Report - shophedu.com/

Report Overview

Submitted URL
shophedu.com/
IP
14.225.255.250
ASN
#135905 VIETNAM POSTS AND TELECOMMUNICATIONS GROUP
Submitted
2022-09-27 23:40:17
Access
Website Title
Final URL
Tags
None
urlquery detections
No alerts detected

Detections

urlquery
0
Network Intrusion Detection
0
Threat Detection Systems
20

Domain Summary

Domain / FQDN	Rank	First Seen	Last Seen	Sent	Received	IP
fonts.googleapis.com	8877	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	1.6 kB	4.7 kB	142.250.74.10
contile.services.mozilla.com	1114	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	321 B	229 B	34.117.237.239
cdn.jsdelivr.net	439	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	1.4 kB	26 kB	151.101.85.229
cdn.datatables.net	5456	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	754 B	3.6 kB	172.67.14.139
ocsp.digicert.com	86	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	987 B	1.8 kB	93.184.220.29
cdnjs.cloudflare.com	235	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	393 B	18 kB	104.17.25.14
ocsp.globalsign.com	2075	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	356 B	1.9 kB	104.18.20.226
fonts.gstatic.com	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	1.5 kB	37 kB	142.250.74.163
firefox.settings.services.mozilla.com	867	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	758 B	2.7 kB	143.204.55.27
push.services.mozilla.com	2140	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	594 B	127 B	54.187.71.185
img-getpocket.cdn.mozilla.net	1631	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	3.2 kB	58 kB	34.120.237.76
content-signature-2.cdn.mozilla.net	1152	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	401 B	5.8 kB	143.204.55.49
shophedu.com	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	5.4 kB	352 kB	14.225.255.250
ocsp.pki.goog	175	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	2.0 kB	4.2 kB	142.250.74.3
unpkg.com	11693	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	378 B	22 kB	104.16.122.175
r3.o.lencr.org	344	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	1.6 kB	4.4 kB	23.36.77.32

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

OpenPhish

No alerts detected

PhishTank

No alerts detected

Fortinet's Web Filter

Scan Date	Severity	Indicator	Alert
2022-09-27	medium	shophedu.com/	Phishing
2022-09-27	medium	shophedu.com/template/theme/assets/frontend/css/style.css?v=1621615725	Phishing
2022-09-27	medium	shophedu.com/template/theme/assets/frontend/plugins/bootstrap/js/bootstrap.min.js	Phishing
2022-09-27	medium	shophedu.com/template/cute-alert/cute-alert.js	Phishing
2022-09-27	medium	shophedu.com/template/theme/assets/frontend/theme/assets/plugins/js-cookie/js.cookie.js	Phishing
2022-09-27	medium	shophedu.com/template/theme/assets/frontend/theme/assets/plugins/bootstrap-datepicker/js/bootstrap-datepicker.min.js	Phishing
2022-09-27	medium	shophedu.com/template/theme/assets/frontend/js/kun.js	Phishing
2022-09-27	medium	shophedu.com/template/theme/assets/frontend/js/backtotop.js	Phishing
2022-09-27	medium	shophedu.com/template/theme/assets/frontend/plugins/jquery-cookie/jquery.cookie.js	Phishing
2022-09-27	medium	shophedu.com/template/theme/assets/frontend/plugins/jquery/jquery-2.1.0.min.js	Phishing

mnemonic secure dns

No alerts detected

Quad9 DNS

No alerts detected

Files detected

URL
fonts.gstatic.com/s/robotocondensed/v25/ieVl2ZhZI2eCN5jzbjEETS9weq8-19K7DQ.woff2
IP
142.250.74.163
ASN
#15169 GOOGLE

File type
gzip compressed data, max compression\012- data
Size
16 kB (16446 bytes)
Hash
9219e977b4b43c6c2a4690a8881ca5af
bc1fef6176b3224fcd3fd34a5b1d51e5a852dbac
6e55f2b2869ea1ae0318329dd0ea1d4ff7a37e6dfd83f6027c1a47cebfc349bb

Detections

Analyzer	Verdict	Alert
VirusTotal	0/0

URL
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7723c423-9c9b-4e58-93cc-7198e8ff6f62.jpeg
IP
34.120.237.76
ASN
#15169 GOOGLE

File type
gzip compressed data, max compression\012- data
Size
7.8 kB (7773 bytes)
Hash
f5e467ea08c5c1630d89b108a2c94ccd
de1e700ce42232b6f0e3ba55dd15c9e1ae98d88b
c9fb598d91767b1dc29818db50594a28dabe90c455254846536b88695c8e6683

Detections

Analyzer	Verdict	Alert
VirusTotal	0/0

JavaScript (12)

	URL	Size	First Seen	Last Seen
	shophedu.com/template/theme/assets/frontend/theme/assets/plugins/bootstrap-datepicker/js/bootstrap-datepicker.min.js	34 kB	2023-03-08	2023-04-02
Pretty URL shophedu.com/template/theme/assets/frontend/theme/assets/plugins/bootstrap-datepicker/js/bootstrap-datepicker.min.js IP 14.225.255.250 ASN #135905 VIETNAM POSTS AND TELECOMMUNICATIONS GROUP Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 02:47:39 Last Seen2023-04-02 21:15:51 Times Seen3 Hash e4c4b2a9a58baf5ce39e63494aa04162 42e78218ae35ee9664a27ac890edd41992436ef8 e938ccaf6d664fa5663d08d918ef5be0c049b5794fa469c91ed9afee32399c51 Loading...

	shophedu.com/template/theme/assets/frontend/plugins/jquery-cookie/jquery.cookie.js	1.9 kB	2023-03-08	2023-04-02
Pretty URL shophedu.com/template/theme/assets/frontend/plugins/jquery-cookie/jquery.cookie.js IP 14.225.255.250 ASN #135905 VIETNAM POSTS AND TELECOMMUNICATIONS GROUP Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 02:47:39 Last Seen2023-04-02 21:15:51 Times Seen2 Hash 09173d33b954e7427e01aff5dd4005c1 e0073d31effe0d7e1da49beb40acafe76fd8dfe0 be000dd9f3dde05e61469d7846067b1c346fb9953024b70cbf8ab66fadfc57f8 Loading...

	shophedu.com/template/theme/assets/frontend/js/backtotop.js	944 B	2023-03-08	2023-04-02
Pretty URL shophedu.com/template/theme/assets/frontend/js/backtotop.js IP 14.225.255.250 ASN #135905 VIETNAM POSTS AND TELECOMMUNICATIONS GROUP Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 02:47:39 Last Seen2023-04-02 21:15:51 Times Seen2 Hash 2eabf936275ea8aaa4f4866ba29f43a2 9a0642adad3576d5b7493bd8e030b10c790feb05 2944868ff972d8d744004100daa99513d864183764505363d42b9f504d9bfe7a Loading...

	cdn.datatables.net/1.10.24/js/jquery.dataTables.js	450 kB	2023-03-08	2024-01-23
Pretty URL cdn.datatables.net/1.10.24/js/jquery.dataTables.js IP 172.67.14.139 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 02:47:39 Last Seen2024-01-23 06:44:18 Times Seen5 Hash 5d061fbdcd502c82f1eed326af4a83cb abe12919d90936f9a7a6c79b274f1a5416159a7d 67443c3e2b3a31a2d1039888e7e35979079e927a96d6c95ed3a947facc024d6b Loading...

	cdn.jsdelivr.net/npm/lazyload@2.0.0-rc.2/lazyload.js	5.7 kB	2023-03-07	2024-04-25
Pretty URL cdn.jsdelivr.net/npm/lazyload@2.0.0-rc.2/lazyload.js IP 151.101.85.229 ASN #54113 FASTLY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:06:47 Last Seen2024-04-25 09:56:48 Times Seen923 Hash 60669862b7c39ecb3283b1faa9563a07 f9b1d545cf4c85ddda753ff9609ede569d92b31f 874cad10027313f3620a770d4a338369833ed5b3913f0793cb8500361b19e6ea Loading...

	cdn.jsdelivr.net/npm/vanilla-lazyload@17.3.2/dist/lazyload.min.js	7.6 kB	2023-03-08	2024-02-07
Pretty URL cdn.jsdelivr.net/npm/vanilla-lazyload@17.3.2/dist/lazyload.min.js IP 151.101.85.229 ASN #54113 FASTLY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 02:47:39 Last Seen2024-02-07 07:40:39 Times Seen12 Hash 236d5e003592f511d2aee3811cdf4b87 c9dc4a5ad1bcafa78608af5b460e2f46bdb65453 28762ea362d067f6cdfc31442f0255cbf2998d5f388672e6156378ca30f2514b Loading...

