d81:0"
Server: Microsoft-IIS/10.0
X-Powered-By: ASP.NET
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: Content-Type
Date: Fri, 02 Sep 2022 20:24:56 GMT
Content-Length: 33543
cportal.cpschool.uk/UserData/CPS/news_images/ImageName_1660542109110.jpg
94.130.143.20200 OK 20 kB URL HTTP/1.1 cportal.cpschool.uk/UserData/CPS/news_images/ImageName_1660542109110.jpg
IP 94.130.143.20:0
ASN #24940 Hetzner Online GmbH
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 100x100, segment length 16, baseline, precision 8, 537x307, components 3\012- data
Hash 810912095e3848ddf6ae8ec3a79521ee
d59b75a62ef7a0c9954ac207754b7946826c3634
ecf372be3e349f3822c675c707167bfe573608b99dea9f5a0982f68d0383723b
GET /UserData/CPS/news_images/ImageName_1660542109110.jpg HTTP/1.1
Host: cportal.cpschool.uk
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://portal.cpschool.uk/
HTTP/1.1 200 OK
Content-Type: image/jpeg
Last-Modified: Mon, 15 Aug 2022 05:42:32 GMT
Accept-Ranges: bytes
ETag: "95f05dd069b0d81:0"
Server: Microsoft-IIS/10.0
X-Powered-By: ASP.NET
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: Content-Type
Date: Fri, 02 Sep 2022 20:24:56 GMT
Content-Length: 19505
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash 660657162b524658006a1856e274a946
56c933c6682c0019f6dbd040da6b929044dc216a
9578fc0408868ae40d41af8d13787f4137853c056300524b5558b1c57d39b2b3
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 02 Sep 2022 20:24:56 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.gstatic.com/s/opensans/v34/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2
142.250.74.163200 OK 45 kB URL HTTP/2 fonts.gstatic.com/s/opensans/v34/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2
IP 142.250.74.163:0
File type Web Open Font Format (Version 2), TrueType, length 44856, version 1.0\012- data
Hash 565ce506190ad3af920b40baf1794cec
ad3cba5d06100e09449a864d3b5e58403b478b3d
8778e9af2422858d7052ff9a0f3c12c08ae976bdd6e0316db144cd5579cd97db
GET /s/opensans/v34/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://portal.cpschool.uk
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 44856
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 29 Aug 2022 18:53:20 GMT
expires: Tue, 29 Aug 2023 18:53:20 GMT
cache-control: public, max-age=31536000
age: 351096
last-modified: Mon, 15 Aug 2022 18:20:18 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
cportal.cpschool.uk/UserData/CPS/news_images/ImageName_1661676811773.png
94.130.143.20200 OK 253 kB URL HTTP/1.1 cportal.cpschool.uk/UserData/CPS/news_images/ImageName_1661676811773.png
IP 94.130.143.20:0
ASN #24940 Hetzner Online GmbH
File type PNG image data, 537 x 304, 8-bit/color RGBA, non-interlaced\012- data
Size 253 kB (253415 bytes)
Hash a27387fa786080446ed767a143ceb354
10bfa987961a3aa5b3c267185b1fda4c38c72cbe
0fc3fdffd8de7f394016fac98c7eb952ab1e868d6a65f1fbe9e8304fb715cffa
GET /UserData/CPS/news_images/ImageName_1661676811773.png HTTP/1.1
Host: cportal.cpschool.uk
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://portal.cpschool.uk/
HTTP/1.1 200 OK
Content-Type: image/png
Last-Modified: Sun, 28 Aug 2022 08:53:43 GMT
Accept-Ranges: bytes
ETag: "cb763cadbbbad81:0"
Server: Microsoft-IIS/10.0
X-Powered-By: ASP.NET
