ifcgmsconsultinggroup.com/
161.97.187.97301 Moved Permanently 162 B URL HTTP/1.1 ifcgmsconsultinggroup.com/
IP 161.97.187.97:0
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 4f8e702cc244ec5d4de32740c0ecbd97
3adb1f02d5b6054de0046e367c1d687b6cdf7aff
9e17cb15dd75bbbd5dbb984eda674863c3b10ab72613cf8a39a00c3e11a8492a
Analyzer Verdict Alert fortinet Phishing
GET / HTTP/1.1
Host: ifcgmsconsultinggroup.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Server: nginx
Date: Sun, 18 Dec 2022 02:12:50 GMT
Content-Type: text/html
Content-Length: 162
Connection: keep-alive
Location: https://ifcgmsconsultinggroup.com/
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 9f3cf7e36f17a535e53e5213c02cf2b4
e65acbc03135ce135b9e91b4f74b3e1439faa6f6
a2317476862acd0a92fe523454c3991752b07ba14e7667f421dd9624e0233758
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "A2317476862ACD0A92FE523454C3991752B07BA14E7667F421DD9624E0233758"
Last-Modified: Sat, 17 Dec 2022 16:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8806
Expires: Sun, 18 Dec 2022 04:39:36 GMT
Date: Sun, 18 Dec 2022 02:12:50 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 2039a1dda99e075b82840608771d2326
e89713a35b312f3b87fbeaad98f03fddecbf77ce
aae78c754635e9833fa6c231d775bddc82add02f9ce3197a0b260a0806e708c3
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "AAE78C754635E9833FA6C231D775BDDC82ADD02F9CE3197A0B260A0806E708C3"
Last-Modified: Sat, 17 Dec 2022 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8289
Expires: Sun, 18 Dec 2022 04:30:59 GMT
Date: Sun, 18 Dec 2022 02:12:50 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 555fc6e99ad3bf077d1c4b9b805e428d
4e800fc8e809a950288df0e94992084647762561
fac00cada519279717e2a13528cb202d292fc92ed5eb42782c41f8e7b9509eaf
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "FAC00CADA519279717E2A13528CB202D292FC92ED5EB42782C41F8E7B9509EAF"
Last-Modified: Fri, 16 Dec 2022 11:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11372
Expires: Sun, 18 Dec 2022 05:22:22 GMT
Date: Sun, 18 Dec 2022 02:12:50 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
35.241.9.150200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash b44c4b5daa307a355e7bab1c83c1ca82
dbd14cd873f1dd4502f277b3f51cb7bc8da0c080
fd4604461cfa002c8a261bb14eb8dda56817db231b9012b2eb38d6dbc2674df5
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Backoff, Content-Length, Alert, Retry-After, Content-Type
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Sun, 18 Dec 2022 01:34:16 GMT
content-type: application/json
age: 2314
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-01-19-10-06-33.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-01-19-10-06-33.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash 53341dea33f4f3d9b4966f80589f429a
20f7b07c686c986d2ed1e3e9ad1bb2aef8edaf0d
651683e52cdbc96b289f8f123155f0b96d9f67432689e89156fa56f5a346c6a0
GET /chains/remote-settings.content-signature.mozilla.org-2023-01-19-10-06-33.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: BlxF0O77JpvakoZ2V9piOzrM7zFp7K8ej6BF1ze4ftsStQNkOJGawP+bJ8hHfchjg9zG1Xx9f5M=
x-amz-request-id: 3BGQD7712FZEPCXA
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Sun, 18 Dec 2022 01:52:01 GMT
age: 1249
last-modified: Wed, 30 Nov 2022 10:06:34 GMT
etag: "53341dea33f4f3d9b4966f80589f429a"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.sectigo.com/
104.18.32.68200 OK 472 B IP 104.18.32.68:0
Hash 325798ee0ecad98cd67295013552535e
51dac7231d479ca8ff2c8c36512b3d6d8281071f
4333421a02eccba6d2a0100b03acad500e5236781fd8067b3c470e0cb72d7ce6
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sun, 18 Dec 2022 02:12:50 GMT
Content-Type: application/ocsp-response
Content-Length: 472
Connection: keep-alive
Last-Modified: Sat, 17 Dec 2022 07:21:15 GMT
Expires: Sat, 24 Dec 2022 07:21:14 GMT
Etag: "51dac7231d479ca8ff2c8c36512b3d6d8281071f"
Cache-Control: max-age=536303,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb1
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 77b46038bbc3b51d-OSL
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Sun, 18 Dec 2022 02:12:50 GMT
content-type: application/json
content-length: 12
access-control-expose-headers: content-type
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
access-control-allow-credentials: true
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
35.241.9.150200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Expires, Last-Modified, ETag, Cache-Control, Alert, Content-Length, Pragma, Content-Type, Retry-After, Backoff
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Sun, 18 Dec 2022 02:08:00 GMT
age: 290
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 2d1752cd6eb7f48e7494373911a5b996
43d9c23c4d03cccce0fc478f0e12c0874dc762fd
aded7fd1d638c001b0b462fdfeee0549d2ed61b51ced88eb83690e2e20ed36d8
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3007
Cache-Control: max-age=114247
Content-Type: application/ocsp-response
Date: Sun, 18 Dec 2022 02:12:51 GMT
Etag: "639d86ab-1d7"
Expires: Mon, 19 Dec 2022 09:56:58 GMT
Last-Modified: Sat, 17 Dec 2022 09:06:51 GMT
Server: ECS (ska/F704)
X-Cache: HIT
Content-Length: 471
push.services.mozilla.com/
52.42.234.253101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 52.42.234.253:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: vi+qopjOpZoiRyQDUq8O+A==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: kKeXQFdBhs+QhTPi+eNfBbXTUZQ=
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 74619c8a7d32d46fc91cc86f793f107c
3f2b1390ef4f7cd385f513d57297fa482f7dd43c
6aa1fbfb532fc85b041684e259bbeecf53c7e7f711c8d414fc0775c4c1404457
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "6AA1FBFB532FC85B041684E259BBEECF53C7E7F711C8D414FC0775C4C1404457"
Last-Modified: Sat, 17 Dec 2022 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2478
Expires: Sun, 18 Dec 2022 02:54:10 GMT
Date: Sun, 18 Dec 2022 02:12:52 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 74619c8a7d32d46fc91cc86f793f107c
3f2b1390ef4f7cd385f513d57297fa482f7dd43c
6aa1fbfb532fc85b041684e259bbeecf53c7e7f711c8d414fc0775c4c1404457
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "6AA1FBFB532FC85B041684E259BBEECF53C7E7F711C8D414FC0775C4C1404457"
Last-Modified: Sat, 17 Dec 2022 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2478
Expires: Sun, 18 Dec 2022 02:54:10 GMT
Date: Sun, 18 Dec 2022 02:12:52 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 74619c8a7d32d46fc91cc86f793f107c
3f2b1390ef4f7cd385f513d57297fa482f7dd43c
6aa1fbfb532fc85b041684e259bbeecf53c7e7f711c8d414fc0775c4c1404457
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "6AA1FBFB532FC85B041684E259BBEECF53C7E7F711C8D414FC0775C4C1404457"
Last-Modified: Sat, 17 Dec 2022 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2478
Expires: Sun, 18 Dec 2022 02:54:10 GMT
Date: Sun, 18 Dec 2022 02:12:52 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff783873f-77b2-434c-bb35-f4256092891b.jpeg
34.120.237.76200 OK 8.6 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff783873f-77b2-434c-bb35-f4256092891b.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 71c9641accc729e72906c98dd95ad42b
9474b30b0849fdbeaf268dbee606db808de73be2
d819996a9911e80b61e602f9fba254343734766b7b82b41f9d2f94aae975fb60
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff783873f-77b2-434c-bb35-f4256092891b.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8648
x-amzn-requestid: 10e741e0-7bcf-4ca8-8e01-aa1f0f59f7d8
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: dT11xHA4oAMFoFA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-639e368b-5b96391b1137926646cc4439;Sampled=0
x-amzn-remapped-date: Sat, 17 Dec 2022 21:37:15 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: UGu2__Dawbr0-sy9AWnUmJRDHLHrDJ7PgB90f1TNrwM6cGKLaDCnZw==
via: 1.1 86b676273517904f44af31586adb06ae.cloudfront.net (CloudFront), 1.1 61bc723adb3b1884ed759711e84e13a8.cloudfront.net (CloudFront), 1.1 google
date: Sat, 17 Dec 2022 22:03:47 GMT
etag: "9474b30b0849fdbeaf268dbee606db808de73be2"
content-type: image/jpeg
age: 14945
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe2ded193-0301-4ad3-a888-72c52212ad95.jpeg
34.120.237.76200 OK 5.2 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe2ded193-0301-4ad3-a888-72c52212ad95.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash bfd0e913579b4ff2f511223d70cb01fb
497e0ffef816e100e6ddc221ec17d5f389c1142a
bee68ae1a938a5111a32dab4ec4f6964994e6c39143eac9ab94d6c5e29999372
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe2ded193-0301-4ad3-a888-72c52212ad95.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5185
x-amzn-requestid: 3087af97-3f2d-4848-b297-eba8d84f10c5
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: dT10YHv8oAMF2sg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-639e3682-7527022d4bd9c15518fe75cc;Sampled=0
x-amzn-remapped-date: Sat, 17 Dec 2022 21:37:06 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: KyEMrUTeuVTPJ3EIkrH1DLYqa4bHK7fe6dApTAFP4XY0G4airnflGA==
via: 1.1 98e601970ea59f4d5f56a752787ff9fc.cloudfront.net (CloudFront), 1.1 fda3b2797d2719576f6b916583a28e52.cloudfront.net (CloudFront), 1.1 google
date: Sat, 17 Dec 2022 21:37:06 GMT
age: 16546
etag: "497e0ffef816e100e6ddc221ec17d5f389c1142a"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0c81bdf4-0a78-472d-ba75-80092016f334.png
34.120.237.76200 OK 12 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0c81bdf4-0a78-472d-ba75-80092016f334.png
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash ed374d0c34e8b2e15f08a6479a4f45e7
5db9e59699048998f0685e940640eae19ef11c8e
9933854830be796a87cfe44b6b8336294e2d3dbbe3205f267720aca6968c3a21
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0c81bdf4-0a78-472d-ba75-80092016f334.png HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 12125
x-amzn-requestid: e44faa15-1dfd-4bc0-bdfb-307c3de2755d
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: dT2QPFZAIAMFf5g=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-639e3734-33d636210a1e24742ee71187;Sampled=0
x-amzn-remapped-date: Sat, 17 Dec 2022 21:40:04 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: DmeWRYIlUMCR8Nds0-n0a9ju0ySR7ZuTAS82Lu8sZxPXQpBJkqzvww==
via: 1.1 a4fe306096165bb1e86e69365dc8fac2.cloudfront.net (CloudFront), 1.1 a3bd0eb50c22e4d5fbda56a30b96002c.cloudfront.net (CloudFront), 1.1 google
date: Sat, 17 Dec 2022 21:52:21 GMT
age: 15631
etag: "5db9e59699048998f0685e940640eae19ef11c8e"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6a667002-4518-4b30-baaa-3a4eab2bdc1d.jpeg
34.120.237.76200 OK 8.7 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6a667002-4518-4b30-baaa-3a4eab2bdc1d.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash ada04738696f861648635c9ba98841e4
ce644cd4349d88aa7c24b2503b0b18b444061639
e5cee777efbf1d8a0f95f6cce71199e5f016a91f90cf0afe38bc86654b9d730d
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6a667002-4518-4b30-baaa-3a4eab2bdc1d.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8696
x-amzn-requestid: c897aeed-a082-46a1-965f-39e8c763cb05
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: dT10ZH3jIAMF0gw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-639e3682-548ac80840737a20743980f5;Sampled=0
x-amzn-remapped-date: Sat, 17 Dec 2022 21:37:06 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: JecluZu8ExMmP-UHM8QbK-bjm_yqULU1tl2QQDfKMea8NHM6y2JI7g==
via: 1.1 446313511980eb02f28ff5a9a4147c0a.cloudfront.net (CloudFront), 1.1 b2f9564ebf9c745cc2ceae96d434977e.cloudfront.net (CloudFront), 1.1 google
date: Sat, 17 Dec 2022 21:37:06 GMT
age: 16546
etag: "ce644cd4349d88aa7c24b2503b0b18b444061639"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe17986e4-9c03-4d1d-b144-b82595d05388.jpeg
34.120.237.76200 OK 5.9 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe17986e4-9c03-4d1d-b144-b82595d05388.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 84e0dd21155f96ca68440d65c8ad73a7
7f7626fef52423a271d832a451a7da4053727545
152ef55698306296325fe67a48cd9560644acf90765c4d8a719bf967275c3241
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe17986e4-9c03-4d1d-b144-b82595d05388.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5890
x-amzn-requestid: 7415ca5a-8cc5-4fd9-aff8-10928ba1586f
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: dT2TEGHxoAMFXJQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-639e3746-069df50441c60c9f12d1224c;Sampled=0
x-amzn-remapped-date: Sat, 17 Dec 2022 21:40:22 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: yCOJQN1f_n8f8MS1TTPDuTPqCEHjBaZIfvGzpTCujw5JRmhwDYuxCA==
via: 1.1 5ab5dc09da67e3ea794ec8a82992cc88.cloudfront.net (CloudFront), 1.1 f9d716a351f14a0ac1fac2449734849a.cloudfront.net (CloudFront), 1.1 google
date: Sat, 17 Dec 2022 21:51:49 GMT
age: 15663
etag: "7f7626fef52423a271d832a451a7da4053727545"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6cde09a4-7b92-4452-ab94-7a69956cac79.jpeg
34.120.237.76200 OK 15 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6cde09a4-7b92-4452-ab94-7a69956cac79.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 74d11c8c5c4cd0e0f73e6f57a5e66a86
c22be5adb0f7c024eaff5feb131a8406b04935b0
122a82dd7caa4a895978100cd9b2d54e7dbd6176cc2129444e5f3988e5dfcd3a
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6cde09a4-7b92-4452-ab94-7a69956cac79.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 15272
x-amzn-requestid: e31e3815-629e-4497-aa25-3b4b18fdf5eb
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: dT3O9F-EoAMFxNg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-639e38c5-7edf7e5900207bda1ed8b147;Sampled=0
x-amzn-remapped-date: Sat, 17 Dec 2022 21:46:46 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: 75oSKW7PEIG1Q2SWIIOa4Rrlq4L23jzrl1ASBPiWP4Ewcx3OZfIPCw==