	cdn.jsdelivr.net/npm/sweetalert2@11	70 kB	2023-03-08	2023-03-08
Pretty URL cdn.jsdelivr.net/npm/sweetalert2@11 IP 151.101.85.229 ASN #54113 FASTLY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 02:00:23 Last Seen2023-03-08 02:52:31 Times Seen1 Hash cf6e70fbfb367b656af61026a94c3c0b a5dc0c3ce4d600c885e761ad2b408e960f399915 558faad2c3748bf476a9d204b47789eb6535435c751fbaaf774f2f90824b0db7 Loading...

	shophedu.com/template/theme/assets/frontend/plugins/bootstrap/js/bootstrap.min.js	37 kB	2023-03-07	2024-04-15
Pretty URL shophedu.com/template/theme/assets/frontend/plugins/bootstrap/js/bootstrap.min.js IP 14.225.255.250 ASN #135905 VIETNAM POSTS AND TELECOMMUNICATIONS GROUP Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:11:40 Last Seen2024-04-15 12:40:32 Times Seen223 Hash 79b5346433d3bdf736aab2379a008083 ce18fabde2fc070790d807e8753327524906db1e 612553e6a88fa4e0196ef0c81f332c75ce887d471b1dd0abe2c3bd05ce861353 Loading...

	shophedu.com/template/theme/assets/frontend/plugins/jquery/jquery-2.1.0.min.js	84 kB	2023-03-08	2023-03-13
Pretty URL shophedu.com/template/theme/assets/frontend/plugins/jquery/jquery-2.1.0.min.js IP 14.225.255.250 ASN #135905 VIETNAM POSTS AND TELECOMMUNICATIONS GROUP Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 02:47:39 Last Seen2023-03-13 20:49:05 Times Seen1 Hash cace89e421639638be0a2d4f0622249b 761794f949fa098b361eb8311f0550766d8c3b55 3f63164ff0f908bb4162cd5c58bd91e3e5e019a5b3b7caefe3733815b3656514 Loading...

	shophedu.com/template/theme/assets/frontend/theme/assets/plugins/js-cookie/js.cookie.js	2.8 kB	2023-03-08	2023-04-02
Pretty URL shophedu.com/template/theme/assets/frontend/theme/assets/plugins/js-cookie/js.cookie.js IP 14.225.255.250 ASN #135905 VIETNAM POSTS AND TELECOMMUNICATIONS GROUP Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 02:47:39 Last Seen2023-04-02 21:15:51 Times Seen2 Hash 1439dd3fd7b86da2aec3caa9c9d7c455 c26699045477fff0e03119c233fbddc0359dce41 ae1b952722e8297601f246c542205e30d25321b73153e0bd88f0a694e592f593 Loading...

	shophedu.com/template/theme/assets/frontend/js/kun.js	3.9 kB	2023-03-08	2024-01-09
Pretty URL shophedu.com/template/theme/assets/frontend/js/kun.js IP 14.225.255.250 ASN #135905 VIETNAM POSTS AND TELECOMMUNICATIONS GROUP Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 02:47:39 Last Seen2024-01-09 16:11:19 Times Seen8 Hash 8bbb95f0a99c31d00c56839943d4010f e3610799b18ccb61a16f9bdf03d9448e28cf6005 267d7e881bfe440ec22e504a58edd746fce25c67db57d14ee90f1075310f5940 Loading...

	shophedu.com/template/cute-alert/cute-alert.js	4.2 kB	2023-03-07	2023-11-27
Pretty URL shophedu.com/template/cute-alert/cute-alert.js IP 14.225.255.250 ASN #135905 VIETNAM POSTS AND TELECOMMUNICATIONS GROUP Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:35:45 Last Seen2023-11-27 04:44:56 Times Seen11 Hash b8d086c5a30bb5e657ca34ae7738d2a2 b1fcca62de12e6a118701e7e39bc42de1e609300 09157ed9222cf4abc019f4bd7632e6883dc6f264a5969d4bc32f1e9bef98651d Loading...

HTTP Transactions (56)

URL IP Response Size

firefox.settings.services.mozilla.com/v1/

143.204.55.27

200 OK

939 B

URL HTTP/1.1
firefox.settings.services.mozilla.com/v1/
IP
143.204.55.27:0
ASN
#16509 AMAZON-02

File type
JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Size
939 B (939 bytes)
Hash
1b3053fa528e28810f8a2cc9284cc921
cca9eb471d941881a6b9a1793aecb6c281908f6a
a2427848ba35575dda8a82cf88f104978234c05389deebc3fc8279d9075eff45

HTTP Headers

GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 939
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Alert, Content-Type, Backoff, Content-Length, Retry-After
Cache-Control: max-age=3600
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Date: Tue, 27 Sep 2022 23:15:34 GMT
X-Content-Type-Options: nosniff
X-Cache: Hit from cloudfront
Via: 1.1 f46f7100ad6fc83a021f62212f945830.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: 9OXt824rOl6Or24ON2acknki7ugTD6dh_ivPFSBHkC9uY1rGaj4f-Q==
Age: 1471

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
d2560f62890e75b8de444fed96c22f52
334ce0c48e606ee029f31eeb1463af87b1024bb9
4397e6b45b5822fbab9b83abe0b96ee70efba7cd2160b51936159865ede5fdb1

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "4397E6B45B5822FBAB9B83ABE0B96EE70EFBA7CD2160B51936159865EDE5FDB1"
Last-Modified: Sun, 25 Sep 2022 18:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7064
Expires: Wed, 28 Sep 2022 01:37:49 GMT
Date: Tue, 27 Sep 2022 23:40:05 GMT
Connection: keep-alive

content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-30-18-47-44.chain

143.204.55.49

200 OK

5.3 kB

URL HTTP/2
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-30-18-47-44.chain
IP
143.204.55.49:0
ASN
#16509 AMAZON-02

File type
PEM certificate\012- , ASCII text
Size
5.3 kB (5348 bytes)
Hash
6113f8408c59aebe188d6af273b90743
7398873bf00f99944eaa77ad3ebc0d43c23dba6b
b6e0cc9ad68306208a160f3835fb8da76acc5a82d8fde1da5a98e1de1c11a770

HTTP Headers

GET /chains/remote-settings.content-signature.mozilla.org-2022-10-30-18-47-44.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: binary/octet-stream
content-length: 5348
last-modified: Sat, 10 Sep 2022 18:47:45 GMT
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
date: Tue, 27 Sep 2022 09:24:14 GMT
etag: "6113f8408c59aebe188d6af273b90743"
x-cache: Hit from cloudfront
via: 1.1 a034aae43a19aef875fa395182990970.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: bLLVZ5bqyafKGIg1ciMcBM_VaWxqX_xSOgMmevc7Mq3gPBlrTPMqCQ==
age: 51352
X-Firefox-Spdy: h2

contile.services.mozilla.com/v1/tiles

34.117.237.239

200 OK

12 B

URL HTTP/2
contile.services.mozilla.com/v1/tiles
IP
34.117.237.239:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with no line terminators
Size
12 B (12 bytes)
Hash
23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3

HTTP Headers

GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
date: Tue, 27 Sep 2022 23:40:05 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2

firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US

143.204.55.27

200 OK

329 B

URL HTTP/1.1
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP
143.204.55.27:0
ASN
#16509 AMAZON-02

File type
JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Size
329 B (329 bytes)
Hash
0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300

HTTP Headers

GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 329
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: ETag, Expires, Content-Length, Cache-Control, Pragma, Content-Type, Alert, Backoff, Last-Modified, Retry-After
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Last-Modified: Fri, 25 Mar 2022 17:45:46 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
Cache-Control: max-age=3600, max-age=3600
Date: Tue, 27 Sep 2022 23:10:46 GMT
Expires: Tue, 27 Sep 2022 23:12:11 GMT
ETag: "1648230346554"
X-Cache: Hit from cloudfront
Via: 1.1 8ddb6d7670d8c5a85c04a10525a71b90.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: 6YDX08-2WYzlZsw-gEskindKIE_bGY1x_vhat9fOg6nnM2IOwcnjXw==
Age: 1759

shophedu.com/

14.225.255.250

200 OK

3.7 kB

URL HTTP/1.1
shophedu.com/
IP
14.225.255.250:0
ASN
#135905 VIETNAM POSTS AND TELECOMMUNICATIONS GROUP

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text
Size
3.7 kB (3659 bytes)
Hash
b0f2a31fc76988221092f8fce2fab4e7
6cb6a4dfd248ded8254c0499db20e78701e831b9
1b0c9f21c0c89e83d63af5f4abe391fdb71a59bd3f1c035b62f969916a9d721f

