mc-educate.eu/
301 Moved Permanently 162 B IP
ASN #24940 Hetzner Online GmbH
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 4f8e702cc244ec5d4de32740c0ecbd97
3adb1f02d5b6054de0046e367c1d687b6cdf7aff
9e17cb15dd75bbbd5dbb984eda674863c3b10ab72613cf8a39a00c3e11a8492a
Analyzer Verdict Alert fortinet Phishing
GET / HTTP/1.1
Host: mc-educate.eu
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Server: nginx
Date: Fri, 03 Feb 2023 01:54:52 GMT
Content-Type: text/html
Content-Length: 162
Connection: keep-alive
Location: https://mc-educate.eu/
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 7e05c8461bd2dc5a149f71e2c465ea29
705983959c887e243cb55a8a1796757b579ee977
4d9ea085d5dda9dabed11af9847c2b0aa6182358673b356a4e2bd631e22a9922
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "4D9EA085D5DDA9DABED11AF9847C2B0AA6182358673B356A4E2BD631E22A9922"
Last-Modified: Tue, 31 Jan 2023 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9541
Expires: Fri, 03 Feb 2023 04:33:53 GMT
Date: Fri, 03 Feb 2023 01:54:52 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash e935ea42be4feaed61a824b0b903913e
f966cfa80d65a805cb9d7c6a53b3340865d7c51a
eb0ce9ae50d156fe5924b2d77346735e4e93b5240cff301c9aa835bb0b385815
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "EB0CE9AE50D156FE5924B2D77346735E4E93B5240CFF301C9AA835BB0B385815"
Last-Modified: Wed, 01 Feb 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5473
Expires: Fri, 03 Feb 2023 03:26:05 GMT
Date: Fri, 03 Feb 2023 01:54:52 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 30db107dcf4380cef05efea409c2e6a3
96e6a306fbc07299aba64e5c14e2bfca35872fa9
b64051a4a8e346e3c72b2aef77f360a5736ab5e16711d8e0bae3876feaa15b6e
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Backoff, Retry-After, Content-Length, Alert, Content-Type
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Fri, 03 Feb 2023 01:36:09 GMT
content-type: application/json
age: 1123
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 9a76feabb767086ae0fa54e0ffbf763f
3655d78994a1e9838340669462728b67c8c12e54
bf215ab858c7785b7c01f7d3d437a918f056f00fe9b065820e1cdd09b7bba8f9
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "BF215AB858C7785B7C01F7D3D437A918F056F00FE9B065820E1CDD09B7BBA8F9"
Last-Modified: Wed, 01 Feb 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8657
Expires: Fri, 03 Feb 2023 04:19:09 GMT
Date: Fri, 03 Feb 2023 01:54:52 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain
200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain
IP
File type PEM certificate\012- , ASCII text
Hash 7b922915ebf1fa3639b333f994c74f24
144a3f80b98fd0652d4614f24cf6cbbee40f8938
adbb3e06df0e870f5c7a9cb81e8979d4e92735853d75c9b779c06470d4db5d9c
GET /chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: sa6sJBMXBvg8huu/JwzOvmSjrbgAafQlOvgUxh5Ud36K2TfTfWN7j4WvaEROzD3/x1zUVY/2CqM=
x-amz-request-id: N6GBKQSPK843RY3R
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Fri, 03 Feb 2023 01:23:20 GMT
age: 1892
last-modified: Mon, 09 Jan 2023 18:04:21 GMT
etag: "7b922915ebf1fa3639b333f994c74f24"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Fri, 03 Feb 2023 01:54:52 GMT
content-type: application/json
content-length: 12
access-control-allow-credentials: true
access-control-expose-headers: content-type
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 08bfd13f7121e03acaaaa07aa90be2c6
04347eae2eb390cef9d1d599716e519de5e485e0
625122181cb54222d746205a45aae7d4e932e90f7eaf9ff0d6bd62fcbd7691c0
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "625122181CB54222D746205A45AAE7D4E932E90F7EAF9FF0D6BD62FCBD7691C0"
Last-Modified: Wed, 01 Feb 2023 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4610
Expires: Fri, 03 Feb 2023 03:11:42 GMT
Date: Fri, 03 Feb 2023 01:54:52 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Pragma, Backoff, Retry-After, Content-Length, Last-Modified, Expires, Cache-Control, ETag, Alert, Content-Type
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Fri, 03 Feb 2023 01:07:19 GMT
age: 2854
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 8913af0be619500295008bb91f506660
a7b8068ba9aa506205a295b24458c2616997a0d1
6a9838d00256431807ca382fc205064b07c08d5054f2895c2ae3cc4e9094179a
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "6A9838D00256431807CA382FC205064B07C08D5054F2895C2AE3CC4E9094179A"
Last-Modified: Wed, 01 Feb 2023 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3100
Expires: Fri, 03 Feb 2023 02:46:33 GMT
Date: Fri, 03 Feb 2023 01:54:53 GMT
Connection: keep-alive
push.services.mozilla.com/
101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: LsYPG7IYTvMAfX0cxnFbsA==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: 25VRoA8exsQ7Ztk/+IgMTbt0WDM=
mc-educate.eu/
200 OK 32 kB IP
ASN #24940 Hetzner Online GmbH
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (35209), with CRLF, LF line terminators
Hash 44e09f7107334b7944abf2a1b564c307
ab9cf053910f95a38add66467c696b3b1d369c4c
ba8441ef34af9be665ab9e867b406707baf0c64ef12b6a37e46f9073b151f015
Analyzer Verdict Alert fortinet Phishing
GET / HTTP/1.1
Host: mc-educate.eu
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 200 OK
server: nginx
date: Fri, 03 Feb 2023 01:54:54 GMT
content-type: text/html; charset=utf-8
content-length: 31540
expires: Wed, 17 Aug 2005 00:00:00 GMT
cache-control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
pragma: no-cache
set-cookie: 86cb9d4cd46a27b6071b3184e9d6e5c7=g1jcn450qkkk5j2vasbt73415n; path=/; HttpOnly
x-content-type-options: nosniff
last-modified: Fri, 03 Feb 2023 01:54:54 GMT
vary: Accept-Encoding
content-encoding: gzip
x-powered-by: PHP/8.0.27, PleskLin
X-Firefox-Spdy: h2
mc-educate.eu/media/vendor/joomla-custom-elements/css/joomla-alert.min.css?0.2.0
200 OK 959 B URL HTTP/2 mc-educate.eu/media/vendor/joomla-custom-elements/css/joomla-alert.min.css?0.2.0
IP
ASN #24940 Hetzner Online GmbH
File type ASCII text, with very long lines (3964), with no line terminators
Hash 19468609d63f715ec648e3ee40389ac2
a57cc7142a3da49f022a8e91e2c294684c5a877a
daf92f38e769181de81f249ebd7681ff7decf6dc0c36391c11a25e4b789397b7
GET /media/vendor/joomla-custom-elements/css/joomla-alert.min.css?0.2.0 HTTP/1.1
Host: mc-educate.eu
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mc-educate.eu/
Cookie: 86cb9d4cd46a27b6071b3184e9d6e5c7=g1jcn450qkkk5j2vasbt73415n
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 03 Feb 2023 01:54:54 GMT
content-type: text/css
content-length: 959
x-content-type-options: nosniff
last-modified: Tue, 13 Dec 2022 13:18:36 GMT
etag: "3bf-5efb575154300"
accept-ranges: bytes
content-encoding: gzip
vary: Accept-Encoding
x-powered-by: PleskLin
X-Firefox-Spdy: h2
mc-educate.eu/modules/mod_sp_poll/assets/css/style.css
200 OK 393 B URL HTTP/2 mc-educate.eu/modules/mod_sp_poll/assets/css/style.css
IP
ASN #24940 Hetzner Online GmbH
Hash 1b61eaa520266b403aaefd53b2895cd6
eb7ad7bfe9ad5a7699f6f21dde7c779bcd019e99
7454fb7e3053648ecd933a15252eea51a31ebf333a6d29e39e110a8553f2caaa
GET /modules/mod_sp_poll/assets/css/style.css HTTP/1.1
Host: mc-educate.eu
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mc-educate.eu/
Cookie: 86cb9d4cd46a27b6071b3184e9d6e5c7=g1jcn450qkkk5j2vasbt73415n
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 03 Feb 2023 01:54:54 GMT
content-type: text/css
content-length: 393
x-content-type-options: nosniff
x-accel-version: 0.01
last-modified: Thu, 06 Jan 2022 18:57:35 GMT
etag: "3f2-5d4ee71842d72-gzip"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
x-powered-by: PleskLin
X-Firefox-Spdy: h2
mc-educate.eu/templates/shaper_gazette/css/custom.css
200 OK 156 B URL HTTP/2 mc-educate.eu/templates/shaper_gazette/css/custom.css
IP
ASN #24940 Hetzner Online GmbH
Hash 4e71f06bcc11a76f6b4e6bd24c170469
63827cf5f9d03ddb02ee0bb5787cf7dade987278
0dc9947afd777182cc137124e559046d8b572ad0dec8781270568478738d888e
GET /templates/shaper_gazette/css/custom.css HTTP/1.1
Host: mc-educate.eu
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mc-educate.eu/
Cookie: 86cb9d4cd46a27b6071b3184e9d6e5c7=g1jcn450qkkk5j2vasbt73415n
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 03 Feb 2023 01:54:54 GMT
content-type: text/css
content-length: 156
x-content-type-options: nosniff
x-accel-version: 0.01
last-modified: Fri, 14 Jan 2022 07:18:32 GMT
etag: "d9-5d5859c46de31-gzip"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
x-powered-by: PleskLin
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash 9c45ea25709afbea416f215ee34611b0
117c52c0ee3ff15a2485c0b1e39cc12c7c2021ed
7fbc3c806c7fc6d70d70b55723dbbfc00698b14fcad55014218bc5e03e92a118
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 03 Feb 2023 01:54:54 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
mc-educate.eu/media/system/js/core.min.js?bea7b244e267b04087cedcf531f6fe827a8e101f
200 OK 3.2 kB URL HTTP/2 mc-educate.eu/media/system/js/core.min.js?bea7b244e267b04087cedcf531f6fe827a8e101f
IP
ASN #24940 Hetzner Online GmbH
File type ASCII text, with very long lines (7669), with no line terminators
Hash 948a2686d9625a6a33dc3f6cdf26674e
95384013c9683b8f1df3030a59f328228254b060
d9eff906416c2336f1d3a4c8eae467c4d2837c4ca4b1f6e152a015ff5eebaef3
GET /media/system/js/core.min.js?bea7b244e267b04087cedcf531f6fe827a8e101f HTTP/1.1
Host: mc-educate.eu
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mc-educate.eu/
Cookie: 86cb9d4cd46a27b6071b3184e9d6e5c7=g1jcn450qkkk5j2vasbt73415n
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 03 Feb 2023 01:54:54 GMT
content-type: text/javascript
content-length: 3156
x-content-type-options: nosniff
last-modified: Tue, 13 Dec 2022 13:18:36 GMT
etag: "c54-5efb575154300"
accept-ranges: bytes
content-encoding: gzip
vary: Accept-Encoding
x-powered-by: PleskLin
X-Firefox-Spdy: h2
mc-educate.eu/media/legacy/js/jquery-noconflict.min.js?04499b98c0305b16b373dff09fe79d1290976288
200 OK 46 B URL HTTP/2 mc-educate.eu/media/legacy/js/jquery-noconflict.min.js?04499b98c0305b16b373dff09fe79d1290976288
IP
ASN #24940 Hetzner Online GmbH
File type ASCII text, with no line terminators
Hash 2811b89917802e96cdaba9fde4657fcc
3edd2962563e8cf5e72e73de5af9b3299eb3fb43
8685ee936b592b0ae3d1108487f64d8bf5119b84bb9cea50251c3652f9a20139
Analyzer Verdict Alert fortinet Phishing
GET /media/legacy/js/jquery-noconflict.min.js?04499b98c0305b16b373dff09fe79d1290976288 HTTP/1.1
Host: mc-educate.eu
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mc-educate.eu/
Cookie: 86cb9d4cd46a27b6071b3184e9d6e5c7=g1jcn450qkkk5j2vasbt73415n
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 03 Feb 2023 01:54:54 GMT
content-type: text/javascript
content-length: 46
x-content-type-options: nosniff
last-modified: Tue, 13 Dec 2022 13:18:36 GMT
etag: "2e-5efb575154300"
accept-ranges: bytes
content-encoding: gzip
vary: Accept-Encoding
x-powered-by: PleskLin
X-Firefox-Spdy: h2
mc-educate.eu/components/com_sppagebuilder/assets/js/common.js
200 OK 131 B URL HTTP/2 mc-educate.eu/components/com_sppagebuilder/assets/js/common.js
IP
ASN #24940 Hetzner Online GmbH
File type ASCII text, with no line terminators
Hash 0c9afb15e22566d0bdecb486f92df594
301bd6ec2f21b2e784b94fea907744046cabefcf
48ea44bb493bb0ad3d3c4dc3319d359f4923d04f418f172cc46f708b2f2f8d5e
Analyzer Verdict Alert fortinet Phishing
GET /components/com_sppagebuilder/assets/js/common.js HTTP/1.1
Host: mc-educate.eu
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mc-educate.eu/
Cookie: 86cb9d4cd46a27b6071b3184e9d6e5c7=g1jcn450qkkk5j2vasbt73415n
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 03 Feb 2023 01:54:54 GMT
content-type: application/javascript
content-length: 131
x-content-type-options: nosniff
x-accel-version: 0.01
last-modified: Fri, 27 Jan 2023 12:28:15 GMT
etag: "8e-5f33dffe394c4-gzip"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
x-powered-by: PleskLin
X-Firefox-Spdy: h2
mc-educate.eu/media/system/js/messages.min.js?7425e8d1cb9e4f061d5e30271d6d99b085344117
200 OK 1.7 kB URL HTTP/2 mc-educate.eu/media/system/js/messages.min.js?7425e8d1cb9e4f061d5e30271d6d99b085344117
IP
ASN #24940 Hetzner Online GmbH
File type ASCII text, with very long lines (5419), with no line terminators
Hash 8d0fa4e201a1674056aa3fe587d10d03
7616f9c8bb62f72e21ecae6eabf3333e88431008
c8cf4e9df57b806463441b37e31efa25f1300bf53ad73f42f3ef5863bbc4e267
Analyzer Verdict Alert fortinet Phishing
GET /media/system/js/messages.min.js?7425e8d1cb9e4f061d5e30271d6d99b085344117 HTTP/1.1
Host: mc-educate.eu
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mc-educate.eu/
Cookie: 86cb9d4cd46a27b6071b3184e9d6e5c7=g1jcn450qkkk5j2vasbt73415n
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 03 Feb 2023 01:54:54 GMT
content-type: text/javascript
content-length: 1704
x-content-type-options: nosniff
last-modified: Tue, 13 Dec 2022 13:18:36 GMT
etag: "6a8-5efb575154300"
accept-ranges: bytes
content-encoding: gzip
vary: Accept-Encoding
x-powered-by: PleskLin
X-Firefox-Spdy: h2
mc-educate.eu/media/system/js/showon.min.js?bfc733e48a923aaffb3d959cd04f176bad7d7d52
200 OK 1.3 kB URL HTTP/2 mc-educate.eu/media/system/js/showon.min.js?bfc733e48a923aaffb3d959cd04f176bad7d7d52
IP
ASN #24940 Hetzner Online GmbH
File type ASCII text, with very long lines (3427), with no line terminators
Hash c5fc1395bba6b5205b49e7490ee351ce
06631ca7899d53d80c39e6ae8a49386e23306cf2
9e9c67106d643f10f9985df009be123286a36f02ddccf7275dd96d69c4bbf272
Analyzer Verdict Alert fortinet Phishing
GET /media/system/js/showon.min.js?bfc733e48a923aaffb3d959cd04f176bad7d7d52 HTTP/1.1
Host: mc-educate.eu
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mc-educate.eu/
Cookie: 86cb9d4cd46a27b6071b3184e9d6e5c7=g1jcn450qkkk5j2vasbt73415n
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 03 Feb 2023 01:54:54 GMT
content-type: text/javascript
content-length: 1256
x-content-type-options: nosniff
last-modified: Tue, 13 Dec 2022 13:18:36 GMT
etag: "4e8-5efb575154300"
accept-ranges: bytes
content-encoding: gzip
vary: Accept-Encoding
x-powered-by: PleskLin
X-Firefox-Spdy: h2
mc-educate.eu/components/com_sppagebuilder/assets/js/jquery.parallax.js?73ee45a029f5bc0e36fdf5699a0b5203
200 OK 428 B URL HTTP/2 mc-educate.eu/components/com_sppagebuilder/assets/js/jquery.parallax.js?73ee45a029f5bc0e36fdf5699a0b5203
IP
ASN #24940 Hetzner Online GmbH
File type ASCII text, with very long lines (898), with no line terminators
Hash aebe42d7f1d2b873848dec8c2607e151
bea5cc770c4350c4b0495d3a96fd6021c5278ca1
bef4965fdb11477b0611cb9b6d802e1e2dca3cdcea30d90486aa4a2d0e339023
GET /components/com_sppagebuilder/assets/js/jquery.parallax.js?73ee45a029f5bc0e36fdf5699a0b5203 HTTP/1.1
Host: mc-educate.eu
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mc-educate.eu/
Cookie: 86cb9d4cd46a27b6071b3184e9d6e5c7=g1jcn450qkkk5j2vasbt73415n
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 03 Feb 2023 01:54:54 GMT
content-type: application/javascript
content-length: 428
x-content-type-options: nosniff
x-accel-version: 0.01
last-modified: Fri, 27 Jan 2023 12:28:15 GMT
etag: "382-5f33dffe4dce4-gzip"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
x-powered-by: PleskLin
X-Firefox-Spdy: h2
mc-educate.eu//templates/shaper_gazette/js/lazyestload.js
200 OK 366 B URL HTTP/2 mc-educate.eu//templates/shaper_gazette/js/lazyestload.js
IP
ASN #24940 Hetzner Online GmbH
File type ASCII text, with very long lines (700), with no line terminators
Hash 9d3ed8aa2d54e039e0930476c38f86b5
22811d9e01dcbbc8726899be5c07c94b2a0e1573
a38d14ecb2ba0c748116ec138e4ff1f5d55924abc3f3127d4e512d2d92eeb9b1
Analyzer Verdict Alert fortinet Phishing
GET //templates/shaper_gazette/js/lazyestload.js HTTP/1.1
Host: mc-educate.eu
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mc-educate.eu/
Cookie: 86cb9d4cd46a27b6071b3184e9d6e5c7=g1jcn450qkkk5j2vasbt73415n
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 03 Feb 2023 01:54:54 GMT
content-type: application/javascript
content-length: 366
x-content-type-options: nosniff
x-accel-version: 0.01
last-modified: Fri, 07 Jan 2022 11:51:13 GMT
etag: "2bc-5d4fc9a8e781d-gzip"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
x-powered-by: PleskLin
X-Firefox-Spdy: h2
mc-educate.eu/templates/shaper_gazette/js/lazyestload.js
200 OK 366 B URL HTTP/2 mc-educate.eu/templates/shaper_gazette/js/lazyestload.js
IP
ASN #24940 Hetzner Online GmbH
File type ASCII text, with very long lines (700), with no line terminators
Hash 9d3ed8aa2d54e039e0930476c38f86b5
22811d9e01dcbbc8726899be5c07c94b2a0e1573
a38d14ecb2ba0c748116ec138e4ff1f5d55924abc3f3127d4e512d2d92eeb9b1
Analyzer Verdict Alert fortinet Phishing
GET /templates/shaper_gazette/js/lazyestload.js HTTP/1.1
Host: mc-educate.eu
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mc-educate.eu/
Cookie: 86cb9d4cd46a27b6071b3184e9d6e5c7=g1jcn450qkkk5j2vasbt73415n
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 03 Feb 2023 01:54:54 GMT
content-type: application/javascript
content-length: 366
x-content-type-options: nosniff
x-accel-version: 0.01
last-modified: Fri, 07 Jan 2022 11:51:13 GMT
etag: "2bc-5d4fc9a8e781d-gzip"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
x-powered-by: PleskLin
X-Firefox-Spdy: h2
mc-educate.eu/modules/mod_sp_tabbed_articles/assets/js/sp-tabbed-articles.js
200 OK 410 B URL HTTP/2 mc-educate.eu/modules/mod_sp_tabbed_articles/assets/js/sp-tabbed-articles.js
IP
ASN #24940 Hetzner Online GmbH
Hash 5b7d5daa37f47723089fd188944f39ac
47578074021583ef4e6783b1ce2086fdc3714191
41ae5c017d5f185d3b727fde954b591d4399d1b11eeaacaf922c9a1f7c7b97d0
Analyzer Verdict Alert fortinet Phishing
GET /modules/mod_sp_tabbed_articles/assets/js/sp-tabbed-articles.js HTTP/1.1
Host: mc-educate.eu
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mc-educate.eu/
Cookie: 86cb9d4cd46a27b6071b3184e9d6e5c7=g1jcn450qkkk5j2vasbt73415n
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 03 Feb 2023 01:54:54 GMT
content-type: application/javascript
content-length: 410
x-content-type-options: nosniff
x-accel-version: 0.01
last-modified: Thu, 06 Jan 2022 18:57:35 GMT
etag: "3c7-5d4ee71842d72-gzip"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
x-powered-by: PleskLin
X-Firefox-Spdy: h2
mc-educate.eu/media/vendor/jquery/js/jquery.min.js?3.6.0
200 OK 31 kB URL HTTP/2 mc-educate.eu/media/vendor/jquery/js/jquery.min.js?3.6.0
IP
ASN #24940 Hetzner Online GmbH
File type ASCII text, with very long lines (65447)
Hash ca6e0dcaf6fe11e3b4d4d299ecbab7a6
a637b13aff3baacc733eb221226c36b71a3d3a7b
f4a93cf3834c5f3bbbab2ba619425fb1415050a847f5bc12cd6b0bab5e68074e
GET /media/vendor/jquery/js/jquery.min.js?3.6.0 HTTP/1.1
Host: mc-educate.eu
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mc-educate.eu/
Cookie: 86cb9d4cd46a27b6071b3184e9d6e5c7=g1jcn450qkkk5j2vasbt73415n
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 03 Feb 2023 01:54:54 GMT
content-type: text/javascript
content-length: 30875
x-content-type-options: nosniff
last-modified: Tue, 13 Dec 2022 13:18:36 GMT
etag: "789b-5efb575154300"
accept-ranges: bytes
content-encoding: gzip
vary: Accept-Encoding
x-powered-by: PleskLin
X-Firefox-Spdy: h2
mc-educate.eu/images/1-removebg-preview.png
200 OK 17 kB URL HTTP/2 mc-educate.eu/images/1-removebg-preview.png
IP
ASN #24940 Hetzner Online GmbH
File type PNG image data, 442 x 93, 8-bit/color RGBA, non-interlaced\012- data
Hash 3a42b707d857cde744de3f3451866ef5
1100ba61fc7b2ef18f030195c96bba7e7573ff6c
235e85cb6e3a8972561b020f129f308ef5598da2058b2f00184a7e56468e657f
GET /images/1-removebg-preview.png HTTP/1.1
Host: mc-educate.eu
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mc-educate.eu/
Cookie: 86cb9d4cd46a27b6071b3184e9d6e5c7=g1jcn450qkkk5j2vasbt73415n
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 03 Feb 2023 01:54:54 GMT
content-type: image/png
content-length: 17395
last-modified: Thu, 17 Feb 2022 16:33:03 GMT
etag: "620e78bf-43f3"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
mc-educate.eu/images/2022/01/13/search-find-view-information-data-graphic-symbol-icon_medium.jpg
200 OK 195 kB URL HTTP/2 mc-educate.eu/images/2022/01/13/search-find-view-information-data-graphic-symbol-icon_medium.jpg
IP
ASN #24940 Hetzner Online GmbH
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v80), quality = 100", baseline, precision 8, 750x450, components 3\012- data
Size 195 kB (195002 bytes)
Hash 78dfeaa6062b3e862a430591ee7493f5
e99eb0ddfc493df2d7d7f4ea836bf713dd9e266b
54d3afa71298dac0153e18290aa2a3e4af6e55ee484a1b3d2c907bf57cb7a459
GET /images/2022/01/13/search-find-view-information-data-graphic-symbol-icon_medium.jpg HTTP/1.1
Host: mc-educate.eu
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mc-educate.eu/
Cookie: 86cb9d4cd46a27b6071b3184e9d6e5c7=g1jcn450qkkk5j2vasbt73415n
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 03 Feb 2023 01:54:54 GMT
content-type: image/jpeg
content-length: 195002
last-modified: Thu, 13 Jan 2022 22:59:21 GMT
etag: "61e0aec9-2f9ba"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
mc-educate.eu/components/com_sppagebuilder/assets/css/font-awesome-5.min.css?73ee45a029f5bc0e36fdf5699a0b5203
200 OK 266 kB URL HTTP/2 mc-educate.eu/components/com_sppagebuilder/assets/css/font-awesome-5.min.css?73ee45a029f5bc0e36fdf5699a0b5203
IP
ASN #24940 Hetzner Online GmbH
File type ASCII text, with very long lines (58041)
Size 266 kB (266069 bytes)
Hash a1b3edbe345357066d4fa20c4b075d4d
f332289e01681971e4f1c1fc4c60c57c278b7f11
c1a920753c6a3decaff95eed85ee9c0115ad9edb9d7213ca448dca6c78f8cb10
Analyzer Verdict Alert fortinet Phishing
GET /components/com_sppagebuilder/assets/css/font-awesome-5.min.css?73ee45a029f5bc0e36fdf5699a0b5203 HTTP/1.1
Host: mc-educate.eu
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mc-educate.eu/
Cookie: 86cb9d4cd46a27b6071b3184e9d6e5c7=g1jcn450qkkk5j2vasbt73415n
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 03 Feb 2023 01:54:54 GMT
content-type: text/css
last-modified: Fri, 27 Jan 2023 12:28:15 GMT
etag: W/"63d3c35f-e36f"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
mc-educate.eu/images/2022/01/10/windows_medium.jpeg
200 OK 40 kB URL HTTP/2 mc-educate.eu/images/2022/01/10/windows_medium.jpeg
IP
ASN #24940 Hetzner Online GmbH
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v80), quality = 100", baseline, precision 8, 750x450, components 3\012- data
Hash 8cafad0406f806cb58ede996ad5391d8
0fe69791b9e9804e7f690a837e445880bdcade6f
1a6792fb960f2a104df8c7f3756e7deb78e204110826dd8c5e59084567332f76
Analyzer Verdict Alert fortinet Phishing
GET /images/2022/01/10/windows_medium.jpeg HTTP/1.1
Host: mc-educate.eu
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mc-educate.eu/
Cookie: 86cb9d4cd46a27b6071b3184e9d6e5c7=g1jcn450qkkk5j2vasbt73415n
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 03 Feb 2023 01:54:54 GMT
content-type: image/jpeg
content-length: 40109
last-modified: Mon, 10 Jan 2022 23:04:39 GMT
etag: "61dcbb87-9cad"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
mc-educate.eu/images/2022/09/21/TUBEBUDDY-REVIEW_-BASED-ON-MY-3-YEARS-EXPPERIENCE2022_medium.png
200 OK 64 kB URL HTTP/2 mc-educate.eu/images/2022/09/21/TUBEBUDDY-REVIEW_-BASED-ON-MY-3-YEARS-EXPPERIENCE2022_medium.png
IP
ASN #24940 Hetzner Online GmbH
File type PNG image data, 750 x 450, 8-bit/color RGBA, non-interlaced\012- data
Hash 6fa36a61fc72860b8317d57dbbfb98a6
c32439d697e62b5675be24007da338bd9eee9f03
9f1bdbd97e94a8be733b269229c2579328226a1f398bbac780efdd99ed9a806e
GET /images/2022/09/21/TUBEBUDDY-REVIEW_-BASED-ON-MY-3-YEARS-EXPPERIENCE2022_medium.png HTTP/1.1
Host: mc-educate.eu
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mc-educate.eu/
Cookie: 86cb9d4cd46a27b6071b3184e9d6e5c7=g1jcn450qkkk5j2vasbt73415n
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 03 Feb 2023 01:54:54 GMT
content-type: image/png
content-length: 63729
last-modified: Wed, 21 Sep 2022 09:38:13 GMT
etag: "632adb85-f8f1"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
mc-educate.eu/images/2022/09/21/HOW-TO-STRAT-FREELANCING-WITH-RENDERFOREST_small.png
200 OK 16 kB URL HTTP/2 mc-educate.eu/images/2022/09/21/HOW-TO-STRAT-FREELANCING-WITH-RENDERFOREST_small.png
IP
ASN #24940 Hetzner Online GmbH
File type PNG image data, 160 x 150, 8-bit/color RGBA, non-interlaced\012- data
Hash 89510af8114fd6b85af8eff1085b7ed7
bb3b27587db6ad9b96e360a7bc8b24b0431ef51c
882ccc84246b97f9889ba3a2c6f01e54073c64bab5fb32482f866f3cbbb2196d
GET /images/2022/09/21/HOW-TO-STRAT-FREELANCING-WITH-RENDERFOREST_small.png HTTP/1.1
Host: mc-educate.eu
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mc-educate.eu/
Cookie: 86cb9d4cd46a27b6071b3184e9d6e5c7=g1jcn450qkkk5j2vasbt73415n
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 03 Feb 2023 01:54:54 GMT
content-type: image/png
content-length: 15590
last-modified: Wed, 21 Sep 2022 10:17:17 GMT
etag: "632ae4ad-3ce6"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
mc-educate.eu/images/2022/01/12/00W2aarAq7sEX5PZCotxx5B-12.fit_lim.size_768x_medium.jpg
200 OK 110 kB URL HTTP/2 mc-educate.eu/images/2022/01/12/00W2aarAq7sEX5PZCotxx5B-12.fit_lim.size_768x_medium.jpg
IP
ASN #24940 Hetzner Online GmbH
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v80), quality = 100", baseline, precision 8, 750x450, components 3\012- data
Size 110 kB (110253 bytes)
Hash f263f870d7b4cb35219c00720a46067d
21b78ee79147296ea4c488b22073e8a30a6be3f4
6dac67c3d6517d1fdd5b834a8c65c4940c512a57e4a3fe9e6fb691c1d9792838
GET /images/2022/01/12/00W2aarAq7sEX5PZCotxx5B-12.fit_lim.size_768x_medium.jpg HTTP/1.1
Host: mc-educate.eu
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mc-educate.eu/
Cookie: 86cb9d4cd46a27b6071b3184e9d6e5c7=g1jcn450qkkk5j2vasbt73415n
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 03 Feb 2023 01:54:54 GMT
content-type: image/jpeg
content-length: 110253
last-modified: Wed, 12 Jan 2022 00:11:13 GMT
etag: "61de1ca1-1aead"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
mc-educate.eu/images/2022/01/11/seo-search-engine-optimization-business-concept_small.jpg
200 OK 32 kB URL HTTP/2 mc-educate.eu/images/2022/01/11/seo-search-engine-optimization-business-concept_small.jpg
IP
ASN #24940 Hetzner Online GmbH
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v80), quality = 100", baseline, precision 8, 160x150, components 3\012- data
Hash c26782da2945ea36a537c0e2a7046fed
c660fa00964d6dbda44ef0ce489e17561b505fda
019681f277fdee5fbd66fcd8ce0437c6d621db5d5e11e328dca84e4abf397222
GET /images/2022/01/11/seo-search-engine-optimization-business-concept_small.jpg HTTP/1.1
Host: mc-educate.eu
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mc-educate.eu/
Cookie: 86cb9d4cd46a27b6071b3184e9d6e5c7=g1jcn450qkkk5j2vasbt73415n
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 03 Feb 2023 01:54:54 GMT
content-type: image/jpeg
content-length: 31700
last-modified: Tue, 11 Jan 2022 08:16:24 GMT
etag: "61dd3cd8-7bd4"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
mc-educate.eu/images/2022/12/12/SEO-Checklist_small.jpg
200 OK 26 kB URL HTTP/2 mc-educate.eu/images/2022/12/12/SEO-Checklist_small.jpg
IP
ASN #24940 Hetzner Online GmbH
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v80), quality = 100", baseline, precision 8, 160x150, components 3\012- data
Hash c63810223bf01eb4ffc48f948f3a9f28
cb9a2924290f4b1ded7a319e13aee29acb0e31c6
822bbcba17ea8e062cfaccfaa0b315022624581011fb8b55c663f4f0f3432016
GET /images/2022/12/12/SEO-Checklist_small.jpg HTTP/1.1
Host: mc-educate.eu
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mc-educate.eu/
Cookie: 86cb9d4cd46a27b6071b3184e9d6e5c7=g1jcn450qkkk5j2vasbt73415n
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 03 Feb 2023 01:54:54 GMT
content-type: image/jpeg
content-length: 26543
last-modified: Mon, 12 Dec 2022 14:14:37 GMT
etag: "6397374d-67af"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
mc-educate.eu/images/2022/01/10/windows_small.jpeg
200 OK 7.8 kB URL HTTP/2 mc-educate.eu/images/2022/01/10/windows_small.jpeg
IP
ASN #24940 Hetzner Online GmbH
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v80), quality = 100", baseline, precision 8, 160x150, components 3\012- data
Hash 4f6c47ff92ffd079c620fa7ff64781b6
5f99a3c07ed59a5ad8b781136f5f75b5fc5d1271
8b93f827b777f4492e3f151761d0747fd8f71a4b2c1c44718bb3352a249443d9
Analyzer Verdict Alert fortinet Phishing
GET /images/2022/01/10/windows_small.jpeg HTTP/1.1
Host: mc-educate.eu
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mc-educate.eu/
Cookie: 86cb9d4cd46a27b6071b3184e9d6e5c7=g1jcn450qkkk5j2vasbt73415n
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 03 Feb 2023 01:54:54 GMT
content-type: image/jpeg
content-length: 7802
last-modified: Mon, 10 Jan 2022 23:04:39 GMT
etag: "61dcbb87-1e7a"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
mc-educate.eu/images/2022/01/11/save-iptables-permanently_small.jpg
200 OK 23 kB URL HTTP/2 mc-educate.eu/images/2022/01/11/save-iptables-permanently_small.jpg
IP
ASN #24940 Hetzner Online GmbH
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v80), quality = 100", baseline, precision 8, 160x150, components 3\012- data
Hash 6297523c2d5b70920cfa86000ee993f2
040b7de6a2ceac1ced34a57addea094a5529e2a5
ae29833aae1dee0d297abe5789e53caaead873d2c1f062efd0fc9c437bc5ab25
GET /images/2022/01/11/save-iptables-permanently_small.jpg HTTP/1.1
Host: mc-educate.eu
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mc-educate.eu/
Cookie: 86cb9d4cd46a27b6071b3184e9d6e5c7=g1jcn450qkkk5j2vasbt73415n
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 03 Feb 2023 01:54:54 GMT
content-type: image/jpeg
content-length: 22585
last-modified: Tue, 11 Jan 2022 19:23:28 GMT
etag: "61ddd930-5839"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
mc-educate.eu/images/2022/01/10/email-marketing_small.jpg
200 OK 16 kB URL HTTP/2 mc-educate.eu/images/2022/01/10/email-marketing_small.jpg
IP
ASN #24940 Hetzner Online GmbH
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v80), quality = 100", baseline, precision 8, 160x150, components 3\012- data
Hash f05275b663f887ba6a72517d41b8838f
8bee6060ed4fa64c808acc0022944084c0072a11
07a7318db718d659452279f3371801d140d2d7f3e3855863acec0162c98648cf
GET /images/2022/01/10/email-marketing_small.jpg HTTP/1.1
Host: mc-educate.eu
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mc-educate.eu/
Cookie: 86cb9d4cd46a27b6071b3184e9d6e5c7=g1jcn450qkkk5j2vasbt73415n
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 03 Feb 2023 01:54:54 GMT
content-type: image/jpeg
content-length: 16386
last-modified: Mon, 10 Jan 2022 16:01:06 GMT
etag: "61dc5842-4002"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
mc-educate.eu/images/2022/01/10/Windows-10-Tips1_medium.jpg
200 OK 83 kB URL HTTP/2 mc-educate.eu/images/2022/01/10/Windows-10-Tips1_medium.jpg
IP
ASN #24940 Hetzner Online GmbH
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v80), quality = 100", baseline, precision 8, 750x450, components 3\012- data
Hash 046902b0367697dbac32baf282ac7866
c57cbcc1c8042dd2cc7cd7ed928f4ff983f9b504
b84fa00514a46d5bd2d19e02a0897ab9a0ef7a1c72ff45a3154848f64dae91a5
GET /images/2022/01/10/Windows-10-Tips1_medium.jpg HTTP/1.1
Host: mc-educate.eu
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mc-educate.eu/
Cookie: 86cb9d4cd46a27b6071b3184e9d6e5c7=g1jcn450qkkk5j2vasbt73415n
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 03 Feb 2023 01:54:54 GMT
content-type: image/jpeg
content-length: 82625
last-modified: Mon, 10 Jan 2022 22:38:39 GMT
etag: "61dcb56f-142c1"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
mc-educate.eu/images/2022/11/05/Bitcoin%20se%20apla%20ellinika2_small.png
200 OK 35 kB URL HTTP/2 mc-educate.eu/images/2022/11/05/Bitcoin%20se%20apla%20ellinika2_small.png
IP
ASN #24940 Hetzner Online GmbH
File type PNG image data, 160 x 150, 8-bit/color RGBA, non-interlaced\012- data
Hash ac22d4ffea44e6cd5d582fccaa59d481
8202d4449a66f39847d1a7b8c7330eb91e97e2a2
c78618b462b9ffb847aa81bf90511247b974527daa80e7fdd543b87af8350faf
GET /images/2022/11/05/Bitcoin%20se%20apla%20ellinika2_small.png HTTP/1.1
Host: mc-educate.eu
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mc-educate.eu/
Cookie: 86cb9d4cd46a27b6071b3184e9d6e5c7=g1jcn450qkkk5j2vasbt73415n
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 03 Feb 2023 01:54:54 GMT
content-type: image/png
content-length: 34963
last-modified: Sat, 05 Nov 2022 15:21:36 GMT
etag: "63667f80-8893"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
mc-educate.eu/images/2022/10/31/10-lathi-sto-youtube_small.png
200 OK 16 kB URL HTTP/2 mc-educate.eu/images/2022/10/31/10-lathi-sto-youtube_small.png
IP
ASN #24940 Hetzner Online GmbH
File type PNG image data, 160 x 150, 8-bit/color RGBA, non-interlaced\012- data
Hash 9718b1c9cf8e5a8dfc8a0c5b23f86b5b
a06f379a7e4ce024ed2be1886338ce462d791d32
c9ddb94a7d1c152bfe3ce49915c6d21d8846e901f83ecce6cc616bfe23272fb4
GET /images/2022/10/31/10-lathi-sto-youtube_small.png HTTP/1.1
Host: mc-educate.eu
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mc-educate.eu/
Cookie: 86cb9d4cd46a27b6071b3184e9d6e5c7=g1jcn450qkkk5j2vasbt73415n
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 03 Feb 2023 01:54:54 GMT
content-type: image/png
content-length: 15957
last-modified: Mon, 31 Oct 2022 10:24:30 GMT
etag: "635fa25e-3e55"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
mc-educate.eu/images/2022/10/31/domain%C3%9Fauthority-min_small.jpg
200 OK 26 kB URL HTTP/2 mc-educate.eu/images/2022/10/31/domain%C3%9Fauthority-min_small.jpg
IP
ASN #24940 Hetzner Online GmbH
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v80), quality = 100", baseline, precision 8, 160x150, components 3\012- data
Hash 90462206c44be953b68dcda5197a5cc7
b899874edc41dea36106cf2625c31e412f5fa281
31446b99d5ea0aac00de53d0f360617aee11fd55ca802bc9e641212426f5e492
GET /images/2022/10/31/domain%C3%9Fauthority-min_small.jpg HTTP/1.1
Host: mc-educate.eu
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mc-educate.eu/
Cookie: 86cb9d4cd46a27b6071b3184e9d6e5c7=g1jcn450qkkk5j2vasbt73415n
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 03 Feb 2023 01:54:54 GMT
content-type: image/jpeg
content-length: 25867
last-modified: Mon, 31 Oct 2022 10:22:31 GMT
etag: "635fa1e7-650b"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
mc-educate.eu/images/2022/09/21/TUBEBUDDY-REVIEW_-BASED-ON-MY-3-YEARS-EXPPERIENCE2022_small.png
200 OK 15 kB URL HTTP/2 mc-educate.eu/images/2022/09/21/TUBEBUDDY-REVIEW_-BASED-ON-MY-3-YEARS-EXPPERIENCE2022_small.png
IP
ASN #24940 Hetzner Online GmbH
File type PNG image data, 160 x 150, 8-bit/color RGBA, non-interlaced\012- data
Hash 0aa72de4f749c6d63fdc6a3228cddd6c
180d9efe5e2c4cb9850c2f47fcdfe4b83e9e7b63
45e89361ad1b174383b80844015071f7828475277743242d9687d0ba4015f88e
GET /images/2022/09/21/TUBEBUDDY-REVIEW_-BASED-ON-MY-3-YEARS-EXPPERIENCE2022_small.png HTTP/1.1
Host: mc-educate.eu
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mc-educate.eu/
Cookie: 86cb9d4cd46a27b6071b3184e9d6e5c7=g1jcn450qkkk5j2vasbt73415n
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 03 Feb 2023 01:54:54 GMT
content-type: image/png
content-length: 14933
last-modified: Wed, 21 Sep 2022 09:38:13 GMT
etag: "632adb85-3a55"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
mc-educate.eu/images/2022/08/23/diverse-people-holding-texts-social-media-activities_small.jpg
200 OK 19 kB URL HTTP/2 mc-educate.eu/images/2022/08/23/diverse-people-holding-texts-social-media-activities_small.jpg
IP
ASN #24940 Hetzner Online GmbH
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v80), quality = 100", baseline, precision 8, 160x150, components 3\012- data
Hash c3e72df5b9a757ca5ebf8263076b7dfb
fca7729aec4672268550a9318ab1e3ecbac64daf
4db104a9f5355db5f73514b481b5ba4caf2fe40b1f4d439b254ad76d559a28b6
GET /images/2022/08/23/diverse-people-holding-texts-social-media-activities_small.jpg HTTP/1.1
Host: mc-educate.eu
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mc-educate.eu/
Cookie: 86cb9d4cd46a27b6071b3184e9d6e5c7=g1jcn450qkkk5j2vasbt73415n
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 03 Feb 2023 01:54:54 GMT
content-type: image/jpeg
content-length: 18560
last-modified: Tue, 23 Aug 2022 10:30:56 GMT
etag: "6304ac60-4880"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
www.googletagmanager.com/gtag/js?id=G-M8C15X4KCY
200 OK 77 kB URL HTTP/2 www.googletagmanager.com/gtag/js?id=G-M8C15X4KCY
IP
File type ASCII text, with very long lines (19467)
Hash 720d827a4bb848fdf12c5c2793f0d050
6566cef222416dce40f61bfec5319a6dc5c55378
5b6de8532d948a7efddbd9ceca43130e1559091a8082834d19eee74404e75875
GET /gtag/js?id=G-M8C15X4KCY HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mc-educate.eu/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Fri, 03 Feb 2023 01:54:54 GMT
expires: Fri, 03 Feb 2023 01:54:54 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 77090
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
mc-educate.eu/images/2022/06/13/magnifying-glass-many-words-black-background-with-text-seo-search-engine-optimization-written-with-golden-letters-internet-marketing-web-analytics-concept-3d-illustration_small.jpg
200 OK 22 kB URL HTTP/2 mc-educate.eu/images/2022/06/13/magnifying-glass-many-words-black-background-with-text-seo-search-engine-optimization-written-with-golden-letters-internet-marketing-web-analytics-concept-3d-illustration_small.jpg
IP
ASN #24940 Hetzner Online GmbH
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v80), quality = 100", baseline, precision 8, 160x150, components 3\012- data
Hash 1b60bd35f224e2a122f7328eae17b438
6061ce82b85309af48fff60fe88f6e3f4d5f92e1
5fd08138c5aa5784263cd8eed1bc96ec5b06a526023c25869f912b40b56ea325
GET /images/2022/06/13/magnifying-glass-many-words-black-background-with-text-seo-search-engine-optimization-written-with-golden-letters-internet-marketing-web-analytics-concept-3d-illustration_small.jpg HTTP/1.1
Host: mc-educate.eu
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mc-educate.eu/
Cookie: 86cb9d4cd46a27b6071b3184e9d6e5c7=g1jcn450qkkk5j2vasbt73415n
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 03 Feb 2023 01:54:54 GMT
content-type: image/jpeg
content-length: 22531
last-modified: Mon, 13 Jun 2022 07:21:18 GMT
etag: "62a6e56e-5803"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
mc-educate.eu/images/2022/01/29/google_small.jpg
200 OK 18 kB URL HTTP/2 mc-educate.eu/images/2022/01/29/google_small.jpg
IP
ASN #24940 Hetzner Online GmbH
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v80), quality = 100", baseline, precision 8, 160x150, components 3\012- data
Hash 7c4d6fedc735fa8a0317b77892f4fc7a
fc9b8526a7f62e121e65f6dc854be13184f8dc6f
acde7048c79c5eecc6e378dcd9ff81e4ac8f407d80b3e7ba0377f9597242b64e
GET /images/2022/01/29/google_small.jpg HTTP/1.1
Host: mc-educate.eu
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mc-educate.eu/
Cookie: 86cb9d4cd46a27b6071b3184e9d6e5c7=g1jcn450qkkk5j2vasbt73415n
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 03 Feb 2023 01:54:54 GMT
content-type: image/jpeg
content-length: 17845
last-modified: Sat, 29 Jan 2022 22:17:19 GMT
etag: "61f5bcef-45b5"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
mc-educate.eu/images/2022/06/26/happy-business-woman-money-rain-made-dollars-isolated-white-wall_small.jpg
200 OK 15 kB URL HTTP/2 mc-educate.eu/images/2022/06/26/happy-business-woman-money-rain-made-dollars-isolated-white-wall_small.jpg
IP
ASN #24940 Hetzner Online GmbH
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v80), quality = 100", baseline, precision 8, 160x150, components 3\012- data
Hash 30af976e369be3d5f7d6204c364167c3
18bf9d6d9d947417b6d4023151fd0bfbfa7ab257
ed0f918556e6888bbdaa7e3192111eb9ed2a690884cd25dc82f46534d421c4f9
GET /images/2022/06/26/happy-business-woman-money-rain-made-dollars-isolated-white-wall_small.jpg HTTP/1.1
Host: mc-educate.eu
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mc-educate.eu/
Cookie: 86cb9d4cd46a27b6071b3184e9d6e5c7=g1jcn450qkkk5j2vasbt73415n
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 03 Feb 2023 01:54:54 GMT
content-type: image/jpeg
content-length: 14732
last-modified: Sun, 26 Jun 2022 16:19:36 GMT
etag: "62b88718-398c"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
mc-educate.eu/images/2022/01/29/3d-seo-optimization-web-analytics-seo-marketing-concept-3d-render-illustration_small.jpg
200 OK 17 kB URL HTTP/2 mc-educate.eu/images/2022/01/29/3d-seo-optimization-web-analytics-seo-marketing-concept-3d-render-illustration_small.jpg
IP
ASN #24940 Hetzner Online GmbH
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v80), quality = 100", baseline, precision 8, 160x150, components 3\012- data
Hash c9ae92121040bd721eb32f65ad6d1834
3d3e3038956137fde0b6efad00cc8d128334c04b
0d0a7d1859a4077536c4533613c76b71acaffa3145fa1adca4942dd4953117cf
GET /images/2022/01/29/3d-seo-optimization-web-analytics-seo-marketing-concept-3d-render-illustration_small.jpg HTTP/1.1
Host: mc-educate.eu
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mc-educate.eu/
Cookie: 86cb9d4cd46a27b6071b3184e9d6e5c7=g1jcn450qkkk5j2vasbt73415n
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 03 Feb 2023 01:54:54 GMT
content-type: image/jpeg
content-length: 16671
last-modified: Sat, 29 Jan 2022 16:35:27 GMT
etag: "61f56ccf-411f"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
mc-educate.eu/images/2023/01/16/on-page-seo_small.jpg
200 OK 18 kB URL HTTP/2 mc-educate.eu/images/2023/01/16/on-page-seo_small.jpg
IP
ASN #24940 Hetzner Online GmbH
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v80), quality = 100", baseline, precision 8, 160x150, components 3\012- data
Hash ca8900c456c5675aed4fa1633cf5973a
623ea6c6f8a4c8b3d23eba7c31e199fe1620f0e6
8c489836e19c4f61a998940f0cb8ab8d227e512ede1c90aacc596396d9bbc1df
GET /images/2023/01/16/on-page-seo_small.jpg HTTP/1.1
Host: mc-educate.eu
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mc-educate.eu/
Cookie: 86cb9d4cd46a27b6071b3184e9d6e5c7=g1jcn450qkkk5j2vasbt73415n
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 03 Feb 2023 01:54:54 GMT
content-type: image/jpeg
content-length: 17573
last-modified: Mon, 16 Jan 2023 11:55:30 GMT
etag: "63c53b32-44a5"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
mc-educate.eu/images/2022/01/12/00W2aarAq7sEX5PZCotxx5B-12.fit_lim.size_768x_small.jpg
200 OK 12 kB URL HTTP/2 mc-educate.eu/images/2022/01/12/00W2aarAq7sEX5PZCotxx5B-12.fit_lim.size_768x_small.jpg
IP
ASN #24940 Hetzner Online GmbH
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v80), quality = 100", baseline, precision 8, 160x150, components 3\012- data
Hash 13a93fdceb79305cbb19a6b696e1c9db
5cf1655936cd6cabfe0456dc58f1df120fd2b79c
75c79262a634b7361d6098e2e631259a963740f0cf124e214b086d93d8c9c75b
GET /images/2022/01/12/00W2aarAq7sEX5PZCotxx5B-12.fit_lim.size_768x_small.jpg HTTP/1.1
Host: mc-educate.eu
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mc-educate.eu/
Cookie: 86cb9d4cd46a27b6071b3184e9d6e5c7=g1jcn450qkkk5j2vasbt73415n
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 03 Feb 2023 01:54:54 GMT
content-type: image/jpeg
content-length: 12359
last-modified: Wed, 12 Jan 2022 00:11:13 GMT
etag: "61de1ca1-3047"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
mc-educate.eu/images/2022/01/09/step1_small.png
200 OK 22 kB URL HTTP/2 mc-educate.eu/images/2022/01/09/step1_small.png
IP
ASN #24940 Hetzner Online GmbH
File type PNG image data, 160 x 150, 8-bit/color RGBA, non-interlaced\012- data
Hash 255852bf61a4c1a437456aabd2c5237a
62215bda9e4ad273c72dab6f636ac4a04e1320ef
c6f801bd7be24675ce94a8c42d086c2a40214db187b8cf87734170ec48acfcd1
GET /images/2022/01/09/step1_small.png HTTP/1.1
Host: mc-educate.eu
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mc-educate.eu/
Cookie: 86cb9d4cd46a27b6071b3184e9d6e5c7=g1jcn450qkkk5j2vasbt73415n
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 03 Feb 2023 01:54:54 GMT
content-type: image/png
content-length: 21888
last-modified: Sun, 09 Jan 2022 22:59:14 GMT
etag: "61db68c2-5580"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
mc-educate.eu/images/2022/01/09/windows_small.jpeg
200 OK 7.8 kB URL HTTP/2 mc-educate.eu/images/2022/01/09/windows_small.jpeg
IP
ASN #24940 Hetzner Online GmbH
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v80), quality = 100", baseline, precision 8, 160x150, components 3\012- data
Hash 4f6c47ff92ffd079c620fa7ff64781b6
5f99a3c07ed59a5ad8b781136f5f75b5fc5d1271
8b93f827b777f4492e3f151761d0747fd8f71a4b2c1c44718bb3352a249443d9
Analyzer Verdict Alert fortinet Phishing
GET /images/2022/01/09/windows_small.jpeg HTTP/1.1
Host: mc-educate.eu
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mc-educate.eu/
Cookie: 86cb9d4cd46a27b6071b3184e9d6e5c7=g1jcn450qkkk5j2vasbt73415n
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 03 Feb 2023 01:54:54 GMT
content-type: image/jpeg
content-length: 7802
last-modified: Sun, 09 Jan 2022 22:18:11 GMT
etag: "61db5f23-1e7a"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
mc-educate.eu/images/2022/01/10/Windows-10-Tips1_small.jpg
200 OK 13 kB URL HTTP/2 mc-educate.eu/images/2022/01/10/Windows-10-Tips1_small.jpg
IP
ASN #24940 Hetzner Online GmbH
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v80), quality = 100", baseline, precision 8, 160x150, components 3\012- data
Hash fda0faa757e98bbdc4546f516fd2e86d
7cf33b5258336d60ae649477eb46254a26db9c20
24d136afad8387643871793d1ee25dc40c5e514eb24b6566441acd7825f17269
GET /images/2022/01/10/Windows-10-Tips1_small.jpg HTTP/1.1
Host: mc-educate.eu
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mc-educate.eu/
Cookie: 86cb9d4cd46a27b6071b3184e9d6e5c7=g1jcn450qkkk5j2vasbt73415n
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 03 Feb 2023 01:54:54 GMT
content-type: image/jpeg
content-length: 13062
last-modified: Mon, 10 Jan 2022 22:38:39 GMT
etag: "61dcb56f-3306"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
mc-educate.eu/images/2022/01/10/png-clipart-linux-_small.png
200 OK 16 kB URL HTTP/2 mc-educate.eu/images/2022/01/10/png-clipart-linux-_small.png
IP
ASN #24940 Hetzner Online GmbH
File type PNG image data, 160 x 150, 8-bit/color RGBA, non-interlaced\012- data
Hash 85a10a1b50d7967dee4086b2fd8e3410
177c15c6e3747fce6c587c6fc0dd1a4bf3cefc8f
21a435907c7426e7308fef89352646e45c7a51b76f9df06e0df2d4094b3a255d
GET /images/2022/01/10/png-clipart-linux-_small.png HTTP/1.1
Host: mc-educate.eu
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mc-educate.eu/
Cookie: 86cb9d4cd46a27b6071b3184e9d6e5c7=g1jcn450qkkk5j2vasbt73415n
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 03 Feb 2023 01:54:54 GMT
content-type: image/png
content-length: 16522
last-modified: Mon, 10 Jan 2022 00:24:07 GMT
etag: "61db7ca7-408a"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
mc-educate.eu/images/2022/01/09/green-screen-coding-hacker-concept-animation-with-glitch-programming-code-typing-error_small.jpg
200 OK 22 kB URL HTTP/2 mc-educate.eu/images/2022/01/09/green-screen-coding-hacker-concept-animation-with-glitch-programming-code-typing-error_small.jpg
IP
ASN #24940 Hetzner Online GmbH
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v80), quality = 100", baseline, precision 8, 160x150, components 3\012- data
Hash 19d699764a5a08c633ef1b25e5b54b03
d03abf164e329d6d65d1984f1a1d34f8de9799f8
707bff4d04e98d0c04a40707e078fdf80761402069aba2d73889a5279237d1b1
GET /images/2022/01/09/green-screen-coding-hacker-concept-animation-with-glitch-programming-code-typing-error_small.jpg HTTP/1.1
Host: mc-educate.eu
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mc-educate.eu/
Cookie: 86cb9d4cd46a27b6071b3184e9d6e5c7=g1jcn450qkkk5j2vasbt73415n
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 03 Feb 2023 01:54:54 GMT
content-type: image/jpeg
content-length: 21917
last-modified: Sun, 09 Jan 2022 20:47:15 GMT
etag: "61db49d3-559d"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
mc-educate.eu/images/2022/05/01/phpinfo-page-example_small.png
200 OK 17 kB URL HTTP/2 mc-educate.eu/images/2022/05/01/phpinfo-page-example_small.png
IP
ASN #24940 Hetzner Online GmbH
File type PNG image data, 160 x 150, 8-bit/color RGBA, non-interlaced\012- data
Hash 509e77571b53218c155c862660178db6
a5940247319e6e88e0e3f34c4a8ab4d13a77aea1
bd5cda97e931c1366c091b206b5a2e95eb80d8b6486c83bf213a947b2419bc7f
GET /images/2022/05/01/phpinfo-page-example_small.png HTTP/1.1
Host: mc-educate.eu
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mc-educate.eu/
Cookie: 86cb9d4cd46a27b6071b3184e9d6e5c7=g1jcn450qkkk5j2vasbt73415n
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 03 Feb 2023 01:54:54 GMT
content-type: image/png
content-length: 17211
last-modified: Sun, 01 May 2022 20:00:38 GMT
etag: "626ee6e6-433b"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
mc-educate.eu/images/2022/03/28/nft-word-motherboard-with-neon-lighting_small.jpg
200 OK 32 kB URL HTTP/2 mc-educate.eu/images/2022/03/28/nft-word-motherboard-with-neon-lighting_small.jpg
IP
ASN #24940 Hetzner Online GmbH
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v80), quality = 100", baseline, precision 8, 160x150, components 3\012- data
Hash fbfbad7533f305580bfab191ce01af64
3240c86b70552359071c7621d978e2ea4ef416c2
4117b6650a2e83a003530e5b13e235604203309cf5f204c0f7242a5eed0c0036
GET /images/2022/03/28/nft-word-motherboard-with-neon-lighting_small.jpg HTTP/1.1
Host: mc-educate.eu
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mc-educate.eu/
Cookie: 86cb9d4cd46a27b6071b3184e9d6e5c7=g1jcn450qkkk5j2vasbt73415n
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 03 Feb 2023 01:54:54 GMT
content-type: image/jpeg
content-length: 31898
last-modified: Mon, 28 Mar 2022 11:17:28 GMT
etag: "62419948-7c9a"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
mc-educate.eu/images/2022/03/02/close-up-hands-holding-tablet_small.jpg
200 OK 19 kB URL HTTP/2 mc-educate.eu/images/2022/03/02/close-up-hands-holding-tablet_small.jpg
IP
ASN #24940 Hetzner Online GmbH
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v80), quality = 100", baseline, precision 8, 160x150, components 3\012- data
Hash b81b550a5bdab3ac036f021d6f24988a
40f86582f9d5c784ab0f9a6511175ca64e1253ef
ef5bcc59fc12276ac0eb2a47a4a9058cd4a41826b0f1a711218dafefaf208a90
GET /images/2022/03/02/close-up-hands-holding-tablet_small.jpg HTTP/1.1
Host: mc-educate.eu
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mc-educate.eu/
Cookie: 86cb9d4cd46a27b6071b3184e9d6e5c7=g1jcn450qkkk5j2vasbt73415n
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 03 Feb 2023 01:54:54 GMT
content-type: image/jpeg
content-length: 18774
last-modified: Wed, 02 Mar 2022 21:41:35 GMT
etag: "621fe48f-4956"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
mc-educate.eu/images/2022/01/11/bitcoin-coin-blockchain-transfer-concept-cryptocurrency-data-encryption-mixed-media_small.jpg
200 OK 18 kB URL HTTP/2 mc-educate.eu/images/2022/01/11/bitcoin-coin-blockchain-transfer-concept-cryptocurrency-data-encryption-mixed-media_small.jpg
IP
ASN #24940 Hetzner Online GmbH
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v80), quality = 100", baseline, precision 8, 160x150, components 3\012- data
Hash b190cb5527276ad7981f13c47a6b8fc7
4cf639292032c8f8cdd1bba4062b5fbf99cefa55
6b5140baf25abe62ad53c516df454fe60c5c8bbd9c0a4d94dde18a0487be59b9
GET /images/2022/01/11/bitcoin-coin-blockchain-transfer-concept-cryptocurrency-data-encryption-mixed-media_small.jpg HTTP/1.1
Host: mc-educate.eu
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mc-educate.eu/
Cookie: 86cb9d4cd46a27b6071b3184e9d6e5c7=g1jcn450qkkk5j2vasbt73415n
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 03 Feb 2023 01:54:54 GMT
content-type: image/jpeg
content-length: 18299
last-modified: Tue, 11 Jan 2022 08:38:17 GMT
etag: "61dd41f9-477b"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
mc-educate.eu/images/2022/01/18/cardano-2_small.png
200 OK 29 kB URL HTTP/2 mc-educate.eu/images/2022/01/18/cardano-2_small.png
IP
ASN #24940 Hetzner Online GmbH
File type PNG image data, 160 x 150, 8-bit/color RGBA, non-interlaced\012- data
Hash 1cd80a5648b5afd101f749788eed0a37
693f388e18274e9a20615b7de1fe2d4dee20e765
96c9ec2bb93a7ecea088ac2edd3f17628b7360590daca99e8d9ed280a6a72389
GET /images/2022/01/18/cardano-2_small.png HTTP/1.1
Host: mc-educate.eu
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mc-educate.eu/
Cookie: 86cb9d4cd46a27b6071b3184e9d6e5c7=g1jcn450qkkk5j2vasbt73415n
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 03 Feb 2023 01:54:54 GMT
content-type: image/png
content-length: 29024
last-modified: Tue, 18 Jan 2022 19:32:31 GMT
etag: "61e715cf-7160"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
mc-educate.eu/images/Affiliate/Home/namecheap.png
200 OK 17 kB URL HTTP/2 mc-educate.eu/images/Affiliate/Home/namecheap.png
IP
ASN #24940 Hetzner Online GmbH
File type PNG image data, 728 x 90, 8-bit/color RGB, non-interlaced\012- data
Hash a3286eecda4466dfcf81200d303d1aec
22f052a4dd11c4e8a6cafd51a81a7989d55ae5af
0d71e3bb7214e3d200f64eb30c78f5f1decb39a05639e0b2cabe432d2f9cc519
GET /images/Affiliate/Home/namecheap.png HTTP/1.1
Host: mc-educate.eu
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mc-educate.eu/
Cookie: 86cb9d4cd46a27b6071b3184e9d6e5c7=g1jcn450qkkk5j2vasbt73415n
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 03 Feb 2023 01:54:54 GMT
content-type: image/png
content-length: 16640
last-modified: Fri, 21 Jan 2022 20:53:46 GMT
etag: "61eb1d5a-4100"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
mc-educate.eu/images/2022/01/10/image-binary-code_small.jpg
200 OK 33 kB URL HTTP/2 mc-educate.eu/images/2022/01/10/image-binary-code_small.jpg
IP
ASN #24940 Hetzner Online GmbH
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v80), quality = 100", baseline, precision 8, 160x150, components 3\012- data
Hash bb67160a5841296b54edea6ceca88f4e
7897f157e92b0bbd58ddf61e22e1d7e2d49de756
f3215dacbf8025be087b3231597be981504fdc64c39ca6039b108582644f510e
GET /images/2022/01/10/image-binary-code_small.jpg HTTP/1.1
Host: mc-educate.eu
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mc-educate.eu/
Cookie: 86cb9d4cd46a27b6071b3184e9d6e5c7=g1jcn450qkkk5j2vasbt73415n
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 03 Feb 2023 01:54:54 GMT
content-type: image/jpeg
content-length: 33114
last-modified: Mon, 10 Jan 2022 11:30:26 GMT
etag: "61dc18d2-815a"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
mc-educate.eu/images/2022/01/08/lifestyle-moments-young-woman-home-woman-working-from-home_small.jpg
200 OK 19 kB URL HTTP/2 mc-educate.eu/images/2022/01/08/lifestyle-moments-young-woman-home-woman-working-from-home_small.jpg
IP
ASN #24940 Hetzner Online GmbH
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v80), quality = 100", baseline, precision 8, 160x150, components 3\012- data
Hash 297fbb4d6f66daf4ad42038d879b023e
3d501882cc3645e92e7cc1326f43a19d3934faaf
74ed1c5fa1f4f119f646164671d360c1a6e4aa9e0f076b23edca1e2c747891f5
GET /images/2022/01/08/lifestyle-moments-young-woman-home-woman-working-from-home_small.jpg HTTP/1.1
Host: mc-educate.eu
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mc-educate.eu/
Cookie: 86cb9d4cd46a27b6071b3184e9d6e5c7=g1jcn450qkkk5j2vasbt73415n
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 03 Feb 2023 01:54:54 GMT
content-type: image/jpeg
content-length: 18809
last-modified: Sat, 08 Jan 2022 20:48:36 GMT
etag: "61d9f8a4-4979"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
mc-educate.eu/images/2022/02/07/blogging_small.jpg
200 OK 15 kB URL HTTP/2 mc-educate.eu/images/2022/02/07/blogging_small.jpg
IP
ASN #24940 Hetzner Online GmbH
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v80), quality = 100", baseline, precision 8, 160x150, components 3\012- data
Hash d172e020574ccfeb657f987d253a6fee
15483e45e838bcd1792206e72096622a04bc7548
c7e5b32e775390520219e09f650968b5d92d8f7a6f5613a267f74adff7063282
GET /images/2022/02/07/blogging_small.jpg HTTP/1.1
Host: mc-educate.eu
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mc-educate.eu/
Cookie: 86cb9d4cd46a27b6071b3184e9d6e5c7=g1jcn450qkkk5j2vasbt73415n
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 03 Feb 2023 01:54:54 GMT
content-type: image/jpeg
content-length: 15344
last-modified: Mon, 07 Feb 2022 18:24:52 GMT
etag: "620163f4-3bf0"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
mc-educate.eu/images/2022/01/13/search-find-view-information-data-graphic-symbol-icon_small.jpg
200 OK 22 kB URL HTTP/2 mc-educate.eu/images/2022/01/13/search-find-view-information-data-graphic-symbol-icon_small.jpg
IP
ASN #24940 Hetzner Online GmbH
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v80), quality = 100", baseline, precision 8, 160x150, components 3\012- data
Hash ea55506053c5abcc96c120b179bcab3d
b877723ef2d185cf2195895057f0196bf0d12e4d
b2f84ab0913d0126588c4132ffc691d1b067fc3edfc3861a3be7577ee76a27e3
GET /images/2022/01/13/search-find-view-information-data-graphic-symbol-icon_small.jpg HTTP/1.1
Host: mc-educate.eu
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mc-educate.eu/
Cookie: 86cb9d4cd46a27b6071b3184e9d6e5c7=g1jcn450qkkk5j2vasbt73415n
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 03 Feb 2023 01:54:54 GMT
content-type: image/jpeg
content-length: 22123
last-modified: Thu, 13 Jan 2022 22:59:21 GMT
etag: "61e0aec9-566b"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
mc-educate.eu/images/2022/01/06/google-chrome-extensions1_small.png
200 OK 20 kB URL HTTP/2 mc-educate.eu/images/2022/01/06/google-chrome-extensions1_small.png
IP
ASN #24940 Hetzner Online GmbH
File type PNG image data, 160 x 150, 8-bit/color RGBA, non-interlaced\012- data
Hash e8503d93f054493547ea587e81cde12f
582ead66004cfdda466c7a43ac678e984cc6c5fc
c05cf4f9c4747ab0fa16cf9b6767370ff7f273acc39a0f34c0a2fdeec0cbb7df
GET /images/2022/01/06/google-chrome-extensions1_small.png HTTP/1.1
Host: mc-educate.eu
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mc-educate.eu/
Cookie: 86cb9d4cd46a27b6071b3184e9d6e5c7=g1jcn450qkkk5j2vasbt73415n
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 03 Feb 2023 01:54:54 GMT
content-type: image/png
content-length: 20118
last-modified: Thu, 06 Jan 2022 19:06:56 GMT
etag: "61d73dd0-4e96"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
mc-educate.eu/images/2022/01/29/ebook-google-adsense_small.jpg
200 OK 17 kB URL HTTP/2 mc-educate.eu/images/2022/01/29/ebook-google-adsense_small.jpg
IP
ASN #24940 Hetzner Online GmbH
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v80), quality = 100", baseline, precision 8, 160x150, components 3\012- data
Hash bea0c3998d93cb04f59fd6e3a9916816
320cf8d2317ffa734c16a0650d145f6ebc872c09
134abebdb42f31829a92fd2e498143312f2a947fbb0b4fc01e2706a163e332ae
GET /images/2022/01/29/ebook-google-adsense_small.jpg HTTP/1.1
Host: mc-educate.eu
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mc-educate.eu/
Cookie: 86cb9d4cd46a27b6071b3184e9d6e5c7=g1jcn450qkkk5j2vasbt73415n
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 03 Feb 2023 01:54:54 GMT
content-type: image/jpeg
content-length: 17375
last-modified: Sat, 29 Jan 2022 00:20:22 GMT
etag: "61f48846-43df"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
mc-educate.eu/images/2022/02/07/influencer-posting-social-media_small.jpg
200 OK 24 kB URL HTTP/2 mc-educate.eu/images/2022/02/07/influencer-posting-social-media_small.jpg
IP
ASN #24940 Hetzner Online GmbH
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v80), quality = 100", baseline, precision 8, 160x150, components 3\012- data
Hash 3f0cc7a4f40eb47ffe7d27d3fe3c1f23
886e0c0769425c5d4a652c53e82c4c492a58a9f9
53ad33a273e4b26595ad8a4a605cb1749e32e0d5e473227419b18a2cd1c65ec7
GET /images/2022/02/07/influencer-posting-social-media_small.jpg HTTP/1.1
Host: mc-educate.eu
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mc-educate.eu/
Cookie: 86cb9d4cd46a27b6071b3184e9d6e5c7=g1jcn450qkkk5j2vasbt73415n
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 03 Feb 2023 01:54:54 GMT
content-type: image/jpeg
content-length: 24408
last-modified: Mon, 07 Feb 2022 20:34:44 GMT
etag: "62018264-5f58"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
mc-educate.eu/images/2022/01/08/Grammarly-vs-Ginger_small.png
200 OK 12 kB URL HTTP/2 mc-educate.eu/images/2022/01/08/Grammarly-vs-Ginger_small.png
IP
ASN #24940 Hetzner Online GmbH
File type PNG image data, 160 x 150, 8-bit/color RGBA, non-interlaced\012- data
Hash 14a3a84d5f62dd07e57a0e4258ad0e15
096dc5868a484156d49ab175fa58dd7ad1785927
e9c0e13e7f8fc38574c91889865a0041ba2a809680f78ee5de9f34b4723857b4
GET /images/2022/01/08/Grammarly-vs-Ginger_small.png HTTP/1.1
Host: mc-educate.eu
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mc-educate.eu/
Cookie: 86cb9d4cd46a27b6071b3184e9d6e5c7=g1jcn450qkkk5j2vasbt73415n
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 03 Feb 2023 01:54:54 GMT
content-type: image/png
content-length: 12208
last-modified: Sat, 08 Jan 2022 23:54:14 GMT
etag: "61da2426-2fb0"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
mc-educate.eu/images/2022/01/09/e-mail-marketing_small.jpg
200 OK 16 kB URL HTTP/2 mc-educate.eu/images/2022/01/09/e-mail-marketing_small.jpg
IP
ASN #24940 Hetzner Online GmbH
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v80), quality = 100", baseline, precision 8, 160x150, components 3\012- data
Hash 3905d34e12a133c1e81a4986fa85f6b0
897f813b4038e13009cd7be7f1229bbe58db8fb5
d340bc566aeffec946f9f18fa82bef77de766326e05c0c4e0dba22a426513728
GET /images/2022/01/09/e-mail-marketing_small.jpg HTTP/1.1
Host: mc-educate.eu
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mc-educate.eu/
Cookie: 86cb9d4cd46a27b6071b3184e9d6e5c7=g1jcn450qkkk5j2vasbt73415n
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 03 Feb 2023 01:54:54 GMT
content-type: image/jpeg
content-length: 15609
last-modified: Sun, 09 Jan 2022 01:43:00 GMT
etag: "61da3da4-3cf9"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
mc-educate.eu/images/2022/02/04/GettyImages-1356678583_small.jpg
200 OK 20 kB URL HTTP/2 mc-educate.eu/images/2022/02/04/GettyImages-1356678583_small.jpg
IP
ASN #24940 Hetzner Online GmbH
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v80), quality = 100", baseline, precision 8, 160x150, components 3\012- data
Hash 6f488740eb188b71818693150ab30c75
f84946c0b42b0f3c20d7f960736d13fa4fa03621
467892a79ab0eb3a7e4de9a2bb1d88489d40b708423e7589d0d5f58c59e6292a
GET /images/2022/02/04/GettyImages-1356678583_small.jpg HTTP/1.1
Host: mc-educate.eu
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mc-educate.eu/
Cookie: 86cb9d4cd46a27b6071b3184e9d6e5c7=g1jcn450qkkk5j2vasbt73415n
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 03 Feb 2023 01:54:54 GMT
content-type: image/jpeg
content-length: 20474
last-modified: Fri, 04 Feb 2022 09:25:57 GMT
etag: "61fcf125-4ffa"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
mc-educate.eu/images/2022/09/21/HOW-TO-STRAT-FREELANCING-WITH-RENDERFOREST_medium.png
200 OK 77 kB URL HTTP/2 mc-educate.eu/images/2022/09/21/HOW-TO-STRAT-FREELANCING-WITH-RENDERFOREST_medium.png
IP
ASN #24940 Hetzner Online GmbH
File type PNG image data, 750 x 450, 8-bit/color RGBA, non-interlaced\012- data
Hash 07829add31a2334ccde2d39708203c92
88695da2e7d127a7dd36f11e028c5129c12ae3b0
1db62ccfa2d8b8a6e3d5e0a0935efbedef033a2b3f57ee2a0d156af516cfba48
GET /images/2022/09/21/HOW-TO-STRAT-FREELANCING-WITH-RENDERFOREST_medium.png HTTP/1.1
Host: mc-educate.eu
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mc-educate.eu/
Cookie: 86cb9d4cd46a27b6071b3184e9d6e5c7=g1jcn450qkkk5j2vasbt73415n
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 03 Feb 2023 01:54:54 GMT
content-type: image/png
content-length: 77034
last-modified: Wed, 21 Sep 2022 10:17:17 GMT
etag: "632ae4ad-12cea"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
mc-educate.eu/images/2022/10/31/10-lathi-sto-youtube_medium.png
200 OK 104 kB URL HTTP/2 mc-educate.eu/images/2022/10/31/10-lathi-sto-youtube_medium.png
IP
ASN #24940 Hetzner Online GmbH
File type PNG image data, 750 x 450, 8-bit/color RGBA, non-interlaced\012- data
Size 104 kB (103822 bytes)
Hash 1c552befbf789d975456dec072fb84c0
3a2d868d495f8b1f267e0ee089e9eaf7494c7708
b693c25e452a8c436e70d48ec89879f15aa2a93d0f04432d2208caa332e5cf92
GET /images/2022/10/31/10-lathi-sto-youtube_medium.png HTTP/1.1
Host: mc-educate.eu
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mc-educate.eu/
Cookie: 86cb9d4cd46a27b6071b3184e9d6e5c7=g1jcn450qkkk5j2vasbt73415n
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 03 Feb 2023 01:54:54 GMT
content-type: image/png
content-length: 103822
last-modified: Mon, 31 Oct 2022 10:24:30 GMT
etag: "635fa25e-1958e"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
mc-educate.eu/images/2022/05/01/phpinfo-page-example_medium.png
200 OK 146 kB URL HTTP/2 mc-educate.eu/images/2022/05/01/phpinfo-page-example_medium.png
IP
ASN #24940 Hetzner Online GmbH
File type PNG image data, 750 x 450, 8-bit/color RGBA, non-interlaced\012- data
Size 146 kB (146130 bytes)
Hash 9dfd36bd36f401fd2db280422b1864e0
d8e9d019dec9f61217c32b2b4edc394eb72c8961
bbabca4b6940dde20ef9e38d1127bc0c2e6f12efba38d89f9d0b8cb71d5523ee
GET /images/2022/05/01/phpinfo-page-example_medium.png HTTP/1.1
Host: mc-educate.eu
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mc-educate.eu/
Cookie: 86cb9d4cd46a27b6071b3184e9d6e5c7=g1jcn450qkkk5j2vasbt73415n
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 03 Feb 2023 01:54:54 GMT
content-type: image/png
content-length: 146130
last-modified: Sun, 01 May 2022 20:00:38 GMT
etag: "626ee6e6-23ad2"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
mc-educate.eu/images/2022/01/10/email-marketing_medium.jpg
200 OK 137 kB URL HTTP/2 mc-educate.eu/images/2022/01/10/email-marketing_medium.jpg
IP
ASN #24940 Hetzner Online GmbH
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v80), quality = 100", baseline, precision 8, 750x450, components 3\012- data
Size 137 kB (137002 bytes)
Hash 78262d4d1359edcc83b2aaf5975bdba2
a7a61791936b50d3fd807d5a3efb413e09da6bbd
95ab8413d8a061e3fb1c346110c8031ab1c96642d690d0c76c6876f28529b559
GET /images/2022/01/10/email-marketing_medium.jpg HTTP/1.1
Host: mc-educate.eu
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mc-educate.eu/
Cookie: 86cb9d4cd46a27b6071b3184e9d6e5c7=g1jcn450qkkk5j2vasbt73415n
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 03 Feb 2023 01:54:54 GMT
content-type: image/jpeg
content-length: 137002
last-modified: Mon, 10 Jan 2022 16:01:06 GMT
etag: "61dc5842-2172a"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
mc-educate.eu/images/2022/01/10/png-clipart-linux-_medium.png
200 OK 160 kB URL HTTP/2 mc-educate.eu/images/2022/01/10/png-clipart-linux-_medium.png
IP
ASN #24940 Hetzner Online GmbH
File type PNG image data, 750 x 450, 8-bit/color RGBA, non-interlaced\012- data
Size 160 kB (160231 bytes)
Hash 6a8f4f090027e714e78afae8020f4507
d9f4b79f7d43148ed32fcac7510fbc085b55f479
8efe9b4ce8320449081835240fd8c87647c1098dfdcc5e7edf193bdb1fab99b5
GET /images/2022/01/10/png-clipart-linux-_medium.png HTTP/1.1
Host: mc-educate.eu
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mc-educate.eu/
Cookie: 86cb9d4cd46a27b6071b3184e9d6e5c7=g1jcn450qkkk5j2vasbt73415n
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 03 Feb 2023 01:54:54 GMT
content-type: image/png
content-length: 160231
last-modified: Mon, 10 Jan 2022 00:24:07 GMT
etag: "61db7ca7-271e7"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
mc-educate.eu/images/2023/01/16/on-page-seo_medium.jpg
200 OK 153 kB URL HTTP/2 mc-educate.eu/images/2023/01/16/on-page-seo_medium.jpg
IP
ASN #24940 Hetzner Online GmbH
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v80), quality = 100", baseline, precision 8, 750x450, components 3\012- data
Size 153 kB (153083 bytes)
Hash ccef477f4e706e2cc562f002692bd75e
bb1581b02137a858ce2317168099385b1b63724e
3a9ccfcd01d36a99a7b88b8c1827b74ac8378ab751c4578da9819a8b9761d629
GET /images/2023/01/16/on-page-seo_medium.jpg HTTP/1.1
Host: mc-educate.eu
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mc-educate.eu/
Cookie: 86cb9d4cd46a27b6071b3184e9d6e5c7=g1jcn450qkkk5j2vasbt73415n
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 03 Feb 2023 01:54:54 GMT
content-type: image/jpeg
content-length: 153083
last-modified: Mon, 16 Jan 2023 11:55:30 GMT
etag: "63c53b32-255fb"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
mc-educate.eu/images/2022/01/29/google_medium.jpg
200 OK 138 kB URL HTTP/2 mc-educate.eu/images/2022/01/29/google_medium.jpg
IP
ASN #24940 Hetzner Online GmbH
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v80), quality = 100", baseline, precision 8, 750x450, components 3\012- data
Size 138 kB (138326 bytes)
Hash cfb84a335c0ae7f9408bee92b8e13416
4f71face2cda553ad1b1dd431bcaab9c0360d54e
de334fa792de34def6f44fc49af84e90cecfe74ee749aaba066d38f0c86b96b8
GET /images/2022/01/29/google_medium.jpg HTTP/1.1
Host: mc-educate.eu
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mc-educate.eu/
Cookie: 86cb9d4cd46a27b6071b3184e9d6e5c7=g1jcn450qkkk5j2vasbt73415n
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 03 Feb 2023 01:54:54 GMT
content-type: image/jpeg
content-length: 138326
last-modified: Sat, 29 Jan 2022 22:17:19 GMT
etag: "61f5bcef-21c56"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
mc-educate.eu/images/2022/06/13/magnifying-glass-many-words-black-background-with-text-seo-search-engine-optimization-written-with-golden-letters-internet-marketing-web-analytics-concept-3d-illustration_medium.jpg
200 OK 185 kB URL HTTP/2 mc-educate.eu/images/2022/06/13/magnifying-glass-many-words-black-background-with-text-seo-search-engine-optimization-written-with-golden-letters-internet-marketing-web-analytics-concept-3d-illustration_medium.jpg
IP
ASN #24940 Hetzner Online GmbH
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v80), quality = 100", baseline, precision 8, 750x450, components 3\012- data
Size 185 kB (185251 bytes)
Hash ed2c9d05c30c1fdf9afdf6fb7e9c5b62
ff53d5f3b3953e04f224bea4b58e53b7f3c54f99
e71059297b8da4059c62093b342b56cdcc2572f54886885691cb983eb16daa35
GET /images/2022/06/13/magnifying-glass-many-words-black-background-with-text-seo-search-engine-optimization-written-with-golden-letters-internet-marketing-web-analytics-concept-3d-illustration_medium.jpg HTTP/1.1
Host: mc-educate.eu
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mc-educate.eu/
Cookie: 86cb9d4cd46a27b6071b3184e9d6e5c7=g1jcn450qkkk5j2vasbt73415n
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 03 Feb 2023 01:54:54 GMT
content-type: image/jpeg
content-length: 185251
last-modified: Mon, 13 Jun 2022 07:21:18 GMT
etag: "62a6e56e-2d3a3"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
mc-educate.eu/components/com_sppagebuilder/assets/css/magnific-popup.css
200 OK 11 kB URL HTTP/2 mc-educate.eu/components/com_sppagebuilder/assets/css/magnific-popup.css
IP
ASN #24940 Hetzner Online GmbH
File type ASCII text, with very long lines (5920), with no line terminators
Hash d52092e91d4e203e5ed6a2a0a5cb083e
2e213f2a5873ed304322f386220c71df0196acf3
818c3a40fd3f4c2ec2fb4c4b00a1aefffeb5bb15f9f66e8a027fc1635f04e4df
GET /components/com_sppagebuilder/assets/css/magnific-popup.css HTTP/1.1
Host: mc-educate.eu
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mc-educate.eu/
Cookie: 86cb9d4cd46a27b6071b3184e9d6e5c7=g1jcn450qkkk5j2vasbt73415n
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 03 Feb 2023 01:54:54 GMT
content-type: text/css
last-modified: Fri, 27 Jan 2023 12:28:15 GMT
etag: W/"63d3c35f-1720"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
mc-educate.eu/templates/shaper_gazette/css/font-awesome.min.css
200 OK 37 kB URL HTTP/2 mc-educate.eu/templates/shaper_gazette/css/font-awesome.min.css
IP
ASN #24940 Hetzner Online GmbH
File type ASCII text, with very long lines (59105)
Hash 5e3a0213a1943942e18bd3d851a6ca93
df157216423608ace0dc04b84a3c67dfb13b3889
803f22a15d48ca1cbb9a3aeeecdde7c4456deac82e2bd1882e6c3b730a98c349
GET /templates/shaper_gazette/css/font-awesome.min.css HTTP/1.1
Host: mc-educate.eu
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mc-educate.eu/
Cookie: 86cb9d4cd46a27b6071b3184e9d6e5c7=g1jcn450qkkk5j2vasbt73415n
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 03 Feb 2023 01:54:54 GMT
content-type: text/css
last-modified: Fri, 07 Jan 2022 11:51:13 GMT
etag: W/"61d82931-e79b"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
mc-educate.eu/images/2022/06/25/webinar-brainstorming-web-conference-connection-technology-concept_small.jpg
200 OK 18 kB URL HTTP/2 mc-educate.eu/images/2022/06/25/webinar-brainstorming-web-conference-connection-technology-concept_small.jpg
IP
ASN #24940 Hetzner Online GmbH
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v80), quality = 100", baseline, precision 8, 160x150, components 3\012- data
Hash db6a04c4013746be03377a14f7b36c97
23def631af14277fbb4b69612b6e90ba7833e2c5
0f6e443f0b0d628ded0ef5b2ee85e497c192131cecdef70c77684c655029b3b3
GET /images/2022/06/25/webinar-brainstorming-web-conference-connection-technology-concept_small.jpg HTTP/1.1
Host: mc-educate.eu
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mc-educate.eu/
Cookie: 86cb9d4cd46a27b6071b3184e9d6e5c7=g1jcn450qkkk5j2vasbt73415n
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 03 Feb 2023 01:54:54 GMT
content-type: image/jpeg
content-length: 17670
last-modified: Sat, 25 Jun 2022 09:48:24 GMT
etag: "62b6d9e8-4506"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
mc-educate.eu/templates/shaper_gazette/css/template.css
200 OK 38 kB URL HTTP/2 mc-educate.eu/templates/shaper_gazette/css/template.css
IP
ASN #24940 Hetzner Online GmbH
File type Unicode text, UTF-8 text, with very long lines (65500)
Hash 5f47b7018629d08604f6356cfc741c84
fdc04a4f088ed244693d7bf44a03d19389eda69d
082cd4f43ef19d3c55b139e1b0798cb9c12930092b746d15636e9aa4c0b74aa8
GET /templates/shaper_gazette/css/template.css HTTP/1.1
Host: mc-educate.eu
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mc-educate.eu/
Cookie: 86cb9d4cd46a27b6071b3184e9d6e5c7=g1jcn450qkkk5j2vasbt73415n
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 03 Feb 2023 01:54:54 GMT
content-type: text/css
last-modified: Sat, 11 Jun 2022 09:44:47 GMT
etag: W/"62a4640f-1eb52"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
mc-educate.eu//templates/shaper_gazette/css/owl.carousel.css
200 OK 15 kB URL HTTP/2 mc-educate.eu//templates/shaper_gazette/css/owl.carousel.css
IP
ASN #24940 Hetzner Online GmbH
Hash 390034f66acd20457bc3bfb6a4585c83
52d2bdc7dd232d4868729f73ae206b3fa771b783
f4a515b9f07083f9f23f5409654ed3491f3f46f21670f75e28812728e44dc371
GET //templates/shaper_gazette/css/owl.carousel.css HTTP/1.1
Host: mc-educate.eu
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mc-educate.eu/
Cookie: 86cb9d4cd46a27b6071b3184e9d6e5c7=g1jcn450qkkk5j2vasbt73415n
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 03 Feb 2023 01:54:54 GMT
content-type: text/css
last-modified: Fri, 07 Jan 2022 11:51:13 GMT
etag: W/"61d82931-11f7"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
mc-educate.eu/images/2022/04/27/notebook-with-toolls-notes-about-referrals_small.jpg
200 OK 24 kB URL HTTP/2 mc-educate.eu/images/2022/04/27/notebook-with-toolls-notes-about-referrals_small.jpg
IP
ASN #24940 Hetzner Online GmbH
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v80), quality = 100", baseline, precision 8, 160x150, components 3\012- data
Hash 0b10d5df0028a35616f4d8877ca372d5
d09deb35befaf3cf3a5a920c52a884ac6227c8f6
b9d99d41b1695c96413ec3e8ffa5d56b79c6085d2ed33a5a2d1d2714be5f3e45
GET /images/2022/04/27/notebook-with-toolls-notes-about-referrals_small.jpg HTTP/1.1
Host: mc-educate.eu
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mc-educate.eu/
Cookie: 86cb9d4cd46a27b6071b3184e9d6e5c7=g1jcn450qkkk5j2vasbt73415n
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 03 Feb 2023 01:54:54 GMT
content-type: image/jpeg
content-length: 23710
last-modified: Wed, 27 Apr 2022 10:37:50 GMT
etag: "62691cfe-5c9e"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
mc-educate.eu/images/2022/09/21/CPA_medium.png
200 OK 123 kB URL HTTP/2 mc-educate.eu/images/2022/09/21/CPA_medium.png
IP
ASN #24940 Hetzner Online GmbH
File type PNG image data, 750 x 450, 8-bit/color RGBA, non-interlaced\012- data
Size 123 kB (122936 bytes)
Hash 77a8f10ab5b403fb32b9ee862e51d393
94957520a629355559b881fc370051d85f2c7518
5c1f2726543495d4f8cdf34547b5d12d1c8173f421bc02b59f8d62ecab62d708
GET /images/2022/09/21/CPA_medium.png HTTP/1.1
Host: mc-educate.eu
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mc-educate.eu/
Cookie: 86cb9d4cd46a27b6071b3184e9d6e5c7=g1jcn450qkkk5j2vasbt73415n
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 03 Feb 2023 01:54:54 GMT
content-type: image/png
content-length: 122936
last-modified: Wed, 21 Sep 2022 08:55:01 GMT
etag: "632ad165-1e038"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
mc-educate.eu//templates/shaper_gazette/css/owl.theme.css
200 OK 168 kB URL HTTP/2 mc-educate.eu//templates/shaper_gazette/css/owl.theme.css
IP
ASN #24940 Hetzner Online GmbH
File type ASCII text, with very long lines (1055), with no line terminators
Size 168 kB (167761 bytes)
Hash 53b8aeb225aae517f54353130e2437cc
3c089d0f66faaf863540062dd871696b6406221f
1f92377ba1ad9880bde89a8b60b46ef03403f8e1a5fd2e21b607ec5b2c761d72
GET //templates/shaper_gazette/css/owl.theme.css HTTP/1.1
Host: mc-educate.eu
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mc-educate.eu/
Cookie: 86cb9d4cd46a27b6071b3184e9d6e5c7=g1jcn450qkkk5j2vasbt73415n
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 03 Feb 2023 01:54:54 GMT
content-type: text/css
last-modified: Fri, 07 Jan 2022 11:51:13 GMT
etag: W/"61d82931-41f"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
cdn-images.mailchimp.com/embedcode/classic-10_7_dtp.css
200 OK 1.4 kB URL HTTP/1.1 cdn-images.mailchimp.com/embedcode/classic-10_7_dtp.css
IP
File type ASCII text, with very long lines (430)
Hash c2bfe6fd5dc2eeb3abd1347a84eb8a40
eef830248701f14c6084cee157dfa56604e904a1
c070f5185ead3a29b80bc3f38fd9aa025ed502cc6cc2d7e52d5e23f584f36912
GET /embedcode/classic-10_7_dtp.css HTTP/1.1
Host: cdn-images.mailchimp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mc-educate.eu/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: text/css
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Wed, 16 Feb 2022 22:20:27 GMT
x-amz-version-id: jITmvRROYgYXU3PmrU27aDAgVAclebJo
Server: AmazonS3
Content-Encoding: gzip
Date: Thu, 02 Feb 2023 01:58:38 GMT
ETag: W/"43611a77b307cb98b6badb6db190b19e"
Vary: Accept-Encoding
X-Cache: Hit from cloudfront
Via: 1.1 2d5cbe05385a7f3bbffc8a562b8711f6.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: vSrxtfsmLH2xPJnRVnBGQfEn1jjxHsDsui6X83TrHwXluj8qcj0ngg==
Age: 86346
mc-educate.eu/images/2022/03/28/nft-word-motherboard-with-neon-lighting_medium.jpg
200 OK 338 kB URL HTTP/2 mc-educate.eu/images/2022/03/28/nft-word-motherboard-with-neon-lighting_medium.jpg
IP
ASN #24940 Hetzner Online GmbH
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v80), quality = 100", baseline, precision 8, 750x450, components 3\012- data
Size 338 kB (338140 bytes)
Hash e2876120a93f20a1a05614917eec362e
0633f7dab8fa75294eea5284e2b8d6dabe32de47
f05b8623dd13182819cc332158874a6539a3ba758c05385e758fc4b791fbf6e5
GET /images/2022/03/28/nft-word-motherboard-with-neon-lighting_medium.jpg HTTP/1.1
Host: mc-educate.eu
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mc-educate.eu/
Cookie: 86cb9d4cd46a27b6071b3184e9d6e5c7=g1jcn450qkkk5j2vasbt73415n
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 03 Feb 2023 01:54:54 GMT
content-type: image/jpeg
content-length: 338140
last-modified: Mon, 28 Mar 2022 11:17:28 GMT
etag: "62419948-528dc"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
eep.io/mc-cdn-images/template_images/branding_logo_text_dark_dtp.svg
200 OK 6.1 kB URL HTTP/2 eep.io/mc-cdn-images/template_images/branding_logo_text_dark_dtp.svg
IP
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (4589)
Hash a4677d7bf0cc48b3c4e9c7cd16c7a4ad
6f30b8944b3406b51817c609fce207096cf59663
d0738ce11b9c941e0805ec3fa187a77a711316ff9c46e864d16c73217d5555ed
GET /mc-cdn-images/template_images/branding_logo_text_dark_dtp.svg HTTP/1.1
Host: eep.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mc-educate.eu/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/svg+xml
last-modified: Mon, 27 Sep 2021 16:23:06 GMT
etag: W/"ad233be6361396046acffb2b33431924"
server: AmazonS3
content-encoding: gzip
x-amz-cf-pop: AMS54-C1
x-amz-cf-id: ei9oxOP0Cvm6mFD_l-pdH74km4ID1FINmK_Kn_fVDMuCoQ_0XXC3rw==
content-length: 6078
unused62: 8096267
cache-control: max-age=31536000
expires: Sat, 03 Feb 2024 01:54:55 GMT
date: Fri, 03 Feb 2023 01:54:55 GMT
vary: Accept-Encoding
x-robots-tag: noindex, nofollow
X-Firefox-Spdy: h2
mc-educate.eu/images/2022/01/18/cardano-2_medium.png
200 OK 245 kB URL HTTP/2 mc-educate.eu/images/2022/01/18/cardano-2_medium.png
IP
ASN #24940 Hetzner Online GmbH
File type PNG image data, 750 x 450, 8-bit/color RGBA, non-interlaced\012- data
Size 245 kB (245349 bytes)
Hash 44b7c695f733f57dfb5e77a895f1c6ff
edb9043cda991efbd1cc4984dfc91bc67d629b76
7719765ad1a7c7f9abc7fc05379b7924846f5aceae336dec2272b8226d31339f
GET /images/2022/01/18/cardano-2_medium.png HTTP/1.1
Host: mc-educate.eu
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mc-educate.eu/
Cookie: 86cb9d4cd46a27b6071b3184e9d6e5c7=g1jcn450qkkk5j2vasbt73415n
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 03 Feb 2023 01:54:54 GMT
content-type: image/png
content-length: 245349
last-modified: Tue, 18 Jan 2022 19:32:31 GMT
etag: "61e715cf-3be65"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
mc-educate.eu/images/2022/10/31/domain%C3%9Fauthority-min_medium.jpg
200 OK 193 kB URL HTTP/2 mc-educate.eu/images/2022/10/31/domain%C3%9Fauthority-min_medium.jpg
IP
ASN #24940 Hetzner Online GmbH
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v80), quality = 100", baseline, precision 8, 750x450, components 3\012- data
Size 193 kB (193302 bytes)
Hash 8d01a3394bcb9d70f0c7321972e6ce21
25e1edd5afbc769c74aa2daa4110d769d6055bcf
5a5fdb171962817be70cda203af3a86a593e73531fe8fd3d5f3b4ad5d0cdc390
GET /images/2022/10/31/domain%C3%9Fauthority-min_medium.jpg HTTP/1.1
Host: mc-educate.eu
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mc-educate.eu/
Cookie: 86cb9d4cd46a27b6071b3184e9d6e5c7=g1jcn450qkkk5j2vasbt73415n
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 03 Feb 2023 01:54:54 GMT
content-type: image/jpeg
content-length: 193302
last-modified: Mon, 31 Oct 2022 10:22:31 GMT
etag: "635fa1e7-2f316"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
mc-educate.eu/components/com_sppagebuilder/assets/css/font-awesome-v4-shims.css?73ee45a029f5bc0e36fdf5699a0b5203
200 OK 265 kB URL HTTP/2 mc-educate.eu/components/com_sppagebuilder/assets/css/font-awesome-v4-shims.css?73ee45a029f5bc0e36fdf5699a0b5203
IP
ASN #24940 Hetzner Online GmbH
File type ASCII text, with very long lines (26519)
Size 265 kB (264793 bytes)
Hash 030110cb9257486fe0a9780e0d7e92c1
bc661e17458ab04a3a10ed139ce9121e2fb879c4
a4a9f1606ba8b5515ab2be9d264b56417bfee36ce9040e5359375477e52d8a2f
Analyzer Verdict Alert fortinet Phishing
GET /components/com_sppagebuilder/assets/css/font-awesome-v4-shims.css?73ee45a029f5bc0e36fdf5699a0b5203 HTTP/1.1
Host: mc-educate.eu
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mc-educate.eu/
Cookie: 86cb9d4cd46a27b6071b3184e9d6e5c7=g1jcn450qkkk5j2vasbt73415n
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 03 Feb 2023 01:54:54 GMT
content-type: text/css
last-modified: Fri, 27 Jan 2023 12:28:15 GMT
etag: W/"63d3c35f-684d"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
mc-educate.eu/images/2022/01/11/save-iptables-permanently_medium.jpg
200 OK 210 kB URL HTTP/2 mc-educate.eu/images/2022/01/11/save-iptables-permanently_medium.jpg
IP
ASN #24940 Hetzner Online GmbH
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v80), quality = 100", baseline, precision 8, 750x450, components 3\012- data
Size 210 kB (209498 bytes)
Hash aa5d67f7bcebc4f5e4b9aa7f3d92b457
3868ef831c89a01cd9a0744beaa2127870304349
dde8ff7a769101dec4a997344d40f7e7c321e1e594e8c1c47926164c4d3f0bde
GET /images/2022/01/11/save-iptables-permanently_medium.jpg HTTP/1.1
Host: mc-educate.eu
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mc-educate.eu/
Cookie: 86cb9d4cd46a27b6071b3184e9d6e5c7=g1jcn450qkkk5j2vasbt73415n
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 03 Feb 2023 01:54:54 GMT
content-type: image/jpeg
content-length: 209498
last-modified: Tue, 11 Jan 2022 19:23:28 GMT
etag: "61ddd930-3325a"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
mc-educate.eu/images/2022/12/12/SEO-Checklist_medium.jpg
200 OK 240 kB URL HTTP/2 mc-educate.eu/images/2022/12/12/SEO-Checklist_medium.jpg
IP
ASN #24940 Hetzner Online GmbH
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v80), quality = 100", baseline, precision 8, 750x450, components 3\012- data
Size 240 kB (240004 bytes)
Hash d84d4185610ee3e2a4143f6dcb2334b6
e1591283e4e847c4af824a2617a5d34a0444c79f
34128e1c39fddf8b620b754a26d4016487b5fc09224efccb299aa69ee8147953
GET /images/2022/12/12/SEO-Checklist_medium.jpg HTTP/1.1
Host: mc-educate.eu
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mc-educate.eu/
Cookie: 86cb9d4cd46a27b6071b3184e9d6e5c7=g1jcn450qkkk5j2vasbt73415n
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 03 Feb 2023 01:54:54 GMT
content-type: image/jpeg
content-length: 240004
last-modified: Mon, 12 Dec 2022 14:14:37 GMT
etag: "6397374d-3a984"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
mc-educate.eu/images/2022/01/21/503Z_21_small.jpg
200 OK 23 kB URL HTTP/2 mc-educate.eu/images/2022/01/21/503Z_21_small.jpg
IP
ASN #24940 Hetzner Online GmbH
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v80), quality = 100", baseline, precision 8, 160x150, components 3\012- data
Hash cc3d64857a31cdb0b703ab61d11b8563
c2fcc7b3cb9b127c241d96e93972ee512fca06e9
8aaf610bc489af60113b7e5ea0e63f21c0123353d75486d82654b930ebef738d
GET /images/2022/01/21/503Z_21_small.jpg HTTP/1.1
Host: mc-educate.eu
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mc-educate.eu/
Cookie: 86cb9d4cd46a27b6071b3184e9d6e5c7=g1jcn450qkkk5j2vasbt73415n
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 03 Feb 2023 01:54:54 GMT
content-type: image/jpeg
content-length: 23008
last-modified: Fri, 21 Jan 2022 22:19:47 GMT
etag: "61eb3183-59e0"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
mc-educate.eu/images/2022/02/05/happy-business-woman-money-rain-made-dollars-isolated-black-wall_small.jpg
200 OK 21 kB URL HTTP/2 mc-educate.eu/images/2022/02/05/happy-business-woman-money-rain-made-dollars-isolated-black-wall_small.jpg
IP
ASN #24940 Hetzner Online GmbH
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v80), quality = 100", baseline, precision 8, 160x150, components 3\012- data
Hash 04fa164a94ae8ea6f69f71bdbf016b5c
3f74249adb6bd7ad930c2c0d997cbc686bdbc54f
015a5d7e5dc558123ca10fb24024159b4543681922b316c8947c9e1c23a87bb2
GET /images/2022/02/05/happy-business-woman-money-rain-made-dollars-isolated-black-wall_small.jpg HTTP/1.1
Host: mc-educate.eu
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mc-educate.eu/
Cookie: 86cb9d4cd46a27b6071b3184e9d6e5c7=g1jcn450qkkk5j2vasbt73415n
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 03 Feb 2023 01:54:54 GMT
content-type: image/jpeg
content-length: 21178
last-modified: Sat, 05 Feb 2022 04:38:30 GMT
etag: "61fdff46-52ba"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
mc-educate.eu/images/2022/01/20/affiate-Marketing_small.jpg
200 OK 24 kB URL HTTP/2 mc-educate.eu/images/2022/01/20/affiate-Marketing_small.jpg
IP
ASN #24940 Hetzner Online GmbH
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v80), quality = 100", baseline, precision 8, 160x150, components 3\012- data
Hash 4489775886610ba79007c044ba4a785d
bce99f7b9b688b841dd2cc9aa16e0421ffa88c87
6e3703899178323f59b356f66f3ab8fa37d02db4d763df0d2a0e3f32ba21ede0
GET /images/2022/01/20/affiate-Marketing_small.jpg HTTP/1.1
Host: mc-educate.eu
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mc-educate.eu/
Cookie: 86cb9d4cd46a27b6071b3184e9d6e5c7=g1jcn450qkkk5j2vasbt73415n
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 03 Feb 2023 01:54:54 GMT
content-type: image/jpeg
content-length: 24149
last-modified: Thu, 20 Jan 2022 22:46:18 GMT
etag: "61e9e63a-5e55"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
mc-educate.eu/plugins/system/jce/css/content.css?badb4208be409b1335b815dde676300e
200 OK 20 kB URL HTTP/2 mc-educate.eu/plugins/system/jce/css/content.css?badb4208be409b1335b815dde676300e
IP
ASN #24940 Hetzner Online GmbH
File type ASCII text, with very long lines (8234), with no line terminators
Hash 4dbd380f4f5dc31cf5b8a33772afd93d
752363b85e462385fa35a42a43d48483296bb66c
201d2deef305614ccdcca385add4b4ca1217dddf779710ebf414f84c2ddf9f71
Analyzer Verdict Alert fortinet Phishing
GET /plugins/system/jce/css/content.css?badb4208be409b1335b815dde676300e HTTP/1.1
Host: mc-educate.eu
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mc-educate.eu/
Cookie: 86cb9d4cd46a27b6071b3184e9d6e5c7=g1jcn450qkkk5j2vasbt73415n
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 03 Feb 2023 01:54:54 GMT
content-type: text/css
last-modified: Fri, 27 Jan 2023 12:28:10 GMT
etag: W/"63d3c35a-202a"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
mc-educate.eu/images/mc-educate-logo-s.png
200 OK 5.3 kB URL HTTP/2 mc-educate.eu/images/mc-educate-logo-s.png
IP
ASN #24940 Hetzner Online GmbH
File type PNG image data, 160 x 25, 8-bit/color RGBA, non-interlaced\012- data
Hash 3eeb1bc6e3beb8d6e48c92ef9131bf8d
9660e0db377f73d85a68dc8c00d1beecab7b1143
dca9e1f8c236581cf6033222eda07fd0ba44382bc4a42bb89aa3b3342454becd
GET /images/mc-educate-logo-s.png HTTP/1.1
Host: mc-educate.eu
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mc-educate.eu/
Cookie: 86cb9d4cd46a27b6071b3184e9d6e5c7=g1jcn450qkkk5j2vasbt73415n
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 03 Feb 2023 01:54:54 GMT
content-type: image/png
content-length: 5271
last-modified: Thu, 06 Jan 2022 18:24:37 GMT
etag: "61d733e5-1497"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
mc-educate.eu//templates/shaper_gazette/js/jquery.nanoscroller.min.js
200 OK 3.7 kB URL HTTP/2 mc-educate.eu//templates/shaper_gazette/js/jquery.nanoscroller.min.js
IP
ASN #24940 Hetzner Online GmbH
File type ASCII text, with very long lines (10265)
Hash cd29b60aa01b44f9489137589486f804
c408b4c4fe54ec75df40a01709c2240bdf71f045
41da5bd4bb3e9291dd3c1d4749577cde5dc7789f9ef978b5325234ada9488bce
Analyzer Verdict Alert fortinet Phishing
GET //templates/shaper_gazette/js/jquery.nanoscroller.min.js HTTP/1.1
Host: mc-educate.eu
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mc-educate.eu/
Cookie: 86cb9d4cd46a27b6071b3184e9d6e5c7=g1jcn450qkkk5j2vasbt73415n
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 03 Feb 2023 01:54:54 GMT
content-type: application/javascript
last-modified: Fri, 07 Jan 2022 11:51:13 GMT
etag: W/"61d82931-2897"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
mc-educate.eu/images/2022/03/02/close-up-hands-holding-tablet_medium.jpg
200 OK 210 kB URL HTTP/2 mc-educate.eu/images/2022/03/02/close-up-hands-holding-tablet_medium.jpg
IP
ASN #24940 Hetzner Online GmbH
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v80), quality = 100", baseline, precision 8, 750x450, components 3\012- data
Size 210 kB (209685 bytes)
Hash deae3e9c2fe5c831acf4120c328c5084
60cac641fcf8cd14c6305c494f47a950a9bec058
ec73317c594367c677abe89d398ab62ca955803623ad58236b46b353dde304de
GET /images/2022/03/02/close-up-hands-holding-tablet_medium.jpg HTTP/1.1
Host: mc-educate.eu
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mc-educate.eu/
Cookie: 86cb9d4cd46a27b6071b3184e9d6e5c7=g1jcn450qkkk5j2vasbt73415n
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 03 Feb 2023 01:54:54 GMT
content-type: image/jpeg
content-length: 209685
last-modified: Wed, 02 Mar 2022 21:41:35 GMT
etag: "621fe48f-33315"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash 9c45ea25709afbea416f215ee34611b0
117c52c0ee3ff15a2485c0b1e39cc12c7c2021ed
7fbc3c806c7fc6d70d70b55723dbbfc00698b14fcad55014218bc5e03e92a118
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 03 Feb 2023 01:54:55 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
mc-educate.eu/images/Affiliate/ipapaki.gr2.png
200 OK 89 kB URL HTTP/2 mc-educate.eu/images/Affiliate/ipapaki.gr2.png
IP
ASN #24940 Hetzner Online GmbH
File type PNG image data, 500 x 500, 8-bit/color RGBA, non-interlaced\012- data
Hash 271c4a25019e5381c0b96e39327ad917
ea998a3b44d46f95ef60f19a19b5b90f81f70e27
b2d4fc7d2f7ece169a6f5770eeff2adad496bd7f5a5fa794efc92b1d088ae9b9
GET /images/Affiliate/ipapaki.gr2.png HTTP/1.1
Host: mc-educate.eu
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mc-educate.eu/
Cookie: 86cb9d4cd46a27b6071b3184e9d6e5c7=g1jcn450qkkk5j2vasbt73415n
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 03 Feb 2023 01:54:54 GMT
content-type: image/png
content-length: 88911
last-modified: Fri, 21 Jan 2022 21:28:02 GMT
etag: "61eb2562-15b4f"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash d719402de0cd695e55dab2767247da49
f12f4795987a284820f6785ec16b5032b9861d79
98a14bd950cec10aeb3d76fa956fe13514f52c742adbded7a0fcef218c7195ba
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "98A14BD950CEC10AEB3D76FA956FE13514F52C742ADBDED7A0FCEF218C7195BA"
Last-Modified: Wed, 01 Feb 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3502
Expires: Fri, 03 Feb 2023 02:53:17 GMT
Date: Fri, 03 Feb 2023 01:54:55 GMT
Connection: keep-alive
mc-educate.eu/images/2018/10/01/contabo-VPS.png
200 OK 130 kB URL HTTP/2 mc-educate.eu/images/2018/10/01/contabo-VPS.png
IP
ASN #24940 Hetzner Online GmbH
File type PNG image data, 225 x 320, 8-bit/color RGBA, non-interlaced\012- data
Size 130 kB (129893 bytes)
Hash 76646a0e17ba04341939c71525a6ec69
e3ef71e15729a56b5bd800c9b471346b5a696075
a050b68294ed514e2a5e714ba5d5ed67ceb9df2f1e993d6e307e3520648820b7
GET /images/2018/10/01/contabo-VPS.png HTTP/1.1
Host: mc-educate.eu
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mc-educate.eu/
Cookie: 86cb9d4cd46a27b6071b3184e9d6e5c7=g1jcn450qkkk5j2vasbt73415n
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 03 Feb 2023 01:54:54 GMT
content-type: image/png
content-length: 129893
last-modified: Thu, 20 Jan 2022 09:32:57 GMT
etag: "61e92c49-1fb65"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash d719402de0cd695e55dab2767247da49
f12f4795987a284820f6785ec16b5032b9861d79
98a14bd950cec10aeb3d76fa956fe13514f52c742adbded7a0fcef218c7195ba
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "98A14BD950CEC10AEB3D76FA956FE13514F52C742ADBDED7A0FCEF218C7195BA"
Last-Modified: Wed, 01 Feb 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3502
Expires: Fri, 03 Feb 2023 02:53:17 GMT
Date: Fri, 03 Feb 2023 01:54:55 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash d719402de0cd695e55dab2767247da49
f12f4795987a284820f6785ec16b5032b9861d79
98a14bd950cec10aeb3d76fa956fe13514f52c742adbded7a0fcef218c7195ba
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "98A14BD950CEC10AEB3D76FA956FE13514F52C742ADBDED7A0FCEF218C7195BA"
Last-Modified: Wed, 01 Feb 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3502
Expires: Fri, 03 Feb 2023 02:53:17 GMT
Date: Fri, 03 Feb 2023 01:54:55 GMT
Connection: keep-alive
mc-educate.eu/images/Affiliate/Bluehost.png
200 OK 629 kB URL HTTP/2 mc-educate.eu/images/Affiliate/Bluehost.png
IP
ASN #24940 Hetzner Online GmbH
File type PNG image data, 1200 x 1200, 8-bit/color RGB, non-interlaced\012- data
Size 629 kB (628761 bytes)
Hash 0c3ce08e771cd27827badce397a5f0c2
3a8b2e0570715958fc315a49af86209ce1e6974e
16bb6e0cf9b48475aeb3aa7bdbab8d8bce9ec4cb4c74bad64973ac45b9512c49
GET /images/Affiliate/Bluehost.png HTTP/1.1
Host: mc-educate.eu
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mc-educate.eu/
Cookie: 86cb9d4cd46a27b6071b3184e9d6e5c7=g1jcn450qkkk5j2vasbt73415n
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 03 Feb 2023 01:54:54 GMT
content-type: image/png
content-length: 628761
last-modified: Fri, 21 Jan 2022 20:35:39 GMT
etag: "61eb191b-99819"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F32d005c4-44bd-4c69-b179-e966a5e62bc4.jpeg
200 OK 7.7 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F32d005c4-44bd-4c69-b179-e966a5e62bc4.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 08efac01fbe2d2949d81cfa427e8f360
e354cd76c38a72a10eddad9298b43415f8f04ed1
a5edf287aefdfb2f4c33d19b322b2574553fc9f5646f147359a3dcf8c1d75cb1
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F32d005c4-44bd-4c69-b179-e966a5e62bc4.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7700
x-amzn-requestid: 11dd2ef1-f809-4a95-aeef-361cfa745eea
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fYyFIHUVIAMFgbA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d363ba-7841e2a6249f0e5d7aa91c8d;Sampled=0
x-amzn-remapped-date: Fri, 27 Jan 2023 05:40:10 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: gYmuJEgMngPXgeLlAQfRoP-EtCgH--hkvSt6OPTUlYXxetmf5zAtVg==
via: 1.1 d1151317ba32afe0e6370fd69fed222e.cloudfront.net (CloudFront), 1.1 aef00f14752da9aa504d392fd46eff94.cloudfront.net (CloudFront), 1.1 google
date: Thu, 02 Feb 2023 21:48:01 GMT
age: 14814
etag: "e354cd76c38a72a10eddad9298b43415f8f04ed1"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
mc-educate.eu/images/2022/01/09/step1_medium.png
200 OK 275 kB URL HTTP/2 mc-educate.eu/images/2022/01/09/step1_medium.png
IP
ASN #24940 Hetzner Online GmbH
File type PNG image data, 750 x 450, 8-bit/color RGBA, non-interlaced\012- data
Size 275 kB (274554 bytes)
Hash d5ec71c29ec1121b955e28b8afc24012
156e9fa0b13805d1f739066e187f21a4f6043ba3
0a8c7c7dfd3ec079c87ba859f8321c0dc79ce0a3c16e54a407c6e7125a173fa6
GET /images/2022/01/09/step1_medium.png HTTP/1.1
Host: mc-educate.eu
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mc-educate.eu/
Cookie: 86cb9d4cd46a27b6071b3184e9d6e5c7=g1jcn450qkkk5j2vasbt73415n
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 03 Feb 2023 01:54:54 GMT
content-type: image/png
content-length: 274554
last-modified: Sun, 09 Jan 2022 22:59:14 GMT
etag: "61db68c2-4307a"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
analytics.mc-educate.eu/js/script.js
200 OK 464 B URL HTTP/2 analytics.mc-educate.eu/js/script.js
IP
ASN #24940 Hetzner Online GmbH
File type ASCII text, with very long lines (727), with CRLF line terminators
Hash 24819009f11e33ae930b59652c411d1d
8469f0336d509ec2974efc55d97fb98760ff58b0
7ccf2719d0e114872368f5cb094e297a364ef1c6bff646ee925390a07dd1d82b
Analyzer Verdict Alert fortinet Phishing
GET /js/script.js HTTP/1.1
Host: analytics.mc-educate.eu
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mc-educate.eu/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
HTTP/2 200 OK
server: nginx
date: Fri, 03 Feb 2023 01:54:55 GMT
content-type: application/javascript
content-length: 464
last-modified: Wed, 04 Jan 2023 12:44:54 GMT
etag: "2d9-5f16f8d123d80-gzip"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
strict-transport-security: max-age=15768000; includeSubDomains
x-powered-by: PleskLin
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8458d532-a4e7-4e54-9165-f01ff92729f5.jpeg
200 OK 5.3 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8458d532-a4e7-4e54-9165-f01ff92729f5.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash fe87e986c62630127a7fdd979c802947
28ce91c8643c4bc4dcc4cd26dfc69dc6219ce5bf
770a765c927c0f81d0c41acd45a7a24f5799f9497fcc73489cab4fafbf994bdb
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8458d532-a4e7-4e54-9165-f01ff92729f5.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5256
x-amzn-requestid: b0455eb8-b10c-4328-8abe-65c5184f6654
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: frx7uFcooAMFpxQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63dafd17-553139816e1fb7b65e683dc6;Sampled=0
x-amzn-remapped-date: Thu, 02 Feb 2023 00:00:23 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: pwRBB72InX8OP4KXpQKTs9T4iMY0E3hPX8Nko9gd7m1BOm8_DqbRaA==
via: 1.1 8dbfaf7df256a75768461d934659b6b2.cloudfront.net (CloudFront), 1.1 570075675953459325e00b7bcd171df2.cloudfront.net (CloudFront), 1.1 google
date: Fri, 03 Feb 2023 00:37:24 GMT
age: 4651
etag: "28ce91c8643c4bc4dcc4cd26dfc69dc6219ce5bf"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
mc-educate.eu/images/2022/11/05/Bitcoin%20se%20apla%20ellinika2_medium.png
200 OK 319 kB URL HTTP/2 mc-educate.eu/images/2022/11/05/Bitcoin%20se%20apla%20ellinika2_medium.png
IP
ASN #24940 Hetzner Online GmbH
File type PNG image data, 750 x 450, 8-bit/color RGBA, non-interlaced\012- data
Size 319 kB (318687 bytes)
Hash ba75fdd8474a92b7dd4ee8104d4bdcf1
d72e9a85a6e98e9ce3eb0977449eab547cb09ede
47bfbc18291d635bc2877568b85611e90e29bfd817bb591e0a4042b12a40cc52
GET /images/2022/11/05/Bitcoin%20se%20apla%20ellinika2_medium.png HTTP/1.1
Host: mc-educate.eu
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mc-educate.eu/
Cookie: 86cb9d4cd46a27b6071b3184e9d6e5c7=g1jcn450qkkk5j2vasbt73415n
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 03 Feb 2023 01:54:54 GMT
content-type: image/png
content-length: 318687
last-modified: Sat, 05 Nov 2022 15:21:36 GMT
etag: "63667f80-4dcdf"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
mc-educate.eu/images/2022/01/21/503Z_21_medium.jpg
200 OK 140 kB URL HTTP/2 mc-educate.eu/images/2022/01/21/503Z_21_medium.jpg
IP
ASN #24940 Hetzner Online GmbH
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v80), quality = 100", baseline, precision 8, 750x450, components 3\012- data
Size 140 kB (140229 bytes)
Hash ba743a4ceaea829cefc33bcb7387c55c
a7f902e75490b014e175550905c9e06789b47a64
bb1ee49d04915f536f48420f3ee6794e9c3cc6b86b2625771893b762b25bbd1f
GET /images/2022/01/21/503Z_21_medium.jpg HTTP/1.1
Host: mc-educate.eu
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mc-educate.eu/
Cookie: 86cb9d4cd46a27b6071b3184e9d6e5c7=g1jcn450qkkk5j2vasbt73415n
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 03 Feb 2023 01:54:54 GMT
content-type: image/jpeg
content-length: 140229
last-modified: Fri, 21 Jan 2022 22:19:47 GMT
etag: "61eb3183-223c5"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F15f2ebc9-82b4-4f1b-b0b8-978571cb123b.jpeg
200 OK 9.1 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F15f2ebc9-82b4-4f1b-b0b8-978571cb123b.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 02123eef9faa8560ff66b058d4e13a28
decf26282993d7f0b14cf4112d14fa39c97fa89f
28889ff20f1b2fe0b73f8f97e6569f1d68d77fe436eeb47cc06ee4f0822ff239
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F15f2ebc9-82b4-4f1b-b0b8-978571cb123b.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9130
x-amzn-requestid: 09ad3fbb-1e71-4455-82df-6e59f65239a1
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fuxiYEkqIAMFVZg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63dc2fa8-1dca116e4317f9bd14f6d45a;Sampled=0
x-amzn-remapped-date: Thu, 02 Feb 2023 21:48:24 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: _Bc2svrG-wX63DK9RPUyjh-n6AHVHaQe3QRmEL27L-amwCH2I_f_9g==
via: 1.1 1b0911478686968732f973d6e5e31d10.cloudfront.net (CloudFront), 1.1 e4d3d5aafc7d7d582423c073065ab562.cloudfront.net (CloudFront), 1.1 google
date: Thu, 02 Feb 2023 21:57:38 GMT
age: 14237
etag: "decf26282993d7f0b14cf4112d14fa39c97fa89f"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
mc-educate.eu/images/2022/04/27/notebook-with-toolls-notes-about-referrals_medium.jpg
200 OK 254 kB URL HTTP/2 mc-educate.eu/images/2022/04/27/notebook-with-toolls-notes-about-referrals_medium.jpg
IP
ASN #24940 Hetzner Online GmbH
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v80), quality = 100", baseline, precision 8, 750x450, components 3\012- data
Size 254 kB (254060 bytes)
Hash a74be1675bb83e743af9f4b5bd4a2923
d1378e9412e5fae881dfa0cb99034922ec1aa8a5
b2f21d7d0d3a1d6ea6d60c991ff556b510cffe5bf4daf55d99be6f7aa54f9fd0
GET /images/2022/04/27/notebook-with-toolls-notes-about-referrals_medium.jpg HTTP/1.1
Host: mc-educate.eu
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mc-educate.eu/
Cookie: 86cb9d4cd46a27b6071b3184e9d6e5c7=g1jcn450qkkk5j2vasbt73415n
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 03 Feb 2023 01:54:54 GMT
content-type: image/jpeg
content-length: 254060
last-modified: Wed, 27 Apr 2022 10:37:51 GMT
etag: "62691cff-3e06c"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
mc-educate.eu/components/com_sppagebuilder/assets/css/animate.min.css?73ee45a029f5bc0e36fdf5699a0b5203
200 OK 4.6 kB URL HTTP/2 mc-educate.eu/components/com_sppagebuilder/assets/css/animate.min.css?73ee45a029f5bc0e36fdf5699a0b5203
IP
ASN #24940 Hetzner Online GmbH
File type ASCII text, with very long lines (65352)
Hash e00e3ca4af6d572204b9edb4eb68aec9
549a37f3a965aef85a5c9276b85a72628bf59fd0
a160541dece6fa6ce1c45e22696d54d63d3f314c32bf5acfad01dd9a66dd638c
Analyzer Verdict Alert fortinet Phishing
GET /components/com_sppagebuilder/assets/css/animate.min.css?73ee45a029f5bc0e36fdf5699a0b5203 HTTP/1.1
Host: mc-educate.eu
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mc-educate.eu/
Cookie: 86cb9d4cd46a27b6071b3184e9d6e5c7=g1jcn450qkkk5j2vasbt73415n
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 03 Feb 2023 01:54:54 GMT
content-type: text/css
last-modified: Fri, 27 Jan 2023 12:28:15 GMT
etag: W/"63d3c35f-114ec"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
analytics.h-supertools.com/js/script.js
200 OK 729 B URL HTTP/1.1 analytics.h-supertools.com/js/script.js
IP
File type ASCII text, with very long lines (727), with CRLF line terminators
Hash 0cdf2a87ba7f21478de97816956638da
615eed919ed2841083c40e25885b572af47e5f3a
c86ac6a00f889f8e40dd0f18c4ed35cae50140a8e88dd2d0491df0b82af65fc5
GET /js/script.js HTTP/1.1
Host: analytics.h-supertools.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mc-educate.eu/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Fri, 03 Feb 2023 01:54:55 GMT
Server: Apache
Last-Modified: Fri, 30 Sep 2022 02:53:58 GMT
Accept-Ranges: bytes
Content-Length: 729
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: application/javascript
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc5300360-6063-4d18-8dd2-28dbcf47d371.jpeg
200 OK 14 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc5300360-6063-4d18-8dd2-28dbcf47d371.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 9ab97f766ee1ed6ebbb2b3889a9157b4
f87f165404dec4d65531e6e25146cb77601f3616
f3d0f76f956371b1733a526f10a8253fc3396a459d7af59380d8e8db7dee8ec2
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc5300360-6063-4d18-8dd2-28dbcf47d371.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 14071
x-amzn-requestid: 40cb363f-2c4d-4361-9fe1-10e4c8b2fe29
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fiTo4Ek2oAMFs6g=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d73305-6cb63d3c49f9f84e639467f6;Sampled=0
x-amzn-remapped-date: Mon, 30 Jan 2023 03:01:25 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: b7r7phj8i49RMSuWufxF1L34K9udWa0mJ4dY12izM9ofwAuCFBGEZQ==
via: 1.1 4d7fa73f804f1c93f20cfc24c4b1266e.cloudfront.net (CloudFront), 1.1 1b74ccf4cb51eacf97a0e6d60ae46a3e.cloudfront.net (CloudFront), 1.1 google
date: Thu, 02 Feb 2023 21:48:01 GMT
age: 14814
etag: "f87f165404dec4d65531e6e25146cb77601f3616"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
mc-educate.eu/images/2022/02/28/refer_a_friend_10_medium.jpg
200 OK 119 kB URL HTTP/2 mc-educate.eu/images/2022/02/28/refer_a_friend_10_medium.jpg
IP
ASN #24940 Hetzner Online GmbH
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v80), quality = 100", baseline, precision 8, 750x450, components 3\012- data
Size 119 kB (119150 bytes)
Hash 8ebc0ccba4b09088207c00aabb47e47f
14a3f88725a46d03f1137e5128d19a2472edf3c2
53b515dc1bbdf1ff3a9db886ac0fae8380f453aa676b36d7c85b066a810d021c
GET /images/2022/02/28/refer_a_friend_10_medium.jpg HTTP/1.1
Host: mc-educate.eu
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mc-educate.eu/
Cookie: 86cb9d4cd46a27b6071b3184e9d6e5c7=g1jcn450qkkk5j2vasbt73415n
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 03 Feb 2023 01:54:54 GMT
content-type: image/jpeg
content-length: 119150
last-modified: Mon, 28 Feb 2022 20:21:44 GMT
etag: "621d2ed8-1d16e"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Feed96488-989b-49ab-8eef-5c9dea89a5ca.jpeg
200 OK 5.9 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Feed96488-989b-49ab-8eef-5c9dea89a5ca.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 5314f1087266189144982b464f4aa7a6
438b5a17b9060f6825331348aa3797ab1c15895d
fb7d5ec834d28c99f6430703c002c24a9caf50b7701a369cbd69e51576f1e73c
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Feed96488-989b-49ab-8eef-5c9dea89a5ca.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5898
x-amzn-requestid: 50d6181d-6804-48ab-bc38-9fcaf4da1bc5
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fZALWF5IIAMFv5g=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d37a48-2e2e53124ce2f9eb31290ec4;Sampled=0
x-amzn-remapped-date: Fri, 27 Jan 2023 07:16:24 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: 9Jus6UYlOGiDdqLBxJ387FMtEAST6THfW-oz6gjgFzKzchCdwUCcvQ==
via: 1.1 98e601970ea59f4d5f56a752787ff9fc.cloudfront.net (CloudFront), 1.1 a847181d425b7fc57e81eb3c800bfdf2.cloudfront.net (CloudFront), 1.1 google
date: Thu, 02 Feb 2023 04:00:11 GMT
etag: "438b5a17b9060f6825331348aa3797ab1c15895d"
content-type: image/jpeg
age: 78884
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
mc-educate.eu/images/2022/02/05/happy-business-woman-money-rain-made-dollars-isolated-black-wall_medium.jpg
200 OK 208 kB URL HTTP/2 mc-educate.eu/images/2022/02/05/happy-business-woman-money-rain-made-dollars-isolated-black-wall_medium.jpg
IP
ASN #24940 Hetzner Online GmbH
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v80), quality = 100", baseline, precision 8, 750x450, components 3\012- data
Size 208 kB (207835 bytes)
Hash 5d16bbad28e2805e75bf2c67c3d7701e
c42d285c9f03813a17b1161472c5cb86bdd38dc6
9db352cd1f1f70680988814e8c3891639695938d93a6bb08208d6a71e7706058
GET /images/2022/02/05/happy-business-woman-money-rain-made-dollars-isolated-black-wall_medium.jpg HTTP/1.1
Host: mc-educate.eu
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mc-educate.eu/
Cookie: 86cb9d4cd46a27b6071b3184e9d6e5c7=g1jcn450qkkk5j2vasbt73415n
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 03 Feb 2023 01:54:54 GMT
content-type: image/jpeg
content-length: 207835
last-modified: Sat, 05 Feb 2022 04:38:30 GMT
etag: "61fdff46-32bdb"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
mc-educate.eu/images/2022/01/20/affiate-Marketing_medium.jpg
200 OK 163 kB URL HTTP/2 mc-educate.eu/images/2022/01/20/affiate-Marketing_medium.jpg
IP
ASN #24940 Hetzner Online GmbH
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v80), quality = 100", baseline, precision 8, 750x450, components 3\012- data
Size 163 kB (162727 bytes)
Hash dcf8217f3aa685d2f94fed2f578a5787
1f12334f3d631181f0e4b1a0b823e3a64205e0e6
0a54f8a52ce85d3c4bf3d32641ef393fdee1b9e6eb91f043daa7f1dad017f26e
GET /images/2022/01/20/affiate-Marketing_medium.jpg HTTP/1.1
Host: mc-educate.eu
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mc-educate.eu/
Cookie: 86cb9d4cd46a27b6071b3184e9d6e5c7=g1jcn450qkkk5j2vasbt73415n
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 03 Feb 2023 01:54:55 GMT
content-type: image/jpeg
content-length: 162727
last-modified: Thu, 20 Jan 2022 22:46:18 GMT
etag: "61e9e63a-27ba7"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4d1adf44-5bff-4d36-99c4-8dd0dc2e5ac2.jpeg
200 OK 9.8 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4d1adf44-5bff-4d36-99c4-8dd0dc2e5ac2.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 352e4166a431e781e56cc7f169c7f8ca
866b76c34076cf2e18c6a071336fcf4f581f3c4d
75ba13b601f4b00c5b091eb29e7f6739ffee3e127bd6d3c4b35cc967bb6d354a
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4d1adf44-5bff-4d36-99c4-8dd0dc2e5ac2.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9779
x-amzn-requestid: 101b984b-9c04-4d07-b1fe-3d888f4bcd49
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ftcNRFV_oAMF2_w=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63dba721-72679ba0378015034e17b8ca;Sampled=0
x-amzn-remapped-date: Thu, 02 Feb 2023 12:05:53 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: gHFZOsR12RXKLYytleVlHWCs7d46CwnTF0m0xgCPer5wu6SwAliKkA==
via: 1.1 5a1753718d8b33365e5f693dd338c510.cloudfront.net (CloudFront), 1.1 7e87179efaa9e3c316bd3d3a74cfded8.cloudfront.net (CloudFront), 1.1 google
date: Thu, 02 Feb 2023 21:44:50 GMT
age: 26617
etag: "866b76c34076cf2e18c6a071336fcf4f581f3c4d"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
mc-educate.eu/images/2022/01/09/aff_medium.png
200 OK 174 kB URL HTTP/2 mc-educate.eu/images/2022/01/09/aff_medium.png
IP
ASN #24940 Hetzner Online GmbH
File type PNG image data, 750 x 450, 8-bit/color RGBA, non-interlaced\012- data
Size 174 kB (173820 bytes)
Hash a6ac11b30bd351510919ab9ba79328a9
ec0d91b05f62cab80ab91be2aad27b497da9e56a
42e3a44876c676a49bbca554009a70dbe14bc39a3b9b4b764c9c148833fcde20
GET /images/2022/01/09/aff_medium.png HTTP/1.1
Host: mc-educate.eu
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mc-educate.eu/
Cookie: 86cb9d4cd46a27b6071b3184e9d6e5c7=g1jcn450qkkk5j2vasbt73415n
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 03 Feb 2023 01:54:55 GMT
content-type: image/png
content-length: 173820
last-modified: Sun, 09 Jan 2022 18:48:37 GMT
etag: "61db2e05-2a6fc"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
mc-educate.eu/images/2022/01/09/affiliate-marketing-concept-blue-color-text-dark-digital-background_medium.jpg
200 OK 261 kB URL HTTP/2 mc-educate.eu/images/2022/01/09/affiliate-marketing-concept-blue-color-text-dark-digital-background_medium.jpg
IP
ASN #24940 Hetzner Online GmbH
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v80), quality = 100", baseline, precision 8, 750x450, components 3\012- data
Size 261 kB (260985 bytes)
Hash 40ce58804c5dfd57829aa733aa3166ff
78ec1104d3e1b855f0f691a07649d19cdc49a2ea
411b74b1b7e735361ad0bf8d2d79e70be5e9ee56cb0400bc871e385a836b01fb
GET /images/2022/01/09/affiliate-marketing-concept-blue-color-text-dark-digital-background_medium.jpg HTTP/1.1
Host: mc-educate.eu
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mc-educate.eu/
Cookie: 86cb9d4cd46a27b6071b3184e9d6e5c7=g1jcn450qkkk5j2vasbt73415n
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 03 Feb 2023 01:54:55 GMT
content-type: image/jpeg
content-length: 260985
last-modified: Sun, 09 Jan 2022 03:11:28 GMT
etag: "61da5260-3fb79"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
mc-educate.eu/templates/shaper_gazette/fonts/fa-solid-900.woff2
200 OK 80 kB URL HTTP/2 mc-educate.eu/templates/shaper_gazette/fonts/fa-solid-900.woff2
IP
ASN #24940 Hetzner Online GmbH
File type Web Open Font Format (Version 2), TrueType, length 80252, version 331.-31327\012- data
Hash 9ae050d1876ac1763eb6afe4264e6d5a
72344eab2e7431eec313caa21f266cbfda7caf60
6c916669cf923b4f1b2db5c5107c83b6ca205e7ad0dcd840b251e63f0c8d28a2
Analyzer Verdict Alert fortinet Phishing
GET /templates/shaper_gazette/fonts/fa-solid-900.woff2 HTTP/1.1
Host: mc-educate.eu
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://mc-educate.eu/templates/shaper_gazette/css/font-awesome.min.css
Cookie: 86cb9d4cd46a27b6071b3184e9d6e5c7=g1jcn450qkkk5j2vasbt73415n
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 03 Feb 2023 01:54:55 GMT
content-type: font/woff2
content-length: 80252
last-modified: Fri, 07 Jan 2022 11:51:13 GMT
etag: "61d82931-1397c"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
mc-educate.eu/templates/shaper_gazette/fonts/fa-brands-400.woff2
200 OK 78 kB URL HTTP/2 mc-educate.eu/templates/shaper_gazette/fonts/fa-brands-400.woff2
IP
ASN #24940 Hetzner Online GmbH
File type Web Open Font Format (Version 2), TrueType, length 78472, version 331.-31327\012- data
Hash 0c9f225e8f69c622f681cf1ed973cc3d
9e355abda14ee62a7987b2ba7e2e887d33337e25
529d0a7b3944929222155bca3272ba1a87acc2faa09b2ed26a713872b7ff8794
Analyzer Verdict Alert fortinet Phishing
GET /templates/shaper_gazette/fonts/fa-brands-400.woff2 HTTP/1.1
Host: mc-educate.eu
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://mc-educate.eu/templates/shaper_gazette/css/font-awesome.min.css
Cookie: 86cb9d4cd46a27b6071b3184e9d6e5c7=g1jcn450qkkk5j2vasbt73415n
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 03 Feb 2023 01:54:55 GMT
content-type: font/woff2
content-length: 78472
last-modified: Fri, 07 Jan 2022 11:51:13 GMT
etag: "61d82931-13288"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
ocsp.r2m01.amazontrust.com/
200 OK 471 B URL HTTP/1.1 ocsp.r2m01.amazontrust.com/
IP
Hash a7a6cf464dea8d453e11c7a186d4ab92
17e7b7783d079218c88720c84878a71b8790f91f
98571161658fd5128c807534fd7081345202530cf57d1a19aadd3734f4ba8c0e
POST / HTTP/1.1
Host: ocsp.r2m01.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Fri, 03 Feb 2023 01:54:55 GMT
Last-Modified: Fri, 03 Feb 2023 00:08:23 GMT
Server: ECS (nyb/1D13)
X-Cache: Miss from cloudfront
Via: 1.1 c26775cc34c23943f6f5cfc9a3da9b4a.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: QOjgOPpbMcvQbCrpzcJEpX5suGYluxSfiG49ZYHKT6fHRioM2yWcJg==
Age: 6392
analytics.mc-educate.eu/api/event
204 No Content 0 B URL HTTP/2 analytics.mc-educate.eu/api/event
IP
ASN #24940 Hetzner Online GmbH
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert fortinet Phishing
OPTIONS /api/event HTTP/1.1
Host: analytics.mc-educate.eu
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type
Referer: https://mc-educate.eu/
Origin: https://mc-educate.eu
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
HTTP/2 204 No Content
server: nginx
date: Fri, 03 Feb 2023 01:54:55 GMT
cache-control: no-cache, private
access-control-allow-origin: https://mc-educate.eu
vary: Origin,Access-Control-Request-Method,Access-Control-Request-Headers
access-control-allow-credentials: true
access-control-allow-methods: POST
access-control-allow-headers: content-type
access-control-max-age: 0
strict-transport-security: max-age=15768000; includeSubDomains
x-powered-by: PHP/8.0.27, PleskLin
X-Firefox-Spdy: h2
analytics.mc-educate.eu/api/event
200 OK 23 B URL HTTP/2 analytics.mc-educate.eu/api/event
IP
ASN #24940 Hetzner Online GmbH
File type ASCII text, with no line terminators
Hash 028b77dc32b1c71cc8706c917a10b5a8
257b8f79e772e160a662b86ea4272f4607d585a2
d7db30153cf715583d426573f34028e5b29a8f33c8e305d2fc42b68c8b6fef90
Analyzer Verdict Alert fortinet Phishing
