r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 3396075e8f2d9ceae3bd11f94111fed8
98ba4ccf6b0e38a91c69b76ac1dc07313773ed1d
e533d6bd6a8080facdff772bcbf359373dab2d5a6fe5eabe64f95e68a8cd23aa
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "E533D6BD6A8080FACDFF772BCBF359373DAB2D5A6FE5EABE64F95E68A8CD23AA"
Last-Modified: Fri, 17 Mar 2023 06:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8120
Expires: Sat, 18 Mar 2023 14:14:33 GMT
Date: Sat, 18 Mar 2023 11:59:13 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 2857be6f18459c7a4a7f00f6cd6076f1
570609086d72a9be57cde7bfefd25663c1035fba
bd8abb8f420d1e31462fca1d6a7caadf1e2bba6fc7db05684b5811e00e84107f
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "BD8ABB8F420D1E31462FCA1D6A7CAADF1E2BBA6FC7DB05684B5811E00E84107F"
Last-Modified: Fri, 17 Mar 2023 14:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=16461
Expires: Sat, 18 Mar 2023 16:33:34 GMT
Date: Sat, 18 Mar 2023 11:59:13 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
35.241.9.150200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 29fdbcd53b5646cfcdd46510063734c4
85e3ceda5ef130219f4fe8a31e52e2690c8f7d8e
24c27586332c016685e6231fec5836e921048d8aaefbcd4cd6f88969f9d91e18
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Retry-After, Content-Type, Content-Length, Backoff, Alert
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Sat, 18 Mar 2023 11:14:33 GMT
content-type: application/json
age: 2680
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash eddc2a353d39e5ce5c30d7e90b3ed6a5
305e86e4b966344c135c50af9a6509ffd3a83e9e
bd775c38c2e11f1baedde5d92ab17ceaf4c2067f8ea996595a66801758a71813
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "BD775C38C2E11F1BAEDDE5D92AB17CEAF4C2067F8EA996595A66801758A71813"
Last-Modified: Fri, 17 Mar 2023 19:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=17927
Expires: Sat, 18 Mar 2023 16:58:00 GMT
Date: Sat, 18 Mar 2023 11:59:13 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-04-30-16-53-14.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-04-30-16-53-14.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash e7bace7c1e04d44012e37ddffe36e5d5
3ac8d7c0a9d3e3f0b28b2530c7b8d8407b4042c2
6b4f80f2e95b26f6122ea8dcd0ef8d762299be822c69e839fc37581ca2bcb5f2
GET /chains/remote-settings.content-signature.mozilla.org-2023-04-30-16-53-14.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: UVDVI4GrilrtKkuXmIvFdMfdBmrrBINLev89pteAetWJaO3eN4Vv4x/DKUHpnNyXIvy2Tr1Vo8Q=
x-amz-request-id: MNHZ9ZAB14Y9Q1HW
x-amz-server-side-encryption: AES256
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Sat, 18 Mar 2023 11:57:51 GMT
age: 82
last-modified: Sat, 11 Mar 2023 16:53:15 GMT
etag: "e7bace7c1e04d44012e37ddffe36e5d5"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
www.coolkidsapparel.com/___2022/au/manage/payment.php
143.42.188.30301 Moved Permanently 0 B URL HTTP/1.1 www.coolkidsapparel.com/___2022/au/manage/payment.php
IP 143.42.188.30:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert fortinet Phishing
GET /___2022/au/manage/payment.php HTTP/1.1
Host: www.coolkidsapparel.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Date: Sat, 18 Mar 2023 11:59:13 GMT
Server: Apache/2.4.54 (Debian)
Expires: Wed, 11 Jan 1984 05:00:00 GMT
Cache-Control: no-cache, must-revalidate, max-age=0
X-Redirect-By: WordPress
Location: http://coolkidsapparel.com/___2022/au/manage/payment.php
Content-Length: 0
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/html; charset=UTF-8
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Sat, 18 Mar 2023 11:59:13 GMT
content-type: application/json
content-length: 12
access-control-allow-credentials: true
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
access-control-expose-headers: content-type
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
coolkidsapparel.com/___2022/au/manage/payment.php
143.42.188.30301 Moved Permanently 350 B URL HTTP/1.1 coolkidsapparel.com/___2022/au/manage/payment.php
IP 143.42.188.30:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash b227d765a597ac85b098e189931be292
8680e085767ccb4a24daf3ebd25c1451a4481cd6
5fdc397b9ac4e9a6fb97187ea8983165d8de7f92ba9d89e55907c0221abb2d1f
Analyzer Verdict Alert fortinet Phishing
GET /___2022/au/manage/payment.php HTTP/1.1
Host: coolkidsapparel.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Date: Sat, 18 Mar 2023 11:59:13 GMT
Server: Apache/2.4.54 (Debian)
Location: https://coolkidsapparel.com/___2022/au/manage/payment.php
Content-Length: 350
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
35.241.9.150200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Type, Retry-After, Last-Modified, Content-Length, Pragma, Expires, ETag, Backoff, Alert, Cache-Control
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Sat, 18 Mar 2023 11:17:21 GMT
age: 2512
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash b3e6932e7ce3d82e114dc1ab526b7922
bba814df847506b14d37cddac0278a82f238fb05
0cc021880a57df9f3e466ac1790cb3f989be91f3da8c215b2e90e920e5748324
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "0CC021880A57DF9F3E466AC1790CB3F989BE91F3DA8C215B2E90E920E5748324"
Last-Modified: Sat, 18 Mar 2023 07:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10457
Expires: Sat, 18 Mar 2023 14:53:30 GMT
Date: Sat, 18 Mar 2023 11:59:13 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 0a4b141e90b0fb22cf6d10a6a4fd360d
37b081be1a69edb97a7c562b71474f4d7405d94e
5db17bb0a40658845e03d8237a69458a0576d955006ee224930b0310179af9af
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "5DB17BB0A40658845E03D8237A69458A0576D955006EE224930B0310179AF9AF"
Last-Modified: Fri, 17 Mar 2023 06:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5531
Expires: Sat, 18 Mar 2023 13:31:25 GMT
Date: Sat, 18 Mar 2023 11:59:14 GMT
Connection: keep-alive
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 886a55065537b0624371a82292fe26c2
5ff87d6a26d94e0ed10f0cb55d0ac0237efb135a
a0811f584403bcdb37925007e7d9df722591566885dcedf330fb13fed891905f
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 18 Mar 2023 11:59:14 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
push.services.mozilla.com/
54.186.169.128101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 54.186.169.128:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: kLwuscideUs50Y8gT52RSA==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: YDxI0QzhqJ9dmLuRO24llck5NgI=
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 886a55065537b0624371a82292fe26c2
5ff87d6a26d94e0ed10f0cb55d0ac0237efb135a
a0811f584403bcdb37925007e7d9df722591566885dcedf330fb13fed891905f
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 18 Mar 2023 11:59:14 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
coolkidsapparel.com/wp-content/plugins/woocommerce/packages/woocommerce-blocks/build/wc-blocks-vendors-style.css?ver=7.6.2
143.42.188.30200 OK 1.3 kB URL HTTP/1.1 coolkidsapparel.com/wp-content/plugins/woocommerce/packages/woocommerce-blocks/build/wc-blocks-vendors-style.css?ver=7.6.2
IP 143.42.188.30:0
File type ASCII text, with very long lines (4933), with no line terminators
Hash d2d7f4c273d3b4cd972a337969b14754
b441775d1dcba61a5234df0256a40c7f58a8b059
fcfdbdf2a45072bbb545934d419cf76e5272d3193742eb8b659e938cafab4cdf
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/woocommerce/packages/woocommerce-blocks/build/wc-blocks-vendors-style.css?ver=7.6.2 HTTP/1.1
Host: coolkidsapparel.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://coolkidsapparel.com/___2022/au/manage/payment.php
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 18 Mar 2023 11:59:14 GMT
Server: Apache/2.4.54 (Debian)
Last-Modified: Thu, 07 Jul 2022 02:38:47 GMT
ETag: "1345-5e32dfc26fbc0-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 1286
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/css
coolkidsapparel.com/wp-includes/css/classic-themes.min.css?ver=1
143.42.188.30200 OK 189 B URL HTTP/1.1 coolkidsapparel.com/wp-includes/css/classic-themes.min.css?ver=1
IP 143.42.188.30:0
Hash 5a18e16eb01cbaa862eb32e6b77bedb2
3abf9b913cc9f558f02cba7c9b822f8d1812cb96
d2b5af913332941d5ae7786d1fa70e0d009315c4ede6ad5b80d0f663bb54521f
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/css/classic-themes.min.css?ver=1 HTTP/1.1
Host: coolkidsapparel.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://coolkidsapparel.com/___2022/au/manage/payment.php
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 18 Mar 2023 11:59:14 GMT
Server: Apache/2.4.54 (Debian)
Last-Modified: Fri, 10 Mar 2023 03:00:14 GMT
ETag: "d9-5f682f5d86b27-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 189
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/css
coolkidsapparel.com/wp-includes/css/dist/block-library/style.min.css?ver=6.1.1
143.42.188.30200 OK 12 kB URL HTTP/1.1 coolkidsapparel.com/wp-includes/css/dist/block-library/style.min.css?ver=6.1.1
IP 143.42.188.30:0
File type ASCII text, with very long lines (47826)
Hash 8fa87dd23394a22621248ec378d2af59
9305bc637a89b1700d7f56a19a80bd32b0feb2f7
c162f7de24fa2d4e93e0da254ef287ff72f4a3e03f42443265097968351388dc
GET /wp-includes/css/dist/block-library/style.min.css?ver=6.1.1 HTTP/1.1
Host: coolkidsapparel.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://coolkidsapparel.com/___2022/au/manage/payment.php
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 18 Mar 2023 11:59:14 GMT
Server: Apache/2.4.54 (Debian)
Last-Modified: Fri, 10 Mar 2023 03:00:14 GMT
ETag: "172a9-5f682f5d89a07-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 12518
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/css
coolkidsapparel.com/wp-includes/js/wp-emoji-release.min.js?ver=6.1.1
143.42.188.30200 OK 5.0 kB URL HTTP/1.1 coolkidsapparel.com/wp-includes/js/wp-emoji-release.min.js?ver=6.1.1
IP 143.42.188.30:0
File type ASCII text, with very long lines (15660)
Hash e6624e0b978e6ddba476be41aaaa82df
822e920d8233072110ed7c8a7f379e5b13209b18
dac86a9ce08e4d8cded47b4fa900a664b0c997d8910c2a1be54a423678925a41
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/wp-emoji-release.min.js?ver=6.1.1 HTTP/1.1
Host: coolkidsapparel.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://coolkidsapparel.com/___2022/au/manage/payment.php
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 18 Mar 2023 11:59:14 GMT
Server: Apache/2.4.54 (Debian)
Last-Modified: Fri, 10 Mar 2023 03:00:14 GMT
ETag: "48b9-5f682f5d9d287-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 5009
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: application/javascript
coolkidsapparel.com/wp-content/plugins/contact-form-7/includes/css/styles.css?ver=5.6
143.42.188.30200 OK 972 B URL HTTP/1.1 coolkidsapparel.com/wp-content/plugins/contact-form-7/includes/css/styles.css?ver=5.6
IP 143.42.188.30:0
Hash 8bf268dfcca7cb20719b7ea14373ef4a
58bd839bbf0e8cc082f0a488b538b4ec71bebd2e
eece4a14939273c7af07bce8bab3a6cfc2c9de44c0eea82cc886abac13cb3870
GET /wp-content/plugins/contact-form-7/includes/css/styles.css?ver=5.6 HTTP/1.1
Host: coolkidsapparel.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://coolkidsapparel.com/___2022/au/manage/payment.php
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 18 Mar 2023 11:59:14 GMT
Server: Apache/2.4.54 (Debian)
Last-Modified: Thu, 07 Jul 2022 02:39:04 GMT
ETag: "aab-5e32dfd2a6200-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 972
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: text/css
coolkidsapparel.com/wp-content/uploads/porto_styles/theme_css_vars.css?ver=6.3.2
143.42.188.30200 OK 1.5 kB URL HTTP/1.1 coolkidsapparel.com/wp-content/uploads/porto_styles/theme_css_vars.css?ver=6.3.2
IP 143.42.188.30:0
File type ASCII text, with very long lines (5575), with no line terminators
Hash 8d41c4663aac34742e64fea214506d01
e5166e51c56b1acb3eb2552ebbb2f213d9ccd7ae
f1254c3cd2d03388d1c23d7929cf03339d6e3f87c73fcd3053b01ce267a1aa49
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/uploads/porto_styles/theme_css_vars.css?ver=6.3.2 HTTP/1.1
Host: coolkidsapparel.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://coolkidsapparel.com/___2022/au/manage/payment.php
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 18 Mar 2023 11:59:14 GMT
Server: Apache/2.4.54 (Debian)
Last-Modified: Sat, 11 Mar 2023 04:27:06 GMT
ETag: "15c7-5f6984a58aa93-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 1549
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: text/css
coolkidsapparel.com/wp-content/plugins/elementor/assets/lib/eicons/css/elementor-icons.min.css?ver=5.15.0
143.42.188.30200 OK 3.9 kB URL HTTP/1.1 coolkidsapparel.com/wp-content/plugins/elementor/assets/lib/eicons/css/elementor-icons.min.css?ver=5.15.0
IP 143.42.188.30:0
File type ASCII text, with very long lines (19082)
Hash 10c9d6d3417ebcf9499ecee0d5f2824d
35f00f613c91174860c4a44e5bfb20ea5be0ad0a
68146d87ca9204b68cffd915ddbc11f7a59f8403041232a2c885cdf24f8f4473
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/elementor/assets/lib/eicons/css/elementor-icons.min.css?ver=5.15.0 HTTP/1.1
Host: coolkidsapparel.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://coolkidsapparel.com/___2022/au/manage/payment.php
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 18 Mar 2023 11:59:14 GMT
Server: Apache/2.4.54 (Debian)
Last-Modified: Thu, 07 Jul 2022 02:38:41 GMT
ETag: "4ab8-5e32dfbcb6e40-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 3935
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: text/css
coolkidsapparel.com/wp-content/plugins/woocommerce/packages/woocommerce-blocks/build/wc-blocks-style.css?ver=7.6.2
143.42.188.30200 OK 22 kB URL HTTP/1.1 coolkidsapparel.com/wp-content/plugins/woocommerce/packages/woocommerce-blocks/build/wc-blocks-style.css?ver=7.6.2
IP 143.42.188.30:0
File type Unicode text, UTF-8 text, with very long lines (65527), with no line terminators
Hash 3929135e5003f7896e6a3e5fe5e34a01
9c03cbd124e8c9396198ca9b460dd3f716ef0d80
2371b980eb579b9ca2a75c306797c95e3a66e649ec8d47568c6cb97716003fec
GET /wp-content/plugins/woocommerce/packages/woocommerce-blocks/build/wc-blocks-style.css?ver=7.6.2 HTTP/1.1
Host: coolkidsapparel.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://coolkidsapparel.com/___2022/au/manage/payment.php
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 18 Mar 2023 11:59:14 GMT
Server: Apache/2.4.54 (Debian)
Last-Modified: Thu, 07 Jul 2022 02:38:47 GMT
ETag: "33aa6-5e32dfc26fbc0-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 22472
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/css
coolkidsapparel.com/wp-content/uploads/elementor/css/custom-frontend-lite.min.css?ver=1678419061
143.42.188.30200 OK 14 kB URL HTTP/1.1 coolkidsapparel.com/wp-content/uploads/elementor/css/custom-frontend-lite.min.css?ver=1678419061
IP 143.42.188.30:0
File type ASCII text, with very long lines (65536), with no line terminators
Hash 345ae318a716635ec4330b4f0e2796d0
e9757ee43a05bc2cce2522c9f4f87d5def505b54
44876ee90150890a07c0ac59e1fdb296d92177229e9c8e798a258dfff4faa15f
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/uploads/elementor/css/custom-frontend-lite.min.css?ver=1678419061 HTTP/1.1
Host: coolkidsapparel.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://coolkidsapparel.com/___2022/au/manage/payment.php
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 18 Mar 2023 11:59:14 GMT
Server: Apache/2.4.54 (Debian)
Last-Modified: Fri, 10 Mar 2023 03:31:01 GMT
ETag: "1a5ca-5f68363eaaa2e-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 13981
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: text/css
coolkidsapparel.com/wp-content/uploads/elementor/css/post-1154.css?ver=1678419061
143.42.188.30200 OK 362 B URL HTTP/1.1 coolkidsapparel.com/wp-content/uploads/elementor/css/post-1154.css?ver=1678419061
IP 143.42.188.30:0
File type ASCII text, with very long lines (1117), with no line terminators
Hash 90fe149459a98e00c89da5c22b920722
2985895bfc78d70d6ea0a90573ba345259bc1c78
5c291facbb4a2417124e54f6e3b565af81b09b3959dfc48959b79f92e87b9b4b
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/uploads/elementor/css/post-1154.css?ver=1678419061 HTTP/1.1
Host: coolkidsapparel.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://coolkidsapparel.com/___2022/au/manage/payment.php
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 18 Mar 2023 11:59:14 GMT
Server: Apache/2.4.54 (Debian)
Last-Modified: Fri, 10 Mar 2023 03:31:01 GMT
ETag: "45d-5f68363eb754e-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 362
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: text/css
coolkidsapparel.com/wp-content/themes/porto/css/plugins.css?ver=6.3.2
143.42.188.30200 OK 23 kB URL HTTP/1.1 coolkidsapparel.com/wp-content/themes/porto/css/plugins.css?ver=6.3.2
IP 143.42.188.30:0
File type ASCII text, with very long lines (65536), with no line terminators
Hash 1153f96774ae09d9662d7453713ee100
c60e2470d21a7623bc78b98c62325185a930ef2b
3194c1f899ac60073cec7a2950124836c5e73227187753de49348b7ba0957bd6
GET /wp-content/themes/porto/css/plugins.css?ver=6.3.2 HTTP/1.1
Host: coolkidsapparel.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://coolkidsapparel.com/___2022/au/manage/payment.php
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 18 Mar 2023 11:59:14 GMT
Server: Apache/2.4.54 (Debian)
Last-Modified: Thu, 07 Jul 2022 02:36:23 GMT
ETag: "1b7fd-5e32df391b7c0-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 22737
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: text/css
coolkidsapparel.com/wp-content/themes/porto/css/shortcodes.css?ver=6.3.2
143.42.188.30200 OK 26 kB URL HTTP/1.1 coolkidsapparel.com/wp-content/themes/porto/css/shortcodes.css?ver=6.3.2
IP 143.42.188.30:0
File type Unicode text, UTF-8 (with BOM) text, with very long lines (65521), with no line terminators
Hash 190209555bb74bd0a698ddf7c209f74c
b1f7645b577479a8e8c7a41c78e7ec9e92ee14a3
faaa6b63de5d2fc7ab269e67f8a0284455bb03e81cf16cb41ccbec67532d5826
GET /wp-content/themes/porto/css/shortcodes.css?ver=6.3.2 HTTP/1.1
Host: coolkidsapparel.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://coolkidsapparel.com/___2022/au/manage/payment.php
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 18 Mar 2023 11:59:14 GMT
Server: Apache/2.4.54 (Debian)
Last-Modified: Thu, 07 Jul 2022 02:36:23 GMT
ETag: "26444-5e32df391b7c0-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 25560
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: text/css
coolkidsapparel.com/___2022/au/manage/payment.php
143.42.188.30404 Not Found 85 kB URL HTTP/1.1 coolkidsapparel.com/___2022/au/manage/payment.php
IP 143.42.188.30:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (9610), with CRLF, LF line terminators
Hash ee1753fcd5b8d097a76820dfafdb1bb1
e9101b8c495714bbae23440c96735cf8f38618cb
a523152cea647510b06c354b39a6364124a09e555104722907f6056ad0902b25
Analyzer Verdict Alert fortinet Phishing
GET /___2022/au/manage/payment.php HTTP/1.1
Host: coolkidsapparel.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/1.1 404 Not Found
Date: Sat, 18 Mar 2023 11:59:14 GMT
Server: Apache/2.4.54 (Debian)
Expires: Wed, 11 Jan 1984 05:00:00 GMT
Cache-Control: no-cache, must-revalidate, max-age=0
Link: <https://coolkidsapparel.com/wp-json/>; rel="https://api.w.org/"
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: text/html; charset=UTF-8
coolkidsapparel.com/wp-content/themes/porto/css/theme_elementor.css?ver=6.3.2
143.42.188.30200 OK 1.4 kB URL HTTP/1.1 coolkidsapparel.com/wp-content/themes/porto/css/theme_elementor.css?ver=6.3.2
IP 143.42.188.30:0
File type ASCII text, with very long lines (7047), with no line terminators
Hash c5755d6aec8b11403fd3edd9d1995cdf
3456d2dcfefed20670d71a351d7fbfe64e7d7c85
fbca30c0e8a5db2fc0889c8f14415f6ccc98c58ee674217e19e91002f578a58b
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/porto/css/theme_elementor.css?ver=6.3.2 HTTP/1.1
Host: coolkidsapparel.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://coolkidsapparel.com/___2022/au/manage/payment.php
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 18 Mar 2023 11:59:14 GMT
Server: Apache/2.4.54 (Debian)
Last-Modified: Thu, 07 Jul 2022 02:36:23 GMT
ETag: "1b87-5e32df391b7c0-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 1388
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: text/css
coolkidsapparel.com/wp-content/themes/porto/css/bootstrap.css?ver=6.3.2
143.42.188.30200 OK 23 kB URL HTTP/1.1 coolkidsapparel.com/wp-content/themes/porto/css/bootstrap.css?ver=6.3.2
IP 143.42.188.30:0
File type ASCII text, with very long lines (65321), with CRLF line terminators
Hash c0bba30ff02b6011097481679a478e3a
1197807928b3191f46875e72e92d745cdb4c8c1c
71a2a367b80d4e5097ed9cd319de629b94bb9662e8b7ded43bbcf4f7dd3a94cb
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/porto/css/bootstrap.css?ver=6.3.2 HTTP/1.1
Host: coolkidsapparel.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://coolkidsapparel.com/___2022/au/manage/payment.php
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 18 Mar 2023 11:59:14 GMT
Server: Apache/2.4.54 (Debian)
Last-Modified: Thu, 07 Jul 2022 02:36:23 GMT
ETag: "262c5-5e32df391b7c0-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 23045
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: text/css
coolkidsapparel.com/wp-content/themes/porto/css/theme.css?ver=6.3.2
143.42.188.30200 OK 50 kB URL HTTP/1.1 coolkidsapparel.com/wp-content/themes/porto/css/theme.css?ver=6.3.2
IP 143.42.188.30:0
File type Unicode text, UTF-8 text, with very long lines (65526), with no line terminators
Hash 7f89c474e4dfd8d2a860aad1fd682e4a
0f5c7b10a2268b7108454bec682757247dcdc0b1
b33f3d6854aa73b54d5d7e936cd292aa8881fc02731c7d90d39194e605ed43b7
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/porto/css/theme.css?ver=6.3.2 HTTP/1.1
Host: coolkidsapparel.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://coolkidsapparel.com/___2022/au/manage/payment.php
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 18 Mar 2023 11:59:14 GMT
Server: Apache/2.4.54 (Debian)
Last-Modified: Thu, 07 Jul 2022 02:36:23 GMT
ETag: "47394-5e32df391b7c0-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 50358
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: text/css
coolkidsapparel.com/wp-content/uploads/porto_styles/dynamic_style.css?ver=6.3.2
143.42.188.30200 OK 9.0 kB URL HTTP/1.1 coolkidsapparel.com/wp-content/uploads/porto_styles/dynamic_style.css?ver=6.3.2
IP 143.42.188.30:0
File type ASCII text, with very long lines (49280), with no line terminators
Hash 059d17d98b0e1f34afbe7383b3caf083
3470939ecc2084ec95130bea47a828cdf4e7c5fe
2ff04140fc8e1eef946fbdceafcb50caf2d065059b548bcf85d43599763d94f8
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/uploads/porto_styles/dynamic_style.css?ver=6.3.2 HTTP/1.1
Host: coolkidsapparel.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://coolkidsapparel.com/___2022/au/manage/payment.php
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 18 Mar 2023 11:59:14 GMT
Server: Apache/2.4.54 (Debian)
Last-Modified: Sat, 11 Mar 2023 04:27:06 GMT
ETag: "c080-5f6984a58c9d3-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 9023
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: text/css
coolkidsapparel.com/wp-content/themes/porto/css/theme_shop.css?ver=6.3.2
143.42.188.30200 OK 23 kB URL HTTP/1.1 coolkidsapparel.com/wp-content/themes/porto/css/theme_shop.css?ver=6.3.2
IP 143.42.188.30:0
File type Unicode text, UTF-8 text, with very long lines (65446), with no line terminators
Hash beba56845da0735fc9b4e2da2c10dfef
94079cb013e18bb02c739b0e933dc3f1e288d95c
2a8abcebac5e6b5b81b1a3e78b22c642129e331390218d637959cf99dac04773
GET /wp-content/themes/porto/css/theme_shop.css?ver=6.3.2 HTTP/1.1
Host: coolkidsapparel.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://coolkidsapparel.com/___2022/au/manage/payment.php
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 18 Mar 2023 11:59:14 GMT
Server: Apache/2.4.54 (Debian)
Last-Modified: Thu, 07 Jul 2022 02:36:23 GMT
ETag: "21bfb-5e32df391b7c0-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 23237
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: text/css
coolkidsapparel.com/wp-content/themes/porto/style.css?ver=6.3.2
143.42.188.30200 OK 526 B URL HTTP/1.1 coolkidsapparel.com/wp-content/themes/porto/style.css?ver=6.3.2
IP 143.42.188.30:0
File type ASCII text, with very long lines (400), with CRLF line terminators
Hash 99e34edc7cdd6be02e0f7321b3931103
186fcef116139691638316ae1b1bcbb8c8fd5195
0e18896e1bc9c2d39775f2faa120654ad1f16bac16567501db9ba09fe2839896
GET /wp-content/themes/porto/style.css?ver=6.3.2 HTTP/1.1
Host: coolkidsapparel.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://coolkidsapparel.com/___2022/au/manage/payment.php
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 18 Mar 2023 11:59:14 GMT
Server: Apache/2.4.54 (Debian)
Last-Modified: Thu, 07 Jul 2022 02:36:23 GMT
ETag: "363-5e32df391b7c0-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 526
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: text/css
coolkidsapparel.com/wp-content/themes/porto-child/style.css?ver=6.1.1
143.42.188.30200 OK 453 B URL HTTP/1.1 coolkidsapparel.com/wp-content/themes/porto-child/style.css?ver=6.1.1
IP 143.42.188.30:0
File type ASCII text, with very long lines (400)
Hash 520560338b1e42b916d0caa7c3e59f08
5e3f9b5c378a9dcbaa1ceb86b4c4faa3763d5c63
3ad3a0209cc3d5f490dd97e0e5b8f91dd50805ef00fe4813cc8079f529ca72ca
GET /wp-content/themes/porto-child/style.css?ver=6.1.1 HTTP/1.1
Host: coolkidsapparel.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://coolkidsapparel.com/___2022/au/manage/payment.php
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 18 Mar 2023 11:59:14 GMT
Server: Apache/2.4.54 (Debian)
Last-Modified: Thu, 07 Jul 2022 02:38:11 GMT
ETag: "305-5e32dfa01aac0-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 453
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: text/css
coolkidsapparel.com/wp-content/themes/porto/css/theme/shop/login-style/account-login.css?ver=6.3.2
143.42.188.30200 OK 901 B URL HTTP/1.1 coolkidsapparel.com/wp-content/themes/porto/css/theme/shop/login-style/account-login.css?ver=6.3.2
IP 143.42.188.30:0
File type Unicode text, UTF-8 text, with very long lines (2514), with no line terminators
Hash 4a338f5798c0102cc0564c61a7322e6a
87a3645b1f93a8ca31a8f54bfbdace72061d48f0
4e9f313a88aa6a0dab2a8943d625f2ef5ebe258b3d57bf0ab61911e1a53904e1
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/porto/css/theme/shop/login-style/account-login.css?ver=6.3.2 HTTP/1.1
Host: coolkidsapparel.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://coolkidsapparel.com/___2022/au/manage/payment.php
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 18 Mar 2023 11:59:14 GMT
Server: Apache/2.4.54 (Debian)
Last-Modified: Thu, 07 Jul 2022 02:36:23 GMT
ETag: "9d4-5e32df391b7c0-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 901
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: text/css
coolkidsapparel.com/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2
143.42.188.30200 OK 4.2 kB URL HTTP/1.1 coolkidsapparel.com/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2
IP 143.42.188.30:0
File type ASCII text, with very long lines (11126)
Hash 5629711d7fdd5b28441bac39b851299f
4e0bf2b7383097f7c352023a1b1b1b48a50356b6
44c444309c7a6c05ff4a9bc198bed9e9596bedb5658637c85689c9a471dcdd16
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2 HTTP/1.1
Host: coolkidsapparel.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://coolkidsapparel.com/___2022/au/manage/payment.php
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 18 Mar 2023 11:59:15 GMT
Server: Apache/2.4.54 (Debian)
Last-Modified: Fri, 10 Mar 2023 03:00:14 GMT
ETag: "2bd8-5f682f5da3fe6-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 4169
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: application/javascript
coolkidsapparel.com/wp-includes/js/jquery/jquery.min.js?ver=3.6.1
143.42.188.30200 OK 31 kB URL HTTP/1.1 coolkidsapparel.com/wp-includes/js/jquery/jquery.min.js?ver=3.6.1
IP 143.42.188.30:0
File type ASCII text, with very long lines (65447)
Hash 1b5264c989379b828aff60f65a518a24
98641237f14ccb33ac114f54329a33bd0aa17eb7
6c8e7b78c6dbc13426810c905572db7589cf3e00264e30ce797fddb0b1092237
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/jquery/jquery.min.js?ver=3.6.1 HTTP/1.1
Host: coolkidsapparel.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://coolkidsapparel.com/___2022/au/manage/payment.php
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 18 Mar 2023 11:59:15 GMT
Server: Apache/2.4.54 (Debian)
Last-Modified: Fri, 10 Mar 2023 03:00:14 GMT
ETag: "15e54-5f682f5da3fe6-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 30995
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: application/javascript
coolkidsapparel.com/wp-includes/js/dist/vendor/regenerator-runtime.min.js?ver=0.13.9
143.42.188.30200 OK 2.5 kB URL HTTP/1.1 coolkidsapparel.com/wp-includes/js/dist/vendor/regenerator-runtime.min.js?ver=0.13.9
IP 143.42.188.30:0
File type ASCII text, with very long lines (6475), with no line terminators
Hash 27cbbd0a9d7c5ad9402118c4afc36035
7659d08a005f5ecfa6c779e3cda45c30007fd059
ebc771d0af626966e38535357861fab0090e0bd7ff346cbe3c7ffdde1683809f
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/dist/vendor/regenerator-runtime.min.js?ver=0.13.9 HTTP/1.1
Host: coolkidsapparel.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://coolkidsapparel.com/___2022/au/manage/payment.php
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 18 Mar 2023 11:59:15 GMT
Server: Apache/2.4.54 (Debian)
Last-Modified: Fri, 10 Mar 2023 03:00:14 GMT
ETag: "194b-5f682f5dc2446-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 2457
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: application/javascript
fonts.googleapis.com/css?family=Rubik%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic%7CRoboto+Slab%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic%7CRoboto%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic&display=auto&ver=6.1.1
142.250.74.106200 OK 8.6 kB URL HTTP/2 fonts.googleapis.com/css?family=Rubik%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic%7CRoboto+Slab%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic%7CRoboto%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic&display=auto&ver=6.1.1
IP 142.250.74.106:0
File type ASCII text, with very long lines (1429)
Hash 3a387c020889a0ed0c7481dcbae098d6
4825933245b0c7baaa8df09559a9c03ae06dc7c2
3a7f8268662fb49a7200686a229c85a5df355e94dd81ad951979f77a95602e57
GET /css?family=Rubik%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic%7CRoboto+Slab%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic%7CRoboto%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic&display=auto&ver=6.1.1 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://coolkidsapparel.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Sat, 18 Mar 2023 11:59:14 GMT
date: Sat, 18 Mar 2023 11:59:14 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
coolkidsapparel.com/wp-content/plugins/contact-form-7/includes/js/index.js?ver=5.6
143.42.188.30200 OK 6.5 kB URL HTTP/1.1 coolkidsapparel.com/wp-content/plugins/contact-form-7/includes/js/index.js?ver=5.6
IP 143.42.188.30:0
File type ASCII text, with very long lines (21821), with no line terminators
Hash 935b2704ae65c0ae9e160f6801c1a586
b044bbd09f47ac4f5defafb667a6a283116275b5
3d5ef8e4d2685ea539cdd441135f714411d666010e88de82228dee8b8a578346
GET /wp-content/plugins/contact-form-7/includes/js/index.js?ver=5.6 HTTP/1.1
Host: coolkidsapparel.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://coolkidsapparel.com/___2022/au/manage/payment.php
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 18 Mar 2023 11:59:15 GMT
Server: Apache/2.4.54 (Debian)
Last-Modified: Thu, 07 Jul 2022 02:39:04 GMT
ETag: "553d-5e32dfd2a6200-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 6538
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive
Content-Type: application/javascript
coolkidsapparel.com/wp-content/plugins/woocommerce/assets/js/jquery-blockui/jquery.blockUI.min.js?ver=2.7.0-wc.6.6.1
143.42.188.30200 OK 3.5 kB URL HTTP/1.1 coolkidsapparel.com/wp-content/plugins/woocommerce/assets/js/jquery-blockui/jquery.blockUI.min.js?ver=2.7.0-wc.6.6.1
IP 143.42.188.30:0
File type ASCII text, with very long lines (9139)
Hash d6c87c7221011e280d3bb60eb9c598e4
93aa9b7f17b91719689519d4439c10d884063296
0acd2e4b6cc50829b1fb1e12b55ed2b72b201631e908a80171d39ef4a9570724
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/woocommerce/assets/js/jquery-blockui/jquery.blockUI.min.js?ver=2.7.0-wc.6.6.1 HTTP/1.1
Host: coolkidsapparel.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://coolkidsapparel.com/___2022/au/manage/payment.php
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 18 Mar 2023 11:59:15 GMT
Server: Apache/2.4.54 (Debian)
Last-Modified: Thu, 07 Jul 2022 02:38:47 GMT
ETag: "253d-5e32dfc26fbc0-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 3493
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: application/javascript
coolkidsapparel.com/wp-content/plugins/woocommerce/assets/js/js-cookie/js.cookie.min.js?ver=2.1.4-wc.6.6.1
143.42.188.30200 OK 982 B URL HTTP/1.1 coolkidsapparel.com/wp-content/plugins/woocommerce/assets/js/js-cookie/js.cookie.min.js?ver=2.1.4-wc.6.6.1
IP 143.42.188.30:0
File type ASCII text, with very long lines (1668)
Hash e66463f2023b738680c9bdefece69a37
315dc8e6ebdfb18c662851244ee33e2758ad3c83
fd83e7fc6d81aa6f6680ea640e9c086aa1950a17757a582aa74ea9797a70f346
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/woocommerce/assets/js/js-cookie/js.cookie.min.js?ver=2.1.4-wc.6.6.1 HTTP/1.1
Host: coolkidsapparel.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://coolkidsapparel.com/___2022/au/manage/payment.php
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 18 Mar 2023 11:59:15 GMT
Server: Apache/2.4.54 (Debian)
Last-Modified: Thu, 07 Jul 2022 02:38:47 GMT
ETag: "72a-5e32dfc26fbc0-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 982
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: application/javascript
coolkidsapparel.com/wp-content/plugins/woocommerce/assets/js/frontend/add-to-cart.min.js?ver=6.6.1
143.42.188.30200 OK 1.1 kB URL HTTP/1.1 coolkidsapparel.com/wp-content/plugins/woocommerce/assets/js/frontend/add-to-cart.min.js?ver=6.6.1
IP 143.42.188.30:0
File type HTML document, ASCII text, with very long lines (3037), with no line terminators
Hash f46e666160800ab91bb12cccc7555662
63b98922823c1f54ed1a96e1dcd0c227e3e51419
f5cc9892eb6b336791126838b53edfe9dc4b12b99aae085cadf52d8e734f5c68
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/woocommerce/assets/js/frontend/add-to-cart.min.js?ver=6.6.1 HTTP/1.1
Host: coolkidsapparel.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://coolkidsapparel.com/___2022/au/manage/payment.php
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 18 Mar 2023 11:59:15 GMT
Server: Apache/2.4.54 (Debian)
Last-Modified: Thu, 07 Jul 2022 02:38:47 GMT
ETag: "bdd-5e32dfc26fbc0-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 1086
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive
Content-Type: application/javascript
coolkidsapparel.com/wp-content/plugins/woocommerce/assets/js/frontend/woocommerce.min.js?ver=6.6.1
143.42.188.30200 OK 794 B URL HTTP/1.1 coolkidsapparel.com/wp-content/plugins/woocommerce/assets/js/frontend/woocommerce.min.js?ver=6.6.1
IP 143.42.188.30:0
File type ASCII text, with very long lines (2139), with no line terminators
Hash 29307e8dec33cf3411ca4e1f2c84e9d0
484402289464d7ffb1475827f3438329d520bfc6
a2db59efaa416ef0c9d5d58f142cd5e44c475348cff20a664586fd3cda1b5f5b
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/woocommerce/assets/js/frontend/woocommerce.min.js?ver=6.6.1 HTTP/1.1
Host: coolkidsapparel.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://coolkidsapparel.com/___2022/au/manage/payment.php
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 18 Mar 2023 11:59:15 GMT
Server: Apache/2.4.54 (Debian)
Last-Modified: Thu, 07 Jul 2022 02:38:47 GMT
ETag: "85b-5e32dfc26fbc0-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 794
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive
Content-Type: application/javascript
coolkidsapparel.com/wp-content/plugins/woocommerce/assets/js/frontend/cart-fragments.min.js?ver=6.6.1
143.42.188.30200 OK 1.0 kB URL HTTP/1.1 coolkidsapparel.com/wp-content/plugins/woocommerce/assets/js/frontend/cart-fragments.min.js?ver=6.6.1
IP 143.42.188.30:0
File type ASCII text, with very long lines (2938), with no line terminators
Hash 45db3d2887c26700a51bf469e3bb3aa1
d070b5fb53d2fbb66964bbfd482270b855d0ee96
1abc0cff49f82d9a063c04cd086b991af6ad00467efc4cb8d8d4e3c9a0f95777
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/woocommerce/assets/js/frontend/cart-fragments.min.js?ver=6.6.1 HTTP/1.1
Host: coolkidsapparel.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://coolkidsapparel.com/___2022/au/manage/payment.php
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 18 Mar 2023 11:59:15 GMT
Server: Apache/2.4.54 (Debian)
Last-Modified: Thu, 07 Jul 2022 02:38:47 GMT
ETag: "b7a-5e32dfc26fbc0-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 1039
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: application/javascript
coolkidsapparel.com/wp-content/themes/porto/inc/lib/live-search/live-search.min.js?ver=6.3.2
143.42.188.30200 OK 4.7 kB URL HTTP/1.1 coolkidsapparel.com/wp-content/themes/porto/inc/lib/live-search/live-search.min.js?ver=6.3.2
IP 143.42.188.30:0
File type ASCII text, with very long lines (14220), with no line terminators
Hash a5d3d01c804710b578fb178804df038d
50e6e53b479dc7dc536028fdf90f4b11d0725f19
063658827dc8e175f90ad3d8ce69ae9815c83cb50f16ea30edd18ac19175bb63
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/porto/inc/lib/live-search/live-search.min.js?ver=6.3.2 HTTP/1.1
Host: coolkidsapparel.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://coolkidsapparel.com/___2022/au/manage/payment.php
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 18 Mar 2023 11:59:15 GMT
Server: Apache/2.4.54 (Debian)
Last-Modified: Thu, 07 Jul 2022 02:36:23 GMT
ETag: "378c-5e32df391b7c0-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 4662
Keep-Alive: timeout=5, max=94
Connection: Keep-Alive
Content-Type: application/javascript
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 84762efcb2e1535ae49fca6c1523df33
93e7f138a491d4276a793c2e5b947195ae69a88c
920778735cfb5f0395bbfa1391cb4e90c547d455cac77c8bb161a0c3b55a6a3f
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "920778735CFB5F0395BBFA1391CB4E90C547D455CAC77C8BB161A0C3B55A6A3F"
Last-Modified: Thu, 16 Mar 2023 15:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=17627
Expires: Sat, 18 Mar 2023 16:53:02 GMT
Date: Sat, 18 Mar 2023 11:59:15 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F20f5bfa6-7251-481a-bcfa-2d2ca7aa8bfe.jpeg
34.120.237.76200 OK 9.7 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F20f5bfa6-7251-481a-bcfa-2d2ca7aa8bfe.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 79e5f692f367d2e61031e96b9dbec0a4
6043563b8e6a2bd28cf898a8006539dcceaf164f
fbcd20062e8e53eebfcfda38e9541c9048fa4e8cfc3f63434be8c3337a86d0a2
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F20f5bfa6-7251-481a-bcfa-2d2ca7aa8bfe.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9700
x-amzn-requestid: 32832e20-9170-465b-98bb-609b0d91c62c
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: B8fLmETzIAMF46w=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6414df16-62bc83a823f4c35d4856e2c2;Sampled=0
x-amzn-remapped-date: Fri, 17 Mar 2023 21:43:50 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C3
x-cache: Hit from cloudfront
x-amz-cf-id: a4c4yUF99M3iTQ9vB4EwFVvVPZj2rSvlvUXZGg5kKw7_Tnjn47_WOg==
via: 1.1 446313511980eb02f28ff5a9a4147c0a.cloudfront.net (CloudFront), 1.1 8cb7de37a1655236518810d0aabb8656.cloudfront.net (CloudFront), 1.1 google
date: Fri, 17 Mar 2023 22:23:13 GMT
age: 48962
etag: "6043563b8e6a2bd28cf898a8006539dcceaf164f"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff784a508-c4b6-43b8-aef0-aed98e41fff2.jpeg
34.120.237.76200 OK 7.3 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff784a508-c4b6-43b8-aef0-aed98e41fff2.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 8895f37f5abd28598cae47303ec912d2
c5bc2c1ef3a7819b9456fff476ffa2f93b954b0a
e79cca3d8a87088262492024fe4c0d36d8b93dd88634e7ba75911d1393237008
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff784a508-c4b6-43b8-aef0-aed98e41fff2.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-length: 7328
x-amzn-requestid: 7eee08f8-01f6-42d0-b3ef-e16a608a68be
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: B8fJvFm0IAMFdtA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6414df0a-162212b7401ed34b32d72f4c;Sampled=0
x-amzn-remapped-date: Fri, 17 Mar 2023 21:43:38 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C3
x-cache: Hit from cloudfront
x-amz-cf-id: vsTH4EJwryon5WGGcCmV-RqUiIpdM3LDxS1MczTaLWrxPem0nZ_yRg==
via: 1.1 efe54e8b68e074d39b2ecd249f85100a.cloudfront.net (CloudFront), 1.1 1d000d0dfe9d69b4983f619fdc5499d6.cloudfront.net (CloudFront), 1.1 google
date: Fri, 17 Mar 2023 22:12:08 GMT
age: 49627
etag: "c5bc2c1ef3a7819b9456fff476ffa2f93b954b0a"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3a465734-2031-4538-bcbc-9d828ea81250.jpeg
34.120.237.76200 OK 12 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3a465734-2031-4538-bcbc-9d828ea81250.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 7f53bb1fb90c97461035e7f9f7f7837e
961b5fcbca5b49ca9136e74931253bb300aa1985
dad960991444a4cbd8841e5c673b0e4337bdeb8c18672b5cfadb93d4ac70e8d2
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3a465734-2031-4538-bcbc-9d828ea81250.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-length: 11673
x-amzn-requestid: 3675d2d9-47ab-4712-9511-0ad7570dd3cd
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: B8eNfFXSIAMFbhQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6414dd89-53c9817044fda17b212f0237;Sampled=0
x-amzn-remapped-date: Fri, 17 Mar 2023 21:37:13 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C3
x-cache: Miss from cloudfront
x-amz-cf-id: 3NRQ90kGnSsxxMeQA9UqBNxrT5CpJWJgKKPWHwcj2XBkSIjiwE55sw==
via: 1.1 9c60d6224ac0b44e908b5c9dcf70e9a4.cloudfront.net (CloudFront), 1.1 74ab105148338444981d1b2277ffd9c4.cloudfront.net (CloudFront), 1.1 google
date: Fri, 17 Mar 2023 22:53:23 GMT
etag: "961b5fcbca5b49ca9136e74931253bb300aa1985"
content-type: image/jpeg
age: 47152
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8afa2cdb-a5f3-4c78-a2ab-132c8b752b4b.png
34.120.237.76200 OK 10 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8afa2cdb-a5f3-4c78-a2ab-132c8b752b4b.png
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 78453ba98b72eff3879ef163b59c86ed
80519bb3726ee1f9f211344cd433cefaed3a7f2e
61adfeff11af9583355ac7d1500e8a8d97357b2846f151f2421001994fb06655
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8afa2cdb-a5f3-4c78-a2ab-132c8b752b4b.png HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-length: 10338
x-amzn-requestid: 9f880b5b-056c-44bb-a811-36ea27c232aa
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: BvSgFGENoAMFuVw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-640f9799-2318d444248f7610300c658f;Sampled=0
x-amzn-remapped-date: Mon, 13 Mar 2023 21:37:29 GMT
x-amz-cf-pop: SEA19-C3
x-cache: Hit from cloudfront
x-amz-cf-id: xfkObFQbeYQQjIJ4FWQ7xKbH5FPxBQ1vkTDCwWCM6IcAAu8H31BNhQ==
via: 1.1 2dc111aa3ead15d061e41a423155a53a.cloudfront.net (CloudFront), 1.1 ef8f66c83aecd87910ce2e1153544a20.cloudfront.net (CloudFront), 1.1 google
date: Sat, 18 Mar 2023 07:04:42 GMT
age: 17673
etag: "80519bb3726ee1f9f211344cd433cefaed3a7f2e"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F666540c7-8fcc-4d9e-95cc-493f063f11c6.webp
34.120.237.76200 OK 10 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F666540c7-8fcc-4d9e-95cc-493f063f11c6.webp
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash d212de894f514eafa8a4e23e62280b70
b20a7f2b27c085f47a4d6ddaf7f1971876f11885
1ba6c03f75b3aa49d0636fca0007d0365c8db744ae8fb769f5c7e04991711fd6
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F666540c7-8fcc-4d9e-95cc-493f063f11c6.webp HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-length: 10531
x-amzn-requestid: b03ec37f-181a-450e-8b8b-42e1ddbd2372
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: B8eOlENToAMF02A=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6414dd90-4ed78f345679ff700e5a0e99;Sampled=0
x-amzn-remapped-date: Fri, 17 Mar 2023 21:37:20 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C3
x-cache: Hit from cloudfront
x-amz-cf-id: thbvnsI_Ezwk-Gtqk654INjkVN55KLTlUeW-lL-t114v9AMxOMy75Q==
via: 1.1 98e601970ea59f4d5f56a752787ff9fc.cloudfront.net (CloudFront), 1.1 0ec9ddba08fcd99386924593dbdbd44a.cloudfront.net (CloudFront), 1.1 google
date: Fri, 17 Mar 2023 22:05:32 GMT
age: 50023
etag: "b20a7f2b27c085f47a4d6ddaf7f1971876f11885"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0f66d9dc-9b07-409d-b0ab-7ba2375be651.jpeg
34.120.237.76200 OK 10 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0f66d9dc-9b07-409d-b0ab-7ba2375be651.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 8c7d44b2fe4e80865ebbb42bc9cbd182
1c13d1f47dade8c4fdcda4fe714f033ae8336ada
c0b9deca4b7dabc0a5aa3d59e7a349497b2544c3b4926e23d029c3d8cb7aad85
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0f66d9dc-9b07-409d-b0ab-7ba2375be651.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-length: 10041
x-amzn-requestid: 9f0722e3-0ed3-4679-8cf1-043a2fc702af
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: B8eWXEnLIAMFsqg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6414ddc2-71824c4a27d153a601bd74c2;Sampled=0
x-amzn-remapped-date: Fri, 17 Mar 2023 21:38:10 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C3
x-cache: Miss from cloudfront
x-amz-cf-id: 59gOlExShEmCl1P--dw8j5kxH5Wfc13aMgKThngb33y35w256k5G6w==
via: 1.1 8f22423015641505b8c857a37450d6c0.cloudfront.net (CloudFront), 1.1 ef8f66c83aecd87910ce2e1153544a20.cloudfront.net (CloudFront), 1.1 google
date: Fri, 17 Mar 2023 22:04:05 GMT
etag: "1c13d1f47dade8c4fdcda4fe714f033ae8336ada"
content-type: image/jpeg
age: 50110
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
coolkidsapparel.com/wp-content/plugins/woocommerce/assets/js/jquery-cookie/jquery.cookie.min.js?ver=1.4.1-wc.6.6.1
143.42.188.30200 OK 762 B URL HTTP/1.1 coolkidsapparel.com/wp-content/plugins/woocommerce/assets/js/jquery-cookie/jquery.cookie.min.js?ver=1.4.1-wc.6.6.1
IP 143.42.188.30:0
File type ASCII text, with very long lines (1241)
Hash a5789b665adc5f2ab193863d517516c0
0f97abd37e78a9dbb3701b47853bf7f8cf0af292
e10edc7720f9c791b10215360e7c9b069f6a640b601050080b5680ed9fbcdaad
GET /wp-content/plugins/woocommerce/assets/js/jquery-cookie/jquery.cookie.min.js?ver=1.4.1-wc.6.6.1 HTTP/1.1
Host: coolkidsapparel.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://coolkidsapparel.com/___2022/au/manage/payment.php
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 18 Mar 2023 11:59:15 GMT
Server: Apache/2.4.54 (Debian)
Last-Modified: Thu, 07 Jul 2022 02:38:47 GMT
ETag: "570-5e32dfc26fbc0-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 762
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: application/javascript
coolkidsapparel.com/wp-content/themes/porto/js/libs/owl.carousel.min.js?ver=2.3.4
143.42.188.30200 OK 21 kB URL HTTP/1.1 coolkidsapparel.com/wp-content/themes/porto/js/libs/owl.carousel.min.js?ver=2.3.4
IP 143.42.188.30:0
File type ASCII text, with CRLF line terminators
Hash 2e5e1b391882abd6c67d2e6fefc6b2cf
5ec0dc4c288989945fcd41fba46d7d5e39fcdd5f
86bd92e8a224dd0ead11fe90be66ddae657630a128bf9b06d1eff491042e5dde
GET /wp-content/themes/porto/js/libs/owl.carousel.min.js?ver=2.3.4 HTTP/1.1
Host: coolkidsapparel.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://coolkidsapparel.com/___2022/au/manage/payment.php
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 18 Mar 2023 11:59:15 GMT
Server: Apache/2.4.54 (Debian)
Last-Modified: Thu, 07 Jul 2022 02:36:23 GMT
ETag: "1c4b0-5e32df391b7c0-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 21144
Keep-Alive: timeout=5, max=94
Connection: Keep-Alive
Content-Type: application/javascript
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash a4fe1012a4d75c602aab58bcff2d9c28
b079e7b9e4da4d67ecdc3e11bff33462bd026899
f7e4c8251356329744c989f9194354f78b9d142a69db8cc5d92ade3d70efcc01
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 18 Mar 2023 11:59:15 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
coolkidsapparel.com/wp-includes/js/imagesloaded.min.js?ver=4.1.4
143.42.188.30200 OK 1.8 kB URL HTTP/1.1 coolkidsapparel.com/wp-includes/js/imagesloaded.min.js?ver=4.1.4
IP 143.42.188.30:0
File type ASCII text, with very long lines (5477)
Hash 951ae46ca55ec7b0e401e2074bdf8b54
64bbbdc28a351b26cab9c230e134ca8eb4d4f83e
fd5d4c623e9d68551114b2a1303584b6792e592e864d4416145904fe8b9edd91
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/imagesloaded.min.js?ver=4.1.4 HTTP/1.1
Host: coolkidsapparel.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://coolkidsapparel.com/___2022/au/manage/payment.php
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 18 Mar 2023 11:59:15 GMT
Server: Apache/2.4.54 (Debian)
Last-Modified: Fri, 10 Mar 2023 03:00:14 GMT
ETag: "15fd-5f682f5d9e226-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 1834
Keep-Alive: timeout=5, max=94
Connection: Keep-Alive
Content-Type: application/javascript
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash a4fe1012a4d75c602aab58bcff2d9c28
b079e7b9e4da4d67ecdc3e11bff33462bd026899
f7e4c8251356329744c989f9194354f78b9d142a69db8cc5d92ade3d70efcc01
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 18 Mar 2023 11:59:15 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.gstatic.com/s/rubik/v26/iJWEBXyIfDnIV7nEnX661A.woff2
216.58.207.227200 OK 35 kB URL HTTP/2 fonts.gstatic.com/s/rubik/v26/iJWEBXyIfDnIV7nEnX661A.woff2
IP 216.58.207.227:0
File type Web Open Font Format (Version 2), TrueType, length 35004, version 1.0\012- data
Hash 91d1b8fcb0f50c9f0015d4992ebf6a87
31285728c5d9920afa681c70e6e85799c609a0c6
2843bc7c455e813504804b0b95cacb4c373c2e210b3fd0b32294b7bf578e3177
GET /s/rubik/v26/iJWEBXyIfDnIV7nEnX661A.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://coolkidsapparel.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 35004
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 16 Mar 2023 04:40:27 GMT
expires: Fri, 15 Mar 2024 04:40:27 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 08 Mar 2023 21:38:07 GMT
content-type: font/woff2
age: 199128
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
fonts.gstatic.com/s/poppins/v20/pxiByp8kv8JHgFVrLEj6Z1xlFQ.woff2
216.58.207.227200 OK 8.0 kB URL HTTP/2 fonts.gstatic.com/s/poppins/v20/pxiByp8kv8JHgFVrLEj6Z1xlFQ.woff2
IP 216.58.207.227:0
File type Web Open Font Format (Version 2), TrueType, length 8000, version 1.0\012- data
Hash 72993dddf88a63e8f226656f7de88e57
179f97ec0275f09603a8db94d4380eb584d81cd5
f4e80d9dfd374d02989b87a27b5ed4cb78fbb177c27f1478e9a8b0afb7513149
GET /s/poppins/v20/pxiByp8kv8JHgFVrLEj6Z1xlFQ.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://coolkidsapparel.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 8000
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 15 Mar 2023 13:08:02 GMT
expires: Thu, 14 Mar 2024 13:08:02 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 27 Apr 2022 16:59:07 GMT
content-type: font/woff2
age: 255073
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
fonts.gstatic.com/s/poppins/v20/pxiEyp8kv8JHgFVrJJfecg.woff2
216.58.207.227200 OK 7.9 kB URL HTTP/2 fonts.gstatic.com/s/poppins/v20/pxiEyp8kv8JHgFVrJJfecg.woff2
IP 216.58.207.227:0
File type Web Open Font Format (Version 2), TrueType, length 7884, version 1.0\012- data
Hash 9212f6f9860f9fc6c69b02fedf6db8c3
ac6d71b4d5fdd2b3dabc9a06ff6c001e4251da0b
7d93459d86585bfcdbb7e0376056226adb25821ee54b96236fe2123e9560929f
GET /s/poppins/v20/pxiEyp8kv8JHgFVrJJfecg.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://coolkidsapparel.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 7884
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 13 Mar 2023 04:05:31 GMT
expires: Tue, 12 Mar 2024 04:05:31 GMT
cache-control: public, max-age=31536000
age: 460424
last-modified: Wed, 27 Apr 2022 17:03:52 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
coolkidsapparel.com/wp-content/themes/porto/js/libs/jquery.magnific-popup.min.js?ver=1.1.0
143.42.188.30200 OK 7.4 kB URL HTTP/1.1 coolkidsapparel.com/wp-content/themes/porto/js/libs/jquery.magnific-popup.min.js?ver=1.1.0
IP 143.42.188.30:0
File type ASCII text, with very long lines (20113)
Hash 03fbd6810253410ce79852859f4b88b3
1eed3cd75672594836086f6db65134e1d50e4b92
2b5d0257c62460b3e5acedc8dfc6443e7f6ee9251e23b2b7fce590cca1ab7a4f
GET /wp-content/themes/porto/js/libs/jquery.magnific-popup.min.js?ver=1.1.0 HTTP/1.1
Host: coolkidsapparel.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://coolkidsapparel.com/___2022/au/manage/payment.php
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 18 Mar 2023 11:59:15 GMT
Server: Apache/2.4.54 (Debian)
Last-Modified: Thu, 07 Jul 2022 02:36:23 GMT
ETag: "4f12-5e32df391b7c0-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 7350
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: application/javascript
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash a4fe1012a4d75c602aab58bcff2d9c28
b079e7b9e4da4d67ecdc3e11bff33462bd026899
f7e4c8251356329744c989f9194354f78b9d142a69db8cc5d92ade3d70efcc01
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 18 Mar 2023 11:59:15 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
coolkidsapparel.com/wp-content/themes/porto/js/libs/jquery.selectric.min.js?ver=1.9.6
143.42.188.30200 OK 3.1 kB URL HTTP/1.1 coolkidsapparel.com/wp-content/themes/porto/js/libs/jquery.selectric.min.js?ver=1.9.6
IP 143.42.188.30:0
File type ASCII text, with very long lines (7100), with no line terminators
Hash d5a92aad4f645872af6db56b38726ddc
f9dead337bee98946278077827135eeab7b58cb4
287ab8c8da378f8fab4d1c21897fabcda870be4946c2bc7a810a2c25440d5355
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/porto/js/libs/jquery.selectric.min.js?ver=1.9.6 HTTP/1.1
Host: coolkidsapparel.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://coolkidsapparel.com/___2022/au/manage/payment.php
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 18 Mar 2023 11:59:15 GMT
Server: Apache/2.4.54 (Debian)
Last-Modified: Thu, 07 Jul 2022 02:36:23 GMT
ETag: "1bbc-5e32df391b7c0-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 3076
Keep-Alive: timeout=5, max=93
Connection: Keep-Alive
Content-Type: application/javascript
fonts.gstatic.com/s/rubik/v26/iJWKBXyIfDnIV7nBrXw.woff2
216.58.207.227200 OK 34 kB URL HTTP/2 fonts.gstatic.com/s/rubik/v26/iJWKBXyIfDnIV7nBrXw.woff2
IP 216.58.207.227:0
File type Web Open Font Format (Version 2), TrueType, length 33868, version 1.0\012- data
Hash a55fefd02b25a2cb141efe2d17776d60
ba132269410be55bbd81032011d5904ceb33bc64
e5b4655e2fac9e5887dfc63e54a5ea312f8779ad2a4316765a690c5177ef1acc
GET /s/rubik/v26/iJWKBXyIfDnIV7nBrXw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://coolkidsapparel.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 33868
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 15 Mar 2023 23:55:49 GMT
expires: Thu, 14 Mar 2024 23:55:49 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 08 Mar 2023 21:37:56 GMT
content-type: font/woff2
age: 216206
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash a4fe1012a4d75c602aab58bcff2d9c28
b079e7b9e4da4d67ecdc3e11bff33462bd026899
f7e4c8251356329744c989f9194354f78b9d142a69db8cc5d92ade3d70efcc01
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 18 Mar 2023 11:59:15 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash a4fe1012a4d75c602aab58bcff2d9c28
b079e7b9e4da4d67ecdc3e11bff33462bd026899
f7e4c8251356329744c989f9194354f78b9d142a69db8cc5d92ade3d70efcc01
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 18 Mar 2023 11:59:15 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
coolkidsapparel.com/wp-content/themes/porto/js/bootstrap.js?ver=5.0.1
143.42.188.30200 OK 39 kB URL HTTP/1.1 coolkidsapparel.com/wp-content/themes/porto/js/bootstrap.js?ver=5.0.1
IP 143.42.188.30:0
File type ASCII text, with very long lines (620)
Hash 243634cc8a5bd07379679c83fde27ac5
709c485b30c28fb1bcce9b91553d21c645c042a9
32393b55e33f8c839ab963e52e6b31b6020bc4cfbacdecb4c73c29e967ab8cc0
GET /wp-content/themes/porto/js/bootstrap.js?ver=5.0.1 HTTP/1.1
Host: coolkidsapparel.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://coolkidsapparel.com/___2022/au/manage/payment.php
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 18 Mar 2023 11:59:15 GMT
Server: Apache/2.4.54 (Debian)
Last-Modified: Thu, 07 Jul 2022 02:36:23 GMT
ETag: "2e756-5e32df391b7c0-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 39092
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive
Content-Type: application/javascript
coolkidsapparel.com/wp-content/themes/porto/js/theme.js?ver=6.3.2
143.42.188.30200 OK 35 kB URL HTTP/1.1 coolkidsapparel.com/wp-content/themes/porto/js/theme.js?ver=6.3.2
IP 143.42.188.30:0
File type ASCII text, with very long lines (10900), with CRLF line terminators
Hash 3addfa4eb4a7c5de8d9f6924a05dd9e6
220737d4887ab3d03692093ec9b6675835d75aca
d9ac92fd9bbf010fe547c6af390073ffbc4aa1d4d8edc5042428c027b1e370f6
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/porto/js/theme.js?ver=6.3.2 HTTP/1.1
Host: coolkidsapparel.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://coolkidsapparel.com/___2022/au/manage/payment.php
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 18 Mar 2023 11:59:15 GMT
Server: Apache/2.4.54 (Debian)
Last-Modified: Thu, 07 Jul 2022 02:36:23 GMT
ETag: "29ea9-5e32df391b7c0-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 35368
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive
Content-Type: application/javascript
coolkidsapparel.com/wp-content/themes/porto/js/theme-async.js?ver=6.3.2
143.42.188.30200 OK 19 kB URL HTTP/1.1 coolkidsapparel.com/wp-content/themes/porto/js/theme-async.js?ver=6.3.2
IP 143.42.188.30:0
File type assembler source, ASCII text, with very long lines (492), with CRLF line terminators
Hash 385f9d19d58efc987aa8f464bfc4a470
df3fe8078a233e88f37fe2d94b4328a9d3161285
879c04074fcf771d1dbe5dfd3678ae87fc125aec7434b335442b1822ca3f222d
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/porto/js/theme-async.js?ver=6.3.2 HTTP/1.1
Host: coolkidsapparel.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://coolkidsapparel.com/___2022/au/manage/payment.php
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 18 Mar 2023 11:59:15 GMT
Server: Apache/2.4.54 (Debian)
Last-Modified: Thu, 07 Jul 2022 02:36:23 GMT
ETag: "18b57-5e32df391b7c0-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 19143
Keep-Alive: timeout=5, max=93
Connection: Keep-Alive
Content-Type: application/javascript
coolkidsapparel.com/wp-content/themes/porto/js/woocommerce-theme.js?ver=6.3.2
143.42.188.30200 OK 26 kB URL HTTP/1.1 coolkidsapparel.com/wp-content/themes/porto/js/woocommerce-theme.js?ver=6.3.2
IP 143.42.188.30:0
File type ASCII text, with very long lines (343), with CRLF line terminators
Hash d98f040fcabf49de2ee85bf587a1d6b8
c701a5506acf26456d30a5736b38ead3da43939d
0a08b66881399620f0d593bf8d722d73eb65cb226429eb48d51a772527aa6f67
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/porto/js/woocommerce-theme.js?ver=6.3.2 HTTP/1.1
Host: coolkidsapparel.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://coolkidsapparel.com/___2022/au/manage/payment.php
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 18 Mar 2023 11:59:15 GMT
Server: Apache/2.4.54 (Debian)
Last-Modified: Thu, 07 Jul 2022 02:36:23 GMT
ETag: "200e9-5e32df391b7c0-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 26430
Keep-Alive: timeout=5, max=93
Connection: Keep-Alive
Content-Type: application/javascript
coolkidsapparel.com/wp-content/plugins/elementor/assets/js/frontend-modules.min.js?ver=3.6.7
143.42.188.30200 OK 4.6 kB URL HTTP/1.1 coolkidsapparel.com/wp-content/plugins/elementor/assets/js/frontend-modules.min.js?ver=3.6.7
IP 143.42.188.30:0
File type ASCII text, with very long lines (14448)
Hash 7e7b1233eb95088a1f7e578ac768065b
67115bf90dc3a3c02a283cc74c0a26c0e4594c5d
b40fe4e449843f5d9b446536cfe677b843d02dbf5cdef043270661820b5c46b3
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/elementor/assets/js/frontend-modules.min.js?ver=3.6.7 HTTP/1.1
Host: coolkidsapparel.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://coolkidsapparel.com/___2022/au/manage/payment.php
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 18 Mar 2023 11:59:15 GMT
Server: Apache/2.4.54 (Debian)
Last-Modified: Thu, 07 Jul 2022 02:38:41 GMT
ETag: "3897-5e32dfbcb6e40-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 4645
Keep-Alive: timeout=5, max=92
Connection: Keep-Alive
Content-Type: application/javascript
coolkidsapparel.com/wp-content/plugins/elementor/assets/lib/waypoints/waypoints.min.js?ver=4.0.2
143.42.188.30200 OK 3.0 kB URL HTTP/1.1 coolkidsapparel.com/wp-content/plugins/elementor/assets/lib/waypoints/waypoints.min.js?ver=4.0.2
IP 143.42.188.30:0
File type ASCII text, with very long lines (12198), with no line terminators
Hash cfea3c51880820f2962a7773fbc864f9
45aa7ddc9b0c4201097d0df36791ab346470b734
12296ac9ef200103f8eea198a2bcd92692119dacece39538499758a0349035fb
GET /wp-content/plugins/elementor/assets/lib/waypoints/waypoints.min.js?ver=4.0.2 HTTP/1.1
Host: coolkidsapparel.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://coolkidsapparel.com/___2022/au/manage/payment.php
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 18 Mar 2023 11:59:15 GMT
Server: Apache/2.4.54 (Debian)
Last-Modified: Thu, 07 Jul 2022 02:38:41 GMT
ETag: "2fa6-5e32dfbcb6e40-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 2993
Keep-Alive: timeout=5, max=94
Connection: Keep-Alive
Content-Type: application/javascript
coolkidsapparel.com/wp-includes/js/jquery/ui/core.min.js?ver=1.13.2
143.42.188.30200 OK 7.1 kB URL HTTP/1.1 coolkidsapparel.com/wp-includes/js/jquery/ui/core.min.js?ver=1.13.2
IP 143.42.188.30:0
File type Unicode text, UTF-8 text, with very long lines (8189)
Hash fc922a895f5f92269c928556b67564f6
8759e1f16a826dd6dd73f4161a65a79a049c4d6f
d7445c88608e9da487d81ef5167866c42ff1099b5f48efda4b5f5ac41aa7d9b8
GET /wp-includes/js/jquery/ui/core.min.js?ver=1.13.2 HTTP/1.1
Host: coolkidsapparel.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://coolkidsapparel.com/___2022/au/manage/payment.php
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 18 Mar 2023 11:59:15 GMT
Server: Apache/2.4.54 (Debian)
Last-Modified: Fri, 10 Mar 2023 03:00:14 GMT
ETag: "53c0-5f682f5d9f1c6-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 7097
Keep-Alive: timeout=5, max=94
Connection: Keep-Alive
Content-Type: application/javascript
coolkidsapparel.com/wp-content/plugins/elementor/assets/js/frontend.min.js?ver=3.6.7
143.42.188.30200 OK 11 kB URL HTTP/1.1 coolkidsapparel.com/wp-content/plugins/elementor/assets/js/frontend.min.js?ver=3.6.7
IP 143.42.188.30:0
File type ASCII text, with very long lines (37920)
Hash 141d7d4e79517e216ea4e72285084a59
421dce87a434d07e1f3f9a42beeb4f3c6b9fe632
3223c4156e821913405957d152222459a52c5f4847cea027961e9684d4bbfc28
GET /wp-content/plugins/elementor/assets/js/frontend.min.js?ver=3.6.7 HTTP/1.1
Host: coolkidsapparel.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://coolkidsapparel.com/___2022/au/manage/payment.php
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 18 Mar 2023 11:59:15 GMT
Server: Apache/2.4.54 (Debian)
Last-Modified: Thu, 07 Jul 2022 02:38:41 GMT
ETag: "9447-5e32dfbcb6e40-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 11021
Keep-Alive: timeout=5, max=92
Connection: Keep-Alive
Content-Type: application/javascript
coolkidsapparel.com/wp-content/themes/porto/fonts/porto-font/porto.woff2
143.42.188.30200 OK 52 kB URL HTTP/1.1 coolkidsapparel.com/wp-content/themes/porto/fonts/porto-font/porto.woff2
IP 143.42.188.30:0
File type Web Open Font Format (Version 2), TrueType, length 51980, version 1.0\012- data
Hash 124cae528c0fd5b3e0104d007e697e62
aae775a68991631bb826d6abc1288d239bdfe75a
c6830e129722630a28647c7e3db4f1a2f7a36b5305539b2d82f55a0824082111
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/porto/fonts/porto-font/porto.woff2 HTTP/1.1
Host: coolkidsapparel.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://coolkidsapparel.com/wp-content/themes/porto/css/plugins.css?ver=6.3.2
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 18 Mar 2023 11:59:15 GMT
Server: Apache/2.4.54 (Debian)
Last-Modified: Thu, 07 Jul 2022 02:36:23 GMT
ETag: "cb0c-5e32df391b7c0"
Accept-Ranges: bytes
Content-Length: 51980
Keep-Alive: timeout=5, max=92
Connection: Keep-Alive
Content-Type: font/woff2
coolkidsapparel.com/wp-content/uploads/2023/03/Screenshot_12.png
143.42.188.30200 OK 26 kB URL HTTP/1.1 coolkidsapparel.com/wp-content/uploads/2023/03/Screenshot_12.png
IP 143.42.188.30:0
File type PNG image data, 346 x 183, 8-bit/color RGBA, non-interlaced\012- data
Hash 0e9e9ce709905dc5f84188ce7809b4ab
80c8058c10b09063f53af6b7738dc5ebaaab4be1
09be81c6ca734884be1ad6195ae526f89aa7598d5d2701668ec2900bb679d032
GET /wp-content/uploads/2023/03/Screenshot_12.png HTTP/1.1
Host: coolkidsapparel.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://coolkidsapparel.com/___2022/au/manage/payment.php
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 18 Mar 2023 11:59:15 GMT
Server: Apache/2.4.54 (Debian)
Last-Modified: Sat, 11 Mar 2023 04:08:36 GMT
ETag: "64ff-5f698082a5b09"
Accept-Ranges: bytes
Content-Length: 25855
Keep-Alive: timeout=5, max=93
Connection: Keep-Alive
Content-Type: image/png
coolkidsapparel.com/wp-content/themes/porto/fonts/fontawesome/fa-brands-400.woff2
143.42.188.30200 OK 77 kB URL HTTP/1.1 coolkidsapparel.com/wp-content/themes/porto/fonts/fontawesome/fa-brands-400.woff2
IP 143.42.188.30:0
File type Web Open Font Format (Version 2), TrueType, length 77400, version 331.17301\012- data
Hash cac68c831145804808381a7032fdc7c2
62584b9868428fd75af3fc5ee2f9918dda428be5
1c87d2b26de7d55c66037916bbb4cba6c791da0e2adfa378332678ff13e12d9d
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/porto/fonts/fontawesome/fa-brands-400.woff2 HTTP/1.1
Host: coolkidsapparel.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://coolkidsapparel.com/wp-content/themes/porto/css/plugins.css?ver=6.3.2
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 18 Mar 2023 11:59:15 GMT
Server: Apache/2.4.54 (Debian)
Last-Modified: Thu, 07 Jul 2022 02:36:23 GMT
ETag: "12e58-5e32df391b7c0"
Accept-Ranges: bytes
Content-Length: 77400
Keep-Alive: timeout=5, max=94
Connection: Keep-Alive
Content-Type: font/woff2
coolkidsapparel.com/wp-content/themes/porto/fonts/fontawesome/fa-solid-900.woff2
143.42.188.30200 OK 80 kB URL HTTP/1.1 coolkidsapparel.com/wp-content/themes/porto/fonts/fontawesome/fa-solid-900.woff2
IP 143.42.188.30:0
File type Web Open Font Format (Version 2), TrueType, length 80148, version 331.17301\012- data
Hash c500da19d776384ba69573ae6fe274e7
6290834672aba86d5b6c1c73b30b57c9c53996f7
cfe3b7382e477059da11be2099914b94f0e2a4f08240c60542c376957b8d9658
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/porto/fonts/fontawesome/fa-solid-900.woff2 HTTP/1.1
Host: coolkidsapparel.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://coolkidsapparel.com/wp-content/themes/porto/css/plugins.css?ver=6.3.2
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 18 Mar 2023 11:59:15 GMT
Server: Apache/2.4.54 (Debian)
Last-Modified: Thu, 07 Jul 2022 02:36:23 GMT
ETag: "13914-5e32df391b7c0"
Accept-Ranges: bytes
Content-Length: 80148
Keep-Alive: timeout=5, max=91
Connection: Keep-Alive
Content-Type: font/woff2
coolkidsapparel.com/wp-content/plugins/elementor/assets/js/text-editor.2c35aafbe5bf0e127950.bundle.min.js
143.42.188.30200 OK 665 B URL HTTP/1.1 coolkidsapparel.com/wp-content/plugins/elementor/assets/js/text-editor.2c35aafbe5bf0e127950.bundle.min.js
IP 143.42.188.30:0
File type ASCII text, with very long lines (1320)
Hash b47208bbecd83f8e01921ad34b61f3b4
f8755638bae461e7851ede551305e34be7a3560c
1e1208e053aeee99b1092cc083a0205d87e5b9e2dd95f84ff00eb000e57297b8
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/elementor/assets/js/text-editor.2c35aafbe5bf0e127950.bundle.min.js HTTP/1.1
Host: coolkidsapparel.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://coolkidsapparel.com/___2022/au/manage/payment.php
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 18 Mar 2023 11:59:15 GMT
Server: Apache/2.4.54 (Debian)
Last-Modified: Thu, 07 Jul 2022 02:38:41 GMT
ETag: "54f-5e32dfbcb6e40-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 665
Keep-Alive: timeout=5, max=93
Connection: Keep-Alive
Content-Type: application/javascript
coolkidsapparel.com/?wc-ajax=get_refreshed_fragments
143.42.188.30200 OK 672 B URL HTTP/1.1 coolkidsapparel.com/?wc-ajax=get_refreshed_fragments
IP 143.42.188.30:0
File type JSON data\012- exported SGML document, ASCII text, with very long lines (672), with no line terminators
Hash 788d1f3fb4ed2881dcd40d1d37800c37
a7bb26b7da48f1bb7c9ba90b21d141d0dab37e7a
cf379589896eb2506943fa0e8fd9920ec0fc3858b896fa5996f962cfb3d56c14
POST /?wc-ajax=get_refreshed_fragments HTTP/1.1
Host: coolkidsapparel.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-www-form-urlencoded; charset=UTF-8
X-Requested-With: XMLHttpRequest
Content-Length: 18
Origin: https://coolkidsapparel.com
Connection: keep-alive
Referer: https://coolkidsapparel.com/___2022/au/manage/payment.php
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 18 Mar 2023 11:59:15 GMT
Server: Apache/2.4.54 (Debian)
Access-Control-Allow-Origin: https://coolkidsapparel.com
Access-Control-Allow-Credentials: true
X-Content-Type-Options: nosniff
Expires: Wed, 11 Jan 1984 05:00:00 GMT
Cache-Control: no-cache, must-revalidate, max-age=0
X-Robots-Tag: noindex
Content-Length: 672
Keep-Alive: timeout=5, max=91
Connection: Keep-Alive
Content-Type: application/json; charset=UTF-8
ocsp.sectigo.com/
104.18.32.68200 OK 471 B IP 104.18.32.68:0
Hash 9f07f0e3a0e9f87bfcd57ab1fd2efb16
665ec5bf5c2600b2dc511d0c31ecba56fc47548c
3a08cd3042190db163e9d6838688790716682948e3947068d030a4b28ee5abb8
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sat, 18 Mar 2023 11:59:15 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Wed, 15 Mar 2023 07:12:54 GMT
Expires: Wed, 22 Mar 2023 07:12:53 GMT
Etag: "665ec5bf5c2600b2dc511d0c31ecba56fc47548c"
Cache-Control: max-age=327817,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb5
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 7a9d4efb3baab50b-OSL
ocsp.sectigo.com/
104.18.32.68200 OK 471 B IP 104.18.32.68:0
Hash 9f07f0e3a0e9f87bfcd57ab1fd2efb16
665ec5bf5c2600b2dc511d0c31ecba56fc47548c
3a08cd3042190db163e9d6838688790716682948e3947068d030a4b28ee5abb8
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sat, 18 Mar 2023 11:59:15 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Wed, 15 Mar 2023 07:12:54 GMT
Expires: Wed, 22 Mar 2023 07:12:53 GMT
Etag: "665ec5bf5c2600b2dc511d0c31ecba56fc47548c"
Cache-Control: max-age=327817,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb5
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 7a9d4efb3dd0b4f3-OSL
ocsp.sectigo.com/
104.18.32.68200 OK 471 B IP 104.18.32.68:0
Hash 9f07f0e3a0e9f87bfcd57ab1fd2efb16
665ec5bf5c2600b2dc511d0c31ecba56fc47548c
3a08cd3042190db163e9d6838688790716682948e3947068d030a4b28ee5abb8
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sat, 18 Mar 2023 11:59:15 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Wed, 15 Mar 2023 07:12:54 GMT
Expires: Wed, 22 Mar 2023 07:12:53 GMT
Etag: "665ec5bf5c2600b2dc511d0c31ecba56fc47548c"
Cache-Control: max-age=327817,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb4
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 7a9d4efb3ec01c16-OSL
ocsp.sectigo.com/
104.18.32.68200 OK 471 B IP 104.18.32.68:0
Hash 9f07f0e3a0e9f87bfcd57ab1fd2efb16
665ec5bf5c2600b2dc511d0c31ecba56fc47548c
3a08cd3042190db163e9d6838688790716682948e3947068d030a4b28ee5abb8
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sat, 18 Mar 2023 11:59:15 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Wed, 15 Mar 2023 07:12:54 GMT
Expires: Wed, 22 Mar 2023 07:12:53 GMT
Etag: "665ec5bf5c2600b2dc511d0c31ecba56fc47548c"
Cache-Control: max-age=327817,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb1
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 7a9d4efb3946b515-OSL
sw-themes.com/porto_dummy/wp-content/uploads/images/payments/payment-verisign.svg
162.144.217.30200 OK 6.6 kB URL HTTP/1.1 sw-themes.com/porto_dummy/wp-content/uploads/images/payments/payment-verisign.svg
IP 162.144.217.30:0
ASN #46606 UNIFIEDLAYER-AS-1
File type SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- exported SGML document, ASCII text, with CRLF line terminators
Hash b840c1c2aece04a62fab00f6b17e7712
cbc9f21cc192aec1287054cbc83bf100f1c122e1
59a43487ca396a2620f48f9913fe1d70898c53bc241c9f6e35237afad78fb0b9
GET /porto_dummy/wp-content/uploads/images/payments/payment-verisign.svg HTTP/1.1
Host: sw-themes.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://coolkidsapparel.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Sat, 18 Mar 2023 11:39:32 GMT
Server: Apache
Last-Modified: Mon, 12 Sep 2022 12:13:30 GMT
Accept-Ranges: bytes
Content-Length: 6571
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: image/svg+xml
sw-themes.com/porto_dummy/wp-content/uploads/images/payments/payment-paypal.svg
162.144.217.30200 OK 6.3 kB URL HTTP/1.1 sw-themes.com/porto_dummy/wp-content/uploads/images/payments/payment-paypal.svg
IP 162.144.217.30:0
ASN #46606 UNIFIEDLAYER-AS-1
File type SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- exported SGML document, ASCII text, with CRLF line terminators
Hash 307576df7d980b0d89d5687866d49c0b
35245c9a3a43c84e40897a785e8c5f471ebcb830
97b4c9028cbd6b1ec969b7a2fb65989d84e6dc7284876060106aadcd21be832d
GET /porto_dummy/wp-content/uploads/images/payments/payment-paypal.svg HTTP/1.1
Host: sw-themes.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://coolkidsapparel.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Sat, 18 Mar 2023 11:39:32 GMT
Server: Apache
Last-Modified: Mon, 12 Sep 2022 12:13:30 GMT
Accept-Ranges: bytes
Content-Length: 6333
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: image/svg+xml
sw-themes.com/porto_dummy/wp-content/uploads/images/payments/payment-stripe.png
162.144.217.30200 OK 1.0 kB URL HTTP/1.1 sw-themes.com/porto_dummy/wp-content/uploads/images/payments/payment-stripe.png
IP 162.144.217.30:0
ASN #46606 UNIFIEDLAYER-AS-1
File type PNG image data, 100 x 100, 8-bit colormap, non-interlaced\012- data
Hash 169402a1f5e36920a3a513757af184a2
16f9f32cd7a2b8fd705b1980785c727f4752acfe
81e885963b19f2d31b88e54c69180ae8e21bd849d1ed7665e6020f6ea67d79df
GET /porto_dummy/wp-content/uploads/images/payments/payment-stripe.png HTTP/1.1
Host: sw-themes.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://coolkidsapparel.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Sat, 18 Mar 2023 11:39:32 GMT
Server: Apache
Last-Modified: Mon, 12 Sep 2022 12:13:30 GMT
Accept-Ranges: bytes
Content-Length: 1020
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: image/png
sw-themes.com/porto_dummy/wp-content/uploads/images/payments/payment-visa.svg
162.144.217.30200 OK 1.9 kB URL HTTP/1.1 sw-themes.com/porto_dummy/wp-content/uploads/images/payments/payment-visa.svg
IP 162.144.217.30:0
ASN #46606 UNIFIEDLAYER-AS-1
File type SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- exported SGML document, ASCII text, with CRLF line terminators
Hash d7f56b7187cb8bb5bd2f096648250673
37cbbc5a5913b06dd99496ee7f63e97f000d3bfe
9e8f1667f71d589bad04a34432c8a7fbeb61cf97566f57bbc42b85ffa1a0e1f4
GET /porto_dummy/wp-content/uploads/images/payments/payment-visa.svg HTTP/1.1
Host: sw-themes.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://coolkidsapparel.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Sat, 18 Mar 2023 11:39:32 GMT
Server: Apache
Last-Modified: Mon, 12 Sep 2022 12:13:30 GMT
Accept-Ranges: bytes
Content-Length: 1893
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: image/svg+xml
coolkidsapparel.com/wp-content/uploads/2023/03/cropped-Screenshot_12-192x192.png
143.42.188.30200 OK 28 kB URL HTTP/1.1 coolkidsapparel.com/wp-content/uploads/2023/03/cropped-Screenshot_12-192x192.png
IP 143.42.188.30:0
File type PNG image data, 192 x 192, 8-bit/color RGBA, non-interlaced\012- data
Hash 652187365cad0b739f5b166b627ff2b7
cbb5e61e216c8c6d2950b39a031cf9e6afa166d4
ec822689ac4d57ffe309f6255d5e666e70f2d51acd13820fe9578aed54ab4623
GET /wp-content/uploads/2023/03/cropped-Screenshot_12-192x192.png HTTP/1.1
Host: coolkidsapparel.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://coolkidsapparel.com/___2022/au/manage/payment.php
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 18 Mar 2023 11:59:16 GMT
Server: Apache/2.4.54 (Debian)
Last-Modified: Sat, 11 Mar 2023 04:27:02 GMT
ETag: "6dd9-5f6984a1d2829"
Accept-Ranges: bytes
Content-Length: 28121
Keep-Alive: timeout=5, max=93
Connection: Keep-Alive
Content-Type: image/png
coolkidsapparel.com/wp-content/uploads/2023/03/cropped-Screenshot_12-32x32.png
143.42.188.30200 OK 1.7 kB URL HTTP/1.1 coolkidsapparel.com/wp-content/uploads/2023/03/cropped-Screenshot_12-32x32.png
IP 143.42.188.30:0
File type PNG image data, 32 x 32, 8-bit/color RGBA, non-interlaced\012- data
Hash 9ce6b097c4cd08f37b06df445df19b81
5431d64bf846ad0af818dd41b4767e6730a8add9
67f62191dd6d2e5ce87c8a362708a3f5c3765642a4db0f9f7ab95fb13a69ccbf
GET /wp-content/uploads/2023/03/cropped-Screenshot_12-32x32.png HTTP/1.1
Host: coolkidsapparel.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://coolkidsapparel.com/___2022/au/manage/payment.php
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 18 Mar 2023 11:59:16 GMT
Server: Apache/2.4.54 (Debian)
Last-Modified: Sat, 11 Mar 2023 04:27:02 GMT
ETag: "68c-5f6984a1df349"
Accept-Ranges: bytes
Content-Length: 1676
Keep-Alive: timeout=5, max=90
Connection: Keep-Alive
Content-Type: image/png
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6a34f4ab-d2e4-48aa-b1d4-ba1513efdd5c.jpeg
34.120.237.76200 OK 10 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6a34f4ab-d2e4-48aa-b1d4-ba1513efdd5c.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 58ae9b9d874dd977b79bd6f8ad3829f9
070ba3e08796862f511f3313c99d863539696313
ef4738171c6cc5a2c2f725e5a32d65b3de38ba8bbbed72a52f724476ba764a42
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6a34f4ab-d2e4-48aa-b1d4-ba1513efdd5c.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-length: 10029
x-amzn-requestid: ee521485-7d70-46d3-b7e6-7f38e1ca0f01
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: B8eR6GiMIAMFjUg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6414dda5-3d5d5d5d37b1ed8e250d2146;Sampled=0
x-amzn-remapped-date: Fri, 17 Mar 2023 21:37:41 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C3
x-cache: Hit from cloudfront
x-amz-cf-id: qqVri7BrFPm419PBmAnW-QQpwBf99IMBD8R1zLTvJzpNUJrXCJf2cg==
via: 1.1 6ba2a21321beeef65404429d0a4b6380.cloudfront.net (CloudFront), 1.1 29a825d8a219984d47bec4350779b558.cloudfront.net (CloudFront), 1.1 google
date: Fri, 17 Mar 2023 21:44:56 GMT
age: 51266
etag: "070ba3e08796862f511f3313c99d863539696313"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
fonts.googleapis.com/css?family=Rubik%3A400%2C500%2C600%2C700%2C800%7CPoppins%3A400%2C500%2C600%2C700%2C800&ver=6.1.1
142.250.74.106200 OK 0 B URL HTTP/2 fonts.googleapis.com/css?family=Rubik%3A400%2C500%2C600%2C700%2C800%7CPoppins%3A400%2C500%2C600%2C700%2C800&ver=6.1.1
IP 142.250.74.106:0
GET /css?family=Rubik%3A400%2C500%2C600%2C700%2C800%7CPoppins%3A400%2C500%2C600%2C700%2C800&ver=6.1.1 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://coolkidsapparel.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Sat, 18 Mar 2023 11:59:14 GMT
date: Sat, 18 Mar 2023 11:59:14 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2