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET / HTTP/1.1
Host: shophedu.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1

HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
x-powered-by: PHP/7.4.30
set-cookie: PHPSESSID=581191aea5d401f648f6031dff62f11e; path=/
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: no-store, no-cache, must-revalidate
pragma: no-cache
content-type: text/html; charset=UTF-8
transfer-encoding: chunked
content-encoding: gzip
vary: Accept-Encoding
date: Tue, 27 Sep 2022 23:40:05 GMT
server: LiteSpeed

cdn.jsdelivr.net/npm/sweetalert2@11

151.101.85.229

301 Moved Permanently

0 B

URL HTTP/1.1
cdn.jsdelivr.net/npm/sweetalert2@11
IP
151.101.85.229:0
ASN
#54113 FASTLY

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /npm/sweetalert2@11 HTTP/1.1
Host: cdn.jsdelivr.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://shophedu.com/

HTTP/1.1 301 Moved Permanently
Server: Varnish
Retry-After: 0
Location: https://cdn.jsdelivr.net/npm/sweetalert2@11
Content-Length: 0
Accept-Ranges: bytes
Date: Tue, 27 Sep 2022 23:40:06 GMT
Connection: close
X-Served-By: cache-bma1662-BMA
X-Cache: HIT

cdn.datatables.net/1.10.24/css/jquery.dataTables.css

172.67.14.139

200 OK

2.4 kB

URL HTTP/2
cdn.datatables.net/1.10.24/css/jquery.dataTables.css
IP
172.67.14.139:0
ASN
#13335 CLOUDFLARENET

File type
ASCII text, with very long lines (368)
Size
2.4 kB (2369 bytes)
Hash
6ef44b2524068381a8db2984ea3eb443
50d00a27017fcc847af419a5cf646ccb8d0c6e70
8ea859d628169fe33d61578e312e53160b134f1c17770ec28faf32e6a8444074

HTTP Headers

GET /1.10.24/css/jquery.dataTables.css HTTP/1.1
Host: cdn.datatables.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://shophedu.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Tue, 27 Sep 2022 23:40:06 GMT
content-type: text/css; charset=utf-8
content-length: 2369
x-frame-options: SAMEORIGIN
last-modified: Mon, 06 Jun 2022 14:37:27 GMT
etag: "11410b3-3ec4-5e0c869469a1e-gzip"
cache-control: max-age=31536000
expires: Wed, 07 Jun 2023 01:55:45 GMT
vary: Accept-Encoding,User-Agent
content-encoding: gzip
access-control-allow-origin: *
access-control-allow-headers: origin, x-requested-with, content-type
access-control-allow-methods: GET
cf-cache-status: HIT
age: 9755060
accept-ranges: bytes
server: cloudflare
cf-ray: 7518151b3a5bb517-OSL
X-Firefox-Spdy: h2

ocsp.digicert.com/

93.184.220.29

200 OK

471 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
471 B (471 bytes)
Hash
c18823050f86339eaa73ddb1bf80d64c
ac4ee81f59f706cee8a74458d498bbc20d8d351a
9a505647517bd02d8ff994fd4ad98dc2f4b519916145b0c327691420c1084c46

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4946
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Tue, 27 Sep 2022 23:40:06 GMT
Last-Modified: Tue, 27 Sep 2022 22:17:40 GMT
Server: ECS (ska/F71B)
X-Cache: HIT
Content-Length: 471

ocsp.digicert.com/

93.184.220.29

200 OK

278 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
278 B (278 bytes)
Hash
cb600c4fe611e7a9f6e1df50d934375d
afac81b549aade8b7a1ba18e63432036343fdadf
4ac0f690be6e1e0c0f070e8600e05e7c235ba70b4baf3f4e5a35d207b1db168c

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4000
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Tue, 27 Sep 2022 23:40:06 GMT
Last-Modified: Tue, 27 Sep 2022 22:33:26 GMT
Server: ECS (ska/F71B)
X-Cache: HIT
Content-Length: 278

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
11b1f146fa6fa4a88b1efc65b548fb73
f3f12e14f8f66a2e7c43015c394af199e4a94e06
74441efb7e39672af50ce0b6190b20d20bc3ae744b415a17f8b96a0f89aa0491

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 27 Sep 2022 23:40:06 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
11b1f146fa6fa4a88b1efc65b548fb73
f3f12e14f8f66a2e7c43015c394af199e4a94e06
74441efb7e39672af50ce0b6190b20d20bc3ae744b415a17f8b96a0f89aa0491

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 27 Sep 2022 23:40:06 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
11b1f146fa6fa4a88b1efc65b548fb73
f3f12e14f8f66a2e7c43015c394af199e4a94e06
74441efb7e39672af50ce0b6190b20d20bc3ae744b415a17f8b96a0f89aa0491

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 27 Sep 2022 23:40:06 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

cdnjs.cloudflare.com/ajax/libs/font-awesome/6.1.1/css/all.min.css

104.17.25.14

200 OK

17 kB

URL HTTP/2
cdnjs.cloudflare.com/ajax/libs/font-awesome/6.1.1/css/all.min.css
IP
104.17.25.14:0
ASN
#13335 CLOUDFLARENET

File type
ASCII text, with very long lines (65317)
Size
17 kB (17041 bytes)
Hash
be9aeb2a05f665e3606faf11c09b542f
5644d0bd4e12fdfb7235166d2883fc7acd0a2c5b
13ace8ab3d9e2cbaf3fe1768b9ba1fc5313a5541607b4c07121c0abbb7fadfae

HTTP Headers

GET /ajax/libs/font-awesome/6.1.1/css/all.min.css HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://shophedu.com
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Tue, 27 Sep 2022 23:40:06 GMT
content-type: text/css; charset=utf-8
content-length: 17041
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "623a082a-4291"
last-modified: Tue, 22 Mar 2022 17:32:26 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 1666689
expires: Sun, 17 Sep 2023 23:40:06 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=lE4uO3OdNm6nrX2O4aXRELPuFIyJG7US0k8jd8Pfm3c3hrP243RAYh9fUt7BXMr6eHb3STkOQ8X6m2QrQGIw7g%2F6DQhu8BL9Xwuyp%2FanoWliptw4y7YCsw%2B9jTE9d2%2BiRhPGSKz1"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 7518151b8859b50c-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
11b1f146fa6fa4a88b1efc65b548fb73
f3f12e14f8f66a2e7c43015c394af199e4a94e06
74441efb7e39672af50ce0b6190b20d20bc3ae744b415a17f8b96a0f89aa0491

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 27 Sep 2022 23:40:06 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

cdn.jsdelivr.net/npm/lazyload@2.0.0-rc.2/lazyload.js

151.101.85.229

200 OK

1.7 kB

URL HTTP/2
cdn.jsdelivr.net/npm/lazyload@2.0.0-rc.2/lazyload.js
IP
151.101.85.229:0
ASN
#54113 FASTLY

File type
ASCII text
Size
1.7 kB (1652 bytes)
Hash
48e05ee1c6d3db1baea8f343aee0b56b
93e71cfe052a033e4c867f2503ca425030071df1
27d48ead6bf6af6882b21b01fdae090512499cf21f169d6a9675756b94e5f73e

HTTP Headers

GET /npm/lazyload@2.0.0-rc.2/lazyload.js HTTP/1.1
Host: cdn.jsdelivr.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://shophedu.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: *
timing-allow-origin: *
cache-control: public, max-age=31536000, s-maxage=31536000, immutable
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload
content-type: application/javascript; charset=utf-8
x-jsd-version: 2.0.0-rc.2
x-jsd-version-type: version
etag: W/"162a-+bHVRc9Mhd3adT/5YJ7eVp2Ssx8"
content-encoding: gzip
accept-ranges: bytes
date: Tue, 27 Sep 2022 23:40:06 GMT
age: 13986343
x-served-by: cache-fra19132-FRA, cache-bma1678-BMA
x-cache: HIT, HIT
vary: Accept-Encoding
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 1652
X-Firefox-Spdy: h2

cdn.jsdelivr.net/npm/vanilla-lazyload@17.3.2/dist/lazyload.min.js

151.101.85.229

200 OK

2.7 kB

URL HTTP/2
cdn.jsdelivr.net/npm/vanilla-lazyload@17.3.2/dist/lazyload.min.js
IP
151.101.85.229:0
ASN
#54113 FASTLY

