r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 150792cfc458af013998f4ef6bdf5f74
d5179b2dcb11d06f82606bf6eb6648319998d63e
72937c756d3feeae6d04a6f445398b0436bdf559f8c7437e3a3233263943900e
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "72937C756D3FEEAE6D04A6F445398B0436BDF559F8C7437E3A3233263943900E"
Last-Modified: Sat, 26 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11634
Expires: Mon, 28 Nov 2022 05:52:48 GMT
Date: Mon, 28 Nov 2022 02:38:54 GMT
Connection: keep-alive
ocsp.digicert.com/
200 OK 471 B IP
Hash 64b2a23eab6e5ae8c010ec7242be930c
0673e4385ba01a5a245711bab96cafc34f765793
64751d193f7af72431e9689581faffcae1a30ff50ea425697b2b80ff61c87909
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3938
Cache-Control: max-age=118677
Content-Type: application/ocsp-response
Date: Mon, 28 Nov 2022 02:38:54 GMT
Etag: "63833c71-1d7"
Expires: Tue, 29 Nov 2022 11:36:51 GMT
Last-Modified: Sun, 27 Nov 2022 10:31:13 GMT
Server: ECS (ska/F710)
X-Cache: HIT
Content-Length: 471
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 3b56944f0e5716fd4fad2ec18994d4be
61cafa4de31ba960d1145ec37272f6f6b6944e0c
4fd46b0b6a2ea24f5ce175985a3933c04b4c01bd3e32bee2e50a61a65eef7af4
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "4FD46B0B6A2EA24F5CE175985A3933C04B4C01BD3E32BEE2E50A61A65EEF7AF4"
Last-Modified: Sat, 26 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=14299
Expires: Mon, 28 Nov 2022 06:37:13 GMT
Date: Mon, 28 Nov 2022 02:38:54 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash d130218d0e2841f39c99610fe1a2ab90
29fbe1e177ee55c7a61ae0a206afff271cf5f945
6b6d74dccf10c2bc98a91c3388280d7ba1d9596bf8cadd7db0e2f63720b3d152
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Backoff, Alert, Content-Type, Retry-After, Content-Length
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Mon, 28 Nov 2022 02:19:30 GMT
cache-control: public,max-age=3600
content-type: application/json
age: 1164
alt-svc: clear
X-Firefox-Spdy: h2
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain
200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain
IP
File type PEM certificate\012- , ASCII text
Hash 9ebddc2b260d081ebbefee47c037cb28
492bad62a7ca6a74738921ef5ae6f0be5edebf39
74bbb7cba16f7d084a08a0907d47d7496e5c148f904707ec6950f8f6a61027e5
GET /chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: 7nDL8ys0L4lIhU4/BY9dWjgmf19EWJm8zisKI3L9bgfaFSTlO9NKEVrs7XaFhfmayNDWSlYuT3fqi6wufq41lw==
x-amz-request-id: 5Y3PMJGDG0EYX77J
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Mon, 28 Nov 2022 01:44:51 GMT
age: 3243
last-modified: Thu, 10 Nov 2022 09:21:27 GMT
etag: "9ebddc2b260d081ebbefee47c037cb28"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Mon, 28 Nov 2022 02:38:54 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Backoff, Pragma, Alert, Content-Type, ETag, Retry-After, Last-Modified, Content-Length, Cache-Control, Expires
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Mon, 28 Nov 2022 02:08:54 GMT
cache-control: public,max-age=3600
age: 1800
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.digicert.com/
200 OK 471 B IP
Hash a6fee11dfe1b88cd768a0ca3e2bd0c89
59cec9a44a4a92467678afe65f347f68641a2174
50870c499aae4d5dfd6df25a36cd04b6d185b66ef0590e46933984bf52e2483f
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2025
Cache-Control: max-age=111703
Content-Type: application/ocsp-response
Date: Mon, 28 Nov 2022 02:38:54 GMT
Etag: "638328ac-1d7"
Expires: Tue, 29 Nov 2022 09:40:37 GMT
Last-Modified: Sun, 27 Nov 2022 09:06:52 GMT
Server: ECS (ska/F710)
X-Cache: HIT
Content-Length: 471
www.globalgroupofeducation.com/ehe/?i=i&0=aaaa@slurpmail.net
200 OK 37 kB URL HTTP/1.1 www.globalgroupofeducation.com/ehe/?i=i&0=aaaa@slurpmail.net
IP
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (537), with CRLF, LF line terminators
Hash 4dd0f87558556f068971d0dcf02bac7e
ed89baf7ee9880b002c3191593f7611ba753e77b
17087c1c811c88a229e3cc3b0f8addee05c9587b8a88129baa860a33244e66d5
GET /ehe/?i=i&0=aaaa@slurpmail.net HTTP/1.1
Host: www.globalgroupofeducation.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 200 OK
Date: Mon, 28 Nov 2022 02:38:54 GMT
Server: Apache
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate
Pragma: no-cache
Set-Cookie: ci_session=57fcd18af6eedfe6c1c173ca0142996a89717888; expires=Mon, 28-Nov-2022 04:38:54 GMT; Max-Age=7200; path=/; HttpOnly
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: text/html; charset=UTF-8
push.services.mozilla.com/
101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: a9vEnW/tjXiwMKXPaxgvyA==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: 0JlfSkCOE27h8g47D/xIH7kvPf8=
ocsp.digicert.com/
200 OK 280 B IP
Hash c621d4c62f1b73d7db42f083617dc8db
1a78ba537afba7aea6308288c5c41c90de74b3ba
d7b3c5b2e9ea4ad8e5c33649a912d471545651f643b62238beb7d33188146322
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5791
Cache-Control: max-age=156161
Content-Type: application/ocsp-response
Date: Mon, 28 Nov 2022 02:38:55 GMT
Etag: "6383c7a1-118"
Expires: Tue, 29 Nov 2022 22:01:36 GMT
Last-Modified: Sun, 27 Nov 2022 20:25:05 GMT
Server: ECS (ska/F710)
X-Cache: HIT
Content-Length: 280
cdnjs.cloudflare.com/ajax/libs/chosen/1.5.1/chosen.min.css
200 OK 1.8 kB URL HTTP/2 cdnjs.cloudflare.com/ajax/libs/chosen/1.5.1/chosen.min.css
IP
File type ASCII text, with very long lines (10938)
Hash e1e97a0d302eeeb1ab8e4370931689ab
a12f084c2aeac4d3414254272d7d76ac72480678
db74745bd535992b572c632610786294a2d39ba854f8b83af905daf676d5e462
GET /ajax/libs/chosen/1.5.1/chosen.min.css HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.globalgroupofeducation.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Mon, 28 Nov 2022 02:38:55 GMT
content-type: text/css; charset=utf-8
content-length: 1816
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "5eb03e23-2b34"
last-modified: Mon, 04 May 2020 16:09:07 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
expect-ct: max-age=604800, report-uri="https://report-uri.cloudflare.com/cdn-cgi/beacon/expect-ct"
vary: Accept-Encoding
cf-cache-status: HIT
age: 12646404
expires: Sat, 18 Nov 2023 02:38:55 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=NEYj2aRc%2FosVxk6wpxOr3UjGD3DIhMtJM65pGbqac1YhIkWB9Fi9eIUYZYfRpeR6REcSrrHdh6%2FyJJHd8b6%2Ffi28wISjc4YS3Bv%2BfS671H2i58J5Tkj9En4%2Fu4T3FDpi3%2BkAsWAF"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 770fbaea5fa6b517-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash 0ee1d1a60ec1770ec3e880a25c257f5d
015b05feff63bdcf8fae4d1a8c0c83c923a2ca67
b6845619444a37f322c044933a44cf3fd283a18a54d03bad4f76a2ed8c2cbaf6
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 28 Nov 2022 02:38:55 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.digicert.com/
200 OK 280 B IP
Hash c621d4c62f1b73d7db42f083617dc8db
1a78ba537afba7aea6308288c5c41c90de74b3ba
d7b3c5b2e9ea4ad8e5c33649a912d471545651f643b62238beb7d33188146322
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5791
Cache-Control: max-age=156161
Content-Type: application/ocsp-response
Date: Mon, 28 Nov 2022 02:38:55 GMT
Etag: "6383c7a1-118"
Expires: Tue, 29 Nov 2022 22:01:36 GMT
Last-Modified: Sun, 27 Nov 2022 20:25:05 GMT
Server: ECS (ska/F710)
X-Cache: HIT
Content-Length: 280
www.googletagmanager.com/gtag/js?id=UA-179965165-1
200 OK 44 kB URL HTTP/2 www.googletagmanager.com/gtag/js?id=UA-179965165-1
IP
File type ASCII text, with very long lines (1921)
Hash 7e16374a905792434d1d08d5822b1eb7
72f083f9ba4b34f7369f7b66f56cf47b4b729cba
d767dad28d6a7effb4a602f6def8dd5d0991441df655bad7d259e0029e86b556
GET /gtag/js?id=UA-179965165-1 HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.globalgroupofeducation.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Mon, 28 Nov 2022 02:38:55 GMT
expires: Mon, 28 Nov 2022 02:38:55 GMT
cache-control: private, max-age=900
last-modified: Mon, 28 Nov 2022 00:00:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 43682
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash 0ee1d1a60ec1770ec3e880a25c257f5d
015b05feff63bdcf8fae4d1a8c0c83c923a2ca67
b6845619444a37f322c044933a44cf3fd283a18a54d03bad4f76a2ed8c2cbaf6
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 28 Nov 2022 02:38:55 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.globalgroupofeducation.com/assets/css/fonts.css
200 OK 683 B URL HTTP/1.1 www.globalgroupofeducation.com/assets/css/fonts.css
IP
File type ASCII text, with CRLF line terminators
Hash cef8810f99969f6c06415c2d75c26961
3ab6231bc3c1ebefd41c75998ed29ab8ca46923d
d7d06cbf6766a8dcd9946cfae4f5ad6b9a2254851e8a6153b22dfdb721f584ac
GET /assets/css/fonts.css HTTP/1.1
Host: www.globalgroupofeducation.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.globalgroupofeducation.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Mon, 28 Nov 2022 02:38:55 GMT
Server: Apache
Last-Modified: Fri, 10 Apr 2020 03:43:06 GMT
Accept-Ranges: bytes
Content-Length: 683
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/css
www.globalgroupofeducation.com/assets/css/reset.css
200 OK 1.2 kB URL HTTP/1.1 www.globalgroupofeducation.com/assets/css/reset.css
IP
File type ASCII text, with CRLF line terminators
Hash 34258e7cfa7909ddc3cf2a56444ac77f
b2863713f3dc037897c128e0d3c3d4347883a2aa
4dda1ba5df9f51b6816f29c24af37e183573e49606a7148b4218bff6235c968a
GET /assets/css/reset.css HTTP/1.1
Host: www.globalgroupofeducation.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.globalgroupofeducation.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Mon, 28 Nov 2022 02:38:55 GMT
Server: Apache
Last-Modified: Fri, 10 Apr 2020 03:43:06 GMT
Accept-Ranges: bytes
Content-Length: 1151
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/css
www.globalgroupofeducation.com/assets/assets/magnific-popup/css/magnific-popup.css
200 OK 7.3 kB URL HTTP/1.1 www.globalgroupofeducation.com/assets/assets/magnific-popup/css/magnific-popup.css
IP
File type ASCII text, with CRLF line terminators
Hash c03fe8704d90e35eba342d2ca2c5a530
74a41372d833195b77dd9e167f82ca395cc4702d
1155981e8193622f58553eed0bba2fa43512af362a3d54dedef64c46970bb371
GET /assets/assets/magnific-popup/css/magnific-popup.css HTTP/1.1
Host: www.globalgroupofeducation.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.globalgroupofeducation.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Mon, 28 Nov 2022 02:38:55 GMT
Server: Apache
Last-Modified: Fri, 10 Apr 2020 03:43:06 GMT
Accept-Ranges: bytes
Content-Length: 7302
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/css
www.globalgroupofeducation.com/assets/assets/iconmoon/css/iconmoon.css
200 OK 2.5 kB URL HTTP/1.1 www.globalgroupofeducation.com/assets/assets/iconmoon/css/iconmoon.css
IP
File type ASCII text, with CRLF line terminators
Hash b5aecf2474dac99066a268fb46875b8f
c2255ee0a65202a1831b762687079d563700508f
d2836a70b2f1274481330feac53c78bfc10f65cfa6953870a42ad823b4f461d7
GET /assets/assets/iconmoon/css/iconmoon.css HTTP/1.1
Host: www.globalgroupofeducation.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.globalgroupofeducation.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Mon, 28 Nov 2022 02:38:55 GMT
Server: Apache
Last-Modified: Fri, 10 Apr 2020 03:43:06 GMT
Accept-Ranges: bytes
Content-Length: 2526
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: text/css
www.globalgroupofeducation.com/assets/assets/owl-carousel/css/owl.carousel.min.css
200 OK 2.9 kB URL HTTP/1.1 www.globalgroupofeducation.com/assets/assets/owl-carousel/css/owl.carousel.min.css
IP
File type ASCII text, with very long lines (2846), with CRLF line terminators
Hash 11f8f55299612003d16158106d01f2f0
78bead4cb5ce15f16b6554065404a01df5f67325
8608c63311f463ed5cb19febda4aaedc756eba9516c345375e5a7e56ec67a46e
GET /assets/assets/owl-carousel/css/owl.carousel.min.css HTTP/1.1
Host: www.globalgroupofeducation.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.globalgroupofeducation.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Mon, 28 Nov 2022 02:38:55 GMT
Server: Apache
Last-Modified: Fri, 10 Apr 2020 03:43:06 GMT
Accept-Ranges: bytes
Content-Length: 2941
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: text/css
www.globalgroupofeducation.com/assets/assets/font-awesome/css/font-awesome.min.css
200 OK 31 kB URL HTTP/1.1 www.globalgroupofeducation.com/assets/assets/font-awesome/css/font-awesome.min.css
IP
File type ASCII text, with very long lines (30837), with CRLF line terminators
Hash a0e784c4ca94c271b0338dfb02055be6
88af80502c44cd52ca81ffe7dc7276b7eccb06cf
820e169ce24824066d9973fd4b6561aae9dcd6dbef6435da905d5a1d6482997c
GET /assets/assets/font-awesome/css/font-awesome.min.css HTTP/1.1
Host: www.globalgroupofeducation.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.globalgroupofeducation.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Mon, 28 Nov 2022 02:38:55 GMT
Server: Apache
Last-Modified: Fri, 10 Apr 2020 03:43:06 GMT
Accept-Ranges: bytes
Content-Length: 31004
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/css
www.globalgroupofeducation.com/assets/assets/select2/css/select2.min.css
200 OK 15 kB URL HTTP/1.1 www.globalgroupofeducation.com/assets/assets/select2/css/select2.min.css
IP
File type ASCII text, with very long lines (15195), with CRLF line terminators
Hash 1f0229f4a835adde370c8490b5fe5fc7
bdee15f32133330e77e22784ac6d8f60d02fe59a
ea237985427db5573da7d02e2ce688fe2337a308f9a08dbd73697430f6bc0aed
GET /assets/assets/select2/css/select2.min.css HTTP/1.1
Host: www.globalgroupofeducation.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.globalgroupofeducation.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Mon, 28 Nov 2022 02:38:55 GMT
Server: Apache
Last-Modified: Fri, 10 Apr 2020 03:43:06 GMT
Accept-Ranges: bytes
Content-Length: 15197
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/css
www.globalgroupofeducation.com/assets/assets/bootstrap/js/bootstrap.min.js
200 OK 37 kB URL HTTP/1.1 www.globalgroupofeducation.com/assets/assets/bootstrap/js/bootstrap.min.js
IP
File type ASCII text, with very long lines (32033), with CRLF line terminators
Hash 04c84852e9937b142ac73c285b895b85
8fb8a9319055253d085edfc3bb72d20f614ec709
36460e494e4c628443afded40b2743b5ede9a4a76fb4f7b9ef2345cc7e59fd64
Analyzer Verdict Alert fortinet Phishing
GET /assets/assets/bootstrap/js/bootstrap.min.js HTTP/1.1
Host: www.globalgroupofeducation.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.globalgroupofeducation.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Mon, 28 Nov 2022 02:38:55 GMT
Server: Apache
Last-Modified: Fri, 10 Apr 2020 03:43:06 GMT
Accept-Ranges: bytes
Content-Length: 37051
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: application/javascript
www.globalgroupofeducation.com/assets/assets/matchHeight/js/matchHeight-min.js
200 OK 3.4 kB URL HTTP/1.1 www.globalgroupofeducation.com/assets/assets/matchHeight/js/matchHeight-min.js
IP
File type ASCII text, with very long lines (521), with CRLF line terminators
Hash abe502808587cd6efbddd710fb2a5af8
caa543c20dbcbf12303de9effa1355a32722b3bf
9b09fb29de36cb7bc57a4df206368485cbfd8b072daabc4e6057789df1075ca3
Analyzer Verdict Alert fortinet Phishing
GET /assets/assets/matchHeight/js/matchHeight-min.js HTTP/1.1
Host: www.globalgroupofeducation.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.globalgroupofeducation.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Mon, 28 Nov 2022 02:38:55 GMT
Server: Apache
Last-Modified: Fri, 10 Apr 2020 03:43:06 GMT
Accept-Ranges: bytes
Content-Length: 3391
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: application/javascript
www.globalgroupofeducation.com/assets/assets/bootstrap/css/bootstrap.min.css
200 OK 121 kB URL HTTP/1.1 www.globalgroupofeducation.com/assets/assets/bootstrap/css/bootstrap.min.css
IP
File type ASCII text, with very long lines (65367), with CRLF line terminators
Size 121 kB (121205 bytes)
Hash 5057f321f0dc85cd8da94a0c5f67a8f4
224c9f9ad11b495358aa61dbd53e838e9b61015b
5a3d8c05785485d36ee5c94d4681e5b1d9e4b94c5be8b5bd7b0f3168fff1bd9a
GET /assets/assets/bootstrap/css/bootstrap.min.css HTTP/1.1
Host: www.globalgroupofeducation.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.globalgroupofeducation.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Mon, 28 Nov 2022 02:38:55 GMT
Server: Apache
Last-Modified: Fri, 10 Apr 2020 03:43:06 GMT
Accept-Ranges: bytes
Content-Length: 121205
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/css
www.globalgroupofeducation.com/assets/assets/select2/js/select2.min.js
200 OK 67 kB URL HTTP/1.1 www.globalgroupofeducation.com/assets/assets/select2/js/select2.min.js
IP
File type Unicode text, UTF-8 text, with very long lines (64217), with no line terminators
Hash 26abb17f4b7260ea8c912313e2c80fef
42fe805a338908436c5c326dbf7e9aec0c8484c7
140d78b4123cbfeff506d707f57b49a5c35b0a898112975ac14640e813d7455c
Analyzer Verdict Alert fortinet Phishing
GET /assets/assets/select2/js/select2.min.js HTTP/1.1
Host: www.globalgroupofeducation.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.globalgroupofeducation.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Mon, 28 Nov 2022 02:38:55 GMT
Server: Apache
Last-Modified: Fri, 10 Apr 2020 03:43:06 GMT
Accept-Ranges: bytes
Content-Length: 66606
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: application/javascript
www.globalgroupofeducation.com/assets/css/animate.css
200 OK 76 kB URL HTTP/1.1 www.globalgroupofeducation.com/assets/css/animate.css
IP
File type ASCII text, with CRLF line terminators
Hash 5ff920880dcc7ef4c746beb3f90e078a
699c96bb01e64b1761091c10e1373a37a131a72c
24839fb11bd4fb7162907f91c2869ee3c41f78498a7fa9c24ab97b3b607f4cfd
GET /assets/css/animate.css HTTP/1.1
Host: www.globalgroupofeducation.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.globalgroupofeducation.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Mon, 28 Nov 2022 02:38:55 GMT
Server: Apache
Last-Modified: Fri, 10 Apr 2020 03:43:06 GMT
Accept-Ranges: bytes
Content-Length: 76080
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: text/css
www.globalgroupofeducation.com/assets/js/jquery.min.js
200 OK 87 kB URL HTTP/1.1 www.globalgroupofeducation.com/assets/js/jquery.min.js
IP
File type ASCII text, with very long lines (32058), with CRLF line terminators
Hash 473957cfb255a781b42cb2af51d54a3b
67bdacbd077ee59f411109fd119ee9f58db15a5f
75b707d8761e2bfbd25fbd661f290a4f7fd11c48e1bf53a36dc6bd8a0034fa35
Analyzer Verdict Alert fortinet Phishing
GET /assets/js/jquery.min.js HTTP/1.1
Host: www.globalgroupofeducation.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.globalgroupofeducation.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Mon, 28 Nov 2022 02:38:55 GMT
Server: Apache
Last-Modified: Fri, 10 Apr 2020 03:43:04 GMT
Accept-Ranges: bytes
Content-Length: 86663
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: application/javascript
www.globalgroupofeducation.com/assets/assets/bxslider/js/bxslider.min.js
200 OK 24 kB URL HTTP/1.1 www.globalgroupofeducation.com/assets/assets/bxslider/js/bxslider.min.js
IP
File type ASCII text, with very long lines (23355), with CRLF line terminators
Hash d1e617927ea605019b9d9a231828b003
aa666cdf1acc789c269ef77e8ffa5b7fce2cbf44
b0ed7256ad6c2f44037d68adcbc5139635d49f99b4fb4ae97876b3264bf714bf
Analyzer Verdict Alert fortinet Phishing
GET /assets/assets/bxslider/js/bxslider.min.js HTTP/1.1
Host: www.globalgroupofeducation.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.globalgroupofeducation.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Mon, 28 Nov 2022 02:38:55 GMT
Server: Apache
Last-Modified: Fri, 10 Apr 2020 03:43:06 GMT
Accept-Ranges: bytes
Content-Length: 23549
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: application/javascript
www.globalgroupofeducation.com/assets/assets/waypoints/js/waypoints.min.js
200 OK 9.0 kB URL HTTP/1.1 www.globalgroupofeducation.com/assets/assets/waypoints/js/waypoints.min.js
IP
File type Unicode text, UTF-8 text, with very long lines (8863), with CRLF line terminators
Hash cebc34dedef229a98275955df75e20e5
7e381bf2c00312ef4b0c0c49dd00b1cd2cbcfe7e
c86e183995d42d069cdf501e7605562c081cd7aac3b779abe3f69af717d4dd47
Analyzer Verdict Alert fortinet Phishing
GET /assets/assets/waypoints/js/waypoints.min.js HTTP/1.1
Host: www.globalgroupofeducation.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.globalgroupofeducation.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Mon, 28 Nov 2022 02:38:55 GMT
Server: Apache
Last-Modified: Fri, 10 Apr 2020 03:43:06 GMT
Accept-Ranges: bytes
Content-Length: 9034
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: application/javascript
www.globalgroupofeducation.com/assets/assets/counterup/js/counterup.min.js
200 OK 1.1 kB URL HTTP/1.1 www.globalgroupofeducation.com/assets/assets/counterup/js/counterup.min.js
IP
File type ASCII text, with very long lines (917), with CRLF line terminators
Hash 4f0e0b047f2ed8512d5119b31432bdcf
15c6242be4251b23c8aec6dd4620b95c37c53d22
3145a2ee536ea38dbcb2563fe7dad866ca2bceff859249e069cf33224f43b7cd
Analyzer Verdict Alert fortinet Phishing
GET /assets/assets/counterup/js/counterup.min.js HTTP/1.1
Host: www.globalgroupofeducation.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.globalgroupofeducation.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Mon, 28 Nov 2022 02:38:55 GMT
Server: Apache
Last-Modified: Fri, 10 Apr 2020 03:43:06 GMT
Accept-Ranges: bytes
Content-Length: 1074
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: application/javascript
www.globalgroupofeducation.com/assets/assets/magnific-popup/js/magnific-popup.min.js
200 OK 20 kB URL HTTP/1.1 www.globalgroupofeducation.com/assets/assets/magnific-popup/js/magnific-popup.min.js
IP
File type ASCII text, with very long lines (20065), with CRLF line terminators
Hash 0d0fb452a9b3b4f763f5cdb6981b633e
3378a3ba76925187af54cbf9860a0b8bcd9d9abf
71c3f34af74d56ca685617f978977a9b721860cc37644968767c4c877598f1f0
Analyzer Verdict Alert fortinet Phishing
GET /assets/assets/magnific-popup/js/magnific-popup.min.js HTTP/1.1
Host: www.globalgroupofeducation.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.globalgroupofeducation.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Mon, 28 Nov 2022 02:38:55 GMT
Server: Apache
Last-Modified: Wed, 13 May 2020 14:30:04 GMT
Accept-Ranges: bytes
Content-Length: 20197