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: Content-Type
Date: Fri, 02 Sep 2022 20:24:56 GMT
Content-Length: 253415
cportal.cpschool.uk/UserData/CPS/news_images/ImageName_1661678397836.png
94.130.143.20200 OK 173 kB URL HTTP/1.1 cportal.cpschool.uk/UserData/CPS/news_images/ImageName_1661678397836.png
IP 94.130.143.20:0
ASN #24940 Hetzner Online GmbH
File type PNG image data, 537 x 304, 8-bit/color RGBA, non-interlaced\012- data
Size 173 kB (173240 bytes)
Hash 4b2d58cf6fa6df30743550cdd1200ef7
9d487091684e16bb5b8dfeb2b9bc766793bfb2be
fcd93e5c98267237be7d1fdf75dd78afb9846c40b7d433c87c54b8c43503148f
GET /UserData/CPS/news_images/ImageName_1661678397836.png HTTP/1.1
Host: cportal.cpschool.uk
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://portal.cpschool.uk/
HTTP/1.1 200 OK
Content-Type: image/png
Last-Modified: Sun, 28 Aug 2022 09:20:50 GMT
Accept-Ranges: bytes
ETag: "b236e77bfbad81:0"
Server: Microsoft-IIS/10.0
X-Powered-By: ASP.NET
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: Content-Type
Date: Fri, 02 Sep 2022 20:24:55 GMT
Content-Length: 173240
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash 7ce90d6fafa13d92fcf445b688f0389f
480461a46fc291cbcdf6218c7743779d7e862788
dd33483769f6c715aeb257c2955147c1a5a47b0af1684190247701465af8af6c
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 02 Sep 2022 20:24:56 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
cportal.cpschool.uk/Content/assets/css/remix-icons/remixicon.woff2?t=1590207869815
94.130.143.20200 OK 125 kB URL HTTP/1.1 cportal.cpschool.uk/Content/assets/css/remix-icons/remixicon.woff2?t=1590207869815
IP 94.130.143.20:0
ASN #24940 Hetzner Online GmbH
File type Web Open Font Format (Version 2), TrueType, length 125268, version 1.0\012- data
Size 125 kB (125268 bytes)
Hash 9915fef980fa539085da55b84dfde760
4d375abf43ed18aa54264c1b59714b0a59c593a4
e61f0d10c8cac8cd0ecb36790d6cce883380c0b185ff3c9bf849ed336ba8285c
Analyzer Verdict Alert fortinet Malware
GET /Content/assets/css/remix-icons/remixicon.woff2?t=1590207869815 HTTP/1.1
Host: cportal.cpschool.uk
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://portal.cpschool.uk
Connection: keep-alive
Referer: http://cportal.cpschool.uk/
HTTP/1.1 200 OK
Content-Type: application/font-woff2
Last-Modified: Sat, 15 Jan 2022 19:32:38 GMT
Accept-Ranges: bytes
ETag: "88f598a746ad81:0"
Server: Microsoft-IIS/10.0
X-Powered-By: ASP.NET
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: Content-Type
Date: Fri, 02 Sep 2022 20:24:56 GMT
Content-Length: 125268
cportal.cpschool.uk/UserData/CPS/logo_images/FavIcon_1660540561017.png
94.130.143.20200 OK 24 kB URL HTTP/1.1 cportal.cpschool.uk/UserData/CPS/logo_images/FavIcon_1660540561017.png
IP 94.130.143.20:0
ASN #24940 Hetzner Online GmbH
File type PNG image data, 192 x 192, 8-bit/color RGBA, non-interlaced\012- data
Hash 8220c71b8aca682c788eb53cd6414fe9
f7f3f21c5f5c0a0e30142fb0fbf52cb4c4cd8e6b
39fc9a0963e7f253595137e4f2c2cea1eb8e4130f4b127e6183b1ad388ce7517
GET /UserData/CPS/logo_images/FavIcon_1660540561017.png HTTP/1.1
Host: cportal.cpschool.uk
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://portal.cpschool.uk/
HTTP/1.1 200 OK
Content-Type: image/png
Last-Modified: Mon, 15 Aug 2022 05:17:33 GMT
Accept-Ranges: bytes