File type
ASCII text, with very long lines (7570)
Size
2.7 kB (2699 bytes)
Hash
b92a770666f07c83032f45569ea34c73
97c31e5a74aa774a1e17365e5b24f3f959f975af
a6bec7cbe00b797f849180696d52c943cce54269b9ee6c96f9395465242d96ba

HTTP Headers

GET /npm/vanilla-lazyload@17.3.2/dist/lazyload.min.js HTTP/1.1
Host: cdn.jsdelivr.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://shophedu.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: *
timing-allow-origin: *
cache-control: public, max-age=31536000, s-maxage=31536000, immutable
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload
content-type: application/javascript; charset=utf-8
x-jsd-version: 17.3.2
x-jsd-version-type: version
etag: W/"1d93-ydxKWtG8r6eGCK9bRg4vRr22VFM"
content-encoding: gzip
accept-ranges: bytes
date: Tue, 27 Sep 2022 23:40:06 GMT
age: 3025191
x-served-by: cache-fra19178-FRA, cache-bma1678-BMA
x-cache: HIT, HIT
vary: Accept-Encoding
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 2699
X-Firefox-Spdy: h2

cdn.jsdelivr.net/npm/sweetalert2@11

151.101.85.229

200 OK

19 kB

URL HTTP/2
cdn.jsdelivr.net/npm/sweetalert2@11
IP
151.101.85.229:0
ASN
#54113 FASTLY

File type
Unicode text, UTF-8 text, with very long lines (44107)
Size
19 kB (19184 bytes)
Hash
9e240a77f41a5e64270b9a70bc6fcdc2
c3ba2a8b76dce82a277975be84d16e31841f2735
ea61181bbe0a43b420bf412b69089d8d7f8a3291065e363bd74bb4d8064a868d

HTTP Headers

GET /npm/sweetalert2@11 HTTP/1.1
Host: cdn.jsdelivr.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://shophedu.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: *
timing-allow-origin: *
cache-control: public, max-age=604800, s-maxage=43200
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload
content-type: application/javascript; charset=utf-8
x-jsd-version: 11.4.34
x-jsd-version-type: version
etag: W/"110e4-pdwMPOTWAMiF52GtK0COlg85mRU"
content-encoding: gzip
accept-ranges: bytes
date: Tue, 27 Sep 2022 23:40:06 GMT
age: 8616
x-served-by: cache-fra19174-FRA, cache-bma1678-BMA
x-cache: HIT, HIT
vary: Accept-Encoding
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 19184
X-Firefox-Spdy: h2

ocsp.digicert.com/

93.184.220.29

200 OK

278 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
278 B (278 bytes)
Hash
cb600c4fe611e7a9f6e1df50d934375d
afac81b549aade8b7a1ba18e63432036343fdadf
4ac0f690be6e1e0c0f070e8600e05e7c235ba70b4baf3f4e5a35d207b1db168c

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4000
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Tue, 27 Sep 2022 23:40:06 GMT
Last-Modified: Tue, 27 Sep 2022 22:33:26 GMT
Server: ECS (ska/F71B)
X-Cache: HIT
Content-Length: 278

ocsp.globalsign.com/ca/gsatlasr3dvtlsca2022q1

104.18.20.226

200 OK

1.5 kB

URL HTTP/1.1
ocsp.globalsign.com/ca/gsatlasr3dvtlsca2022q1
IP
104.18.20.226:0
ASN
#13335 CLOUDFLARENET

File type
data
Size
1.5 kB (1462 bytes)
Hash
8679832e376eab3e23945ce22b3f90b0
06a1aff1bd8b2464e34a2c1404fc49905351da3f
8434effc348388322aec96bc3cf92ca1da031bd9da03e8c5e3d8870ad1c2ffbc

HTTP Headers

POST /ca/gsatlasr3dvtlsca2022q1 HTTP/1.1
Host: ocsp.globalsign.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Tue, 27 Sep 2022 23:40:06 GMT
Content-Type: application/ocsp-response
Transfer-Encoding: chunked
Connection: keep-alive
Etag: "1831F11B757DA3C416479D0FFEE56450EB7DB0C9"
Expires: Wed, 28 Sep 2022 10:00:00 GMT
Last-Modified: Tue, 27 Sep 2022 22:00:00 UTC
Cache-Control: s-maxage=3600, public, no-transform, must-revalidate
CF-Cache-Status: HIT
Age: 2422
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7518151bfe86b512-OSL

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
11b1f146fa6fa4a88b1efc65b548fb73
f3f12e14f8f66a2e7c43015c394af199e4a94e06
74441efb7e39672af50ce0b6190b20d20bc3ae744b415a17f8b96a0f89aa0491

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 27 Sep 2022 23:40:06 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

shophedu.com/template/theme/assets/frontend/css/style.css?v=1621615725

14.225.255.250

200 OK

12 kB

URL HTTP/1.1
shophedu.com/template/theme/assets/frontend/css/style.css?v=1621615725
IP
14.225.255.250:0
ASN
#135905 VIETNAM POSTS AND TELECOMMUNICATIONS GROUP

File type
ASCII text, with very long lines (25259)
Size
12 kB (12309 bytes)
Hash
8b7b9b6002c100fea7d87dcd5729bac7
51411fc7d9ad7afb6c319c3a15ef28fa4b2baadf
d54ba79110abccd55102dbc15de862169620c5ee56249513ea0afb820d6ab7e9

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /template/theme/assets/frontend/css/style.css?v=1621615725 HTTP/1.1
Host: shophedu.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://shophedu.com/
Cookie: PHPSESSID=581191aea5d401f648f6031dff62f11e

HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Tue, 04 Oct 2022 23:40:05 GMT
content-type: text/css
last-modified: Sat, 07 Aug 2021 04:26:11 GMT
accept-ranges: bytes
content-encoding: gzip
vary: Accept-Encoding
content-length: 12309
date: Tue, 27 Sep 2022 23:40:05 GMT
server: LiteSpeed

shophedu.com/template/css.css

14.225.255.250

200 OK

266 B

URL HTTP/1.1
shophedu.com/template/css.css
IP
14.225.255.250:0
ASN
#135905 VIETNAM POSTS AND TELECOMMUNICATIONS GROUP

File type
ASCII text
Size
266 B (266 bytes)
Hash
f08a34da435e1ab190ed6ca4d5e6b559
3f8aeab988eb01215536329ae88a4336b272d76d
4344a0025becc141ef2bf3f95ef72a56f532b4d3da36e5762f2ff33b78386b9f

HTTP Headers

GET /template/css.css HTTP/1.1
Host: shophedu.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://shophedu.com/
Cookie: PHPSESSID=581191aea5d401f648f6031dff62f11e

HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Tue, 04 Oct 2022 23:40:05 GMT
content-type: text/css
last-modified: Sat, 07 Aug 2021 04:26:11 GMT
accept-ranges: bytes
content-encoding: gzip
vary: Accept-Encoding
content-length: 266
date: Tue, 27 Sep 2022 23:40:05 GMT
server: LiteSpeed

push.services.mozilla.com/

54.187.71.185

101 Switching Protocols

0 B

URL HTTP/1.1
push.services.mozilla.com/
IP
54.187.71.185:0
ASN
#16509 AMAZON-02

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: qhcseeUEJY59xUfLsiPy8Q==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket

HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: bzfX4JRKHV07u1fMFh6l5V+IaiM=

shophedu.com/template/theme/assets/frontend/plugins/bootstrap/js/bootstrap.min.js

14.225.255.250

200 OK

9.9 kB

URL HTTP/1.1
shophedu.com/template/theme/assets/frontend/plugins/bootstrap/js/bootstrap.min.js
IP
14.225.255.250:0
ASN
#135905 VIETNAM POSTS AND TELECOMMUNICATIONS GROUP

File type
Unicode text, UTF-8 (with BOM) text, with very long lines (32033)
Size
9.9 kB (9873 bytes)
Hash
759d8d9dace0324b8dfbda7b44c6c9b3
71eb99ffe1fb17cf438af0882bc5699c42c4f624
91451749a0775d56eda7087ed59a0a9bd148416bb725eb156e9656175d5d7845