via: 1.1 86b676273517904f44af31586adb06ae.cloudfront.net (CloudFront), 1.1 caf6806821bc479b28a6f1ce3043b8a6.cloudfront.net (CloudFront), 1.1 google
date: Sat, 17 Dec 2022 21:54:10 GMT
etag: "c22be5adb0f7c024eaff5feb131a8406b04935b0"
content-type: image/jpeg
age: 15522
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
ifcgmsconsultinggroup.com/
161.97.187.97200 OK 31 kB URL HTTP/2 ifcgmsconsultinggroup.com/
IP 161.97.187.97:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (9381)
Hash 4b9dd96ba3e24c4a5304ead0c84d23b8
75d30cd42428f6e9cfa51d299267eeb8709fcbae
b04854b1bd72697d5111c0b9ee12301983fcd8b579bb1271ee795492faaa199b
Analyzer Verdict Alert fortinet Phishing
GET / HTTP/1.1
Host: ifcgmsconsultinggroup.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 200 OK
server: nginx
date: Sun, 18 Dec 2022 02:12:53 GMT
content-type: text/html; charset=UTF-8
content-length: 30609
link: <https://ifcgmsconsultinggroup.com/wp-json/>; rel="https://api.w.org/", <https://ifcgmsconsultinggroup.com/wp-json/wp/v2/pages/1071>; rel="alternate"; type="application/json", <https://ifcgmsconsultinggroup.com/>; rel=shortlink
vary: Accept-Encoding
content-encoding: gzip
x-powered-by: PHP/7.4.16, PleskLin
X-Firefox-Spdy: h2
ifcgmsconsultinggroup.com/wp-content/plugins/header-footer-elementor/assets/css/header-footer-elementor.css?ver=1.6.13
161.97.187.97200 OK 323 B URL HTTP/2 ifcgmsconsultinggroup.com/wp-content/plugins/header-footer-elementor/assets/css/header-footer-elementor.css?ver=1.6.13
IP 161.97.187.97:0
Hash b24c24b7da3ffeed6ae8ade102a4d317
c4445b3977ce704b927508108e100213eea67a3c
5421ad49b70f379553eaceec744d753e74d4b065966c08aa7c7dd949553ca9a8
GET /wp-content/plugins/header-footer-elementor/assets/css/header-footer-elementor.css?ver=1.6.13 HTTP/1.1
Host: ifcgmsconsultinggroup.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ifcgmsconsultinggroup.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 18 Dec 2022 02:12:53 GMT
content-type: text/css
content-length: 323
x-accel-version: 0.01
last-modified: Tue, 08 Nov 2022 02:42:05 GMT
etag: "308-5ecec7c54ecc5-gzip"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
x-powered-by: PleskLin
X-Firefox-Spdy: h2
ifcgmsconsultinggroup.com/wp-includes/css/classic-themes.min.css?ver=1
161.97.187.97200 OK 189 B URL HTTP/2 ifcgmsconsultinggroup.com/wp-includes/css/classic-themes.min.css?ver=1
IP 161.97.187.97:0
Hash 5a18e16eb01cbaa862eb32e6b77bedb2
3abf9b913cc9f558f02cba7c9b822f8d1812cb96
d2b5af913332941d5ae7786d1fa70e0d009315c4ede6ad5b80d0f663bb54521f
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/css/classic-themes.min.css?ver=1 HTTP/1.1
Host: ifcgmsconsultinggroup.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ifcgmsconsultinggroup.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 18 Dec 2022 02:12:53 GMT
content-type: text/css
content-length: 189
x-accel-version: 0.01
last-modified: Tue, 08 Nov 2022 02:47:41 GMT
etag: "d9-5ecec90585bc4-gzip"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
x-powered-by: PleskLin
X-Firefox-Spdy: h2
ifcgmsconsultinggroup.com/wp-includes/css/dist/block-library/style.min.css?ver=6.1.1
161.97.187.97200 OK 12 kB URL HTTP/2 ifcgmsconsultinggroup.com/wp-includes/css/dist/block-library/style.min.css?ver=6.1.1
IP 161.97.187.97:0
File type ASCII text, with very long lines (47826)
Hash 11f5a8a42529491ecd8655ddc43ecb7f
8c37a896684aebdfd7766ffacf3a194b08b6d040
35dcd881a9f02341fc9728a7d92a7884ef65970a3966063abfed3217313fc878
GET /wp-includes/css/dist/block-library/style.min.css?ver=6.1.1 HTTP/1.1
Host: ifcgmsconsultinggroup.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ifcgmsconsultinggroup.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 18 Dec 2022 02:12:53 GMT
content-type: text/css
last-modified: Tue, 15 Nov 2022 20:17:48 GMT
etag: W/"6373f3ec-172a9"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
ifcgmsconsultinggroup.com/wp-content/uploads/stm_fonts/stm/stm.css?ver=1.0
161.97.187.97200 OK 2.4 kB URL HTTP/2 ifcgmsconsultinggroup.com/wp-content/uploads/stm_fonts/stm/stm.css?ver=1.0
IP 161.97.187.97:0
Hash eb12ff5cc21ab26c987449ae5297f824
698b4fc49ea391d13f41869b7ab689d332476404
1b87971b526859eb5b006de14a45aabefd5969b9c7484036977cb3874709e6ce
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/uploads/stm_fonts/stm/stm.css?ver=1.0 HTTP/1.1
Host: ifcgmsconsultinggroup.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ifcgmsconsultinggroup.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 18 Dec 2022 02:12:53 GMT
content-type: text/css
last-modified: Tue, 08 Nov 2022 02:42:20 GMT
etag: W/"6369c20c-29a3"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
ifcgmsconsultinggroup.com/wp-content/plugins/elementor/assets/css/frontend-lite.min.css?ver=3.8.1
161.97.187.97200 OK 13 kB URL HTTP/2 ifcgmsconsultinggroup.com/wp-content/plugins/elementor/assets/css/frontend-lite.min.css?ver=3.8.1
IP 161.97.187.97:0
File type ASCII text, with very long lines (65497)
Hash 96bf8c9247890294987d2caff83c45d9
a28c7f78f17f86787150d77c408dd4178c152875
cf934dbb9c277bdcbb5960d9eefc49928f00d2f4eb698347d59c95550e2e424e
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/elementor/assets/css/frontend-lite.min.css?ver=3.8.1 HTTP/1.1
Host: ifcgmsconsultinggroup.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ifcgmsconsultinggroup.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 18 Dec 2022 02:12:53 GMT
content-type: text/css
last-modified: Sat, 26 Nov 2022 09:33:38 GMT
etag: W/"6381dd72-19538"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
ifcgmsconsultinggroup.com/wp-content/plugins/elementor/assets/lib/font-awesome/css/regular.min.css?ver=5.15.3
161.97.187.97200 OK 308 B URL HTTP/2 ifcgmsconsultinggroup.com/wp-content/plugins/elementor/assets/lib/font-awesome/css/regular.min.css?ver=5.15.3
IP 161.97.187.97:0
File type ASCII text, with very long lines (491)
Hash 851fd514d412b7e854365f20a4227c8a
08bf47072f70af1816450cc85a5efb3b8f9114d2
a9449e3cc7c003e5ed6b93bae7b0bba3e4f1713c52214f41d3591692a759b9d7
GET /wp-content/plugins/elementor/assets/lib/font-awesome/css/regular.min.css?ver=5.15.3 HTTP/1.1
Host: ifcgmsconsultinggroup.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ifcgmsconsultinggroup.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 18 Dec 2022 02:12:53 GMT
content-type: text/css
content-length: 308
x-accel-version: 0.01
last-modified: Sat, 26 Nov 2022 09:33:38 GMT
etag: "2a5-5ee5c55440a4a-gzip"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
x-powered-by: PleskLin
X-Firefox-Spdy: h2
ifcgmsconsultinggroup.com/wp-content/plugins/pearl-header-builder/assets/frontend/assets/vendor/sticky.css?ver=1.0
161.97.187.97200 OK 195 B URL HTTP/2 ifcgmsconsultinggroup.com/wp-content/plugins/pearl-header-builder/assets/frontend/assets/vendor/sticky.css?ver=1.0
IP 161.97.187.97:0
Hash 311e3bc13bdbd19c0fb9e14a60a77621
e60c5aae0842a67eefd4b9f09969701c6d9ca9ae
b0144258a83043cda38770d21b216e946fcd4a7198895d161f4119cbdd2313b8
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/pearl-header-builder/assets/frontend/assets/vendor/sticky.css?ver=1.0 HTTP/1.1
Host: ifcgmsconsultinggroup.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ifcgmsconsultinggroup.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 18 Dec 2022 02:12:53 GMT
content-type: text/css
content-length: 195
x-accel-version: 0.01
last-modified: Tue, 08 Nov 2022 02:42:06 GMT
etag: "17a-5ecec7c5903a6-gzip"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
x-powered-by: PleskLin
X-Firefox-Spdy: h2
ifcgmsconsultinggroup.com/wp-content/plugins/elementor/assets/lib/font-awesome/css/brands.min.css?ver=5.15.3
161.97.187.97200 OK 308 B URL HTTP/2 ifcgmsconsultinggroup.com/wp-content/plugins/elementor/assets/lib/font-awesome/css/brands.min.css?ver=5.15.3
IP 161.97.187.97:0
File type ASCII text, with very long lines (489)
Hash 0a08469d24387f830bbaaa00b3c228ae
01f5dfeb8f93a32c9a8f66fe5940758109771fcd
3c7c29e5fc1193ff7ce24f72f77b2dc129e1a9434a97ef7b625f6f715531803c
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/elementor/assets/lib/font-awesome/css/brands.min.css?ver=5.15.3 HTTP/1.1
Host: ifcgmsconsultinggroup.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ifcgmsconsultinggroup.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 18 Dec 2022 02:12:53 GMT
content-type: text/css
content-length: 308
x-accel-version: 0.01
last-modified: Sat, 26 Nov 2022 09:33:38 GMT
etag: "2a3-5ee5c55440a4a-gzip"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
x-powered-by: PleskLin
X-Firefox-Spdy: h2
ifcgmsconsultinggroup.com/wp-content/plugins/elementor/assets/lib/eicons/css/elementor-icons.min.css?ver=5.16.0
161.97.187.97200 OK 46 kB URL HTTP/2 ifcgmsconsultinggroup.com/wp-content/plugins/elementor/assets/lib/eicons/css/elementor-icons.min.css?ver=5.16.0
IP 161.97.187.97:0
File type ASCII text, with very long lines (19233)
Hash eca5526fe789015a8883c8467846ffed
7e7f510c5e4fa9f12fa09c8d6f45f808b796244e
a3fc35f118335be773dadb1b928d9e1c348c08d7bb7605cebc9a3e37f186e3d4
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/elementor/assets/lib/eicons/css/elementor-icons.min.css?ver=5.16.0 HTTP/1.1
Host: ifcgmsconsultinggroup.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ifcgmsconsultinggroup.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 18 Dec 2022 02:12:53 GMT
content-type: text/css
last-modified: Sat, 26 Nov 2022 09:33:38 GMT
etag: W/"6381dd72-4b4f"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
ifcgmsconsultinggroup.com/wp-content/plugins/revslider/public/assets/assets/dummy.png
161.97.187.97200 OK 68 B URL HTTP/2 ifcgmsconsultinggroup.com/wp-content/plugins/revslider/public/assets/assets/dummy.png
IP 161.97.187.97:0
File type PNG image data, 1 x 1, 8-bit gray+alpha, non-interlaced\012- data
Hash 2a637d3d825673c0e3462fa4ed9a1c5c
81668d396da22832d75a986407ff10035e0d5899
69539b5b3777cffda28a66d7f2aa9b17c91ee1ec8fd50c00c442af91753a60f7
GET /wp-content/plugins/revslider/public/assets/assets/dummy.png HTTP/1.1
Host: ifcgmsconsultinggroup.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ifcgmsconsultinggroup.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 18 Dec 2022 02:12:53 GMT
content-type: image/png
content-length: 68
x-accel-version: 0.01
last-modified: Tue, 08 Nov 2022 02:42:06 GMT
etag: "44-5ecec7c6392c8"
accept-ranges: bytes
x-powered-by: PleskLin
X-Firefox-Spdy: h2
ifcgmsconsultinggroup.com/wp-content/uploads/elementor/css/post-6.css?ver=1669456559
161.97.187.97200 OK 21 kB URL HTTP/2 ifcgmsconsultinggroup.com/wp-content/uploads/elementor/css/post-6.css?ver=1669456559
IP 161.97.187.97:0
File type ASCII text, with very long lines (1160), with no line terminators
Hash 14f1012d4489b47e6177e250ac55ccb0
1ba78711f21577502461800ba4de3388686184da
8dfe5cc05336f38bcb810aa8dc5d06b51b6b75cb8dffc0010665974e233d960c
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/uploads/elementor/css/post-6.css?ver=1669456559 HTTP/1.1
Host: ifcgmsconsultinggroup.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ifcgmsconsultinggroup.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 18 Dec 2022 02:12:53 GMT
content-type: text/css
last-modified: Sat, 26 Nov 2022 09:55:59 GMT
etag: W/"6381e2af-488"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
ifcgmsconsultinggroup.com/wp-content/plugins/elementor-pro/assets/css/frontend-lite.min.css?ver=3.8.0
161.97.187.97200 OK 19 kB URL HTTP/2 ifcgmsconsultinggroup.com/wp-content/plugins/elementor-pro/assets/css/frontend-lite.min.css?ver=3.8.0
IP 161.97.187.97:0
File type ASCII text, with very long lines (11875)
Hash cb46bb9d6e6b32ed96c627d7a81bd8c5
1cb5960e4d5e9739416ccdbf29b7a057cce59921
2c85855741273999bca86c1f587d87731490a3151b16d46a5ffbe5cba585f6fe
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/elementor-pro/assets/css/frontend-lite.min.css?ver=3.8.0 HTTP/1.1
Host: ifcgmsconsultinggroup.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ifcgmsconsultinggroup.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 18 Dec 2022 02:12:53 GMT
content-type: text/css
last-modified: Tue, 08 Nov 2022 02:42:01 GMT
etag: W/"6369c1f9-2e8e"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
ifcgmsconsultinggroup.com/wp-content/uploads/2022/11/Excuses-Francais-Authentique-350x250.jpg
161.97.187.97200 OK 16 kB URL HTTP/2 ifcgmsconsultinggroup.com/wp-content/uploads/2022/11/Excuses-Francais-Authentique-350x250.jpg
IP 161.97.187.97:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 300x300, segment length 16, baseline, precision 8, 350x250, components 3\012- data
Hash 9a9da0cd99ce72546e2589fc05760855
4037fb15e7073f0d7e73d658af7b66467f7a42c3
a7a6ab3ae6af50302552cce4c48de0afb1c343dcd7ba536dced9df67fa0a3285
GET /wp-content/uploads/2022/11/Excuses-Francais-Authentique-350x250.jpg HTTP/1.1
Host: ifcgmsconsultinggroup.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ifcgmsconsultinggroup.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 18 Dec 2022 02:12:53 GMT
content-type: image/jpeg
content-length: 15843
last-modified: Fri, 11 Nov 2022 02:40:37 GMT
etag: "636db625-3de3"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
ifcgmsconsultinggroup.com/wp-content/plugins/elementor/assets/lib/font-awesome/css/all.min.css?ver=3.8.1
161.97.187.97200 OK 38 kB URL HTTP/2 ifcgmsconsultinggroup.com/wp-content/plugins/elementor/assets/lib/font-awesome/css/all.min.css?ver=3.8.1
IP 161.97.187.97:0
File type ASCII text, with very long lines (59158)
Hash dc24f5fd0bc692ae641b3e93d6a26257
50e2b4d54455038df9b682c40d494776867548ad
8a65a691b1f8de1f7ffea9b21f915d231ae40720afcf6167c6998a19a3ed9733