ETag: "3fdbee5266b0d81:0"
Server: Microsoft-IIS/10.0
X-Powered-By: ASP.NET
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: Content-Type
Date: Fri, 02 Sep 2022 20:24:56 GMT
Content-Length: 24398
portal.cpschool.uk/Content/assets/img/loaders/default.gif
94.130.143.20200 OK 6.1 kB URL HTTP/1.1 portal.cpschool.uk/Content/assets/img/loaders/default.gif
IP 94.130.143.20:0
ASN #24940 Hetzner Online GmbH
File type GIF image data, version 89a, 32 x 32\012- data
Hash e3bf240fc4fa0f9f4b3590b2a43c3955
64818cbee84118aef9b5f3ba84d9209d03e12cc8
8579f3b18c5fd2b67f0ce3d2307b66a476c2aae520886765235d83a1f2111d77
GET /Content/assets/img/loaders/default.gif HTTP/1.1
Host: portal.cpschool.uk
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://portal.cpschool.uk/
Cookie: ASP.NET_SessionId=gjio324liu5ois3fslcnpxhw; __RequestVerificationToken=jNNaae52u2hI-E6zoFv-eUOo4rMrRVN4c3YZrxGhsjdzpPL1TdSFIbeemHTEqs46CG0sRjcyjaqaY-HJv6CuDYiXkH9afTnHK7yCcNns_Ss1
HTTP/1.1 200 OK
Content-Type: image/gif
Last-Modified: Sat, 15 Jan 2022 19:36:01 GMT
Accept-Ranges: bytes
ETag: "4751ed2047ad81:0"
Server: Microsoft-IIS/10.0
X-Powered-By: ASP.NET
Access-Control-Allow-Origin: *
Date: Fri, 02 Sep 2022 20:24:56 GMT
Content-Length: 6127
portal.cpschool.uk/Users/CalendarShared/GetMonthlyCalendarData?currentDate=2022-09-02
94.130.143.20200 OK 35 B URL HTTP/1.1 portal.cpschool.uk/Users/CalendarShared/GetMonthlyCalendarData?currentDate=2022-09-02
IP 94.130.143.20:0
ASN #24940 Hetzner Online GmbH
File type JSON data\012- , ASCII text, with no line terminators
Hash 673bc8ada8dc53d04d4eab99df492e5d
ddcaffbf0441e20630ec8c7c7aa2e5436a042fce
9a7174b1a379176d8c3c5f05a35107c48556c205c50eb019e86f583e4ae4b9b2
POST /Users/CalendarShared/GetMonthlyCalendarData?currentDate=2022-09-02 HTTP/1.1
Host: portal.cpschool.uk
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
X-Requested-With: XMLHttpRequest
Origin: http://portal.cpschool.uk
Connection: keep-alive
Referer: http://portal.cpschool.uk/
Cookie: ASP.NET_SessionId=gjio324liu5ois3fslcnpxhw; __RequestVerificationToken=jNNaae52u2hI-E6zoFv-eUOo4rMrRVN4c3YZrxGhsjdzpPL1TdSFIbeemHTEqs46CG0sRjcyjaqaY-HJv6CuDYiXkH9afTnHK7yCcNns_Ss1
Content-Length: 0
HTTP/1.1 200 OK
Cache-Control: no-cache, no-store
Pragma: no-cache
Content-Type: application/json; charset=utf-8
Expires: -1
Server: Microsoft-IIS/10.0
X-AspNetMvc-Version: 5.2
X-AspNet-Version: 4.0.30319
X-Frame-Options: AllowAll
X-Powered-By: ASP.NET
Access-Control-Allow-Origin: *
Date: Fri, 02 Sep 2022 20:24:56 GMT
Content-Length: 35
push.services.mozilla.com/
44.228.106.27101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 44.228.106.27:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: UkmS6pd2SLYYPYcJ8NWngA==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: HcEtWnFXGv/S3CYjR37iooyWPNc=
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 12f00eac4bda78b5d4c4bc00e96be439
5d6d88dbf72f208bc33c9af693440aec02e5f11c
4a85dc99793413780fdfde032e83995c0a15775eb09123f53a1ba9b789f91a55
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "4A85DC99793413780FDFDE032E83995C0A15775EB09123F53A1BA9B789F91A55"
Last-Modified: Wed, 31 Aug 2022 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=13377
Expires: Sat, 03 Sep 2022 00:07:54 GMT