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /template/theme/assets/frontend/plugins/bootstrap/js/bootstrap.min.js HTTP/1.1
Host: shophedu.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://shophedu.com/
Cookie: PHPSESSID=581191aea5d401f648f6031dff62f11e

HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Tue, 04 Oct 2022 23:40:06 GMT
content-type: application/javascript
last-modified: Sat, 07 Aug 2021 04:26:11 GMT
accept-ranges: bytes
content-encoding: gzip
vary: Accept-Encoding
content-length: 9873
date: Tue, 27 Sep 2022 23:40:06 GMT
server: LiteSpeed

shophedu.com/template/cute-alert/cute-alert.js

14.225.255.250

200 OK

1.1 kB

URL HTTP/1.1
shophedu.com/template/cute-alert/cute-alert.js
IP
14.225.255.250:0
ASN
#135905 VIETNAM POSTS AND TELECOMMUNICATIONS GROUP

File type
Unicode text, UTF-8 text
Size
1.1 kB (1102 bytes)
Hash
6d22e422dbe1798718477a449d30eb6b
65b0d694556552cb669d8dd3933edafdfb9c7120
44d9c8ce607fbbafc1abb04d671c4e3ab932b29293757c03ab38d4861ec0fa71

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /template/cute-alert/cute-alert.js HTTP/1.1
Host: shophedu.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://shophedu.com/
Cookie: PHPSESSID=581191aea5d401f648f6031dff62f11e

HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Tue, 04 Oct 2022 23:40:06 GMT
content-type: application/javascript
last-modified: Sat, 07 Aug 2021 04:26:11 GMT
accept-ranges: bytes
content-encoding: gzip
vary: Accept-Encoding
content-length: 1102
date: Tue, 27 Sep 2022 23:40:06 GMT
server: LiteSpeed

shophedu.com/template/cute-alert/style.css

14.225.255.250

200 OK

1.3 kB

URL HTTP/1.1
shophedu.com/template/cute-alert/style.css
IP
14.225.255.250:0
ASN
#135905 VIETNAM POSTS AND TELECOMMUNICATIONS GROUP

File type
ASCII text
Size
1.3 kB (1295 bytes)
Hash
57a99a3981ef1f855d34500a6148be58
bea672d53778f783fba1640cee4877d1eb13fc94
6668e007cd3efd3fb47fda3261668243c2055eb26612df18b892546466437742

HTTP Headers

GET /template/cute-alert/style.css HTTP/1.1
Host: shophedu.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://shophedu.com/
Cookie: PHPSESSID=581191aea5d401f648f6031dff62f11e

HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Tue, 04 Oct 2022 23:40:06 GMT
content-type: text/css
last-modified: Sat, 07 Aug 2021 04:26:11 GMT
accept-ranges: bytes
content-encoding: gzip
vary: Accept-Encoding
content-length: 1295
date: Tue, 27 Sep 2022 23:40:06 GMT
server: LiteSpeed

shophedu.com/template/theme/assets/frontend/theme/assets/plugins/js-cookie/js.cookie.js

14.225.255.250

200 OK

1.2 kB

URL HTTP/1.1
shophedu.com/template/theme/assets/frontend/theme/assets/plugins/js-cookie/js.cookie.js
IP
14.225.255.250:0
ASN
#135905 VIETNAM POSTS AND TELECOMMUNICATIONS GROUP

File type
Unicode text, UTF-8 (with BOM) text, with very long lines (326)
Size
1.2 kB (1190 bytes)
Hash
1fb13843979216caa9046949bfc466ce
8b47bed0a3ac1eabbedfaf9e3dbb8e34d4389e1a
9a789dbf8f1d05ba1ce50c4a71f131824f2e278bd134744f093c1ffd749af716

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /template/theme/assets/frontend/theme/assets/plugins/js-cookie/js.cookie.js HTTP/1.1
Host: shophedu.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://shophedu.com/
Cookie: PHPSESSID=581191aea5d401f648f6031dff62f11e

HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Tue, 04 Oct 2022 23:40:06 GMT
content-type: application/javascript
last-modified: Sat, 07 Aug 2021 04:26:11 GMT
accept-ranges: bytes
content-encoding: gzip
vary: Accept-Encoding
content-length: 1190
date: Tue, 27 Sep 2022 23:40:06 GMT
server: LiteSpeed

shophedu.com/template/theme/assets/frontend/theme/assets/plugins/bootstrap-datepicker/js/bootstrap-datepicker.min.js

14.225.255.250

200 OK

10 kB

URL HTTP/1.1
shophedu.com/template/theme/assets/frontend/theme/assets/plugins/bootstrap-datepicker/js/bootstrap-datepicker.min.js
IP
14.225.255.250:0
ASN
#135905 VIETNAM POSTS AND TELECOMMUNICATIONS GROUP

File type
Unicode text, UTF-8 (with BOM) text, with very long lines (32022)
Size
10 kB (10052 bytes)
Hash
e2f153e56624ead76bf5e3ad4d0fd7a9
cfe939c3f34183c4f6817e561f9e9a8f7e0b4bf7
df780d066339f739aadca5a6c9395814a6226cbf9fb19e6a7d8f88957729bc83

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /template/theme/assets/frontend/theme/assets/plugins/bootstrap-datepicker/js/bootstrap-datepicker.min.js HTTP/1.1
Host: shophedu.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://shophedu.com/
Cookie: PHPSESSID=581191aea5d401f648f6031dff62f11e

HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Tue, 04 Oct 2022 23:40:06 GMT
content-type: application/javascript
last-modified: Sat, 07 Aug 2021 04:26:11 GMT
accept-ranges: bytes
content-encoding: gzip
vary: Accept-Encoding
content-length: 10052
date: Tue, 27 Sep 2022 23:40:06 GMT
server: LiteSpeed

shophedu.com/template/theme/assets/frontend/js/kun.js

14.225.255.250

200 OK

1.1 kB

URL HTTP/1.1
shophedu.com/template/theme/assets/frontend/js/kun.js
IP
14.225.255.250:0
ASN
#135905 VIETNAM POSTS AND TELECOMMUNICATIONS GROUP

File type
ASCII text
Size
1.1 kB (1080 bytes)
Hash
52633fc08225f09264ff1d84d83da4a1
d850c5a296247855342c55dde20946119eadce5d
4382e390aaf7c9ea965ce5479daacd60c7a48044d18b984e6a05eb59971e4b56

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /template/theme/assets/frontend/js/kun.js HTTP/1.1
Host: shophedu.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://shophedu.com/
Cookie: PHPSESSID=581191aea5d401f648f6031dff62f11e

HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Tue, 04 Oct 2022 23:40:06 GMT
content-type: application/javascript
last-modified: Sat, 07 Aug 2021 04:26:11 GMT
accept-ranges: bytes
content-encoding: gzip
vary: Accept-Encoding
content-length: 1080
date: Tue, 27 Sep 2022 23:40:06 GMT
server: LiteSpeed

shophedu.com/template/theme/assets/frontend/js/backtotop.js

14.225.255.250

200 OK

422 B

URL HTTP/1.1
shophedu.com/template/theme/assets/frontend/js/backtotop.js
IP
14.225.255.250:0
ASN
#135905 VIETNAM POSTS AND TELECOMMUNICATIONS GROUP

File type
ASCII text
Size
422 B (422 bytes)
Hash
4cea349a179002b1b64ecc08d8d7dbf0
01a8908969486c101d7bfe9b96cab4ea62ae107a
e1c02ed180dab99ee89ccc0abd2d7fedd8f63f6d0d3b236b5e113a4f496a2bb4

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /template/theme/assets/frontend/js/backtotop.js HTTP/1.1
Host: shophedu.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://shophedu.com/
Cookie: PHPSESSID=581191aea5d401f648f6031dff62f11e

HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Tue, 04 Oct 2022 23:40:06 GMT
content-type: application/javascript
last-modified: Sat, 07 Aug 2021 04:26:11 GMT
accept-ranges: bytes
content-encoding: gzip
vary: Accept-Encoding
content-length: 422
date: Tue, 27 Sep 2022 23:40:06 GMT
server: LiteSpeed

shophedu.com/style.css

14.225.255.250

200 OK

2.8 kB

URL HTTP/1.1
shophedu.com/style.css
IP
14.225.255.250:0
ASN
#135905 VIETNAM POSTS AND TELECOMMUNICATIONS GROUP