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/elementor/assets/lib/font-awesome/css/all.min.css?ver=3.8.1 HTTP/1.1
Host: ifcgmsconsultinggroup.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ifcgmsconsultinggroup.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 18 Dec 2022 02:12:53 GMT
content-type: text/css
last-modified: Sat, 26 Nov 2022 09:33:38 GMT
etag: W/"6381dd72-e7d0"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
ifcgmsconsultinggroup.com/wp-content/uploads/2022/11/gangrene-post-bac-350x250.webp
161.97.187.97200 OK 19 kB URL HTTP/2 ifcgmsconsultinggroup.com/wp-content/uploads/2022/11/gangrene-post-bac-350x250.webp
IP 161.97.187.97:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 350x250, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 003f1b5dc727066cc3931aa8d615fa40
0cf54d796058268cd0ecf9aba6b7731a3eae22a0
09324b26cce970f6de50b3f7434e2e9524a4a56ee63db502e369216c025a26a8
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/uploads/2022/11/gangrene-post-bac-350x250.webp HTTP/1.1
Host: ifcgmsconsultinggroup.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ifcgmsconsultinggroup.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 18 Dec 2022 02:12:53 GMT
content-type: image/webp
content-length: 19322
last-modified: Wed, 09 Nov 2022 10:27:44 GMT
etag: "636b80a0-4b7a"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
ifcgmsconsultinggroup.com/wp-content/uploads/2022/11/FILIERE-INNOVANTE2-350x250.jpg
161.97.187.97200 OK 19 kB URL HTTP/2 ifcgmsconsultinggroup.com/wp-content/uploads/2022/11/FILIERE-INNOVANTE2-350x250.jpg
IP 161.97.187.97:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 300x300, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=5, orientation=upper-left, xresolution=74, yresolution=82, resolutionunit=2], baseline, precision 8, 350x250, components 3\012- data
Hash 81be84e1d1dd8a7e5306bd7263b971a3
f177b2db09ff41d306b080f6b436327f74b8a04b
64dc5e6a39c1648fef39376644fbda64f71e3fd6dae3c2ba580d20afa955392b
GET /wp-content/uploads/2022/11/FILIERE-INNOVANTE2-350x250.jpg HTTP/1.1
Host: ifcgmsconsultinggroup.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ifcgmsconsultinggroup.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 18 Dec 2022 02:12:53 GMT
content-type: image/jpeg
content-length: 19343
last-modified: Fri, 11 Nov 2022 02:40:46 GMT
etag: "636db62e-4b8f"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
ifcgmsconsultinggroup.com/wp-content/uploads/2022/11/gm6.png
161.97.187.97200 OK 26 kB URL HTTP/2 ifcgmsconsultinggroup.com/wp-content/uploads/2022/11/gm6.png
IP 161.97.187.97:0
File type PNG image data, 110 x 56, 8-bit/color RGBA, interlaced\012- data
Hash 24de3186c599045f5c3b8bedaeb428cb
7903c4ea4e3aaef0d2d7a6b37fb91962f0faa113
5c0b806a8944f111131b3138b9b049c96efb1c4f9bf2a51067f2d28c3e5f6bf2
GET /wp-content/uploads/2022/11/gm6.png HTTP/1.1
Host: ifcgmsconsultinggroup.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ifcgmsconsultinggroup.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 18 Dec 2022 02:12:53 GMT
content-type: image/png
content-length: 26225
last-modified: Tue, 08 Nov 2022 02:42:17 GMT
etag: "6369c209-6671"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
ifcgmsconsultinggroup.com/wp-content/uploads/2022/11/gm2.png
161.97.187.97200 OK 31 kB URL HTTP/2 ifcgmsconsultinggroup.com/wp-content/uploads/2022/11/gm2.png
IP 161.97.187.97:0
File type PNG image data, 110 x 56, 8-bit/color RGBA, interlaced\012- data
Hash 0f72cc529b24c2251c71fb8e8f6fcde5
ff30b28c9263edcf6a3fa2ddcd9005e9bc8597b0
11f8540ac2e7019282e30c3ab78f90921eeb52d159387afa941d884457b78876
GET /wp-content/uploads/2022/11/gm2.png HTTP/1.1
Host: ifcgmsconsultinggroup.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ifcgmsconsultinggroup.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 18 Dec 2022 02:12:53 GMT
content-type: image/png
content-length: 31125
last-modified: Tue, 08 Nov 2022 02:42:17 GMT
etag: "6369c209-7995"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
www.googletagmanager.com/gtag/js?id=G-SPJ7LQ2ECM
142.250.74.168200 OK 79 kB URL HTTP/2 www.googletagmanager.com/gtag/js?id=G-SPJ7LQ2ECM
IP 142.250.74.168:0
File type ASCII text, with very long lines (26337)
Hash fc593db3a7e3e579c23fe8d3867cf464
c9110c6af80dcd226417319bc0b95550938a5b92
37cdc641ff60418f2611891319daefa214bedbca2ddee0477e5ddf2a894c7c9c
GET /gtag/js?id=G-SPJ7LQ2ECM HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ifcgmsconsultinggroup.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Sun, 18 Dec 2022 02:12:53 GMT
expires: Sun, 18 Dec 2022 02:12:53 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 79010
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash b09c5fd392d9d40a99ab4c70e59fd24e
40e39676ca8052fd8b9eab501750f0011737f507
8c2b60b0ec0a8121d5c5a8dda2ec1a57b923efe10246386262f359f6a458cdcd
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 18 Dec 2022 02:12:53 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ifcgmsconsultinggroup.com/wp-content/uploads/2022/11/gm1.png
161.97.187.97200 OK 33 kB URL HTTP/2 ifcgmsconsultinggroup.com/wp-content/uploads/2022/11/gm1.png
IP 161.97.187.97:0
File type PNG image data, 110 x 56, 8-bit/color RGBA, interlaced\012- data
Hash 60a449a035bae0a181e953ef205157d1
5fb723a9b4b1c99d386f22716d880b8f71119cd1
5861e1367e2c7fe2e8a89518b87db0c244ec1fffffb6a5cefa68b23b4699487f
GET /wp-content/uploads/2022/11/gm1.png HTTP/1.1
Host: ifcgmsconsultinggroup.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ifcgmsconsultinggroup.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 18 Dec 2022 02:12:53 GMT
content-type: image/png
content-length: 32716
last-modified: Tue, 08 Nov 2022 02:42:17 GMT
etag: "6369c209-7fcc"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
ifcgmsconsultinggroup.com/wp-content/uploads/2022/11/logo_commercialBank.png
161.97.187.97200 OK 8.1 kB URL HTTP/2 ifcgmsconsultinggroup.com/wp-content/uploads/2022/11/logo_commercialBank.png
IP 161.97.187.97:0
File type PNG image data, 110 x 56, 8-bit/color RGBA, non-interlaced\012- data
Hash a4865c5cd05f146c611d5a85d6948d69
57859e2bd5594700f7cb80b8d9ee0b36e344c2a6
e8981eca39f6c2e357a9076f7621d581757268b16dbb4ab92076133dbca22753
GET /wp-content/uploads/2022/11/logo_commercialBank.png HTTP/1.1
Host: ifcgmsconsultinggroup.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ifcgmsconsultinggroup.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 18 Dec 2022 02:12:53 GMT
content-type: image/png
content-length: 8093
last-modified: Tue, 08 Nov 2022 02:42:18 GMT
etag: "6369c20a-1f9d"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
ifcgmsconsultinggroup.com/wp-content/uploads/2022/11/chad.png
161.97.187.97200 OK 11 kB URL HTTP/2 ifcgmsconsultinggroup.com/wp-content/uploads/2022/11/chad.png
IP 161.97.187.97:0
File type PNG image data, 110 x 56, 8-bit/color RGBA, non-interlaced\012- data
Hash 17a9e08956aeee81e325e350bb11f35b
7e28a7aa94079cde80766587e3d0b5736e435089
7aced306b0657029a9df94bfca2c298efb0e2962f30238fe5abe6a2ffb2da03f
GET /wp-content/uploads/2022/11/chad.png HTTP/1.1
Host: ifcgmsconsultinggroup.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ifcgmsconsultinggroup.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 18 Dec 2022 02:12:53 GMT
content-type: image/png
content-length: 10924
last-modified: Tue, 08 Nov 2022 02:42:15 GMT
etag: "6369c207-2aac"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
ifcgmsconsultinggroup.com/wp-content/uploads/2022/11/gm3.png
161.97.187.97200 OK 25 kB URL HTTP/2 ifcgmsconsultinggroup.com/wp-content/uploads/2022/11/gm3.png
IP 161.97.187.97:0
File type PNG image data, 61 x 56, 8-bit/color RGBA, interlaced\012- data
Hash bbe20ec1196a4a5e6b3ef6c64b313947
d38261246611437a7d3e2e261cab95225f971831
00e91caf73f0639e777c977f2640daf8de64644d25354d8d0840ae7db8e20607
GET /wp-content/uploads/2022/11/gm3.png HTTP/1.1
Host: ifcgmsconsultinggroup.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ifcgmsconsultinggroup.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 18 Dec 2022 02:12:53 GMT
content-type: image/png
content-length: 24801
last-modified: Tue, 08 Nov 2022 02:42:17 GMT
etag: "6369c209-60e1"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
ifcgmsconsultinggroup.com/wp-content/uploads/2022/11/gm7.png
161.97.187.97200 OK 24 kB URL HTTP/2 ifcgmsconsultinggroup.com/wp-content/uploads/2022/11/gm7.png
IP 161.97.187.97:0
File type PNG image data, 110 x 56, 8-bit/color RGBA, interlaced\012- data
Hash b0658c662454284a257a1b35ce097bef
1862bb737bdf69c4feec1aaf69eb391601b61dd0
d422eaad4f57c4a56b2bf0cb013b841cb059949de9788cce48972c43fff3bd21
GET /wp-content/uploads/2022/11/gm7.png HTTP/1.1
Host: ifcgmsconsultinggroup.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ifcgmsconsultinggroup.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 18 Dec 2022 02:12:53 GMT
content-type: image/png
content-length: 24453
last-modified: Tue, 08 Nov 2022 02:42:17 GMT
etag: "6369c209-5f85"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
ifcgmsconsultinggroup.com/wp-content/uploads/2022/11/gm8.png
161.97.187.97200 OK 29 kB URL HTTP/2 ifcgmsconsultinggroup.com/wp-content/uploads/2022/11/gm8.png
IP 161.97.187.97:0
File type PNG image data, 110 x 56, 8-bit/color RGBA, interlaced\012- data
Hash e9b83416833a953364a5ea3ff03421e9
c51d5f9199082388df95336fbe31ec37bf166f09
b76703d0c86ac65daef27d3c35bd9a2bab7d3869ecd11c970e5a17254c55b50f
GET /wp-content/uploads/2022/11/gm8.png HTTP/1.1
Host: ifcgmsconsultinggroup.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ifcgmsconsultinggroup.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 18 Dec 2022 02:12:53 GMT
content-type: image/png
content-length: 29432
last-modified: Tue, 08 Nov 2022 02:42:17 GMT
etag: "6369c209-72f8"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
ifcgmsconsultinggroup.com/wp-content/uploads/elementor/css/post-1071.css?ver=1669456561
161.97.187.97200 OK 31 kB URL HTTP/2 ifcgmsconsultinggroup.com/wp-content/uploads/elementor/css/post-1071.css?ver=1669456561
IP 161.97.187.97:0
File type ASCII text, with very long lines (45614)
Hash 54de77ffe0058655fe4853205c6ba281
62ecbd73ab093b70c03dcc3ad9102a7b57764fe2
fbd3ca96d43fed2f396b1b0ba4bc979591f12f100a9bd642d13273c9292a8a77
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/uploads/elementor/css/post-1071.css?ver=1669456561 HTTP/1.1
Host: ifcgmsconsultinggroup.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ifcgmsconsultinggroup.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 18 Dec 2022 02:12:53 GMT
content-type: text/css
last-modified: Sat, 26 Nov 2022 09:56:01 GMT
etag: W/"6381e2b1-d6da"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
ifcgmsconsultinggroup.com/wp-content/plugins/elementor/assets/lib/font-awesome/css/v4-shims.min.css?ver=3.8.1
161.97.187.97200 OK 11 kB URL HTTP/2 ifcgmsconsultinggroup.com/wp-content/plugins/elementor/assets/lib/font-awesome/css/v4-shims.min.css?ver=3.8.1
IP 161.97.187.97:0
File type ASCII text, with very long lines (26516)
Hash f9299dd4d78ea7682d02f79360ce4f9c
ad505df89ebb301edfc8cbd09ddf4bd96c088090
b2ec4a4269649e39047db81794f41c4da37f6cc36506740edfdd8210b80e126d
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/elementor/assets/lib/font-awesome/css/v4-shims.min.css?ver=3.8.1 HTTP/1.1
Host: ifcgmsconsultinggroup.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ifcgmsconsultinggroup.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 18 Dec 2022 02:12:53 GMT
content-type: text/css
last-modified: Sat, 26 Nov 2022 09:33:38 GMT
etag: W/"6381dd72-684e"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
ifcgmsconsultinggroup.com/wp-content/uploads/2022/11/gm5.png
161.97.187.97200 OK 29 kB URL HTTP/2 ifcgmsconsultinggroup.com/wp-content/uploads/2022/11/gm5.png
IP 161.97.187.97:0
File type PNG image data, 110 x 56, 8-bit/color RGBA, interlaced\012- data
Hash a3bf7e392ac143aabacf9b62ba122b03
b8c0ac2b20039db1203e45bf7dbc29d1bd355172
1b7d7863d27a532d02fc55487e0c9a4f02559b15c25801f5f3f6c2e64bb27f60
GET /wp-content/uploads/2022/11/gm5.png HTTP/1.1
Host: ifcgmsconsultinggroup.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ifcgmsconsultinggroup.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 18 Dec 2022 02:12:53 GMT
content-type: image/png
content-length: 28598
last-modified: Tue, 08 Nov 2022 02:42:17 GMT
etag: "6369c209-6fb6"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
ifcgmsconsultinggroup.com/wp-content/uploads/2022/11/olinga-ifc.jpg
161.97.187.97200 OK 24 kB URL HTTP/2 ifcgmsconsultinggroup.com/wp-content/uploads/2022/11/olinga-ifc.jpg
IP 161.97.187.97:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 82", baseline, precision 8, 410x395, components 3\012- data
Hash 429aa9be756d3029a32acceeb7522470
f65d92588967e2d3656ea8fe5ef90b5ad59ec0c5
a8ce93b8fc6198affe1513107cb4703ee42615ca1c414eaa2402e60269a1aec6
GET /wp-content/uploads/2022/11/olinga-ifc.jpg HTTP/1.1
Host: ifcgmsconsultinggroup.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ifcgmsconsultinggroup.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 18 Dec 2022 02:12:53 GMT
content-type: image/jpeg
content-length: 23450
last-modified: Tue, 08 Nov 2022 02:42:19 GMT
etag: "6369c20b-5b9a"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
ifcgmsconsultinggroup.com/wp-content/uploads/2022/11/bibou-ifc.jpg
161.97.187.97200 OK 34 kB URL HTTP/2 ifcgmsconsultinggroup.com/wp-content/uploads/2022/11/bibou-ifc.jpg
IP 161.97.187.97:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, baseline, precision 8, 261x300, components 3\012- data
Hash 99b5bf8465a2b6c2a39091fa6dccc178
e686ed4db1082b70b490b7d807b7de50db69a9bc
c7b379627c7b74a69d6c06a79b5e7a4bfffae759a9867852a72481b10076694e
GET /wp-content/uploads/2022/11/bibou-ifc.jpg HTTP/1.1
Host: ifcgmsconsultinggroup.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ifcgmsconsultinggroup.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 18 Dec 2022 02:12:53 GMT
content-type: image/jpeg
content-length: 34014
last-modified: Tue, 08 Nov 2022 02:42:15 GMT
etag: "6369c207-84de"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
ifcgmsconsultinggroup.com/wp-content/uploads/2022/11/lipem-ifc.jpg
161.97.187.97200 OK 73 kB URL HTTP/2 ifcgmsconsultinggroup.com/wp-content/uploads/2022/11/lipem-ifc.jpg
IP 161.97.187.97:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, baseline, precision 8, 533x546, components 3\012- data
Hash d7fd1efdf07399374e1d7e44785e7e2f
a41859c10d4733a67ebbf503268f565cc1e65159
b963003a536cec899f9ab2678a4f818c0604be75428b91b1e1fe1c8dffa234f3
GET /wp-content/uploads/2022/11/lipem-ifc.jpg HTTP/1.1
Host: ifcgmsconsultinggroup.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ifcgmsconsultinggroup.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 18 Dec 2022 02:12:53 GMT
content-type: image/jpeg
content-length: 72625
last-modified: Tue, 08 Nov 2022 02:42:18 GMT
etag: "6369c20a-11bb1"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
ifcgmsconsultinggroup.com/wp-content/uploads/2022/11/HENRI-SAMGBA-e1648204192780.jpg
161.97.187.97200 OK 23 kB URL HTTP/2 ifcgmsconsultinggroup.com/wp-content/uploads/2022/11/HENRI-SAMGBA-e1648204192780.jpg
IP 161.97.187.97:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 82", baseline, precision 8, 406x298, components 3\012- data
Hash 69e665b135addc0db528d20769129d83
93a0942ae94ef27a590cb5934be51a92aa0f5b6f
b6a2934ab019dea29eab654639334e0a8b2fbf56633948d5750d2037719c2593
GET /wp-content/uploads/2022/11/HENRI-SAMGBA-e1648204192780.jpg HTTP/1.1
Host: ifcgmsconsultinggroup.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ifcgmsconsultinggroup.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 18 Dec 2022 02:12:53 GMT
content-type: image/jpeg
content-length: 22605
last-modified: Tue, 08 Nov 2022 02:42:17 GMT
etag: "6369c209-584d"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
ifcgmsconsultinggroup.com/wp-content/uploads/2022/11/LONTSI-PIETA-Sanchez.jpg
161.97.187.97200 OK 87 kB URL HTTP/2 ifcgmsconsultinggroup.com/wp-content/uploads/2022/11/LONTSI-PIETA-Sanchez.jpg
IP 161.97.187.97:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, baseline, precision 8, 559x512, components 3\012- data
Hash 26239bbcebd700a9295325a23fedf265
50a362502e3883b6fb18e04db64eb7bef5cfd029
d7be317d9027c13f70a3bf2c33d5386f3c334e102fde8c0f7ceefb783862880f
GET /wp-content/uploads/2022/11/LONTSI-PIETA-Sanchez.jpg HTTP/1.1
Host: ifcgmsconsultinggroup.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ifcgmsconsultinggroup.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 18 Dec 2022 02:12:53 GMT
content-type: image/jpeg
content-length: 87202
last-modified: Tue, 08 Nov 2022 02:42:18 GMT
etag: "6369c20a-154a2"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
ifcgmsconsultinggroup.com/wp-content/uploads/2022/11/MENOUNGA-Jean-Damas-1.jpg
161.97.187.97200 OK 62 kB URL HTTP/2 ifcgmsconsultinggroup.com/wp-content/uploads/2022/11/MENOUNGA-Jean-Damas-1.jpg
IP 161.97.187.97:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, baseline, precision 8, 810x764, components 3\012- data
Hash eb107f2231cbf4ae8f8991e89d4dd6d9
7a9f939b1675fde2f0c7c13cb19e4abaecdd0ad3
c3ec3222cff4ba11eb9dc43f0843a99a6af2a9cfb8f4681855f61f933dee8e21
GET /wp-content/uploads/2022/11/MENOUNGA-Jean-Damas-1.jpg HTTP/1.1
Host: ifcgmsconsultinggroup.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ifcgmsconsultinggroup.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 18 Dec 2022 02:12:53 GMT
content-type: image/jpeg
content-length: 61610
last-modified: Tue, 08 Nov 2022 02:42:18 GMT
etag: "6369c20a-f0aa"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash b09c5fd392d9d40a99ab4c70e59fd24e
40e39676ca8052fd8b9eab501750f0011737f507
8c2b60b0ec0a8121d5c5a8dda2ec1a57b923efe10246386262f359f6a458cdcd
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 18 Dec 2022 02:12:54 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ifcgmsconsultinggroup.com/wp-content/plugins/revslider/public/assets/fonts/revicons/revicons.woff?5510888
161.97.187.97200 OK 7.5 kB URL HTTP/2 ifcgmsconsultinggroup.com/wp-content/plugins/revslider/public/assets/fonts/revicons/revicons.woff?5510888
IP 161.97.187.97:0
File type Web Open Font Format, TrueType, length 7536, version 1.0\012- data
Hash 04eb8fc57f27498e5ae37523e3bfb2c7
d942ae11706c3f7e511e3c49b0e4574d7ad199c4
f7b9c3065e55fa3b9e320093612e7b30dcb14355a44ec461247b495a3e729686
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/revslider/public/assets/fonts/revicons/revicons.woff?5510888 HTTP/1.1
Host: ifcgmsconsultinggroup.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ifcgmsconsultinggroup.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 18 Dec 2022 02:12:53 GMT
content-type: application/font-woff
content-length: 7536
last-modified: Tue, 08 Nov 2022 02:42:09 GMT
etag: "6369c201-1d70"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
ifcgmsconsultinggroup.com/wp-content/uploads/2022/11/logo-ifc.png
161.97.187.97200 OK 20 kB URL HTTP/2 ifcgmsconsultinggroup.com/wp-content/uploads/2022/11/logo-ifc.png
IP 161.97.187.97:0
File type PNG image data, 560 x 383, 8-bit/color RGBA, non-interlaced\012- data
Hash c39884ced60671a2b7992c5fc24b5ef9
60d1a4bc4b1dd26157dbd4946ac6523547f69e75
1337cdde14edc04452b5d1fe02f5180ffe45c018028ce2f123ddb97eb4223ebe
GET /wp-content/uploads/2022/11/logo-ifc.png HTTP/1.1
Host: ifcgmsconsultinggroup.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ifcgmsconsultinggroup.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 18 Dec 2022 02:12:53 GMT
content-type: image/png
content-length: 19863
last-modified: Tue, 08 Nov 2022 04:03:07 GMT
etag: "6369d4fb-4d97"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
ifcgmsconsultinggroup.com/wp-content/uploads/essential-addons-elementor/eael-7435.js?ver=1669396630
161.97.187.97200 OK 0 B URL HTTP/2 ifcgmsconsultinggroup.com/wp-content/uploads/essential-addons-elementor/eael-7435.js?ver=1669396630
IP 161.97.187.97:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/uploads/essential-addons-elementor/eael-7435.js?ver=1669396630 HTTP/1.1
Host: ifcgmsconsultinggroup.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ifcgmsconsultinggroup.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 18 Dec 2022 02:12:53 GMT
content-type: application/javascript
content-length: 0
x-accel-version: 0.01
last-modified: Tue, 08 Nov 2022 02:42:20 GMT
etag: "0-5ecec7d2caf5b"
accept-ranges: bytes
x-powered-by: PleskLin
X-Firefox-Spdy: h2
ifcgmsconsultinggroup.com/wp-content/plugins/elementor-pro/assets/css/widget-carousel.min.css
161.97.187.97200 OK 3.8 kB URL HTTP/2 ifcgmsconsultinggroup.com/wp-content/plugins/elementor-pro/assets/css/widget-carousel.min.css
IP 161.97.187.97:0
File type ASCII text, with very long lines (36838)
Hash 1ad674ef0575b1ed22fecdd51bfcd24b
68049859f2d9bd3f001bf7b424916bf8e1c3255f
abbf87133df1c7359d0dc77bf0d9001c8e5acb48b74b7d1b2b2bffd4580c2b70
GET /wp-content/plugins/elementor-pro/assets/css/widget-carousel.min.css HTTP/1.1
Host: ifcgmsconsultinggroup.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ifcgmsconsultinggroup.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 18 Dec 2022 02:12:53 GMT
content-type: text/css
last-modified: Tue, 08 Nov 2022 02:42:01 GMT
etag: W/"6369c1f9-9011"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
ifcgmsconsultinggroup.com/wp-content/themes/consulting/assets/js/stm-hfe.js?ver=6.3.6
161.97.187.97200 OK 307 B URL HTTP/2 ifcgmsconsultinggroup.com/wp-content/themes/consulting/assets/js/stm-hfe.js?ver=6.3.6
IP 161.97.187.97:0
Hash 02a62eea2840bb78c317369c31c0d930
34ef55d10389af6e45643ab7eb865f999d82e033
f9081c5d82738cf9fe507e9737dae96bef66fc578c498bd08d07d39e866e3c0c
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/consulting/assets/js/stm-hfe.js?ver=6.3.6 HTTP/1.1
Host: ifcgmsconsultinggroup.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ifcgmsconsultinggroup.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 18 Dec 2022 02:12:54 GMT
content-type: application/javascript
content-length: 307
x-accel-version: 0.01
last-modified: Tue, 08 Nov 2022 02:42:14 GMT
etag: "302-5ecec7cd298c4-gzip"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
x-powered-by: PleskLin
X-Firefox-Spdy: h2
ifcgmsconsultinggroup.com/wp-content/plugins/pearl-header-builder/assets/frontend/assets/js/modal.js?ver=1.0
161.97.187.97200 OK 166 B URL HTTP/2 ifcgmsconsultinggroup.com/wp-content/plugins/pearl-header-builder/assets/frontend/assets/js/modal.js?ver=1.0
IP 161.97.187.97:0
Hash df1dd146cfb4c3a6e53f17b74cf2ab3a
ae289c1d39dda54ea71c71c31b69036434a49c43
30d1489b8276d25fa90f8e8d0b9bbc2eb37bd0e0aabe2c608ca02de1e3258dd8
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/pearl-header-builder/assets/frontend/assets/js/modal.js?ver=1.0 HTTP/1.1
Host: ifcgmsconsultinggroup.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ifcgmsconsultinggroup.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 18 Dec 2022 02:12:54 GMT
content-type: application/javascript
content-length: 166
x-accel-version: 0.01
last-modified: Tue, 08 Nov 2022 02:42:06 GMT
etag: "118-5ecec7c5903a6-gzip"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
x-powered-by: PleskLin
X-Firefox-Spdy: h2
ifcgmsconsultinggroup.com/wp-content/plugins/essential-addons-for-elementor-lite/assets/front-end/css/view/general.min.css?ver=5.4.4
161.97.187.97200 OK 1.1 kB URL HTTP/2 ifcgmsconsultinggroup.com/wp-content/plugins/essential-addons-for-elementor-lite/assets/front-end/css/view/general.min.css?ver=5.4.4
IP 161.97.187.97:0
File type ASCII text, with very long lines (3432)
Hash 051004bfec25aaf2279218d4d6fc8aa8
6900a6242b704e19ea45ef707ad1dbc8dbe42d5c
6ee1a4b5029932c502429d3fd07a5da9c51ea4ce3a6c4378bb43c7991baba7ef
GET /wp-content/plugins/essential-addons-for-elementor-lite/assets/front-end/css/view/general.min.css?ver=5.4.4 HTTP/1.1
Host: ifcgmsconsultinggroup.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ifcgmsconsultinggroup.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 18 Dec 2022 02:12:53 GMT
content-type: text/css
last-modified: Sat, 26 Nov 2022 09:33:55 GMT
etag: W/"6381dd83-d69"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
ifcgmsconsultinggroup.com/wp-content/uploads/stm_fonts/stm/stm.ttf?oljwaf
161.97.187.97200 OK 93 kB URL HTTP/2 ifcgmsconsultinggroup.com/wp-content/uploads/stm_fonts/stm/stm.ttf?oljwaf
IP 161.97.187.97:0
File type TrueType Font data, 11 tables, 1st "OS/2", 14 names, Macintosh, type 1 string, stm \012- data
Hash 39fb4f050beb4bdb58ba81abf37d1f5a
4d6fde110985b7d919e06b7dc557ab2988a70a87
e2cfedd7a30693d6e54379e7d41a442d1daf5f6161c7bc77c40a4d313027f4dc
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/uploads/stm_fonts/stm/stm.ttf?oljwaf HTTP/1.1
Host: ifcgmsconsultinggroup.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ifcgmsconsultinggroup.com/wp-content/uploads/stm_fonts/stm/stm.css?ver=1.0
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 18 Dec 2022 02:12:54 GMT
content-type: application/font-sfnt
content-length: 93104
last-modified: Tue, 08 Nov 2022 02:42:20 GMT
etag: "6369c20c-16bb0"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
ifcgmsconsultinggroup.com/wp-content/plugins/revslider/public/assets/js/rbtools.min.js?ver=6.6.3
161.97.187.97200 OK 136 kB URL HTTP/2 ifcgmsconsultinggroup.com/wp-content/plugins/revslider/public/assets/js/rbtools.min.js?ver=6.6.3
IP 161.97.187.97:0
File type ASCII text, with very long lines (45047)
Size 136 kB (136034 bytes)
Hash fb160e18d65d0c5a0f0f1b6e42bbffbc
b51d7e682d2d887da6769cefe4641117de52f48b
d6e554e271a332152dbc4351fb997d5b510cbc224434b47717843f27b037a4e9
GET /wp-content/plugins/revslider/public/assets/js/rbtools.min.js?ver=6.6.3 HTTP/1.1
Host: ifcgmsconsultinggroup.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ifcgmsconsultinggroup.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 18 Dec 2022 02:12:53 GMT
content-type: application/javascript
last-modified: Tue, 08 Nov 2022 02:42:09 GMT
etag: W/"6369c201-285db"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
ifcgmsconsultinggroup.com/wp-content/plugins/pearl-header-builder/assets/frontend/assets/fonts/fontawesome-webfont.woff2?v=4.7.0
161.97.187.97200 OK 77 kB URL HTTP/2 ifcgmsconsultinggroup.com/wp-content/plugins/pearl-header-builder/assets/frontend/assets/fonts/fontawesome-webfont.woff2?v=4.7.0
IP 161.97.187.97:0
File type Web Open Font Format (Version 2), TrueType, length 77160, version 4.459\012- data
Hash af7ae505a9eed503f8b8e6982036873e
d6f48cba7d076fb6f2fd6ba993a75b9dc1ecbf0c
2adefcbc041e7d18fcf2d417879dc5a09997aa64d675b7a3c4b6ce33da13f3fe
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/pearl-header-builder/assets/frontend/assets/fonts/fontawesome-webfont.woff2?v=4.7.0 HTTP/1.1
Host: ifcgmsconsultinggroup.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://ifcgmsconsultinggroup.com/wp-content/plugins/pearl-header-builder/assets/frontend/assets/css/font-awesome.min.css?ver=1.0
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 18 Dec 2022 02:12:54 GMT
content-type: font/woff2
content-length: 77160
last-modified: Tue, 08 Nov 2022 02:42:06 GMT
etag: "6369c1fe-12d68"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash fdbb7ba725cc70f13ad981863c8c5581
1b9a678e8f3b68f162bc7a6e7bde5171f5415046