Date: Fri, 02 Sep 2022 20:24:57 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 12f00eac4bda78b5d4c4bc00e96be439
5d6d88dbf72f208bc33c9af693440aec02e5f11c
4a85dc99793413780fdfde032e83995c0a15775eb09123f53a1ba9b789f91a55
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "4A85DC99793413780FDFDE032E83995C0A15775EB09123F53A1BA9B789F91A55"
Last-Modified: Wed, 31 Aug 2022 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=13377
Expires: Sat, 03 Sep 2022 00:07:54 GMT
Date: Fri, 02 Sep 2022 20:24:57 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 12f00eac4bda78b5d4c4bc00e96be439
5d6d88dbf72f208bc33c9af693440aec02e5f11c
4a85dc99793413780fdfde032e83995c0a15775eb09123f53a1ba9b789f91a55
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "4A85DC99793413780FDFDE032E83995C0A15775EB09123F53A1BA9B789F91A55"
Last-Modified: Wed, 31 Aug 2022 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=13377
Expires: Sat, 03 Sep 2022 00:07:54 GMT
Date: Fri, 02 Sep 2022 20:24:57 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 12f00eac4bda78b5d4c4bc00e96be439
5d6d88dbf72f208bc33c9af693440aec02e5f11c
4a85dc99793413780fdfde032e83995c0a15775eb09123f53a1ba9b789f91a55
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "4A85DC99793413780FDFDE032E83995C0A15775EB09123F53A1BA9B789F91A55"
Last-Modified: Wed, 31 Aug 2022 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=13377
Expires: Sat, 03 Sep 2022 00:07:54 GMT
Date: Fri, 02 Sep 2022 20:24:57 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7c0ef483-e545-4a1f-b9b9-88778330d881.jpeg
34.120.237.76200 OK 10 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7c0ef483-e545-4a1f-b9b9-88778330d881.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 955f2a35bd6b3802670e7fa8a7cda833
4c70d27f7c51b7fcae1d8a883bfc2e67a551ae6c
2fb517039f0704d2f6fe2fa78eae47c71c645add1c2276f8726248184ae45760
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7c0ef483-e545-4a1f-b9b9-88778330d881.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10435
x-amzn-requestid: 813ec4ca-243d-46cb-a6a6-8ec58e5dd9f8
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: XzLjdHwnIAMFhzA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63112615-4733cfb83cf0e8734abc5716;Sampled=0
x-amzn-remapped-date: Thu, 01 Sep 2022 21:37:25 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: n6DJbsUGTdXT42cNLTDq6Uz28H2SDhwq6drdKP4axAHsBz471X7r_g==
via: 1.1 56c69262ecfa7873b40572ba8a323242.cloudfront.net (CloudFront), 1.1 89791e6b21b9a30cc51cac1bc51cf098.cloudfront.net (CloudFront), 1.1 google
date: Thu, 01 Sep 2022 21:37:26 GMT
age: 82051
etag: "4c70d27f7c51b7fcae1d8a883bfc2e67a551ae6c"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F141f656b-9191-4cf5-a05b-891ed5c9656f.jpeg
34.120.237.76200 OK 5.1 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F141f656b-9191-4cf5-a05b-891ed5c9656f.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 5c3b7580a37e6eb7e5bd18491f1d4dd6
288b82ad8f924eb9570ae1c55da84d041f862366
046d1ef76448c53446068ef5f8315b7299484996cdebfd9d1e749b4ded9c7d3c
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F141f656b-9191-4cf5-a05b-891ed5c9656f.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5079
x-amzn-requestid: 3b19c77a-2e9b-499f-890b-36fc4ee72ba7