File type
ASCII text
Size
2.8 kB (2822 bytes)
Hash
d957cabdb3ae546942175209e93a02f9
50a13bdf9982154e1874439a01b3d0454637f8c9
0036c7b0984c889c3bda0f26273ba86b3e85faae0f3c213bd4f0bb4ed0749218

HTTP Headers

GET /style.css HTTP/1.1
Host: shophedu.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://shophedu.com/
Cookie: PHPSESSID=581191aea5d401f648f6031dff62f11e

HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Tue, 04 Oct 2022 23:40:06 GMT
content-type: text/css
last-modified: Fri, 22 Oct 2021 09:22:18 GMT
accept-ranges: bytes
content-encoding: gzip
vary: Accept-Encoding
content-length: 2822
date: Tue, 27 Sep 2022 23:40:06 GMT
server: LiteSpeed

shophedu.com/template/theme/assets/frontend/plugins/jquery-cookie/jquery.cookie.js

14.225.255.250

200 OK

925 B

URL HTTP/1.1
shophedu.com/template/theme/assets/frontend/plugins/jquery-cookie/jquery.cookie.js
IP
14.225.255.250:0
ASN
#135905 VIETNAM POSTS AND TELECOMMUNICATIONS GROUP

File type
Unicode text, UTF-8 (with BOM) text
Size
925 B (925 bytes)
Hash
d3176fa426854fa5fe92bb43c9ccc0a2
5fe87a22188f7766bd42b5e359823d3f7ba7f4d9
98305914bca329573fc9522954087f5a916168c5e9d53b951d102bbc8870763e

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /template/theme/assets/frontend/plugins/jquery-cookie/jquery.cookie.js HTTP/1.1
Host: shophedu.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://shophedu.com/
Cookie: PHPSESSID=581191aea5d401f648f6031dff62f11e

HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Tue, 04 Oct 2022 23:40:06 GMT
content-type: application/javascript
last-modified: Sat, 07 Aug 2021 04:26:11 GMT
accept-ranges: bytes
content-encoding: gzip
vary: Accept-Encoding
content-length: 925
date: Tue, 27 Sep 2022 23:40:06 GMT
server: LiteSpeed

shophedu.com/template/theme/assets/frontend/plugins/jquery/jquery-2.1.0.min.js

14.225.255.250

200 OK

29 kB

URL HTTP/1.1
shophedu.com/template/theme/assets/frontend/plugins/jquery/jquery-2.1.0.min.js
IP
14.225.255.250:0
ASN
#135905 VIETNAM POSTS AND TELECOMMUNICATIONS GROUP

File type
Unicode text, UTF-8 (with BOM) text, with very long lines (32065)
Size
29 kB (29431 bytes)
Hash
fcb74475baf681479a8844d459733a52
605f8dcca06ecd8d6587604fb4db7adf7e40639f
1a756da8ad5bb59922c7f53e2a62b1fa13af1b9069abb5a0874f08f330ad46b8

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /template/theme/assets/frontend/plugins/jquery/jquery-2.1.0.min.js HTTP/1.1
Host: shophedu.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://shophedu.com/
Cookie: PHPSESSID=581191aea5d401f648f6031dff62f11e

HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Tue, 04 Oct 2022 23:40:06 GMT
content-type: application/javascript
last-modified: Sat, 07 Aug 2021 04:26:11 GMT
accept-ranges: bytes
content-encoding: gzip
vary: Accept-Encoding
content-length: 29431
date: Tue, 27 Sep 2022 23:40:06 GMT
server: LiteSpeed

fonts.googleapis.com/css2?family=Pacifico&display=swap

142.250.74.10

200 OK

966 B

URL HTTP/2
fonts.googleapis.com/css2?family=Pacifico&display=swap
IP
142.250.74.10:0
ASN
#15169 GOOGLE

File type
data
Size
966 B (966 bytes)
Hash
471a67c80f471790a38409ec15e41898
7e3bbd07e47bc5774badeb7000727bfd87ff45ef
f71981b4503810e7c6f42a3d4bdc883289eb4a1511a1425a6877c819e19c563e

HTTP Headers

GET /css2?family=Pacifico&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://shophedu.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Tue, 27 Sep 2022 23:40:06 GMT
date: Tue, 27 Sep 2022 23:40:06 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

fonts.googleapis.com/css2?family=Satisfy&display=swap

142.250.74.10

200 OK

751 B

URL HTTP/2
fonts.googleapis.com/css2?family=Satisfy&display=swap
IP
142.250.74.10:0
ASN
#15169 GOOGLE

File type
data
Size
751 B (751 bytes)
Hash
fc0bc53a3f679b666a8029cfb3d8d044
e558a528bbb964f37ec6dac7dff6d50d09393624
189ebb1a252177a20b42f30bb08818a0ed2cacbd2c2441d48eaa3d39d0fb8bf1

HTTP Headers

GET /css2?family=Satisfy&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://shophedu.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Tue, 27 Sep 2022 23:40:06 GMT
date: Tue, 27 Sep 2022 23:40:06 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

fonts.gstatic.com/s/robotocondensed/v25/ieVl2ZhZI2eCN5jzbjEETS9weq8-19K7DQ.woff2

142.250.74.163

200 OK

16 kB

URL HTTP/2
fonts.gstatic.com/s/robotocondensed/v25/ieVl2ZhZI2eCN5jzbjEETS9weq8-19K7DQ.woff2
IP
142.250.74.163:0
ASN
#15169 GOOGLE

File type
gzip compressed data, max compression\012- data
Size
16 kB (16446 bytes)
Hash
9219e977b4b43c6c2a4690a8881ca5af
bc1fef6176b3224fcd3fd34a5b1d51e5a852dbac
6e55f2b2869ea1ae0318329dd0ea1d4ff7a37e6dfd83f6027c1a47cebfc349bb

HTTP Headers

GET /s/robotocondensed/v25/ieVl2ZhZI2eCN5jzbjEETS9weq8-19K7DQ.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://shophedu.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15700
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 23 Sep 2022 16:04:44 GMT
expires: Sat, 23 Sep 2023 16:04:44 GMT
cache-control: public, max-age=31536000
age: 372923
last-modified: Tue, 19 Apr 2022 18:51:55 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

fonts.gstatic.com/s/robotocondensed/v25/ieVl2ZhZI2eCN5jzbjEETS9weq8-19y7DRs5.woff2

142.250.74.163

200 OK

12 kB

URL HTTP/2
fonts.gstatic.com/s/robotocondensed/v25/ieVl2ZhZI2eCN5jzbjEETS9weq8-19y7DRs5.woff2
IP
142.250.74.163:0
ASN
#15169 GOOGLE

File type
Web Open Font Format (Version 2), TrueType, length 11816, version 1.0\012- data
Size
12 kB (11816 bytes)
Hash
7fa68490a833a8fa395e5f3bffafc052
1880e3743548106319713b937e7769eee6b1ce21
30fa70635379ae1b58491bc41572760c1f3c8445265436a5fec4c36a197e4121

HTTP Headers

GET /s/robotocondensed/v25/ieVl2ZhZI2eCN5jzbjEETS9weq8-19y7DRs5.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://shophedu.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 11816
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 20 Sep 2022 23:49:27 GMT
expires: Wed, 20 Sep 2023 23:49:27 GMT
cache-control: public, max-age=31536000
age: 604240
last-modified: Tue, 19 Apr 2022 18:52:18 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
fc82211401f793132f7d43c2fd253af5
605d8371709b5d2a41967fd390c34fa649f89ea3
b23fd36ec037710672ac1aa6fea284e3869c4bae7941d9b53c771cff8743478e

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 27 Sep 2022 23:40:07 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
639785692dc29802e484e1e1d0ec86c4
cf81784351ce6302f540f491f893b44496809677
0e47d6e33fe9f6e588d308b62fa059c960a000c56651713e30baf6cd09b7de41

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "0E47D6E33FE9F6E588D308B62FA059C960A000C56651713E30BAF6CD09B7DE41"
Last-Modified: Sun, 25 Sep 2022 22:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=14076
Expires: Wed, 28 Sep 2022 03:34:43 GMT
Date: Tue, 27 Sep 2022 23:40:07 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
639785692dc29802e484e1e1d0ec86c4
cf81784351ce6302f540f491f893b44496809677
0e47d6e33fe9f6e588d308b62fa059c960a000c56651713e30baf6cd09b7de41