dcab650b9fa579906912c3b598b7099cf0728e72b7782d5362849ef310a00965
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 18 Dec 2022 02:12:54 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ifcgmsconsultinggroup.com/wp-content/plugins/elementor/assets/lib/font-awesome/css/fontawesome.min.css?ver=5.15.3
161.97.187.97200 OK 13 kB URL HTTP/2 ifcgmsconsultinggroup.com/wp-content/plugins/elementor/assets/lib/font-awesome/css/fontawesome.min.css?ver=5.15.3
IP 161.97.187.97:0
File type ASCII text, with very long lines (57726)
Hash 8daaacd0d59192ca1ba438710f69aefc
4c24f329b4bc59b9e2ce53d83afd805dc65e951c
49db481fa3d4e34d192ea73a0fe99c85c024be9e82d22993bc75ed1ad65b9597
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/elementor/assets/lib/font-awesome/css/fontawesome.min.css?ver=5.15.3 HTTP/1.1
Host: ifcgmsconsultinggroup.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ifcgmsconsultinggroup.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 18 Dec 2022 02:12:53 GMT
content-type: text/css
last-modified: Sat, 26 Nov 2022 09:33:38 GMT
etag: W/"6381dd72-e238"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash fdbb7ba725cc70f13ad981863c8c5581
1b9a678e8f3b68f162bc7a6e7bde5171f5415046
dcab650b9fa579906912c3b598b7099cf0728e72b7782d5362849ef310a00965
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 18 Dec 2022 02:12:54 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash fdbb7ba725cc70f13ad981863c8c5581
1b9a678e8f3b68f162bc7a6e7bde5171f5415046
dcab650b9fa579906912c3b598b7099cf0728e72b7782d5362849ef310a00965
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 18 Dec 2022 02:12:54 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ifcgmsconsultinggroup.com/wp-content/plugins/revslider/public/assets/css/rs6.css?ver=6.6.3
161.97.187.97200 OK 20 kB URL HTTP/2 ifcgmsconsultinggroup.com/wp-content/plugins/revslider/public/assets/css/rs6.css?ver=6.6.3
IP 161.97.187.97:0
File type Unicode text, UTF-8 text, with very long lines (12602)
Hash cd0102749ed0158d954dc8aaa659057e
8e76a3c289449bdc3ce0db04eb6b51fca3e31f8b
2fa6d8aac353c7f0c384c4a463640e1de3cd8cd7ad4f0055e07f52c6a88b1a00
GET /wp-content/plugins/revslider/public/assets/css/rs6.css?ver=6.6.3 HTTP/1.1
Host: ifcgmsconsultinggroup.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ifcgmsconsultinggroup.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 18 Dec 2022 02:12:53 GMT
content-type: text/css
last-modified: Tue, 08 Nov 2022 02:42:09 GMT
etag: W/"6369c201-e394"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
fonts.gstatic.com/s/poppins/v20/pxiByp8kv8JHgFVrLEj6Z1xlFQ.woff2
142.250.74.35200 OK 8.0 kB URL HTTP/2 fonts.gstatic.com/s/poppins/v20/pxiByp8kv8JHgFVrLEj6Z1xlFQ.woff2
IP 142.250.74.35:0
File type Web Open Font Format (Version 2), TrueType, length 8000, version 1.0\012- data
Hash 72993dddf88a63e8f226656f7de88e57
179f97ec0275f09603a8db94d4380eb584d81cd5
f4e80d9dfd374d02989b87a27b5ed4cb78fbb177c27f1478e9a8b0afb7513149
GET /s/poppins/v20/pxiByp8kv8JHgFVrLEj6Z1xlFQ.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://ifcgmsconsultinggroup.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 8000
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 16 Dec 2022 13:33:11 GMT
expires: Sat, 16 Dec 2023 13:33:11 GMT
cache-control: public, max-age=31536000
age: 131983
last-modified: Wed, 27 Apr 2022 16:59:07 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ifcgmsconsultinggroup.com/wp-content/plugins/essential-addons-for-elementor-lite/assets/front-end/js/view/general.min.js?ver=5.4.4
161.97.187.97200 OK 11 kB URL HTTP/2 ifcgmsconsultinggroup.com/wp-content/plugins/essential-addons-for-elementor-lite/assets/front-end/js/view/general.min.js?ver=5.4.4
IP 161.97.187.97:0
File type ASCII text, with very long lines (8185), with no line terminators
Hash a56067160449e19060b4cb1fcc1c5fd1
1a9107508d4cbb77f8fe2dc4c9776bdbf61c0ed0
04e1db305502560f1db44ce1e0a5d62659aa9b26ecf14eeaa9f5b01d7bc10ee5
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/essential-addons-for-elementor-lite/assets/front-end/js/view/general.min.js?ver=5.4.4 HTTP/1.1
Host: ifcgmsconsultinggroup.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ifcgmsconsultinggroup.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 18 Dec 2022 02:12:53 GMT
content-type: application/javascript
last-modified: Sat, 26 Nov 2022 09:33:55 GMT
etag: W/"6381dd83-1ff9"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
ifcgmsconsultinggroup.com/wp-content/plugins/elementor/assets/lib/font-awesome/webfonts/fa-regular-400.woff2
161.97.187.97200 OK 13 kB URL HTTP/2 ifcgmsconsultinggroup.com/wp-content/plugins/elementor/assets/lib/font-awesome/webfonts/fa-regular-400.woff2
IP 161.97.187.97:0
File type Web Open Font Format (Version 2), TrueType, length 13276, version 331.-31261\012- data
Hash f0f8230116992e521526097a28f54066
0447c6b10bbf73f97b23dcfd6e6a48510822cb6e
8afc6e5e842baab16010c2ce6fcf48ec4ded8e1579a37c1f1bc027e120d04951
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/elementor/assets/lib/font-awesome/webfonts/fa-regular-400.woff2 HTTP/1.1
Host: ifcgmsconsultinggroup.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://ifcgmsconsultinggroup.com/wp-content/plugins/elementor/assets/lib/font-awesome/css/regular.min.css?ver=5.15.3
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 18 Dec 2022 02:12:54 GMT
content-type: font/woff2
content-length: 13276
last-modified: Sat, 26 Nov 2022 09:33:38 GMT
etag: "6381dd72-33dc"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
ifcgmsconsultinggroup.com/wp-content/plugins/elementor/assets/lib/eicons/fonts/eicons.woff2?5.16.0
161.97.187.97200 OK 93 kB URL HTTP/2 ifcgmsconsultinggroup.com/wp-content/plugins/elementor/assets/lib/eicons/fonts/eicons.woff2?5.16.0
IP 161.97.187.97:0
File type Web Open Font Format (Version 2), TrueType, length 93372, version 1.0\012- data
Hash aab0bb3379e0eb7ebc26071db61fbd57
711c8d350c4192c2f1aa7f73551445b89fb4b161
691fa7d17effc7d303eda0ad7e4a1d91b2f375506cfc8a774480cc2b55f156ea
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/elementor/assets/lib/eicons/fonts/eicons.woff2?5.16.0 HTTP/1.1
Host: ifcgmsconsultinggroup.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://ifcgmsconsultinggroup.com/wp-content/plugins/elementor/assets/lib/eicons/css/elementor-icons.min.css?ver=5.16.0
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 18 Dec 2022 02:12:54 GMT
content-type: font/woff2
content-length: 93372
last-modified: Sat, 26 Nov 2022 09:33:38 GMT
etag: "6381dd72-16cbc"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
fonts.googleapis.com/css?family=Roboto%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic%7CRoboto+Slab%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic%7CPoppins%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic&display=swap&ver=6.1.1
142.250.74.106200 OK 10 kB URL HTTP/2 fonts.googleapis.com/css?family=Roboto%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic%7CRoboto+Slab%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic%7CPoppins%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic&display=swap&ver=6.1.1
IP 142.250.74.106:0
Hash 7a1ad9471718a8f88d801b546fd802e3
89e80dfb50cd54ad5db55bbb6928d8cc59e8fd4a
784335c2646af1f5cca0b7b63d29d1ce59c227683a5b2a002d26233293145b8b
GET /css?family=Roboto%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic%7CRoboto+Slab%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic%7CPoppins%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic&display=swap&ver=6.1.1 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ifcgmsconsultinggroup.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Sun, 18 Dec 2022 02:12:53 GMT
date: Sun, 18 Dec 2022 02:12:53 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/poppins/v20/pxiByp8kv8JHgFVrLGT9Z1xlFQ.woff2
142.250.74.35200 OK 7.7 kB URL HTTP/2 fonts.gstatic.com/s/poppins/v20/pxiByp8kv8JHgFVrLGT9Z1xlFQ.woff2
IP 142.250.74.35:0
File type Web Open Font Format (Version 2), TrueType, length 7748, version 1.0\012- data
Hash a09f2fccfee35b7247b08a1a266f0328
0da2d17e738f46d2a09e6fb7969da451719a9820
cd36de204aca2d5fa263a731f7c20009b5e3d754ba1f1e03c33e93a48f3e7446
GET /s/poppins/v20/pxiByp8kv8JHgFVrLGT9Z1xlFQ.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://ifcgmsconsultinggroup.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 7748
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 14 Dec 2022 19:28:50 GMT
expires: Thu, 14 Dec 2023 19:28:50 GMT
cache-control: public, max-age=31536000
age: 283444
last-modified: Wed, 27 Apr 2022 16:21:30 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ifcgmsconsultinggroup.com/wp-includes/js/wp-emoji-release.min.js?ver=6.1.1
161.97.187.97200 OK 13 kB URL HTTP/2 ifcgmsconsultinggroup.com/wp-includes/js/wp-emoji-release.min.js?ver=6.1.1
IP 161.97.187.97:0
File type ASCII text, with very long lines (15660)
Hash dcb42c3b465ddd627b1aef870600c371
a37eefd262edcee71b52b1f584f6afbbabcbd711
e37a66a995713e6f4604d9737093f9c550fa63f806f8489aafae4144a3d8d6c9
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/wp-emoji-release.min.js?ver=6.1.1 HTTP/1.1
Host: ifcgmsconsultinggroup.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ifcgmsconsultinggroup.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 18 Dec 2022 02:12:53 GMT
content-type: application/javascript
last-modified: Tue, 08 Nov 2022 02:42:24 GMT
etag: W/"6369c210-48b9"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash fdbb7ba725cc70f13ad981863c8c5581
1b9a678e8f3b68f162bc7a6e7bde5171f5415046
dcab650b9fa579906912c3b598b7099cf0728e72b7782d5362849ef310a00965
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 18 Dec 2022 02:12:54 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ifcgmsconsultinggroup.com/wp-content/uploads/2022/11/informatique-et-digital-1024x576.webp
161.97.187.97200 OK 49 kB URL HTTP/2 ifcgmsconsultinggroup.com/wp-content/uploads/2022/11/informatique-et-digital-1024x576.webp
IP 161.97.187.97:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 1024x576, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 2fb096b856e556e874148e9531842779
37f453577d7c1f2f7c8e3f655f525ee530dd40b7
2fd294f45cff385fa433b0c133334c5e699370f50b5d9238140e5c93670bf51e
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/uploads/2022/11/informatique-et-digital-1024x576.webp HTTP/1.1
Host: ifcgmsconsultinggroup.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ifcgmsconsultinggroup.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 18 Dec 2022 02:12:54 GMT
content-type: image/webp
content-length: 49184
last-modified: Tue, 08 Nov 2022 02:42:18 GMT
etag: "6369c20a-c020"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
ifcgmsconsultinggroup.com/wp-content/plugins/elementor/assets/css/widget-icon-list.min.css
161.97.187.97200 OK 49 kB URL HTTP/2 ifcgmsconsultinggroup.com/wp-content/plugins/elementor/assets/css/widget-icon-list.min.css
IP 161.97.187.97:0
File type ASCII text, with very long lines (11736)
Hash 52acdba10fc21b639d4439177af64e6d
e5fe76c5b886dce3ed5c7a9ba09ebe835bbf00c5
afc10e309c11a912b9cfc64e6dd30f5e74dd698a1cfc038de773cfd39badde34
GET /wp-content/plugins/elementor/assets/css/widget-icon-list.min.css HTTP/1.1
Host: ifcgmsconsultinggroup.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ifcgmsconsultinggroup.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 18 Dec 2022 02:12:53 GMT
content-type: text/css
last-modified: Sat, 26 Nov 2022 09:33:38 GMT
etag: W/"6381dd72-2dff"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
ifcgmsconsultinggroup.com/wp-content/uploads/2022/11/cropped-logo-ifc-gms-32x32.png
161.97.187.97200 OK 1.9 kB URL HTTP/2 ifcgmsconsultinggroup.com/wp-content/uploads/2022/11/cropped-logo-ifc-gms-32x32.png
IP 161.97.187.97:0
File type PNG image data, 32 x 32, 8-bit/color RGBA, non-interlaced\012- data
Hash f9b6a45e21801db8c40bb65a4af565cc
608e278983df15d2e17d26a06aca483d51a86c0a
7aaf4d9cab17b2266fb19afb7122ddac6d062f4b4aa95da51df9d04b935bdaf8
GET /wp-content/uploads/2022/11/cropped-logo-ifc-gms-32x32.png HTTP/1.1
Host: ifcgmsconsultinggroup.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ifcgmsconsultinggroup.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 18 Dec 2022 02:12:54 GMT
content-type: image/png
content-length: 1920
last-modified: Wed, 09 Nov 2022 15:55:54 GMT
etag: "636bcd8a-780"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
ifcgmsconsultinggroup.com/wp-content/uploads/2022/11/cropped-logo-ifc-gms-192x192.png
161.97.187.97200 OK 30 kB URL HTTP/2 ifcgmsconsultinggroup.com/wp-content/uploads/2022/11/cropped-logo-ifc-gms-192x192.png
IP 161.97.187.97:0
File type PNG image data, 192 x 192, 8-bit/color RGBA, non-interlaced\012- data
Hash 2ee8a69b95b97ca6a6732b0fd3c7b580
6c7197e4e82d14c7c01ff846588c760528c9d46f
d9cb5f72782665cde94216653d5fa4d0f066df75cf02994281c8998a87a431ff
GET /wp-content/uploads/2022/11/cropped-logo-ifc-gms-192x192.png HTTP/1.1
Host: ifcgmsconsultinggroup.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ifcgmsconsultinggroup.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 18 Dec 2022 02:12:54 GMT
content-type: image/png
content-length: 30378
last-modified: Wed, 09 Nov 2022 15:55:54 GMT
etag: "636bcd8a-76aa"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
ifcgmsconsultinggroup.com/wp-content/plugins/revslider/public/assets/assets/loader.gif
161.97.187.97200 OK 2.5 kB URL HTTP/2 ifcgmsconsultinggroup.com/wp-content/plugins/revslider/public/assets/assets/loader.gif
IP 161.97.187.97:0
File type GIF image data, version 89a, 24 x 24\012- data
Hash 4b3afb84b2b71ef56df09997a350bd04
accdac8a7abeab0e21c49539aad0a973addb28ef
9034d5d34015e4b05d2c1d1a8dc9f6ec9d59bd96d305eb9e24e24e65c591a645
GET /wp-content/plugins/revslider/public/assets/assets/loader.gif HTTP/1.1
Host: ifcgmsconsultinggroup.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ifcgmsconsultinggroup.com/wp-content/plugins/revslider/public/assets/css/rs6.css?ver=6.6.3
Cookie: _ga_SPJ7LQ2ECM=GS1.1.1671329571.1.0.1671329571.0.0.0; _ga=GA1.1.216499477.1671329571
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 18 Dec 2022 02:12:54 GMT
content-type: image/gif
content-length: 2545
last-modified: Tue, 08 Nov 2022 02:42:06 GMT
etag: "6369c1fe-9f1"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
ifcgmsconsultinggroup.com/wp-content/uploads/2022/11/cover-3-1536x1024.jpg
161.97.187.97200 OK 182 kB URL HTTP/2 ifcgmsconsultinggroup.com/wp-content/uploads/2022/11/cover-3-1536x1024.jpg
IP 161.97.187.97:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v90), quality = 82", baseline, precision 8, 1536x1024, components 3\012- data
Size 182 kB (182079 bytes)
Hash 6599b247f0042f56bc96dfeb1f8ffbe1
2cf65b6e02d7d4f78bd6a9479dbf37967afa9650
9c90ed643ec7a2070b86b9dc9dc1ccddf029e27dedb1ca9a4e420b04714478b3
GET /wp-content/uploads/2022/11/cover-3-1536x1024.jpg HTTP/1.1
Host: ifcgmsconsultinggroup.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ifcgmsconsultinggroup.com/
Cookie: _ga_SPJ7LQ2ECM=GS1.1.1671329571.1.0.1671329571.0.0.0; _ga=GA1.1.216499477.1671329571
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 18 Dec 2022 02:12:54 GMT
content-type: image/jpeg
content-length: 182079
last-modified: Tue, 08 Nov 2022 02:42:16 GMT
etag: "6369c208-2c73f"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
ifcgmsconsultinggroup.com/wp-content/uploads/2022/11/ifc_gms.jpeg
161.97.187.97200 OK 136 kB URL HTTP/2 ifcgmsconsultinggroup.com/wp-content/uploads/2022/11/ifc_gms.jpeg
IP 161.97.187.97:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, baseline, precision 8, 720x737, components 3\012- data
Size 136 kB (135971 bytes)
Hash e83f87cf10929973c35c29dd4ae13b28
0451b7a2ec710dc5109cc384bd90abb471fd00e0
8c53d8f5de81b9aa57b82a3c0d59d9d105619699b2bda18615517a72005a876d
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/uploads/2022/11/ifc_gms.jpeg HTTP/1.1
Host: ifcgmsconsultinggroup.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ifcgmsconsultinggroup.com/
Cookie: _ga_SPJ7LQ2ECM=GS1.1.1671329571.1.0.1671329571.0.0.0; _ga=GA1.1.216499477.1671329571
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 18 Dec 2022 02:12:54 GMT
content-type: image/jpeg
content-length: 135971
last-modified: Fri, 18 Nov 2022 00:23:29 GMT
etag: "6376d081-21323"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
ifcgmsconsultinggroup.com/wp-content/uploads/2022/11/IFC_REMISE1.jpg
161.97.187.97200 OK 101 kB URL HTTP/2 ifcgmsconsultinggroup.com/wp-content/uploads/2022/11/IFC_REMISE1.jpg
IP 161.97.187.97:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 1080x720, components 3\012- data
Size 101 kB (100759 bytes)
Hash f88e4943baa0afaa7be023b6a34f6fef
a6d57d00c6820a24bd553367bcc29cfd57543d31
a8c51ac8c36daf338a389eda8edc6b5c8aa6d9b0b0fc2488d19f7cacd725fad2
GET /wp-content/uploads/2022/11/IFC_REMISE1.jpg HTTP/1.1
Host: ifcgmsconsultinggroup.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ifcgmsconsultinggroup.com/
Cookie: _ga_SPJ7LQ2ECM=GS1.1.1671329571.1.0.1671329571.0.0.0; _ga=GA1.1.216499477.1671329571
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 18 Dec 2022 02:12:54 GMT
content-type: image/jpeg
content-length: 100759
last-modified: Tue, 08 Nov 2022 02:42:17 GMT
etag: "6369c209-18997"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
ifcgmsconsultinggroup.com/wp-content/plugins/elementor/assets/js/text-editor.2c35aafbe5bf0e127950.bundle.min.js
161.97.187.97200 OK 204 kB URL HTTP/2 ifcgmsconsultinggroup.com/wp-content/plugins/elementor/assets/js/text-editor.2c35aafbe5bf0e127950.bundle.min.js
IP 161.97.187.97:0
File type ASCII text, with very long lines (1320)
Size 204 kB (204144 bytes)
Hash f1aa46a17f94af6e8acac03b9c3e0623
9feea91516e2b03877606d91dc5dbd3febe170e9
00fc8837bc0dc0d990db0b602889289c9456638a5cac2f6219e899cb50c86464
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/elementor/assets/js/text-editor.2c35aafbe5bf0e127950.bundle.min.js HTTP/1.1
Host: ifcgmsconsultinggroup.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ifcgmsconsultinggroup.com/
Cookie: _ga_SPJ7LQ2ECM=GS1.1.1671329571.1.0.1671329571.0.0.0; _ga=GA1.1.216499477.1671329571
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 18 Dec 2022 02:12:54 GMT
content-type: application/javascript
last-modified: Sat, 26 Nov 2022 09:33:38 GMT
etag: W/"6381dd72-54f"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
ifcgmsconsultinggroup.com/wp-content/uploads/2022/11/cover-9.webp
161.97.187.97200 OK 47 kB URL HTTP/2 ifcgmsconsultinggroup.com/wp-content/uploads/2022/11/cover-9.webp
IP 161.97.187.97:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 626x417, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 03d31b81647bfc85aaae98068b3fc524
a3244d63ec9f09aff19f269406c37b6678c96974
5ba34f7606cba9912918db4d6b3291a44dfaa6a16cb9b355567edb0c4e91043b
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/uploads/2022/11/cover-9.webp HTTP/1.1
Host: ifcgmsconsultinggroup.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ifcgmsconsultinggroup.com/
Cookie: _ga_SPJ7LQ2ECM=GS1.1.1671329571.1.0.1671329571.0.0.0; _ga=GA1.1.216499477.1671329571
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 18 Dec 2022 02:12:54 GMT
content-type: image/webp
content-length: 47210
last-modified: Tue, 08 Nov 2022 02:42:16 GMT
etag: "6369c208-b86a"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
ifcgmsconsultinggroup.com/wp-content/uploads/2022/11/IFC_REMISE2.jpg
161.97.187.97200 OK 96 kB URL HTTP/2 ifcgmsconsultinggroup.com/wp-content/uploads/2022/11/IFC_REMISE2.jpg
IP 161.97.187.97:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 1080x720, components 3\012- data
Hash ac9e35ab46b9605b15efec1d243f6522
4e8a0214a85599680c85d3f9184b9a909f19e89e
2daf4c5f2cdbbe1a7df64d1500d505306c5c67fd25cb55a34c84a89f4781aabb
GET /wp-content/uploads/2022/11/IFC_REMISE2.jpg HTTP/1.1
Host: ifcgmsconsultinggroup.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ifcgmsconsultinggroup.com/
Cookie: _ga_SPJ7LQ2ECM=GS1.1.1671329571.1.0.1671329571.0.0.0; _ga=GA1.1.216499477.1671329571
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 18 Dec 2022 02:12:55 GMT
content-type: image/jpeg
content-length: 96279
last-modified: Tue, 08 Nov 2022 02:42:17 GMT
etag: "6369c209-17817"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
ifcgmsconsultinggroup.com/wp-content/uploads/2022/11/IFC_REMISE10.jpg
161.97.187.97200 OK 96 kB URL HTTP/2 ifcgmsconsultinggroup.com/wp-content/uploads/2022/11/IFC_REMISE10.jpg
IP 161.97.187.97:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 1080x720, components 3\012- data
Hash 3f98e56545816910b22c3c6699bcc321
b713e6a6e8643a18ac263fbc3fed4673ccc97373
0e3a23d69c860de205cf067ba6288b737a79085e379a3619f1473d6fcc9e8399
GET /wp-content/uploads/2022/11/IFC_REMISE10.jpg HTTP/1.1
Host: ifcgmsconsultinggroup.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ifcgmsconsultinggroup.com/
Cookie: _ga_SPJ7LQ2ECM=GS1.1.1671329571.1.0.1671329571.0.0.0; _ga=GA1.1.216499477.1671329571
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 18 Dec 2022 02:12:55 GMT
content-type: image/jpeg
content-length: 95504
last-modified: Tue, 08 Nov 2022 02:42:17 GMT
etag: "6369c209-17510"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
region1.google-analytics.com/g/collect?v=2&tid=G-SPJ7LQ2ECM>m=2oebu0&_p=945586530&cid=216499477.1671329571&ul=en-us&sr=1280x1024&_s=1&sid=1671329571&sct=1&seg=0&dl=https%3A%2F%2Fifcgmsconsultinggroup.com%2F&dt=Accueil%20-%20IFC%20GMS%20CONSULTING%20GROUP%2C%20Institut%2FCentre%20de%20Formation%20Professionnelle%20et%20de%20Certification%2C%20Yaound%C3%A9-Douala-Cameroun.%20QHSE-Ressources%20Humaines%20(RH)-Marketing-Communication%20Digitale-Informatique-Secr%C3%A9tariat-Maintenance-Infographie%20WebDesign-Management%20des%20Projets-Suivi%20Evaluation&en=page_view&_fv=1&_nsi=1&_ss=1&_ee=1
216.239.34.36204 No Content 0 B URL HTTP/2 region1.google-analytics.com/g/collect?v=2&tid=G-SPJ7LQ2ECM>m=2oebu0&_p=945586530&cid=216499477.1671329571&ul=en-us&sr=1280x1024&_s=1&sid=1671329571&sct=1&seg=0&dl=https%3A%2F%2Fifcgmsconsultinggroup.com%2F&dt=Accueil%20-%20IFC%20GMS%20CONSULTING%20GROUP%2C%20Institut%2FCentre%20de%20Formation%20Professionnelle%20et%20de%20Certification%2C%20Yaound%C3%A9-Douala-Cameroun.%20QHSE-Ressources%20Humaines%20(RH)-Marketing-Communication%20Digitale-Informatique-Secr%C3%A9tariat-Maintenance-Infographie%20WebDesign-Management%20des%20Projets-Suivi%20Evaluation&en=page_view&_fv=1&_nsi=1&_ss=1&_ee=1
IP 216.239.34.36:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /g/collect?v=2&tid=G-SPJ7LQ2ECM>m=2oebu0&_p=945586530&cid=216499477.1671329571&ul=en-us&sr=1280x1024&_s=1&sid=1671329571&sct=1&seg=0&dl=https%3A%2F%2Fifcgmsconsultinggroup.com%2F&dt=Accueil%20-%20IFC%20GMS%20CONSULTING%20GROUP%2C%20Institut%2FCentre%20de%20Formation%20Professionnelle%20et%20de%20Certification%2C%20Yaound%C3%A9-Douala-Cameroun.%20QHSE-Ressources%20Humaines%20(RH)-Marketing-Communication%20Digitale-Informatique-Secr%C3%A9tariat-Maintenance-Infographie%20WebDesign-Management%20des%20Projets-Suivi%20Evaluation&en=page_view&_fv=1&_nsi=1&_ss=1&_ee=1 HTTP/1.1
Host: region1.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://ifcgmsconsultinggroup.com
Connection: keep-alive
Referer: https://ifcgmsconsultinggroup.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0
HTTP/2 204 No Content
access-control-allow-origin: https://ifcgmsconsultinggroup.com
date: Sun, 18 Dec 2022 02:12:55 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
access-control-allow-credentials: true
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ifcgmsconsultinggroup.com/wp-content/plugins/stm-post-type/theme-options/nuxy/metaboxes/assets/vendors/font-awesome.min.css?ver=1671329572
161.97.187.97200 OK 0 B URL HTTP/2 ifcgmsconsultinggroup.com/wp-content/plugins/stm-post-type/theme-options/nuxy/metaboxes/assets/vendors/font-awesome.min.css?ver=1671329572
IP 161.97.187.97:0
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/stm-post-type/theme-options/nuxy/metaboxes/assets/vendors/font-awesome.min.css?ver=1671329572 HTTP/1.1
Host: ifcgmsconsultinggroup.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ifcgmsconsultinggroup.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 18 Dec 2022 02:12:53 GMT
content-type: text/css
last-modified: Tue, 08 Nov 2022 02:42:10 GMT
etag: W/"6369c202-e7d0"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
ifcgmsconsultinggroup.com/wp-content/uploads/stm_uploads/theme_options.css?ver=6.3.6
161.97.187.97200 OK 0 B URL HTTP/2 ifcgmsconsultinggroup.com/wp-content/uploads/stm_uploads/theme_options.css?ver=6.3.6
IP 161.97.187.97:0
GET /wp-content/uploads/stm_uploads/theme_options.css?ver=6.3.6 HTTP/1.1
Host: ifcgmsconsultinggroup.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ifcgmsconsultinggroup.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 18 Dec 2022 02:12:53 GMT
content-type: text/css
last-modified: Tue, 08 Nov 2022 04:29:38 GMT
etag: W/"6369db32-21c9"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
ifcgmsconsultinggroup.com/wp-includes/js/dist/vendor/regenerator-runtime.min.js?ver=0.13.9
161.97.187.97200 OK 0 B URL HTTP/2 ifcgmsconsultinggroup.com/wp-includes/js/dist/vendor/regenerator-runtime.min.js?ver=0.13.9
IP 161.97.187.97:0
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/dist/vendor/regenerator-runtime.min.js?ver=0.13.9 HTTP/1.1
Host: ifcgmsconsultinggroup.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ifcgmsconsultinggroup.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 18 Dec 2022 02:12:54 GMT
content-type: application/javascript
last-modified: Tue, 08 Nov 2022 02:42:23 GMT
etag: W/"6369c20f-194b"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
fonts.googleapis.com/css?family=Poppins:600%2C700%7CRoboto:400&display=swap
142.250.74.106200 OK 0 B URL HTTP/2 fonts.googleapis.com/css?family=Poppins:600%2C700%7CRoboto:400&display=swap
IP 142.250.74.106:0
GET /css?family=Poppins:600%2C700%7CRoboto:400&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ifcgmsconsultinggroup.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Sun, 18 Dec 2022 02:12:54 GMT
date: Sun, 18 Dec 2022 02:12:54 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ifcgmsconsultinggroup.com/wp-content/themes/consulting/assets/css/select2.min.css?ver=6.3.6
161.97.187.97200 OK 0 B URL HTTP/2 ifcgmsconsultinggroup.com/wp-content/themes/consulting/assets/css/select2.min.css?ver=6.3.6
IP 161.97.187.97:0
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/consulting/assets/css/select2.min.css?ver=6.3.6 HTTP/1.1
Host: ifcgmsconsultinggroup.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ifcgmsconsultinggroup.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 18 Dec 2022 02:12:53 GMT
content-type: text/css
last-modified: Tue, 08 Nov 2022 02:42:13 GMT
etag: W/"6369c205-3a4b"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
ifcgmsconsultinggroup.com/wp-content/plugins/header-footer-elementor/inc/widgets-css/frontend.css?ver=1.6.13
161.97.187.97200 OK 0 B URL HTTP/2 ifcgmsconsultinggroup.com/wp-content/plugins/header-footer-elementor/inc/widgets-css/frontend.css?ver=1.6.13
IP 161.97.187.97:0
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/header-footer-elementor/inc/widgets-css/frontend.css?ver=1.6.13 HTTP/1.1
Host: ifcgmsconsultinggroup.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ifcgmsconsultinggroup.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 18 Dec 2022 02:12:53 GMT
content-type: text/css
last-modified: Tue, 08 Nov 2022 02:42:06 GMT
etag: W/"6369c1fe-127a4"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
ifcgmsconsultinggroup.com/wp-content/uploads/elementor/css/post-7435.css?ver=1669456561
161.97.187.97200 OK 0 B URL HTTP/2 ifcgmsconsultinggroup.com/wp-content/uploads/elementor/css/post-7435.css?ver=1669456561
IP 161.97.187.97:0
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/uploads/elementor/css/post-7435.css?ver=1669456561 HTTP/1.1
Host: ifcgmsconsultinggroup.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ifcgmsconsultinggroup.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 18 Dec 2022 02:12:53 GMT
content-type: text/css
last-modified: Sat, 26 Nov 2022 09:56:01 GMT
etag: W/"6381e2b1-5089"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
ifcgmsconsultinggroup.com/wp-content/themes/consulting/assets/js/custom.js?ver=6.3.6
161.97.187.97200 OK 0 B URL HTTP/2 ifcgmsconsultinggroup.com/wp-content/themes/consulting/assets/js/custom.js?ver=6.3.6
IP 161.97.187.97:0
GET /wp-content/themes/consulting/assets/js/custom.js?ver=6.3.6 HTTP/1.1
Host: ifcgmsconsultinggroup.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ifcgmsconsultinggroup.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 18 Dec 2022 02:12:53 GMT
content-type: application/javascript
last-modified: Tue, 08 Nov 2022 02:42:14 GMT
etag: W/"6369c206-68a3"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
ifcgmsconsultinggroup.com/wp-includes/js/dist/hooks.min.js?ver=4169d3cf8e8d95a3d6d5
161.97.187.97200 OK 0 B URL HTTP/2 ifcgmsconsultinggroup.com/wp-includes/js/dist/hooks.min.js?ver=4169d3cf8e8d95a3d6d5
IP 161.97.187.97:0
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/dist/hooks.min.js?ver=4169d3cf8e8d95a3d6d5 HTTP/1.1
Host: ifcgmsconsultinggroup.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ifcgmsconsultinggroup.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 18 Dec 2022 02:12:54 GMT
content-type: application/javascript
last-modified: Tue, 08 Nov 2022 02:42:23 GMT
etag: W/"6369c20f-132e"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
ifcgmsconsultinggroup.com/wp-content/plugins/elementor-pro/assets/js/elements-handlers.min.js?ver=3.8.0
161.97.187.97200 OK 0 B URL HTTP/2 ifcgmsconsultinggroup.com/wp-content/plugins/elementor-pro/assets/js/elements-handlers.min.js?ver=3.8.0
IP 161.97.187.97:0
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/elementor-pro/assets/js/elements-handlers.min.js?ver=3.8.0 HTTP/1.1
Host: ifcgmsconsultinggroup.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ifcgmsconsultinggroup.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 18 Dec 2022 02:12:54 GMT
content-type: application/javascript
last-modified: Tue, 08 Nov 2022 02:42:01 GMT
etag: W/"6369c1f9-60dc"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
ifcgmsconsultinggroup.com/wp-content/themes/consulting/style.css?ver=6.3.6
161.97.187.97200 OK 0 B URL HTTP/2 ifcgmsconsultinggroup.com/wp-content/themes/consulting/style.css?ver=6.3.6
IP 161.97.187.97:0
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/consulting/style.css?ver=6.3.6 HTTP/1.1
Host: ifcgmsconsultinggroup.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ifcgmsconsultinggroup.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 18 Dec 2022 02:12:53 GMT
content-type: text/css
last-modified: Tue, 08 Nov 2022 02:42:15 GMT
etag: W/"6369c207-4fec"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
ifcgmsconsultinggroup.com/wp-content/plugins/elementor/assets/lib/font-awesome/js/v4-shims.min.js?ver=3.8.1
161.97.187.97200 OK 0 B URL HTTP/2 ifcgmsconsultinggroup.com/wp-content/plugins/elementor/assets/lib/font-awesome/js/v4-shims.min.js?ver=3.8.1
IP 161.97.187.97:0
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/elementor/assets/lib/font-awesome/js/v4-shims.min.js?ver=3.8.1 HTTP/1.1
Host: ifcgmsconsultinggroup.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ifcgmsconsultinggroup.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 18 Dec 2022 02:12:53 GMT
content-type: application/javascript
last-modified: Sat, 26 Nov 2022 09:33:38 GMT
etag: W/"6381dd72-3acf"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
ifcgmsconsultinggroup.com/wp-content/themes/consulting/inc/megamenu/assets/js/megamenu.js?ver=6.1.1
161.97.187.97200 OK 0 B URL HTTP/2 ifcgmsconsultinggroup.com/wp-content/themes/consulting/inc/megamenu/assets/js/megamenu.js?ver=6.1.1
IP 161.97.187.97:0
GET /wp-content/themes/consulting/inc/megamenu/assets/js/megamenu.js?ver=6.1.1 HTTP/1.1
Host: ifcgmsconsultinggroup.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ifcgmsconsultinggroup.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 18 Dec 2022 02:12:53 GMT
content-type: application/javascript
last-modified: Tue, 08 Nov 2022 02:42:14 GMT
etag: W/"6369c206-6af"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
ifcgmsconsultinggroup.com/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2
161.97.187.97200 OK 0 B URL HTTP/2 ifcgmsconsultinggroup.com/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2
IP 161.97.187.97:0
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2 HTTP/1.1
Host: ifcgmsconsultinggroup.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ifcgmsconsultinggroup.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 18 Dec 2022 02:12:53 GMT
content-type: application/javascript
last-modified: Tue, 08 Nov 2022 02:42:23 GMT
etag: W/"6369c20f-2bd8"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
ifcgmsconsultinggroup.com/wp-content/plugins/elementor/assets/js/frontend-modules.min.js?ver=3.8.1
161.97.187.97200 OK 0 B URL HTTP/2 ifcgmsconsultinggroup.com/wp-content/plugins/elementor/assets/js/frontend-modules.min.js?ver=3.8.1
IP 161.97.187.97:0
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/elementor/assets/js/frontend-modules.min.js?ver=3.8.1 HTTP/1.1
Host: ifcgmsconsultinggroup.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ifcgmsconsultinggroup.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 18 Dec 2022 02:12:54 GMT
content-type: application/javascript
last-modified: Sat, 26 Nov 2022 09:33:38 GMT
etag: W/"6381dd72-80b3"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
ifcgmsconsultinggroup.com/wp-content/plugins/elementor-pro/assets/js/carousel.9b02b45d7826c1c48f33.bundle.min.js
161.97.187.97200 OK 0 B URL HTTP/2 ifcgmsconsultinggroup.com/wp-content/plugins/elementor-pro/assets/js/carousel.9b02b45d7826c1c48f33.bundle.min.js
IP 161.97.187.97:0
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/elementor-pro/assets/js/carousel.9b02b45d7826c1c48f33.bundle.min.js HTTP/1.1
Host: ifcgmsconsultinggroup.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ifcgmsconsultinggroup.com/
Cookie: _ga_SPJ7LQ2ECM=GS1.1.1671329571.1.0.1671329571.0.0.0; _ga=GA1.1.216499477.1671329571
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 18 Dec 2022 02:12:54 GMT
content-type: application/javascript
last-modified: Tue, 08 Nov 2022 02:42:01 GMT
etag: W/"6369c1f9-1395"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
ifcgmsconsultinggroup.com/wp-content/plugins/elementor/assets/js/webpack.runtime.min.js?ver=3.8.1
161.97.187.97200 OK 0 B URL HTTP/2 ifcgmsconsultinggroup.com/wp-content/plugins/elementor/assets/js/webpack.runtime.min.js?ver=3.8.1
IP 161.97.187.97:0
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/elementor/assets/js/webpack.runtime.min.js?ver=3.8.1 HTTP/1.1
Host: ifcgmsconsultinggroup.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ifcgmsconsultinggroup.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 18 Dec 2022 02:12:54 GMT
content-type: application/javascript
last-modified: Sat, 26 Nov 2022 09:33:38 GMT
etag: W/"6381dd72-135d"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
ifcgmsconsultinggroup.com/wp-content/plugins/elementor/assets/js/frontend.min.js?ver=3.8.1
161.97.187.97200 OK 0 B URL HTTP/2 ifcgmsconsultinggroup.com/wp-content/plugins/elementor/assets/js/frontend.min.js?ver=3.8.1
IP 161.97.187.97:0
GET /wp-content/plugins/elementor/assets/js/frontend.min.js?ver=3.8.1 HTTP/1.1
Host: ifcgmsconsultinggroup.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ifcgmsconsultinggroup.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 18 Dec 2022 02:12:54 GMT
content-type: application/javascript
last-modified: Sat, 26 Nov 2022 09:33:38 GMT
etag: W/"6381dd72-9e41"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
ifcgmsconsultinggroup.com/wp-content/themes/consulting/assets/css/bootstrap.min.css?ver=6.3.6
161.97.187.97200 OK 0 B URL HTTP/2 ifcgmsconsultinggroup.com/wp-content/themes/consulting/assets/css/bootstrap.min.css?ver=6.3.6
IP 161.97.187.97:0
GET /wp-content/themes/consulting/assets/css/bootstrap.min.css?ver=6.3.6 HTTP/1.1
Host: ifcgmsconsultinggroup.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ifcgmsconsultinggroup.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 18 Dec 2022 02:12:53 GMT
content-type: text/css
last-modified: Tue, 08 Nov 2022 02:42:13 GMT
etag: W/"6369c205-1cdcd"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
ifcgmsconsultinggroup.com/wp-content/themes/consulting/inc/megamenu/assets/css/megamenu.css?ver=6.1.1
161.97.187.97200 OK 0 B URL HTTP/2 ifcgmsconsultinggroup.com/wp-content/themes/consulting/inc/megamenu/assets/css/megamenu.css?ver=6.1.1
IP 161.97.187.97:0
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/consulting/inc/megamenu/assets/css/megamenu.css?ver=6.1.1 HTTP/1.1
Host: ifcgmsconsultinggroup.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ifcgmsconsultinggroup.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 18 Dec 2022 02:12:53 GMT
content-type: text/css
last-modified: Tue, 08 Nov 2022 02:42:14 GMT
etag: W/"6369c206-39fc"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
ifcgmsconsultinggroup.com/wp-content/plugins/pearl-header-builder/assets/frontend/assets/css/header/main.css?ver=1.0
161.97.187.97200 OK 0 B URL HTTP/2 ifcgmsconsultinggroup.com/wp-content/plugins/pearl-header-builder/assets/frontend/assets/css/header/main.css?ver=1.0
IP 161.97.187.97:0
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/pearl-header-builder/assets/frontend/assets/css/header/main.css?ver=1.0 HTTP/1.1
Host: ifcgmsconsultinggroup.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ifcgmsconsultinggroup.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 18 Dec 2022 02:12:53 GMT
content-type: text/css
last-modified: Tue, 08 Nov 2022 02:42:06 GMT
etag: W/"6369c1fe-bcfa"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
ifcgmsconsultinggroup.com/wp-content/plugins/pearl-header-builder/assets/frontend/assets/js/app.js?ver=1.0
161.97.187.97200 OK 0 B URL HTTP/2 ifcgmsconsultinggroup.com/wp-content/plugins/pearl-header-builder/assets/frontend/assets/js/app.js?ver=1.0
IP 161.97.187.97:0
GET /wp-content/plugins/pearl-header-builder/assets/frontend/assets/js/app.js?ver=1.0 HTTP/1.1
Host: ifcgmsconsultinggroup.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ifcgmsconsultinggroup.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 18 Dec 2022 02:12:54 GMT
content-type: application/javascript
last-modified: Tue, 08 Nov 2022 02:42:06 GMT
etag: W/"6369c1fe-c93"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
ifcgmsconsultinggroup.com/wp-content/themes/consulting/assets/js/isotope.pkgd.min.js?ver=6.3.6
161.97.187.97200 OK 0 B URL HTTP/2 ifcgmsconsultinggroup.com/wp-content/themes/consulting/assets/js/isotope.pkgd.min.js?ver=6.3.6
IP 161.97.187.97:0
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/consulting/assets/js/isotope.pkgd.min.js?ver=6.3.6 HTTP/1.1
Host: ifcgmsconsultinggroup.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ifcgmsconsultinggroup.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 18 Dec 2022 02:12:54 GMT
content-type: application/javascript
last-modified: Tue, 08 Nov 2022 02:42:14 GMT
etag: W/"6369c206-86e2"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
ifcgmsconsultinggroup.com/wp-includes/js/dist/i18n.min.js?ver=9e794f35a71bb98672ae
161.97.187.97200 OK 0 B URL HTTP/2 ifcgmsconsultinggroup.com/wp-includes/js/dist/i18n.min.js?ver=9e794f35a71bb98672ae
IP 161.97.187.97:0
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/dist/i18n.min.js?ver=9e794f35a71bb98672ae HTTP/1.1
Host: ifcgmsconsultinggroup.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ifcgmsconsultinggroup.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 18 Dec 2022 02:12:54 GMT
content-type: application/javascript
last-modified: Tue, 08 Nov 2022 02:47:42 GMT
etag: W/"6369c34e-27f6"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
ifcgmsconsultinggroup.com/wp-content/uploads/essential-addons-elementor/eael-7435.css?ver=1669396630
161.97.187.97200 OK 0 B URL HTTP/2 ifcgmsconsultinggroup.com/wp-content/uploads/essential-addons-elementor/eael-7435.css?ver=1669396630
IP 161.97.187.97:0
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/uploads/essential-addons-elementor/eael-7435.css?ver=1669396630 HTTP/1.1
Host: ifcgmsconsultinggroup.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ifcgmsconsultinggroup.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 18 Dec 2022 02:12:53 GMT
content-type: text/css
last-modified: Tue, 08 Nov 2022 02:42:20 GMT
etag: W/"6369c20c-141f"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
ifcgmsconsultinggroup.com/wp-content/plugins/revslider/public/assets/js/rs6.min.js?ver=6.6.3
161.97.187.97200 OK 0 B URL HTTP/2 ifcgmsconsultinggroup.com/wp-content/plugins/revslider/public/assets/js/rs6.min.js?ver=6.6.3
IP 161.97.187.97:0
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/revslider/public/assets/js/rs6.min.js?ver=6.6.3 HTTP/1.1
Host: ifcgmsconsultinggroup.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ifcgmsconsultinggroup.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 18 Dec 2022 02:12:53 GMT
content-type: application/javascript
last-modified: Tue, 08 Nov 2022 02:42:09 GMT
etag: W/"6369c201-633bb"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
fonts.googleapis.com/css?family=Poppins%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2Cregular%2Citalic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic&ver=6.3.6
142.250.74.106200 OK 0 B URL HTTP/2 fonts.googleapis.com/css?family=Poppins%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2Cregular%2Citalic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic&ver=6.3.6
IP 142.250.74.106:0
GET /css?family=Poppins%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2Cregular%2Citalic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic&ver=6.3.6 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ifcgmsconsultinggroup.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Sun, 18 Dec 2022 02:12:53 GMT
date: Sun, 18 Dec 2022 02:12:53 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ifcgmsconsultinggroup.com/wp-content/themes/consulting/assets/js/owl.carousel.min.js?ver=6.3.6
161.97.187.97200 OK 0 B URL HTTP/2 ifcgmsconsultinggroup.com/wp-content/themes/consulting/assets/js/owl.carousel.min.js?ver=6.3.6
IP 161.97.187.97:0
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/consulting/assets/js/owl.carousel.min.js?ver=6.3.6 HTTP/1.1
Host: ifcgmsconsultinggroup.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ifcgmsconsultinggroup.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 18 Dec 2022 02:12:54 GMT
content-type: application/javascript
last-modified: Tue, 08 Nov 2022 02:42:14 GMT
etag: W/"6369c206-9dd1"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
ifcgmsconsultinggroup.com/wp-content/plugins/elementor-pro/assets/js/webpack-pro.runtime.min.js?ver=3.8.0
161.97.187.97200 OK 0 B URL HTTP/2 ifcgmsconsultinggroup.com/wp-content/plugins/elementor-pro/assets/js/webpack-pro.runtime.min.js?ver=3.8.0
IP 161.97.187.97:0
GET /wp-content/plugins/elementor-pro/assets/js/webpack-pro.runtime.min.js?ver=3.8.0 HTTP/1.1
Host: ifcgmsconsultinggroup.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ifcgmsconsultinggroup.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 18 Dec 2022 02:12:54 GMT
content-type: application/javascript
last-modified: Tue, 08 Nov 2022 02:42:01 GMT
etag: W/"6369c1f9-1472"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
ifcgmsconsultinggroup.com/wp-content/themes/consulting/assets/js/packery-mode.pkgd.min.js?ver=6.3.6
161.97.187.97200 OK 0 B URL HTTP/2 ifcgmsconsultinggroup.com/wp-content/themes/consulting/assets/js/packery-mode.pkgd.min.js?ver=6.3.6
IP 161.97.187.97:0
GET /wp-content/themes/consulting/assets/js/packery-mode.pkgd.min.js?ver=6.3.6 HTTP/1.1
Host: ifcgmsconsultinggroup.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ifcgmsconsultinggroup.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 18 Dec 2022 02:12:54 GMT
content-type: application/javascript
last-modified: Tue, 08 Nov 2022 02:42:14 GMT
etag: W/"6369c206-3532"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
ifcgmsconsultinggroup.com/wp-includes/js/dist/vendor/wp-polyfill.min.js?ver=3.15.0
161.97.187.97200 OK 0 B URL HTTP/2 ifcgmsconsultinggroup.com/wp-includes/js/dist/vendor/wp-polyfill.min.js?ver=3.15.0
IP 161.97.187.97:0
GET /wp-includes/js/dist/vendor/wp-polyfill.min.js?ver=3.15.0 HTTP/1.1
Host: ifcgmsconsultinggroup.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ifcgmsconsultinggroup.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 18 Dec 2022 02:12:54 GMT
content-type: application/javascript
last-modified: Tue, 08 Nov 2022 02:47:42 GMT
etag: W/"6369c34e-459f"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
ifcgmsconsultinggroup.com/wp-content/themes/consulting/assets/css/header_builder.css?ver=6.3.6
161.97.187.97200 OK 0 B URL HTTP/2 ifcgmsconsultinggroup.com/wp-content/themes/consulting/assets/css/header_builder.css?ver=6.3.6
IP 161.97.187.97:0
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/consulting/assets/css/header_builder.css?ver=6.3.6 HTTP/1.1
Host: ifcgmsconsultinggroup.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ifcgmsconsultinggroup.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 18 Dec 2022 02:12:53 GMT
content-type: text/css
last-modified: Tue, 08 Nov 2022 02:42:13 GMT
etag: W/"6369c205-9cb"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
ifcgmsconsultinggroup.com/wp-content/themes/consulting/assets/css/layouts/global_styles/main.css?ver=6.3.6
161.97.187.97200 OK 0 B URL HTTP/2 ifcgmsconsultinggroup.com/wp-content/themes/consulting/assets/css/layouts/global_styles/main.css?ver=6.3.6
IP 161.97.187.97:0
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/consulting/assets/css/layouts/global_styles/main.css?ver=6.3.6 HTTP/1.1
Host: ifcgmsconsultinggroup.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ifcgmsconsultinggroup.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 18 Dec 2022 02:12:53 GMT
content-type: text/css
last-modified: Tue, 08 Nov 2022 02:42:13 GMT
etag: W/"6369c205-fb21"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
ifcgmsconsultinggroup.com/wp-content/themes/consulting/assets/css/owl.carousel.css?ver=6.3.6
161.97.187.97200 OK 0 B URL HTTP/2 ifcgmsconsultinggroup.com/wp-content/themes/consulting/assets/css/owl.carousel.css?ver=6.3.6
IP 161.97.187.97:0
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/consulting/assets/css/owl.carousel.css?ver=6.3.6 HTTP/1.1
Host: ifcgmsconsultinggroup.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ifcgmsconsultinggroup.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 18 Dec 2022 02:12:53 GMT
content-type: text/css
last-modified: Tue, 08 Nov 2022 02:42:13 GMT
etag: W/"6369c205-c62"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
ifcgmsconsultinggroup.com/wp-content/plugins/elementor/assets/lib/waypoints/waypoints.min.js?ver=4.0.2
161.97.187.97200 OK 0 B URL HTTP/2 ifcgmsconsultinggroup.com/wp-content/plugins/elementor/assets/lib/waypoints/waypoints.min.js?ver=4.0.2
IP 161.97.187.97:0
GET /wp-content/plugins/elementor/assets/lib/waypoints/waypoints.min.js?ver=4.0.2 HTTP/1.1
Host: ifcgmsconsultinggroup.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ifcgmsconsultinggroup.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 18 Dec 2022 02:12:54 GMT
content-type: application/javascript
last-modified: Sat, 26 Nov 2022 09:33:38 GMT
etag: W/"6381dd72-2fa6"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
ifcgmsconsultinggroup.com/wp-includes/js/jquery/jquery.min.js?ver=3.6.1
161.97.187.97200 OK 0 B URL HTTP/2 ifcgmsconsultinggroup.com/wp-includes/js/jquery/jquery.min.js?ver=3.6.1
IP 161.97.187.97:0
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/jquery/jquery.min.js?ver=3.6.1 HTTP/1.1
Host: ifcgmsconsultinggroup.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ifcgmsconsultinggroup.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 18 Dec 2022 02:12:53 GMT
content-type: application/javascript
last-modified: Tue, 08 Nov 2022 02:47:42 GMT
etag: W/"6369c34e-15e54"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
ifcgmsconsultinggroup.com/wp-content/plugins/elementor/assets/lib/animations/animations.min.css?ver=3.8.1
161.97.187.97200 OK 0 B URL HTTP/2 ifcgmsconsultinggroup.com/wp-content/plugins/elementor/assets/lib/animations/animations.min.css?ver=3.8.1
IP 161.97.187.97:0
GET /wp-content/plugins/elementor/assets/lib/animations/animations.min.css?ver=3.8.1 HTTP/1.1
Host: ifcgmsconsultinggroup.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ifcgmsconsultinggroup.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 18 Dec 2022 02:12:53 GMT
content-type: text/css
last-modified: Sat, 26 Nov 2022 09:33:38 GMT
etag: W/"6381dd72-4824"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
ifcgmsconsultinggroup.com/wp-content/plugins/elementor-pro/assets/js/frontend.min.js?ver=3.8.0
161.97.187.97200 OK 0 B URL HTTP/2 ifcgmsconsultinggroup.com/wp-content/plugins/elementor-pro/assets/js/frontend.min.js?ver=3.8.0
IP 161.97.187.97:0
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/elementor-pro/assets/js/frontend.min.js?ver=3.8.0 HTTP/1.1
Host: ifcgmsconsultinggroup.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ifcgmsconsultinggroup.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 18 Dec 2022 02:12:54 GMT
content-type: application/javascript
last-modified: Tue, 08 Nov 2022 02:42:01 GMT
etag: W/"6369c1f9-54a3"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
ifcgmsconsultinggroup.com/wp-content/themes/consulting/assets/css/jquery.fancybox.css?ver=6.3.6
161.97.187.97200 OK 0 B URL HTTP/2 ifcgmsconsultinggroup.com/wp-content/themes/consulting/assets/css/jquery.fancybox.css?ver=6.3.6
IP 161.97.187.97:0
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/consulting/assets/css/jquery.fancybox.css?ver=6.3.6 HTTP/1.1
Host: ifcgmsconsultinggroup.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ifcgmsconsultinggroup.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 18 Dec 2022 02:12:53 GMT
content-type: text/css
last-modified: Tue, 08 Nov 2022 02:42:13 GMT
etag: W/"6369c205-4404"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
ifcgmsconsultinggroup.com/wp-content/plugins/pearl-header-builder/assets/frontend/assets/css/font-awesome.min.css?ver=1.0
161.97.187.97200 OK 0 B URL HTTP/2 ifcgmsconsultinggroup.com/wp-content/plugins/pearl-header-builder/assets/frontend/assets/css/font-awesome.min.css?ver=1.0
IP 161.97.187.97:0
GET /wp-content/plugins/pearl-header-builder/assets/frontend/assets/css/font-awesome.min.css?ver=1.0 HTTP/1.1
Host: ifcgmsconsultinggroup.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ifcgmsconsultinggroup.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 18 Dec 2022 02:12:53 GMT
content-type: text/css
last-modified: Tue, 08 Nov 2022 02:42:06 GMT
etag: W/"6369c1fe-7918"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
ifcgmsconsultinggroup.com/wp-includes/js/imagesloaded.min.js?ver=4.1.4
161.97.187.97200 OK 0 B URL HTTP/2 ifcgmsconsultinggroup.com/wp-includes/js/imagesloaded.min.js?ver=4.1.4
IP 161.97.187.97:0
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/imagesloaded.min.js?ver=4.1.4 HTTP/1.1
Host: ifcgmsconsultinggroup.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ifcgmsconsultinggroup.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 18 Dec 2022 02:12:54 GMT
content-type: application/javascript
last-modified: Tue, 08 Nov 2022 02:42:23 GMT
etag: W/"6369c20f-15fd"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
ifcgmsconsultinggroup.com/wp-includes/js/jquery/ui/core.min.js?ver=1.13.2
161.97.187.97200 OK 0 B URL HTTP/2 ifcgmsconsultinggroup.com/wp-includes/js/jquery/ui/core.min.js?ver=1.13.2
IP 161.97.187.97:0
GET /wp-includes/js/jquery/ui/core.min.js?ver=1.13.2 HTTP/1.1
Host: ifcgmsconsultinggroup.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ifcgmsconsultinggroup.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 18 Dec 2022 02:12:54 GMT
content-type: application/javascript
last-modified: Tue, 08 Nov 2022 02:47:42 GMT
etag: W/"6369c34e-53c0"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
ifcgmsconsultinggroup.com/wp-content/themes/consulting/assets/css/font-awesome.min.css?ver=6.3.6
161.97.187.97200 OK 0 B URL HTTP/2 ifcgmsconsultinggroup.com/wp-content/themes/consulting/assets/css/font-awesome.min.css?ver=6.3.6
IP 161.97.187.97:0
GET /wp-content/themes/consulting/assets/css/font-awesome.min.css?ver=6.3.6 HTTP/1.1
Host: ifcgmsconsultinggroup.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ifcgmsconsultinggroup.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 18 Dec 2022 02:12:53 GMT
content-type: text/css
last-modified: Tue, 08 Nov 2022 02:42:13 GMT
etag: W/"6369c205-792c"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
ifcgmsconsultinggroup.com/wp-content/themes/consulting/assets/css/layouts/layout_barcelona/main.css?ver=6.3.6
161.97.187.97200 OK 0 B URL HTTP/2 ifcgmsconsultinggroup.com/wp-content/themes/consulting/assets/css/layouts/layout_barcelona/main.css?ver=6.3.6
IP 161.97.187.97:0
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/consulting/assets/css/layouts/layout_barcelona/main.css?ver=6.3.6 HTTP/1.1
Host: ifcgmsconsultinggroup.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ifcgmsconsultinggroup.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 18 Dec 2022 02:12:53 GMT
content-type: text/css
last-modified: Tue, 08 Nov 2022 02:42:13 GMT
etag: W/"6369c205-ad14a"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
ifcgmsconsultinggroup.com/wp-content/plugins/pearl-header-builder/assets/frontend/assets/js/sticky.js?ver=1.0
161.97.187.97200 OK 0 B URL HTTP/2 ifcgmsconsultinggroup.com/wp-content/plugins/pearl-header-builder/assets/frontend/assets/js/sticky.js?ver=1.0
IP 161.97.187.97:0
GET /wp-content/plugins/pearl-header-builder/assets/frontend/assets/js/sticky.js?ver=1.0 HTTP/1.1
Host: ifcgmsconsultinggroup.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ifcgmsconsultinggroup.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 18 Dec 2022 02:12:54 GMT
content-type: application/javascript
last-modified: Tue, 08 Nov 2022 02:42:06 GMT
etag: W/"6369c1fe-8c0"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2