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: application/javascript
www.globalgroupofeducation.com/assets/css/custom.css
200 OK 131 kB URL HTTP/1.1 www.globalgroupofeducation.com/assets/css/custom.css
IP
Size 131 kB (130883 bytes)
Hash 1db924ef829118191ceb70ca5e1fa7ab
2d928bb859ce93d6168cfaa09ce8a325f595180a
bd49e79fe8f71a475198db9b8cab6160f0712c57fdef6759c161ce991b78f4ff
GET /assets/css/custom.css HTTP/1.1
Host: www.globalgroupofeducation.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.globalgroupofeducation.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Mon, 28 Nov 2022 02:38:55 GMT
Server: Apache
Last-Modified: Fri, 08 May 2020 22:42:48 GMT
Accept-Ranges: bytes
Content-Length: 130883
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: text/css
www.globalgroupofeducation.com/assets/assets/owl-carousel/js/owl.carousel.min.js
200 OK 43 kB URL HTTP/1.1 www.globalgroupofeducation.com/assets/assets/owl-carousel/js/owl.carousel.min.js
IP
File type ASCII text, with very long lines (32000), with CRLF line terminators
Hash 56b28ad35f1816c6894b14190a0a006d
967ceaa9e6f67e636d818f42b4d5d15c7a4a254e
b5757aa153f991c82c949e638c56b4913042196240f3a41cec5a40c3366d1bdd
Analyzer Verdict Alert fortinet Phishing
GET /assets/assets/owl-carousel/js/owl.carousel.min.js HTTP/1.1
Host: www.globalgroupofeducation.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.globalgroupofeducation.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Mon, 28 Nov 2022 02:38:55 GMT
Server: Apache
Last-Modified: Fri, 10 Apr 2020 03:43:06 GMT
Accept-Ranges: bytes
Content-Length: 42772
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: application/javascript
www.globalgroupofeducation.com/assets/js/modernizr.custom.js
200 OK 8.5 kB URL HTTP/1.1 www.globalgroupofeducation.com/assets/js/modernizr.custom.js
IP
File type HTML document text\012- HTML document, ASCII text, with very long lines (8357), with CRLF line terminators
Hash 69aeeea1add903dc60601b04f3e5bc22
32f2157de8fc36f03c6737b477523fe99a7e3574
75f45eae880ab0da918fbd33e31932c7620dd26158ec8d78efc51b0d16bf6640
Analyzer Verdict Alert fortinet Phishing
GET /assets/js/modernizr.custom.js HTTP/1.1
Host: www.globalgroupofeducation.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.globalgroupofeducation.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Mon, 28 Nov 2022 02:38:55 GMT
Server: Apache
Last-Modified: Fri, 10 Apr 2020 03:43:04 GMT
Accept-Ranges: bytes
Content-Length: 8499
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: application/javascript
www.globalgroupofeducation.com/assets/js/jquery.validate.min.js
200 OK 23 kB URL HTTP/1.1 www.globalgroupofeducation.com/assets/js/jquery.validate.min.js
IP
File type Unicode text, UTF-8 text, with very long lines (22932), with CRLF line terminators
Hash 4828a9436d1607a6e35c38ac84120ae5
3e1d2ea22bca19524f0d11adb7dd50c69ce2f589
c4ec8763c6f7c6b9efc4a180baadbc2a4eaf9317f2781c9a4705c8c56774993d
Analyzer Verdict Alert fortinet Phishing
GET /assets/js/jquery.validate.min.js HTTP/1.1
Host: www.globalgroupofeducation.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.globalgroupofeducation.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Mon, 28 Nov 2022 02:38:55 GMT
Server: Apache
Last-Modified: Fri, 10 Apr 2020 03:43:04 GMT
Accept-Ranges: bytes
Content-Length: 23073
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: application/javascript
www.globalgroupofeducation.com/assets/js/custom.js
200 OK 29 kB URL HTTP/1.1 www.globalgroupofeducation.com/assets/js/custom.js
IP
Hash 6b2154c30bd17ab985f9f1794053f0fa
7f9159ca3585312ab727cc741253342dfa018a7b
e8bf9bca1439a07b9843d35678e44ad2f2a861fb80fcb5e69aa4d5245409d308
Analyzer Verdict Alert fortinet Phishing
GET /assets/js/custom.js HTTP/1.1
Host: www.globalgroupofeducation.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.globalgroupofeducation.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Mon, 28 Nov 2022 02:38:55 GMT
Server: Apache
Last-Modified: Sun, 19 Apr 2020 22:35:32 GMT
Accept-Ranges: bytes
Content-Length: 28990
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: application/javascript
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash 5af61422c4eaa1b995ec63e463abda26
db75634681ed688840773ce828c169ac9da7d131
506791493bb08d458008ad072ac34a26c2170c1e775b83f55f20cd8af97aa895
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 28 Nov 2022 02:38:55 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.globalgroupofeducation.com/uploads/21.jpg
200 OK 6.4 kB URL HTTP/1.1 www.globalgroupofeducation.com/uploads/21.jpg
IP
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 68x68, components 3\012- data
Hash f6d8864d7e05a3c728c359ec40136c02
4526a5f5c6dff1be3f6bcc743de4033e457f24ca
6b9f20fec80fc2a1c601b1578aa9c3662c4f8d2caae684bb2d0bf427fedb38cc
GET /uploads/21.jpg HTTP/1.1
Host: www.globalgroupofeducation.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.globalgroupofeducation.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Mon, 28 Nov 2022 02:38:55 GMT
Server: Apache
Last-Modified: Fri, 10 Apr 2020 03:43:12 GMT
Accept-Ranges: bytes
Content-Length: 6384
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: image/jpeg
www.globalgroupofeducation.com/uploads/31.jpg
200 OK 6.4 kB URL HTTP/1.1 www.globalgroupofeducation.com/uploads/31.jpg
IP
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 68x68, components 3\012- data
Hash 7cdff8d02f9678d61cc7a9e540cfcfec
5591e187575a42e3f8a6876670b78ab3a5435e5f
4646b10d9f0d6a18ee32c044c9453a4a4e346a7d7f0f2c2b2f41c60b8d6b32ef
GET /uploads/31.jpg HTTP/1.1
Host: www.globalgroupofeducation.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.globalgroupofeducation.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Mon, 28 Nov 2022 02:38:55 GMT
Server: Apache
Last-Modified: Fri, 10 Apr 2020 03:43:12 GMT
Accept-Ranges: bytes
Content-Length: 6361
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: image/jpeg
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash 5af61422c4eaa1b995ec63e463abda26
db75634681ed688840773ce828c169ac9da7d131
506791493bb08d458008ad072ac34a26c2170c1e775b83f55f20cd8af97aa895
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 28 Nov 2022 02:38:55 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.globalgroupofeducation.com/assets/images/logo.png
200 OK 12 kB URL HTTP/1.1 www.globalgroupofeducation.com/assets/images/logo.png
IP
File type PNG image data, 278 x 100, 8-bit/color RGBA, non-interlaced\012- data
Hash b61d099e2b53e9b3e4e651914463f0c0
ff295bca28c36f98781cfdf7d5e2909a87720d72
0f1e0e6e80f9d10b32daee0c39be324bb7172d5e7bf073b51b1528145c0537be
GET /assets/images/logo.png HTTP/1.1
Host: www.globalgroupofeducation.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.globalgroupofeducation.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Mon, 28 Nov 2022 02:38:55 GMT
Server: Apache
Last-Modified: Fri, 10 Apr 2020 03:43:10 GMT
Accept-Ranges: bytes
Content-Length: 12238
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: image/png
www.globalgroupofeducation.com/uploads/Untitled_design_(2).jpg
200 OK 6.0 kB URL HTTP/1.1 www.globalgroupofeducation.com/uploads/Untitled_design_(2).jpg
IP
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=5, orientation=upper-left, xresolution=74, yresolution=82, resolutionunit=2], baseline, precision 8, 68x68, components 3\012- data
Hash 1d10eefef76bcea38c0ddc7a16e16826
1c01a31824fe37c5336c3f2137f109b6cc5e9450