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "0E47D6E33FE9F6E588D308B62FA059C960A000C56651713E30BAF6CD09B7DE41"
Last-Modified: Sun, 25 Sep 2022 22:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=14076
Expires: Wed, 28 Sep 2022 03:34:43 GMT
Date: Tue, 27 Sep 2022 23:40:07 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
639785692dc29802e484e1e1d0ec86c4
cf81784351ce6302f540f491f893b44496809677
0e47d6e33fe9f6e588d308b62fa059c960a000c56651713e30baf6cd09b7de41

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "0E47D6E33FE9F6E588D308B62FA059C960A000C56651713E30BAF6CD09B7DE41"
Last-Modified: Sun, 25 Sep 2022 22:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=14076
Expires: Wed, 28 Sep 2022 03:34:43 GMT
Date: Tue, 27 Sep 2022 23:40:07 GMT
Connection: keep-alive

fonts.gstatic.com/s/robotocondensed/v25/ieVl2ZhZI2eCN5jzbjEETS9weq8-1927DRs5.woff2

142.250.74.163

200 OK

5.7 kB

URL HTTP/2
fonts.gstatic.com/s/robotocondensed/v25/ieVl2ZhZI2eCN5jzbjEETS9weq8-1927DRs5.woff2
IP
142.250.74.163:0
ASN
#15169 GOOGLE

File type
Web Open Font Format (Version 2), TrueType, length 5696, version 1.0\012- data
Size
5.7 kB (5696 bytes)
Hash
85fc330e5d5f44827f71c9c87e20fc08
a12bad7ed537f664c3b4ec0c501b3cce2df55921
a443599b665cfcd9a13fc46056624c65f518c06ee47925c4a940c58164b1b799

HTTP Headers

GET /s/robotocondensed/v25/ieVl2ZhZI2eCN5jzbjEETS9weq8-1927DRs5.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://shophedu.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 5696
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 21 Sep 2022 05:39:15 GMT
expires: Thu, 21 Sep 2023 05:39:15 GMT
cache-control: public, max-age=31536000
age: 583252
last-modified: Tue, 19 Apr 2022 18:51:59 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
639785692dc29802e484e1e1d0ec86c4
cf81784351ce6302f540f491f893b44496809677
0e47d6e33fe9f6e588d308b62fa059c960a000c56651713e30baf6cd09b7de41

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "0E47D6E33FE9F6E588D308B62FA059C960A000C56651713E30BAF6CD09B7DE41"
Last-Modified: Sun, 25 Sep 2022 22:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=14076
Expires: Wed, 28 Sep 2022 03:34:43 GMT
Date: Tue, 27 Sep 2022 23:40:07 GMT
Connection: keep-alive

img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5c254fe7-b89c-4a2c-a79c-4a6a0fe2d17c.jpeg

34.120.237.76

200 OK

7.0 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5c254fe7-b89c-4a2c-a79c-4a6a0fe2d17c.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
7.0 kB (7020 bytes)
Hash
ccfb4931d41ca01aa55b4b8e9ef6b4e1
2351d2547f4bd0aac45bb21a5aa8277e80ef15f2
89de9954ee2874b476c907810189812efe13234a46910180f34f68082429260f

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5c254fe7-b89c-4a2c-a79c-4a6a0fe2d17c.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 7020
x-amzn-requestid: 1258ee7b-987a-4454-8963-e76b7c1470f3
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZI3e4EVxIAMFrmA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63336c5f-7a1fbaa251600686757f9583;Sampled=0
x-amzn-remapped-date: Tue, 27 Sep 2022 21:34:23 GMT
x-amz-cf-pop: SEA19-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: _ISJfVYtY7kLIm87GZEvqMmEr3D4vYcZDi-WJAu4GyaxLQKRUDbVjg==
via: 1.1 d0387b833e3ca8cb748a1296b4b4bf2a.cloudfront.net (CloudFront), 1.1 2f7934de1dfe281c3e4446892eab6462.cloudfront.net (CloudFront), 1.1 google
date: Tue, 27 Sep 2022 21:46:03 GMT
age: 6844
etag: "2351d2547f4bd0aac45bb21a5aa8277e80ef15f2"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

7.8 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7723c423-9c9b-4e58-93cc-7198e8ff6f62.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
gzip compressed data, max compression\012- data
Size
7.8 kB (7773 bytes)
Hash
f5e467ea08c5c1630d89b108a2c94ccd
de1e700ce42232b6f0e3ba55dd15c9e1ae98d88b
c9fb598d91767b1dc29818db50594a28dabe90c455254846536b88695c8e6683

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7723c423-9c9b-4e58-93cc-7198e8ff6f62.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 7359
x-amzn-requestid: 6e3123b2-ea7e-4e3e-8399-19a66d27923f
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZI34CEYtIAMF01w=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63336d00-5995316c70da7a0c460ac432;Sampled=0
x-amzn-remapped-date: Tue, 27 Sep 2022 21:37:04 GMT
x-amz-cf-pop: SEA73-P2, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: t_uz9vKifWkMj014gCS83STU-fnM39a49_LB5By3j9NqLpqfl8tKSA==
via: 1.1 de8fc80b494d3d381f7e006918dcc588.cloudfront.net (CloudFront), 1.1 e95ec8f1dc02e32f0cb9e113963ceb4e.cloudfront.net (CloudFront), 1.1 google
date: Tue, 27 Sep 2022 21:57:38 GMT
age: 6149
etag: "0cd28a243f9704140ccb9eb1415a77fcccc7cf87"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

14 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffb17f4e8-cf01-41dc-8d4d-247daf3e0160.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
14 kB (14018 bytes)
Hash
d039db0b842a4cbbaefdaab98bc6722b
78b1a603c4f7f2d6fbad15d7a4cd1397554339e9
65a3c7b0515cfd2a723f3bc3147cb98f3dd75ce1ecfce915c7c8e9ba5ae0bf2d

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffb17f4e8-cf01-41dc-8d4d-247daf3e0160.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 14018
x-amzn-requestid: fb0f02e7-1ce0-4861-9446-13d60df06f24
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZI3xSEhCIAMFWkQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63336cd4-79f482493d204a1208fad00f;Sampled=0
x-amzn-remapped-date: Tue, 27 Sep 2022 21:36:20 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: ZAov4fpWAjIBhHfeYEwu39wJTG58HnW7ebekpIoNSgA7PLIs5b7sSg==
via: 1.1 4d7fa73f804f1c93f20cfc24c4b1266e.cloudfront.net (CloudFront), 1.1 ebe4011a81a36e2bf678f69ce1711330.cloudfront.net (CloudFront), 1.1 google
date: Tue, 27 Sep 2022 22:28:52 GMT
age: 4275
etag: "78b1a603c4f7f2d6fbad15d7a4cd1397554339e9"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

unpkg.com/boxicons@2.0.7/css/boxicons.min.css

104.16.122.175

200 OK

22 kB

URL HTTP/2
unpkg.com/boxicons@2.0.7/css/boxicons.min.css
IP
104.16.122.175:0
ASN
#13335 CLOUDFLARENET

File type
ASCII text, with very long lines (63235), with no line terminators
Size
22 kB (21518 bytes)
Hash
56edabe2dd966976600086c41ec6e7ce
5e8b87c58180f7d81f5441fa18c98e36571f8203
e3e4a4acb05847849e481a7c93ffe0c90cd1cc47e815db239f7bb573c5333897

HTTP Headers

GET /boxicons@2.0.7/css/boxicons.min.css HTTP/1.1
Host: unpkg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://shophedu.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Tue, 27 Sep 2022 23:40:06 GMT
content-type: text/css; charset=utf-8
access-control-allow-origin: *
cache-control: public, max-age=31536000
last-modified: Sat, 26 Oct 1985 08:15:00 GMT
etag: W/"f703-kEpTqbib37RBQP2PIpppYa/VnfU"
via: 1.1 fly.io
fly-request-id: 01G4XE9PJ846AAE4298BTM287Y-fra
cf-cache-status: HIT
age: 9771442
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 7518151b0c7db4fd-OSL
content-encoding: br
X-Firefox-Spdy: h2

34.120.237.76

200 OK

5.4 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff14e2acf-9d43-48bc-ab80-1dc73fa7dfc8.webp
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
5.4 kB (5377 bytes)
Hash
c301dff6ddda16fd64692c19173cfa8c
2afdfb716192540a61327137706462c53588bf23
fd0f33a778fec87dbfa323ffa6b24ca5f94aa16d102e62683ad54b759208058b