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: XslOVEtZIAMFv1w=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-630e825b-01b7b71617b59f7414a0e5e5;Sampled=0
x-amzn-remapped-date: Tue, 30 Aug 2022 21:34:19 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: et3ZsWRVoBNMpArUk9CohTyMpS5F0eKiR6cZJRfwAEiiFJUaeay58g==
via: 1.1 0aebf3fe433ff96e68d785fad4ea4c0e.cloudfront.net (CloudFront), 1.1 567b44ed19c8caed2570b7bcd8c70034.cloudfront.net (CloudFront), 1.1 google
date: Thu, 01 Sep 2022 21:48:05 GMT
age: 81412
etag: "288b82ad8f924eb9570ae1c55da84d041f862366"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9564bd06-b264-460b-96bb-6b37cf25a72b.jpeg
34.120.237.76200 OK 17 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9564bd06-b264-460b-96bb-6b37cf25a72b.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 12756903aaa74164feb5f8525398ca36
9fef9b071daea6793cbbdfe391254ac4326b1aa2
6d474a6d96aebfed43a4f6812f18a1be8d100c590f75eb0fbf4ec7277dd0c442
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9564bd06-b264-460b-96bb-6b37cf25a72b.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 16818
x-amzn-requestid: fa921878-2054-453b-b313-681cdd9c9068
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Xj-Z_HUNIAMFltg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-630b110c-053ce81943fea70c2de7daa0;Sampled=0
x-amzn-remapped-date: Sun, 28 Aug 2022 06:54:04 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: CDyJUMKmUlrT3LgfeiZhQN1XEV2vKTIZtmV4QZYXaoM4PWbYo8IyJA==
via: 1.1 d1151317ba32afe0e6370fd69fed222e.cloudfront.net (CloudFront), 1.1 5954c6394458ffb44c970b3819d7ff2a.cloudfront.net (CloudFront), 1.1 google
date: Fri, 02 Sep 2022 14:46:29 GMT
age: 20308
etag: "9fef9b071daea6793cbbdfe391254ac4326b1aa2"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
cportal.cpschool.uk/Content/assets/css/bootstrap/bootstrap.min.css
94.130.143.20200 OK 5.9 kB URL HTTP/1.1 cportal.cpschool.uk/Content/assets/css/bootstrap/bootstrap.min.css
IP 94.130.143.20:0
ASN #24940 Hetzner Online GmbH
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 24d848f7606889b048b6334e70d8a5e0
85239ef4f2fee8d3345e599bc942cab63ff3aaf6
da6cf33b440b51f72a70f309d62fd581aed246b6a78b8f329fa3899db15ff86d
GET /Content/assets/css/bootstrap/bootstrap.min.css HTTP/1.1
Host: cportal.cpschool.uk
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://cportal.cpschool.uk/Content/assets/css/theme-new.css?v=1_351
HTTP/1.1 200 OK
Content-Type: text/css
Last-Modified: Sat, 15 Jan 2022 19:32:37 GMT
Accept-Ranges: bytes
ETag: "18fd0a646ad81:0"
Server: Microsoft-IIS/10.0
X-Powered-By: ASP.NET
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: Content-Type
Date: Fri, 02 Sep 2022 20:24:55 GMT
Content-Length: 155740
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff6b23082-fe08-4f5d-b709-47175510cf45.jpeg
34.120.237.76200 OK 6.2 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff6b23082-fe08-4f5d-b709-47175510cf45.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 5e05660322f0368dd2bf8067d7e4554d
ec65cb47d86488f734c945a210d5f636a40fea2c
98875230ec45766102191bdc4180742fa3b8f3ad5ad1a128d12437105f86247e
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff6b23082-fe08-4f5d-b709-47175510cf45.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6196