33b5e18becf79a9685afb3c9d060148047900287b9a31ea6a12c2f190e966703
GET /uploads/Untitled_design_(2).jpg HTTP/1.1
Host: www.globalgroupofeducation.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.globalgroupofeducation.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Mon, 28 Nov 2022 02:38:55 GMT
Server: Apache
Last-Modified: Sun, 23 May 2021 15:17:36 GMT
Accept-Ranges: bytes
Content-Length: 5976
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive
Content-Type: image/jpeg
www.globalgroupofeducation.com/uploads/Untitled_design_(1).jpg
200 OK 5.9 kB URL HTTP/1.1 www.globalgroupofeducation.com/uploads/Untitled_design_(1).jpg
IP
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=5, orientation=upper-left, xresolution=74, yresolution=82, resolutionunit=2], baseline, precision 8, 68x68, components 3\012- data
Hash 0de1a5914df85d25bbe0a7d54dd59602
2c6bd66e044543098c47719e7ee91c2d5ae260c8
6bde7fc78261e219663e43075e18d10a3c61f8264ee4f785dee57523dd0f5d16
GET /uploads/Untitled_design_(1).jpg HTTP/1.1
Host: www.globalgroupofeducation.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.globalgroupofeducation.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Mon, 28 Nov 2022 02:38:55 GMT
Server: Apache
Last-Modified: Sat, 08 May 2021 11:48:06 GMT
Accept-Ranges: bytes
Content-Length: 5942
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: image/jpeg
www.globalgroupofeducation.com/uploads/Untitled_design_(3).jpg
200 OK 5.3 kB URL HTTP/1.1 www.globalgroupofeducation.com/uploads/Untitled_design_(3).jpg
IP
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=5, orientation=upper-left, xresolution=74, yresolution=82, resolutionunit=2], baseline, precision 8, 68x68, components 3\012- data
Hash 45860ddce695ca9de98929cc42619d3c
c96a3c58177c1b6e5f6e9af3c63cf5e3b8c16b94
a61a519de8c7b7de89e7986573f0365dc3dec5c91a111434d9549591d7ceca5e
GET /uploads/Untitled_design_(3).jpg HTTP/1.1
Host: www.globalgroupofeducation.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.globalgroupofeducation.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Mon, 28 Nov 2022 02:38:55 GMT
Server: Apache
Last-Modified: Sun, 23 May 2021 15:03:20 GMT
Accept-Ranges: bytes
Content-Length: 5281
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: image/jpeg
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash cd0a5be4865b85e858cfcaafa90f8dca
122569d314b0900b1f5e5f58cdad0d9fc16b7e1b
624aa7cc70d5c36d732f15cdeb8de3854f30240cb770108dd88103f13393428d
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 28 Nov 2022 02:38:55 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash e9895464b828d538dc654c678c82b181
af5791cd48761cb3f3f979b481c23e1508692823
c93a71d276aa3f386bef66ed2b4d69e041cccc9a4df5024b14d54ce2569948f0
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 28 Nov 2022 02:38:55 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.globalgroupofeducation.com/uploads/1245.png
200 OK 9.7 kB URL HTTP/1.1 www.globalgroupofeducation.com/uploads/1245.png
IP
File type PNG image data, 68 x 68, 8-bit/color RGB, non-interlaced\012- data
Hash ac278472bc734ef2625a7152231602d0
6ae992534e66713d1df5fdfa733bff83270053aa
16b728ce7a19759a0f270f73eec472222da44fbdb739e6ddb10af4ad85d4be35
GET /uploads/1245.png HTTP/1.1
Host: www.globalgroupofeducation.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.globalgroupofeducation.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Mon, 28 Nov 2022 02:38:55 GMT
Server: Apache
Last-Modified: Fri, 10 Apr 2020 03:43:12 GMT
Accept-Ranges: bytes
Content-Length: 9668
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: image/png
fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2
200 OK 16 kB URL HTTP/2 fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2
IP
File type Web Open Font Format (Version 2), TrueType, length 15744, version 1.0\012- data
Hash 15d9f621c3bd1599f0169dcf0bd5e63e
7ca9c5967f3bb8bffeab24b639b49c1e7d03fa52
f6734f8177112c0839b961f96d813fcb189d81b60e96c33278c1983b6f419615
GET /s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://www.globalgroupofeducation.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15744
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 23 Nov 2022 19:34:08 GMT
expires: Thu, 23 Nov 2023 19:34:08 GMT
cache-control: public, max-age=31536000
age: 371087
last-modified: Wed, 11 May 2022 19:24:48 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.globalgroupofeducation.com/uploads/Untitled_design.jpg
200 OK 5.2 kB URL HTTP/1.1 www.globalgroupofeducation.com/uploads/Untitled_design.jpg
IP
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=5, orientation=upper-left, xresolution=74, yresolution=82, resolutionunit=2], baseline, precision 8, 68x68, components 3\012- data
Hash 85af86ec1809601e80f25ef1b685c881
f81d3b5ad621bc6d1915aa4e508a4a8c651f6caf
33588468fb44c617cfb72c417b9c2eb5637b15943c8175a0f43d35c663920599
GET /uploads/Untitled_design.jpg HTTP/1.1
Host: www.globalgroupofeducation.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.globalgroupofeducation.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Mon, 28 Nov 2022 02:38:55 GMT
Server: Apache
Last-Modified: Sat, 08 May 2021 11:42:00 GMT
Accept-Ranges: bytes
Content-Length: 5248
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: image/jpeg
fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2
200 OK 16 kB URL HTTP/2 fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2
IP
File type Web Open Font Format (Version 2), TrueType, length 15860, version 1.0\012- data
Hash e9f5aaf547f165386cd313b995dddd8e
acdef5603c2387b0e5bffd744b679a24a8bc1968
f5aebdfea35d1e7656ef4acc5db1f243209755ae3300943ef8fc6280f363c860
GET /s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://www.globalgroupofeducation.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15860
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 23 Nov 2022 18:53:49 GMT
expires: Thu, 23 Nov 2023 18:53:49 GMT
cache-control: public, max-age=31536000
age: 373506
last-modified: Wed, 11 May 2022 19:24:42 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash e9895464b828d538dc654c678c82b181
af5791cd48761cb3f3f979b481c23e1508692823
c93a71d276aa3f386bef66ed2b4d69e041cccc9a4df5024b14d54ce2569948f0
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 28 Nov 2022 02:38:55 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.globalgroupofeducation.com/assets/images/footer-logo.png
200 OK 12 kB URL HTTP/1.1 www.globalgroupofeducation.com/assets/images/footer-logo.png
IP
File type PNG image data, 266 x 96, 8-bit/color RGBA, non-interlaced\012- data
Hash ea90bcf56fead45ea25cfd0782420981
ddf9375c524ed8988482608ab3d3c231eae629e1
a9d714b120009da72856a0771d75289d062afdf882818ffddd6642e24fae74b9
GET /assets/images/footer-logo.png HTTP/1.1
Host: www.globalgroupofeducation.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.globalgroupofeducation.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Mon, 28 Nov 2022 02:38:55 GMT
Server: Apache
Last-Modified: Fri, 10 Apr 2020 03:43:10 GMT
Accept-Ranges: bytes
Content-Length: 11828
Keep-Alive: timeout=5, max=94
Connection: Keep-Alive
Content-Type: image/png
www.globalgroupofeducation.com/uploads/12.jpg
200 OK 7.2 kB URL HTTP/1.1 www.globalgroupofeducation.com/uploads/12.jpg
IP
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 68x68, components 3\012- data
Hash 166b59d04934f6c47f00391e122573d5
5ccceacf2bd0557befe7397d30dac1587c84e230
0c82cc14826c49d78a5646b64d52a23968825d4c8b535e0922c8fa9615076efd
GET /uploads/12.jpg HTTP/1.1
Host: www.globalgroupofeducation.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.globalgroupofeducation.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Mon, 28 Nov 2022 02:38:55 GMT
Server: Apache
Last-Modified: Fri, 10 Apr 2020 03:43:12 GMT
Accept-Ranges: bytes
Content-Length: 7181
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: image/jpeg
www.globalgroupofeducation.com/uploads/Untitled_design1.jpg
200 OK 5.5 kB URL HTTP/1.1 www.globalgroupofeducation.com/uploads/Untitled_design1.jpg
IP
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=5, orientation=upper-left, xresolution=74, yresolution=82, resolutionunit=2], baseline, precision 8, 68x68, components 3\012- data
Hash f339834c8ea7f6019f60e7749544752a
72f38180cddbdb5d6084482c0272eca13a52dfb9
32f47d37c4bfb4cf45b7894be7f3be5e95808916e0ccbcd5f34df2f954df2f2b
GET /uploads/Untitled_design1.jpg HTTP/1.1
Host: www.globalgroupofeducation.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.globalgroupofeducation.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Mon, 28 Nov 2022 02:38:55 GMT
Server: Apache
Last-Modified: Sun, 23 May 2021 14:44:32 GMT
Accept-Ranges: bytes
Content-Length: 5499
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive
Content-Type: image/jpeg
www.globalgroupofeducation.com/uploads/Untitled_design_(1)1.jpg
200 OK 5.2 kB URL HTTP/1.1 www.globalgroupofeducation.com/uploads/Untitled_design_(1)1.jpg
IP
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=5, orientation=upper-left, xresolution=74, yresolution=82, resolutionunit=2], baseline, precision 8, 68x68, components 3\012- data
Hash 3fb132df0fcc863a54115c04b4ff14f7
92ab1b0897ecdac9e198609d4abbac31c0c33469
4b5b137a52dd10fb869812e57f832d202839bbf427d2852a5ca384697795e6c4
GET /uploads/Untitled_design_(1)1.jpg HTTP/1.1
Host: www.globalgroupofeducation.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.globalgroupofeducation.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Mon, 28 Nov 2022 02:38:56 GMT
Server: Apache
Last-Modified: Sun, 23 May 2021 14:52:12 GMT
Accept-Ranges: bytes
Content-Length: 5180
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive
Content-Type: image/jpeg
www.globalgroupofeducation.com//assets/images/not_found.jpg
200 OK 110 kB URL HTTP/1.1 www.globalgroupofeducation.com//assets/images/not_found.jpg
IP
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 300x300, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=4], baseline, precision 8, 864x578, components 3\012- data
Size 110 kB (110272 bytes)
Hash dff0fa0a5db147915cdb4d9887893915
cc23561a691feb719332c9cf02f357a965329f9f
c40231c0a90b0009ace9fcbe8cb198e83561760d4ccf266277053c92219c0295
GET //assets/images/not_found.jpg HTTP/1.1
Host: www.globalgroupofeducation.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.globalgroupofeducation.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Mon, 28 Nov 2022 02:38:55 GMT
Server: Apache
Last-Modified: Fri, 10 Apr 2020 03:43:10 GMT
Accept-Ranges: bytes
Content-Length: 110272
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive
Content-Type: image/jpeg
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash aebda342a81ad83f60d2523f54ccda67
e590d9326e4a283e0929a8ffccb13cc4308af0e6
bd123fe3fce93216e2635f9dbc356f081b7599784fb6b67984032f11d82bc7cb
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "BD123FE3FCE93216E2635F9DBC356F081B7599784FB6B67984032F11D82BC7CB"
Last-Modified: Sat, 26 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3180
Expires: Mon, 28 Nov 2022 03:31:56 GMT
Date: Mon, 28 Nov 2022 02:38:56 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash aebda342a81ad83f60d2523f54ccda67
e590d9326e4a283e0929a8ffccb13cc4308af0e6
bd123fe3fce93216e2635f9dbc356f081b7599784fb6b67984032f11d82bc7cb
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "BD123FE3FCE93216E2635F9DBC356F081B7599784FB6B67984032F11D82BC7CB"
Last-Modified: Sat, 26 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3180
Expires: Mon, 28 Nov 2022 03:31:56 GMT
Date: Mon, 28 Nov 2022 02:38:56 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash aebda342a81ad83f60d2523f54ccda67
e590d9326e4a283e0929a8ffccb13cc4308af0e6
bd123fe3fce93216e2635f9dbc356f081b7599784fb6b67984032f11d82bc7cb
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "BD123FE3FCE93216E2635F9DBC356F081B7599784FB6B67984032F11D82BC7CB"
Last-Modified: Sat, 26 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3180
Expires: Mon, 28 Nov 2022 03:31:56 GMT
Date: Mon, 28 Nov 2022 02:38:56 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash aebda342a81ad83f60d2523f54ccda67
e590d9326e4a283e0929a8ffccb13cc4308af0e6
bd123fe3fce93216e2635f9dbc356f081b7599784fb6b67984032f11d82bc7cb
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "BD123FE3FCE93216E2635F9DBC356F081B7599784FB6B67984032F11D82BC7CB"
Last-Modified: Sat, 26 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3180
Expires: Mon, 28 Nov 2022 03:31:56 GMT
Date: Mon, 28 Nov 2022 02:38:56 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash aebda342a81ad83f60d2523f54ccda67
e590d9326e4a283e0929a8ffccb13cc4308af0e6
bd123fe3fce93216e2635f9dbc356f081b7599784fb6b67984032f11d82bc7cb
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "BD123FE3FCE93216E2635F9DBC356F081B7599784FB6B67984032F11D82BC7CB"
Last-Modified: Sat, 26 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3180
Expires: Mon, 28 Nov 2022 03:31:56 GMT
Date: Mon, 28 Nov 2022 02:38:56 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa915ba56-f7bc-48fc-b725-b932389634d5.jpeg
200 OK 16 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa915ba56-f7bc-48fc-b725-b932389634d5.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 0a4e0bb1e2748bdce6bbf685a910f0fc
5b97bfd787afcb912cdbef0f137f78a059082992
a7bc9adeb22cb57675e907bd961a6f554e6b7a46414ed782bcc9b53d68b1c328
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa915ba56-f7bc-48fc-b725-b932389634d5.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 15639
x-amzn-requestid: 98e846b4-287f-4698-9529-25bcc2727a4a
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cR78dGReoAMFiDw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6383d9e9-62c41b2717bd8e6f3b3797da;Sampled=0
x-amzn-remapped-date: Sun, 27 Nov 2022 21:43:05 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: fxNulyOR88nEcjtrXm1dECsulI-MsAxm2Zl0Y83uMz23lGh18d-ZBA==
via: 1.1 41e349e25dc4bc856d0e5d2c162428a0.cloudfront.net (CloudFront), 1.1 ee8246c5442dace7525c74f6a799bb46.cloudfront.net (CloudFront), 1.1 google
date: Sun, 27 Nov 2022 21:56:55 GMT
age: 16921
etag: "5b97bfd787afcb912cdbef0f137f78a059082992"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
www.globalgroupofeducation.com/assets/fonts/texgyreadventor-regular-webfont.woff2
200 OK 14 kB URL HTTP/1.1 www.globalgroupofeducation.com/assets/fonts/texgyreadventor-regular-webfont.woff2
IP
File type Web Open Font Format (Version 2), TrueType, length 19012, version 1.6815\012- data
Hash 222dc3fec52a38f39879741a467a8555
76ffe6baeb4051f2ae2d8679000d4b62406ba29f
1a4a417d5d1413b969af2473c0e88709df18bf4c55b24ff20d5deed28b16de1c
Analyzer Verdict Alert fortinet Phishing
GET /assets/fonts/texgyreadventor-regular-webfont.woff2 HTTP/1.1
Host: www.globalgroupofeducation.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://www.globalgroupofeducation.com
Connection: keep-alive
Referer: https://www.globalgroupofeducation.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Mon, 28 Nov 2022 02:38:56 GMT
Server: Apache
Last-Modified: Fri, 10 Apr 2020 03:43:10 GMT
Accept-Ranges: bytes
Content-Length: 19012
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: font/woff2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F17eed5ca-e7b1-43be-b937-69356fce9d8a.jpeg
200 OK 4.7 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F17eed5ca-e7b1-43be-b937-69356fce9d8a.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 4060284252d32701c42e2df4a83970a0
a73feecd0e221f7c7a3b74b75aeaa81bd9baa1da
53eca0f8435d6e2e62962ef80d4597afad2773a582746d523f7f5d30c3e07b8e
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F17eed5ca-e7b1-43be-b937-69356fce9d8a.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 4708
x-amzn-requestid: 6efd15cd-c944-42e7-8142-01360fbe4a25
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cR6_JFbXIAMFc_g=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6383d860-3c7d91eb7a2f3a9669f89d88;Sampled=0
x-amzn-remapped-date: Sun, 27 Nov 2022 21:36:32 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: GDQn-_Np3qSCYR2kQJnoh6j3-aS25bPTNl13D6MkZpF1fkOhokkFbA==
via: 1.1 41e349e25dc4bc856d0e5d2c162428a0.cloudfront.net (CloudFront), 1.1 b2f9564ebf9c745cc2ceae96d434977e.cloudfront.net (CloudFront), 1.1 google
date: Sun, 27 Nov 2022 22:02:24 GMT
age: 16592
etag: "a73feecd0e221f7c7a3b74b75aeaa81bd9baa1da"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd56d2fad-ed89-4d96-831f-7f8467b7079b.jpeg
200 OK 10 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd56d2fad-ed89-4d96-831f-7f8467b7079b.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 15bd53848c7082464273007e010c54e0
9a3ca698ca1aeae695923277ed2244465e01a1ea
36cfa29965173ea683992d4b436f393e92c978350347f869355d933613e2c005
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd56d2fad-ed89-4d96-831f-7f8467b7079b.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10119
x-amzn-requestid: 20bfd6a6-2981-42ca-8997-9363676773c1
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cR782HEZIAMFTKQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6383d9eb-552581a92a69d6cd322bf334;Sampled=0
x-amzn-remapped-date: Sun, 27 Nov 2022 21:43:07 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: U_gitOWWMPO7M5Dd0WktaigfRERa93d86MhziLjZ2qnuON_K5NauyQ==
via: 1.1 e5af640ced3aa8764b82c4bc3f7af38e.cloudfront.net (CloudFront), 1.1 d6b180eb367f7de26d67a9f3901b96a6.cloudfront.net (CloudFront), 1.1 google
date: Sun, 27 Nov 2022 21:54:37 GMT
age: 17059
etag: "9a3ca698ca1aeae695923277ed2244465e01a1ea"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb4908162-9f1d-4654-8d78-fe85386ce233.jpeg
200 OK 7.6 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb4908162-9f1d-4654-8d78-fe85386ce233.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 7e5051d8c06f69e1842a9295ce256a36
1a542a53ba0b1cd0fb23257ebed8166555f16dfb
a7c0dbbb4d0d9138f5ca318cc2aa44e12dadf7ed6263ec204ba756da64b29c41
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb4908162-9f1d-4654-8d78-fe85386ce233.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7556
x-amzn-requestid: 1cda5313-2256-4830-bf84-2e6e15949d3e
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cR78KFTmoAMF4yg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6383d9e7-452e36d718a298d12a2374a9;Sampled=0
x-amzn-remapped-date: Sun, 27 Nov 2022 21:43:03 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: OWVkuAw6-nRNU_CVOgvsSSenSXnfSYSmJiKa60JvSaiJgPuXjJByZw==
via: 1.1 5ab5dc09da67e3ea794ec8a82992cc88.cloudfront.net (CloudFront), 1.1 2bedbeaa49b4a77447d30097858cb81a.cloudfront.net (CloudFront), 1.1 google
date: Sun, 27 Nov 2022 21:46:41 GMT
age: 17535
etag: "1a542a53ba0b1cd0fb23257ebed8166555f16dfb"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd18bfa3f-3214-4f84-8a7e-d219428f5242.jpeg
200 OK 11 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd18bfa3f-3214-4f84-8a7e-d219428f5242.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 005e5ba3c9588cf389a58195001b64e3
238a7439d887fb3aa7f1302eeb43fce62f08441a
d75dd5b6f57d9c9290725c5be76cc7d7a39682ca569bea18eceb9bdc13d444f9
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd18bfa3f-3214-4f84-8a7e-d219428f5242.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10813
x-amzn-requestid: 5a3c9584-1389-45ac-968d-0a2301f82eda
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cR6_KG00oAMFpig=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6383d860-6ffc3ff67f7f7e75399834e8;Sampled=0
x-amzn-remapped-date: Sun, 27 Nov 2022 21:36:32 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: pyXmSrIJ5ookfmhWY2xPXv374JfY2fFkcgiz5q8iFpWV4Rm0f0zXtg==
via: 1.1 98e601970ea59f4d5f56a752787ff9fc.cloudfront.net (CloudFront), 1.1 f9d716a351f14a0ac1fac2449734849a.cloudfront.net (CloudFront), 1.1 google
date: Sun, 27 Nov 2022 21:51:04 GMT
age: 17272
etag: "238a7439d887fb3aa7f1302eeb43fce62f08441a"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.digicert.com/
200 OK 471 B IP
Hash 80423577bb8ca66350f796c228ae9152
39a9a538873e91016bec486f0a39a8f5decf276c
b97b4d704efc28d3c9e1839cc5d08b9663f3f56654d42124e0ec19377a1a9084
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4740
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Mon, 28 Nov 2022 02:38:56 GMT
Last-Modified: Mon, 28 Nov 2022 01:19:56 GMT
Server: ECS (ska/F710)
X-Cache: HIT
Content-Length: 471
www.globalgroupofeducation.com/assets/assets/iconmoon/fonts/icomoon.ttf?u1sk4v
200 OK 36 kB URL HTTP/1.1 www.globalgroupofeducation.com/assets/assets/iconmoon/fonts/icomoon.ttf?u1sk4v
IP
File type TrueType Font data, 11 tables, 1st "OS/2", 55932 names, language 0x46c8, type 56637 string\012- data
Hash 454e564ca178643f01ebcfdb0551156a
f95b832174bcb85f18025bcf8f9dc734efaf1ce0
4d98b3ce22bd5f5e4147603508e7138d6a60e9d4851d5a9ba3ee88b48ee36f76
GET /assets/assets/iconmoon/fonts/icomoon.ttf?u1sk4v HTTP/1.1
Host: www.globalgroupofeducation.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://www.globalgroupofeducation.com
Connection: keep-alive
Referer: https://www.globalgroupofeducation.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Mon, 28 Nov 2022 02:38:56 GMT
Server: Apache
Last-Modified: Fri, 10 Apr 2020 03:43:06 GMT
Accept-Ranges: bytes
Content-Length: 17748
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: font/ttf
www.globalgroupofeducation.com/assets/assets/font-awesome/fonts/fontawesome-webfont.woff2?v=4.7.0
200 OK 43 kB URL HTTP/1.1 www.globalgroupofeducation.com/assets/assets/font-awesome/fonts/fontawesome-webfont.woff2?v=4.7.0
IP
File type Web Open Font Format (Version 2), TrueType, length 77160, version 4.459\012- data
Hash 0660a7cf88fd7ffbfd7472252eb01a06
7b9276f5a1e09044e897734baab5e4874d392330
d57aced79a6e5bc9577587eb7790a0ac0299f37757f8e1ca7a0a3b8879d91a1c
GET /assets/assets/font-awesome/fonts/fontawesome-webfont.woff2?v=4.7.0 HTTP/1.1
Host: www.globalgroupofeducation.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://www.globalgroupofeducation.com
Connection: keep-alive
Referer: https://www.globalgroupofeducation.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Mon, 28 Nov 2022 02:38:56 GMT
Server: Apache
Last-Modified: Fri, 10 Apr 2020 03:43:06 GMT
Accept-Ranges: bytes
Content-Length: 77160
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: font/woff2
ocsp.digicert.com/
200 OK 471 B IP
Hash 80423577bb8ca66350f796c228ae9152
39a9a538873e91016bec486f0a39a8f5decf276c
b97b4d704efc28d3c9e1839cc5d08b9663f3f56654d42124e0ec19377a1a9084
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4740
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Mon, 28 Nov 2022 02:38:56 GMT
Last-Modified: Mon, 28 Nov 2022 01:19:56 GMT
Server: ECS (ska/F710)
X-Cache: HIT
Content-Length: 471
www.google-analytics.com/j/collect?v=1&_v=j98&a=1145238462&t=pageview&_s=1&dl=http%3A%2F%2Fwww.globalgroupofeducation.com%2Fehe%2F%3Fi%3Di%260%3Daaaa%40slurpmail.net&ul=en-us&de=UTF-8&sd=24-bit&sr=1280x1024&vp=1268x939&je=0&_u=YEBAAUABAAAAACAAI~&jid=1747180030&gjid=57444051&cid=1527681334.1669603136&tid=UA-179965165-1&_gid=561777984.1669603136&_r=1>m=2oub90&z=1814105177
200 OK 1 B URL HTTP/2 www.google-analytics.com/j/collect?v=1&_v=j98&a=1145238462&t=pageview&_s=1&dl=http%3A%2F%2Fwww.globalgroupofeducation.com%2Fehe%2F%3Fi%3Di%260%3Daaaa%40slurpmail.net&ul=en-us&de=UTF-8&sd=24-bit&sr=1280x1024&vp=1268x939&je=0&_u=YEBAAUABAAAAACAAI~&jid=1747180030&gjid=57444051&cid=1527681334.1669603136&tid=UA-179965165-1&_gid=561777984.1669603136&_r=1>m=2oub90&z=1814105177
IP
File type very short file (no magic)
Hash c4ca4238a0b923820dcc509a6f75849b
356a192b7913b04c54574d18c28d46e6395428ab
6b86b273ff34fce19d6b804eff5a3f5747ada4eaa22f1d49c01e52ddb7875b4b
POST /j/collect?v=1&_v=j98&a=1145238462&t=pageview&_s=1&dl=http%3A%2F%2Fwww.globalgroupofeducation.com%2Fehe%2F%3Fi%3Di%260%3Daaaa%40slurpmail.net&ul=en-us&de=UTF-8&sd=24-bit&sr=1280x1024&vp=1268x939&je=0&_u=YEBAAUABAAAAACAAI~&jid=1747180030&gjid=57444051&cid=1527681334.1669603136&tid=UA-179965165-1&_gid=561777984.1669603136&_r=1>m=2oub90&z=1814105177 HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 0
Origin: http://www.globalgroupofeducation.com
Connection: keep-alive
Referer: http://www.globalgroupofeducation.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-allow-origin: http://www.globalgroupofeducation.com
date: Mon, 28 Nov 2022 02:38:56 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
last-modified: Sun, 17 May 1998 03:00:00 GMT
access-control-allow-credentials: true
x-content-type-options: nosniff
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 1
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.globalgroupofeducation.com/assets/assets/iconmoon/fonts/icomoon.woff?u1sk4v
200 OK 9.1 kB URL HTTP/1.1 www.globalgroupofeducation.com/assets/assets/iconmoon/fonts/icomoon.woff?u1sk4v
IP
File type Web Open Font Format, TrueType, length 17824, version 0.0\012- data
Hash 8e565cca214c9cc1f61bed79a2755274
f216ea041b1942be753eeb09a38efc66792de298
6e50188aca0fc254a4445437a712fd7b3b6dea427df973e16da2b95295394b9c
Analyzer Verdict Alert fortinet Phishing
GET /assets/assets/iconmoon/fonts/icomoon.woff?u1sk4v HTTP/1.1
Host: www.globalgroupofeducation.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://www.globalgroupofeducation.com
Connection: keep-alive
Referer: https://www.globalgroupofeducation.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Mon, 28 Nov 2022 02:38:56 GMT
Server: Apache
Last-Modified: Fri, 10 Apr 2020 03:43:06 GMT
Accept-Ranges: bytes
Content-Length: 17824
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: font/woff
www.facebook.com/tr/?id=1298152493871185&ev=PageView&dl=http%3A%2F%2Fwww.globalgroupofeducation.com%2Fehe%2F%3Fi%3Di%260%3Daaaa%40slurpmail.net&rl=&if=false&ts=1669603136686&sw=1280&sh=1024&v=2.9.89&r=stable&ec=0&o=30&fbp=fb.1.1669603136685.797134835&it=1669603136310&coo=false&rqm=GET
200 OK 86 kB URL HTTP/2 www.facebook.com/tr/?id=1298152493871185&ev=PageView&dl=http%3A%2F%2Fwww.globalgroupofeducation.com%2Fehe%2F%3Fi%3Di%260%3Daaaa%40slurpmail.net&rl=&if=false&ts=1669603136686&sw=1280&sh=1024&v=2.9.89&r=stable&ec=0&o=30&fbp=fb.1.1669603136685.797134835&it=1669603136310&coo=false&rqm=GET
IP
File type gzip compressed data, from Unix\012- data
Hash be7e7ea6bc98ff63168f08a3b4bbff68
d4ee0cdf49f6acc99ef70bc0f5a22d26d717ac7c
011ea959d3f2c229ddbe2127d6d93559040eaa444b519dd158dc802f72cb9933
GET /tr/?id=1298152493871185&ev=PageView&dl=http%3A%2F%2Fwww.globalgroupofeducation.com%2Fehe%2F%3Fi%3Di%260%3Daaaa%40slurpmail.net&rl=&if=false&ts=1669603136686&sw=1280&sh=1024&v=2.9.89&r=stable&ec=0&o=30&fbp=fb.1.1669603136685.797134835&it=1669603136310&coo=false&rqm=GET HTTP/1.1
Host: www.facebook.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.globalgroupofeducation.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/plain
access-control-allow-origin:
access-control-allow-credentials: true
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
content-length: 0
server: proxygen-bolt
alt-svc: h3=":443"; ma=86400
date: Mon, 28 Nov 2022 02:38:57 GMT
X-Firefox-Spdy: h2
fonts.googleapis.com/css?family=Roboto:300,400,500,700
200 OK 0 B URL HTTP/2 fonts.googleapis.com/css?family=Roboto:300,400,500,700
IP
GET /css?family=Roboto:300,400,500,700 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.globalgroupofeducation.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Mon, 28 Nov 2022 02:38:55 GMT
date: Mon, 28 Nov 2022 02:38:55 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.globalgroupofeducation.com/assets/assets/font-awesome/fonts/fontawesome-webfont.ttf?v=4.7.0
200 OK 0 B URL HTTP/1.1 www.globalgroupofeducation.com/assets/assets/font-awesome/fonts/fontawesome-webfont.ttf?v=4.7.0
IP
Analyzer Verdict Alert fortinet Phishing
GET /assets/assets/font-awesome/fonts/fontawesome-webfont.ttf?v=4.7.0 HTTP/1.1
Host: www.globalgroupofeducation.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://www.globalgroupofeducation.com
Connection: keep-alive
Referer: https://www.globalgroupofeducation.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Mon, 28 Nov 2022 02:38:56 GMT
Server: Apache
Last-Modified: Fri, 10 Apr 2020 03:43:06 GMT
Accept-Ranges: bytes
Content-Length: 165548
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: font/ttf
www.globalgroupofeducation.com/assets/fonts/texgyreadventor-bold-webfont.woff
200 OK 0 B URL HTTP/1.1 www.globalgroupofeducation.com/assets/fonts/texgyreadventor-bold-webfont.woff
IP
Analyzer Verdict Alert fortinet Phishing
GET /assets/fonts/texgyreadventor-bold-webfont.woff HTTP/1.1
Host: www.globalgroupofeducation.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://www.globalgroupofeducation.com
Connection: keep-alive
Referer: https://www.globalgroupofeducation.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Mon, 28 Nov 2022 02:38:56 GMT
Server: Apache
Last-Modified: Fri, 10 Apr 2020 03:43:10 GMT
Accept-Ranges: bytes
Content-Length: 25640
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: font/woff
www.globalgroupofeducation.com/assets/fonts/texgyreadventor-bold-webfont.woff2
200 OK 0 B URL HTTP/1.1 www.globalgroupofeducation.com/assets/fonts/texgyreadventor-bold-webfont.woff2
IP
Analyzer Verdict Alert fortinet Phishing
GET /assets/fonts/texgyreadventor-bold-webfont.woff2 HTTP/1.1
Host: www.globalgroupofeducation.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://www.globalgroupofeducation.com
Connection: keep-alive
Referer: https://www.globalgroupofeducation.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Mon, 28 Nov 2022 02:38:56 GMT
Server: Apache
Last-Modified: Fri, 10 Apr 2020 03:43:10 GMT
Accept-Ranges: bytes
Content-Length: 19528
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: font/woff2
198.46.87.187
23.36.76.226
93.184.220.29
104.17.25.14
31.13.72.36