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff14e2acf-9d43-48bc-ab80-1dc73fa7dfc8.webp HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 5377
x-amzn-requestid: 28ddd5cd-c299-4b36-98be-b6dbeaadc1ac
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZI4KRGo7oAMFUiQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63336d74-27ebe6e974ee5b7d06227fca;Sampled=0
x-amzn-remapped-date: Tue, 27 Sep 2022 21:39:00 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: TEv_Z7_1FsPBC2ugxBvTbts1ubHFeZjRhrSFAGt2liOt-Z5GQhmu-g==
via: 1.1 5a1753718d8b33365e5f693dd338c510.cloudfront.net (CloudFront), 1.1 32d624dbeb2a8b7f24dbe49007e37c90.cloudfront.net (CloudFront), 1.1 google
date: Tue, 27 Sep 2022 22:28:53 GMT
age: 4274
etag: "2afdfb716192540a61327137706462c53588bf23"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

11 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd5653a1a-a7d7-4b1e-a27e-4eb6b032901d.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
11 kB (11314 bytes)
Hash
ee83d08d024d127fad5918e1ffacb78b
8ad289a77705358ab660b6123e9d90de991b6c13
aaab3590ef3777ce8b7a9a34f18866fa20ecaa554cbcdcdb3f1fa3c34c88ceb4

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd5653a1a-a7d7-4b1e-a27e-4eb6b032901d.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 11314
x-amzn-requestid: 0ceafc65-764c-4367-b031-257061eb65d4
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZI3UPF00oAMFUpw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63336c1a-0d46481b7394081b14a81131;Sampled=0
x-amzn-remapped-date: Tue, 27 Sep 2022 21:33:14 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: ve8l6PxpMuBLt5BxwywNpqM2ISt0zy2r_gweYnVw4X65PBEhpMbckg==
via: 1.1 eece508272520f70691e4eebdc5a6dea.cloudfront.net (CloudFront), 1.1 2324edbcb8fc72f617442c65f36a40fc.cloudfront.net (CloudFront), 1.1 google
date: Tue, 27 Sep 2022 21:46:00 GMT
age: 6847
etag: "8ad289a77705358ab660b6123e9d90de991b6c13"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

shophedu.com/assets/img/demcnd3-5b92e52f-eff8-4ed9-96d2-6a4bce6f6d00.jpg

14.225.255.250

200 OK

272 kB

URL HTTP/1.1
shophedu.com/assets/img/demcnd3-5b92e52f-eff8-4ed9-96d2-6a4bce6f6d00.jpg
IP
14.225.255.250:0
ASN
#135905 VIETNAM POSTS AND TELECOMMUNICATIONS GROUP

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 300x300, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=7, orientation=upper-left, xresolution=98, yresolution=106, resolutionunit=2, software=Adobe Photoshop 22.0 (Windows), datetime=2021:06:03 22:12:27], baseline, precision 8, 1920x1080, components 3\012- data
Size
272 kB (272084 bytes)
Hash
a6403f89f083ebfb583a163dea2cc62f
e3fd0dca97cdc9efdab7eb21243b86ed9b6228aa
74dbd60572acce7fb132c870a58af669a983c7e68a1d6635866f653bb446b738

HTTP Headers

GET /assets/img/demcnd3-5b92e52f-eff8-4ed9-96d2-6a4bce6f6d00.jpg HTTP/1.1
Host: shophedu.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://shophedu.com/
Cookie: PHPSESSID=581191aea5d401f648f6031dff62f11e

HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Tue, 04 Oct 2022 23:40:07 GMT
content-type: image/jpeg
last-modified: Tue, 17 May 2022 11:39:56 GMT
accept-ranges: bytes
content-length: 272084
date: Tue, 27 Sep 2022 23:40:07 GMT
server: LiteSpeed

34.120.237.76

200 OK

5.9 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc40456fc-e6ad-484b-8754-8b2b0e7abc7c.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
5.9 kB (5944 bytes)
Hash
1fa8cb4f4be5057788cd1a2a4d0e76d6
1aec1d67a36867bee8069a144fb1b0d95ff2cb54
5193131db8040ef254554d59109002ec7b8cfc2eab1e872b63e5f65db7cf5105

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc40456fc-e6ad-484b-8754-8b2b0e7abc7c.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
server: nginx
content-length: 5944
x-amzn-requestid: 040b4452-4120-4ae5-9ad2-c5b341abbb13
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZI34BFdmIAMFmew=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63336cff-103adde82b57535e4f3fb16a;Sampled=0
x-amzn-remapped-date: Tue, 27 Sep 2022 21:37:04 GMT
x-amz-cf-pop: SEA73-P2, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: q03mXCSikJcsTBGqk1Xq7452EiDz4t9PFbp5Qj4xwobiFgqtPwGCBw==
via: 1.1 d2575afea3774df33dcf5e5ff475025e.cloudfront.net (CloudFront), 1.1 6396e88c437c096ef98930ce29f731a2.cloudfront.net (CloudFront), 1.1 google
date: Tue, 27 Sep 2022 22:21:35 GMT
age: 4719
etag: "1aec1d67a36867bee8069a144fb1b0d95ff2cb54"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

fonts.googleapis.com/css2?family=Goldman&display=swap

142.250.74.10

200 OK

0 B

URL HTTP/2
fonts.googleapis.com/css2?family=Goldman&display=swap
IP
142.250.74.10:0
ASN
#15169 GOOGLE

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /css2?family=Goldman&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://shophedu.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Tue, 27 Sep 2022 23:40:06 GMT
date: Tue, 27 Sep 2022 23:40:06 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

shophedu.com/assets/img/IMG_5706.png

14.225.255.250

200 OK

0 B

URL HTTP/1.1
shophedu.com/assets/img/IMG_5706.png
IP
14.225.255.250:0
ASN
#135905 VIETNAM POSTS AND TELECOMMUNICATIONS GROUP

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /assets/img/IMG_5706.png HTTP/1.1
Host: shophedu.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://shophedu.com/
Cookie: PHPSESSID=581191aea5d401f648f6031dff62f11e

HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Tue, 04 Oct 2022 23:40:07 GMT
content-type: image/png
last-modified: Fri, 08 Jul 2022 18:14:55 GMT
accept-ranges: bytes
content-length: 2434332
date: Tue, 27 Sep 2022 23:40:07 GMT
server: LiteSpeed

cdn.datatables.net/1.10.24/js/jquery.dataTables.js

172.67.14.139

200 OK

0 B

URL HTTP/2
cdn.datatables.net/1.10.24/js/jquery.dataTables.js
IP
172.67.14.139:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /1.10.24/js/jquery.dataTables.js HTTP/1.1
Host: cdn.datatables.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://shophedu.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Tue, 27 Sep 2022 23:40:06 GMT
content-type: application/javascript; charset=utf-8
x-frame-options: SAMEORIGIN
last-modified: Mon, 06 Jun 2022 14:37:27 GMT
etag: "11410d1-6df4f-5e0c86946b18e-gzip"
cache-control: max-age=31536000
expires: Tue, 06 Jun 2023 23:03:00 GMT
vary: Accept-Encoding,User-Agent
content-encoding: gzip
access-control-allow-origin: *
access-control-allow-headers: origin, x-requested-with, content-type
access-control-allow-methods: GET
cf-cache-status: HIT
age: 9765426
server: cloudflare
cf-ray: 7518151b2a50b517-OSL
X-Firefox-Spdy: h2

fonts.googleapis.com/css2?family=Roboto+Condensed:wght@300;400;700&family=Roboto:wght@900&display=swap

142.250.74.10

200 OK

0 B

URL HTTP/2
fonts.googleapis.com/css2?family=Roboto+Condensed:wght@300;400;700&family=Roboto:wght@900&display=swap
IP
142.250.74.10:0
ASN
#15169 GOOGLE

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /css2?family=Roboto+Condensed:wght@300;400;700&family=Roboto:wght@900&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://shophedu.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Tue, 27 Sep 2022 23:40:06 GMT
date: Tue, 27 Sep 2022 23:40:06 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

OpenPhish

PhishTank

Fortinet's Web Filter

mnemonic secure dns

Quad9 DNS

Files detected

URL

IP

ASN

File type

Size

Hash

Detections

URL

IP

ASN

File type

Size

Hash

Detections

JavaScript (12)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML