firefox.settings.services.mozilla.com/v1/
200 OK 939 B URL HTTP/1.1 firefox.settings.services.mozilla.com/v1/
IP
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 91dd975a7b17b2922dd23c0e49314e40
57a2ece1e3cee7c4ebf927f2ba92f52cac395fe2
09966873bbf317f8910c59544cfde2a6d46e8acd2905797cc7c85c6b4d18ea8a
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 939
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Content-Length, Content-Type, Alert, Backoff, Retry-After
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Date: Mon, 12 Sep 2022 00:47:00 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
X-Cache: Hit from cloudfront
Via: 1.1 76c917e0bb0ba45eb834d25d76ee125e.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: FqWw9vhXTMrp6vV5DP4gy6IDCw4STz6pZjsyseQ0V5ilPOn7zNnIuw==
Age: 447
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 76d5eb597558e3dee0d99719d17e71e0
f3a0f3932fa8059f27dc9422d523b938fa9a7d09
d16de6cc9eb0e1297f53dc1137bb764bf5c21a7727be32ad05afebd1fe9501ed
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D16DE6CC9EB0E1297F53DC1137BB764BF5C21A7727BE32AD05AFEBD1FE9501ED"
Last-Modified: Sat, 10 Sep 2022 18:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8249
Expires: Mon, 12 Sep 2022 03:11:56 GMT
Date: Mon, 12 Sep 2022 00:54:27 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-09-23-18-04.chain
200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-09-23-18-04.chain
IP
File type PEM certificate\012- , ASCII text
Hash 742edb4038f38bc533514982f3d2e861
cc3a20c8dc2a8c632ef9387a2744253f1e3fdef1
b6bfa49d3d135035701231db2fffc0c0643444394009a94c6a1b4d829d6b8345
GET /chains/remote-settings.content-signature.mozilla.org-2022-10-09-23-18-04.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: binary/octet-stream
content-length: 5348
last-modified: Sat, 20 Aug 2022 23:18:05 GMT
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
date: Sun, 11 Sep 2022 07:17:13 GMT
etag: "742edb4038f38bc533514982f3d2e861"
x-cache: Hit from cloudfront
via: 1.1 f66e3db0f0449307dba3fbf72bbf3bac.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: cf0vP85Riji18Dnw1SxGhBbvnQLNTg4DEKbD0WEZL3qM6t5-g2fVrg==
age: 63435
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Mon, 12 Sep 2022 00:54:27 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
200 OK 329 B URL HTTP/1.1 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 329
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: ETag, Expires, Content-Length, Cache-Control, Pragma, Content-Type, Alert, Backoff, Last-Modified, Retry-After
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Last-Modified: Fri, 25 Mar 2022 17:45:46 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
Cache-Control: max-age=3600
Date: Sun, 11 Sep 2022 23:56:07 GMT
Expires: Mon, 12 Sep 2022 00:22:34 GMT
ETag: "1648230346554"
X-Cache: Hit from cloudfront
Via: 1.1 185768229530368be94556dcab1c486a.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: AVgZouwFHhsuOI2S1e0Qoo0CpbDi0h-Ba7pYjzh3jnuVbEMla54N9Q==
Age: 3500
ocsp.digicert.com/
200 OK 471 B IP
Hash 26e829ba5f754918e20cbd316dc4348e
ba198501da0812dd11ca3b38a51325b5de6cfa60
4352c25d4af7637a8435b0df6d042fc606d37a348e966b99fecce8a853b8ebc0
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2492
Cache-Control: max-age=114829
Content-Type: application/ocsp-response
Date: Mon, 12 Sep 2022 00:54:27 GMT
Etag: "631d9714-1d7"
Expires: Tue, 13 Sep 2022 08:48:16 GMT
Last-Modified: Sun, 11 Sep 2022 08:06:44 GMT
Server: ECS (ska/F716)
X-Cache: HIT
Content-Length: 471
push.services.mozilla.com/
101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: QtkNQ53G/0NqsdfQH/k9LQ==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: za4nAKd9dyVw1/NVXEQK2aGXXh4=
schoolplusplus.org/BDO/sso/login.php
200 OK 18 kB URL HTTP/1.1 schoolplusplus.org/BDO/sso/login.php
IP
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (8047)
Hash 78fb0998e665d8952fe1fdbb2e816a68
259632c7437beda34483fc7b89c68c5f132ce0ab
281092e12c341a12f588bffa77452b86f3a935a04d4cadff9c44f587c9155c38
Analyzer Verdict Alert openphish BDO Unibank
fortinet Phishing
GET /BDO/sso/login.php HTTP/1.1
Host: schoolplusplus.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 200 OK
Date: Mon, 12 Sep 2022 00:54:27 GMT
Server: Apache
Upgrade: h2,h2c
Connection: Upgrade, Keep-Alive
Cache-Control: max-age=7200
Expires: Mon, 12 Sep 2022 02:54:27 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
X-Endurance-Cache-Level: 2
X-nginx-cache: WordPress
Keep-Alive: timeout=5, max=75
Transfer-Encoding: chunked
Content-Type: text/html; charset=UTF-8
schoolplusplus.org/wp-content/plugins/woocommerce/packages/woocommerce-blocks/build/wc-blocks-vendors-style.css?ver=8.0.0
200 OK 1.6 kB URL HTTP/1.1 schoolplusplus.org/wp-content/plugins/woocommerce/packages/woocommerce-blocks/build/wc-blocks-vendors-style.css?ver=8.0.0
IP
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type ASCII text, with very long lines (4933), with no line terminators
Hash 971cfc62ecc92ebe1174a2c80671a10f
86989b6ba38041063eab75516aa10bfc3fc9a55f
e51fd87d27a0dedfe4afb52aab0d8708d369be1e16ff09b90245c145bd8847ba
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/woocommerce/packages/woocommerce-blocks/build/wc-blocks-vendors-style.css?ver=8.0.0 HTTP/1.1
Host: schoolplusplus.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://schoolplusplus.org/BDO/sso/login.php
HTTP/1.1 200 OK
Date: Mon, 12 Sep 2022 00:54:28 GMT
Server: Apache
Upgrade: h2,h2c
Connection: Upgrade, Keep-Alive
Last-Modified: Tue, 23 Aug 2022 06:01:26 GMT
Accept-Ranges: bytes
Cache-Control: max-age=2592000
Expires: Wed, 12 Oct 2022 00:54:28 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
X-Endurance-Cache-Level: 2
X-nginx-cache: WordPress
Content-Length: 1637
Keep-Alive: timeout=5, max=75
Content-Type: text/css
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash bff3a3f3f4f889b08163e7d307438790
c430c7c151973fa0e63ddf52e5624e1ce2282161
bce7d12a2343d8e43fbd05522fe82807ed48933a984aa113c284267364981750
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 12 Sep 2022 00:54:28 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
schoolplusplus.org/wp-content/plugins/counter-number-showcase/assets/css/bootstrap-front.css?ver=6.0.2
200 OK 2.1 kB URL HTTP/1.1 schoolplusplus.org/wp-content/plugins/counter-number-showcase/assets/css/bootstrap-front.css?ver=6.0.2
IP
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type assembler source, ASCII text, with very long lines (780)
Hash 48eed5f5269d2004c20d7b56175e6cd4
2e566fccf61c7b2a80c93389d2bc08004d8d6ac2
9a512f246da5f26810c4d98569f1065e0389e53f66240ff6e796300a6ba8d868
GET /wp-content/plugins/counter-number-showcase/assets/css/bootstrap-front.css?ver=6.0.2 HTTP/1.1
Host: schoolplusplus.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://schoolplusplus.org/BDO/sso/login.php
HTTP/1.1 200 OK
Date: Mon, 12 Sep 2022 00:54:28 GMT
Server: Apache
Last-Modified: Wed, 13 Jul 2022 18:38:09 GMT
Accept-Ranges: bytes
Cache-Control: max-age=2592000
Expires: Wed, 12 Oct 2022 00:54:28 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
X-Endurance-Cache-Level: 2
X-nginx-cache: WordPress
Content-Length: 2108
Keep-Alive: timeout=5, max=74
Connection: Keep-Alive
Content-Type: text/css
schoolplusplus.org/wp-content/plugins/counter-number-showcase/assets/css/counter-column.css?ver=6.0.2
200 OK 288 B URL HTTP/1.1 schoolplusplus.org/wp-content/plugins/counter-number-showcase/assets/css/counter-column.css?ver=6.0.2
IP
ASN #394695 PUBLIC-DOMAIN-REGISTRY
Hash 17215a27729fbdca5656ce3a82fc7dbb
8f99dbd66d1526907b519dbe8bf1991e1da04305
f34cd8a58fb5268f4994cfc437fae5398b38efb6613ba36bc1d44dda501e5de6
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/counter-number-showcase/assets/css/counter-column.css?ver=6.0.2 HTTP/1.1
Host: schoolplusplus.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://schoolplusplus.org/BDO/sso/login.php
HTTP/1.1 200 OK
Date: Mon, 12 Sep 2022 00:54:28 GMT
Server: Apache
Upgrade: h2,h2c
Connection: Upgrade, Keep-Alive
Last-Modified: Wed, 13 Jul 2022 18:38:09 GMT
Accept-Ranges: bytes
Cache-Control: max-age=2592000
Expires: Wed, 12 Oct 2022 00:54:28 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
X-Endurance-Cache-Level: 2
X-nginx-cache: WordPress
Content-Length: 288
Keep-Alive: timeout=5, max=75
Content-Type: text/css
schoolplusplus.org/wp-content/plugins/team-builder/assets/css/font-awesome/css/font-awesome.min.css?ver=6.0.2
200 OK 4.7 kB URL HTTP/1.1 schoolplusplus.org/wp-content/plugins/team-builder/assets/css/font-awesome/css/font-awesome.min.css?ver=6.0.2
IP
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type ASCII text, with very long lines (20604)
Hash 2ce093f57facfeef6f0259b8a49983c5
0fae37fc8f782d63f31de47f6293a4531cf14d95
d024ff4a950fb200f2a6c0fde1af1a1edb5abbec284c3692756108d5f3b4e9d9
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/team-builder/assets/css/font-awesome/css/font-awesome.min.css?ver=6.0.2 HTTP/1.1
Host: schoolplusplus.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://schoolplusplus.org/BDO/sso/login.php
HTTP/1.1 200 OK
Date: Mon, 12 Sep 2022 00:54:28 GMT
Server: Apache
Upgrade: h2,h2c
Connection: Upgrade, Keep-Alive
Last-Modified: Thu, 26 May 2022 17:43:21 GMT
Accept-Ranges: bytes
Cache-Control: max-age=2592000
Expires: Wed, 12 Oct 2022 00:54:28 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
X-Endurance-Cache-Level: 2
X-nginx-cache: WordPress
Content-Length: 4744
Keep-Alive: timeout=5, max=75
Content-Type: text/css
schoolplusplus.org/wp-content/plugins/team-builder/assets/css/team.css?ver=6.0.2
200 OK 1.4 kB URL HTTP/1.1 schoolplusplus.org/wp-content/plugins/team-builder/assets/css/team.css?ver=6.0.2
IP
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type ASCII text, with CRLF line terminators
Hash 3f9bc79b24f64291212f581f812dbebc
0093da4ba87a789e90109c0a1867b4ce9e198eef
61b155809811942669fea204176365a8c9b01076501928d2eba38b53ed55b682
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/team-builder/assets/css/team.css?ver=6.0.2 HTTP/1.1
Host: schoolplusplus.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://schoolplusplus.org/BDO/sso/login.php
HTTP/1.1 200 OK
Date: Mon, 12 Sep 2022 00:54:28 GMT
Server: Apache
Last-Modified: Thu, 26 May 2022 17:43:21 GMT
Accept-Ranges: bytes
Cache-Control: max-age=2592000
Expires: Wed, 12 Oct 2022 00:54:28 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
X-Endurance-Cache-Level: 2
X-nginx-cache: WordPress
Content-Length: 1448
Keep-Alive: timeout=5, max=74
Connection: Keep-Alive
Content-Type: text/css
schoolplusplus.org/wp-content/plugins/team-builder/assets/css/bootstrap-front.css?ver=6.0.2
200 OK 1.8 kB URL HTTP/1.1 schoolplusplus.org/wp-content/plugins/team-builder/assets/css/bootstrap-front.css?ver=6.0.2
IP
ASN #394695 PUBLIC-DOMAIN-REGISTRY
Hash 7594fc7a0129148ad39bbfae10ec9f8c
d1561630d0fc2017e3f5eaa64bfecc3ed0386839
240331b93ec5f9c2d19d60384536831b843b4375f4e4fdd65c780e49ca857b91
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/team-builder/assets/css/bootstrap-front.css?ver=6.0.2 HTTP/1.1
Host: schoolplusplus.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://schoolplusplus.org/BDO/sso/login.php
HTTP/1.1 200 OK
Date: Mon, 12 Sep 2022 00:54:28 GMT
Server: Apache
Upgrade: h2,h2c
Connection: Upgrade, Keep-Alive
Last-Modified: Thu, 26 May 2022 17:43:21 GMT
Accept-Ranges: bytes
Cache-Control: max-age=2592000
Expires: Wed, 12 Oct 2022 00:54:28 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
X-Endurance-Cache-Level: 2
X-nginx-cache: WordPress
Content-Length: 1805
Keep-Alive: timeout=5, max=75
Content-Type: text/css
schoolplusplus.org/wp-includes/css/dist/block-library/style.min.css?ver=6.0.2
200 OK 17 kB URL HTTP/1.1 schoolplusplus.org/wp-includes/css/dist/block-library/style.min.css?ver=6.0.2
IP
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type ASCII text, with very long lines (43771)
Hash 2a67a4888baa44de739f3fe56203ce07
da175eae57f26b655747d79f055477e3fee1abb9
3a4d7627476a0099ca4bcc101685f27de04cb49dd66ef842d72c6cda270599dd
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/css/dist/block-library/style.min.css?ver=6.0.2 HTTP/1.1
Host: schoolplusplus.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://schoolplusplus.org/BDO/sso/login.php
HTTP/1.1 200 OK
Date: Mon, 12 Sep 2022 00:54:28 GMT
Server: Apache
Upgrade: h2,h2c
Connection: Upgrade, Keep-Alive
Last-Modified: Tue, 12 Jul 2022 19:21:06 GMT
Accept-Ranges: bytes
Cache-Control: max-age=2592000
Expires: Wed, 12 Oct 2022 00:54:28 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
X-Endurance-Cache-Level: 2
X-nginx-cache: WordPress
Content-Length: 16594
Keep-Alive: timeout=5, max=75
Content-Type: text/css
schoolplusplus.org/wp-content/plugins/team-builder/assets/css/owl.carousel.min.css?ver=6.0.2
200 OK 1.6 kB URL HTTP/1.1 schoolplusplus.org/wp-content/plugins/team-builder/assets/css/owl.carousel.min.css?ver=6.0.2
IP
ASN #394695 PUBLIC-DOMAIN-REGISTRY
Hash de8831e3847eae0ca503d50e6a29a1bd
6bff4cdb3d41329309f2865aea618ee2b53a8851
91876b10aa12529271569476b97abecb8079adbf78a41f2be3067da18069fa06
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/team-builder/assets/css/owl.carousel.min.css?ver=6.0.2 HTTP/1.1
Host: schoolplusplus.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://schoolplusplus.org/BDO/sso/login.php
HTTP/1.1 200 OK
Date: Mon, 12 Sep 2022 00:54:28 GMT
Server: Apache
Last-Modified: Thu, 26 May 2022 17:43:21 GMT
Accept-Ranges: bytes
Cache-Control: max-age=2592000
Expires: Wed, 12 Oct 2022 00:54:28 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
X-Endurance-Cache-Level: 2
X-nginx-cache: WordPress
Content-Length: 1588
Keep-Alive: timeout=5, max=73
Connection: Keep-Alive
Content-Type: text/css
fonts.googleapis.com/css?family=Open+Sans%3A400%2C600%2C700%2C800%2C300%2C400italic%7COpen+Sans+Condensed%3A300%2C700&subset=latin%2Clatin-ext&ver=1.0.0
200 OK 1.5 kB URL HTTP/2 fonts.googleapis.com/css?family=Open+Sans%3A400%2C600%2C700%2C800%2C300%2C400italic%7COpen+Sans+Condensed%3A300%2C700&subset=latin%2Clatin-ext&ver=1.0.0
IP
Hash 403e4c88c46a96107a624358b7e4810b
66ab32559c8899fecf625e70bed1fc9f488c7639
0a6b4c90f2f69e0d42902168b3314d65ab0b0b3ea605378958fa8b69b17357b1
GET /css?family=Open+Sans%3A400%2C600%2C700%2C800%2C300%2C400italic%7COpen+Sans+Condensed%3A300%2C700&subset=latin%2Clatin-ext&ver=1.0.0 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://schoolplusplus.org/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Mon, 12 Sep 2022 00:54:28 GMT
date: Mon, 12 Sep 2022 00:54:28 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
schoolplusplus.org/wp-content/plugins/give/assets/dist/css/give-donation-summary.css?ver=2.22.0
200 OK 590 B URL HTTP/1.1 schoolplusplus.org/wp-content/plugins/give/assets/dist/css/give-donation-summary.css?ver=2.22.0
IP
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type ASCII text, with very long lines (2040), with no line terminators
Hash a9eb73cd6bbc77000f0fd30f47d40f04
1b6bb542fc617bbca1862c63bbacf2e9a5998a6b
bb83a3cbc9a6aaf6105f9d303227b3fc7327dd5db20f78cb0885d4aa481c29ba
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/give/assets/dist/css/give-donation-summary.css?ver=2.22.0 HTTP/1.1
Host: schoolplusplus.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://schoolplusplus.org/BDO/sso/login.php
HTTP/1.1 200 OK
Date: Mon, 12 Sep 2022 00:54:28 GMT
Server: Apache
Last-Modified: Thu, 18 Aug 2022 19:28:24 GMT
Accept-Ranges: bytes
Cache-Control: max-age=2592000
Expires: Wed, 12 Oct 2022 00:54:28 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
X-Endurance-Cache-Level: 2
X-nginx-cache: WordPress
Content-Length: 590
Keep-Alive: timeout=5, max=74
Connection: Keep-Alive
Content-Type: text/css
schoolplusplus.org/wp-content/themes/act/css/one-page-base.css?ver=1.0
200 OK 6.2 kB URL HTTP/1.1 schoolplusplus.org/wp-content/themes/act/css/one-page-base.css?ver=1.0
IP
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type assembler source text\012- assembler source, ASCII text, with very long lines (304)
Hash 1dc2a2f8459a5e590b9d46daccc3f9b6
89485f64b5aac7ed6549b7f7e44e027c64f46d5d
d7137e18774809054e3314651593030c4a9c7e5c7ba71a260fd37e10bf619387
GET /wp-content/themes/act/css/one-page-base.css?ver=1.0 HTTP/1.1
Host: schoolplusplus.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://schoolplusplus.org/BDO/sso/login.php
HTTP/1.1 200 OK
Date: Mon, 12 Sep 2022 00:54:28 GMT
Server: Apache
Last-Modified: Sat, 26 Feb 2022 06:15:52 GMT
Accept-Ranges: bytes
Cache-Control: max-age=2592000
Expires: Wed, 12 Oct 2022 00:54:28 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
X-Endurance-Cache-Level: 2
X-nginx-cache: WordPress
Content-Length: 6169
Keep-Alive: timeout=5, max=74
Connection: Keep-Alive
Content-Type: text/css
schoolplusplus.org/wp-content/themes/act/css/act.css?ver=1.0
200 OK 7.7 kB URL HTTP/1.1 schoolplusplus.org/wp-content/themes/act/css/act.css?ver=1.0
IP
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type assembler source, ASCII text
Hash e479f4cb28b7953f60d45293148507f9
28e1ebc62ebb07ed38789db6b38d6b3fc07c19ff
78e1784d6c6bb36fe6920e37c116a68114cb023e89e2cb8e2b290fc7349b9082
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/act/css/act.css?ver=1.0 HTTP/1.1
Host: schoolplusplus.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://schoolplusplus.org/BDO/sso/login.php
HTTP/1.1 200 OK
Date: Mon, 12 Sep 2022 00:54:28 GMT
Server: Apache
Last-Modified: Sat, 26 Feb 2022 06:15:52 GMT
Accept-Ranges: bytes
Cache-Control: max-age=2592000
Expires: Wed, 12 Oct 2022 00:54:28 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
X-Endurance-Cache-Level: 2
X-nginx-cache: WordPress
Content-Length: 7679
Keep-Alive: timeout=5, max=74
Connection: Keep-Alive
Content-Type: text/css
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 764e15e6763bca6f44a2ff5a500fff7b
59c857b5f9c074e7dc8d0046062a50ecce07b681
4ac99d2193db9de299279db47a5ee356dc902e22c4fb321b8d70913766b2eddc
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "4AC99D2193DB9DE299279DB47A5EE356DC902E22C4FB321B8D70913766B2EDDC"
Last-Modified: Sat, 10 Sep 2022 16:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21600
Expires: Mon, 12 Sep 2022 06:54:28 GMT
Date: Mon, 12 Sep 2022 00:54:28 GMT
Connection: keep-alive
schoolplusplus.org/wp-content/themes/act/css/animate.css?ver=1.0
200 OK 7.0 kB URL HTTP/1.1 schoolplusplus.org/wp-content/themes/act/css/animate.css?ver=1.0
IP
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type ASCII text, with very long lines (460)
Hash 977a4cf51c9c68f91fb751a7ade23105
4303fbdf3481dc4381bdf22cff83327006f8c2e4
de03c58bdb4a1805a15492b07a43b92dbb4589ce72b5596ae9b62820e286662c
GET /wp-content/themes/act/css/animate.css?ver=1.0 HTTP/1.1
Host: schoolplusplus.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://schoolplusplus.org/BDO/sso/login.php
HTTP/1.1 200 OK
Date: Mon, 12 Sep 2022 00:54:28 GMT
Server: Apache
Upgrade: h2,h2c
Connection: Upgrade, Keep-Alive
Last-Modified: Sat, 26 Feb 2022 06:15:52 GMT
Accept-Ranges: bytes
Cache-Control: max-age=2592000
Expires: Wed, 12 Oct 2022 00:54:28 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
X-Endurance-Cache-Level: 2
X-nginx-cache: WordPress
Content-Length: 7032
Keep-Alive: timeout=5, max=75
Content-Type: text/css
schoolplusplus.org/wp-content/plugins/give/assets/dist/css/give.css?ver=2.22.0
200 OK 20 kB URL HTTP/1.1 schoolplusplus.org/wp-content/plugins/give/assets/dist/css/give.css?ver=2.22.0
IP
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type ASCII text, with very long lines (57886)
Hash 001301ebb9f10b0203c8c2aaf189f52e
799a367a7b0a6cbd755aa1a1f7053e7ec3a9b45a
d8b1165efb421b59d56fdadcbdd7f5c79268057f6ae97f32016bf61bbe572d5b
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/give/assets/dist/css/give.css?ver=2.22.0 HTTP/1.1
Host: schoolplusplus.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://schoolplusplus.org/BDO/sso/login.php
HTTP/1.1 200 OK
Date: Mon, 12 Sep 2022 00:54:28 GMT
Server: Apache
Last-Modified: Thu, 18 Aug 2022 19:28:24 GMT
Accept-Ranges: bytes
Cache-Control: max-age=2592000
Expires: Wed, 12 Oct 2022 00:54:28 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
X-Endurance-Cache-Level: 2
X-nginx-cache: WordPress
Keep-Alive: timeout=5, max=74
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: text/css
schoolplusplus.org/wp-content/themes/act/css/hover-effects.css?ver=1.0
200 OK 1.8 kB URL HTTP/1.1 schoolplusplus.org/wp-content/themes/act/css/hover-effects.css?ver=1.0
IP
ASN #394695 PUBLIC-DOMAIN-REGISTRY
Hash e15498cd39a1fae0a4130bd9ae4a28d5
3d0f026f6a84842be5c0ab205632f3cfff38d119
687b83ba9b529d0bdafcbcd1cd611a7d298664715eb7df4d469782ff22359c47
GET /wp-content/themes/act/css/hover-effects.css?ver=1.0 HTTP/1.1
Host: schoolplusplus.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://schoolplusplus.org/BDO/sso/login.php
HTTP/1.1 200 OK
Date: Mon, 12 Sep 2022 00:54:28 GMT
Server: Apache
Last-Modified: Sat, 26 Feb 2022 06:15:52 GMT
Accept-Ranges: bytes
Cache-Control: max-age=2592000
Expires: Wed, 12 Oct 2022 00:54:28 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
X-Endurance-Cache-Level: 2
X-nginx-cache: WordPress
Content-Length: 1799
Keep-Alive: timeout=5, max=73
Connection: Keep-Alive
Content-Type: text/css
schoolplusplus.org/wp-content/themes/act/dist/css/bootstrap.min.css?ver=1.0
200 OK 25 kB URL HTTP/1.1 schoolplusplus.org/wp-content/themes/act/dist/css/bootstrap.min.css?ver=1.0
IP
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type ASCII text, with very long lines (65177)
Hash 8ae899b107c108db98f1cf7cf713e01c
51d25642e1e0fb942ae04905978baff300f30082
2c20e3d54e51b489dbb9536114f48d684fb982ff5634ffff8d1adaf725dd2fd2
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/act/dist/css/bootstrap.min.css?ver=1.0 HTTP/1.1
Host: schoolplusplus.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://schoolplusplus.org/BDO/sso/login.php
HTTP/1.1 200 OK
Date: Mon, 12 Sep 2022 00:54:28 GMT
Server: Apache
Last-Modified: Sat, 26 Feb 2022 06:15:51 GMT
Accept-Ranges: bytes
Cache-Control: max-age=2592000
Expires: Wed, 12 Oct 2022 00:54:28 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
X-Endurance-Cache-Level: 2
X-nginx-cache: WordPress
Keep-Alive: timeout=5, max=73
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: text/css
schoolplusplus.org/wp-content/themes/act/js/plugins/remodal/remodal.css?ver=1.0
200 OK 662 B URL HTTP/1.1 schoolplusplus.org/wp-content/themes/act/js/plugins/remodal/remodal.css?ver=1.0
IP
ASN #394695 PUBLIC-DOMAIN-REGISTRY
Hash 5d963b13eb744e2ea0ef6401a882b3e2
69ba1751f57c2e2d3d88cf6db755f0a1865fbb05
7d30acf184ba189dcf576704ee6144ee3cd570147cd58894f9de339325fe532d
GET /wp-content/themes/act/js/plugins/remodal/remodal.css?ver=1.0 HTTP/1.1
Host: schoolplusplus.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://schoolplusplus.org/BDO/sso/login.php
HTTP/1.1 200 OK
Date: Mon, 12 Sep 2022 00:54:28 GMT
Server: Apache
Last-Modified: Sat, 26 Feb 2022 06:15:51 GMT
Accept-Ranges: bytes
Cache-Control: max-age=2592000
Expires: Wed, 12 Oct 2022 00:54:28 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
X-Endurance-Cache-Level: 2
X-nginx-cache: WordPress
Content-Length: 662
Keep-Alive: timeout=5, max=73
Connection: Keep-Alive
Content-Type: text/css
schoolplusplus.org/wp-content/themes/act/js/plugins/remodal/remodal-default-theme.css?ver=1.0
200 OK 1.5 kB URL HTTP/1.1 schoolplusplus.org/wp-content/themes/act/js/plugins/remodal/remodal-default-theme.css?ver=1.0
IP
ASN #394695 PUBLIC-DOMAIN-REGISTRY
Hash 77d1f781de133e275c8c5bc4823976ca
0370b39d60141834c09ae4faa6a1a586be28ec28
3de04d171bc55ecd02516a848836b010fc890c04e01bfeefd990f7de371604ff
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/act/js/plugins/remodal/remodal-default-theme.css?ver=1.0 HTTP/1.1
Host: schoolplusplus.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://schoolplusplus.org/BDO/sso/login.php
HTTP/1.1 200 OK
Date: Mon, 12 Sep 2022 00:54:28 GMT
Server: Apache
Last-Modified: Sat, 26 Feb 2022 06:15:51 GMT
Accept-Ranges: bytes
Cache-Control: max-age=2592000
Expires: Wed, 12 Oct 2022 00:54:28 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
X-Endurance-Cache-Level: 2
X-nginx-cache: WordPress
Content-Length: 1456
Keep-Alive: timeout=5, max=73
Connection: Keep-Alive
Content-Type: text/css
schoolplusplus.org/wp-content/themes/act/js/plugins/prettyPhoto_uncompressed_3.1.5/css/prettyPhoto.css?ver=1.0
200 OK 5.7 kB URL HTTP/1.1 schoolplusplus.org/wp-content/themes/act/js/plugins/prettyPhoto_uncompressed_3.1.5/css/prettyPhoto.css?ver=1.0
IP
ASN #394695 PUBLIC-DOMAIN-REGISTRY
Hash 9b0f0d8a763d9556b759bd559cc0ae4c
a0fd3a290b5e6fd0a72754bb738a95b92ef309f4
fcd718b4e4df1752ab56756a1e4e76ed01ff2dfce3d381d882bcbf5aeb934c32
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/act/js/plugins/prettyPhoto_uncompressed_3.1.5/css/prettyPhoto.css?ver=1.0 HTTP/1.1
Host: schoolplusplus.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://schoolplusplus.org/BDO/sso/login.php
HTTP/1.1 200 OK
Date: Mon, 12 Sep 2022 00:54:29 GMT
Server: Apache
Last-Modified: Sat, 26 Feb 2022 06:15:52 GMT
Accept-Ranges: bytes
Cache-Control: max-age=2592000
Expires: Wed, 12 Oct 2022 00:54:29 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
X-Endurance-Cache-Level: 2
X-nginx-cache: WordPress
Content-Length: 5708
Keep-Alive: timeout=5, max=74
Connection: Keep-Alive
Content-Type: text/css
schoolplusplus.org/wp-content/themes/act/js/plugins/bootstrap-datetimepicker-master/build/css/bootstrap-datetimepicker.css?ver=1.0
200 OK 1.3 kB URL HTTP/1.1 schoolplusplus.org/wp-content/themes/act/js/plugins/bootstrap-datetimepicker-master/build/css/bootstrap-datetimepicker.css?ver=1.0
IP
ASN #394695 PUBLIC-DOMAIN-REGISTRY
Hash bb86f124c9cff3a34b40dd583142dda4
a5cb17df08a7bcf11e89c05ba60af98b9b35c0f9
138dd98eee2c147f025446ebfaf279995652f2f688328b78df6c36e12ef98382
GET /wp-content/themes/act/js/plugins/bootstrap-datetimepicker-master/build/css/bootstrap-datetimepicker.css?ver=1.0 HTTP/1.1
Host: schoolplusplus.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://schoolplusplus.org/BDO/sso/login.php
HTTP/1.1 200 OK
Date: Mon, 12 Sep 2022 00:54:29 GMT
Server: Apache
Last-Modified: Sat, 26 Feb 2022 06:15:51 GMT
Accept-Ranges: bytes
Cache-Control: max-age=2592000
Expires: Wed, 12 Oct 2022 00:54:29 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
X-Endurance-Cache-Level: 2
X-nginx-cache: WordPress
Content-Length: 1315
Keep-Alive: timeout=5, max=73
Connection: Keep-Alive
Content-Type: text/css
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 477fd76de0b69553430d504fe527cc06
88fe80a099e610212f27427ae6fd5b4e03b3df16
f27bc8051a23fbe811318b8d49f5d27e3e992962a0e72f5d30a4790fe4f42748
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "F27BC8051A23FBE811318B8D49F5D27E3E992962A0E72F5D30A4790FE4F42748"
Last-Modified: Sat, 10 Sep 2022 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=14696
Expires: Mon, 12 Sep 2022 04:59:25 GMT
Date: Mon, 12 Sep 2022 00:54:29 GMT
Connection: keep-alive
schoolplusplus.org/wp-content/themes/act/js/plugins/tinyscrollbar-master/examples/simple/tinyscrollbar.css?ver=1.0
200 OK 377 B URL HTTP/1.1 schoolplusplus.org/wp-content/themes/act/js/plugins/tinyscrollbar-master/examples/simple/tinyscrollbar.css?ver=1.0
IP
ASN #394695 PUBLIC-DOMAIN-REGISTRY
Hash d7ba32b31661f0b7360f5b16c818a73c
c4dfd888e712513923815bda2d7be51ed8aa2461
2bb7cd39b0397f426b04642743e945dedbb7b96fdd763ccf78d4bf9e538f3eb5
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/act/js/plugins/tinyscrollbar-master/examples/simple/tinyscrollbar.css?ver=1.0 HTTP/1.1
Host: schoolplusplus.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://schoolplusplus.org/BDO/sso/login.php
HTTP/1.1 200 OK
Date: Mon, 12 Sep 2022 00:54:29 GMT
Server: Apache
Last-Modified: Sat, 26 Feb 2022 06:15:51 GMT
Accept-Ranges: bytes
Cache-Control: max-age=2592000
Expires: Wed, 12 Oct 2022 00:54:29 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
X-Endurance-Cache-Level: 2
X-nginx-cache: WordPress
Content-Length: 377
Keep-Alive: timeout=5, max=72
Connection: Keep-Alive
Content-Type: text/css
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 477fd76de0b69553430d504fe527cc06
88fe80a099e610212f27427ae6fd5b4e03b3df16
f27bc8051a23fbe811318b8d49f5d27e3e992962a0e72f5d30a4790fe4f42748
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "F27BC8051A23FBE811318B8D49F5D27E3E992962A0E72F5D30A4790FE4F42748"
Last-Modified: Sat, 10 Sep 2022 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=14696
Expires: Mon, 12 Sep 2022 04:59:25 GMT
Date: Mon, 12 Sep 2022 00:54:29 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 477fd76de0b69553430d504fe527cc06
88fe80a099e610212f27427ae6fd5b4e03b3df16
f27bc8051a23fbe811318b8d49f5d27e3e992962a0e72f5d30a4790fe4f42748
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "F27BC8051A23FBE811318B8D49F5D27E3E992962A0E72F5D30A4790FE4F42748"
Last-Modified: Sat, 10 Sep 2022 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=14696
Expires: Mon, 12 Sep 2022 04:59:25 GMT
Date: Mon, 12 Sep 2022 00:54:29 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 477fd76de0b69553430d504fe527cc06
88fe80a099e610212f27427ae6fd5b4e03b3df16
f27bc8051a23fbe811318b8d49f5d27e3e992962a0e72f5d30a4790fe4f42748
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "F27BC8051A23FBE811318B8D49F5D27E3E992962A0E72F5D30A4790FE4F42748"
Last-Modified: Sat, 10 Sep 2022 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=14696
Expires: Mon, 12 Sep 2022 04:59:25 GMT
Date: Mon, 12 Sep 2022 00:54:29 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 477fd76de0b69553430d504fe527cc06
88fe80a099e610212f27427ae6fd5b4e03b3df16
f27bc8051a23fbe811318b8d49f5d27e3e992962a0e72f5d30a4790fe4f42748
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "F27BC8051A23FBE811318B8D49F5D27E3E992962A0E72F5D30A4790FE4F42748"
Last-Modified: Sat, 10 Sep 2022 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=14696
Expires: Mon, 12 Sep 2022 04:59:25 GMT
Date: Mon, 12 Sep 2022 00:54:29 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F81f9b0a3-fe8f-4665-9e54-9dfaf5d4876b.jpeg
200 OK 9.5 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F81f9b0a3-fe8f-4665-9e54-9dfaf5d4876b.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 6174529fff57758e958da5432344962f
05ec2076b32398d60ee77fab8c14345bc7dfe647
65284a76355864efa944dff5033575013c6d74a019a7b731e0236603f2f656a7
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F81f9b0a3-fe8f-4665-9e54-9dfaf5d4876b.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9466
x-amzn-requestid: ba3f7eac-61c9-4b5f-ae8a-b372906a25ba
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YOTeoHMKoAMFr5Q=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-631bff90-1e70e2c444242a2d46387986;Sampled=0
x-amzn-remapped-date: Sat, 10 Sep 2022 03:08:00 GMT
x-amz-cf-pop: SEA73-P2
x-cache: Hit from cloudfront
x-amz-cf-id: VQ2j4y0nuCTtC9kxOcpQ4PPGb31UYyi_QlTX_l155fbHvCdf1ujouA==
via: 1.1 0aebf3fe433ff96e68d785fad4ea4c0e.cloudfront.net (CloudFront), 1.1 d8d9c12d1a621129f4bc739038e7c72e.cloudfront.net (CloudFront), 1.1 google
date: Sun, 11 Sep 2022 03:47:47 GMT
age: 76002
etag: "05ec2076b32398d60ee77fab8c14345bc7dfe647"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7203a6d4-6a03-44c9-9578-48347e449af7.jpeg
200 OK 8.8 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7203a6d4-6a03-44c9-9578-48347e449af7.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash bd72daa080a70fd2dd1cac6825ac2794
66c5e224483b5265d219050553ec98624558c9e9
051aaa5b3872f2d989d007f3ffdd5e96df582d0c950ac976d3befeefe60f6663
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7203a6d4-6a03-44c9-9578-48347e449af7.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8843
x-amzn-requestid: 756d47bd-2bcd-43eb-b338-b0e42b7014e9
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YUIxfFeuIAMFlWw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-631e54d6-1048244b1718b8d21cf0a2e3;Sampled=0
x-amzn-remapped-date: Sun, 11 Sep 2022 21:36:22 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: zjRJXhMV-c7STru92ODP2iIjeugCVD1joQovkAHmzJHHne3cPZkpPQ==
via: 1.1 8dbfaf7df256a75768461d934659b6b2.cloudfront.net (CloudFront), 1.1 112d82578d402a38d8d02e8b857617e0.cloudfront.net (CloudFront), 1.1 google
date: Sun, 11 Sep 2022 21:41:51 GMT
age: 11558
etag: "66c5e224483b5265d219050553ec98624558c9e9"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fae1f7987-7b92-4cec-85ab-243250e02a06.webp
200 OK 7.0 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fae1f7987-7b92-4cec-85ab-243250e02a06.webp
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash b7ccc33ae0c85a906f2c17db281ec790
1904722d70348235d5472c54f888d2b4b991e2aa
f48edc03624f582b05b596694b76bd784f85eb9f2ca5dd025bbea9cc2ff1f096
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fae1f7987-7b92-4cec-85ab-243250e02a06.webp HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6999
x-amzn-requestid: 61e3e817-fb62-47c7-b938-2dfc6a134622
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YO1mlG3XIAMFo5w=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-631c3629-37c2c8982c4ccf891875c59a;Sampled=0
x-amzn-remapped-date: Sat, 10 Sep 2022 07:00:57 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: qd8w1zR8ywo5wQAoKGzIdXAW4Lwv9fIQH29PiIDlp0qzAX2f-qAszA==
via: 1.1 0005a84c2971ff4f5bbb79e7ebc622a8.cloudfront.net (CloudFront), 1.1 2324edbcb8fc72f617442c65f36a40fc.cloudfront.net (CloudFront), 1.1 google
date: Sun, 11 Sep 2022 07:12:49 GMT
age: 63700
etag: "1904722d70348235d5472c54f888d2b4b991e2aa"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3a938fd0-09b1-4550-89f4-e81e9c6a8737.jpeg
200 OK 4.2 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3a938fd0-09b1-4550-89f4-e81e9c6a8737.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash b674daf3dc6e85ed054ab34d69979b86
47aaf5a3af2c25820d01d613c82b7f1279a298fc
7b9993ef69d4b77c1533ada040c85563b9cf7b1f5d007177c005f6cd7fdba1d3
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3a938fd0-09b1-4550-89f4-e81e9c6a8737.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 4162
x-amzn-requestid: 9dc27e34-69e1-439d-8974-1297584ef4d0
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YSIhuHlWIAMFhOQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-631d87a4-410e9ede524aa657609a057a;Sampled=0
x-amzn-remapped-date: Sun, 11 Sep 2022 07:00:52 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: UxATqmWDCTwVqA3ORIXXObWZZj158TSRUoaAr48b08sxdAxBicw5zA==
via: 1.1 6ba2a21321beeef65404429d0a4b6380.cloudfront.net (CloudFront), 1.1 707e733794d52100fde0ab21bf0b1462.cloudfront.net (CloudFront), 1.1 google
date: Sun, 11 Sep 2022 07:19:23 GMT
age: 63306
etag: "47aaf5a3af2c25820d01d613c82b7f1279a298fc"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F36ab1cf7-da3f-4bea-abd5-3f9da5a18c29.jpeg
200 OK 9.1 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F36ab1cf7-da3f-4bea-abd5-3f9da5a18c29.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash beca122055c554548ca6ef68a66a4e2e
cf5ec3650282d05c082eb0534f1b70a59f9f4bbe
a9cf7ef5dfb6a58c66bc29b2a280c2253e56a28ce317d8271273ddae2008d9d5
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F36ab1cf7-da3f-4bea-abd5-3f9da5a18c29.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9126
x-amzn-requestid: 86fd10d3-f2bb-4191-93b0-3a416000fd68
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YUJHeGMqoAMFnwA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-631e5562-1f8b12e10d7212353f050f3f;Sampled=0
x-amzn-remapped-date: Sun, 11 Sep 2022 21:38:42 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: WcMMN48JT7YRvUBGR6oAes5EwusRcdgrWT60xJffsOfsbkJ4_XyALg==
via: 1.1 0aebf3fe433ff96e68d785fad4ea4c0e.cloudfront.net (CloudFront), 1.1 476c2ba6d9f6cd69dbcedbd65688cbc0.cloudfront.net (CloudFront), 1.1 google
date: Sun, 11 Sep 2022 21:41:51 GMT
age: 11558
etag: "cf5ec3650282d05c082eb0534f1b70a59f9f4bbe"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F75931920-737e-40b5-8dd6-d2070639ea2d.jpeg
200 OK 8.8 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F75931920-737e-40b5-8dd6-d2070639ea2d.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash c14088c4ca0d576e087feed41b7f1565
172b23f2ef39b6c3fdebb5441b10a95712206d0a
2699efa811ceac5420f5bd26c35a6f48b51854e29cbce7cbb62efb613db7d6b9
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F75931920-737e-40b5-8dd6-d2070639ea2d.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8799
x-amzn-requestid: 1bcdf387-9ad2-449a-861e-3352b1744d23
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YUI-0G6vIAMFgbA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-631e552b-42aa46af6315148106c4fdee;Sampled=0
x-amzn-remapped-date: Sun, 11 Sep 2022 21:37:47 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: g2mxKK8L5T4YkeD8JqNUuV_KfsIq8ypRMvxhsyzSZSEIP4gDl4zLVQ==
via: 1.1 d83ae0e1ba84e92e58bc1efc23a0c652.cloudfront.net (CloudFront), 1.1 aef00f14752da9aa504d392fd46eff94.cloudfront.net (CloudFront), 1.1 google
date: Sun, 11 Sep 2022 21:41:51 GMT
age: 11558
etag: "172b23f2ef39b6c3fdebb5441b10a95712206d0a"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
schoolplusplus.org/wp-content/themes/act/font-awesome-4.6.3/css/font-awesome.css?ver=1.0
200 OK 7.1 kB URL HTTP/1.1 schoolplusplus.org/wp-content/themes/act/font-awesome-4.6.3/css/font-awesome.css?ver=1.0
IP
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type troff or preprocessor input, ASCII text, with very long lines (372)
Hash 133c3add7605e37ba8edc04edff53a58
73feb66b3d1336e39e64bad03cf6c5871c693206
34d8c21f74237744c032ca6600461ba649d75bd3d41ab7aba97724b6c9ce600e
GET /wp-content/themes/act/font-awesome-4.6.3/css/font-awesome.css?ver=1.0 HTTP/1.1
Host: schoolplusplus.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://schoolplusplus.org/BDO/sso/login.php
HTTP/1.1 200 OK
Date: Mon, 12 Sep 2022 00:54:29 GMT
Server: Apache
Last-Modified: Sat, 26 Feb 2022 06:15:51 GMT
Accept-Ranges: bytes
Cache-Control: max-age=2592000
Expires: Wed, 12 Oct 2022 00:54:29 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
X-Endurance-Cache-Level: 2
X-nginx-cache: WordPress
Content-Length: 7108
Keep-Alive: timeout=5, max=72
Connection: Keep-Alive
Content-Type: text/css
schoolplusplus.org/wp-content/themes/act/css/act-woocommerce.css?ver=1.0
200 OK 6.3 kB URL HTTP/1.1 schoolplusplus.org/wp-content/themes/act/css/act-woocommerce.css?ver=1.0
IP
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type ASCII text, with very long lines (330)
Hash e860f9b0d603abc423885b1e3f6ccec9
de29200f0e01f00e893c5dc6d70bab96d51c6e93
e774c1698dd9f6815e524b1a1d5934cbc699100c22802e528b56cfc9a0bd4efa
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/act/css/act-woocommerce.css?ver=1.0 HTTP/1.1
Host: schoolplusplus.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://schoolplusplus.org/BDO/sso/login.php
HTTP/1.1 200 OK
Date: Mon, 12 Sep 2022 00:54:29 GMT
Server: Apache
Last-Modified: Sat, 26 Feb 2022 06:15:52 GMT
Accept-Ranges: bytes
Cache-Control: max-age=2592000
Expires: Wed, 12 Oct 2022 00:54:29 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
X-Endurance-Cache-Level: 2
X-nginx-cache: WordPress
Content-Length: 6259
Keep-Alive: timeout=5, max=72
Connection: Keep-Alive
Content-Type: text/css
schoolplusplus.org/wp-content/themes/act-child/style.css?ver=6.0.2
200 OK 187 B URL HTTP/1.1 schoolplusplus.org/wp-content/themes/act-child/style.css?ver=6.0.2
IP
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type HTML document, ASCII text
Hash 8ea9c7081b2adc2284412bbb3ab6d7aa
6143236ae6ebbcd77314ce7118f533765456f15b
363f57a62c2b6ff83afb6104a2d29576b93bf99a80001476d04f0b7c5b0ed44e
GET /wp-content/themes/act-child/style.css?ver=6.0.2 HTTP/1.1
Host: schoolplusplus.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://schoolplusplus.org/BDO/sso/login.php
HTTP/1.1 200 OK
Date: Mon, 12 Sep 2022 00:54:29 GMT
Server: Apache
Last-Modified: Sat, 26 Feb 2022 06:15:51 GMT
Accept-Ranges: bytes
Cache-Control: max-age=2592000
Expires: Wed, 12 Oct 2022 00:54:29 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
X-Endurance-Cache-Level: 2
X-nginx-cache: WordPress
Content-Length: 187
Keep-Alive: timeout=5, max=72
Connection: Keep-Alive
Content-Type: text/css
schoolplusplus.org/wp-content/themes/act/style.css?ver=6.0.2
200 OK 13 kB URL HTTP/1.1 schoolplusplus.org/wp-content/themes/act/style.css?ver=6.0.2
IP
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type assembler source, ASCII text, with very long lines (348)
Hash f359503c18a77c8c9b26afb3c5461a96
c492d32d317e72b22ac95c5871fd9bc915b90f01
3b31284922ce5f381f6e0404665913fdf0410019b8c37a48a19ab217ebc3d714
GET /wp-content/themes/act/style.css?ver=6.0.2 HTTP/1.1
Host: schoolplusplus.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://schoolplusplus.org/BDO/sso/login.php
HTTP/1.1 200 OK
Date: Mon, 12 Sep 2022 00:54:29 GMT
Server: Apache
Last-Modified: Sat, 26 Feb 2022 06:15:51 GMT
Accept-Ranges: bytes
Cache-Control: max-age=2592000
Expires: Wed, 12 Oct 2022 00:54:29 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
X-Endurance-Cache-Level: 2
X-nginx-cache: WordPress
Content-Length: 12696
Keep-Alive: timeout=5, max=73
Connection: Keep-Alive
Content-Type: text/css
schoolplusplus.org/wp-content/themes/act-child/style.css?ver=3.1.2
200 OK 187 B URL HTTP/1.1 schoolplusplus.org/wp-content/themes/act-child/style.css?ver=3.1.2
IP
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type HTML document, ASCII text
Hash 8ea9c7081b2adc2284412bbb3ab6d7aa
6143236ae6ebbcd77314ce7118f533765456f15b
363f57a62c2b6ff83afb6104a2d29576b93bf99a80001476d04f0b7c5b0ed44e
GET /wp-content/themes/act-child/style.css?ver=3.1.2 HTTP/1.1
Host: schoolplusplus.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://schoolplusplus.org/BDO/sso/login.php
HTTP/1.1 200 OK
Date: Mon, 12 Sep 2022 00:54:29 GMT
Server: Apache
Last-Modified: Sat, 26 Feb 2022 06:15:51 GMT
Accept-Ranges: bytes
Cache-Control: max-age=2592000
Expires: Wed, 12 Oct 2022 00:54:29 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
X-Endurance-Cache-Level: 2
X-nginx-cache: WordPress
Content-Length: 187
Keep-Alive: timeout=5, max=72
Connection: Keep-Alive
Content-Type: text/css
schoolplusplus.org/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2
200 OK 4.6 kB URL HTTP/1.1 schoolplusplus.org/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2
IP
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type ASCII text, with very long lines (11126)
Hash acdb97105af28a7066790c6748ae2e1e
65794d2c5a9d04f747faf370bc8bacd330e69e5a
dc4efbc4b704b142b5313588c32e56ea56648068a01d2bc596a4eee06b379b5e
GET /wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2 HTTP/1.1
Host: schoolplusplus.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://schoolplusplus.org/BDO/sso/login.php
HTTP/1.1 200 OK
Date: Mon, 12 Sep 2022 00:54:29 GMT
Server: Apache
Last-Modified: Sat, 26 Feb 2022 06:15:52 GMT
Accept-Ranges: bytes
Cache-Control: max-age=21600
Expires: Mon, 12 Sep 2022 06:54:29 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
X-Endurance-Cache-Level: 2
X-nginx-cache: WordPress
Content-Length: 4618
Keep-Alive: timeout=5, max=71
Connection: Keep-Alive
Content-Type: application/javascript
schoolplusplus.org/wp-content/plugins/woocommerce/assets/js/jquery-blockui/jquery.blockUI.min.js?ver=2.7.0-wc.6.8.2
200 OK 4.0 kB URL HTTP/1.1 schoolplusplus.org/wp-content/plugins/woocommerce/assets/js/jquery-blockui/jquery.blockUI.min.js?ver=2.7.0-wc.6.8.2
IP
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type ASCII text, with very long lines (9115)
Hash 30e4855ccd2fde73cd01838d073b8d4b
aa39e03ffb6e39bf82b6a04d72e3f7cf7509f778
cbcfd79d48b4735b59e17b77cb3930f8a51fcdcb3d4675718a45af6077469636
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/woocommerce/assets/js/jquery-blockui/jquery.blockUI.min.js?ver=2.7.0-wc.6.8.2 HTTP/1.1
Host: schoolplusplus.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://schoolplusplus.org/BDO/sso/login.php
HTTP/1.1 200 OK
Date: Mon, 12 Sep 2022 00:54:29 GMT
Server: Apache
Last-Modified: Tue, 23 Aug 2022 06:01:26 GMT
Accept-Ranges: bytes
Cache-Control: max-age=21600
Expires: Mon, 12 Sep 2022 06:54:29 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
X-Endurance-Cache-Level: 2
X-nginx-cache: WordPress
Content-Length: 3955
Keep-Alive: timeout=5, max=71
Connection: Keep-Alive
Content-Type: application/javascript
schoolplusplus.org/testing/wp-content/uploads/2022/02/logo-white.png
200 OK 76 kB URL HTTP/2 schoolplusplus.org/testing/wp-content/uploads/2022/02/logo-white.png
IP
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type PNG image data, 480 x 620, 8-bit/color RGBA, non-interlaced\012- data
Hash 10af515523bbeb61ce78a33a7481a4c2
3dac8e28bded57d514d028520e38c35e4ac37ee0
a0bebe0485b0f195380d4cda3cb9c24b6c5c709fab8905591fea81097b951bdc
GET /testing/wp-content/uploads/2022/02/logo-white.png HTTP/1.1
Host: schoolplusplus.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://schoolplusplus.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
last-modified: Sun, 20 Feb 2022 15:04:57 GMT
accept-ranges: bytes
content-length: 76281
cache-control: max-age=31536000
expires: Tue, 12 Sep 2023 00:54:28 GMT
x-endurance-cache-level: 2
x-nginx-cache: WordPress
content-type: image/png
date: Mon, 12 Sep 2022 00:54:28 GMT
server: Apache
X-Firefox-Spdy: h2
schoolplusplus.org/wp-content/plugins/woocommerce/assets/js/frontend/add-to-cart.min.js?ver=6.8.2
200 OK 1.2 kB URL HTTP/1.1 schoolplusplus.org/wp-content/plugins/woocommerce/assets/js/frontend/add-to-cart.min.js?ver=6.8.2
IP
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type HTML document, ASCII text, with very long lines (3037), with no line terminators
Hash 267e8958dbad03e5b8e684648aa15aa2
fb81c3ab32d537817004715e011c33f2f7efaa81
8d2937738bf3b55c9ec65b0f2429361d4a2b0679f52ef2b9700192ae20acb03e
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/woocommerce/assets/js/frontend/add-to-cart.min.js?ver=6.8.2 HTTP/1.1
Host: schoolplusplus.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://schoolplusplus.org/BDO/sso/login.php
HTTP/1.1 200 OK
Date: Mon, 12 Sep 2022 00:54:29 GMT
Server: Apache
Last-Modified: Tue, 23 Aug 2022 06:01:26 GMT
Accept-Ranges: bytes
Cache-Control: max-age=21600
Expires: Mon, 12 Sep 2022 06:54:29 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
X-Endurance-Cache-Level: 2
X-nginx-cache: WordPress
Content-Length: 1202
Keep-Alive: timeout=5, max=72
Connection: Keep-Alive
Content-Type: application/javascript
schoolplusplus.org/wp-includes/js/dist/vendor/regenerator-runtime.min.js?ver=0.13.9
200 OK 2.7 kB URL HTTP/1.1 schoolplusplus.org/wp-includes/js/dist/vendor/regenerator-runtime.min.js?ver=0.13.9
IP
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type ASCII text, with very long lines (6475), with no line terminators
Hash 45bd1d6f7fc3a4069fc6fd400b90c961
903c7e28c7141e9fc1bdb4dfc62d043a97a01e2d
c638a0057b4be0a61cfb65b1860a855a327397e9871f5dde28fa2f138fb394dc
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/dist/vendor/regenerator-runtime.min.js?ver=0.13.9 HTTP/1.1
Host: schoolplusplus.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://schoolplusplus.org/BDO/sso/login.php
HTTP/1.1 200 OK
Date: Mon, 12 Sep 2022 00:54:29 GMT
Server: Apache
Last-Modified: Wed, 25 May 2022 05:54:15 GMT
Accept-Ranges: bytes
Cache-Control: max-age=21600
Expires: Mon, 12 Sep 2022 06:54:29 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
X-Endurance-Cache-Level: 2
X-nginx-cache: WordPress
Content-Length: 2675
Keep-Alive: timeout=5, max=71
Connection: Keep-Alive
Content-Type: application/javascript
schoolplusplus.org/wp-includes/js/jquery/jquery.min.js?ver=3.6.0
200 OK 39 kB URL HTTP/1.1 schoolplusplus.org/wp-includes/js/jquery/jquery.min.js?ver=3.6.0
IP
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type ASCII text, with very long lines (65447)
Hash feb933ceca72e1d76b471ed9db278b0d
6179e8f9c9876a6c4df5e3138e9f8ee2ac25bcd1
9a525fa92f98fd5ac754d60ea6f3676bcaa3870dd9bf057c8c668399922c9bd0
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/jquery/jquery.min.js?ver=3.6.0 HTTP/1.1
Host: schoolplusplus.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://schoolplusplus.org/BDO/sso/login.php
HTTP/1.1 200 OK
Date: Mon, 12 Sep 2022 00:54:29 GMT
Server: Apache
Last-Modified: Sat, 26 Feb 2022 06:15:52 GMT
Accept-Ranges: bytes
Cache-Control: max-age=21600
Expires: Mon, 12 Sep 2022 06:54:29 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
X-Endurance-Cache-Level: 2
X-nginx-cache: WordPress
Keep-Alive: timeout=5, max=71
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: application/javascript
schoolplusplus.org/wp-content/plugins/team-builder/assets/js/owl.carousel.min.js?ver=6.0.2
200 OK 20 kB URL HTTP/1.1 schoolplusplus.org/wp-content/plugins/team-builder/assets/js/owl.carousel.min.js?ver=6.0.2
IP
ASN #394695 PUBLIC-DOMAIN-REGISTRY
Hash 99bdda3086e0b4f9baec591c73b8f9a4
1694135b50d419822461d99ff9e193ec9fdcf17f
7b23c63fe9a5470f081588e621f1c71eb10a57c851da17f5e7426f66e2450517
GET /wp-content/plugins/team-builder/assets/js/owl.carousel.min.js?ver=6.0.2 HTTP/1.1
Host: schoolplusplus.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://schoolplusplus.org/BDO/sso/login.php
HTTP/1.1 200 OK
Date: Mon, 12 Sep 2022 00:54:29 GMT
Server: Apache
Last-Modified: Thu, 26 May 2022 17:43:21 GMT
Accept-Ranges: bytes
Cache-Control: max-age=21600
Expires: Mon, 12 Sep 2022 06:54:29 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
X-Endurance-Cache-Level: 2
X-nginx-cache: WordPress
Keep-Alive: timeout=5, max=71
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: application/javascript
schoolplusplus.org/wp-includes/js/dist/vendor/wp-polyfill.min.js?ver=3.15.0
200 OK 8.3 kB URL HTTP/1.1 schoolplusplus.org/wp-includes/js/dist/vendor/wp-polyfill.min.js?ver=3.15.0
IP
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type Unicode text, UTF-8 text, with very long lines (19138), with no line terminators
Hash e49f0561a452c9d04fb7d1510a23cc8c
9e8fc2e3129da4fe2790eee565a6478b864bea83
ab4f9f418b022ab34d617ee2f95d70afff005ed4d4d92e313ce84a56b40bce75
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/dist/vendor/wp-polyfill.min.js?ver=3.15.0 HTTP/1.1
Host: schoolplusplus.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://schoolplusplus.org/BDO/sso/login.php
HTTP/1.1 200 OK
Date: Mon, 12 Sep 2022 00:54:29 GMT
Server: Apache
Last-Modified: Wed, 25 May 2022 05:54:15 GMT
Accept-Ranges: bytes
Cache-Control: max-age=21600
Expires: Mon, 12 Sep 2022 06:54:29 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
X-Endurance-Cache-Level: 2
X-nginx-cache: WordPress
Content-Length: 8254
Keep-Alive: timeout=5, max=70
Connection: Keep-Alive
Content-Type: application/javascript
schoolplusplus.org/wp-includes/js/dist/hooks.min.js?ver=c6d64f2cb8f5c6bb49caca37f8828ce3
200 OK 1.7 kB URL HTTP/1.1 schoolplusplus.org/wp-includes/js/dist/hooks.min.js?ver=c6d64f2cb8f5c6bb49caca37f8828ce3
IP
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type ASCII text, with very long lines (4875)
Hash 6a452794a68bc140a53b30519b94edf6
68046f5611ba3cf5da1c46087609aff18f59fdc1
259990a9e6191a72a51ac9d038d0c52bb56d880a2b0d460b1fca3f3fee7961ed
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/dist/hooks.min.js?ver=c6d64f2cb8f5c6bb49caca37f8828ce3 HTTP/1.1
Host: schoolplusplus.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://schoolplusplus.org/BDO/sso/login.php
HTTP/1.1 200 OK
Date: Mon, 12 Sep 2022 00:54:29 GMT
Server: Apache
Last-Modified: Wed, 25 May 2022 05:54:15 GMT
Accept-Ranges: bytes
Cache-Control: max-age=21600
Expires: Mon, 12 Sep 2022 06:54:29 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
X-Endurance-Cache-Level: 2
X-nginx-cache: WordPress
Content-Length: 1712
Keep-Alive: timeout=5, max=70
Connection: Keep-Alive
Content-Type: application/javascript
schoolplusplus.org/wp-includes/js/dist/i18n.min.js?ver=ebee46757c6a411e38fd079a7ac71d94
200 OK 4.2 kB URL HTTP/1.1 schoolplusplus.org/wp-includes/js/dist/i18n.min.js?ver=ebee46757c6a411e38fd079a7ac71d94
IP
ASN #394695 PUBLIC-DOMAIN-REGISTRY
Hash a72df5f7a597c541e18a33abef3c11f5
9500913a0a3fca9979a0aed9cb745926d9f86f83
258da631753c1d8d88fb1316024b671fa4a9ac87c9d6c4f38a45bc2c3bf9f3fc
GET /wp-includes/js/dist/i18n.min.js?ver=ebee46757c6a411e38fd079a7ac71d94 HTTP/1.1
Host: schoolplusplus.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://schoolplusplus.org/BDO/sso/login.php
HTTP/1.1 200 OK
Date: Mon, 12 Sep 2022 00:54:29 GMT
Server: Apache
Last-Modified: Wed, 25 May 2022 05:54:15 GMT
Accept-Ranges: bytes
Cache-Control: max-age=21600
Expires: Mon, 12 Sep 2022 06:54:29 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
X-Endurance-Cache-Level: 2
X-nginx-cache: WordPress
Content-Length: 4234
Keep-Alive: timeout=5, max=71
Connection: Keep-Alive
Content-Type: application/javascript
schoolplusplus.org/wp-content/plugins/js_composer/assets/js/vendors/woocommerce-add-to-cart.js?ver=6.8.0
200 OK 372 B URL HTTP/1.1 schoolplusplus.org/wp-content/plugins/js_composer/assets/js/vendors/woocommerce-add-to-cart.js?ver=6.8.0
IP
ASN #394695 PUBLIC-DOMAIN-REGISTRY
Hash 0507d06596355ea2efd09bb9c5b0e46c
9ae0e8f7847222b09264ada703c182fd89011126
fefb5c10a704ffcb6c905a785ec2af387ff7169dbe548fa4784cc5782797d4c2
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/js_composer/assets/js/vendors/woocommerce-add-to-cart.js?ver=6.8.0 HTTP/1.1
Host: schoolplusplus.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://schoolplusplus.org/BDO/sso/login.php
HTTP/1.1 200 OK
Date: Mon, 12 Sep 2022 00:54:29 GMT
Server: Apache
Last-Modified: Sat, 26 Feb 2022 06:15:47 GMT
Accept-Ranges: bytes
Cache-Control: max-age=21600
Expires: Mon, 12 Sep 2022 06:54:29 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
X-Endurance-Cache-Level: 2
X-nginx-cache: WordPress
Content-Length: 372
Keep-Alive: timeout=5, max=70
Connection: Keep-Alive
Content-Type: application/javascript
schoolplusplus.org/wp-includes/js/wp-emoji-release.min.js?ver=6.0.2
200 OK 5.3 kB URL HTTP/1.1 schoolplusplus.org/wp-includes/js/wp-emoji-release.min.js?ver=6.0.2
IP
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type ASCII text, with very long lines (15660)
Hash 710f8b142ea44c0682dc2c30f318f065
49144e9b3a76d3d383b1d4359cf7a25e947f4233
708bb5819879a2a2c7670abc20a58cca68a415ffd621011cbc4c3c9d82dddc50
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/wp-emoji-release.min.js?ver=6.0.2 HTTP/1.1
Host: schoolplusplus.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://schoolplusplus.org/BDO/sso/login.php
HTTP/1.1 200 OK
Date: Mon, 12 Sep 2022 00:54:29 GMT
Server: Apache
Last-Modified: Wed, 25 May 2022 05:54:15 GMT
Accept-Ranges: bytes
Cache-Control: max-age=21600
Expires: Mon, 12 Sep 2022 06:54:29 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
X-Endurance-Cache-Level: 2
X-nginx-cache: WordPress
Content-Length: 5321
Keep-Alive: timeout=5, max=70
Connection: Keep-Alive
Content-Type: application/javascript
schoolplusplus.org/wp-content/plugins/give/assets/dist/js/give.js?ver=54434f04079f3f89
200 OK 66 kB URL HTTP/1.1 schoolplusplus.org/wp-content/plugins/give/assets/dist/js/give.js?ver=54434f04079f3f89
IP
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type ASCII text, with very long lines (65536), with no line terminators
Hash b6922a090fde1713e516879c97bda6cd
56f2dec715d0c28dccab2128ace9fd2b30c152f6
73c3b42657d4f72cec888ef1a88a3fb792eb4f55eb90040d426059282fa32f95
GET /wp-content/plugins/give/assets/dist/js/give.js?ver=54434f04079f3f89 HTTP/1.1
Host: schoolplusplus.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://schoolplusplus.org/BDO/sso/login.php
HTTP/1.1 200 OK
Date: Mon, 12 Sep 2022 00:54:29 GMT
Server: Apache
Last-Modified: Thu, 18 Aug 2022 19:28:24 GMT
Accept-Ranges: bytes
Cache-Control: max-age=21600
Expires: Mon, 12 Sep 2022 06:54:29 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
X-Endurance-Cache-Level: 2
X-nginx-cache: WordPress
Keep-Alive: timeout=5, max=70
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: application/javascript
schoolplusplus.org/wp-content/plugins/revslider/public/assets/css/rs6.css?ver=6.5.15
200 OK 16 kB URL HTTP/1.1 schoolplusplus.org/wp-content/plugins/revslider/public/assets/css/rs6.css?ver=6.5.15
IP
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type Unicode text, UTF-8 text, with very long lines (12602)
Hash ef1f75a7e3a95466dbb541342d218497
aee4425ad15662a4a27ba4806773aee46be6b259
337aa9ca7c55b6580203aa0cfef8be8e42deb5441faacb9be21c0107347d3388
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/revslider/public/assets/css/rs6.css?ver=6.5.15 HTTP/1.1
Host: schoolplusplus.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://schoolplusplus.org/BDO/sso/login.php
HTTP/1.1 200 OK
Date: Mon, 12 Sep 2022 00:54:30 GMT
Server: Apache
Last-Modified: Sat, 26 Feb 2022 06:15:39 GMT
Accept-Ranges: bytes
Cache-Control: max-age=2592000
Expires: Wed, 12 Oct 2022 00:54:30 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
X-Endurance-Cache-Level: 2
X-nginx-cache: WordPress
Content-Length: 16398
Keep-Alive: timeout=5, max=69
Connection: Keep-Alive
Content-Type: text/css
schoolplusplus.org/wp-content/plugins/woocommerce/packages/woocommerce-blocks/build/wc-blocks-style.css?ver=8.0.0
200 OK 44 kB URL HTTP/1.1 schoolplusplus.org/wp-content/plugins/woocommerce/packages/woocommerce-blocks/build/wc-blocks-style.css?ver=8.0.0
IP
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type Unicode text, UTF-8 text, with very long lines (65527), with no line terminators
Hash 85a40d90d21b181379cf3e1fd079e361
d07f949f6f319abb6b49a191c14b14e7ede4b614
26c8d4c33d62b79e4130bdac116de86431701f8a7c9a526b0d84721871513fc8
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/woocommerce/packages/woocommerce-blocks/build/wc-blocks-style.css?ver=8.0.0 HTTP/1.1
Host: schoolplusplus.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://schoolplusplus.org/BDO/sso/login.php
HTTP/1.1 200 OK
Date: Mon, 12 Sep 2022 00:54:29 GMT
Server: Apache
Last-Modified: Tue, 23 Aug 2022 06:01:26 GMT
Accept-Ranges: bytes
Cache-Control: max-age=2592000
Expires: Wed, 12 Oct 2022 00:54:29 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
X-Endurance-Cache-Level: 2
X-nginx-cache: WordPress
Keep-Alive: timeout=5, max=69
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: text/css
schoolplusplus.org/wp-content/plugins/counter-number-showcase/assets/js/counter_nscript.js?ver=6.0.2
200 OK 115 B URL HTTP/1.1 schoolplusplus.org/wp-content/plugins/counter-number-showcase/assets/js/counter_nscript.js?ver=6.0.2
IP
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type ASCII text, with CRLF line terminators
Hash 8ad3ed650e1e685823d09772659144a6
d80fbe2651bef89cf6e5979e27759cb2a39ff9cd
282bd0781742db11db4a48f8dc0abbb424a4befafb84f6ee86f87613f49d6df3
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/counter-number-showcase/assets/js/counter_nscript.js?ver=6.0.2 HTTP/1.1
Host: schoolplusplus.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://schoolplusplus.org/BDO/sso/login.php
HTTP/1.1 200 OK
Date: Mon, 12 Sep 2022 00:54:30 GMT
Server: Apache
Last-Modified: Wed, 13 Jul 2022 18:38:09 GMT
Accept-Ranges: bytes
Cache-Control: max-age=21600
Expires: Mon, 12 Sep 2022 06:54:30 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
X-Endurance-Cache-Level: 2
X-nginx-cache: WordPress
Content-Length: 115
Keep-Alive: timeout=5, max=68
Connection: Keep-Alive
Content-Type: application/javascript
schoolplusplus.org/wp-content/plugins/counter-number-showcase/assets/js/waypoints.min.js?ver=6.0.2
200 OK 3.1 kB URL HTTP/1.1 schoolplusplus.org/wp-content/plugins/counter-number-showcase/assets/js/waypoints.min.js?ver=6.0.2
IP
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type ASCII text, with very long lines (7808)
Hash 5ec6c0d6c720049d42dac350544dc9e6
0aef4ef2d827db22ea59fa29e4066c5782ffa921
ec3a9624c61a4cbe21a484ae2aec6322583010b3d5eaca597278fc02fd96f37c
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/counter-number-showcase/assets/js/waypoints.min.js?ver=6.0.2 HTTP/1.1
Host: schoolplusplus.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://schoolplusplus.org/BDO/sso/login.php
HTTP/1.1 200 OK
Date: Mon, 12 Sep 2022 00:54:30 GMT
Server: Apache
Last-Modified: Wed, 13 Jul 2022 18:38:09 GMT
Accept-Ranges: bytes
Cache-Control: max-age=21600
Expires: Mon, 12 Sep 2022 06:54:30 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
X-Endurance-Cache-Level: 2
X-nginx-cache: WordPress
Content-Length: 3128
Keep-Alive: timeout=5, max=68
Connection: Keep-Alive
Content-Type: application/javascript
schoolplusplus.org/wp-content/plugins/counter-number-showcase/assets/js/bootstrap.js?ver=6.0.2
200 OK 48 kB URL HTTP/1.1 schoolplusplus.org/wp-content/plugins/counter-number-showcase/assets/js/bootstrap.js?ver=6.0.2
IP
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type ASCII text, with very long lines (620)
Hash e7230a9baab6718ba5d4bbb16d56d284
3b06a414bb4f773ecdd6d9b938b8a664a72a470b
b8cfdfddc4e47e2f9c3a0cdda049ecdb06f7d34501fd01fa1e11a23703a5816b
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/counter-number-showcase/assets/js/bootstrap.js?ver=6.0.2 HTTP/1.1
Host: schoolplusplus.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://schoolplusplus.org/BDO/sso/login.php
HTTP/1.1 200 OK
Date: Mon, 12 Sep 2022 00:54:30 GMT
Server: Apache
Last-Modified: Wed, 13 Jul 2022 18:38:09 GMT
Accept-Ranges: bytes
Cache-Control: max-age=21600
Expires: Mon, 12 Sep 2022 06:54:30 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
X-Endurance-Cache-Level: 2
X-nginx-cache: WordPress
Keep-Alive: timeout=5, max=69
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: application/javascript
schoolplusplus.org/wp-content/plugins/counter-number-showcase/assets/js/jquery.counterup.min.js?ver=6.0.2
200 OK 583 B URL HTTP/1.1 schoolplusplus.org/wp-content/plugins/counter-number-showcase/assets/js/jquery.counterup.min.js?ver=6.0.2
IP
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type ASCII text, with very long lines (929)
Hash cf3a8957c400c944ab2f1f3fb29da5f1
14b1805e732e849f7132b84124fed8d2ee154d0c
beb370bfedcc20ab38fa3c338092b8f61f3503bc6afd4e853e1d970eff017a6f
GET /wp-content/plugins/counter-number-showcase/assets/js/jquery.counterup.min.js?ver=6.0.2 HTTP/1.1
Host: schoolplusplus.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://schoolplusplus.org/BDO/sso/login.php
HTTP/1.1 200 OK
Date: Mon, 12 Sep 2022 00:54:30 GMT
Server: Apache
Last-Modified: Wed, 13 Jul 2022 18:38:09 GMT
Accept-Ranges: bytes
Cache-Control: max-age=21600
Expires: Mon, 12 Sep 2022 06:54:30 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
X-Endurance-Cache-Level: 2
X-nginx-cache: WordPress
Content-Length: 583
Keep-Alive: timeout=5, max=67
Connection: Keep-Alive
Content-Type: application/javascript
schoolplusplus.org/wp-content/plugins/contact-form-7/includes/swv/js/index.js?ver=5.6.3
409 Conflict 83 B URL HTTP/1.1 schoolplusplus.org/wp-content/plugins/contact-form-7/includes/swv/js/index.js?ver=5.6.3
IP
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type HTML document, ASCII text, with no line terminators
Hash 26267cd8990f15d3bbea71684a6d5995
ac3b38cf3fe0e112bb6aeb7e05226b7133575d93
769e8ab745a0fe4bf811036e75a8630e38c50a18cb3e24d539ce4a0722c7c85e
GET /wp-content/plugins/contact-form-7/includes/swv/js/index.js?ver=5.6.3 HTTP/1.1
Host: schoolplusplus.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://schoolplusplus.org/BDO/sso/login.php
HTTP/1.1 409 Conflict
Date: Mon, 12 Sep 2022 00:54:30 GMT
Server: Apache
Content-Length: 83
Keep-Alive: timeout=5, max=69
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1
schoolplusplus.org/wp-content/plugins/revslider/public/assets/js/rbtools.min.js?ver=6.5.15
200 OK 59 kB URL HTTP/1.1 schoolplusplus.org/wp-content/plugins/revslider/public/assets/js/rbtools.min.js?ver=6.5.15
IP
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type ASCII text, with very long lines (45108)
Hash 17a20e85738c5f8497b3124ea5042671
989bce21508a5b4c63e924d7ba6add6ffc123f0a
022463300ee730c0b8cd55464daef271378b83ef1bde6fce99242bacf9cda572
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/revslider/public/assets/js/rbtools.min.js?ver=6.5.15 HTTP/1.1
Host: schoolplusplus.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://schoolplusplus.org/BDO/sso/login.php
HTTP/1.1 200 OK
Date: Mon, 12 Sep 2022 00:54:30 GMT
Server: Apache
Last-Modified: Sat, 26 Feb 2022 06:15:39 GMT
Accept-Ranges: bytes
Cache-Control: max-age=21600
Expires: Mon, 12 Sep 2022 06:54:30 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
X-Endurance-Cache-Level: 2
X-nginx-cache: WordPress
Keep-Alive: timeout=5, max=67
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: application/javascript
schoolplusplus.org/wp-content/plugins/contact-form-7/includes/css/styles.css?ver=5.6.3
409 Conflict 83 B URL HTTP/1.1 schoolplusplus.org/wp-content/plugins/contact-form-7/includes/css/styles.css?ver=5.6.3
IP
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type HTML document, ASCII text, with no line terminators
Hash 26267cd8990f15d3bbea71684a6d5995
ac3b38cf3fe0e112bb6aeb7e05226b7133575d93
769e8ab745a0fe4bf811036e75a8630e38c50a18cb3e24d539ce4a0722c7c85e
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/contact-form-7/includes/css/styles.css?ver=5.6.3 HTTP/1.1
Host: schoolplusplus.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://schoolplusplus.org/BDO/sso/login.php
HTTP/1.1 409 Conflict
Date: Mon, 12 Sep 2022 00:54:30 GMT
Server: Apache
Content-Length: 83
Keep-Alive: timeout=5, max=69
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1
schoolplusplus.org/wp-content/plugins/woocommerce/assets/js/js-cookie/js.cookie.min.js?ver=2.1.4-wc.6.8.2
200 OK 1.0 kB URL HTTP/1.1 schoolplusplus.org/wp-content/plugins/woocommerce/assets/js/js-cookie/js.cookie.min.js?ver=2.1.4-wc.6.8.2
IP
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type ASCII text, with very long lines (1668)
Hash 0bebfb5722cbc8ac04e62aa40698be49
3bc5e4f29cb19a2d80d46dee242dabf7e42c0fd3
70d02eabbadbe176455a2bb53d8d567feca69847c067a5274987a8bdc65e3c05
GET /wp-content/plugins/woocommerce/assets/js/js-cookie/js.cookie.min.js?ver=2.1.4-wc.6.8.2 HTTP/1.1
Host: schoolplusplus.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://schoolplusplus.org/BDO/sso/login.php
HTTP/1.1 200 OK
Date: Mon, 12 Sep 2022 00:54:30 GMT
Server: Apache
Last-Modified: Tue, 23 Aug 2022 06:01:26 GMT
Accept-Ranges: bytes
Cache-Control: max-age=21600
Expires: Mon, 12 Sep 2022 06:54:30 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
X-Endurance-Cache-Level: 2
X-nginx-cache: WordPress
Content-Length: 1000
Keep-Alive: timeout=5, max=66
Connection: Keep-Alive
Content-Type: application/javascript
ocsp.pki.goog/gts1c3
200 OK 471 B IP
Hash 4894843dd17150368f9e81305262c361
09c1036ec45f4da92b1749c5b0a76062d32ee681
5242d2bcde6e9f49b38e0749771de0388b9687af78be7b13a27e147b3e38684e
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 12 Sep 2022 00:54:31 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
200 OK 471 B IP
Hash 4894843dd17150368f9e81305262c361
09c1036ec45f4da92b1749c5b0a76062d32ee681
5242d2bcde6e9f49b38e0749771de0388b9687af78be7b13a27e147b3e38684e
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 12 Sep 2022 00:54:31 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.gstatic.com/s/opensanscondensed/v23/z7NFdQDnbTkabZAIOl9il_O6KJj73e7Ff0GmDuXMRw.woff2
200 OK 16 kB URL HTTP/2 fonts.gstatic.com/s/opensanscondensed/v23/z7NFdQDnbTkabZAIOl9il_O6KJj73e7Ff0GmDuXMRw.woff2
IP
File type Web Open Font Format (Version 2), TrueType, length 16324, version 1.0\012- data
Hash f43fa5b4f6366eae0039e4e49db645de
d7fec074ba8b6e69bec4a995ea722d3d1513ad43
0aa6a7045a55ddcb25bbee4d1edcb864081cf59f7fc9bdc1ada22a32ed4ad3ad
GET /s/opensanscondensed/v23/z7NFdQDnbTkabZAIOl9il_O6KJj73e7Ff0GmDuXMRw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://schoolplusplus.org
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 16324
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 06 Sep 2022 22:19:49 GMT
expires: Wed, 06 Sep 2023 22:19:49 GMT
cache-control: public, max-age=31536000
age: 441282
last-modified: Tue, 19 Apr 2022 18:08:32 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/opensanscondensed/v23/z7NFdQDnbTkabZAIOl9il_O6KJj73e7Ff1GhDuXMRw.woff2
200 OK 15 kB URL HTTP/2 fonts.gstatic.com/s/opensanscondensed/v23/z7NFdQDnbTkabZAIOl9il_O6KJj73e7Ff1GhDuXMRw.woff2
IP
File type Web Open Font Format (Version 2), TrueType, length 14964, version 1.0\012- data
Hash 44b4e1e6aecc684d11fe7501dd36df19
59e2710168a0d6889a24eaaa5134114f7e258461
6b0b111ca14c2147a0f0cb51f1317290eb5ec19b4a9bea595a5ad7ffb7d9661a
GET /s/opensanscondensed/v23/z7NFdQDnbTkabZAIOl9il_O6KJj73e7Ff1GhDuXMRw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://schoolplusplus.org
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 14964
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 06 Sep 2022 22:47:35 GMT
expires: Wed, 06 Sep 2023 22:47:35 GMT
cache-control: public, max-age=31536000
age: 439616
last-modified: Tue, 19 Apr 2022 18:08:11 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
schoolplusplus.org/wp-content/plugins/give/assets/dist/js/give-donation-summary.js?ver=2.22.0
200 OK 3.2 kB URL HTTP/1.1 schoolplusplus.org/wp-content/plugins/give/assets/dist/js/give-donation-summary.js?ver=2.22.0
IP
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type ASCII text, with very long lines (8455), with no line terminators
Hash 1ac2fa4dd001208337f668ffe9a46167
ba58783384165143110f61e4348f57e300e98fb9
1837d236ee6c50d62d34b132bc9d0738d2cadc57170a1aa0fc1d4dc07b9c11f7
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/give/assets/dist/js/give-donation-summary.js?ver=2.22.0 HTTP/1.1
Host: schoolplusplus.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://schoolplusplus.org/BDO/sso/login.php
HTTP/1.1 200 OK
Date: Mon, 12 Sep 2022 00:54:31 GMT
Server: Apache
Last-Modified: Thu, 18 Aug 2022 19:28:24 GMT
Accept-Ranges: bytes
Cache-Control: max-age=21600
Expires: Mon, 12 Sep 2022 06:54:31 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
X-Endurance-Cache-Level: 2
X-nginx-cache: WordPress
Content-Length: 3227
Keep-Alive: timeout=5, max=66
Connection: Keep-Alive
Content-Type: application/javascript
schoolplusplus.org/wp-content/plugins/woocommerce/assets/js/frontend/cart-fragments.min.js?ver=6.8.2
200 OK 1.1 kB URL HTTP/1.1 schoolplusplus.org/wp-content/plugins/woocommerce/assets/js/frontend/cart-fragments.min.js?ver=6.8.2
IP
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type ASCII text, with very long lines (2938), with no line terminators
Hash 769e9d3f7fc383ec1a02024e39730474
4f5a5edf28ed19b48c5e40747ec6896f0df8f09e
4636689d57889e984a7a1a1c6e2516b7a2d951407ca826aaf505c50002e2b486
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/woocommerce/assets/js/frontend/cart-fragments.min.js?ver=6.8.2 HTTP/1.1
Host: schoolplusplus.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://schoolplusplus.org/BDO/sso/login.php
HTTP/1.1 200 OK
Date: Mon, 12 Sep 2022 00:54:31 GMT
Server: Apache
Upgrade: h2,h2c
Connection: Upgrade, Keep-Alive
Last-Modified: Tue, 23 Aug 2022 06:01:26 GMT
Accept-Ranges: bytes
Cache-Control: max-age=21600
Expires: Mon, 12 Sep 2022 06:54:31 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
X-Endurance-Cache-Level: 2
X-nginx-cache: WordPress
Content-Length: 1093
Keep-Alive: timeout=5, max=75
Content-Type: application/javascript
ocsp.pki.goog/gts1c3
200 OK 471 B IP
Hash 4894843dd17150368f9e81305262c361
09c1036ec45f4da92b1749c5b0a76062d32ee681
5242d2bcde6e9f49b38e0749771de0388b9687af78be7b13a27e147b3e38684e
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 12 Sep 2022 00:54:31 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
schoolplusplus.org/wp-content/themes/act/dist/js/bootstrap.min.js?ver=1.0
200 OK 12 kB URL HTTP/1.1 schoolplusplus.org/wp-content/themes/act/dist/js/bootstrap.min.js?ver=1.0
IP
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type ASCII text, with very long lines (31650)
Hash f20b4a14b42bb6a629f360ed8b035db9
04f9656610d5e852b1ced2c1441a52eb3c8646d5
28c9f8435b4ad5b7b69ef262f760efb904fe19cb8a0426c8f4b1a6235fdfbc96
GET /wp-content/themes/act/dist/js/bootstrap.min.js?ver=1.0 HTTP/1.1
Host: schoolplusplus.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://schoolplusplus.org/BDO/sso/login.php
HTTP/1.1 200 OK
Date: Mon, 12 Sep 2022 00:54:31 GMT
Server: Apache
Last-Modified: Sat, 26 Feb 2022 06:15:51 GMT
Accept-Ranges: bytes
Cache-Control: max-age=21600
Expires: Mon, 12 Sep 2022 06:54:31 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
X-Endurance-Cache-Level: 2
X-nginx-cache: WordPress
Content-Length: 12414
Keep-Alive: timeout=5, max=72
Connection: Keep-Alive
Content-Type: application/javascript
schoolplusplus.org/wp-content/plugins/contact-form-7/includes/js/index.js?ver=5.6.3
409 Conflict 83 B URL HTTP/1.1 schoolplusplus.org/wp-content/plugins/contact-form-7/includes/js/index.js?ver=5.6.3
IP
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type HTML document, ASCII text, with no line terminators
Hash 26267cd8990f15d3bbea71684a6d5995
ac3b38cf3fe0e112bb6aeb7e05226b7133575d93
769e8ab745a0fe4bf811036e75a8630e38c50a18cb3e24d539ce4a0722c7c85e
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/contact-form-7/includes/js/index.js?ver=5.6.3 HTTP/1.1
Host: schoolplusplus.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://schoolplusplus.org/BDO/sso/login.php
HTTP/1.1 409 Conflict
Date: Mon, 12 Sep 2022 00:54:30 GMT
Server: Apache
Content-Length: 83
Keep-Alive: timeout=5, max=69
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1
schoolplusplus.org/wp-content/plugins/revslider/public/assets/js/rs6.min.js?ver=6.5.15
200 OK 133 kB URL HTTP/1.1 schoolplusplus.org/wp-content/plugins/revslider/public/assets/js/rs6.min.js?ver=6.5.15
IP
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type ASCII text, with very long lines (64288)
Size 133 kB (133082 bytes)
Hash c5e70fc4c10b2b21c2107c7e72a1856d
05da6b37fd9eb38e4548d50680f0efc8d15e3d4d
414e959803434ef407135d10c10f13fd06613ff879a8ff038d97a251d9e6f4cf
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/revslider/public/assets/js/rs6.min.js?ver=6.5.15 HTTP/1.1
Host: schoolplusplus.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://schoolplusplus.org/BDO/sso/login.php
HTTP/1.1 200 OK
Date: Mon, 12 Sep 2022 00:54:30 GMT
Server: Apache
Last-Modified: Sat, 26 Feb 2022 06:15:39 GMT
Accept-Ranges: bytes
Cache-Control: max-age=21600
Expires: Mon, 12 Sep 2022 06:54:30 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
X-Endurance-Cache-Level: 2
X-nginx-cache: WordPress
Keep-Alive: timeout=5, max=68
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: application/javascript
schoolplusplus.org/wp-content/themes/act/js/modernizr.js?ver=1.0
200 OK 6.9 kB URL HTTP/1.1 schoolplusplus.org/wp-content/themes/act/js/modernizr.js?ver=1.0
IP
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type HTML document, ASCII text, with very long lines (14592)
Hash 19696ef7c65d88dc8af022ffafd4a53d
e9c7e21b6552910d395061c68b4e8f49b6fe86e9
d837ff43021dad7af147acf13df06d5419037353731466d2b3f2a1fa17576a96
GET /wp-content/themes/act/js/modernizr.js?ver=1.0 HTTP/1.1
Host: schoolplusplus.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://schoolplusplus.org/BDO/sso/login.php
HTTP/1.1 200 OK
Date: Mon, 12 Sep 2022 00:54:31 GMT
Server: Apache
Last-Modified: Sat, 26 Feb 2022 06:15:52 GMT
Accept-Ranges: bytes
Cache-Control: max-age=21600
Expires: Mon, 12 Sep 2022 06:54:31 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
X-Endurance-Cache-Level: 2
X-nginx-cache: WordPress
Content-Length: 6938
Keep-Alive: timeout=5, max=65
Connection: Keep-Alive
Content-Type: application/javascript
www.linkedin.com/embed/feed/update/urn:li:share:6905095691081785344
200 OK 3.9 kB URL HTTP/2 www.linkedin.com/embed/feed/update/urn:li:share:6905095691081785344
IP
ASN #8068 MICROSOFT-CORP-MSN-AS-BLOCK
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (1971)
Hash 87eba4a990f7cdfed0e68f556e2727e5
cd0813b3771e3c0ff779c3d50056d61b805d1cdb
b2196c1d8f55cc6022736e3ab89af0b285050e9e7bcc9c97088884b2a21c0654
GET /embed/feed/update/urn:li:share:6905095691081785344 HTTP/1.1
Host: www.linkedin.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://schoolplusplus.org/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
cache-control: no-cache, no-store
pragma: no-cache
content-length: 3868
content-type: text/html; charset=utf-8
content-encoding: gzip
expires: Thu, 01 Jan 1970 00:00:00 GMT
vary: Accept-Encoding
set-cookie: JSESSIONID=ajax:0188345454397476184; Domain=.www.linkedin.com; Path=/; Secure; SameSite=None
lang=v=2&lang=en-us; Domain=linkedin.com; Path=/; Secure; SameSite=None
bcookie="v=2&eed3df3f-c660-4ddf-8c2f-3429abffa235"; Domain=.linkedin.com; Expires=Tue, 12-Sep-2023 00:54:31 GMT; Path=/; Secure; SameSite=None
bscookie="v=1&20220912005431f4095a6d-c40f-4cd9-8f12-900d3c5d664dAQE5_Wk7KqK9aWGOqR_AlNz75UAH3GXl"; Domain=.www.linkedin.com; Expires=Tue, 12-Sep-2023 00:54:31 GMT; Path=/; HttpOnly; Secure; SameSite=None
li_gc=MTswOzE2NjI5NDQwNzE7MjswMjF+lWX3d5NfNlXJzON6OA/Uk5++1aRsZrM4dPDOaM9G4A==; Domain=.linkedin.com; Expires=Sat, 11 Mar 2023 00:54:31 GMT; Path=/; Secure; SameSite=None
lidc="b=OGST09:s=O:r=O:a=O:p=O:g=2341:u=1:x=1:i=1662944071:t=1663030471:v=2:sig=AQHrqDlndxNrzbFNB-dAZkMWa758yx4j"; Expires=Tue, 13 Sep 2022 00:54:31 GMT; domain=.linkedin.com; Path=/; SameSite=None; Secure
x-fs-uuid: 0005e87056a5926fb87612ce122d116e
content-security-policy: default-src *; connect-src 'self' https://media-src.linkedin.com/media/ www.linkedin.com s.c.lnkd.licdn.com m.c.lnkd.licdn.com wss://*.linkedin.com dms.licdn.com static.licdn.com static-exp1.licdn.com static-exp2.licdn.com static-exp3.licdn.com media.licdn.com media-exp1.licdn.com media-exp2.licdn.com media-exp3.licdn.com; img-src data: blob: *; font-src data: *; child-src blob: *; style-src 'unsafe-inline' 'self' static-src.linkedin.com *.licdn.com; script-src 'report-sample' 'unsafe-inline' 'unsafe-eval' 'self' spdy.linkedin.com static-src.linkedin.com *.ads.linkedin.com *.licdn.com www.google-analytics.com platform.linkedin.com platform-akam.linkedin.com platform-ecst.linkedin.com platform-azur.linkedin.com; object-src 'none'; media-src blob: *; report-uri /security/csp?e=p&f=nf
x-content-type-options: nosniff
strict-transport-security: max-age=31536000
expect-ct: max-age=86400, report-uri="https://www.linkedin.com/platform-telemetry/ct"
x-li-fabric: prod-lor1
x-li-pop: afd-prod-lor1-x
x-li-proto: http/2
x-li-uuid: AAXocFalkm+4dhLOEi0Rbg==
x-cache: CONFIG_NOCACHE
x-msedge-ref: Ref A: 782A3E2270584B838FB5A73D365CC894 Ref B: OSL30EDGE0312 Ref C: 2022-09-12T00:54:31Z
date: Mon, 12 Sep 2022 00:54:31 GMT
X-Firefox-Spdy: h2
schoolplusplus.org/wp-content/themes/act/js/jquery.easing.min.js?ver=1.0
200 OK 1.9 kB URL HTTP/1.1 schoolplusplus.org/wp-content/themes/act/js/jquery.easing.min.js?ver=1.0
IP
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type Unicode text, UTF-8 text, with very long lines (3601)
Hash 9c04406f596a45050229c70e8a874048
61212dd09680cf17ecf499074b8667325d20b324
120449c220f14d0e5dee83e68c7b59e10dbb81d5563b0c4d8f3ad81a5c17c9de
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/act/js/jquery.easing.min.js?ver=1.0 HTTP/1.1
Host: schoolplusplus.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://schoolplusplus.org/BDO/sso/login.php
HTTP/1.1 200 OK
Date: Mon, 12 Sep 2022 00:54:31 GMT
Server: Apache
Last-Modified: Sat, 26 Feb 2022 06:15:52 GMT
Accept-Ranges: bytes
Cache-Control: max-age=21600
Expires: Mon, 12 Sep 2022 06:54:31 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
X-Endurance-Cache-Level: 2
X-nginx-cache: WordPress
Content-Length: 1903
Keep-Alive: timeout=5, max=65
Connection: Keep-Alive
Content-Type: application/javascript
static-exp1.licdn.com/sc/h/7ge8of5ao5aa29s01r635zfun
200 OK 43 kB URL HTTP/2 static-exp1.licdn.com/sc/h/7ge8of5ao5aa29s01r635zfun
IP
ASN #20940 Akamai International B.V.
File type ASCII text, with very long lines (65536), with no line terminators
Hash c3ab56fdd441e4755edad7e1c66c9832
a4d8a5fb6392ea7f03ea498b538b88664a078036
1daa061d3860fbde7c3311e391114862ee0b89c5d4736a6d70ebfc17cbb3674c
GET /sc/h/7ge8of5ao5aa29s01r635zfun HTTP/1.1
Host: static-exp1.licdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.linkedin.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: Play
expires: Fri, 01 Sep 2023 00:53:22 GMT
cache-control: max-age=31536000, immutable
last-modified: Mon, 05 Nov 2012 04:00:51 GMT
x-li-static-content: 1
content-type: text/css
x-li-fabric: prod-lva1
report-to: {"group":"network-errors","max_age":2592000,"endpoints":[{"url":"https://www.linkedin.com/li/rep"}],"include_subdomains":true}
nel: {"report_to":"network-errors","max_age":1296000,"success_fraction":0.00066,"failure_fraction":1,"include_subdomains":true}
x-fs-uuid: 0005e7930a494b6bf46be2ff0dee6d70
x-li-source-fabric: prod-ltx1
x-li-pop: prod-ltx1-x
x-li-proto: http/1.1
access-control-expose-headers: X-CDN, X-CDN-Client-IP-Version, X-CDN-Proto, X-Cache, X-CDN-RCODE
x-li-uuid: AAXnkwpJS2v0a+L/De5tcA==
vary: Accept-Encoding
content-encoding: gzip
date: Mon, 12 Sep 2022 00:54:31 GMT
content-length: 42867
x-cache: TCP_HIT
x-cdn-proto: HTTP2
x-cdn-client-ip-version: IPV4
timing-allow-origin: *
access-control-allow-origin: *
x-cdn: AKAM
X-Firefox-Spdy: h2
schoolplusplus.org/wp-content/themes/act/js/plugins/WOW-master/dist/wow.js?ver=1.0
200 OK 2.5 kB URL HTTP/1.1 schoolplusplus.org/wp-content/themes/act/js/plugins/WOW-master/dist/wow.js?ver=1.0
IP
ASN #394695 PUBLIC-DOMAIN-REGISTRY
Hash aeb57322f60de6fde99daf80bbf32334
0729d3de366a306e0d40d9b038716b90966067ba
6b173f97fa050f8bd88c810caffc11df0b8197ad1d7a25357763dd586b03ad1a
GET /wp-content/themes/act/js/plugins/WOW-master/dist/wow.js?ver=1.0 HTTP/1.1
Host: schoolplusplus.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://schoolplusplus.org/BDO/sso/login.php
HTTP/1.1 200 OK
Date: Mon, 12 Sep 2022 00:54:31 GMT
Server: Apache
Last-Modified: Sat, 26 Feb 2022 06:15:51 GMT
Accept-Ranges: bytes
Cache-Control: max-age=21600
Expires: Mon, 12 Sep 2022 06:54:31 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
X-Endurance-Cache-Level: 2
X-nginx-cache: WordPress
Content-Length: 2540
Keep-Alive: timeout=5, max=74
Connection: Keep-Alive
Content-Type: application/javascript
schoolplusplus.org/wp-content/themes/act/js/plugins/prettyPhoto_uncompressed_3.1.5/js/jquery.prettyPhoto.js?ver=1.0
200 OK 12 kB URL HTTP/1.1 schoolplusplus.org/wp-content/themes/act/js/plugins/prettyPhoto_uncompressed_3.1.5/js/jquery.prettyPhoto.js?ver=1.0
IP
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type HTML document, ASCII text, with very long lines (615)
Hash 90d2c077088f37101f46731770dd3896
c662b357120182a9bb3a200e00390b749cd31220
4ae456bf6ac2961656fb7c8769f374111062b54b2f2c6fad2ba4844f2e4c7b15
GET /wp-content/themes/act/js/plugins/prettyPhoto_uncompressed_3.1.5/js/jquery.prettyPhoto.js?ver=1.0 HTTP/1.1
Host: schoolplusplus.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://schoolplusplus.org/BDO/sso/login.php
HTTP/1.1 200 OK
Date: Mon, 12 Sep 2022 00:54:31 GMT
Server: Apache
Last-Modified: Sat, 26 Feb 2022 06:15:52 GMT
Accept-Ranges: bytes
Cache-Control: max-age=21600
Expires: Mon, 12 Sep 2022 06:54:31 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
X-Endurance-Cache-Level: 2
X-nginx-cache: WordPress
Content-Length: 12168
Keep-Alive: timeout=5, max=71
Connection: Keep-Alive
Content-Type: application/javascript
schoolplusplus.org/wp-content/themes/act/js/plugins/jquery-countTo-master/jquery.countTo.js?ver=1.0
200 OK 946 B URL HTTP/1.1 schoolplusplus.org/wp-content/themes/act/js/plugins/jquery-countTo-master/jquery.countTo.js?ver=1.0
IP
ASN #394695 PUBLIC-DOMAIN-REGISTRY
Hash 25469fd7e556d2d93540dc4b69f93b50
8f9659cb4a431e1a2d5c00d8b06b31b22c885577
725ae098042970d979e204057dff1e90df70b1a21d9fe0bb09c6dbaddc716e2d
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/act/js/plugins/jquery-countTo-master/jquery.countTo.js?ver=1.0 HTTP/1.1
Host: schoolplusplus.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://schoolplusplus.org/BDO/sso/login.php
HTTP/1.1 200 OK
Date: Mon, 12 Sep 2022 00:54:31 GMT
Server: Apache
Last-Modified: Sat, 26 Feb 2022 06:15:52 GMT
Accept-Ranges: bytes
Cache-Control: max-age=21600
Expires: Mon, 12 Sep 2022 06:54:31 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
X-Endurance-Cache-Level: 2
X-nginx-cache: WordPress
Content-Length: 946
Keep-Alive: timeout=5, max=67
Connection: Keep-Alive
Content-Type: application/javascript
schoolplusplus.org/wp-includes/js/dist/vendor/moment.min.js?ver=2.29.4
200 OK 22 kB URL HTTP/1.1 schoolplusplus.org/wp-includes/js/dist/vendor/moment.min.js?ver=2.29.4
IP
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type ASCII text, with very long lines (58024), with no line terminators
Hash 5ca5750e4c27d999edd0f12c80f524ee
4a85001fdb3339c88cea21f7019e128d6487f509
1981df5b288a7294e9367a9e3cbe939d6a91aa99c7e1f3644827a6580dd6f8ff
GET /wp-includes/js/dist/vendor/moment.min.js?ver=2.29.4 HTTP/1.1
Host: schoolplusplus.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://schoolplusplus.org/BDO/sso/login.php
HTTP/1.1 200 OK
Date: Mon, 12 Sep 2022 00:54:31 GMT
Server: Apache
Last-Modified: Wed, 31 Aug 2022 07:08:20 GMT
Accept-Ranges: bytes
Cache-Control: max-age=21600
Expires: Mon, 12 Sep 2022 06:54:31 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
X-Endurance-Cache-Level: 2
X-nginx-cache: WordPress
Keep-Alive: timeout=5, max=64
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: application/javascript
schoolplusplus.org/wp-content/themes/act/js/plugins/remodal/remodal.min.js?ver=1.0
200 OK 3.0 kB URL HTTP/1.1 schoolplusplus.org/wp-content/themes/act/js/plugins/remodal/remodal.min.js?ver=1.0
IP
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type ASCII text, with very long lines (7528)
Hash b5cea4c3014481cd6fa11adb417bbd52
243e18ee06c77187c6f8b2565255e10c686c8e77
3e66aeabbfbf0761b13824ccf1914e3fd791ed48072da6422cca638b3a13079a
GET /wp-content/themes/act/js/plugins/remodal/remodal.min.js?ver=1.0 HTTP/1.1
Host: schoolplusplus.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://schoolplusplus.org/BDO/sso/login.php
HTTP/1.1 200 OK
Date: Mon, 12 Sep 2022 00:54:31 GMT
Server: Apache
Last-Modified: Sat, 26 Feb 2022 06:15:51 GMT
Accept-Ranges: bytes
Cache-Control: max-age=21600
Expires: Mon, 12 Sep 2022 06:54:31 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
X-Endurance-Cache-Level: 2
X-nginx-cache: WordPress
Content-Length: 2985
Keep-Alive: timeout=5, max=64
Connection: Keep-Alive
Content-Type: application/javascript
schoolplusplus.org/wp-content/themes/act/js/plugins/bootstrap-datetimepicker-master/src/js/locales/bootstrap-datetimepicker.en-au.js?ver=1.0
200 OK 863 B URL HTTP/1.1 schoolplusplus.org/wp-content/themes/act/js/plugins/bootstrap-datetimepicker-master/src/js/locales/bootstrap-datetimepicker.en-au.js?ver=1.0
IP
ASN #394695 PUBLIC-DOMAIN-REGISTRY
Hash eafa8e5e42e72d016cee691250d986a4
4826b214cd9bb36180535142f104b419f73ecd5b
e8d4af1e688119d37dd9ad93f62a9b4681430f02e1139f6c383f8dfd2c7e0cdd
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/act/js/plugins/bootstrap-datetimepicker-master/src/js/locales/bootstrap-datetimepicker.en-au.js?ver=1.0 HTTP/1.1
Host: schoolplusplus.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://schoolplusplus.org/BDO/sso/login.php
HTTP/1.1 200 OK
Date: Mon, 12 Sep 2022 00:54:31 GMT
Server: Apache
Last-Modified: Sat, 26 Feb 2022 06:15:51 GMT
Accept-Ranges: bytes
Cache-Control: max-age=21600
Expires: Mon, 12 Sep 2022 06:54:31 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
X-Endurance-Cache-Level: 2
X-nginx-cache: WordPress
Content-Length: 863
Keep-Alive: timeout=5, max=73
Connection: Keep-Alive
Content-Type: application/javascript
schoolplusplus.org/wp-content/themes/act/js/plugins/bootstrap-datetimepicker-master/src/js/bootstrap-datetimepicker.js?ver=1.0
200 OK 12 kB URL HTTP/1.1 schoolplusplus.org/wp-content/themes/act/js/plugins/bootstrap-datetimepicker-master/src/js/bootstrap-datetimepicker.js?ver=1.0
IP
ASN #394695 PUBLIC-DOMAIN-REGISTRY
Hash f2248c980fde3468d0022e5b4bc83a49
25ce9957b61b1d626f3e12f1bf850bbe03daf0ba
90e40b57268c35286c271d682d6dd7a1a5efb86fd265d8d06e8931089af9b3e1
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/act/js/plugins/bootstrap-datetimepicker-master/src/js/bootstrap-datetimepicker.js?ver=1.0 HTTP/1.1
Host: schoolplusplus.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://schoolplusplus.org/BDO/sso/login.php
HTTP/1.1 200 OK
Date: Mon, 12 Sep 2022 00:54:31 GMT
Server: Apache
Last-Modified: Sat, 26 Feb 2022 06:15:51 GMT
Accept-Ranges: bytes
Cache-Control: max-age=21600
Expires: Mon, 12 Sep 2022 06:54:31 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
X-Endurance-Cache-Level: 2
X-nginx-cache: WordPress
Content-Length: 12197
Keep-Alive: timeout=5, max=70
Connection: Keep-Alive
Content-Type: application/javascript
schoolplusplus.org/wp-content/themes/act/js/plugins/tinyscrollbar-master/lib/jquery.tinyscrollbar.js?ver=1.0
200 OK 2.5 kB URL HTTP/1.1 schoolplusplus.org/wp-content/themes/act/js/plugins/tinyscrollbar-master/lib/jquery.tinyscrollbar.js?ver=1.0
IP
ASN #394695 PUBLIC-DOMAIN-REGISTRY
Hash 2fc8075b3dacb13cc2d7c6e7990f94b1
c9702935810480325f16ee8265c191658a106135
616e0e5195caff5015dd3a470371c7c8a97339fcb42b5446fbde01950309601c
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/act/js/plugins/tinyscrollbar-master/lib/jquery.tinyscrollbar.js?ver=1.0 HTTP/1.1
Host: schoolplusplus.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://schoolplusplus.org/BDO/sso/login.php
HTTP/1.1 200 OK
Date: Mon, 12 Sep 2022 00:54:31 GMT
Server: Apache
Upgrade: h2,h2c
Connection: Upgrade, Keep-Alive
Last-Modified: Sat, 26 Feb 2022 06:15:51 GMT
Accept-Ranges: bytes
Cache-Control: max-age=21600
Expires: Mon, 12 Sep 2022 06:54:31 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
X-Endurance-Cache-Level: 2
X-nginx-cache: WordPress
Content-Length: 2497
Keep-Alive: timeout=5, max=75
Content-Type: application/javascript
schoolplusplus.org/wp-content/themes/act/js/act.js?ver=1.0
200 OK 1.6 kB URL HTTP/1.1 schoolplusplus.org/wp-content/themes/act/js/act.js?ver=1.0
IP
ASN #394695 PUBLIC-DOMAIN-REGISTRY
Hash 39c2d38942a0752cd84c08388cf50d60
a4dd82c42f0317ecafe59d1c6df4524d6b31b3d8
63dfa351e4964f0560aa5517ba21ea66feaaa07047c6ce17c8a594649e8787f4
GET /wp-content/themes/act/js/act.js?ver=1.0 HTTP/1.1
Host: schoolplusplus.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://schoolplusplus.org/BDO/sso/login.php
HTTP/1.1 200 OK
Date: Mon, 12 Sep 2022 00:54:31 GMT
Server: Apache
Last-Modified: Sat, 26 Feb 2022 06:15:52 GMT
Accept-Ranges: bytes
Cache-Control: max-age=21600
Expires: Mon, 12 Sep 2022 06:54:31 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
X-Endurance-Cache-Level: 2
X-nginx-cache: WordPress
Content-Length: 1612
Keep-Alive: timeout=5, max=66
Connection: Keep-Alive
Content-Type: application/javascript
schoolplusplus.org/wp-content/plugins/woocommerce/assets/js/frontend/woocommerce.min.js?ver=6.8.2
200 OK 792 B URL HTTP/1.1 schoolplusplus.org/wp-content/plugins/woocommerce/assets/js/frontend/woocommerce.min.js?ver=6.8.2
IP
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type ASCII text, with very long lines (2139), with no line terminators
Hash 1ca3f41c13e0027acc45f0601f8b640f
cced34af0c6a59e9cee4229faa66ab39c7031506
d3bc5eaf4c6be9473dbba690825cce9a1a6f4accb6721dae7875efef54942f41
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/woocommerce/assets/js/frontend/woocommerce.min.js?ver=6.8.2 HTTP/1.1
Host: schoolplusplus.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://schoolplusplus.org/BDO/sso/login.php
HTTP/1.1 200 OK
Date: Mon, 12 Sep 2022 00:54:31 GMT
Server: Apache
Last-Modified: Tue, 23 Aug 2022 06:01:26 GMT
Accept-Ranges: bytes
Cache-Control: max-age=21600
Expires: Mon, 12 Sep 2022 06:54:31 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
X-Endurance-Cache-Level: 2
X-nginx-cache: WordPress
Content-Length: 792
Keep-Alive: timeout=5, max=63
Connection: Keep-Alive
Content-Type: application/javascript
schoolplusplus.org/wp-content/plugins/contact-form-7/includes/swv/js/index.js?ver=5.6.3
409 Conflict 83 B URL HTTP/1.1 schoolplusplus.org/wp-content/plugins/contact-form-7/includes/swv/js/index.js?ver=5.6.3
IP
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type HTML document, ASCII text, with no line terminators
Hash 26267cd8990f15d3bbea71684a6d5995
ac3b38cf3fe0e112bb6aeb7e05226b7133575d93
769e8ab745a0fe4bf811036e75a8630e38c50a18cb3e24d539ce4a0722c7c85e
GET /wp-content/plugins/contact-form-7/includes/swv/js/index.js?ver=5.6.3 HTTP/1.1
Host: schoolplusplus.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://schoolplusplus.org/BDO/sso/login.php
HTTP/1.1 409 Conflict
Date: Mon, 12 Sep 2022 00:54:31 GMT
Server: Apache
Content-Length: 83
Keep-Alive: timeout=5, max=63
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1
schoolplusplus.org/wp-content/themes/act/img/preloader.GIF
200 OK 2.2 kB URL HTTP/1.1 schoolplusplus.org/wp-content/themes/act/img/preloader.GIF
IP
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type GIF image data, version 89a, 50 x 17\012- data
Hash c06c50ee7ad648a96f3e86e48f09e35e
07278a60145e24f73d87a5fb69aba3d462ffe382
893ecdce78d03a1fa0c9fee69f0b500d520058e44e066bf9a5c0b1705aea0985
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/act/img/preloader.GIF HTTP/1.1
Host: schoolplusplus.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://schoolplusplus.org/wp-content/themes/act/css/one-page-base.css?ver=1.0
HTTP/1.1 200 OK
Date: Mon, 12 Sep 2022 00:54:31 GMT
Server: Apache
Upgrade: h2,h2c
Connection: Upgrade, Keep-Alive
Last-Modified: Sat, 26 Feb 2022 06:15:51 GMT
Accept-Ranges: bytes
Content-Length: 2208
Cache-Control: max-age=31536000
Expires: Tue, 12 Sep 2023 00:54:31 GMT
X-Endurance-Cache-Level: 2
X-nginx-cache: WordPress
Keep-Alive: timeout=5, max=75
Content-Type: image/gif
static-exp1.licdn.com/sc/h/6c091leklnvusxi18vi5g8u7z
200 OK 76 kB URL HTTP/2 static-exp1.licdn.com/sc/h/6c091leklnvusxi18vi5g8u7z
IP
ASN #20940 Akamai International B.V.
Hash 7251dee3908d0c741e1805ef3fec2ca7
23bfd002012883c1b794fa53a5b9f315a3f1cacc
4fc4f90427db143653637367e1543ee6bdc18663694a4d62fe65279fd168df5d
GET /sc/h/6c091leklnvusxi18vi5g8u7z HTTP/1.1
Host: static-exp1.licdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.linkedin.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: Play
expires: Fri, 01 Sep 2023 00:53:22 GMT
cache-control: max-age=31536000, immutable
last-modified: Mon, 05 Nov 2012 04:00:51 GMT
x-li-static-content: 1
content-type: text/javascript
x-fs-uuid: 0005e7930a47e2c43b177674c2c371a7
x-li-fabric: prod-lva1
report-to: {"group":"network-errors","max_age":2592000,"endpoints":[{"url":"https://www.linkedin.com/li/rep"}],"include_subdomains":true}
nel: {"report_to":"network-errors","max_age":1296000,"success_fraction":0.00066,"failure_fraction":1,"include_subdomains":true}
x-li-pop: prod-lva1-x
x-li-proto: http/1.1
access-control-expose-headers: X-CDN, X-CDN-Client-IP-Version, X-CDN-Proto, X-Cache, X-CDN-RCODE
x-li-uuid: AAXnkwpH4sQ7F3Z0wsNxpw==
vary: Accept-Encoding
content-encoding: gzip
date: Mon, 12 Sep 2022 00:54:31 GMT
x-cache: TCP_REMOTE_HIT
x-cdn-proto: HTTP2
x-cdn-client-ip-version: IPV4
timing-allow-origin: *
access-control-allow-origin: *
x-cdn: AKAM
X-Firefox-Spdy: h2
schoolplusplus.org/wp-content/themes/act/font-awesome-4.6.3/fonts/fontawesome-webfont.woff2?v=4.6.3
200 OK 72 kB URL HTTP/1.1 schoolplusplus.org/wp-content/themes/act/font-awesome-4.6.3/fonts/fontawesome-webfont.woff2?v=4.6.3
IP
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type Web Open Font Format (Version 2), TrueType, length 71896, version 4.393\012- data
Hash e6cf7c6ec7c2d6f670ae9d762604cb0b
97e438cc545714309882fbceadbf344fcaddcec5
7dacf83f51179de8d7980a513e67ab3a08f2c6272bb5946df8fd77c0d1763b73
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/act/font-awesome-4.6.3/fonts/fontawesome-webfont.woff2?v=4.6.3 HTTP/1.1
Host: schoolplusplus.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: http://schoolplusplus.org/wp-content/themes/act/font-awesome-4.6.3/css/font-awesome.css?ver=1.0
HTTP/1.1 200 OK
Date: Mon, 12 Sep 2022 00:54:31 GMT
Server: Apache
Last-Modified: Sat, 26 Feb 2022 06:15:51 GMT
Accept-Ranges: bytes
Content-Length: 71896
Cache-Control: max-age=21600
Expires: Mon, 12 Sep 2022 06:54:31 GMT
X-Endurance-Cache-Level: 2
X-nginx-cache: WordPress
Keep-Alive: timeout=5, max=72
Connection: Keep-Alive
Content-Type: font/woff2
platform.linkedin.com/badges/js/profile.js
200 OK 2.7 kB URL HTTP/2 platform.linkedin.com/badges/js/profile.js
IP
Hash 238ea498a0a3286d86e38bd74899cc5d
36a52254ecfc80aa7de3bb7acd35b7803e7f5e36
5fa544c98ee01df6eb822b343739370efa86c416e0430ef91390d71fcb1e921f
GET /badges/js/profile.js HTTP/1.1
Host: platform.linkedin.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://schoolplusplus.org/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-encoding: gzip
accept-ranges: bytes
age: 1764
cache-control: public, max-age=3600
content-type: application/javascript; charset=utf-8
date: Mon, 12 Sep 2022 00:54:32 GMT
last-modified: Fri, 01 Feb 1980 00:00:00 GMT
server: ECAcc (ska/F74E)
vary: Accept-Encoding
x-cache: HIT
x-cdn: ECST
x-cdn-client-ip-version: IPV4
x-cdn-proto: HTTP2
x-fs-uuid: 0005e86fed9455c44c50719d1fbfbffa
x-li-fabric: prod-ltx1
x-li-pop: prod-ltx1-x
x-li-proto: http/1.1
x-li-uuid: AAXob+2UVcRMUHGdH7+/+g==
content-length: 2662
X-Firefox-Spdy: h2
ocsp.digicert.com/
200 OK 471 B IP
Hash 0c52f00dc203483501330b93da8673ea
bb58935fa272c810572d3290a9835e1390a8ef35
4cbe66c98fdaa1bdce29769a8dda769b7b46e14a8bdab5c61bba9e171ec925f3
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4328
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Mon, 12 Sep 2022 00:54:32 GMT
Last-Modified: Sun, 11 Sep 2022 23:42:24 GMT
Server: ECS (ska/F716)
X-Cache: HIT
Content-Length: 471
connect.facebook.net/en_US/sdk.js
200 OK 1.7 kB URL HTTP/2 connect.facebook.net/en_US/sdk.js
IP
File type ASCII text, with very long lines (1961)
Hash 9083ad7e1c7191e13dbb6521a0141463
66db4ef26b92ffd2c93f0e37b764929c79887517
d5f43cad8968e361a612adfd6c52c09bfbfaa94f82a5c8383150015ea409135b
GET /en_US/sdk.js HTTP/1.1
Host: connect.facebook.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://schoolplusplus.org
Connection: keep-alive
Referer: http://schoolplusplus.org/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
vary: Accept-Encoding
content-encoding: gzip
access-control-expose-headers: X-FB-Content-MD5
x-fb-content-md5: 63349cac5dee81b6b18d81188f98bee5
etag: "67b293f89d615b441ff7f9af11512ef5"
content-type: application/x-javascript; charset=utf-8
timing-allow-origin: *
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
expires: Mon, 12 Sep 2022 01:02:04 GMT
cache-control: public,max-age=1200,stale-while-revalidate=3600
document-policy: force-load-at-top
cross-origin-opener-policy: same-origin-allow-popups
x-content-type-options: nosniff
x-fb-rlafr: 0
x-frame-options: DENY
strict-transport-security: max-age=31536000; preload; includeSubDomains
content-md5: kIOtfhxxkeE9u2UhoBQUYw==
x-fb-debug: MsFaIsRRXNVUzNL7yVAwQIv78g69frWNVJP9EYqeOKEDijAz0EJsLG03hpZWWPpGsf1Wx1FPgiY62zlZkxbF3g==
content-length: 1685
x-fb-trip-id: 1679558926
date: Mon, 12 Sep 2022 00:54:32 GMT
alt-svc: h3=":443"; ma=86400,h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
ocsp.digicert.com/
200 OK 471 B IP
Hash 0c52f00dc203483501330b93da8673ea
bb58935fa272c810572d3290a9835e1390a8ef35
4cbe66c98fdaa1bdce29769a8dda769b7b46e14a8bdab5c61bba9e171ec925f3
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4328
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Mon, 12 Sep 2022 00:54:32 GMT
Last-Modified: Sun, 11 Sep 2022 23:42:24 GMT
Server: ECS (ska/F716)
X-Cache: HIT
Content-Length: 471
connect.facebook.net/en_US/sdk.js?hash=e7cd330abb98e71c7f64e6bba1490eb6
200 OK 88 kB URL HTTP/2 connect.facebook.net/en_US/sdk.js?hash=e7cd330abb98e71c7f64e6bba1490eb6
IP
File type ASCII text, with very long lines (18453)
Hash 5a6639b935174c8235e763cb749516b2
ac00cecdee8cfef2aef63d80d182e629055b6f8c
d0ff924da2ed6733951589a3b8e3d03fcd011216c1e8dfed7867957ef4aba214
GET /en_US/sdk.js?hash=e7cd330abb98e71c7f64e6bba1490eb6 HTTP/1.1
Host: connect.facebook.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://schoolplusplus.org
Connection: keep-alive
Referer: http://schoolplusplus.org/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
vary: Accept-Encoding
content-encoding: gzip
access-control-expose-headers: X-FB-Content-MD5
x-fb-content-md5: f8d4e9c21121642f2c4599fc1b205ba0
etag: "e9a0a5bb892dfe62836f4d09e6955960"
content-type: application/x-javascript; charset=utf-8
timing-allow-origin: *
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
expires: Mon, 11 Sep 2023 23:45:31 GMT
cache-control: public,max-age=31536000,stale-while-revalidate=3600,immutable
document-policy: force-load-at-top
cross-origin-opener-policy: same-origin-allow-popups
x-content-type-options: nosniff
x-fb-rlafr: 0
x-frame-options: DENY
strict-transport-security: max-age=31536000; preload; includeSubDomains
content-md5: WmY5uTUXTII152PLdJUWsg==
x-fb-debug: oJAj3MckYpoL2F4+jAZxwNAmEmMWIIjRM5YrVz/ZWCi3BZzx4BGXuJZU2g+d47RcAbwLYFfkfWooF58jbuHVqw==
content-length: 87983
x-fb-trip-id: 1679558926
date: Mon, 12 Sep 2022 00:54:32 GMT
alt-svc: h3=":443"; ma=86400,h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
schoolplusplus.org/wp-content/uploads/2022/02/PastedGraphic-1-80x80.png
200 OK 3.7 kB URL HTTP/2 schoolplusplus.org/wp-content/uploads/2022/02/PastedGraphic-1-80x80.png
IP
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type PNG image data, 80 x 80, 8-bit/color RGBA, non-interlaced\012- data
Hash ce6417fc64d799c5a2e735a1a6a39549
4104949ed9de107f5432565406dd62f50eb56c14
7264979e5568116a217bff42442a63f8d8d7c8b79c10fdc5a097917d091e89fe
GET /wp-content/uploads/2022/02/PastedGraphic-1-80x80.png HTTP/1.1
Host: schoolplusplus.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://schoolplusplus.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
last-modified: Sat, 26 Feb 2022 06:15:48 GMT
accept-ranges: bytes
content-length: 3749
cache-control: max-age=31536000
expires: Tue, 12 Sep 2023 00:54:32 GMT
x-endurance-cache-level: 2
x-nginx-cache: WordPress
content-type: image/png
date: Mon, 12 Sep 2022 00:54:32 GMT
server: Apache
X-Firefox-Spdy: h2
schoolplusplus.org/wp-content/uploads/2022/02/PastedGraphic-1-300x300.png
200 OK 23 kB URL HTTP/2 schoolplusplus.org/wp-content/uploads/2022/02/PastedGraphic-1-300x300.png
IP
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type PNG image data, 300 x 300, 8-bit/color RGBA, non-interlaced\012- data
Hash c6c31f47b755e321cd760a6791d9dd89
6e1ccfaa3fd07f3214233f07a66a6f0687b78e0e
35366d1c7d9795d9a98b6e1834284c35e2d49ca7259f017dad0da8c8f83364ba
GET /wp-content/uploads/2022/02/PastedGraphic-1-300x300.png HTTP/1.1
Host: schoolplusplus.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://schoolplusplus.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
last-modified: Sat, 26 Feb 2022 06:15:48 GMT
accept-ranges: bytes
content-length: 22566
cache-control: max-age=31536000
expires: Tue, 12 Sep 2023 00:54:32 GMT
x-endurance-cache-level: 2
x-nginx-cache: WordPress
content-type: image/png
date: Mon, 12 Sep 2022 00:54:32 GMT
server: Apache
X-Firefox-Spdy: h2
schoolplusplus.org/?wc-ajax=get_refreshed_fragments
200 OK 1.0 kB URL HTTP/1.1 schoolplusplus.org/?wc-ajax=get_refreshed_fragments
IP
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type HTML document, ASCII text
Hash 9db08c71bf45a0460239a01a797c3d0c
2eb2245aa4607fa10a49ab85be7f41929b7db8ac
e478daf351fbe51ef73d312f5e1d7fabd73cb7e41b01980914dfff842fb0916d
Analyzer Verdict Alert fortinet Phishing
POST /?wc-ajax=get_refreshed_fragments HTTP/1.1
Host: schoolplusplus.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/x-www-form-urlencoded; charset=UTF-8
X-Requested-With: XMLHttpRequest
Content-Length: 18
Origin: http://schoolplusplus.org
Connection: keep-alive
Referer: http://schoolplusplus.org/BDO/sso/login.php
HTTP/1.1 200 OK
Date: Mon, 12 Sep 2022 00:54:32 GMT
Server: Apache
Expires: Wed, 11 Jan 1984 05:00:00 GMT
Cache-Control: no-cache, must-revalidate, max-age=0
Vary: Accept-Encoding
Content-Encoding: gzip
X-Endurance-Cache-Level: 2
X-nginx-cache: WordPress
Content-Length: 1024
Keep-Alive: timeout=5, max=62
Connection: Keep-Alive
Content-Type: text/html; charset=UTF-8
static.xx.fbcdn.net/rsrc.php/v3/yX/l/0,cross/WmJr1_luoTx.css?_nc_x=Ij3Wp8lg5Kz
200 OK 5.3 kB URL HTTP/2 static.xx.fbcdn.net/rsrc.php/v3/yX/l/0,cross/WmJr1_luoTx.css?_nc_x=Ij3Wp8lg5Kz
IP
File type ASCII text, with very long lines (4093)
Hash 53d721865684811f74e6287d461271da
b8ea226e9f320b4a3f57fb9618b905322962ff11
e5c8dd9b49d068bf6f08d3ca93a0bb2d31c6fd1067c3f878a630aa1f36abeaaf
GET /rsrc.php/v3/yX/l/0,cross/WmJr1_luoTx.css?_nc_x=Ij3Wp8lg5Kz HTTP/1.1
Host: static.xx.fbcdn.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.facebook.com
Connection: keep-alive
Referer: https://www.facebook.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-encoding: br
content-type: text/css; charset=utf-8
last-modified: Mon, 01 Jan 2001 08:00:00 GMT
expires: Mon, 11 Sep 2023 17:30:34 GMT
cache-control: public,max-age=31536000,immutable
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
timing-allow-origin: *
content-md5: U9chhlaEgR905ih9RhJx2g==
x-fb-debug: inN9XQjNgp8zj0IFRbOGpfcHjM5sOVIZOocFNRFjVooWp/Xg5N6OD5oyrgBVfNCcvtq+EyNfyZa+Eb7YJUyN5g==
content-length: 5342
x-fb-trip-id: 1679558926
date: Mon, 12 Sep 2022 00:54:35 GMT
access-control-allow-origin: https://www.facebook.com
vary: Origin
alt-svc: h3=":443"; ma=86400,h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
static.xx.fbcdn.net/rsrc.php/v3/yt/l/0,cross/jvLHw-JmSOd.css?_nc_x=Ij3Wp8lg5Kz
200 OK 4.8 kB URL HTTP/2 static.xx.fbcdn.net/rsrc.php/v3/yt/l/0,cross/jvLHw-JmSOd.css?_nc_x=Ij3Wp8lg5Kz
IP
File type assembler source, ASCII text, with very long lines (2642)
Hash d28393d2839f089b584f62a931d65552
1e8d3e17738673040c305ba4b0bc4d3260b3d7d9
0609599ec56496f96676b871dede4c00e48a41bae6ac2119cd9cf7123f61521b
GET /rsrc.php/v3/yt/l/0,cross/jvLHw-JmSOd.css?_nc_x=Ij3Wp8lg5Kz HTTP/1.1
Host: static.xx.fbcdn.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.facebook.com
Connection: keep-alive
Referer: https://www.facebook.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-encoding: br
content-type: text/css; charset=utf-8
last-modified: Mon, 01 Jan 2001 08:00:00 GMT
expires: Mon, 11 Sep 2023 17:41:45 GMT
cache-control: public,max-age=31536000,immutable
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
timing-allow-origin: *
content-md5: 0oOT0oOfCJtYT2KpMdZVUg==
x-fb-debug: tmXfkTc+o3WMg5IeplxJ8rDxRmKJD9s5ICtf2rlDLCfT6QNcyVpsAqxGkK5N/o3CqLwCWWgnDLrJtNwXlZWGeQ==
priority: u=3,i
content-length: 4768
x-fb-trip-id: 1679558926
date: Mon, 12 Sep 2022 00:54:35 GMT
access-control-allow-origin: https://www.facebook.com
vary: Origin
alt-svc: h3=":443"; ma=86400,h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
static.xx.fbcdn.net/rsrc.php/v3/ys/l/0,cross/4_8X-2u0CDc.css?_nc_x=Ij3Wp8lg5Kz
200 OK 827 B URL HTTP/2 static.xx.fbcdn.net/rsrc.php/v3/ys/l/0,cross/4_8X-2u0CDc.css?_nc_x=Ij3Wp8lg5Kz
IP
File type ASCII text, with very long lines (724)
Hash 29973cf3b0ef9f16fe31ed981b2f6573
f22eb80b89b5e0ae9ace854aab6676d56eaef6a1
476822c80e0a0ee078edb7a74db59378f8b1d43d2de844e28a9e9c2f68a4c8d8
GET /rsrc.php/v3/ys/l/0,cross/4_8X-2u0CDc.css?_nc_x=Ij3Wp8lg5Kz HTTP/1.1
Host: static.xx.fbcdn.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.facebook.com
Connection: keep-alive
Referer: https://www.facebook.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-encoding: br
content-type: text/css; charset=utf-8
last-modified: Mon, 01 Jan 2001 08:00:00 GMT
expires: Mon, 11 Sep 2023 01:37:14 GMT
cache-control: public,max-age=31536000,immutable
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
timing-allow-origin: *
content-md5: KZc887Dvnxb+Me2YGy9lcw==
x-fb-debug: J76KZ7MIaG1WhOgdxMnU+bXxxoWUIgiX37FVFVHDsWMFmgPYtTQyiboxzc18qJkuGokCNkxSoV3uy6uswzXmPQ==
content-length: 827
x-fb-trip-id: 1679558926
date: Mon, 12 Sep 2022 00:54:35 GMT
access-control-allow-origin: https://www.facebook.com
vary: Origin
alt-svc: h3=":443"; ma=86400,h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
static.xx.fbcdn.net/rsrc.php/v3/yH/r/Y88lOwaPq4F.js?_nc_x=Ij3Wp8lg5Kz
200 OK 91 kB URL HTTP/2 static.xx.fbcdn.net/rsrc.php/v3/yH/r/Y88lOwaPq4F.js?_nc_x=Ij3Wp8lg5Kz
IP
File type ASCII text, with very long lines (18501)
Hash e712b0060a23b6c5ede3b67e0bb8639e
faf1f8ee5d679c27fb0fd418f63cf7d851344d26
0efe6b239b3fb45de4071c337078b2b43696cdccdf01024f527af941701239fd
GET /rsrc.php/v3/yH/r/Y88lOwaPq4F.js?_nc_x=Ij3Wp8lg5Kz HTTP/1.1
Host: static.xx.fbcdn.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.facebook.com
Connection: keep-alive
Referer: https://www.facebook.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-encoding: br
content-type: application/x-javascript; charset=utf-8
last-modified: Mon, 01 Jan 2001 08:00:00 GMT
expires: Mon, 11 Sep 2023 03:30:01 GMT
cache-control: public,max-age=31536000,immutable
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
timing-allow-origin: *
content-md5: 5xKwBgojtsXt47Z+C7hjng==
x-fb-debug: 3c0szJoPJlw3vjUpY97f7O7xkRYg1sm5oRSI3yfowVeJWTVbFZE/6e7l9rVCMDvSXmxGXtVhnpsTmkqZudUKqQ==
priority: u=3,i
content-length: 90711
x-fb-trip-id: 1679558926
date: Mon, 12 Sep 2022 00:54:35 GMT
access-control-allow-origin: https://www.facebook.com
vary: Origin
alt-svc: h3=":443"; ma=86400,h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
static.xx.fbcdn.net/rsrc.php/v3/yN/r/mXu1RunczE9.js?_nc_x=Ij3Wp8lg5Kz
200 OK 12 kB URL HTTP/2 static.xx.fbcdn.net/rsrc.php/v3/yN/r/mXu1RunczE9.js?_nc_x=Ij3Wp8lg5Kz
IP
File type ASCII text, with very long lines (5261)
Hash 6059f2908fc78af36d89f372311116ef
431905421a858f26f5624203b0ecae7b6d8c6c42
33ba2a807c3a7a85d489d24e1a843c4361a791492fdbe68e471d2064155467f0
GET /rsrc.php/v3/yN/r/mXu1RunczE9.js?_nc_x=Ij3Wp8lg5Kz HTTP/1.1
Host: static.xx.fbcdn.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.facebook.com
Connection: keep-alive
Referer: https://www.facebook.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-encoding: br
content-type: application/x-javascript; charset=utf-8
last-modified: Mon, 01 Jan 2001 08:00:00 GMT
expires: Mon, 11 Sep 2023 01:40:11 GMT
cache-control: public,max-age=31536000,immutable
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
timing-allow-origin: *
content-md5: YFnykI/HivNtifNyMREW7w==
x-fb-debug: XY7hTNsHQVg4WmMiknDOY8p46PgjKqNyZr0zZFrXIZVUMCXxYI04B1QnT9wGtBq3l2Kcary5RdcB8gguz65EjQ==
content-length: 12179
x-fb-trip-id: 1679558926
date: Mon, 12 Sep 2022 00:54:35 GMT
access-control-allow-origin: https://www.facebook.com
vary: Origin
alt-svc: h3=":443"; ma=86400,h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
static.xx.fbcdn.net/rsrc.php/v3/yx/r/9QJEUDJuAYR.js?_nc_x=Ij3Wp8lg5Kz
200 OK 16 kB URL HTTP/2 static.xx.fbcdn.net/rsrc.php/v3/yx/r/9QJEUDJuAYR.js?_nc_x=Ij3Wp8lg5Kz
IP
File type C source, ASCII text, with very long lines (7299)
Hash 1626e8e828598e06ccd0c47e55b42304
af5c62af35bf22b593fdbe758a2feea6bc1b057f
3798dbb7df2694a222f65f4cadc92e6d133fc8f5fc2b00f326df521cd0c24b25
GET /rsrc.php/v3/yx/r/9QJEUDJuAYR.js?_nc_x=Ij3Wp8lg5Kz HTTP/1.1
Host: static.xx.fbcdn.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.facebook.com
Connection: keep-alive
Referer: https://www.facebook.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-encoding: br
content-type: application/x-javascript; charset=utf-8
last-modified: Mon, 01 Jan 2001 08:00:00 GMT
expires: Sun, 10 Sep 2023 23:17:01 GMT
cache-control: public,max-age=31536000,immutable
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
timing-allow-origin: *
content-md5: Fibo6ChZjgbM0MR+VbQjBA==
x-fb-debug: WZ717luA04eC0w9/UftRjzgVoR53s4cLWDM5YQJJl1SlHzDZq1EPRlrPMKpwUP59alRadSFaFlKs2dUrV42AgQ==
priority: u=3,i
content-length: 15844
x-fb-trip-id: 1679558926
date: Mon, 12 Sep 2022 00:54:35 GMT
access-control-allow-origin: https://www.facebook.com
vary: Origin
alt-svc: h3=":443"; ma=86400,h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
static.xx.fbcdn.net/rsrc.php/v3iEpO4/yp/l/en_US/oRoYJ5VcosS.js?_nc_x=Ij3Wp8lg5Kz
200 OK 23 kB URL HTTP/2 static.xx.fbcdn.net/rsrc.php/v3iEpO4/yp/l/en_US/oRoYJ5VcosS.js?_nc_x=Ij3Wp8lg5Kz
IP
File type ASCII text, with very long lines (41977)
Hash 3ce46348c6edab150e0c6f8ce7cd0a0d
6aea70ed9afc6f514f89c0bca5a99f04c331bc24
8ac7aadd7e52746a466b2721699b1430ab4360c52d4c73dab9f51a849b73857d
GET /rsrc.php/v3iEpO4/yp/l/en_US/oRoYJ5VcosS.js?_nc_x=Ij3Wp8lg5Kz HTTP/1.1
Host: static.xx.fbcdn.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.facebook.com
Connection: keep-alive
Referer: https://www.facebook.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-encoding: br
content-type: application/x-javascript; charset=utf-8
last-modified: Mon, 01 Jan 2001 08:00:00 GMT
expires: Mon, 11 Sep 2023 01:41:57 GMT
cache-control: public,max-age=31536000,immutable
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
timing-allow-origin: *
content-md5: PORjSMbtqxUODG+M580KDQ==
x-fb-debug: NJQ12ZDBP34ZnXN4ZFSYVG844c14KE5zOeWLLhrmdptBmTh0Wtnh6A7qedPmNfkMESEwQvbFqZOlH0WpxqwSvQ==
priority: u=3,i
content-length: 23301
x-fb-trip-id: 1679558926
date: Mon, 12 Sep 2022 00:54:35 GMT
access-control-allow-origin: https://www.facebook.com
vary: Origin
alt-svc: h3=":443"; ma=86400,h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
static.xx.fbcdn.net/rsrc.php/v3/yv/r/GG1Y0sYc7My.js?_nc_x=Ij3Wp8lg5Kz
200 OK 1.7 kB URL HTTP/2 static.xx.fbcdn.net/rsrc.php/v3/yv/r/GG1Y0sYc7My.js?_nc_x=Ij3Wp8lg5Kz
IP
File type ASCII text, with very long lines (1984)
Hash 16f083b23b565db9d2f20d1ad75933c1
6d74ad139c96b1e3fc9d541419788b5b4893ec9a
36b909cd9132a8996a1bbb221d05217c31506a6951bb408deeea6aa612dc4200
GET /rsrc.php/v3/yv/r/GG1Y0sYc7My.js?_nc_x=Ij3Wp8lg5Kz HTTP/1.1
Host: static.xx.fbcdn.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.facebook.com
Connection: keep-alive
Referer: https://www.facebook.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-encoding: br
content-type: application/x-javascript; charset=utf-8
last-modified: Mon, 01 Jan 2001 08:00:00 GMT
expires: Sun, 10 Sep 2023 03:49:09 GMT
cache-control: public,max-age=31536000,immutable
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
timing-allow-origin: *
content-md5: FvCDsjtWXbnS8g0a11kzwQ==
x-fb-debug: 1H+cs2lMev1HBpUeTCn8T+bIDVJP2spw0fwEFk5T7AOI7KfQoYsEmOnrz3Rcq60MjlVAxmuaZVBSKR5GO2225w==
priority: u=3,i
content-length: 1657
x-fb-trip-id: 1679558926
date: Mon, 12 Sep 2022 00:54:35 GMT
access-control-allow-origin: https://www.facebook.com
vary: Origin
alt-svc: h3=":443"; ma=86400,h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
static.xx.fbcdn.net/rsrc.php/v3/yW/r/Q803oB3qh7E.js?_nc_x=Ij3Wp8lg5Kz
200 OK 5.3 kB URL HTTP/2 static.xx.fbcdn.net/rsrc.php/v3/yW/r/Q803oB3qh7E.js?_nc_x=Ij3Wp8lg5Kz
IP
File type C source, ASCII text, with very long lines (10494)
Hash 5147a91026eb0a41141218ad62e2e72a
8cec73d57cd4fb37077c129be8fa3ad6fddeefc3
a22d9bc10f94a9077dcb281484bb35f938b60013387898c4ca917c1cb8f991ec
GET /rsrc.php/v3/yW/r/Q803oB3qh7E.js?_nc_x=Ij3Wp8lg5Kz HTTP/1.1
Host: static.xx.fbcdn.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.facebook.com
Connection: keep-alive
Referer: https://www.facebook.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-encoding: br
content-type: application/x-javascript; charset=utf-8
last-modified: Mon, 01 Jan 2001 08:00:00 GMT
expires: Mon, 11 Sep 2023 07:09:01 GMT
cache-control: public,max-age=31536000,immutable
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
timing-allow-origin: *
content-md5: UUepECbrCkEUEhitYuLnKg==
x-fb-debug: 5UUZUVEhXQiT4etL4yLwVMHik/LD4dp0pF5dgGDLUnBGtY4rMTjRuuIEmM8N+cXNGNhglZDseT1ewLy5patwYg==
content-length: 5331
x-fb-trip-id: 1679558926
date: Mon, 12 Sep 2022 00:54:35 GMT
access-control-allow-origin: https://www.facebook.com
vary: Origin
alt-svc: h3=":443"; ma=86400,h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
static.xx.fbcdn.net/rsrc.php/v3/yV/r/oDVETVg4GJv.js?_nc_x=Ij3Wp8lg5Kz
200 OK 7.2 kB URL HTTP/2 static.xx.fbcdn.net/rsrc.php/v3/yV/r/oDVETVg4GJv.js?_nc_x=Ij3Wp8lg5Kz
IP
File type ASCII text, with very long lines (4061)
Hash d1ba68f146b01f4aef60d79aadb926ea
c6b4703c25d07fd2363e5d67d11e4846d9979b26
abbff04acf96f39a3121ed97505b5a23cbeee9057dd7040c58c4e423c899805d
GET /rsrc.php/v3/yV/r/oDVETVg4GJv.js?_nc_x=Ij3Wp8lg5Kz HTTP/1.1
Host: static.xx.fbcdn.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.facebook.com
Connection: keep-alive
Referer: https://www.facebook.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-encoding: br
content-type: application/x-javascript; charset=utf-8
last-modified: Mon, 01 Jan 2001 08:00:00 GMT
expires: Mon, 11 Sep 2023 03:18:20 GMT
cache-control: public,max-age=31536000,immutable
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
timing-allow-origin: *
content-md5: 0bpo8UawH0rvYNearbkm6g==
x-fb-debug: AxuBRMeecTqjG7KRWPqbLid14yKdY3m8h2KqMlAi9Ts8Zer7pJ2yodNVaiI5ulOtBZKd+VnBPzEaOc8SX9rrgg==
content-length: 7236
x-fb-trip-id: 1679558926
date: Mon, 12 Sep 2022 00:54:35 GMT
access-control-allow-origin: https://www.facebook.com
vary: Origin
alt-svc: h3=":443"; ma=86400,h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
static.xx.fbcdn.net/rsrc.php/v3iLl54/yY/l/en_US/aNjKFj6YixL.js?_nc_x=Ij3Wp8lg5Kz
200 OK 8.4 kB URL HTTP/2 static.xx.fbcdn.net/rsrc.php/v3iLl54/yY/l/en_US/aNjKFj6YixL.js?_nc_x=Ij3Wp8lg5Kz
IP
File type ASCII text, with very long lines (2905)
Hash a7e668c44c1c44a7eb82bf24800ff5e9
6f2393e5cf5ef26d6a6d661b7856ffcd273a63a6
ad110540fa27e40a9cf3de4aa42ca9632f03a622b73fe41b19f633fe81d6eaea
GET /rsrc.php/v3iLl54/yY/l/en_US/aNjKFj6YixL.js?_nc_x=Ij3Wp8lg5Kz HTTP/1.1
Host: static.xx.fbcdn.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.facebook.com
Connection: keep-alive
Referer: https://www.facebook.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-encoding: br
content-type: application/x-javascript; charset=utf-8
last-modified: Mon, 01 Jan 2001 08:00:00 GMT
expires: Sun, 10 Sep 2023 04:01:40 GMT
cache-control: public,max-age=31536000,immutable
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
timing-allow-origin: *
content-md5: p+ZoxEwcRKfrgr8kgA/16Q==
x-fb-debug: OXe2utu+T2tst3AhpXTyKaLDMHMngJlMYkXFjBOu0Eu8t+yvQTVlWrsPa4W6ugyVtyAm258OFEt+G6g/fYh6oQ==
content-length: 8358
x-fb-trip-id: 1679558926
date: Mon, 12 Sep 2022 00:54:35 GMT
access-control-allow-origin: https://www.facebook.com
vary: Origin
alt-svc: h3=":443"; ma=86400,h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
static.xx.fbcdn.net/rsrc.php/v3/y9/r/JGf8H9KH1mW.js?_nc_x=Ij3Wp8lg5Kz
200 OK 9.0 kB URL HTTP/2 static.xx.fbcdn.net/rsrc.php/v3/y9/r/JGf8H9KH1mW.js?_nc_x=Ij3Wp8lg5Kz
IP
File type ASCII text, with very long lines (9886)
Hash 12ee8cecac4344f91112c41bde25523c
ac8ea8f8b40bbaf2cf932ffdf67abb8b14d7ce0d
0558ee7b9742c0bdede937d19d585eec41b4011b9989f47264464eecb46caaa2
GET /rsrc.php/v3/y9/r/JGf8H9KH1mW.js?_nc_x=Ij3Wp8lg5Kz HTTP/1.1
Host: static.xx.fbcdn.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.facebook.com
Connection: keep-alive
Referer: https://www.facebook.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-encoding: br
content-type: application/x-javascript; charset=utf-8
last-modified: Mon, 01 Jan 2001 08:00:00 GMT
expires: Mon, 11 Sep 2023 01:41:21 GMT
cache-control: public,max-age=31536000,immutable
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
timing-allow-origin: *
content-md5: Eu6M7KxDRPkREsQb3iVSPA==
x-fb-debug: mW89nwJcufv+cLN1k3e/fHvPIMYAiy1kKhinQ/UNsGjhKy3/LlF4QLMGhKDpLF+3Nki6+I71MVUxkm/yZkqV2g==
content-length: 9040
x-fb-trip-id: 1679558926
date: Mon, 12 Sep 2022 00:54:35 GMT
access-control-allow-origin: https://www.facebook.com
vary: Origin
alt-svc: h3=":443"; ma=86400,h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
static.xx.fbcdn.net/rsrc.php/v3/yF/r/p55HfXW__mM.js?_nc_x=Ij3Wp8lg5Kz
200 OK 338 B URL HTTP/2 static.xx.fbcdn.net/rsrc.php/v3/yF/r/p55HfXW__mM.js?_nc_x=Ij3Wp8lg5Kz
IP
File type ASCII text, with very long lines (327)
Hash 76f593e842677f73cd0a06232874b2c3
25a13f79478d5a0e286a2299dca2f3b296463079
74dcbe026002f10b703960a500b50dabe518862e568a9e689dec7afa243fa44d
GET /rsrc.php/v3/yF/r/p55HfXW__mM.js?_nc_x=Ij3Wp8lg5Kz HTTP/1.1
Host: static.xx.fbcdn.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.facebook.com
Connection: keep-alive
Referer: https://www.facebook.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-encoding: br
content-type: application/x-javascript; charset=utf-8
last-modified: Mon, 01 Jan 2001 08:00:00 GMT
expires: Mon, 11 Sep 2023 03:40:09 GMT
cache-control: public,max-age=31536000,immutable
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
timing-allow-origin: *
content-md5: dvWT6EJnf3PNCgYjKHSyww==
x-fb-debug: yvcHQcHgQfrcN31QwueWw7eqsNpNbWtAvIIpRMNbc1EWD9EWLcTQ586PSUdvC7roJbEBWK8NJm/xMHyMmQTyNw==
content-length: 338
x-fb-trip-id: 1679558926
date: Mon, 12 Sep 2022 00:54:35 GMT
access-control-allow-origin: https://www.facebook.com
vary: Origin
alt-svc: h3=":443"; ma=86400,h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
static.xx.fbcdn.net/rsrc.php/v3/yR/r/N_MW1kRCyhn.js?_nc_x=Ij3Wp8lg5Kz
200 OK 17 kB URL HTTP/2 static.xx.fbcdn.net/rsrc.php/v3/yR/r/N_MW1kRCyhn.js?_nc_x=Ij3Wp8lg5Kz
IP
File type ASCII text, with very long lines (15785)
Hash e423951a1073c1d0d84d7a02f3427cf0
2572cdf0b594ff3c8300b5ecf8604900d8ffa47c
1ade21acc50b2a79acb466210116676ed7197c87a192375f1968a60f929ca271
GET /rsrc.php/v3/yR/r/N_MW1kRCyhn.js?_nc_x=Ij3Wp8lg5Kz HTTP/1.1
Host: static.xx.fbcdn.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.facebook.com
Connection: keep-alive
Referer: https://www.facebook.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-encoding: br
content-type: application/x-javascript; charset=utf-8
last-modified: Mon, 01 Jan 2001 08:00:00 GMT
expires: Sun, 10 Sep 2023 03:36:06 GMT
cache-control: public,max-age=31536000,immutable
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
timing-allow-origin: *
content-md5: 5COVGhBzwdDYTXoC80J88A==
x-fb-debug: UffFG2e6YpCKlWRT5lWaFbBLDUXkfLTSmhjOcvyCtzDpp0EdpqNRiaMIhXgaNscYDV/9OpGVHSB0j+eMhwa9fg==
priority: u=1,i
content-length: 16587
x-fb-trip-id: 1679558926
date: Mon, 12 Sep 2022 00:54:35 GMT
access-control-allow-origin: https://www.facebook.com
vary: Origin
alt-svc: h3=":443"; ma=86400,h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
static.xx.fbcdn.net/rsrc.php/v3/yV/r/vHZyEidsmJa.js?_nc_x=Ij3Wp8lg5Kz
200 OK 5.4 kB URL HTTP/2 static.xx.fbcdn.net/rsrc.php/v3/yV/r/vHZyEidsmJa.js?_nc_x=Ij3Wp8lg5Kz
IP
File type C source, ASCII text, with very long lines (4651)
Hash a5a41590da4dfacf01a0c8445ab7e8b1
b15fcae1815ede96b5e46c7313931055d256187c
1daa60c671f0f35b2a41daa185b60d608403caed1fe6da1d7facabc3d69b9ae0
GET /rsrc.php/v3/yV/r/vHZyEidsmJa.js?_nc_x=Ij3Wp8lg5Kz HTTP/1.1
Host: static.xx.fbcdn.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.facebook.com
Connection: keep-alive
Referer: https://www.facebook.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-encoding: br
content-type: application/x-javascript; charset=utf-8
last-modified: Mon, 01 Jan 2001 08:00:00 GMT
expires: Sun, 10 Sep 2023 04:03:13 GMT
cache-control: public,max-age=31536000,immutable
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
timing-allow-origin: *
content-md5: paQVkNpN+s8BoMhEWrfosQ==
x-fb-debug: 6offnT5fNruR9rMdTqQIJKJ2gR/ns/s+OrbWA/6tpc1eANDjigW2di/nBIcDte1NVZDeHtvl6x9fPD8+CjE4NA==
priority: u=3,i
content-length: 5394
x-fb-trip-id: 1679558926
date: Mon, 12 Sep 2022 00:54:35 GMT
access-control-allow-origin: https://www.facebook.com
vary: Origin
alt-svc: h3=":443"; ma=86400,h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
static.xx.fbcdn.net/rsrc.php/v3/yW/r/fv01GgFyHvv.js?_nc_x=Ij3Wp8lg5Kz
200 OK 1.2 kB URL HTTP/2 static.xx.fbcdn.net/rsrc.php/v3/yW/r/fv01GgFyHvv.js?_nc_x=Ij3Wp8lg5Kz
IP
File type ASCII text, with very long lines (1336)
Hash 90e090bf994bd10c85c30eaa2402717f
2ebc3faa6e16268d1b7ac955aa714726daffdee6
69fcc662bcd86aae71f2ff6d483f112bdb264581e39c7bf101c48dc86c7cd522
GET /rsrc.php/v3/yW/r/fv01GgFyHvv.js?_nc_x=Ij3Wp8lg5Kz HTTP/1.1
Host: static.xx.fbcdn.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.facebook.com
Connection: keep-alive
Referer: https://www.facebook.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-encoding: br
content-type: application/x-javascript; charset=utf-8
last-modified: Mon, 01 Jan 2001 08:00:00 GMT
expires: Mon, 11 Sep 2023 01:51:49 GMT
cache-control: public,max-age=31536000,immutable
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
timing-allow-origin: *
content-md5: kOCQv5lL0QyFww6qJAJxfw==
x-fb-debug: OHovHbPyGAGIhKr4Q7VJRSiKFG7GcmFH0d60vx95z3+Mtk+6kytSeWxpMQH12zj8/Fsqwcs2EdEyF6p2RcJjNQ==
priority: u=3,i
content-length: 1208
x-fb-trip-id: 1679558926
date: Mon, 12 Sep 2022 00:54:35 GMT
access-control-allow-origin: https://www.facebook.com
vary: Origin
alt-svc: h3=":443"; ma=86400,h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
static-exp1.licdn.com/sc/h/1f0o8asarfspok2zpu5dl86by
200 OK 0 B URL HTTP/2 static-exp1.licdn.com/sc/h/1f0o8asarfspok2zpu5dl86by
IP
ASN #20940 Akamai International B.V.
GET /sc/h/1f0o8asarfspok2zpu5dl86by HTTP/1.1
Host: static-exp1.licdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.linkedin.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: Play
expires: Fri, 21 Jul 2023 08:02:48 GMT
cache-control: max-age=31536000, immutable
last-modified: Mon, 05 Nov 2012 04:00:51 GMT
x-li-static-content: 1
content-type: text/javascript
x-fs-uuid: 0005e44c24b467b23b2bcbfa6d1a6165
x-li-fabric: prod-ltx1
x-li-pop: prod-ltx1-x
x-li-proto: http/1.1
access-control-expose-headers: X-CDN, X-CDN-Client-IP-Version, X-CDN-Proto, X-Cache, X-CDN-RCODE
x-li-uuid: AAXkTCS0Z7I7K8v6bRphZQ==
remote-cache-status: TCP_HIT, TCP_HIT, TCP_HIT
vary: Accept-Encoding
content-encoding: gzip
date: Mon, 12 Sep 2022 00:54:31 GMT
x-cache: TCP_HIT
x-cdn-proto: HTTP2
x-cdn-client-ip-version: IPV4
timing-allow-origin: *
access-control-allow-origin: *
x-cdn: AKAM
X-Firefox-Spdy: h2
www.facebook.com/v13.0/plugins/page.php?adapt_container_width=true&app_id=&channel=https%3A%2F%2Fstaticxx.facebook.com%2Fx%2Fconnect%2Fxd_arbiter%2F%3Fversion%3D46%23cb%3Df58781234ac998%26domain%3Dschoolplusplus.org%26is_canvas%3Dfalse%26origin%3Dhttp%253A%252F%252Fschoolplusplus.org%252Ff1d56f0e3b753a4%26relation%3Dparent.parent&container_width=231&height=500&hide_cover=false&href=https%3A%2F%2Fwww.facebook.com%2FSchoolplusplus-102287062399348&locale=en_US&sdk=joey&show_facepile=true&show_posts=true&small_header=false&width=600
200 OK 0 B URL HTTP/2 www.facebook.com/v13.0/plugins/page.php?adapt_container_width=true&app_id=&channel=https%3A%2F%2Fstaticxx.facebook.com%2Fx%2Fconnect%2Fxd_arbiter%2F%3Fversion%3D46%23cb%3Df58781234ac998%26domain%3Dschoolplusplus.org%26is_canvas%3Dfalse%26origin%3Dhttp%253A%252F%252Fschoolplusplus.org%252Ff1d56f0e3b753a4%26relation%3Dparent.parent&container_width=231&height=500&hide_cover=false&href=https%3A%2F%2Fwww.facebook.com%2FSchoolplusplus-102287062399348&locale=en_US&sdk=joey&show_facepile=true&show_posts=true&small_header=false&width=600
IP
GET /v13.0/plugins/page.php?adapt_container_width=true&app_id=&channel=https%3A%2F%2Fstaticxx.facebook.com%2Fx%2Fconnect%2Fxd_arbiter%2F%3Fversion%3D46%23cb%3Df58781234ac998%26domain%3Dschoolplusplus.org%26is_canvas%3Dfalse%26origin%3Dhttp%253A%252F%252Fschoolplusplus.org%252Ff1d56f0e3b753a4%26relation%3Dparent.parent&container_width=231&height=500&hide_cover=false&href=https%3A%2F%2Fwww.facebook.com%2FSchoolplusplus-102287062399348&locale=en_US&sdk=joey&show_facepile=true&show_posts=true&small_header=false&width=600 HTTP/1.1
Host: www.facebook.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://schoolplusplus.org/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
vary: Accept-Encoding
content-encoding: br
report-to: {"max_age":259200,"endpoints":[{"url":"https:\/\/www.facebook.com\/ajax\/browser_error_reports\/?device_level=unknown"}]}
content-security-policy-report-only: default-src data: blob: 'self' https://*.fbsbx.com 'unsafe-inline' *.facebook.com 'unsafe-eval' *.fbcdn.net;script-src *.facebook.com *.fbcdn.net *.facebook.net *.google-analytics.com *.google.com 127.0.0.1:* 'unsafe-inline' 'unsafe-eval' blob: data: 'self' connect.facebook.net;style-src fonts.googleapis.com *.fbcdn.net data: *.facebook.com 'unsafe-inline';connect-src *.facebook.com facebook.com *.fbcdn.net *.facebook.net wss://*.facebook.com:* wss://*.whatsapp.com:* wss://*.fbcdn.net attachment.fbsbx.com ws://localhost:* blob: *.cdninstagram.com 'self' wss://gateway.facebook.com wss://edge-chat.facebook.com wss://snaptu-d.facebook.com wss://kaios-d.facebook.com/ v.whatsapp.net *.fbsbx.com *.fb.com;font-src data: *.gstatic.com *.facebook.com *.fbcdn.net *.fbsbx.com;img-src *.fbcdn.net *.facebook.com data: https://*.fbsbx.com *.tenor.co media.tenor.com facebook.com *.cdninstagram.com fbsbx.com fbcdn.net *.giphy.com connect.facebook.net *.carriersignal.info blob: android-webview-video-poster: googleads.g.doubleclick.net www.googleadservices.com *.whatsapp.net *.fb.com *.oculuscdn.com;media-src *.cdninstagram.com blob: *.fbcdn.net *.fbsbx.com www.facebook.com *.facebook.com https://*.giphy.com data:;frame-src *.doubleclick.net *.google.com *.facebook.com www.googleadservices.com *.fbsbx.com fbsbx.com data: www.instagram.com *.fbcdn.net https://paywithmybank.com;worker-src blob: *.facebook.com data:;report-uri https://www.facebook.com/csp/reporting/?minimize=0;
content-security-policy: default-src data: blob: 'self' https://*.fbsbx.com 'unsafe-inline' *.facebook.com 'unsafe-eval' *.fbcdn.net;script-src *.facebook.com *.fbcdn.net *.facebook.net *.google-analytics.com *.google.com 127.0.0.1:* 'unsafe-inline' 'unsafe-eval' blob: data: 'self' connect.facebook.net;style-src fonts.googleapis.com *.fbcdn.net data: *.facebook.com 'unsafe-inline';connect-src *.facebook.com facebook.com *.fbcdn.net *.facebook.net wss://*.facebook.com:* wss://*.whatsapp.com:* wss://*.fbcdn.net attachment.fbsbx.com ws://localhost:* blob: *.cdninstagram.com 'self' wss://gateway.facebook.com wss://edge-chat.facebook.com wss://snaptu-d.facebook.com wss://kaios-d.facebook.com/ v.whatsapp.net *.fbsbx.com *.fb.com;font-src data: *.gstatic.com *.facebook.com *.fbcdn.net *.fbsbx.com;img-src *.fbcdn.net *.facebook.com data: https://*.fbsbx.com *.tenor.co media.tenor.com facebook.com *.cdninstagram.com fbsbx.com fbcdn.net *.giphy.com connect.facebook.net *.carriersignal.info blob: android-webview-video-poster: googleads.g.doubleclick.net www.googleadservices.com *.whatsapp.net *.fb.com *.oculuscdn.com;media-src *.cdninstagram.com blob: *.fbcdn.net *.fbsbx.com www.facebook.com *.facebook.com https://*.giphy.com data:;frame-src *.doubleclick.net *.google.com *.facebook.com www.googleadservices.com *.fbsbx.com fbsbx.com data: www.instagram.com *.fbcdn.net https://paywithmybank.com;worker-src blob: *.facebook.com data:;block-all-mixed-content;upgrade-insecure-requests;
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-opener-policy: unsafe-none
pragma: no-cache
cache-control: private, no-cache, no-store, must-revalidate
expires: Sat, 01 Jan 2000 00:00:00 GMT
x-content-type-options: nosniff
x-xss-protection: 0
facebook-api-version: v13.0
strict-transport-security: max-age=15552000; preload
content-type: text/html; charset="utf-8"
x-fb-debug: GHjTFY6xOaaekvIVH2ltzm+XLjyqF4EWa2SD1bGIscJmKITzHqw9DqXNMDDyr7Mt9Y2yVQyFlVDMhGpvmhLtOw==
date: Mon, 12 Sep 2022 00:54:35 GMT
priority: u=3,i
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
static.xx.fbcdn.net/rsrc.php/v3iEBX4/y8/l/en_US/goajNvdCFcB.js?_nc_x=Ij3Wp8lg5Kz
200 OK 0 B URL HTTP/2 static.xx.fbcdn.net/rsrc.php/v3iEBX4/y8/l/en_US/goajNvdCFcB.js?_nc_x=Ij3Wp8lg5Kz
IP
GET /rsrc.php/v3iEBX4/y8/l/en_US/goajNvdCFcB.js?_nc_x=Ij3Wp8lg5Kz HTTP/1.1
Host: static.xx.fbcdn.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.facebook.com
Connection: keep-alive
Referer: https://www.facebook.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-encoding: br
content-type: application/x-javascript; charset=utf-8
last-modified: Mon, 01 Jan 2001 08:00:00 GMT
expires: Mon, 11 Sep 2023 04:12:45 GMT
cache-control: public,max-age=31536000,immutable
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
timing-allow-origin: *
content-md5: YtAYBGftOUGxufVxZYXqnA==
x-fb-debug: 7MuTvvRd1guq8iu/xdgog7LLdYcE2NZT5AbU2fIERBd4HI5tmrkeKsP5/iaHOBrWyJvalaAQknJRqKDVcjvJxg==
priority: u=3,i
content-length: 7930
x-fb-trip-id: 1679558926
date: Mon, 12 Sep 2022 00:54:35 GMT
access-control-allow-origin: https://www.facebook.com
vary: Origin
alt-svc: h3=":443"; ma=86400,h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
119.18.58.248
34.120.237.76
2.22.244.115
157.240.200.35
93.184.220.29
23.33.119.27
0.0.0.0