x-amzn-requestid: a7d6ce70-06d7-498c-8024-80185a3fc3e4
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: XzLyLFmVIAMFkcQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63112674-3fad622927177e9236d7c50a;Sampled=0
x-amzn-remapped-date: Thu, 01 Sep 2022 21:39:00 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: wLezqM4_yKqtOR7D43beBqm8TAD5y8eQ7xHOxjDJdHchCpyusuzMuQ==
via: 1.1 4dde8ec6d6c12741888c2d3a059d4a2e.cloudfront.net (CloudFront), 1.1 68fadeb91f97256bb67b03bfca74d830.cloudfront.net (CloudFront), 1.1 google
date: Thu, 01 Sep 2022 21:55:46 GMT
etag: "ec65cb47d86488f734c945a210d5f636a40fea2c"
content-type: image/jpeg
age: 80951
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F06f2c9c2-de63-41e1-8359-5a5923a2b1e8.webp
34.120.237.76200 OK 9.3 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F06f2c9c2-de63-41e1-8359-5a5923a2b1e8.webp
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 5ba50b2fd1814c5ffc95aef40c69ce8c
cbb4546228115cccc122b16209e70171bef5c1f2
de822c8549508b28a07d29b203ae3ef356470df906cba727fc765f1bd14bb866
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F06f2c9c2-de63-41e1-8359-5a5923a2b1e8.webp HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9252
x-amzn-requestid: 7feebba8-f6b9-4b79-9726-5a7534da277e
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: XzLyVG5DoAMF_Ug=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63112675-3123158f3dcfbd476537ca3c;Sampled=0
x-amzn-remapped-date: Thu, 01 Sep 2022 21:39:01 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: BOa5zGQyJS9q9bHmtKzlNtyS9ToGPZJkDFo2uY2lzz8Lnd3cZLQEaA==
via: 1.1 1cc6ed0d2d3dd9529ce544f9dfe61a52.cloudfront.net (CloudFront), 1.1 ebe4011a81a36e2bf678f69ce1711330.cloudfront.net (CloudFront), 1.1 google
date: Thu, 01 Sep 2022 22:01:10 GMT
age: 80627
etag: "cbb4546228115cccc122b16209e70171bef5c1f2"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
cportal.cpschool.uk/bundles/jquery-main
94.130.143.20200 OK 0 B URL HTTP/1.1 cportal.cpschool.uk/bundles/jquery-main
IP 94.130.143.20:0
ASN #24940 Hetzner Online GmbH
Analyzer Verdict Alert fortinet Malware
GET /bundles/jquery-main HTTP/1.1
Host: cportal.cpschool.uk
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://portal.cpschool.uk/
HTTP/1.1 200 OK
Cache-Control: no-cache, no-store
Pragma: no-cache
Content-Type: text/javascript; charset=utf-8
Expires: -1
Server: Microsoft-IIS/10.0
X-AspNet-Version: 4.0.30319
X-Powered-By: ASP.NET
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: Content-Type
Date: Fri, 02 Sep 2022 20:24:55 GMT
Content-Length: 84293
fonts.googleapis.com/css?family=Open+Sans:300italic,400italic,600italic,700italic,400,300,500,600,700&subset=latin,latin-ext
142.250.74.10200 OK 0 B URL HTTP/2 fonts.googleapis.com/css?family=Open+Sans:300italic,400italic,600italic,700italic,400,300,500,600,700&subset=latin,latin-ext
IP 142.250.74.10:0
GET /css?family=Open+Sans:300italic,400italic,600italic,700italic,400,300,500,600,700&subset=latin,latin-ext HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://cportal.cpschool.uk/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Fri, 02 Sep 2022 20:24:56 GMT
date: Fri, 02 Sep 2022 20:24:56 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2