POST /api/event HTTP/1.1
Host: analytics.mc-educate.eu
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json; charset=utf-8
Content-Length: 79
Origin: https://mc-educate.eu
Connection: keep-alive
Referer: https://mc-educate.eu/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 03 Feb 2023 01:54:55 GMT
content-type: text/html; charset=UTF-8
content-length: 23
cache-control: private, must-revalidate
pragma: no-cache
expires: -1
x-ratelimit-limit: 60
x-ratelimit-remaining: 59
access-control-allow-origin: https://mc-educate.eu
vary: Origin,Accept-Encoding
access-control-allow-credentials: true
content-encoding: gzip
strict-transport-security: max-age=15768000; includeSubDomains
x-powered-by: PHP/8.0.27, PleskLin
X-Firefox-Spdy: h2
s3.amazonaws.com/downloads.mailchimp.com/js/mc-validate.js
200 OK 143 kB URL HTTP/1.1 s3.amazonaws.com/downloads.mailchimp.com/js/mc-validate.js
IP
File type ASCII text, with very long lines (32132)
Size 143 kB (143249 bytes)
Hash 6465dd4a8331265e6629cd069e03504c
581e1ae78452c7433d842af8e83afcebe36f17a6
b15aceb04dbf5604df5617cfe984f48479cb131c1df02825d1c24e9f35d01857
GET /downloads.mailchimp.com/js/mc-validate.js HTTP/1.1
Host: s3.amazonaws.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mc-educate.eu/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
x-amz-id-2: n3VSntlLsg0T9Wv4D1R5ADVNvoT/ydDZaCOvBNXwHMamXGQJyRMfnjJGetEv8D7Nk6XjQAbVk7E=
x-amz-request-id: W5M206SE4P8YQVE3
Date: Fri, 03 Feb 2023 01:54:56 GMT
Last-Modified: Mon, 20 Aug 2018 17:42:38 GMT
ETag: "6465dd4a8331265e6629cd069e03504c"
Cache-Control: public,max-age=2592000
Accept-Ranges: bytes
Content-Type: application/javascript
Server: AmazonS3
Content-Length: 143249
region1.google-analytics.com/g/collect?v=2&tid=G-M8C15X4KCY>m=45je3210&_p=2127660653&cid=147816312.1675389324&ul=en-us&sr=1280x1024&uaW=1&_s=1&sid=1675389323&sct=1&seg=0&dl=https%3A%2F%2Fmc-educate.eu%2F&dt=%CE%94%CE%A9%CE%A1%CE%95%CE%91%CE%9D%20%CE%A3%CE%95%CE%9C%CE%99%CE%9D%CE%91%CE%A1%CE%99%CE%91%20-%20DIGITAL%20MARKETING%2C%20SEO%20-%20MC-EDUCATE&en=page_view&_fv=1&_nsi=1&_ss=1&_ee=1
204 No Content 0 B URL HTTP/2 region1.google-analytics.com/g/collect?v=2&tid=G-M8C15X4KCY>m=45je3210&_p=2127660653&cid=147816312.1675389324&ul=en-us&sr=1280x1024&uaW=1&_s=1&sid=1675389323&sct=1&seg=0&dl=https%3A%2F%2Fmc-educate.eu%2F&dt=%CE%94%CE%A9%CE%A1%CE%95%CE%91%CE%9D%20%CE%A3%CE%95%CE%9C%CE%99%CE%9D%CE%91%CE%A1%CE%99%CE%91%20-%20DIGITAL%20MARKETING%2C%20SEO%20-%20MC-EDUCATE&en=page_view&_fv=1&_nsi=1&_ss=1&_ee=1
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /g/collect?v=2&tid=G-M8C15X4KCY>m=45je3210&_p=2127660653&cid=147816312.1675389324&ul=en-us&sr=1280x1024&uaW=1&_s=1&sid=1675389323&sct=1&seg=0&dl=https%3A%2F%2Fmc-educate.eu%2F&dt=%CE%94%CE%A9%CE%A1%CE%95%CE%91%CE%9D%20%CE%A3%CE%95%CE%9C%CE%99%CE%9D%CE%91%CE%A1%CE%99%CE%91%20-%20DIGITAL%20MARKETING%2C%20SEO%20-%20MC-EDUCATE&en=page_view&_fv=1&_nsi=1&_ss=1&_ee=1 HTTP/1.1
Host: region1.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://mc-educate.eu
Connection: keep-alive
Referer: https://mc-educate.eu/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0
HTTP/2 204 No Content
access-control-allow-origin: https://mc-educate.eu
date: Fri, 03 Feb 2023 01:54:55 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
access-control-allow-credentials: true
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
mc-educate.eu/templates/shaper_gazette/fonts/fa-regular-400.woff2
200 OK 14 kB URL HTTP/2 mc-educate.eu/templates/shaper_gazette/fonts/fa-regular-400.woff2
IP
ASN #24940 Hetzner Online GmbH
File type Web Open Font Format (Version 2), TrueType, length 13588, version 331.-31327\012- data
Hash 847712aaabbeba674afdda86d31cab17
c07631a91ee71c0a1a84a3151db42b1f2d9a9692
b3b8c21edfe6c5e402fdc607366fd8d15949a65914f58134733dc68922bc8d61
Analyzer Verdict Alert fortinet Phishing
GET /templates/shaper_gazette/fonts/fa-regular-400.woff2 HTTP/1.1
Host: mc-educate.eu
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://mc-educate.eu/templates/shaper_gazette/css/font-awesome.min.css
Cookie: 86cb9d4cd46a27b6071b3184e9d6e5c7=g1jcn450qkkk5j2vasbt73415n; _ga_M8C15X4KCY=GS1.1.1675389323.1.1.1675389323.0.0.0; _ga=GA1.1.147816312.1675389324
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 03 Feb 2023 01:54:55 GMT
content-type: font/woff2
content-length: 13588
last-modified: Fri, 07 Jan 2022 11:51:13 GMT
etag: "61d82931-3514"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
analytics.mc-educate.eu/api/event
204 No Content 0 B URL HTTP/2 analytics.mc-educate.eu/api/event
IP
ASN #24940 Hetzner Online GmbH
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert fortinet Phishing
OPTIONS /api/event HTTP/1.1
Host: analytics.mc-educate.eu
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type
Referer: https://mc-educate.eu/
Origin: https://mc-educate.eu
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 204 No Content
server: nginx
date: Fri, 03 Feb 2023 01:54:55 GMT
cache-control: no-cache, private
access-control-allow-origin: https://mc-educate.eu
vary: Origin,Access-Control-Request-Method,Access-Control-Request-Headers
access-control-allow-credentials: true
access-control-allow-methods: POST
access-control-allow-headers: content-type
access-control-max-age: 0
strict-transport-security: max-age=15768000; includeSubDomains
x-powered-by: PHP/8.0.27, PleskLin
X-Firefox-Spdy: h2
mc-educate.eu/images/mc22.png
200 OK 4.9 kB URL HTTP/2 mc-educate.eu/images/mc22.png
IP
ASN #24940 Hetzner Online GmbH
File type PNG image data, 98 x 98, 8-bit/color RGBA, non-interlaced\012- data
Hash 6c601aeb1f75d067b9e9fe8748d415a7
38fdb07cec9726103b68c0dd1b9d7a12e1c5f794
1e92550d15c66ac46899d5613d5c3005582e614838438cbcae2c7ead377d835f
GET /images/mc22.png HTTP/1.1
Host: mc-educate.eu
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mc-educate.eu/
Cookie: 86cb9d4cd46a27b6071b3184e9d6e5c7=g1jcn450qkkk5j2vasbt73415n; _ga_M8C15X4KCY=GS1.1.1675389323.1.1.1675389323.0.0.0; _ga=GA1.1.147816312.1675389324
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 03 Feb 2023 01:54:56 GMT
content-type: image/png
content-length: 4862
last-modified: Sun, 06 Feb 2022 18:44:21 GMT
etag: "62001705-12fe"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash 9bfd33253208c9d034988400d66abd5d
8811fd76d9bc56c15431433f8f08d648185992ed
6382de7eb2bc0b40dc6d2e21ab8b6cb90cc0effe3241e3fb5008d2e4f626e92c
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 03 Feb 2023 01:54:56 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.digicert.com/
200 OK 471 B IP
Hash ede42358dbe8cf2e6b7e6a2653774d01
5dc8ca0b929f04fb15c7ff81d0a9decda023b7fb
8e841815d41c4ade06e328cb1ffb9be342640167ec6acb658f6b4b373e23a52a
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2366
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Fri, 03 Feb 2023 01:54:56 GMT
Last-Modified: Fri, 03 Feb 2023 01:15:30 GMT
Server: ECS (ska/F711)
X-Cache: HIT
Content-Length: 471
ocsp.pki.goog/gts1c3
200 OK 471 B IP
Hash bbeb609cbf32a8842bf96a124588e65e
40c0f548bcb714731f62df5a27cad21adef0463d
502c60a18a13b84598933731d182aafd4b83576bfc56451b36f9238c621a571d
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 03 Feb 2023 01:54:56 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash 9bfd33253208c9d034988400d66abd5d
8811fd76d9bc56c15431433f8f08d648185992ed
6382de7eb2bc0b40dc6d2e21ab8b6cb90cc0effe3241e3fb5008d2e4f626e92c
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 03 Feb 2023 01:54:56 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
pagead2.googlesyndication.com/pagead/js/adsbygoogle.js?client=ca-pub-7575210975819191
200 OK 50 kB URL HTTP/2 pagead2.googlesyndication.com/pagead/js/adsbygoogle.js?client=ca-pub-7575210975819191
IP
File type ASCII text, with very long lines (4879)
Hash 6682bc8defd4ad00ab3a7fd94f3b69d7
b7cf8b9adfcc6151ffd2300a8b3d9a2f788a54fe
b312bcd9bb3d4a7ce943a899fffae9819a1e8bff0976b99b6f295a512663e67b
GET /pagead/js/adsbygoogle.js?client=ca-pub-7575210975819191 HTTP/1.1
Host: pagead2.googlesyndication.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://mc-educate.eu
Connection: keep-alive
Referer: https://mc-educate.eu/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
vary: Accept-Encoding
date: Fri, 03 Feb 2023 01:54:56 GMT
expires: Fri, 03 Feb 2023 01:54:56 GMT
cache-control: private, max-age=3600
content-type: text/javascript; charset=UTF-8
etag: 33524553063135236
access-control-allow-origin: *
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: br
server: cafe
content-length: 50145
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
connect.facebook.net/el_GR/sdk/xfbml.customerchat.js
200 OK 93 kB URL HTTP/2 connect.facebook.net/el_GR/sdk/xfbml.customerchat.js
IP
File type ASCII text, with very long lines (20950)
Hash 417306ac80eae52f89093e3a9aabe7bd
ea6f85f8c90bf92c3bfc0b0ceb3511e1e9c83ee0
2e9fc6f9f7d8fe42705172bd048afbd6941e980e261203dd1f3fc864bf30ce8d
GET /el_GR/sdk/xfbml.customerchat.js HTTP/1.1
Host: connect.facebook.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mc-educate.eu/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
vary: Accept-Encoding
content-encoding: gzip
access-control-expose-headers: X-FB-Content-MD5
x-fb-content-md5: 5fa8f0a925efdbcd35d08a65ddd2b2c2
etag: "b57c7b2c5558fc9322f5ed307ccc74fa"
content-type: application/x-javascript; charset=utf-8
timing-allow-origin: *
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
expires: Fri, 03 Feb 2023 02:05:41 GMT
cache-control: public,max-age=1200,stale-while-revalidate=3600
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-embedder-policy-report-only: require-corp;report-to="coep_report"
cross-origin-opener-policy: same-origin-allow-popups
x-content-type-options: nosniff
report-to: {"max_age":86400,"endpoints":[{"url":"https:\/\/www.facebook.com\/browser_reporting\/?minimize=0"}],"group":"coep_report"}
x-frame-options: DENY
strict-transport-security: max-age=31536000; preload; includeSubDomains
content-md5: QXMGrIDq5S+JCT46mqvnvQ==
x-fb-debug: weADw0f1gnf2ueGDfEiq7aNLl0AZJERsel9AQmCBp9QzOeFtWPy2k5FBkkJ+4yTh5N0V0SeiD+e49hHN7UHk2A==
content-length: 92630
x-fb-trip-id: 1679558926
date: Fri, 03 Feb 2023 01:54:56 GMT
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 471 B IP
Hash bbeb609cbf32a8842bf96a124588e65e
40c0f548bcb714731f62df5a27cad21adef0463d
502c60a18a13b84598933731d182aafd4b83576bfc56451b36f9238c621a571d
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 03 Feb 2023 01:54:56 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.digicert.com/
200 OK 471 B IP
Hash ede42358dbe8cf2e6b7e6a2653774d01
5dc8ca0b929f04fb15c7ff81d0a9decda023b7fb
8e841815d41c4ade06e328cb1ffb9be342640167ec6acb658f6b4b373e23a52a
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2366
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Fri, 03 Feb 2023 01:54:56 GMT
Last-Modified: Fri, 03 Feb 2023 01:15:30 GMT
Server: ECS (ska/F711)
X-Cache: HIT
Content-Length: 471
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash 9bfd33253208c9d034988400d66abd5d
8811fd76d9bc56c15431433f8f08d648185992ed
6382de7eb2bc0b40dc6d2e21ab8b6cb90cc0effe3241e3fb5008d2e4f626e92c
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 03 Feb 2023 01:54:56 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
mc-educate.eu/templates/shaper_gazette/css/bootstrap.min.css
200 OK 21 kB URL HTTP/2 mc-educate.eu/templates/shaper_gazette/css/bootstrap.min.css
IP
ASN #24940 Hetzner Online GmbH
File type Unicode text, UTF-8 text, with very long lines (65306)
Hash 081733bcf0a19810e74ac46f2486a059
35bd1de8d028cb192fa8d0799b258fdd61aa74ec
aac9153e3c58a1e07c604b5271bd214787c760874a84e588a50cc9cbc7827da5
GET /templates/shaper_gazette/css/bootstrap.min.css HTTP/1.1
Host: mc-educate.eu
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mc-educate.eu/
Cookie: 86cb9d4cd46a27b6071b3184e9d6e5c7=g1jcn450qkkk5j2vasbt73415n
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 03 Feb 2023 01:54:54 GMT
content-type: text/css
last-modified: Fri, 07 Jan 2022 11:51:13 GMT
etag: W/"61d82931-27b72"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
analytics.mc-educate.eu/api/event
200 OK 23 B URL HTTP/2 analytics.mc-educate.eu/api/event
IP
ASN #24940 Hetzner Online GmbH
File type ASCII text, with no line terminators
Hash 028b77dc32b1c71cc8706c917a10b5a8
257b8f79e772e160a662b86ea4272f4607d585a2
d7db30153cf715583d426573f34028e5b29a8f33c8e305d2fc42b68c8b6fef90
Analyzer Verdict Alert fortinet Phishing
POST /api/event HTTP/1.1
Host: analytics.mc-educate.eu
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json; charset=utf-8
Content-Length: 79
Origin: https://mc-educate.eu
Connection: keep-alive
Referer: https://mc-educate.eu/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 03 Feb 2023 01:54:56 GMT
content-type: text/html; charset=UTF-8
content-length: 23
cache-control: private, must-revalidate
pragma: no-cache
expires: -1
x-ratelimit-limit: 60
x-ratelimit-remaining: 58
access-control-allow-origin: https://mc-educate.eu
vary: Origin,Accept-Encoding
access-control-allow-credentials: true
content-encoding: gzip
strict-transport-security: max-age=15768000; includeSubDomains
x-powered-by: PHP/8.0.27, PleskLin
X-Firefox-Spdy: h2
googleads.g.doubleclick.net/pagead/html/r20230201/r20190131/zrt_lookup.html
200 OK 4.2 kB URL HTTP/2 googleads.g.doubleclick.net/pagead/html/r20230201/r20190131/zrt_lookup.html
IP
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (2579)
Hash 2fb3574102373e2e076cfa2ff90cdf25
d06c985183def975546d6e47ab6369c11dcf7195
e61cbc207f7fc2f429deceff11e7a339a3d9a9574da6d035054eba02ee381345
GET /pagead/html/r20230201/r20190131/zrt_lookup.html HTTP/1.1
Host: googleads.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mc-educate.eu/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
vary: Accept-Encoding
x-content-type-options: nosniff
content-encoding: br
server: cafe
content-length: 4242
x-xss-protection: 0
date: Thu, 02 Feb 2023 14:20:22 GMT
expires: Thu, 16 Feb 2023 14:20:22 GMT
cache-control: public, max-age=1209600
etag: 10353107486223812946
content-type: text/html; charset=UTF-8
age: 41674
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 471 B IP
Hash e3383a870b280d28b1d924543e6128af
0e9ccaf308e10ae68774fe0d32e10d063f379e7d
093a4523b327faf080d2d200d6e8d9e615abe6e048a72d70c3bc8e9f89cc50bf
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 03 Feb 2023 01:54:56 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
200 OK 471 B IP
Hash e3383a870b280d28b1d924543e6128af
0e9ccaf308e10ae68774fe0d32e10d063f379e7d
093a4523b327faf080d2d200d6e8d9e615abe6e048a72d70c3bc8e9f89cc50bf
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 03 Feb 2023 01:54:56 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
200 OK 471 B IP
Hash e3383a870b280d28b1d924543e6128af
0e9ccaf308e10ae68774fe0d32e10d063f379e7d
093a4523b327faf080d2d200d6e8d9e615abe6e048a72d70c3bc8e9f89cc50bf
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 03 Feb 2023 01:54:56 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
200 OK 471 B IP
Hash e3383a870b280d28b1d924543e6128af
0e9ccaf308e10ae68774fe0d32e10d063f379e7d
093a4523b327faf080d2d200d6e8d9e615abe6e048a72d70c3bc8e9f89cc50bf
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 03 Feb 2023 01:54:56 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2
200 OK 16 kB URL HTTP/2 fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2
IP
File type Web Open Font Format (Version 2), TrueType, length 15860, version 1.0\012- data
Hash e9f5aaf547f165386cd313b995dddd8e
acdef5603c2387b0e5bffd744b679a24a8bc1968
f5aebdfea35d1e7656ef4acc5db1f243209755ae3300943ef8fc6280f363c860
GET /s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://mc-educate.eu
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15860
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 31 Jan 2023 13:09:06 GMT
expires: Wed, 31 Jan 2024 13:09:06 GMT
cache-control: public, max-age=31536000
age: 218750
last-modified: Wed, 11 May 2022 19:24:42 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
fonts.gstatic.com/s/robotoslab/v24/BngMUXZYTXPIvIBgJJSb6ufN5qU.woff2
200 OK 33 kB URL HTTP/2 fonts.gstatic.com/s/robotoslab/v24/BngMUXZYTXPIvIBgJJSb6ufN5qU.woff2
IP
File type Web Open Font Format (Version 2), TrueType, length 32860, version 1.0\012- data
Hash d010a9f2d5c7a0374b3b84706a43d2ec
c1fe465db08785c3f115555d39db23838960cb66
9a3993918629dfd6a59c4563e9b4d464152b51d4113957ab8ebfbdcbcdc7f536
GET /s/robotoslab/v24/BngMUXZYTXPIvIBgJJSb6ufN5qU.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://mc-educate.eu
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 32860
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 02 Feb 2023 00:38:34 GMT
expires: Fri, 02 Feb 2024 00:38:34 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 11 Jul 2022 19:12:50 GMT
content-type: font/woff2
age: 90982
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
fonts.gstatic.com/s/robotoslab/v24/BngMUXZYTXPIvIBgJJSb6ufO5qW54A.woff2
200 OK 15 kB URL HTTP/2 fonts.gstatic.com/s/robotoslab/v24/BngMUXZYTXPIvIBgJJSb6ufO5qW54A.woff2
IP
File type Web Open Font Format (Version 2), TrueType, length 15000, version 1.0\012- data
Hash 8e04f7f91778f6fa6a23af3dbb717dfc
785a86d63aa1b77cc5891b0495380dd2c94861ec
a772fd708364e53ca24b89c87b17a92d205ca914b89530517016b1ebaf9bd12a
GET /s/robotoslab/v24/BngMUXZYTXPIvIBgJJSb6ufO5qW54A.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://mc-educate.eu
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15000
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 02 Feb 2023 01:10:12 GMT
expires: Fri, 02 Feb 2024 01:10:12 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 11 Jul 2022 19:12:02 GMT
content-type: font/woff2
age: 89084
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmEU9fBBc4.woff2
200 OK 16 kB URL HTTP/2 fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmEU9fBBc4.woff2
IP
File type Web Open Font Format (Version 2), TrueType, length 15920, version 1.0\012- data
Hash 3a44e06eb954b96aa043227f3534189d
23cef6993ddb2b2979e8e7647fc3763694e2ba7d
b019538234514166ec7665359d097403358f8a4c991901983922fb4d56989f1e
GET /s/roboto/v30/KFOlCnqEu92Fr1MmEU9fBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://mc-educate.eu
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15920
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 01 Feb 2023 07:51:59 GMT
expires: Thu, 01 Feb 2024 07:51:59 GMT
cache-control: public, max-age=31536000
age: 151377
last-modified: Wed, 11 May 2022 19:24:45 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2
200 OK 16 kB URL HTTP/2 fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2
IP
File type Web Open Font Format (Version 2), TrueType, length 15744, version 1.0\012- data
Hash 15d9f621c3bd1599f0169dcf0bd5e63e
7ca9c5967f3bb8bffeab24b639b49c1e7d03fa52
f6734f8177112c0839b961f96d813fcb189d81b60e96c33278c1983b6f419615
GET /s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://mc-educate.eu
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15744
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sun, 29 Jan 2023 22:02:00 GMT
expires: Mon, 29 Jan 2024 22:02:00 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 11 May 2022 19:24:48 GMT
content-type: font/woff2
age: 359576
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmEU9fBxc4EsA.woff2
200 OK 7.0 kB URL HTTP/2 fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmEU9fBxc4EsA.woff2
IP
File type Web Open Font Format (Version 2), TrueType, length 7016, version 1.0\012- data
Hash 53f395eb854a40e978706b1082570e42
70fba5c0c3e1f5c5786e615d35a21c54b1c0a39c
713780d8b30bda5583052ea847cdcb4f2956c2ac5ff38a7e538ba8f14ad1043e
GET /s/roboto/v30/KFOlCnqEu92Fr1MmEU9fBxc4EsA.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://mc-educate.eu
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 7016
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 02 Feb 2023 00:35:34 GMT
expires: Fri, 02 Feb 2024 00:35:34 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 11 May 2022 19:25:02 GMT
content-type: font/woff2
age: 91162
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
fonts.googleapis.com/css?family=Roboto%20Slab:100,100i,300,300i,400,400i,500,500i,700,700i,900,900i&subset=cyrillic-ext&display=swap
200 OK 7.7 kB URL HTTP/2 fonts.googleapis.com/css?family=Roboto%20Slab:100,100i,300,300i,400,400i,500,500i,700,700i,900,900i&subset=cyrillic-ext&display=swap
IP
Hash 9f4beff565adb15e89cc9d4e24a29987
14c2f699cc86e9b86d5b87088ed1b6ba9ed3a040
472a0b9640bf2d01ce5b3a3a85bc2b2af060c0f6e17ed8bd66c302316a70ac8c
GET /css?family=Roboto%20Slab:100,100i,300,300i,400,400i,500,500i,700,700i,900,900i&subset=cyrillic-ext&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mc-educate.eu/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Fri, 03 Feb 2023 01:54:56 GMT
date: Fri, 03 Feb 2023 01:54:56 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4WxKOzY.woff2
200 OK 7.1 kB URL HTTP/2 fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4WxKOzY.woff2
IP
File type Web Open Font Format (Version 2), TrueType, length 7112, version 1.0\012- data
Hash 28668857bef1b85c5748a482cf9b74af
7cfbc415c45b2274a5997255fbec0fb53bbe327d
daf51ab540602b2d0b87646621637bac38889bb34effb8a432ae739aca78b5c0
GET /s/roboto/v30/KFOmCnqEu92Fr1Mu4WxKOzY.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://mc-educate.eu
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 7112
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 02 Feb 2023 01:04:46 GMT
expires: Fri, 02 Feb 2024 01:04:46 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 11 May 2022 19:24:55 GMT
content-type: font/woff2
age: 89410
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 471 B IP
Hash e3383a870b280d28b1d924543e6128af
0e9ccaf308e10ae68774fe0d32e10d063f379e7d
093a4523b327faf080d2d200d6e8d9e615abe6e048a72d70c3bc8e9f89cc50bf
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 03 Feb 2023 01:54:56 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash ead5df3e30e38bb1a739ababb3292302
b5986cff7222999bf19e360ced4a445a2202c82c
768a8260af372a1ca06f826c3a3f84b6bc4523130134b32998baf75b64d7de4b
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 03 Feb 2023 01:54:56 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash ead5df3e30e38bb1a739ababb3292302
b5986cff7222999bf19e360ced4a445a2202c82c
768a8260af372a1ca06f826c3a3f84b6bc4523130134b32998baf75b64d7de4b
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 03 Feb 2023 01:54:56 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash 0c15fd84f4711d994724c35236542194
c47d77fe5b373a86bd9a116bd8baac07ec746add
a210a4599baaa980674b456f020282cd470559b319be263fdcf9eaec7cff0d3b
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 03 Feb 2023 01:54:57 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
200 OK 471 B IP
Hash 2bef39ac599211fe23ad884ceacf1c9b
c19b32a600412658c49a3e55d5d8353a5101c31d
0ff4181df99351d3aa3490540d2f19474531fb07e13ee457b9339efab1a47ad9
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 03 Feb 2023 01:54:57 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
adservice.google.com/adsid/integrator.js?domain=mc-educate.eu
200 OK 100 B URL HTTP/2 adservice.google.com/adsid/integrator.js?domain=mc-educate.eu
IP
File type ASCII text, with no line terminators
Hash 917951a58be8c6c6f3680159550ba3c2
21cd25c2a4eb9ec7e0f37021ce7b69e852dab4b4
cd8c45d9a0d98ca2e23d967483ec538bcafa246afdcf434bf60c8257acfacfac
GET /adsid/integrator.js?domain=mc-educate.eu HTTP/1.1
Host: adservice.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mc-educate.eu/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: CP="This is not a P3P policy! See http://support.google.com/accounts/answer/151657 for more info."
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
cache-control: private, no-cache, no-store
content-type: application/javascript; charset=UTF-8
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: gzip
date: Fri, 03 Feb 2023 01:54:57 GMT
server: cafe
content-length: 100
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
adservice.google.no/adsid/integrator.js?domain=mc-educate.eu
200 OK 100 B URL HTTP/2 adservice.google.no/adsid/integrator.js?domain=mc-educate.eu
IP
File type ASCII text, with no line terminators
Hash 917951a58be8c6c6f3680159550ba3c2
21cd25c2a4eb9ec7e0f37021ce7b69e852dab4b4
cd8c45d9a0d98ca2e23d967483ec538bcafa246afdcf434bf60c8257acfacfac
GET /adsid/integrator.js?domain=mc-educate.eu HTTP/1.1
Host: adservice.google.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mc-educate.eu/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: CP="This is not a P3P policy! See http://support.google.com/accounts/answer/151657 for more info."
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
cache-control: private, no-cache, no-store
content-type: application/javascript; charset=UTF-8
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: gzip
date: Fri, 03 Feb 2023 01:54:57 GMT
server: cafe
content-length: 100
x-xss-protection: 0
alt-svc: h3="googleads.g.doubleclick.net:443"; ma=2592000,h3=":443"; ma=2592000,h3-29="googleads.g.doubleclick.net:443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash 0c15fd84f4711d994724c35236542194
c47d77fe5b373a86bd9a116bd8baac07ec746add
a210a4599baaa980674b456f020282cd470559b319be263fdcf9eaec7cff0d3b
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 03 Feb 2023 01:54:57 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
200 OK 471 B IP
Hash 2bef39ac599211fe23ad884ceacf1c9b
c19b32a600412658c49a3e55d5d8353a5101c31d
0ff4181df99351d3aa3490540d2f19474531fb07e13ee457b9339efab1a47ad9
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 03 Feb 2023 01:54:57 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
adservice.google.no/adsid/integrator.js?domain=mc-educate.eu
200 OK 100 B URL HTTP/2 adservice.google.no/adsid/integrator.js?domain=mc-educate.eu
IP
File type ASCII text, with no line terminators
Hash 917951a58be8c6c6f3680159550ba3c2
21cd25c2a4eb9ec7e0f37021ce7b69e852dab4b4
cd8c45d9a0d98ca2e23d967483ec538bcafa246afdcf434bf60c8257acfacfac
GET /adsid/integrator.js?domain=mc-educate.eu HTTP/1.1
Host: adservice.google.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mc-educate.eu/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
p3p: CP="This is not a P3P policy! See http://support.google.com/accounts/answer/151657 for more info."
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
cache-control: private, no-cache, no-store
content-type: application/javascript; charset=UTF-8
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: gzip
date: Fri, 03 Feb 2023 01:54:57 GMT
server: cafe
content-length: 100
x-xss-protection: 0
alt-svc: h3="googleads.g.doubleclick.net:443"; ma=2592000,h3=":443"; ma=2592000,h3-29="googleads.g.doubleclick.net:443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
adservice.google.com/adsid/integrator.js?domain=mc-educate.eu
200 OK 100 B URL HTTP/2 adservice.google.com/adsid/integrator.js?domain=mc-educate.eu
IP
File type ASCII text, with no line terminators
Hash 917951a58be8c6c6f3680159550ba3c2
21cd25c2a4eb9ec7e0f37021ce7b69e852dab4b4
cd8c45d9a0d98ca2e23d967483ec538bcafa246afdcf434bf60c8257acfacfac
GET /adsid/integrator.js?domain=mc-educate.eu HTTP/1.1
Host: adservice.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mc-educate.eu/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
p3p: CP="This is not a P3P policy! See http://support.google.com/accounts/answer/151657 for more info."
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
cache-control: private, no-cache, no-store
content-type: application/javascript; charset=UTF-8
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: gzip
date: Fri, 03 Feb 2023 01:54:57 GMT
server: cafe
content-length: 100
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 471 B IP
Hash 832775a408c718892e82db29cfd714ee
4b05adbde482a9d0e8290326273c8cc52b051123
2e24e9ddbdb9326d57ee324b8b8280d7fb51266af3109226a95f866149090062
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 03 Feb 2023 01:54:58 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
200 OK 471 B IP
Hash 832775a408c718892e82db29cfd714ee
4b05adbde482a9d0e8290326273c8cc52b051123
2e24e9ddbdb9326d57ee324b8b8280d7fb51266af3109226a95f866149090062
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 03 Feb 2023 01:54:58 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
tpc.googlesyndication.com/pagead/js/r20230201/r20110914/abg_lite_fy2021.js
200 OK 9.0 kB URL HTTP/2 tpc.googlesyndication.com/pagead/js/r20230201/r20110914/abg_lite_fy2021.js
IP
File type ASCII text, with very long lines (1672)
Hash 9aa683d616d8b2d10fe0100d761df816
60f84308b40072edcc24b6fd54c68247786001aa
2e8549a4bc0e1f4a4eda2637f239105e780b2ae2879c9a241b1ffe7130386e0a
GET /pagead/js/r20230201/r20110914/abg_lite_fy2021.js HTTP/1.1
Host: tpc.googlesyndication.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://googleads.g.doubleclick.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
vary: Accept-Encoding
access-control-allow-origin: *
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: br
server: cafe
content-length: 8993
x-xss-protection: 0
date: Thu, 02 Feb 2023 19:23:41 GMT
expires: Thu, 16 Feb 2023 19:23:41 GMT
cache-control: public, max-age=1209600
age: 23477
etag: 12355142264901698679
content-type: text/javascript; charset=UTF-8
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
tpc.googlesyndication.com/pagead/js/r20230201/r20110914/client/qs_click_protection_fy2021.js
200 OK 7.6 kB URL HTTP/2 tpc.googlesyndication.com/pagead/js/r20230201/r20110914/client/qs_click_protection_fy2021.js
IP
File type ASCII text, with very long lines (1605)
Hash aeaebc4fec11dcafa566897f3b2aa937
7b4507c8793c1ce833dccaeb7dbc956c1fd06668
c23b4a16d9468c0018f502492594408fc809fc0fe003aed2f1145ba3dca87bae
GET /pagead/js/r20230201/r20110914/client/qs_click_protection_fy2021.js HTTP/1.1
Host: tpc.googlesyndication.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://googleads.g.doubleclick.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
vary: Accept-Encoding
access-control-allow-origin: *
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: br
server: cafe
content-length: 7647
x-xss-protection: 0
date: Thu, 02 Feb 2023 19:23:41 GMT
expires: Thu, 16 Feb 2023 19:23:41 GMT
cache-control: public, max-age=1209600
age: 23477
etag: 2161395064574532456
content-type: text/javascript; charset=UTF-8
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
mc-educate.eu/plugins/system/helixultimate/assets/css/system-j4.min.css
200 OK 2.7 kB URL HTTP/2 mc-educate.eu/plugins/system/helixultimate/assets/css/system-j4.min.css
IP
ASN #24940 Hetzner Online GmbH
File type ASCII text, with very long lines (5202), with no line terminators
Hash 5814e5a2d7ef2d67f1aa0133973b1b7e
e33539e110dc8f085f6d758c062ad1ff7e9a9864
b782e1603bcc36fdcb5876c99bbb0e7d7b20f0795bb3e889ae42cef350769276
GET /plugins/system/helixultimate/assets/css/system-j4.min.css HTTP/1.1
Host: mc-educate.eu
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mc-educate.eu/
Cookie: 86cb9d4cd46a27b6071b3184e9d6e5c7=g1jcn450qkkk5j2vasbt73415n
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 03 Feb 2023 01:54:54 GMT
content-type: text/css
last-modified: Thu, 08 Sep 2022 10:51:29 GMT
etag: W/"6319c931-1452"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
www.gstatic.com/mysidia/8aec859a266e19fb42fee7f82edeac28.js?tag=mysidia_one_click_handler_one_afma_2019
200 OK 14 kB URL HTTP/2 www.gstatic.com/mysidia/8aec859a266e19fb42fee7f82edeac28.js?tag=mysidia_one_click_handler_one_afma_2019
IP
File type C++ source, ASCII text, with very long lines (1688)
Hash 3582c692298538eabf17eebd7434e582
587a6222383df174947008131dcccc13efbd3dba
ac83b4d1ea4abd201377d450290a7cc306499837a4b6ff1cd2b0f8d275baaa82
GET /mysidia/8aec859a266e19fb42fee7f82edeac28.js?tag=mysidia_one_click_handler_one_afma_2019 HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://googleads.g.doubleclick.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/mysidia
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="mysidia"
report-to: {"group":"mysidia","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/mysidia"}]}
content-length: 14079
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 01 Feb 2023 14:04:08 GMT
expires: Tue, 02 May 2023 14:04:08 GMT
cache-control: public, max-age=7776000
last-modified: Fri, 27 Jan 2023 00:31:18 GMT
content-type: text/javascript
age: 129050
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmSU5fBBc4.woff2
200 OK 16 kB URL HTTP/2 fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmSU5fBBc4.woff2
IP
File type Web Open Font Format (Version 2), TrueType, length 15740, version 1.0\012- data
Hash b9c29351c46f3e8c8631c4002457f48a
e57e59c5780995ff2937ab2b511a769212974a87
f75911313e1c7802c23345ab57e754d87801581706780c993fb23ff4e0fe62ef
GET /s/roboto/v30/KFOlCnqEu92Fr1MmSU5fBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://googleads.g.doubleclick.net
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15740
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sat, 28 Jan 2023 10:26:49 GMT
expires: Sun, 28 Jan 2024 10:26:49 GMT
cache-control: public, max-age=31536000
age: 487689
last-modified: Wed, 11 May 2022 19:24:56 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
www.gstatic.com/mysidia/8229fa5a5c3ebd24f3e2eb95db7eba72.js?tag=client_fast_engine_2019
200 OK 4.2 kB URL HTTP/2 www.gstatic.com/mysidia/8229fa5a5c3ebd24f3e2eb95db7eba72.js?tag=client_fast_engine_2019
IP
File type ASCII text, with very long lines (2595)
Hash 22b1107093ffdaf82c67748570c23847
23dfc8f212390c65e14e5429f57808ba23519546
cbbc030a379d4135d1a593fe405ab78879df73eef55d3cb03774cc3b3c27ac82
GET /mysidia/8229fa5a5c3ebd24f3e2eb95db7eba72.js?tag=client_fast_engine_2019 HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://googleads.g.doubleclick.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/mysidia
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="mysidia"
report-to: {"group":"mysidia","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/mysidia"}]}
content-length: 4209
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 02 Feb 2023 01:07:23 GMT
expires: Wed, 03 May 2023 01:07:23 GMT
cache-control: public, max-age=7776000
last-modified: Wed, 01 Feb 2023 06:12:50 GMT
content-type: text/javascript
age: 89255
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
www.gstatic.com/mysidia/9e5698c686bc55900eb7505b234da968.js?tag=text/vanilla_highlight
200 OK 4.5 kB URL HTTP/2 www.gstatic.com/mysidia/9e5698c686bc55900eb7505b234da968.js?tag=text/vanilla_highlight
IP
File type C++ source, ASCII text, with very long lines (1812)
Hash aedf474400722a008158e56e573bc5d0
72656d7103183a1ced0cfe3495612a7a6232d5bb
0ddf3aa087012380c967098be900c1b7ab2e26618375d81d3740f470f3bcd792
GET /mysidia/9e5698c686bc55900eb7505b234da968.js?tag=text/vanilla_highlight HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://googleads.g.doubleclick.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/mysidia
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="mysidia"
report-to: {"group":"mysidia","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/mysidia"}]}
content-length: 4467
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 31 Jan 2023 05:47:53 GMT
expires: Mon, 01 May 2023 05:47:53 GMT
cache-control: public, max-age=7776000
last-modified: Fri, 27 Jan 2023 00:31:18 GMT
content-type: text/javascript
age: 245225
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
pagead2.googlesyndication.com/getconfig/sodar?sv=200&tid=gda&tv=r20230201&st=env
200 OK 11 kB URL HTTP/2 pagead2.googlesyndication.com/getconfig/sodar?sv=200&tid=gda&tv=r20230201&st=env
IP
File type JSON data\012- , ASCII text, with very long lines (14773), with no line terminators
Hash 7debfedc97207e7a4a829935988e363a
351b98c39a05d754a269faf9d18e6874c309368b
7da3886d4afaf47705dbc6ee27dc362142c099653b59e272c0edc6c30c16ef0f
GET /getconfig/sodar?sv=200&tid=gda&tv=r20230201&st=env HTTP/1.1
Host: pagead2.googlesyndication.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://mc-educate.eu
Connection: keep-alive
Referer: https://mc-educate.eu/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
content-type: application/json; charset=UTF-8
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: br
date: Fri, 03 Feb 2023 01:54:58 GMT
server: cafe
content-length: 11151
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 471 B IP
Hash 4cf0ccf2909be74efd7a89dbe4228ffb
b4993da334b48312584d116a3de4be4cd71962cf
e81c8aa45d0707079d9eba798fb447059042453be4834d14467839688ca66f5d
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 03 Feb 2023 01:54:58 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.google.com/pagead/drt/ui
302 Found 0 B URL HTTP/2 www.google.com/pagead/drt/ui
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /pagead/drt/ui HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
location: https://googleads.g.doubleclick.net/pagead/drt/si?st=NO_DATA
cache-control: private
content-type: text/html; charset=UTF-8
x-content-type-options: nosniff
date: Fri, 03 Feb 2023 01:54:58 GMT
server: cafe
content-length: 0
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
www.google.com/recaptcha/api2/aframe
200 OK 512 B URL HTTP/2 www.google.com/recaptcha/api2/aframe
IP
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (783), with no line terminators
Hash 6b26f9f9be1c261212c9de19550698f7
88994213143d9cff97ac691bd3800e18ed7989b1
7e0b837e15a325db43c3b5c573dca24e099e433e7dbccb0391bdf26bc02e1389
GET /recaptcha/api2/aframe HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mc-educate.eu/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cross-origin-resource-policy: cross-origin
cross-origin-embedder-policy: require-corp
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
expires: Fri, 03 Feb 2023 01:54:58 GMT
date: Fri, 03 Feb 2023 01:54:58 GMT
cache-control: private, max-age=300
content-type: text/html; charset=utf-8
content-security-policy: script-src 'nonce-EzIxsFe9XScrWt9B8EwLLg' 'unsafe-inline' 'strict-dynamic' https: http: 'unsafe-eval';object-src 'none';base-uri 'self';report-uri https://csp.withgoogle.com/csp/recaptcha/1
content-encoding: gzip
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
content-length: 512
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
www.facebook.com/plugins/customer_chat/SDK/?app_id=&attribution=biz_inbox&channel=https%3A%2F%2Fstaticxx.facebook.com%2Fx%2Fconnect%2Fxd_arbiter%2F%3Fversion%3D46%23cb%3Df3609397338aa88%26domain%3Dmc-educate.eu%26is_canvas%3Dfalse%26origin%3Dhttps%253A%252F%252Fmc-educate.eu%252Ff1f516a8126c594%26relation%3Dparent.parent¤t_url=https%3A%2F%2Fmc-educate.eu%2F&event_name=chat_plugin_sdk_facade_create&is_loaded_by_facade=true&loading_time=0&locale=el_GR&log_id=238d56bd-2020-454c-8b60-5d0f8d7f937a&page_id=102232212367495&request_time=1675389327685&sdk=joey&should_use_new_domain=false&suppress_http_code=1
200 OK 0 B URL HTTP/2 www.facebook.com/plugins/customer_chat/SDK/?app_id=&attribution=biz_inbox&channel=https%3A%2F%2Fstaticxx.facebook.com%2Fx%2Fconnect%2Fxd_arbiter%2F%3Fversion%3D46%23cb%3Df3609397338aa88%26domain%3Dmc-educate.eu%26is_canvas%3Dfalse%26origin%3Dhttps%253A%252F%252Fmc-educate.eu%252Ff1f516a8126c594%26relation%3Dparent.parent¤t_url=https%3A%2F%2Fmc-educate.eu%2F&event_name=chat_plugin_sdk_facade_create&is_loaded_by_facade=true&loading_time=0&locale=el_GR&log_id=238d56bd-2020-454c-8b60-5d0f8d7f937a&page_id=102232212367495&request_time=1675389327685&sdk=joey&should_use_new_domain=false&suppress_http_code=1
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /plugins/customer_chat/SDK/?app_id=&attribution=biz_inbox&channel=https%3A%2F%2Fstaticxx.facebook.com%2Fx%2Fconnect%2Fxd_arbiter%2F%3Fversion%3D46%23cb%3Df3609397338aa88%26domain%3Dmc-educate.eu%26is_canvas%3Dfalse%26origin%3Dhttps%253A%252F%252Fmc-educate.eu%252Ff1f516a8126c594%26relation%3Dparent.parent¤t_url=https%3A%2F%2Fmc-educate.eu%2F&event_name=chat_plugin_sdk_facade_create&is_loaded_by_facade=true&loading_time=0&locale=el_GR&log_id=238d56bd-2020-454c-8b60-5d0f8d7f937a&page_id=102232212367495&request_time=1675389327685&sdk=joey&should_use_new_domain=false&suppress_http_code=1 HTTP/1.1
Host: www.facebook.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-type: application/x-www-form-urlencoded
Origin: https://mc-educate.eu
Connection: keep-alive
Referer: https://mc-educate.eu/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
report-to: {"max_age":86400,"endpoints":[{"url":"https:\/\/www.facebook.com\/browser_reporting\/?minimize=0"}],"group":"coep_report"}, {"max_age":259200,"endpoints":[{"url":"https:\/\/www.facebook.com\/ajax\/browser_error_reports\/?device_level=unknown"}]}, {"max_age":3600,"endpoints":[{"url":"https:\/\/www.facebook.com\/ajax\/browser_error_reports\/?device_level=unknown"}],"group":"network-errors"}
content-security-policy: default-src data: blob: 'self' https://*.fbsbx.com 'unsafe-inline' *.facebook.com 'unsafe-eval' *.fbcdn.net;script-src *.facebook.com *.fbcdn.net *.facebook.net *.google-analytics.com *.google.com 127.0.0.1:* 'unsafe-inline' 'unsafe-eval' blob: data: 'self' connect.facebook.net;style-src fonts.googleapis.com *.fbcdn.net data: *.facebook.com 'unsafe-inline';connect-src *.facebook.com facebook.com *.fbcdn.net *.facebook.net wss://*.facebook.com:* wss://*.whatsapp.com:* wss://*.fbcdn.net attachment.fbsbx.com ws://localhost:* blob: *.cdninstagram.com 'self' http://localhost:3103 wss://gateway.facebook.com wss://edge-chat.facebook.com wss://snaptu-d.facebook.com wss://kaios-d.facebook.com/ v.whatsapp.net *.fbsbx.com *.fb.com;font-src data: *.gstatic.com *.facebook.com *.fbcdn.net *.fbsbx.com;img-src *.fbcdn.net *.facebook.com data: https://*.fbsbx.com *.tenor.co media.tenor.com facebook.com *.cdninstagram.com fbsbx.com fbcdn.net *.giphy.com connect.facebook.net *.carriersignal.info blob: android-webview-video-poster: googleads.g.doubleclick.net www.googleadservices.com *.whatsapp.net *.fb.com *.oculuscdn.com;media-src *.cdninstagram.com blob: *.fbcdn.net *.fbsbx.com www.facebook.com *.facebook.com https://*.giphy.com data:;frame-src *.doubleclick.net *.google.com *.facebook.com www.googleadservices.com *.fbsbx.com fbsbx.com data: www.instagram.com *.fbcdn.net https://paywithmybank.com https://sandbox.paywithmybank.com;worker-src blob: *.facebook.com data:;block-all-mixed-content;upgrade-insecure-requests;
x-fb-rlafr: 0
document-policy: force-load-at-top
nel: {"report_to":"network-errors","max_age":3600,"failure_fraction":0.01}
cross-origin-embedder-policy-report-only: require-corp;report-to="coep_report"
cross-origin-opener-policy: same-origin-allow-popups
pragma: no-cache
cache-control: private, no-cache, no-store, must-revalidate
expires: Sat, 01 Jan 2000 00:00:00 GMT
x-content-type-options: nosniff
x-xss-protection: 0
x-frame-options: DENY
access-control-allow-origin: https://mc-educate.eu
strict-transport-security: max-age=15552000; preload
content-type: text/html; charset="utf-8"
x-fb-debug: lDyNLaKvFo6KNFvvWmi9GaaAaNKogZsqTQ2EvcqCUFF5J9GDnvfIi+EEk8j8+slauCM1vwBpVYmH/BsYuHyTsQ==
content-length: 0
date: Fri, 03 Feb 2023 01:54:59 GMT
priority: u=3,i
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
www.facebook.com/plugins/customer_chat/facade/?app_id=&attribution=biz_inbox&channel=https%3A%2F%2Fstaticxx.facebook.com%2Fx%2Fconnect%2Fxd_arbiter%2F%3Fversion%3D46%23cb%3Df3609397338aa88%26domain%3Dmc-educate.eu%26is_canvas%3Dfalse%26origin%3Dhttps%253A%252F%252Fmc-educate.eu%252Ff1f516a8126c594%26relation%3Dparent.parent¤t_url=https%3A%2F%2Fmc-educate.eu%2F&is_loaded_by_facade=true&locale=el_GR&log_id=238d56bd-2020-454c-8b60-5d0f8d7f937a&page_id=102232212367495&request_time=1675389327685&sdk=joey&should_use_new_domain=false&suppress_http_code=1
200 OK 753 B URL HTTP/2 www.facebook.com/plugins/customer_chat/facade/?app_id=&attribution=biz_inbox&channel=https%3A%2F%2Fstaticxx.facebook.com%2Fx%2Fconnect%2Fxd_arbiter%2F%3Fversion%3D46%23cb%3Df3609397338aa88%26domain%3Dmc-educate.eu%26is_canvas%3Dfalse%26origin%3Dhttps%253A%252F%252Fmc-educate.eu%252Ff1f516a8126c594%26relation%3Dparent.parent¤t_url=https%3A%2F%2Fmc-educate.eu%2F&is_loaded_by_facade=true&locale=el_GR&log_id=238d56bd-2020-454c-8b60-5d0f8d7f937a&page_id=102232212367495&request_time=1675389327685&sdk=joey&should_use_new_domain=false&suppress_http_code=1
IP
File type ASCII text, with very long lines (1299), with no line terminators
Hash 6a740969e179213b37e763577d439846
febd1bb087dfcb72b9c843316552a08c07ff4fe9
a53e63eef18020359befe354983bfa2b10001c54fa476cee94cfb6f65550fe88
GET /plugins/customer_chat/facade/?app_id=&attribution=biz_inbox&channel=https%3A%2F%2Fstaticxx.facebook.com%2Fx%2Fconnect%2Fxd_arbiter%2F%3Fversion%3D46%23cb%3Df3609397338aa88%26domain%3Dmc-educate.eu%26is_canvas%3Dfalse%26origin%3Dhttps%253A%252F%252Fmc-educate.eu%252Ff1f516a8126c594%26relation%3Dparent.parent¤t_url=https%3A%2F%2Fmc-educate.eu%2F&is_loaded_by_facade=true&locale=el_GR&log_id=238d56bd-2020-454c-8b60-5d0f8d7f937a&page_id=102232212367495&request_time=1675389327685&sdk=joey&should_use_new_domain=false&suppress_http_code=1 HTTP/1.1
Host: www.facebook.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-type: application/x-www-form-urlencoded
Origin: https://mc-educate.eu
Connection: keep-alive
Referer: https://mc-educate.eu/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
vary: Accept-Encoding
content-encoding: br
content-type: application/json; charset=utf-8
report-to: {"max_age":86400,"endpoints":[{"url":"https:\/\/www.facebook.com\/browser_reporting\/?minimize=0"}],"group":"coep_report"}, {"max_age":259200,"endpoints":[{"url":"https:\/\/www.facebook.com\/ajax\/browser_error_reports\/?device_level=unknown"}]}, {"max_age":3600,"endpoints":[{"url":"https:\/\/www.facebook.com\/ajax\/browser_error_reports\/?device_level=unknown"}],"group":"network-errors"}
content-security-policy: default-src data: blob: 'self' https://*.fbsbx.com 'unsafe-inline' *.facebook.com 'unsafe-eval' *.fbcdn.net;script-src *.facebook.com *.fbcdn.net *.facebook.net *.google-analytics.com *.google.com 127.0.0.1:* 'unsafe-inline' 'unsafe-eval' blob: data: 'self' connect.facebook.net;style-src fonts.googleapis.com *.fbcdn.net data: *.facebook.com 'unsafe-inline';connect-src *.facebook.com facebook.com *.fbcdn.net *.facebook.net wss://*.facebook.com:* wss://*.whatsapp.com:* wss://*.fbcdn.net attachment.fbsbx.com ws://localhost:* blob: *.cdninstagram.com 'self' http://localhost:3103 wss://gateway.facebook.com wss://edge-chat.facebook.com wss://snaptu-d.facebook.com wss://kaios-d.facebook.com/ v.whatsapp.net *.fbsbx.com *.fb.com;font-src data: *.gstatic.com *.facebook.com *.fbcdn.net *.fbsbx.com;img-src *.fbcdn.net *.facebook.com data: https://*.fbsbx.com *.tenor.co media.tenor.com facebook.com *.cdninstagram.com fbsbx.com fbcdn.net *.giphy.com connect.facebook.net *.carriersignal.info blob: android-webview-video-poster: googleads.g.doubleclick.net www.googleadservices.com *.whatsapp.net *.fb.com *.oculuscdn.com;media-src *.cdninstagram.com blob: *.fbcdn.net *.fbsbx.com www.facebook.com *.facebook.com https://*.giphy.com data:;frame-src *.doubleclick.net *.google.com *.facebook.com www.googleadservices.com *.fbsbx.com fbsbx.com data: www.instagram.com *.fbcdn.net https://paywithmybank.com https://sandbox.paywithmybank.com;worker-src blob: *.facebook.com data:;block-all-mixed-content;upgrade-insecure-requests;
x-fb-rlafr: 0
document-policy: force-load-at-top
nel: {"report_to":"network-errors","max_age":3600,"failure_fraction":0.01}
cross-origin-embedder-policy-report-only: require-corp;report-to="coep_report"
cross-origin-opener-policy: same-origin-allow-popups
pragma: no-cache
cache-control: private, no-cache, no-store, must-revalidate
expires: Sat, 01 Jan 2000 00:00:00 GMT
x-content-type-options: nosniff
x-xss-protection: 0
x-frame-options: DENY
access-control-allow-origin: https://mc-educate.eu
strict-transport-security: max-age=15552000; preload
x-fb-debug: fbfbNZ46AS39fHGQ/H1zUUb4nyP9bSn0OR/oQYPmrQoE2pGVuwPv7B0uDkdJejIrBYrCNKyxwv9SmtU4lvKUQw==
date: Fri, 03 Feb 2023 01:54:59 GMT
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
www.facebook.com/plugins/customer_chat/SDK/?app_id=&attribution=biz_inbox&channel=https%3A%2F%2Fstaticxx.facebook.com%2Fx%2Fconnect%2Fxd_arbiter%2F%3Fversion%3D46%23cb%3Df3609397338aa88%26domain%3Dmc-educate.eu%26is_canvas%3Dfalse%26origin%3Dhttps%253A%252F%252Fmc-educate.eu%252Ff1f516a8126c594%26relation%3Dparent.parent¤t_url=https%3A%2F%2Fmc-educate.eu%2F&event_name=chat_plugin_sdk_facade_load&is_loaded_by_facade=true&loading_time=162&locale=el_GR&log_id=238d56bd-2020-454c-8b60-5d0f8d7f937a&page_id=102232212367495&request_time=1675389327847&sdk=joey&should_use_new_domain=false&suppress_http_code=1
200 OK 0 B URL HTTP/2 www.facebook.com/plugins/customer_chat/SDK/?app_id=&attribution=biz_inbox&channel=https%3A%2F%2Fstaticxx.facebook.com%2Fx%2Fconnect%2Fxd_arbiter%2F%3Fversion%3D46%23cb%3Df3609397338aa88%26domain%3Dmc-educate.eu%26is_canvas%3Dfalse%26origin%3Dhttps%253A%252F%252Fmc-educate.eu%252Ff1f516a8126c594%26relation%3Dparent.parent¤t_url=https%3A%2F%2Fmc-educate.eu%2F&event_name=chat_plugin_sdk_facade_load&is_loaded_by_facade=true&loading_time=162&locale=el_GR&log_id=238d56bd-2020-454c-8b60-5d0f8d7f937a&page_id=102232212367495&request_time=1675389327847&sdk=joey&should_use_new_domain=false&suppress_http_code=1
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /plugins/customer_chat/SDK/?app_id=&attribution=biz_inbox&channel=https%3A%2F%2Fstaticxx.facebook.com%2Fx%2Fconnect%2Fxd_arbiter%2F%3Fversion%3D46%23cb%3Df3609397338aa88%26domain%3Dmc-educate.eu%26is_canvas%3Dfalse%26origin%3Dhttps%253A%252F%252Fmc-educate.eu%252Ff1f516a8126c594%26relation%3Dparent.parent¤t_url=https%3A%2F%2Fmc-educate.eu%2F&event_name=chat_plugin_sdk_facade_load&is_loaded_by_facade=true&loading_time=162&locale=el_GR&log_id=238d56bd-2020-454c-8b60-5d0f8d7f937a&page_id=102232212367495&request_time=1675389327847&sdk=joey&should_use_new_domain=false&suppress_http_code=1 HTTP/1.1
Host: www.facebook.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-type: application/x-www-form-urlencoded
Origin: https://mc-educate.eu
Connection: keep-alive
Referer: https://mc-educate.eu/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
report-to: {"max_age":86400,"endpoints":[{"url":"https:\/\/www.facebook.com\/browser_reporting\/?minimize=0"}],"group":"coep_report"}, {"max_age":259200,"endpoints":[{"url":"https:\/\/www.facebook.com\/ajax\/browser_error_reports\/?device_level=unknown"}]}, {"max_age":3600,"endpoints":[{"url":"https:\/\/www.facebook.com\/ajax\/browser_error_reports\/?device_level=unknown"}],"group":"network-errors"}
content-security-policy: default-src data: blob: 'self' https://*.fbsbx.com 'unsafe-inline' *.facebook.com 'unsafe-eval' *.fbcdn.net;script-src *.facebook.com *.fbcdn.net *.facebook.net *.google-analytics.com *.google.com 127.0.0.1:* 'unsafe-inline' 'unsafe-eval' blob: data: 'self' connect.facebook.net;style-src fonts.googleapis.com *.fbcdn.net data: *.facebook.com 'unsafe-inline';connect-src *.facebook.com facebook.com *.fbcdn.net *.facebook.net wss://*.facebook.com:* wss://*.whatsapp.com:* wss://*.fbcdn.net attachment.fbsbx.com ws://localhost:* blob: *.cdninstagram.com 'self' http://localhost:3103 wss://gateway.facebook.com wss://edge-chat.facebook.com wss://snaptu-d.facebook.com wss://kaios-d.facebook.com/ v.whatsapp.net *.fbsbx.com *.fb.com;font-src data: *.gstatic.com *.facebook.com *.fbcdn.net *.fbsbx.com;img-src *.fbcdn.net *.facebook.com data: https://*.fbsbx.com *.tenor.co media.tenor.com facebook.com *.cdninstagram.com fbsbx.com fbcdn.net *.giphy.com connect.facebook.net *.carriersignal.info blob: android-webview-video-poster: googleads.g.doubleclick.net www.googleadservices.com *.whatsapp.net *.fb.com *.oculuscdn.com;media-src *.cdninstagram.com blob: *.fbcdn.net *.fbsbx.com www.facebook.com *.facebook.com https://*.giphy.com data:;frame-src *.doubleclick.net *.google.com *.facebook.com www.googleadservices.com *.fbsbx.com fbsbx.com data: www.instagram.com *.fbcdn.net https://paywithmybank.com https://sandbox.paywithmybank.com;worker-src blob: *.facebook.com data:;block-all-mixed-content;upgrade-insecure-requests;
x-fb-rlafr: 0
document-policy: force-load-at-top
nel: {"report_to":"network-errors","max_age":3600,"failure_fraction":0.01}
cross-origin-embedder-policy-report-only: require-corp;report-to="coep_report"
cross-origin-opener-policy: same-origin-allow-popups
pragma: no-cache
cache-control: private, no-cache, no-store, must-revalidate
expires: Sat, 01 Jan 2000 00:00:00 GMT
x-content-type-options: nosniff
x-xss-protection: 0
x-frame-options: DENY
access-control-allow-origin: https://mc-educate.eu
strict-transport-security: max-age=15552000; preload
content-type: text/html; charset="utf-8"
x-fb-debug: gHFj4CQQ6vAACCzlVDzIGa1wkdX/JAWHvJYmy03xQWbVi+9AKS4jWyRwrV8vCG1ibomfeMs6rJJdcYAp7BIcOA==
content-length: 0
date: Fri, 03 Feb 2023 01:54:59 GMT
priority: u=3,i
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
pagead2.googlesyndication.com/pcs/activeview?xai=AKAOjsuod6ySFkI0p7o3t7AVq3EbhKMtmAYUaMJ8UoiPRQZhHxO1NjQTErhavBBBbbzIvYo5A9i8-L7zJddUdbjYuv8Maj0KRf2GQNlx8_TIuUBVyN6JL-NGaBtEC1aLTOZDol8MBeObDw&sai=AMfl-YSiby3Bzoxvh7H6Ll7h1mut6mc6wWoBv-T2EdzmnuJv1apiXm8oN1W3wTCTfQPNU29fIy1xD6F0W6kS3F8CqUEItsiZpmKKoJuu8BrTvMztbL4GksWVgQ1TsliTJ3uZTUFyzZQO2nOUe76ksA&sig=Cg0ArKJSzCsnMtWyzT-8EAE&cid=CAQSTADUE5ymN0j61dYkkG64n6ozpanhQzpNdVdlxC7ONJKpO9xVV4TTaPtNNkY9bPmo6J_hwIRwNBkIFMJB7r7pSa7npUp1OH7MgMjOrTEYAQ&id=lidar2&mcvt=1000&p=0,0,280,1200&mtos=1000,1000,1000,1000,1000&tos=1000,0,0,0,0&v=20230201&bin=7&avms=nio&bs=0,0&mc=1&if=1&vu=1&app=0&itpl=22&adk=1213588912&rs=2&la=1&cr=0&vs=4&r=v&rst=1675389325861&rpt=1334&met=mue&wmsd=0&pbe=0&vae=0&spb=0
200 OK 42 B URL HTTP/2 pagead2.googlesyndication.com/pcs/activeview?xai=AKAOjsuod6ySFkI0p7o3t7AVq3EbhKMtmAYUaMJ8UoiPRQZhHxO1NjQTErhavBBBbbzIvYo5A9i8-L7zJddUdbjYuv8Maj0KRf2GQNlx8_TIuUBVyN6JL-NGaBtEC1aLTOZDol8MBeObDw&sai=AMfl-YSiby3Bzoxvh7H6Ll7h1mut6mc6wWoBv-T2EdzmnuJv1apiXm8oN1W3wTCTfQPNU29fIy1xD6F0W6kS3F8CqUEItsiZpmKKoJuu8BrTvMztbL4GksWVgQ1TsliTJ3uZTUFyzZQO2nOUe76ksA&sig=Cg0ArKJSzCsnMtWyzT-8EAE&cid=CAQSTADUE5ymN0j61dYkkG64n6ozpanhQzpNdVdlxC7ONJKpO9xVV4TTaPtNNkY9bPmo6J_hwIRwNBkIFMJB7r7pSa7npUp1OH7MgMjOrTEYAQ&id=lidar2&mcvt=1000&p=0,0,280,1200&mtos=1000,1000,1000,1000,1000&tos=1000,0,0,0,0&v=20230201&bin=7&avms=nio&bs=0,0&mc=1&if=1&vu=1&app=0&itpl=22&adk=1213588912&rs=2&la=1&cr=0&vs=4&r=v&rst=1675389325861&rpt=1334&met=mue&wmsd=0&pbe=0&vae=0&spb=0
IP
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /pcs/activeview?xai=AKAOjsuod6ySFkI0p7o3t7AVq3EbhKMtmAYUaMJ8UoiPRQZhHxO1NjQTErhavBBBbbzIvYo5A9i8-L7zJddUdbjYuv8Maj0KRf2GQNlx8_TIuUBVyN6JL-NGaBtEC1aLTOZDol8MBeObDw&sai=AMfl-YSiby3Bzoxvh7H6Ll7h1mut6mc6wWoBv-T2EdzmnuJv1apiXm8oN1W3wTCTfQPNU29fIy1xD6F0W6kS3F8CqUEItsiZpmKKoJuu8BrTvMztbL4GksWVgQ1TsliTJ3uZTUFyzZQO2nOUe76ksA&sig=Cg0ArKJSzCsnMtWyzT-8EAE&cid=CAQSTADUE5ymN0j61dYkkG64n6ozpanhQzpNdVdlxC7ONJKpO9xVV4TTaPtNNkY9bPmo6J_hwIRwNBkIFMJB7r7pSa7npUp1OH7MgMjOrTEYAQ&id=lidar2&mcvt=1000&p=0,0,280,1200&mtos=1000,1000,1000,1000,1000&tos=1000,0,0,0,0&v=20230201&bin=7&avms=nio&bs=0,0&mc=1&if=1&vu=1&app=0&itpl=22&adk=1213588912&rs=2&la=1&cr=0&vs=4&r=v&rst=1675389325861&rpt=1334&met=mue&wmsd=0&pbe=0&vae=0&spb=0 HTTP/1.1
Host: pagead2.googlesyndication.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://googleads.g.doubleclick.net/
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
content-type: image/gif
date: Fri, 03 Feb 2023 01:54:59 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
pagead2.googlesyndication.com/pcs/activeview?xai=AKAOjsuHar9TwAOr4o-rkS9LE9dbXbWyB00wNMimUZaOgHxyQhcoujBaTEj-KRzP4VdNf6Q43h5t9PDpLuPTM5QWuqpWUXP1ft-OBGZMGWqgZWxAZPrVHOlP55VGPWtae-0vQdnlS71Z1w&sai=AMfl-YSfzRWBAwUFYzmOfdTFVG2KmzwNOoL2yNkeH03sVFh4EoFBRbroPJmGNWSxiF4Ivc8snsUlrvbMdQrU6k6GbvE0ZwXx7UnYl9oJzUNDTrGqGkzYBvXVhZPgtvtdAOmAaFBdYM3kO1hnp2C5jw&sig=Cg0ArKJSzHkVQSvY858hEAE&cid=CAQSTADUE5ymQ93_hC0-Sv2e3CcSutNXcPaiEqnYc5KVHKe5RGAV7C1cVy-O0yKvYjVpxdL-Ou_3ycZdT8Vk57KGjeJLlopOMxSX2Ox2vNwYAQ&id=lidar2&mcvt=1006&p=0,0,124,1005&mtos=74,921,1006,1006,1006&tos=74,847,85,0,0&v=20230201&bin=7&avms=nio&bs=0,0&mc=1&if=1&vu=1&app=0&itpl=22&adk=1812271801&rs=2&la=0&cr=0&vs=4&r=v&rst=1675389326916&rpt=550&met=mue&wmsd=0&pbe=0&vae=0&spb=0
200 OK 42 B URL HTTP/2 pagead2.googlesyndication.com/pcs/activeview?xai=AKAOjsuHar9TwAOr4o-rkS9LE9dbXbWyB00wNMimUZaOgHxyQhcoujBaTEj-KRzP4VdNf6Q43h5t9PDpLuPTM5QWuqpWUXP1ft-OBGZMGWqgZWxAZPrVHOlP55VGPWtae-0vQdnlS71Z1w&sai=AMfl-YSfzRWBAwUFYzmOfdTFVG2KmzwNOoL2yNkeH03sVFh4EoFBRbroPJmGNWSxiF4Ivc8snsUlrvbMdQrU6k6GbvE0ZwXx7UnYl9oJzUNDTrGqGkzYBvXVhZPgtvtdAOmAaFBdYM3kO1hnp2C5jw&sig=Cg0ArKJSzHkVQSvY858hEAE&cid=CAQSTADUE5ymQ93_hC0-Sv2e3CcSutNXcPaiEqnYc5KVHKe5RGAV7C1cVy-O0yKvYjVpxdL-Ou_3ycZdT8Vk57KGjeJLlopOMxSX2Ox2vNwYAQ&id=lidar2&mcvt=1006&p=0,0,124,1005&mtos=74,921,1006,1006,1006&tos=74,847,85,0,0&v=20230201&bin=7&avms=nio&bs=0,0&mc=1&if=1&vu=1&app=0&itpl=22&adk=1812271801&rs=2&la=0&cr=0&vs=4&r=v&rst=1675389326916&rpt=550&met=mue&wmsd=0&pbe=0&vae=0&spb=0
IP
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /pcs/activeview?xai=AKAOjsuHar9TwAOr4o-rkS9LE9dbXbWyB00wNMimUZaOgHxyQhcoujBaTEj-KRzP4VdNf6Q43h5t9PDpLuPTM5QWuqpWUXP1ft-OBGZMGWqgZWxAZPrVHOlP55VGPWtae-0vQdnlS71Z1w&sai=AMfl-YSfzRWBAwUFYzmOfdTFVG2KmzwNOoL2yNkeH03sVFh4EoFBRbroPJmGNWSxiF4Ivc8snsUlrvbMdQrU6k6GbvE0ZwXx7UnYl9oJzUNDTrGqGkzYBvXVhZPgtvtdAOmAaFBdYM3kO1hnp2C5jw&sig=Cg0ArKJSzHkVQSvY858hEAE&cid=CAQSTADUE5ymQ93_hC0-Sv2e3CcSutNXcPaiEqnYc5KVHKe5RGAV7C1cVy-O0yKvYjVpxdL-Ou_3ycZdT8Vk57KGjeJLlopOMxSX2Ox2vNwYAQ&id=lidar2&mcvt=1006&p=0,0,124,1005&mtos=74,921,1006,1006,1006&tos=74,847,85,0,0&v=20230201&bin=7&avms=nio&bs=0,0&mc=1&if=1&vu=1&app=0&itpl=22&adk=1812271801&rs=2&la=0&cr=0&vs=4&r=v&rst=1675389326916&rpt=550&met=mue&wmsd=0&pbe=0&vae=0&spb=0 HTTP/1.1
Host: pagead2.googlesyndication.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://googleads.g.doubleclick.net/
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
content-type: image/gif
date: Fri, 03 Feb 2023 01:54:59 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
mc-educate.eu//templates/shaper_gazette/js/owl.carousel.min.js
200 OK 0 B URL HTTP/2 mc-educate.eu//templates/shaper_gazette/js/owl.carousel.min.js
IP
ASN #24940 Hetzner Online GmbH
Analyzer Verdict Alert fortinet Phishing
GET //templates/shaper_gazette/js/owl.carousel.min.js HTTP/1.1
Host: mc-educate.eu
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mc-educate.eu/
Cookie: 86cb9d4cd46a27b6071b3184e9d6e5c7=g1jcn450qkkk5j2vasbt73415n
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 03 Feb 2023 01:54:54 GMT
content-type: application/javascript
last-modified: Thu, 13 Jan 2022 12:17:35 GMT
etag: W/"61e0185f-9dd1"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
mc-educate.eu/components/com_sppagebuilder/assets/css/jquery.bxslider.min.css
200 OK 0 B URL HTTP/2 mc-educate.eu/components/com_sppagebuilder/assets/css/jquery.bxslider.min.css
IP
ASN #24940 Hetzner Online GmbH
GET /components/com_sppagebuilder/assets/css/jquery.bxslider.min.css HTTP/1.1
Host: mc-educate.eu
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mc-educate.eu/
Cookie: 86cb9d4cd46a27b6071b3184e9d6e5c7=g1jcn450qkkk5j2vasbt73415n
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 03 Feb 2023 01:54:54 GMT
content-type: text/css
last-modified: Fri, 27 Jan 2023 12:28:15 GMT
etag: W/"63d3c35f-882"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
mc-educate.eu/media/com_acymailing/js/acymailing_module.js?v=5104
200 OK 0 B URL HTTP/2 mc-educate.eu/media/com_acymailing/js/acymailing_module.js?v=5104
IP
ASN #24940 Hetzner Online GmbH
Analyzer Verdict Alert fortinet Phishing
GET /media/com_acymailing/js/acymailing_module.js?v=5104 HTTP/1.1
Host: mc-educate.eu
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mc-educate.eu/
Cookie: 86cb9d4cd46a27b6071b3184e9d6e5c7=g1jcn450qkkk5j2vasbt73415n
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 03 Feb 2023 01:54:54 GMT
content-type: application/javascript
last-modified: Thu, 06 Jan 2022 18:57:34 GMT
etag: W/"61d73b9e-37a4"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
mc-educate.eu/components/com_sppagebuilder/assets/js/jquery.magnific-popup.min.js
200 OK 0 B URL HTTP/2 mc-educate.eu/components/com_sppagebuilder/assets/js/jquery.magnific-popup.min.js
IP
ASN #24940 Hetzner Online GmbH
Analyzer Verdict Alert fortinet Phishing
GET /components/com_sppagebuilder/assets/js/jquery.magnific-popup.min.js HTTP/1.1
Host: mc-educate.eu
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mc-educate.eu/
Cookie: 86cb9d4cd46a27b6071b3184e9d6e5c7=g1jcn450qkkk5j2vasbt73415n
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 03 Feb 2023 01:54:54 GMT
content-type: application/javascript
last-modified: Fri, 27 Jan 2023 12:28:15 GMT
etag: W/"63d3c35f-4efb"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
mc-educate.eu/components/com_sppagebuilder/assets/js/sppagebuilder.js?73ee45a029f5bc0e36fdf5699a0b5203
200 OK 0 B URL HTTP/2 mc-educate.eu/components/com_sppagebuilder/assets/js/sppagebuilder.js?73ee45a029f5bc0e36fdf5699a0b5203
IP
ASN #24940 Hetzner Online GmbH
Analyzer Verdict Alert fortinet Phishing
GET /components/com_sppagebuilder/assets/js/sppagebuilder.js?73ee45a029f5bc0e36fdf5699a0b5203 HTTP/1.1
Host: mc-educate.eu
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mc-educate.eu/
Cookie: 86cb9d4cd46a27b6071b3184e9d6e5c7=g1jcn450qkkk5j2vasbt73415n
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 03 Feb 2023 01:54:54 GMT
content-type: application/javascript
last-modified: Fri, 27 Jan 2023 12:28:15 GMT
etag: W/"63d3c35f-1220e"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
mc-educate.eu/templates/shaper_gazette/css/fa-v4-shims.css
200 OK 0 B URL HTTP/2 mc-educate.eu/templates/shaper_gazette/css/fa-v4-shims.css
IP
ASN #24940 Hetzner Online GmbH
GET /templates/shaper_gazette/css/fa-v4-shims.css HTTP/1.1
Host: mc-educate.eu
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mc-educate.eu/
Cookie: 86cb9d4cd46a27b6071b3184e9d6e5c7=g1jcn450qkkk5j2vasbt73415n
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 03 Feb 2023 01:54:54 GMT
content-type: text/css
last-modified: Fri, 07 Jan 2022 11:51:13 GMT
etag: W/"61d82931-4419"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
mc-educate.eu/components/com_sppagebuilder/assets/js/jquery.bxslider.min.js
200 OK 0 B URL HTTP/2 mc-educate.eu/components/com_sppagebuilder/assets/js/jquery.bxslider.min.js
IP
ASN #24940 Hetzner Online GmbH
Analyzer Verdict Alert fortinet Phishing
GET /components/com_sppagebuilder/assets/js/jquery.bxslider.min.js HTTP/1.1
Host: mc-educate.eu
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mc-educate.eu/
Cookie: 86cb9d4cd46a27b6071b3184e9d6e5c7=g1jcn450qkkk5j2vasbt73415n
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 03 Feb 2023 01:54:54 GMT
content-type: application/javascript
last-modified: Fri, 27 Jan 2023 12:28:15 GMT
etag: W/"63d3c35f-5e05"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
mc-educate.eu/modules/mod_sp_poll/assets/js/script.js
200 OK 0 B URL HTTP/2 mc-educate.eu/modules/mod_sp_poll/assets/js/script.js
IP
ASN #24940 Hetzner Online GmbH
Analyzer Verdict Alert fortinet Phishing
GET /modules/mod_sp_poll/assets/js/script.js HTTP/1.1
Host: mc-educate.eu
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mc-educate.eu/
Cookie: 86cb9d4cd46a27b6071b3184e9d6e5c7=g1jcn450qkkk5j2vasbt73415n
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 03 Feb 2023 01:54:54 GMT
content-type: application/javascript
last-modified: Thu, 06 Jan 2022 18:57:35 GMT
etag: W/"61d73b9f-5d2"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
mc-educate.eu/components/com_sppagebuilder/assets/css/sppagebuilder.css?73ee45a029f5bc0e36fdf5699a0b5203
200 OK 0 B URL HTTP/2 mc-educate.eu/components/com_sppagebuilder/assets/css/sppagebuilder.css?73ee45a029f5bc0e36fdf5699a0b5203
IP
ASN #24940 Hetzner Online GmbH
GET /components/com_sppagebuilder/assets/css/sppagebuilder.css?73ee45a029f5bc0e36fdf5699a0b5203 HTTP/1.1
Host: mc-educate.eu
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mc-educate.eu/
Cookie: 86cb9d4cd46a27b6071b3184e9d6e5c7=g1jcn450qkkk5j2vasbt73415n
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 03 Feb 2023 01:54:54 GMT
content-type: text/css
last-modified: Fri, 27 Jan 2023 12:28:15 GMT
etag: W/"63d3c35f-2c45a"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
mc-educate.eu/media/com_acymailing/css/module_default.css?v=1641495454
200 OK 0 B URL HTTP/2 mc-educate.eu/media/com_acymailing/css/module_default.css?v=1641495454
IP
ASN #24940 Hetzner Online GmbH
Analyzer Verdict Alert fortinet Phishing
GET /media/com_acymailing/css/module_default.css?v=1641495454 HTTP/1.1
Host: mc-educate.eu
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mc-educate.eu/
Cookie: 86cb9d4cd46a27b6071b3184e9d6e5c7=g1jcn450qkkk5j2vasbt73415n
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 03 Feb 2023 01:54:54 GMT
content-type: text/css
last-modified: Thu, 06 Jan 2022 18:57:34 GMT
etag: W/"61d73b9e-93b"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
mc-educate.eu/templates/shaper_gazette/js/main.js
200 OK 0 B URL HTTP/2 mc-educate.eu/templates/shaper_gazette/js/main.js
IP
ASN #24940 Hetzner Online GmbH
Analyzer Verdict Alert fortinet Phishing
GET /templates/shaper_gazette/js/main.js HTTP/1.1
Host: mc-educate.eu
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mc-educate.eu/
Cookie: 86cb9d4cd46a27b6071b3184e9d6e5c7=g1jcn450qkkk5j2vasbt73415n
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 03 Feb 2023 01:54:54 GMT
content-type: application/javascript
last-modified: Fri, 07 Jan 2022 11:51:13 GMT
etag: W/"61d82931-2db4"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
mc-educate.eu/templates/shaper_gazette/css/presets/preset1.css
200 OK 0 B URL HTTP/2 mc-educate.eu/templates/shaper_gazette/css/presets/preset1.css
IP
ASN #24940 Hetzner Online GmbH
GET /templates/shaper_gazette/css/presets/preset1.css HTTP/1.1
Host: mc-educate.eu
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mc-educate.eu/
Cookie: 86cb9d4cd46a27b6071b3184e9d6e5c7=g1jcn450qkkk5j2vasbt73415n
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 03 Feb 2023 01:54:54 GMT
content-type: text/css
last-modified: Sat, 11 Jun 2022 09:44:47 GMT
etag: W/"62a4640f-c45"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
socialplugin.facebook.net/new_domain_gating/?endpoint=customerchat&page_id=102232212367495&suppress_http_code=1
200 OK 0 B URL HTTP/2 socialplugin.facebook.net/new_domain_gating/?endpoint=customerchat&page_id=102232212367495&suppress_http_code=1
IP
GET /new_domain_gating/?endpoint=customerchat&page_id=102232212367495&suppress_http_code=1 HTTP/1.1
Host: socialplugin.facebook.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-type: application/x-www-form-urlencoded
Origin: https://mc-educate.eu
Connection: keep-alive
Referer: https://mc-educate.eu/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
vary: Accept-Encoding
content-encoding: br
content-type: application/json; charset=utf-8
report-to: {"max_age":86400,"endpoints":[{"url":"https:\/\/www.facebook.com\/browser_reporting\/?minimize=0"}],"group":"coep_report"}
content-security-policy: default-src * data: blob: 'self';script-src *.facebook.com *.fbcdn.net *.facebook.net *.google-analytics.com *.google.com 127.0.0.1:* 'unsafe-inline' 'unsafe-eval' blob: data: 'self';style-src data: blob: 'unsafe-inline' *;connect-src *.facebook.com facebook.com *.fbcdn.net *.facebook.net wss://*.facebook.com:* wss://*.whatsapp.com:* wss://*.fbcdn.net attachment.fbsbx.com ws://localhost:* blob: *.cdninstagram.com 'self';block-all-mixed-content;upgrade-insecure-requests;
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
cross-origin-embedder-policy-report-only: require-corp;report-to="coep_report"
cross-origin-opener-policy: same-origin-allow-popups
pragma: no-cache
cache-control: private, no-cache, no-store, must-revalidate
expires: Sat, 01 Jan 2000 00:00:00 GMT
x-content-type-options: nosniff
x-xss-protection: 0
x-frame-options: DENY
access-control-allow-origin: https://mc-educate.eu
x-fb-debug: oOsFu6sVeA++rEO5johm6YTDKzsARvoFluyTWXirlmaaUg+Y9yNCjo3ir2y0pkxrCq+YAcMtYDiCsjx2rMvc3w==
date: Fri, 03 Feb 2023 01:54:58 GMT
priority: u=3,i
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
mc-educate.eu/templates/shaper_gazette/js/bootstrap.bundle.min.js
200 OK 0 B URL HTTP/2 mc-educate.eu/templates/shaper_gazette/js/bootstrap.bundle.min.js
IP
ASN #24940 Hetzner Online GmbH
Analyzer Verdict Alert fortinet Phishing
GET /templates/shaper_gazette/js/bootstrap.bundle.min.js HTTP/1.1
Host: mc-educate.eu
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mc-educate.eu/
Cookie: 86cb9d4cd46a27b6071b3184e9d6e5c7=g1jcn450qkkk5j2vasbt73415n
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 03 Feb 2023 01:54:54 GMT
content-type: application/javascript
last-modified: Fri, 07 Jan 2022 11:51:13 GMT
etag: W/"61d82931-13253"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
94.130.205.31
216.58.207.228
157.240.205.1
96.6.16.24
38.242.148.199
31.13.72.36
93.184.220.29
0.0.0.0