Report - test.igmg.site/

Report Overview

Submitted URL
test.igmg.site/
IP
51.195.6.66
ASN
#16276 OVH SAS
Submitted
2023-02-05 19:02:23
Access
Website Title
Final URL
Tags
urlquery detections
No alerts detected

Detections

urlquery
0
Network Intrusion Detection
0
Threat Detection Systems
148

Domain Summary

Domain / FQDN	Rank	First Seen	Last Seen	Sent	Received	IP
test.igmg.site	unknown	2021-04-03T12:57:47Z	2023-03-13T06:02:07Z	38 kB	125 kB	51.195.6.66
r3.o.lencr.org	344	2020-12-02T09:52:13Z	2023-03-13T05:09:07Z	2.4 kB	6.2 kB	95.101.11.115
ocsp.digicert.com	86	2012-05-21T09:02:23Z	2023-03-13T06:00:13Z	341 B	545 B	93.184.220.29
cdnjs.cloudflare.com	235	2015-04-17T22:46:33Z	2023-03-13T05:09:21Z	406 B	2.5 kB	104.17.24.14
fonts.gstatic.com	unknown	2014-09-09T02:40:21Z	2023-03-13T08:44:36Z	1.0 kB	78 kB	142.250.74.35
fonts.googleapis.com	8877	2013-06-10T22:14:26Z	2023-03-13T08:14:31Z	416 B	630 B	142.250.74.74
firefox.settings.services.mozilla.com	867	2020-06-04T22:08:41Z	2023-03-13T05:09:10Z	782 B	2.4 kB	35.241.9.150
content-signature-2.cdn.mozilla.net	1152	2020-11-03T13:26:46Z	2023-03-13T05:09:35Z	413 B	5.8 kB	34.160.144.191
push.services.mozilla.com	2140	2014-10-24T10:27:06Z	2023-03-13T05:09:14Z	606 B	127 B	54.149.45.114
unpkg.com	11693	2016-01-08T00:26:01Z	2023-03-13T08:09:51Z	2.3 kB	6.0 kB	104.16.126.175
img-getpocket.cdn.mozilla.net	1631	2018-06-22T01:36:00Z	2023-03-13T05:09:16Z	3.2 kB	55 kB	34.120.237.76
ocsp.pki.goog	175	2018-07-01T08:43:07Z	2023-03-13T05:09:47Z	2.7 kB	5.6 kB	142.250.74.131
contile.services.mozilla.com	1114	2021-05-27T20:32:35Z	2023-03-13T05:09:13Z	333 B	391 B	34.117.237.239
use.fontawesome.com	942	2017-01-30T05:43:25Z	2023-03-13T05:09:17Z	424 B	1.0 kB	172.64.132.15

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

OpenPhish

No alerts detected

PhishTank

No alerts detected

Fortinet's Web Filter

Scan Date	Severity	Indicator	Alert
2023-02-05	medium	test.igmg.site/	Malware
2023-02-05	medium	test.igmg.site/images/iros_amblem.png?r=449106307	Malware
2023-02-05	medium	test.igmg.site/images/program2.png?r=1661054757	Malware
2023-02-05	medium	test.igmg.site/images/program7.png?r=1812155777	Malware
2023-02-05	medium	test.igmg.site/images/program1.png?r=670764709	Malware
2023-02-05	medium	test.igmg.site/images/program4.png?r=601730945	Malware
2023-02-05	medium	test.igmg.site/images/program4.png?r=1482272170	Malware
2023-02-05	medium	test.igmg.site/images/program3.png?r=617247580	Malware
2023-02-05	medium	test.igmg.site/assets/js/js.cookie.min.js	Malware
2023-02-05	medium	test.igmg.site/assets/js/jquery.sparkline.min.js	Malware
2023-02-05	medium	test.igmg.site/assets/css/layout.min.css?134211818	Malware
2023-02-05	medium	test.igmg.site/assets/select2/select2.min.css?1028036242	Malware
2023-02-05	medium	test.igmg.site/assets/fullcalendar/lib/main.min.js	Malware
2023-02-05	medium	test.igmg.site/assets/js/jquery.vmap.sampledata.js	Malware
2023-02-05	medium	test.igmg.site/assets/js/bootbox.min.js	Malware
2023-02-05	medium	test.igmg.site/assets/css/morris.css?242654783	Malware
2023-02-05	medium	test.igmg.site/assets/css/jquery-ui.css?794210561	Malware
2023-02-05	medium	test.igmg.site/assets/dropzone/dropzone.js	Malware
2023-02-05	medium	test.igmg.site/assets/js/jquery.vmap.russia.js	Malware
2023-02-05	medium	test.igmg.site/assets/js/pwstrength.js	Malware
2023-02-05	medium	test.igmg.site/assets/css/bayrakfont.css?1144532593	Malware
2023-02-05	medium	test.igmg.site/assets/js/jquery.min.js	Malware
2023-02-05	medium	test.igmg.site/assets/js/moment-with-locales.js	Malware
2023-02-05	medium	test.igmg.site/assets/js/jquery.validate.min.js	Malware
2023-02-05	medium	test.igmg.site/assets/css/simple-line-icons.min.css?433024361	Malware
2023-02-05	medium	test.igmg.site/assets/colorbox/jquery.colorbox-min.js	Malware
2023-02-05	medium	test.igmg.site/assets/js/fullcalendar.min.js	Malware
2023-02-05	medium	test.igmg.site/assets/js/morris.min.js	Malware
2023-02-05	medium	test.igmg.site/assets/js/select2.full.min.js	Malware
2023-02-05	medium	test.igmg.site/assets/js/quick-nav.min.js	Malware
2023-02-05	medium	test.igmg.site/assets/js/login.min.js	Malware
2023-02-05	medium	test.igmg.site/assets/css/login.min.css?1320409651	Malware
2023-02-05	medium	test.igmg.site/assets/js/jquery.blockui.min.js	Malware
2023-02-05	medium	test.igmg.site/assets/js/jquery.slimscroll.min.js	Malware
2023-02-05	medium	test.igmg.site/assets/js/jquery.vmap.germany.js	Malware
2023-02-05	medium	test.igmg.site/assets/js/jquery.vmap.js	Malware
2023-02-05	medium	test.igmg.site/assets/js/additional-methods.min.js	Malware
2023-02-05	medium	test.igmg.site/assets/js/layout.min.js	Malware
2023-02-05	medium	test.igmg.site/assets/tinymce/tinymce.min.js	Malware
2023-02-05	medium	test.igmg.site/assets/css/daterangepicker.min.css?635441374	Malware
2023-02-05	medium	test.igmg.site/assets/js/popper.min.js	Malware
2023-02-05	medium	test.igmg.site/assets/js/bootstrap.min.js	Malware
2023-02-05	medium	test.igmg.site/assets/js/jquery.waypoints.min.js	Malware
2023-02-05	medium	test.igmg.site/assets/js/jquery.vmap.usa.js	Malware
2023-02-05	medium	test.igmg.site/assets/js/dashboard.min.js	Malware
2023-02-05	medium	test.igmg.site/assets/js/jquery-ui.min.js	Malware
2023-02-05	medium	test.igmg.site/assets/select2/tr.js	Malware
2023-02-05	medium	test.igmg.site/assets/js/jquery.easypiechart.min.js	Malware
2023-02-05	medium	test.igmg.site/assets/amcharts/serial.js	Malware
2023-02-05	medium	test.igmg.site/assets/js/ekurs.js?411195249	Malware
2023-02-05	medium	test.igmg.site/assets/amcharts/export.min.js	Malware
2023-02-05	medium	test.igmg.site/assets/amcharts/dataloader.min.js	Malware
2023-02-05	medium	test.igmg.site/assets/js/jquery.counterup.min.js	Malware
2023-02-05	medium	test.igmg.site/assets/js/quick-sidebar.min.js	Malware
2023-02-05	medium	test.igmg.site/	Malware
2023-02-05	medium	test.igmg.site/?act=js_translates	Malware
2023-02-05	medium	test.igmg.site/assets/select2/select2.min.js	Malware
2023-02-05	medium	test.igmg.site/assets/js/jquery.number.min.js	Malware
2023-02-05	medium	test.igmg.site/assets/fullcalendar/lib/locales-all.min.js	Malware
2023-02-05	medium	test.igmg.site/assets/js/jquery.flot.categories.min.js	Malware
2023-02-05	medium	test.igmg.site/assets/js/jquery.vmap.world.js	Malware
2023-02-05	medium	test.igmg.site/assets/js/jquery.dataTables.min.js	Malware
2023-02-05	medium	test.igmg.site/assets/js/daterangepicker.min.js	Malware
2023-02-05	medium	test.igmg.site/assets/js/jquery.vmap.europe.js	Malware
2023-02-05	medium	test.igmg.site/assets/js/bootstrap-switch.min.js	Malware
2023-02-05	medium	test.igmg.site/assets/js/raphael-min.js	Malware
2023-02-05	medium	test.igmg.site/assets/js/jquery.flot.min.js	Malware
2023-02-05	medium	test.igmg.site/assets/fullcalendar/lib/main.min.css?2073970090	Malware
2023-02-05	medium	test.igmg.site/assets/css/jqvmap.css?1074302293	Malware
2023-02-05	medium	test.igmg.site/assets/amcharts/pie.js	Malware
2023-02-05	medium	test.igmg.site/assets/js/app.min.js	Malware
2023-02-05	medium	test.igmg.site/assets/js/demo.min.js	Malware
2023-02-05	medium	test.igmg.site/assets/amcharts/amcharts.js	Malware
2023-02-05	medium	test.igmg.site/assets/js/jquery.flot.resize.min.js	Malware

mnemonic secure dns

No alerts detected

Quad9 DNS

No alerts detected

ThreatFox

No alerts detected

JavaScript (65)

	URL	Size	First Seen	Last Seen
	test.igmg.site/assets/js/jquery.vmap.js	28 kB	2023-03-07	2023-05-21
Pretty URL test.igmg.site/assets/js/jquery.vmap.js IP 51.195.6.66 ASN #16276 OVH SAS Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:39:58 Last Seen2023-05-21 13:02:46 Times Seen26 Hash 9eca1222ba4eb1c3c1158c2b446add2e 7330279b159843b70215149cd6202604d9cafef5 bb2fd702647bb08cfc13f45a328a0e1974cb9e5b8d1f719904d36b1d72ef43a6 Loading...

	test.igmg.site/assets/js/jquery.vmap.europe.js	98 kB	2023-03-07	2023-05-21
Pretty URL test.igmg.site/assets/js/jquery.vmap.europe.js IP 51.195.6.66 ASN #16276 OVH SAS Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:39:58 Last Seen2023-05-21 13:02:46 Times Seen25 Hash 92f5ac5a6be4f9d48e9b870ebc06cef8 cd2464bbdc9535cb6c9a18a97e50db2d7ae22a67 6b055c35eee34bba53f4f35c681db33c4f65f796b9597cd8d0ac29d5a00bdbc1 Loading...

	test.igmg.site/assets/js/jquery.validate.min.js	21 kB	2023-03-07	2024-05-10
Pretty URL test.igmg.site/assets/js/jquery.validate.min.js IP 51.195.6.66 ASN #16276 OVH SAS Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:23:34 Last Seen2024-05-10 09:16:51 Times Seen458 Hash 3b00d60f87e893caf2649eff0d48813a fc82fb23ccece3522359fe88dad3569925b3379c 2e3e3b2660cbfaac5febf7a50b31d0494159989626a84102b2c3792cffe27d13 Loading...

	test.igmg.site/assets/js/dashboard.min.js	21 kB	2023-03-07	2023-05-21
Pretty URL test.igmg.site/assets/js/dashboard.min.js IP 51.195.6.66 ASN #16276 OVH SAS Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:39:58 Last Seen2023-05-21 13:02:46 Times Seen21 Hash 0b3c77a1425fcd1b1969c47df1c669ee 4e1f53b25303b03fba47ecdaf8e90a762ec17d4b 9e5b93f58e47064622a70528e880d08be545ca1a8f8ad0b1622f9124a6983c4d Loading...

	test.igmg.site/assets/js/layout.min.js	4.5 kB	2023-03-07	2023-12-27
Pretty URL test.igmg.site/assets/js/layout.min.js IP 51.195.6.66 ASN #16276 OVH SAS Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:39:58 Last Seen2023-12-27 13:01:43 Times Seen20 Hash 67f9487626ba3393f0f46657ec094744 849c7ba6f2f2a4824aabe80229a5548fd8c8b0ed e4d5c50219cb3323e90a4a69c07296ce35e35642e08e7e3e5c1d01b53fd20a43 Loading...

	test.igmg.site/assets/js/bootstrap-switch.min.js	15 kB	2023-03-07	2024-05-08
Pretty URL test.igmg.site/assets/js/bootstrap-switch.min.js IP 51.195.6.66 ASN #16276 OVH SAS Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:39:58 Last Seen2024-05-08 09:26:28 Times Seen215 Hash 12ce5d59f687e3c2a8d8395aee0c89b3 7e0725897d7b99c3c33b56915d202e2dde552ea9 b009172f00c548007f4b4f4908e591be7a0e9e11980eef55a8c9db08a0213332 Loading...

	test.igmg.site/assets/js/daterangepicker.min.js	32 kB	2023-03-07	2024-03-16
Pretty URL test.igmg.site/assets/js/daterangepicker.min.js IP 51.195.6.66 ASN #16276 OVH SAS Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:27:58 Last Seen2024-03-16 14:33:49 Times Seen96 Hash 986689503bc2bda3e369b4273b3cb21d 9e4b415c6c60a7f7b6d23d580ae3adaabf65b296 db8ada507e2c907f71c42bbda3aedeb77a318260c8713705386d5fc714027f7c Loading...

	test.igmg.site/assets/tinymce/tinymce.min.js	470 kB	2023-03-07	2024-02-02
Pretty URL test.igmg.site/assets/tinymce/tinymce.min.js IP 51.195.6.66 ASN #16276 OVH SAS Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:39:58 Last Seen2024-02-02 06:19:28 Times Seen32 Hash d51a90121b08e6b946e131e6dc52a860 94174332c504c8183a8bda9b10d59fafc4fa974f 353281486901889ec21017db9f7583049d620715465a9e2ced6bacfaa0288076 Loading...

	test.igmg.site/assets/js/jquery.vmap.world.js	61 kB	2023-03-07	2024-05-01
Pretty URL test.igmg.site/assets/js/jquery.vmap.world.js IP 51.195.6.66 ASN #16276 OVH SAS Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:39:59 Last Seen2024-05-01 12:31:27 Times Seen29 Hash 584eac9e358afdcdb9970eb2a09f095b 8284c27a6fbc4125fc72194f93d8e815f56d3731 f358d8571fc218aa2315553ceb3be5747170a460ab83204a44d097d6558d3993 Loading...

	test.igmg.site/assets/js/login.min.js	3.4 kB	2023-03-07	2023-11-19
Pretty URL test.igmg.site/assets/js/login.min.js IP 51.195.6.66 ASN #16276 OVH SAS Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:39:59 Last Seen2023-11-19 08:32:21 Times Seen26 Hash ae25ccc2909b93703bf61e396bfc5444 dc05c4cb3fa4ac2b2de191b68eddb23aa129beb5 a2ba9015d446f912cc8206bb3b314355eedc6f5cf563375e35a09ea377e5b8f9 Loading...

	test.igmg.site/assets/js/ekurs.js?411195249	26 kB	2023-03-08	2023-03-14
Pretty URL test.igmg.site/assets/js/ekurs.js?411195249 IP 51.195.6.66 ASN #16276 OVH SAS Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 14:30:03 Last Seen2023-03-14 17:41:58 Times Seen1 Hash f7a200c1431bae039150ca15fd1eee25 19b87ca2a571be817463781357faff5065cdc792 5268119062bf92abeb961506973f6f5393a06a3800d679e27a60fda16d3b8e65 Loading...

	maps.googleapis.com/maps-api-v3/api/js/51/8/util.js	163 kB	2023-03-13	2023-03-14
Pretty URL maps.googleapis.com/maps-api-v3/api/js/51/8/util.js IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 14:22:51 Last Seen2023-03-14 13:31:02 Times Seen1 Hash f52e72535cb9b84fbf0ec5ff9455bc03 383b25e2066d88d52e03380256ed05c225867e9d 493ab4e7ca6837030e64d507c6ab90890cd9a63fc25bb7bf3bcd441dda6881b0 Loading...

	test.igmg.site/assets/js/quick-nav.min.js	415 B	2023-03-07	2024-01-30
Pretty URL test.igmg.site/assets/js/quick-nav.min.js IP 51.195.6.66 ASN #16276 OVH SAS Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:39:59 Last Seen2024-01-30 15:50:11 Times Seen38 Hash 7e7cb7fa0d7cb7c315fe672b7e6bc30a 0b7900b9fadf5a5f18f444146a867e0f48cd5351 a67562f88befda9b96ff9f0d98c7162839b8c5a0934d332e6e0c3660ebdcec4f Loading...

	test.igmg.site/assets/js/jquery.slimscroll.min.js	5.2 kB	2023-03-07	2024-04-17
Pretty URL test.igmg.site/assets/js/jquery.slimscroll.min.js IP 51.195.6.66 ASN #16276 OVH SAS Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:39:58 Last Seen2024-04-17 03:43:18 Times Seen180 Hash a83ca7a332677203800b1d9b7d22eac0 b0d21f603aee7a1460bcbe559b1e5d010c38941e 6e13ca9248b431e3be16a43100185e8e3a3311001154d73c30ddbcce1a4d5d94 Loading...

	unpkg.com/xlsx/dist/shim.min.js	5.7 kB	2023-03-07	2024-02-27
Pretty URL unpkg.com/xlsx/dist/shim.min.js IP 104.16.126.175 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:39:59 Last Seen2024-02-27 04:11:30 Times Seen33 Hash d98c1e57a8bd101276e93ff22c7899ef 67b225940d0d4123e8c6b484e9cf5297b3e0c230 0c16091947c28ec153e281cd303d8b3867bd1d964607af6ad4f264ccd9e512e7 Loading...

	test.igmg.site/assets/amcharts/dataloader.min.js	6.8 kB	2023-03-07	2024-02-27
Pretty URL test.igmg.site/assets/amcharts/dataloader.min.js IP 51.195.6.66 ASN #16276 OVH SAS Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:39:58 Last Seen2024-02-27 09:17:32 Times Seen29 Hash 5d7f82037f8d18817043f7f95530d24c 7e3a674a8c485223f3bbf35ac568984c69ca7fce cae7bac7f1593451b941d21a66cd560612bf29a1678be4019d5d579cfd4994d2 Loading...

	test.igmg.site/assets/js/popper.min.js	21 kB	2023-03-07	2024-02-13
Pretty URL test.igmg.site/assets/js/popper.min.js IP 51.195.6.66 ASN #16276 OVH SAS Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:39:58 Last Seen2024-02-13 20:11:28 Times Seen36 Hash f3be40c79eb3c99245088be95d024b78 ec2608fba6d6e827b8fdd0886ad8b70e8ff02647 4da459ba1114414379aa4156c25fd3be16d4c04f641bb428c0650903a24780f7 Loading...

	test.igmg.site/	140 B	2023-03-07	2023-05-21
Pretty URL test.igmg.site/ IP 51.195.6.66 ASN #16276 OVH SAS Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:39:58 Last Seen2023-05-21 13:02:45 Times Seen18 Hash 7ce2c84b957b58eddd5f0540ced95aa8 7602182b2880ca45d06ea38c2010f078b9288ef2 3abafd0ca31b05ebdf6082db218d897488cb8e1e88efc382f26f230156956b21 Loading...

	test.igmg.site/assets/fullcalendar/lib/locales-all.min.js	18 kB	2023-03-07	2023-04-05
Pretty URL test.igmg.site/assets/fullcalendar/lib/locales-all.min.js IP 51.195.6.66 ASN #16276 OVH SAS Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:39:58 Last Seen2023-04-05 01:50:42 Times Seen15 Hash 73530777ac3445350e0e3b66eb163c4c a26d3ac434ccd2d8113efc893995ab60b33d73e3 9731a4e7217279534d7a077d6ebe8c5d95172de328cb5c55e4dfe4ef59055dbc Loading...

	test.igmg.site/assets/amcharts/amcharts.js	209 kB	2023-03-07	2023-05-21
Pretty URL test.igmg.site/assets/amcharts/amcharts.js IP 51.195.6.66 ASN #16276 OVH SAS Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:43:48 Last Seen2023-05-21 13:02:46 Times Seen15 Hash 0c481585e15bc19e1e070291389fbf38 5f6db84ac5e53d6f4bb5750b1b94abb959147934 0241916631f7c6348170e08e183f045f3dc0232314cea7228fe266a46421e8e0 Loading...

	test.igmg.site/assets/js/raphael-min.js	92 kB	2023-03-07	2023-05-03
Pretty URL test.igmg.site/assets/js/raphael-min.js IP 51.195.6.66 ASN #16276 OVH SAS Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:39:58 Last Seen2023-05-03 00:03:14 Times Seen22 Hash b8aae4c0168869b23ab1ca7e206a040c 021f5ed820c36a2e3dc254338f89424a85aef371 befd2cab719fa10dba3fdb0f28b9257cc4fd4f6c9392a45742e1f2860e0cc080 Loading...

	test.igmg.site/assets/js/select2.full.min.js	75 kB	2023-03-07	2024-05-09
Pretty URL test.igmg.site/assets/js/select2.full.min.js IP 51.195.6.66 ASN #16276 OVH SAS Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:39:58 Last Seen2024-05-09 15:36:24 Times Seen660 Hash da607360bcc65284a197ada3d68d5439 a3cf7f0ff2baef254ce214b9bb042f01a7140a35 149b8bc61889897fb9420b347362582c8c89e62d28e1c720e8343ace08ad0986 Loading...

	test.igmg.site/assets/amcharts/light.js	2.9 kB	2023-03-07	2024-05-01
Pretty URL test.igmg.site/assets/amcharts/light.js IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:39:58 Last Seen2024-05-01 11:55:53 Times Seen32 Hash 6b2c19499a66186c2cb4678a0cc4ab3e 50fe4a3f8e94dbdac3e6bfe406e03b2d6bfd7b27 12f63f53a92496268edf3c7a7b12a05bafadf5722cc9e3f24801715af6df9373 Loading...

	unknown	0 B	2023-03-07	2024-05-10
Pretty Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:01:59 Last Seen2024-05-10 14:40:19 Times Seen37507739 Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 Loading...

	test.igmg.site/assets/js/jquery.flot.resize.min.js	2.3 kB	2023-03-07	2024-05-03
Pretty URL test.igmg.site/assets/js/jquery.flot.resize.min.js IP 51.195.6.66 ASN #16276 OVH SAS Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:39:59 Last Seen2024-05-03 22:47:47 Times Seen47 Hash 31e21fd1856200b80b1ed9f64f78dee0 ca15494c798ac1393d1ce2733845f04e378b086f 082e4e0fea3505e50b3534a6e801b3b55a00857aaa9b8a242ae669edf1affc99 Loading...

	test.igmg.site/	63 B	2023-03-07	2023-05-21
Pretty URL test.igmg.site/ IP 51.195.6.66 ASN #16276 OVH SAS Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:39:58 Last Seen2023-05-21 13:02:45 Times Seen18 Hash ce493a576c54a2b5087caa6c47a77dca 123b796e9a9fcd267063aed47adabce817e1b97b 8fa03092a5bcc44c371ef5a3ecff2a137f79e8239caf9e574b12a386549daf3b Loading...

	test.igmg.site/assets/js/jquery.vmap.germany.js	55 kB	2023-03-07	2024-05-01
Pretty URL test.igmg.site/assets/js/jquery.vmap.germany.js IP 51.195.6.66 ASN #16276 OVH SAS Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:39:59 Last Seen2024-05-01 12:31:27 Times Seen25 Hash 90b1835d83d2880a5c578d50843005a8 4ed251e40b1c45ab1f37e04706a5206135e2dd44 b09f490426f2c8476f94edd9d15cfcd7b17da15781fa3e5ef08dcf56d24e7498 Loading...

	test.igmg.site/assets/fullcalendar/lib/main.min.js	247 kB	2023-03-07	2024-01-06
Pretty URL test.igmg.site/assets/fullcalendar/lib/main.min.js IP 51.195.6.66 ASN #16276 OVH SAS Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:39:59 Last Seen2024-01-06 12:56:07 Times Seen38 Hash 7457ee2e65aaa9af4053f8e36648f4e8 2dc561b4ec38dde7aefc3dc60986d26cc9ef06ad 98cc3d691445c7d4cafcbd1d9f6e462b11ff587eebb454e9f8ff5499afb6fb37 Loading...

	test.igmg.site/assets/js/jquery.min.js	97 kB	2023-03-07	2024-05-09
Pretty URL test.igmg.site/assets/js/jquery.min.js IP 51.195.6.66 ASN #16276 OVH SAS Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:06:51 Last Seen2024-05-09 16:13:49 Times Seen2469 Hash 0fca26b5a37a66d68d0f4406976be4b5 ee000eb654b3bd37185665d3901e93b34ce1aa52 8c2812ded6436715279f8fd8db58de307aa39ab0296fe3cf0e879067c51e9b18 Loading...

	test.igmg.site/assets/js/fullcalendar.min.js	98 kB	2023-03-07	2023-11-28
Pretty URL test.igmg.site/assets/js/fullcalendar.min.js IP 51.195.6.66 ASN #16276 OVH SAS Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:39:58 Last Seen2023-11-28 10:02:54 Times Seen28 Hash 8852a7a154e3773480c357c7a636098c 96e55107d7f5412129c6c232825339787f1186ab 10d5db5ad06ffca64505bee9513e18428016adc95e12a97c0d74f3b02a3f60b4 Loading...

	test.igmg.site/assets/js/additional-methods.min.js	17 kB	2023-03-07	2024-05-03
Pretty URL test.igmg.site/assets/js/additional-methods.min.js IP 51.195.6.66 ASN #16276 OVH SAS Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:27:58 Last Seen2024-05-03 18:07:04 Times Seen90 Hash 424557ef2a8b89693026b3b43d4b1e1c 1b7274faaf4a99dccf4a55f69c44f117e4fd9d92 2b9a658314baccfef5f3b1d279571f0c1dbe62e6f71735828dd7606e426ba798 Loading...

	test.igmg.site/assets/js/jquery.vmap.usa.js	48 kB	2023-03-07	2024-05-01
Pretty URL test.igmg.site/assets/js/jquery.vmap.usa.js IP 51.195.6.66 ASN #16276 OVH SAS Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:39:58 Last Seen2024-05-01 12:31:27 Times Seen28 Hash 2984c6e4c0a70882512318a394d1b3b9 79181d184b0cd361d498f6f65a7c5dc39dd4ab18 5d7a815e58d4ef5a171b3c91c3be950161d3704a7337c095c3539e231102f091 Loading...

	maps.googleapis.com/maps/api/js?key=AIzaSyCRQS0vrHQ-0PdWwo4RQRcWkcYh_zFcJFA&libraries=places&callback=geoLocationInit	172 kB	2023-03-13	2023-03-13
Pretty URL maps.googleapis.com/maps/api/js?key=AIzaSyCRQS0vrHQ-0PdWwo4RQRcWkcYh_zFcJFA&libraries=places&callback=geoLocationInit IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 17:52:09 Last Seen2023-03-13 17:52:09 Times Seen1 Hash e8aa179eba3577e7d70c4aa45fce7426 ec566b48e2c2fdeb1699cecbfad2fff2b18e802c 1afb01840f1210e34ed67adde9373c63f3bb1da108db64d0a92ef005dee9f956 Loading...

	maps.googleapis.com/maps-api-v3/api/js/51/8/common.js	277 kB	2023-03-13	2023-03-14
Pretty URL maps.googleapis.com/maps-api-v3/api/js/51/8/common.js IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 14:22:57 Last Seen2023-03-14 13:31:01 Times Seen1 Hash 1453ba51a450fdb7acafceb66a2a99bd cd3598337b26f6f4116e6d0ebdb6ed5f0181e23e a63c8a81e2094da4cf6f608732bd29c7210be02457ff7166676a8de0813ad973 Loading...

	test.igmg.site/assets/js/bootstrap.min.js	60 kB	2023-03-07	2024-05-02
Pretty URL test.igmg.site/assets/js/bootstrap.min.js IP 51.195.6.66 ASN #16276 OVH SAS Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:39:59 Last Seen2024-05-02 08:01:18 Times Seen49 Hash c6bb081c5cc9b6a562db61d021528815 e414856c1ef34eb5c5bfcfae6cd1d2b0cedacb82 30e4f792a9e8445bf42c1be07f66ebb88420558a0f9891bebc166f0a1264cc8a Loading...

	test.igmg.site/assets/js/bootbox.min.js	18 kB	2023-03-07	2023-05-24
Pretty URL test.igmg.site/assets/js/bootbox.min.js IP 51.195.6.66 ASN #16276 OVH SAS Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:39:59 Last Seen2023-05-24 17:31:38 Times Seen19 Hash 8a3f52babe36191baeaa8e08a7a4a588 a62f4c8ba4ebca134a4db37f92765b4dabae43bd fe2d5687d5d5d2f8d06b06f8ae2aae24ae5e125692de191000af31af5e04e245 Loading...

	test.igmg.site/	1.1 kB	2023-03-07	2023-04-05
Pretty URL test.igmg.site/ IP 51.195.6.66 ASN #16276 OVH SAS Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:39:59 Last Seen2023-04-05 01:50:42 Times Seen15 Hash eb1251f79335352d441e6407529948cd 53aae33613b2e143a644f6bf21c7355a1295bcbb 9b4359a2d79d1a944001dc99c12e418bc500be4048f7afd4010f9407e807bb95 Loading...

	test.igmg.site/assets/js/jquery.flot.categories.min.js	2.6 kB	2023-03-07	2023-06-02
Pretty URL test.igmg.site/assets/js/jquery.flot.categories.min.js IP 51.195.6.66 ASN #16276 OVH SAS Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:39:58 Last Seen2023-06-02 17:26:05 Times Seen28 Hash ca6ccf0c7988a62a59b95b5d54cceb3e ef1b90d2f4d328a79949e7de7c57f9a074ac5aba a5dc326686cafb4ea3c63979a7577eae0778cac43cf3db59f4e39c91f4debfef Loading...

	test.igmg.site/assets/js/demo.min.js	4.3 kB	2023-03-07	2023-12-27
Pretty URL test.igmg.site/assets/js/demo.min.js IP 51.195.6.66 ASN #16276 OVH SAS Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:39:58 Last Seen2023-12-27 13:01:43 Times Seen29 Hash bac36cbf333287c2aa825c11b6450348 20bf43a6385f0b98504c7a32674162f9cb7bdde1 df7224580639911392f03619bdf31cf35034e6cafc715c8c557e706be0675f41 Loading...

	test.igmg.site/assets/amcharts/serial.js	49 kB	2023-03-07	2023-05-21
Pretty URL test.igmg.site/assets/amcharts/serial.js IP 51.195.6.66 ASN #16276 OVH SAS Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:39:58 Last Seen2023-05-21 13:02:46 Times Seen21 Hash 15448a1138fd7a1c8d0ca7f8bb68027d a015004a89608b6ba3dc930074947e74519192c8 b70c114728313b0fdda4c1d760ce8354cb9195d804362976c566dd8eae66e62c Loading...

	test.igmg.site/assets/dropzone/dropzone.js	143 kB	2023-03-07	2023-05-21
Pretty URL test.igmg.site/assets/dropzone/dropzone.js IP 51.195.6.66 ASN #16276 OVH SAS Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:39:59 Last Seen2023-05-21 13:02:45 Times Seen14 Hash f09f38b23a29d8b5b436899a101e52bb 008862ec7cba086651a5c2bc39683702d71f7e4b f240ad5aa5341598129b9eac5454c4c33055b36b9f12af9585c25162ce41d694 Loading...

	test.igmg.site/assets/js/jquery.vmap.russia.js	158 kB	2023-03-07	2024-05-01
Pretty URL test.igmg.site/assets/js/jquery.vmap.russia.js IP 51.195.6.66 ASN #16276 OVH SAS Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:39:58 Last Seen2024-05-01 12:31:27 Times Seen23 Hash 866659c3095a9fc3772ae96ee4335080 29eb6ae460e11eb58213181ac1920d56b8f2d606 0292017ecfc5201c15d194b1351d14bd77dc199fdb0695d6b363d3a1a5c3f976 Loading...

	test.igmg.site/assets/js/jquery.number.min.js	6.2 kB	2023-03-07	2024-02-08
Pretty URL test.igmg.site/assets/js/jquery.number.min.js IP 51.195.6.66 ASN #16276 OVH SAS Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:39:58 Last Seen2024-02-08 13:14:51 Times Seen21 Hash c22635e10a8ca07b578c4bc5f7706ba1 9171fffc4de5f651079115ae5653ba4b3121448b 03b3511d7999022c81ee03fb6a29a231660bea40b2dfbb4d07d4084118593468 Loading...

	test.igmg.site/assets/select2/tr.js	773 B	2023-03-07	2023-05-21
Pretty URL test.igmg.site/assets/select2/tr.js IP 51.195.6.66 ASN #16276 OVH SAS Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:39:58 Last Seen2023-05-21 13:02:45 Times Seen18 Hash 58a4e9829081626b1aaad3d46ccbdddf f30db1f40ab825e6066afd40461952fe436abdec 5938b1a44ef3cfd30e93f03e2a0d23997a0aca6fc526d154abbf8708df67baf2 Loading...

	test.igmg.site/	1.9 kB	2023-03-07	2023-04-05
Pretty URL test.igmg.site/ IP 51.195.6.66 ASN #16276 OVH SAS Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:39:58 Last Seen2023-04-05 01:50:42 Times Seen15 Hash c571c8d720e259471db15fd621446176 88c101b22810b41c46ef542c3034eb53587a6a0e a9e7291a576d2a4b4d8631489e52f7a6e142fa441c6f4c5b5f487a717f3ce663 Loading...

	test.igmg.site/assets/js/jquery.flot.min.js	53 kB	2023-03-07	2024-05-03
Pretty URL test.igmg.site/assets/js/jquery.flot.min.js IP 51.195.6.66 ASN #16276 OVH SAS Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:39:58 Last Seen2024-05-03 22:47:48 Times Seen132 Hash 9927ea93540a2a08b3c5125ff2126102 935a7104dda9dcfce22258659ab6f6732059bc22 ba4498a5218c71658ae6433b625664cd0fcc9980d06549983ea079828159c169 Loading...

	test.igmg.site/assets/js/jquery.waypoints.min.js	8.0 kB	2023-03-07	2024-05-09
Pretty URL test.igmg.site/assets/js/jquery.waypoints.min.js IP 51.195.6.66 ASN #16276 OVH SAS Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:07:26 Last Seen2024-05-09 22:31:03 Times Seen6840 Hash dfe0eedf8da578f4a4c43b05448c51d9 812d7071b4e44b1aa5d5ea6c7ce0b79eb9d46520 a0fded691aed767f851011cd3185b928619298a21a0fbdad4808a9e88b490833 Loading...

	test.igmg.site/assets/js/jquery.easypiechart.min.js	3.9 kB	2023-03-07	2024-05-07
Pretty URL test.igmg.site/assets/js/jquery.easypiechart.min.js IP 51.195.6.66 ASN #16276 OVH SAS Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:39:58 Last Seen2024-05-07 01:32:24 Times Seen170 Hash d2e1eadb5379ef5cfef1135d558bc140 52b415689a384bbd98d6a20be9ca10af3b255bca 68402284ca93b99eafdfe9cbd378402e8f1412fefe6c490c99ec28cc797a18c9 Loading...

	test.igmg.site/assets/js/jquery.vmap.sampledata.js	2.4 kB	2023-03-07	2024-05-01
Pretty URL test.igmg.site/assets/js/jquery.vmap.sampledata.js IP 51.195.6.66 ASN #16276 OVH SAS Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:39:58 Last Seen2024-05-01 12:31:27 Times Seen62 Hash b6f14a696445b519ec8e5b78da5cd25f e668e7572e892fcbd2bc33f95f2d6b87405b71e9 fa625655ea804dceabcd523b0c3ddd2b8333cb04084a8eed28aa1bd9339d3d1b Loading...

	unpkg.com/file-saver@1.3.3/FileSaver.js	6.0 kB	2023-03-07	2024-05-08
Pretty URL unpkg.com/file-saver@1.3.3/FileSaver.js IP 104.16.126.175 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:39:59 Last Seen2024-05-08 11:00:53 Times Seen87 Hash 45f38b6b3af540acb66ae0cc2ef3c47f a6957eb4d4d635cda4966133162726fefc85b903 86db91d4ec31f22f619b887863877f16394f2e88f6b5e426849e569cd4a8df0d Loading...

	test.igmg.site/assets/colorbox/jquery.colorbox-min.js	12 kB	2023-03-07	2024-05-10
Pretty URL test.igmg.site/assets/colorbox/jquery.colorbox-min.js IP 51.195.6.66 ASN #16276 OVH SAS Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:07:22 Last Seen2024-05-10 09:43:41 Times Seen3685 Hash 663dd01c8e3859c4aa97cf088c49a64e 4181716dabb9a951a17bfa6e3a03f48ad17e016f 41bc4d4fe88139d6ee89abfcb2abac71e1430d85dbffc0be7c8f6bd36f4ced7e Loading...

	test.igmg.site/assets/js/app.min.js	16 kB	2023-03-07	2023-05-21
Pretty URL test.igmg.site/assets/js/app.min.js IP 51.195.6.66 ASN #16276 OVH SAS Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:39:58 Last Seen2023-05-21 13:02:46 Times Seen21 Hash c7c42c6e0e9223597a6c12d82b45651e 163b42413ff275a864eeb2a4de81e6a972e800fe bf9eb82890be1766a2f0758bcfeaba6cdd93022189ce165c847f076fd0e862dd Loading...

	test.igmg.site/?act=js_translates	62 B	2023-03-07	2023-05-21
Pretty URL test.igmg.site/?act=js_translates IP 51.195.6.66 ASN #16276 OVH SAS Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:39:59 Last Seen2023-05-21 13:02:45 Times Seen18 Hash 72a50a7005d7b5000a39f47a60b73e2a a31924727b76096d857774b206691949b3b65bda 3da0747f69b0f9a5368ee07ac222472d0b2cc78bc54b864ac6cdc7fbed2d7b7c Loading...

	test.igmg.site/	20 kB	2023-03-07	2023-04-05
Pretty URL test.igmg.site/ IP 51.195.6.66 ASN #16276 OVH SAS Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:39:58 Last Seen2023-04-05 01:50:42 Times Seen15 Hash 59ca5042e01ef5a491638f41bd1c78d7 1f5c15e67d56c323a171c1eae5c54f9c06477bd6 72fac4ea20983006678d80d77d89f0b3c428df6f06650d6015ac8460057ad11d Loading...

	unpkg.com/blob.js@1.0.1/Blob.js	6.1 kB	2023-03-07	2023-11-29
Pretty URL unpkg.com/blob.js@1.0.1/Blob.js IP 104.16.126.175 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:39:58 Last Seen2023-11-29 12:31:12 Times Seen34 Hash 2325e1bd4a8df90a1bd527f2f9434aa9 8ecccab3ed78a0b9bb31d24608d6d992fbbc00b1 d1f38f27f9aeff811d09eef64829cc6eb2091fc300afc2cab4071d8250a8fd38 Loading...

	test.igmg.site/assets/js/jquery.blockui.min.js	9.6 kB	2023-03-07	2024-04-28
Pretty URL test.igmg.site/assets/js/jquery.blockui.min.js IP 51.195.6.66 ASN #16276 OVH SAS Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:39:58 Last Seen2024-04-28 18:49:03 Times Seen73 Hash f5648ad27cd84967fd417b394c1689a5 0e6a0cb2e7a36cc94033a0fa3b99cab0d22674eb b7c5671c199df9e6bba7a2f4aea76afc96a3fe716611968a79c2091a06b7f20b Loading...

	test.igmg.site/assets/js/pwstrength.js	39 kB	2023-03-07	2023-05-21
Pretty URL test.igmg.site/assets/js/pwstrength.js IP 51.195.6.66 ASN #16276 OVH SAS Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:39:58 Last Seen2023-05-21 13:02:46 Times Seen21 Hash 0c011d0525dceed9fad00e8f862e33ad 878c379ad6613d23629806ac2ee328fa09c95295 d41bd9460fcca7e5f24154121bd08b1fdd4db7b7f1412a230a9d3455afcc932a Loading...

	test.igmg.site/assets/js/jquery.counterup.min.js	1.1 kB	2023-03-07	2023-07-21
Pretty URL test.igmg.site/assets/js/jquery.counterup.min.js IP 51.195.6.66 ASN #16276 OVH SAS Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:39:59 Last Seen2023-07-21 19:24:36 Times Seen23 Hash e26cc385a6669d66b74165e780eb5f7f 517220fe23a5cca37db5a25ce3ddfba60c6d8153 7f9b26af596f8ca4d8cb8ec573f71c1d670b08cad0661726b6ec6748b5c55d9d Loading...

	test.igmg.site/assets/js/quick-sidebar.min.js	2.8 kB	2023-03-07	2024-01-30
Pretty URL test.igmg.site/assets/js/quick-sidebar.min.js IP 51.195.6.66 ASN #16276 OVH SAS Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:39:59 Last Seen2024-01-30 15:50:11 Times Seen30 Hash 9143e8f8630f1fe1447f525acce2c3f3 77fbc027a182b5e659f9955ee2b78371cf3c9601 ac9a539357da2b28e2240681309f298906309e4c9c968ced29890269b2269e79 Loading...

	test.igmg.site/assets/amcharts/pie.js	15 kB	2023-03-07	2023-05-21
Pretty URL test.igmg.site/assets/amcharts/pie.js IP 51.195.6.66 ASN #16276 OVH SAS Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:39:58 Last Seen2023-05-21 13:02:46 Times Seen21 Hash 0d9992f6a1668f0ff10af5849c264ff5 4bb4c591aa3072674c416d7fad2987a813d02c3a 2eef0d943257edc440f10105f3da6cc5d7787e3af4c8f6dadbf26926e5e066ce Loading...

	test.igmg.site/assets/amcharts/export.min.js	62 kB	2023-03-07	2023-04-05
Pretty URL test.igmg.site/assets/amcharts/export.min.js IP 51.195.6.66 ASN #16276 OVH SAS Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:39:59 Last Seen2023-04-05 01:50:42 Times Seen15 Hash a919d64d492bf249b42e2bfa642137c0 6b8f2cc95ea7a4192d9428b0cbb4da85ddb90e68 67174a218d77309d99565c25993d84c67ea26802cf3305ddf903283c8a038040 Loading...

	test.igmg.site/assets/js/morris.min.js	36 kB	2023-03-07	2024-05-06
Pretty URL test.igmg.site/assets/js/morris.min.js IP 51.195.6.66 ASN #16276 OVH SAS Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:39:58 Last Seen2024-05-06 00:37:51 Times Seen285 Hash fadac462637afd6cdc0cb0a0137629af f40a80188a0422041f59284940c46d86c163a279 d2b83656d7c9a375548a3fd463d5f41c93fb3444fab60018f7c68c39fc0fd0ff Loading...

	test.igmg.site/assets/select2/select2.min.js	67 kB	2023-03-07	2024-05-07
Pretty URL test.igmg.site/assets/select2/select2.min.js IP 51.195.6.66 ASN #16276 OVH SAS Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:15:37 Last Seen2024-05-07 18:24:11 Times Seen458 Hash 26abb17f4b7260ea8c912313e2c80fef 42fe805a338908436c5c326dbf7e9aec0c8484c7 140d78b4123cbfeff506d707f57b49a5c35b0a898112975ac14640e813d7455c Loading...

		Size	First Seen	Last Seen
	#1 Write - b955fcdb49decf570e74451fa9e98c10	859 B	2023-03-07	2024-02-27
Pretty Observations First Seen2023-03-07 01:39:59 Last Seen2024-02-27 04:11:30 Times Seen32 Hash b955fcdb49decf570e74451fa9e98c10 102926f8d48e6010d53bca230b49c1b649c2c993 e7dd1ff6a4b1da81c74c2ae4612526abf2a685d43dad244a639d3ecd8c609f55 Loading...

	#2 Write - a92328b4dcb2323bae3b39354bc7c8cf	444 B	2023-03-07	2024-02-27
Pretty Observations First Seen2023-03-07 01:39:59 Last Seen2024-02-27 04:11:30 Times Seen32 Hash a92328b4dcb2323bae3b39354bc7c8cf 9627c35f9be833d7818a17f1ff94e7bc6007f982 db50c44b45d1a31d1ae2bd4adc4857bb7418965f76ffad53a594d53ab7ff98c9 Loading...

HTTP Transactions (123)

URL IP Response Size

test.igmg.site/

51.195.6.66

301 Moved Permanently

162 B

URL HTTP/1.1
test.igmg.site/
IP
51.195.6.66:0
ASN
#16276 OVH SAS

File type
HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Size
162 B (162 bytes)
Hash
4f8e702cc244ec5d4de32740c0ecbd97
3adb1f02d5b6054de0046e367c1d687b6cdf7aff
9e17cb15dd75bbbd5dbb984eda674863c3b10ab72613cf8a39a00c3e11a8492a

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET / HTTP/1.1
Host: test.igmg.site
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1

HTTP/1.1 301 Moved Permanently
Server: nginx
Date: Sun, 05 Feb 2023 19:02:12 GMT
Content-Type: text/html
Content-Length: 162
Connection: keep-alive
Location: https://test.igmg.site/

r3.o.lencr.org/

95.101.11.115

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
95.101.11.115:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
c21ba65e44ac95470c314e068e49a9eb
17a13b13738993d889d4afa3d848dc63bf6eba64
9bd0795b30e84ce63b6e2a365ca91bbffc395dd955e112152066c31e63a4ab66

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "9BD0795B30E84CE63B6E2A365CA91BBFFC395DD955E112152066C31E63A4AB66"
Last-Modified: Sat, 04 Feb 2023 11:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4967
Expires: Sun, 05 Feb 2023 20:24:59 GMT
Date: Sun, 05 Feb 2023 19:02:12 GMT
Connection: keep-alive

r3.o.lencr.org/

95.101.11.115

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
95.101.11.115:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
507011ccb9124dcd57e84a90a0965cc4
1a6575d0ac979c7184490cc9836ac4812ad2afd1
01626c18e1e68507aa33ef7448dbc3311901ab6f29adc2f51d449409b0680dce

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "01626C18E1E68507AA33EF7448DBC3311901AB6F29ADC2F51D449409B0680DCE"
Last-Modified: Sun, 05 Feb 2023 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=15713
Expires: Sun, 05 Feb 2023 23:24:05 GMT
Date: Sun, 05 Feb 2023 19:02:12 GMT
Connection: keep-alive

firefox.settings.services.mozilla.com/v1/

35.241.9.150

200 OK

939 B

URL HTTP/2
firefox.settings.services.mozilla.com/v1/
IP
35.241.9.150:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Size
939 B (939 bytes)
Hash
30db107dcf4380cef05efea409c2e6a3
96e6a306fbc07299aba64e5c14e2bfca35872fa9
b64051a4a8e346e3c72b2aef77f360a5736ab5e16711d8e0bae3876feaa15b6e

HTTP Headers

GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Backoff, Retry-After, Content-Length, Alert, Content-Type
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Sun, 05 Feb 2023 18:33:56 GMT
content-type: application/json
age: 1696
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2

r3.o.lencr.org/

95.101.11.115

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
95.101.11.115:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
fb7b6b46e708ad73eaaa3c21e74569ae
950663c025acad81556af5aa3022ecc9d55097fe
763f58b9fb838378c92033b59907b036f4c33081f5103d9bcc2ca2a8de500d64

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "763F58B9FB838378C92033B59907B036F4C33081F5103D9BCC2CA2A8DE500D64"
Last-Modified: Sat, 04 Feb 2023 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=12559
Expires: Sun, 05 Feb 2023 22:31:31 GMT
Date: Sun, 05 Feb 2023 19:02:12 GMT
Connection: keep-alive

content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain

34.160.144.191

200 OK

5.3 kB

URL HTTP/2
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain
IP
34.160.144.191:0
ASN
#15169 GOOGLE

File type
PEM certificate\012- , ASCII text
Size
5.3 kB (5348 bytes)
Hash
7b922915ebf1fa3639b333f994c74f24
144a3f80b98fd0652d4614f24cf6cbbee40f8938
adbb3e06df0e870f5c7a9cb81e8979d4e92735853d75c9b779c06470d4db5d9c

HTTP Headers

GET /chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
x-amz-id-2: LcDku87JRiZ+I+UpskSSKNMzk4+qr5E1Qn0NNLNmGZQiAdSrTRtQ2jCwOIn0BZ+5PY8MFGr+fDo=
x-amz-request-id: JSFNYYCQC19MTFR2
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Sun, 05 Feb 2023 18:53:24 GMT
age: 528
last-modified: Mon, 09 Jan 2023 18:04:21 GMT
etag: "7b922915ebf1fa3639b333f994c74f24"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2

contile.services.mozilla.com/v1/tiles

34.117.237.239

200 OK

12 B

URL HTTP/2
contile.services.mozilla.com/v1/tiles
IP
34.117.237.239:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with no line terminators
Size
12 B (12 bytes)
Hash
23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3

HTTP Headers

GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
date: Sun, 05 Feb 2023 19:02:12 GMT
content-type: application/json
content-length: 12
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
access-control-allow-credentials: true
access-control-expose-headers: content-type
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2

r3.o.lencr.org/

95.101.11.115

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
95.101.11.115:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
8968f44907e4a71c6e5f83d2b9b5a315
8c6fa7649f8be79648a427b9bbb4f776cb165336
621e73e388dc94a1e365c43ed1b1284d7b1748a95d021493e658e7560f4b7151

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "621E73E388DC94A1E365C43ED1B1284D7B1748A95D021493E658E7560F4B7151"
Last-Modified: Sun, 05 Feb 2023 19:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21600
Expires: Mon, 06 Feb 2023 01:02:12 GMT
Date: Sun, 05 Feb 2023 19:02:12 GMT
Connection: keep-alive

ocsp.digicert.com/

93.184.220.29

200 OK

279 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
279 B (279 bytes)
Hash
6630148a03da2d4ccf19993f0fefd44c
2c747b9bc89b4240ad4340b31b993e3d947d1e5a
68c252a328d6f8dbea1935f3a4a950fb02969e70aabfff9853add357f76ecd4f

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2345
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sun, 05 Feb 2023 19:02:12 GMT
Last-Modified: Sun, 05 Feb 2023 18:23:07 GMT
Server: ECS (ska/F71A)
X-Cache: HIT
Content-Length: 279

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
98be7fe21d059e46146a43d20c4eea92
1ec58129fea75085588be7b8baec05b0874b5274
7bb2eb5ffcd88a3b6ba7b210bdbcd4469134c9708f06befb6c616beebf8dae46

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 05 Feb 2023 19:02:12 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

cdnjs.cloudflare.com/ajax/libs/dropzone/5.4.0/dropzone.css

104.17.24.14

200 OK

1.5 kB

URL HTTP/2
cdnjs.cloudflare.com/ajax/libs/dropzone/5.4.0/dropzone.css
IP
104.17.24.14:0
ASN
#13335 CLOUDFLARENET

File type
ASCII text
Size
1.5 kB (1464 bytes)
Hash
593403dc4ce9adcdf7d8b44f18513be3
ab9859e2e1e1440884c15e707e9c2eb655c60711
8dfffecd68c0f0dec371039f73aeb8d4d8551e350b42cca7da50e2d7df142263

HTTP Headers

GET /ajax/libs/dropzone/5.4.0/dropzone.css HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://test.igmg.site/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Sun, 05 Feb 2023 19:02:12 GMT
content-type: text/css; charset=utf-8
content-length: 1464
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "5eb03e3e-312b"
last-modified: Mon, 04 May 2020 16:09:34 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 615455
expires: Fri, 26 Jan 2024 19:02:12 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Fz0Kq0Y%2Bijd0jChj7ls9BaLx9mzeIDt%2BSIuDHNW%2FWar0oSaNK94wnqfPZTj1eBAPtB4b%2BqEyTjpvrfgI7WSMUy4PYf2o5eGcJsfooFe4hmKXZL%2FEXfm2JozzSGGe7kT4i%2BLwArhh"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 794de62a7caab4ff-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

test.igmg.site/images/iros_amblem.png?r=449106307

51.195.6.66

200 OK

4.3 kB

URL HTTP/2
test.igmg.site/images/iros_amblem.png?r=449106307
IP
51.195.6.66:0
ASN
#16276 OVH SAS

File type
PNG image data, 200 x 200, 8-bit/color RGBA, non-interlaced\012- data
Size
4.3 kB (4281 bytes)
Hash
e06152b0921f030754d80520b1a27237
8ab440c4bbce55cf374773017051a4defec1739b
1aa1d9de13ca429b7affd44fffe6709e3885a1cf962a9878e7abcfb40da026b1

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /images/iros_amblem.png?r=449106307 HTTP/1.1
Host: test.igmg.site
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://test.igmg.site/
Cookie: PHPSESSID=e5j4b4veh9mf2il66bn6g8g25d
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Sun, 05 Feb 2023 19:02:12 GMT
content-type: image/png
content-length: 4281
last-modified: Mon, 04 Jul 2022 20:24:22 GMT
etag: "62c34c76-10b9"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2

test.igmg.site/images/program2.png?r=1661054757

51.195.6.66

200 OK

2.7 kB

URL HTTP/2
test.igmg.site/images/program2.png?r=1661054757
IP
51.195.6.66:0
ASN
#16276 OVH SAS

File type
PNG image data, 200 x 133, 8-bit colormap, non-interlaced\012- data
Size
2.7 kB (2699 bytes)
Hash
8a8445dbaf9c9daba257bd6142958234
7fbf1239846097347b75409cb833ec003e712965
e6ad65ffc98707290032a8b8a7711f732a47b130098f7df9e76d59171b06bb0f

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /images/program2.png?r=1661054757 HTTP/1.1
Host: test.igmg.site
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://test.igmg.site/
Cookie: PHPSESSID=e5j4b4veh9mf2il66bn6g8g25d
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Sun, 05 Feb 2023 19:02:12 GMT
content-type: image/png
content-length: 2699
last-modified: Mon, 04 Jul 2022 20:24:22 GMT
etag: "62c34c76-a8b"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2

test.igmg.site/images/program7.png?r=1812155777

51.195.6.66

200 OK

17 kB

URL HTTP/2
test.igmg.site/images/program7.png?r=1812155777
IP
51.195.6.66:0
ASN
#16276 OVH SAS

File type
PNG image data, 143 x 132, 8-bit/color RGB, non-interlaced\012- data
Size
17 kB (16669 bytes)
Hash
eeb2d5fe356d71a3128c903cb041b306
a9b1c3099a347e38a886a075a6a75737631c9667
314f0cf28a9f6341b3c47f96c0ecf06a7c929b495b502907a987afed8fa7feed

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /images/program7.png?r=1812155777 HTTP/1.1
Host: test.igmg.site
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://test.igmg.site/
Cookie: PHPSESSID=e5j4b4veh9mf2il66bn6g8g25d
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Sun, 05 Feb 2023 19:02:12 GMT
content-type: image/png
content-length: 16669
last-modified: Mon, 04 Jul 2022 20:24:22 GMT
etag: "62c34c76-411d"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2

test.igmg.site/images/program1.png?r=670764709

51.195.6.66

200 OK

3.9 kB

URL HTTP/2
test.igmg.site/images/program1.png?r=670764709
IP
51.195.6.66:0
ASN
#16276 OVH SAS

File type
PNG image data, 85 x 82, 8-bit/color RGBA, non-interlaced\012- data
Size
3.9 kB (3922 bytes)
Hash
f546ddd9ea85f69f04b23bbcb9a6bbab
1e0f5dacbd43e2b6ceb0693ddc9ed5e4ff868928
96c507fd8ed7b25af04082722480424f2d88ad77144c65739ea5b259f7d97d71

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /images/program1.png?r=670764709 HTTP/1.1
Host: test.igmg.site
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://test.igmg.site/
Cookie: PHPSESSID=e5j4b4veh9mf2il66bn6g8g25d
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Sun, 05 Feb 2023 19:02:12 GMT
content-type: image/png
content-length: 3922
last-modified: Mon, 04 Jul 2022 20:24:22 GMT
etag: "62c34c76-f52"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2

test.igmg.site/images/program4.png?r=601730945

51.195.6.66

200 OK

2.4 kB

URL HTTP/2
test.igmg.site/images/program4.png?r=601730945
IP
51.195.6.66:0
ASN
#16276 OVH SAS

File type
PNG image data, 77 x 83, 8-bit/color RGBA, non-interlaced\012- data
Size
2.4 kB (2363 bytes)
Hash
7385f9e6996f26e048e0656af1a63b55
da3e1b9166f1a8171a7b3b0ecdd0fcad8d7fe1ec
c4e1e74d6ad27c277320efec9e1bd55897e424be35b22abf1fcb5ef015984e79

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /images/program4.png?r=601730945 HTTP/1.1
Host: test.igmg.site
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://test.igmg.site/
Cookie: PHPSESSID=e5j4b4veh9mf2il66bn6g8g25d
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Sun, 05 Feb 2023 19:02:12 GMT
content-type: image/png
content-length: 2363
last-modified: Mon, 04 Jul 2022 20:24:22 GMT
etag: "62c34c76-93b"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2

test.igmg.site/images/program4.png?r=1482272170

51.195.6.66

200 OK

2.4 kB

URL HTTP/2
test.igmg.site/images/program4.png?r=1482272170
IP
51.195.6.66:0
ASN
#16276 OVH SAS

File type
PNG image data, 77 x 83, 8-bit/color RGBA, non-interlaced\012- data
Size
2.4 kB (2363 bytes)
Hash
7385f9e6996f26e048e0656af1a63b55
da3e1b9166f1a8171a7b3b0ecdd0fcad8d7fe1ec
c4e1e74d6ad27c277320efec9e1bd55897e424be35b22abf1fcb5ef015984e79

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /images/program4.png?r=1482272170 HTTP/1.1
Host: test.igmg.site
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://test.igmg.site/
Cookie: PHPSESSID=e5j4b4veh9mf2il66bn6g8g25d
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Sun, 05 Feb 2023 19:02:12 GMT
content-type: image/png
content-length: 2363
last-modified: Mon, 04 Jul 2022 20:24:22 GMT
etag: "62c34c76-93b"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2

test.igmg.site/images/program3.png?r=617247580

51.195.6.66

200 OK

2.4 kB

URL HTTP/2
test.igmg.site/images/program3.png?r=617247580
IP
51.195.6.66:0
ASN
#16276 OVH SAS

File type
PNG image data, 92 x 83, 8-bit/color RGBA, non-interlaced\012- data
Size
2.4 kB (2358 bytes)
Hash
00ac55dafb6bed7c22fa6f79e268bffa
e3a16f6fa4b23db5ac1567a7f7a25ee8b30176cd
2fd5cbee7816a3a0ac5863064f0e7836fc5f2e9e53174984139aaa02a108f31c

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /images/program3.png?r=617247580 HTTP/1.1
Host: test.igmg.site
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://test.igmg.site/
Cookie: PHPSESSID=e5j4b4veh9mf2il66bn6g8g25d
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Sun, 05 Feb 2023 19:02:12 GMT
content-type: image/png
content-length: 2358
last-modified: Mon, 04 Jul 2022 20:24:22 GMT
etag: "62c34c76-936"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2

test.igmg.site/assets/js/js.cookie.min.js

51.195.6.66

200 OK

0 B

URL HTTP/2
test.igmg.site/assets/js/js.cookie.min.js
IP
51.195.6.66:0
ASN
#16276 OVH SAS

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /assets/js/js.cookie.min.js HTTP/1.1
Host: test.igmg.site
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://test.igmg.site/
Cookie: PHPSESSID=e5j4b4veh9mf2il66bn6g8g25d
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Sun, 05 Feb 2023 19:02:12 GMT
content-type: application/javascript
content-length: 0
x-accel-version: 0.01
last-modified: Mon, 04 Jul 2022 20:24:22 GMT
etag: "0-5e300857cde8e"
accept-ranges: bytes
x-powered-by: PleskLin
X-Firefox-Spdy: h2

test.igmg.site/assets/js/jquery.sparkline.min.js

51.195.6.66

200 OK

0 B

URL HTTP/2
test.igmg.site/assets/js/jquery.sparkline.min.js
IP
51.195.6.66:0
ASN
#16276 OVH SAS

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /assets/js/jquery.sparkline.min.js HTTP/1.1
Host: test.igmg.site
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://test.igmg.site/
Cookie: PHPSESSID=e5j4b4veh9mf2il66bn6g8g25d
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Sun, 05 Feb 2023 19:02:12 GMT
content-type: application/javascript
content-length: 0
x-accel-version: 0.01
last-modified: Mon, 04 Jul 2022 20:24:22 GMT
etag: "0-5e300857cceee"
accept-ranges: bytes
x-powered-by: PleskLin
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
98be7fe21d059e46146a43d20c4eea92
1ec58129fea75085588be7b8baec05b0874b5274
7bb2eb5ffcd88a3b6ba7b210bdbcd4469134c9708f06befb6c616beebf8dae46

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 05 Feb 2023 19:02:12 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

r3.o.lencr.org/

95.101.11.115

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
95.101.11.115:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
dedf9c519ac38c4bece9c5bc895787d7
4911175c3f8a435978c5301c33c7a99a5e00a1d5
bddd7e3a4939f863642a7c5348c1c8b9bc569b35c10a27f4cf5ec71f7e6b9698

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "BDDD7E3A4939F863642A7C5348C1C8B9BC569B35C10A27F4CF5EC71F7E6B9698"
Last-Modified: Fri, 03 Feb 2023 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=14978
Expires: Sun, 05 Feb 2023 23:11:51 GMT
Date: Sun, 05 Feb 2023 19:02:13 GMT
Connection: keep-alive

firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US

35.241.9.150

200 OK

329 B

URL HTTP/2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP
35.241.9.150:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Size
329 B (329 bytes)
Hash
0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300

HTTP Headers

GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Length, Retry-After, Last-Modified, Cache-Control, Pragma, ETag, Backoff, Content-Type, Alert, Expires
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Sun, 05 Feb 2023 18:49:07 GMT
age: 786
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2

push.services.mozilla.com/

54.149.45.114

101 Switching Protocols

0 B

URL HTTP/1.1
push.services.mozilla.com/
IP
54.149.45.114:0
ASN
#16509 AMAZON-02

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: +23GwD1m8SdH/CI1fqtVsg==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket

HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: /LUHTOOt8vLZ0ZDBMMlNk3lZh+k=

test.igmg.site/images/bg.png

51.195.6.66

200 OK

7.8 kB

URL HTTP/2
test.igmg.site/images/bg.png
IP
51.195.6.66:0
ASN
#16276 OVH SAS

File type
PNG image data, 115 x 115, 8-bit/color RGB, non-interlaced\012- data
Size
7.8 kB (7771 bytes)
Hash
171463dd895108e41d0a159e2af10e59
463c4f50e5387527365643bbe016fd3790e28c6f
5439f6fe48c0495aefdf68b1438cb35f2f2db9f93153044f440d69e7129a586f

HTTP Headers

GET /images/bg.png HTTP/1.1
Host: test.igmg.site
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://test.igmg.site/
Cookie: PHPSESSID=e5j4b4veh9mf2il66bn6g8g25d
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Sun, 05 Feb 2023 19:02:13 GMT
content-type: image/png
content-length: 7771
last-modified: Mon, 04 Jul 2022 20:24:22 GMT
etag: "62c34c76-1e5b"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
5452c58c07ce8d3cade93b323b271c35
581b1e438daeb32a12feaf50f2aab17dcf3e3171
b99ea2af71e697f45db51732f7d3e8d3e50258c9c96e50a772b8c4638577140a

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 05 Feb 2023 19:02:13 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
836bc62dbb011b6180fc7209d0061736
74e6f18561a7006a3afb6ab03559eec239ce4b36
90b197384670fdb210d364f91b423fd383d25838e38a494158a8185bef0061f0

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 05 Feb 2023 19:02:13 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
5452c58c07ce8d3cade93b323b271c35
581b1e438daeb32a12feaf50f2aab17dcf3e3171
b99ea2af71e697f45db51732f7d3e8d3e50258c9c96e50a772b8c4638577140a

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 05 Feb 2023 19:02:13 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
836bc62dbb011b6180fc7209d0061736
74e6f18561a7006a3afb6ab03559eec239ce4b36
90b197384670fdb210d364f91b423fd383d25838e38a494158a8185bef0061f0

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 05 Feb 2023 19:02:13 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
5452c58c07ce8d3cade93b323b271c35
581b1e438daeb32a12feaf50f2aab17dcf3e3171
b99ea2af71e697f45db51732f7d3e8d3e50258c9c96e50a772b8c4638577140a

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 05 Feb 2023 19:02:13 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

fonts.gstatic.com/s/opensans/v34/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2

142.250.74.35

200 OK

45 kB

URL HTTP/2
fonts.gstatic.com/s/opensans/v34/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2
IP
142.250.74.35:0
ASN
#15169 GOOGLE

File type
Web Open Font Format (Version 2), TrueType, length 44856, version 1.0\012- data
Size
45 kB (44856 bytes)
Hash
565ce506190ad3af920b40baf1794cec
ad3cba5d06100e09449a864d3b5e58403b478b3d
8778e9af2422858d7052ff9a0f3c12c08ae976bdd6e0316db144cd5579cd97db

HTTP Headers

GET /s/opensans/v34/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://test.igmg.site
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 44856
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 30 Jan 2023 18:52:41 GMT
expires: Tue, 30 Jan 2024 18:52:41 GMT
cache-control: public, max-age=31536000
age: 518972
last-modified: Mon, 15 Aug 2022 18:20:18 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

fonts.gstatic.com/s/opensans/v34/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTSGmu1aB.woff2

142.250.74.35

200 OK

31 kB

URL HTTP/2
fonts.gstatic.com/s/opensans/v34/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTSGmu1aB.woff2
IP
142.250.74.35:0
ASN
#15169 GOOGLE

File type
Web Open Font Format (Version 2), TrueType, length 31320, version 1.0\012- data
Size
31 kB (31320 bytes)
Hash
3fe71527811fbfedd2c07962e1bc49e7
f63e158a0480c5d711b5e268db0e75e57d87a8a5
24c0e724005344165ee0a0ff4c96a914e174bb4caa20c8a533fb194d92853e95

HTTP Headers

GET /s/opensans/v34/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTSGmu1aB.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://test.igmg.site
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 31320
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sun, 05 Feb 2023 10:24:41 GMT
expires: Mon, 05 Feb 2024 10:24:41 GMT
cache-control: public, max-age=31536000
age: 31052
last-modified: Mon, 15 Aug 2022 18:11:37 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
5452c58c07ce8d3cade93b323b271c35
581b1e438daeb32a12feaf50f2aab17dcf3e3171
b99ea2af71e697f45db51732f7d3e8d3e50258c9c96e50a772b8c4638577140a

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 05 Feb 2023 19:02:13 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

test.igmg.site/images/logo.png

51.195.6.66

200 OK

62 kB

URL HTTP/2
test.igmg.site/images/logo.png
IP
51.195.6.66:0
ASN
#16276 OVH SAS

File type
PNG image data, 190 x 190, 8-bit/color RGB, non-interlaced\012- data
Size
62 kB (61610 bytes)
Hash
bdba6772eb3477480740c8a34de0d166
c322e86c037868cb60235ed54b3efd7e355820db
747dc61d8573f1904b33b9f7157682643018a5710bb9c2580316ec37514ff1c6

HTTP Headers

GET /images/logo.png HTTP/1.1
Host: test.igmg.site
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://test.igmg.site/
Cookie: PHPSESSID=e5j4b4veh9mf2il66bn6g8g25d
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Sun, 05 Feb 2023 19:02:13 GMT
content-type: image/png
content-length: 61610
last-modified: Mon, 04 Jul 2022 20:24:22 GMT
etag: "62c34c76-f0aa"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2

unpkg.com/xlsx@0.18.5/dist/shim.min.js

104.16.126.175

200 OK

2.6 kB

URL HTTP/2
unpkg.com/xlsx@0.18.5/dist/shim.min.js
IP
104.16.126.175:0
ASN
#13335 CLOUDFLARENET

File type
HTML document, ASCII text, with very long lines (5589)
Size
2.6 kB (2612 bytes)
Hash
4acdf95502eb680ca3fe22f847ffa8cd
75a7c79defd0614587c7da049ed40c12cb02fec4
218b393f723ed54092b0df7c9e5760b28bafb120e0b24d42185ef40b651dc4ef

HTTP Headers

GET /xlsx@0.18.5/dist/shim.min.js HTTP/1.1
Host: unpkg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://test.igmg.site/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
date: Sun, 05 Feb 2023 19:02:12 GMT
content-type: application/javascript; charset=utf-8
access-control-allow-origin: *
cache-control: public, max-age=31536000
last-modified: Sat, 26 Oct 1985 08:15:00 GMT
etag: W/"1613-Z7IllA0NQSPoxrSE6c9Sl7PgwjA"
via: 1.1 fly.io
fly-request-id: 01FYY5CX0AG90XNXEV43KMCVSJ-fra
cf-cache-status: HIT
age: 27491481
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 794de62a6d64b518-OSL
content-encoding: br
X-Firefox-Spdy: h2

r3.o.lencr.org/

95.101.11.115

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
95.101.11.115:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
1b25bf82638deaab60981e1315ee0849
e3bd912fd1a890e64ee6746a78a674db7ff77039
a99b0dfa9ca7176b21cc2d65963a1b6eb6d534b3767d02ef06cc207a63331ebf

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "A99B0DFA9CA7176B21CC2D65963A1B6EB6D534B3767D02EF06CC207A63331EBF"
Last-Modified: Sat, 04 Feb 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=15784
Expires: Sun, 05 Feb 2023 23:25:18 GMT
Date: Sun, 05 Feb 2023 19:02:14 GMT
Connection: keep-alive

r3.o.lencr.org/

95.101.11.115

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
95.101.11.115:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
1b25bf82638deaab60981e1315ee0849
e3bd912fd1a890e64ee6746a78a674db7ff77039
a99b0dfa9ca7176b21cc2d65963a1b6eb6d534b3767d02ef06cc207a63331ebf

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "A99B0DFA9CA7176B21CC2D65963A1B6EB6D534B3767D02EF06CC207A63331EBF"
Last-Modified: Sat, 04 Feb 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=15784
Expires: Sun, 05 Feb 2023 23:25:18 GMT
Date: Sun, 05 Feb 2023 19:02:14 GMT
Connection: keep-alive

img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3a6c7026-85a2-4419-bd6b-ba1bac463dda.jpeg

34.120.237.76

200 OK

8.5 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3a6c7026-85a2-4419-bd6b-ba1bac463dda.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
8.5 kB (8527 bytes)
Hash
6661b7263315f5eb3cd2465f671e1fcd
b7b5831c6b3ccc41d7a980b6088adc10ff8785f1
eb25507950d81db4b54a1af7fadaceee1bcff780eb28b6a04dbfb3886785f5b7

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3a6c7026-85a2-4419-bd6b-ba1bac463dda.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 8527
x-amzn-requestid: 6a8c6487-6069-47d1-afa1-648626f85439
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fyDqqGg5oAMFV-A=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63dd7fdd-0a772cde1e6fba6d7da97435;Sampled=0
x-amzn-remapped-date: Fri, 03 Feb 2023 21:42:53 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: CHWhIpyzhoPtMUplzh1430Q9FfCM1wkTc_hQsgQk6InM9tYBPGYnNg==
via: 1.1 e5af640ced3aa8764b82c4bc3f7af38e.cloudfront.net (CloudFront), 1.1 2bedbeaa49b4a77447d30097858cb81a.cloudfront.net (CloudFront), 1.1 google
date: Sat, 04 Feb 2023 22:05:45 GMT
age: 75389
etag: "b7b5831c6b3ccc41d7a980b6088adc10ff8785f1"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

13 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc6718344-fcb4-4366-9239-8921034a7114.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
13 kB (12967 bytes)
Hash
8e0be7db14d930d6227443314bcd1747
4e42e2ad289dfe5bd9a55d34fd768f7532bdf71d
baedfbdb08a67f9ff4c698f7e65b08d7e4c5078d0a4233e6bff529b44812735a

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc6718344-fcb4-4366-9239-8921034a7114.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 12967
x-amzn-requestid: 013fa296-a431-410b-b3fb-7417b3e877eb
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fpIQAFCMIAMF0Sw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d9ed99-2e1daa8b75977de07c48b8fc;Sampled=0
x-amzn-remapped-date: Wed, 01 Feb 2023 04:42:01 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: UzQGDCYe_8AuYYLaLSAWzHQhwJMpzpXWbjE5AwukevW6G6SLDxDjmA==
via: 1.1 41e349e25dc4bc856d0e5d2c162428a0.cloudfront.net (CloudFront), 1.1 5565a51537c689d1d16f6b4d41f40082.cloudfront.net (CloudFront), 1.1 google
date: Sun, 05 Feb 2023 03:42:59 GMT
age: 55155
etag: "4e42e2ad289dfe5bd9a55d34fd768f7532bdf71d"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

3.5 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe8a9d301-2b38-4046-91c2-941ed351597a.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
3.5 kB (3474 bytes)
Hash
d7a466d89c75ff3459b7328591db52cf
c3f29f9c2fbdc1fa2aef7a9e79ca796b28394afb
e73243be3d01d12a224c4e9826c4f52610cf7722eee69f62755278d7550705f1

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe8a9d301-2b38-4046-91c2-941ed351597a.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 3474
x-amzn-requestid: 5846c080-9f25-4590-863c-8af2126cdbe1
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: f1WXEEbnoAMFRdg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63ded0f9-1bd490125feadc14366e7ca0;Sampled=0
x-amzn-remapped-date: Sat, 04 Feb 2023 21:41:13 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: d8aQmkW-aqLFpb79RynlJG2vY1GTDbjLNY0Qukgg_WIjdI6cmbVKFw==
via: 1.1 5ab5dc09da67e3ea794ec8a82992cc88.cloudfront.net (CloudFront), 1.1 476c2ba6d9f6cd69dbcedbd65688cbc0.cloudfront.net (CloudFront), 1.1 google
date: Sat, 04 Feb 2023 21:51:26 GMT
age: 76248
etag: "c3f29f9c2fbdc1fa2aef7a9e79ca796b28394afb"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

5.0 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F37422a56-a7de-4ab8-ac8a-650de9dae97c.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
5.0 kB (5014 bytes)
Hash
5b6c30ad03669b66bf2f63b3edd69882
e630bd132b52b965a5ade646ea8a165d1abf6d7b
f8233d879ec17fd91909655ff8881f2ebfad84272fde3ed5e5be37580378a989

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F37422a56-a7de-4ab8-ac8a-650de9dae97c.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 5014
x-amzn-requestid: a434aae4-fe4b-4fc7-9b7e-eeb552484e8a
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fi3bIE0aoAMF6YQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d76c47-5556d14757190c842bbc6b06;Sampled=0
x-amzn-remapped-date: Mon, 30 Jan 2023 07:05:43 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: k6YqagXr3Wr-u1uDKojEnIGW0CxU5yvWPtlzNpzoIvmg9F-rJb9uFQ==
via: 1.1 a4fe306096165bb1e86e69365dc8fac2.cloudfront.net (CloudFront), 1.1 1a53057db389e96b4ef1bfbc925dde1c.cloudfront.net (CloudFront), 1.1 google
date: Sun, 05 Feb 2023 11:24:01 GMT
age: 27493
etag: "e630bd132b52b965a5ade646ea8a165d1abf6d7b"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

11 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9ad60ff0-69ec-4be2-9334-41be71ca4b7f.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
11 kB (10905 bytes)
Hash
1a4eed23b240d04a3cd6b085cfa93375
f29b9dc3f6bbd2ba76a5a4570ce044d5f240fd00
93e8371f80c12d3753842e36001dbb8d3dc2223b10a594639752cd816c492d4e

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9ad60ff0-69ec-4be2-9334-41be71ca4b7f.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 10905
x-amzn-requestid: 093778fc-231c-452f-a6fc-15f4eb41ade0
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fmNJCEDzIAMFmxA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d8c239-7f56d6e56392f373541db219;Sampled=0
x-amzn-remapped-date: Tue, 31 Jan 2023 07:24:41 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: WVfpilnwhnRXBhJkHBWjxxoP09f7SqlRk8CdWRWOubIIwe0CX89bUA==
via: 1.1 0c96ded7ff282d2dbcf47c918b6bb500.cloudfront.net (CloudFront), 1.1 325ed3ba58a560748d886354beef39c0.cloudfront.net (CloudFront), 1.1 google
date: Sat, 04 Feb 2023 22:09:58 GMT
age: 75136
etag: "f29b9dc3f6bbd2ba76a5a4570ce044d5f240fd00"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

7.6 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc0def934-b27d-4612-bab8-84bfb73a9960.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
7.6 kB (7589 bytes)
Hash
5beaead015b2b4fb6d36009926ba0378
67e7c49ea7648fc6d1dffc22588862c993b785b7
6ae0cec9ade23fd53e9c1407b0324a8060892a65a6b675ccffa4a4c82b66f1ff

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc0def934-b27d-4612-bab8-84bfb73a9960.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 7589
x-amzn-requestid: 280f7003-2696-4a82-bd50-82b0a2b66faf
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fsSpoEA0oAMFSBg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63db3170-35dcb9513c891af201b973d1;Sampled=0
x-amzn-remapped-date: Thu, 02 Feb 2023 03:43:44 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: IxfTibTq6T_wq9a5YCIBZLBb70BI7AOLEAYMYYuMZPhvVKjDbFfrvA==
via: 1.1 49b94a8674d6e86a841d6523f7dbaf14.cloudfront.net (CloudFront), 1.1 be082a2326b7d49643607b097f1e7180.cloudfront.net (CloudFront), 1.1 google
date: Sat, 04 Feb 2023 21:52:08 GMT
etag: "67e7c49ea7648fc6d1dffc22588862c993b785b7"
content-type: image/jpeg
age: 76206
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

test.igmg.site/assets/css/layout.min.css?134211818

51.195.6.66

200 OK

0 B

URL HTTP/2
test.igmg.site/assets/css/layout.min.css?134211818
IP
51.195.6.66:0
ASN
#16276 OVH SAS

File type

Size
0 B (0 bytes)
Hash

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /assets/css/layout.min.css?134211818 HTTP/1.1
Host: test.igmg.site
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://test.igmg.site/
Cookie: PHPSESSID=e5j4b4veh9mf2il66bn6g8g25d
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Sun, 05 Feb 2023 19:02:12 GMT
content-type: text/css
last-modified: Mon, 04 Jul 2022 20:24:22 GMT
etag: W/"62c34c76-ec89"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2

test.igmg.site/assets/select2/select2.min.css?1028036242

51.195.6.66

200 OK

0 B

URL HTTP/2
test.igmg.site/assets/select2/select2.min.css?1028036242
IP
51.195.6.66:0
ASN
#16276 OVH SAS

File type

Size
0 B (0 bytes)
Hash

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /assets/select2/select2.min.css?1028036242 HTTP/1.1
Host: test.igmg.site
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://test.igmg.site/
Cookie: PHPSESSID=e5j4b4veh9mf2il66bn6g8g25d
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Sun, 05 Feb 2023 19:02:12 GMT
content-type: text/css
last-modified: Mon, 04 Jul 2022 20:24:22 GMT
etag: W/"62c34c76-7c8b"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2

test.igmg.site/assets/css/igmgfont.css?652209729

51.195.6.66

200 OK

0 B

URL HTTP/2
test.igmg.site/assets/css/igmgfont.css?652209729
IP
51.195.6.66:0
ASN
#16276 OVH SAS

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /assets/css/igmgfont.css?652209729 HTTP/1.1
Host: test.igmg.site
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://test.igmg.site/
Cookie: PHPSESSID=e5j4b4veh9mf2il66bn6g8g25d
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Sun, 05 Feb 2023 19:02:12 GMT
content-type: text/css
last-modified: Mon, 04 Jul 2022 20:24:22 GMT
etag: W/"62c34c76-6c5"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2

test.igmg.site/assets/fullcalendar/lib/main.min.js

51.195.6.66

200 OK

0 B

URL HTTP/2
test.igmg.site/assets/fullcalendar/lib/main.min.js
IP
51.195.6.66:0
ASN
#16276 OVH SAS

File type

Size
0 B (0 bytes)
Hash

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /assets/fullcalendar/lib/main.min.js HTTP/1.1
Host: test.igmg.site
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://test.igmg.site/
Cookie: PHPSESSID=e5j4b4veh9mf2il66bn6g8g25d
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Sun, 05 Feb 2023 19:02:12 GMT
content-type: application/javascript
last-modified: Mon, 04 Jul 2022 20:24:22 GMT
etag: W/"62c34c76-3c681"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2

test.igmg.site/assets/js/jquery.vmap.sampledata.js

51.195.6.66

200 OK

0 B

URL HTTP/2
test.igmg.site/assets/js/jquery.vmap.sampledata.js
IP
51.195.6.66:0
ASN
#16276 OVH SAS

File type

Size
0 B (0 bytes)
Hash

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /assets/js/jquery.vmap.sampledata.js HTTP/1.1
Host: test.igmg.site
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://test.igmg.site/
Cookie: PHPSESSID=e5j4b4veh9mf2il66bn6g8g25d
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Sun, 05 Feb 2023 19:02:12 GMT
content-type: application/javascript
last-modified: Mon, 04 Jul 2022 20:24:22 GMT
etag: W/"62c34c76-952"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2

test.igmg.site/assets/js/bootbox.min.js

51.195.6.66

200 OK

0 B

URL HTTP/2
test.igmg.site/assets/js/bootbox.min.js
IP
51.195.6.66:0
ASN
#16276 OVH SAS

File type

Size
0 B (0 bytes)
Hash

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /assets/js/bootbox.min.js HTTP/1.1
Host: test.igmg.site
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://test.igmg.site/
Cookie: PHPSESSID=e5j4b4veh9mf2il66bn6g8g25d
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Sun, 05 Feb 2023 19:02:12 GMT
content-type: application/javascript
last-modified: Mon, 04 Jul 2022 20:24:22 GMT
etag: W/"62c34c76-4543"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2

test.igmg.site/assets/css/morris.css?242654783

51.195.6.66

200 OK

0 B

URL HTTP/2
test.igmg.site/assets/css/morris.css?242654783
IP
51.195.6.66:0
ASN
#16276 OVH SAS

File type

Size
0 B (0 bytes)
Hash

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /assets/css/morris.css?242654783 HTTP/1.1
Host: test.igmg.site
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://test.igmg.site/
Cookie: PHPSESSID=e5j4b4veh9mf2il66bn6g8g25d
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Sun, 05 Feb 2023 19:02:12 GMT
content-type: text/css
x-accel-version: 0.01
last-modified: Mon, 04 Jul 2022 20:24:22 GMT
etag: W/"1b0-5e300857c80ce"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2

test.igmg.site/assets/css/jquery-ui.css?794210561

51.195.6.66

200 OK

0 B

URL HTTP/2
test.igmg.site/assets/css/jquery-ui.css?794210561
IP
51.195.6.66:0
ASN
#16276 OVH SAS

File type

Size
0 B (0 bytes)
Hash

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /assets/css/jquery-ui.css?794210561 HTTP/1.1
Host: test.igmg.site
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://test.igmg.site/
Cookie: PHPSESSID=e5j4b4veh9mf2il66bn6g8g25d
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Sun, 05 Feb 2023 19:02:12 GMT
content-type: text/css
last-modified: Mon, 04 Jul 2022 20:24:22 GMT
etag: W/"62c34c76-91ce"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2

test.igmg.site/assets/dropzone/dropzone.js

51.195.6.66

200 OK

0 B

URL HTTP/2
test.igmg.site/assets/dropzone/dropzone.js
IP
51.195.6.66:0
ASN
#16276 OVH SAS

File type

Size
0 B (0 bytes)
Hash

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /assets/dropzone/dropzone.js HTTP/1.1
Host: test.igmg.site
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://test.igmg.site/
Cookie: PHPSESSID=e5j4b4veh9mf2il66bn6g8g25d
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Sun, 05 Feb 2023 19:02:12 GMT
content-type: application/javascript
last-modified: Mon, 04 Jul 2022 20:24:22 GMT
etag: W/"62c34c76-22feb"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2

test.igmg.site/assets/js/jquery.vmap.russia.js

51.195.6.66

200 OK

0 B

URL HTTP/2
test.igmg.site/assets/js/jquery.vmap.russia.js
IP
51.195.6.66:0
ASN
#16276 OVH SAS

File type

Size
0 B (0 bytes)
Hash

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /assets/js/jquery.vmap.russia.js HTTP/1.1
Host: test.igmg.site
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://test.igmg.site/
Cookie: PHPSESSID=e5j4b4veh9mf2il66bn6g8g25d
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Sun, 05 Feb 2023 19:02:12 GMT
content-type: application/javascript
last-modified: Mon, 04 Jul 2022 20:24:22 GMT
etag: W/"62c34c76-267d3"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2

test.igmg.site/assets/js/pwstrength.js

51.195.6.66

200 OK

0 B

URL HTTP/2
test.igmg.site/assets/js/pwstrength.js
IP
51.195.6.66:0
ASN
#16276 OVH SAS

File type

Size
0 B (0 bytes)
Hash

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /assets/js/pwstrength.js HTTP/1.1
Host: test.igmg.site
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://test.igmg.site/
Cookie: PHPSESSID=e5j4b4veh9mf2il66bn6g8g25d
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Sun, 05 Feb 2023 19:02:12 GMT
content-type: application/javascript
last-modified: Mon, 04 Jul 2022 20:24:22 GMT
etag: W/"62c34c76-9785"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2

test.igmg.site/assets/css/bayrakfont.css?1144532593

51.195.6.66

200 OK

0 B

URL HTTP/2
test.igmg.site/assets/css/bayrakfont.css?1144532593
IP
51.195.6.66:0
ASN
#16276 OVH SAS

File type

Size
0 B (0 bytes)
Hash

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /assets/css/bayrakfont.css?1144532593 HTTP/1.1
Host: test.igmg.site
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://test.igmg.site/
Cookie: PHPSESSID=e5j4b4veh9mf2il66bn6g8g25d
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Sun, 05 Feb 2023 19:02:12 GMT
content-type: text/css
last-modified: Mon, 04 Jul 2022 20:24:22 GMT
etag: W/"62c34c76-3361"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2

test.igmg.site/assets/js/jquery.min.js

51.195.6.66

200 OK

0 B

URL HTTP/2
test.igmg.site/assets/js/jquery.min.js
IP
51.195.6.66:0
ASN
#16276 OVH SAS

File type

Size
0 B (0 bytes)
Hash

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /assets/js/jquery.min.js HTTP/1.1
Host: test.igmg.site
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://test.igmg.site/
Cookie: PHPSESSID=e5j4b4veh9mf2il66bn6g8g25d
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Sun, 05 Feb 2023 19:02:12 GMT
content-type: application/javascript
last-modified: Mon, 04 Jul 2022 20:24:22 GMT
etag: W/"62c34c76-17b8a"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2

test.igmg.site/assets/js/moment-with-locales.js

51.195.6.66

200 OK

0 B

URL HTTP/2
test.igmg.site/assets/js/moment-with-locales.js
IP
51.195.6.66:0
ASN
#16276 OVH SAS

File type

Size
0 B (0 bytes)
Hash

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /assets/js/moment-with-locales.js HTTP/1.1
Host: test.igmg.site
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://test.igmg.site/
Cookie: PHPSESSID=e5j4b4veh9mf2il66bn6g8g25d
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Sun, 05 Feb 2023 19:02:12 GMT
content-type: application/javascript
last-modified: Mon, 04 Jul 2022 20:24:22 GMT
etag: W/"62c34c76-9721a"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2

fonts.googleapis.com/css?family=Open+Sans:400,300,600,700&subset=all

142.250.74.74

200 OK

0 B

URL HTTP/2
fonts.googleapis.com/css?family=Open+Sans:400,300,600,700&subset=all
IP
142.250.74.74:0
ASN
#15169 GOOGLE

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /css?family=Open+Sans:400,300,600,700&subset=all HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://test.igmg.site/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Sun, 05 Feb 2023 19:02:12 GMT
date: Sun, 05 Feb 2023 19:02:12 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

test.igmg.site/assets/js/jquery.validate.min.js

51.195.6.66

200 OK

0 B

URL HTTP/2
test.igmg.site/assets/js/jquery.validate.min.js
IP
51.195.6.66:0
ASN
#16276 OVH SAS

File type

Size
0 B (0 bytes)
Hash

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /assets/js/jquery.validate.min.js HTTP/1.1
Host: test.igmg.site
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://test.igmg.site/
Cookie: PHPSESSID=e5j4b4veh9mf2il66bn6g8g25d
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Sun, 05 Feb 2023 19:02:12 GMT
content-type: application/javascript
last-modified: Mon, 04 Jul 2022 20:24:22 GMT
etag: W/"62c34c76-5262"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2

use.fontawesome.com/releases/v5.7.2/css/all.css

172.64.132.15

200 OK

0 B

URL HTTP/2
use.fontawesome.com/releases/v5.7.2/css/all.css
IP
172.64.132.15:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /releases/v5.7.2/css/all.css HTTP/1.1
Host: use.fontawesome.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://test.igmg.site
Connection: keep-alive
Referer: https://test.igmg.site/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Sun, 05 Feb 2023 19:02:13 GMT
content-type: text/css
x-amz-id-2: YiZ4hAUj+v50H5Kkr1oLWvuQ1rgnSKo91t4kEl/ycswlN5a9zM8ziOgsTfxDt01sGU/PZgbH9uE=
x-amz-request-id: 2QFHQ8HA3BRA5E0N
access-control-allow-origin: *
access-control-allow-methods: GET
access-control-max-age: 3000
vary: Origin, Access-Control-Request-Headers, Access-Control-Request-Method, Accept-Encoding
last-modified: Wed, 30 Jun 2021 15:45:57 GMT
etag: W/"7b1d7f457d056ace7b230b587b9f3753"
cache-control: max-age=31556926
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=44EOnx%2BljYs0r1ikW6vTGYJIh7oGfQXNste0fRNLcMD%2Bbpswb%2BFB8Ew5wOOddxeHKw%2B%2BKD3bT%2B33KnwC20c6wFJMIIyWxYabjH9uzk%2BV65d5V7qNFIY4U9eTKJVbSRVdoT0Qi%2BMh"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 794de62a9a2e7735-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

test.igmg.site/assets/css/simple-line-icons.min.css?433024361

51.195.6.66

200 OK

0 B

URL HTTP/2
test.igmg.site/assets/css/simple-line-icons.min.css?433024361
IP
51.195.6.66:0
ASN
#16276 OVH SAS

File type

Size
0 B (0 bytes)
Hash

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /assets/css/simple-line-icons.min.css?433024361 HTTP/1.1
Host: test.igmg.site
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://test.igmg.site/
Cookie: PHPSESSID=e5j4b4veh9mf2il66bn6g8g25d
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Sun, 05 Feb 2023 19:02:12 GMT
content-type: text/css
last-modified: Mon, 04 Jul 2022 20:24:22 GMT
etag: W/"62c34c76-256b"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2

test.igmg.site/assets/css/colorbox.css?857335175

51.195.6.66

200 OK

0 B

URL HTTP/2
test.igmg.site/assets/css/colorbox.css?857335175
IP
51.195.6.66:0
ASN
#16276 OVH SAS

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /assets/css/colorbox.css?857335175 HTTP/1.1
Host: test.igmg.site
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://test.igmg.site/
Cookie: PHPSESSID=e5j4b4veh9mf2il66bn6g8g25d
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Sun, 05 Feb 2023 19:02:12 GMT
content-type: text/css
last-modified: Mon, 04 Jul 2022 20:24:22 GMT
etag: W/"62c34c76-114f"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2

test.igmg.site/assets/colorbox/jquery.colorbox-min.js

51.195.6.66

200 OK

0 B

URL HTTP/2
test.igmg.site/assets/colorbox/jquery.colorbox-min.js
IP
51.195.6.66:0
ASN
#16276 OVH SAS

File type

Size
0 B (0 bytes)
Hash

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /assets/colorbox/jquery.colorbox-min.js HTTP/1.1
Host: test.igmg.site
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://test.igmg.site/
Cookie: PHPSESSID=e5j4b4veh9mf2il66bn6g8g25d
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Sun, 05 Feb 2023 19:02:12 GMT
content-type: application/javascript
last-modified: Mon, 04 Jul 2022 20:24:22 GMT
etag: W/"62c34c76-2eb8"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2

test.igmg.site/assets/js/fullcalendar.min.js

51.195.6.66

200 OK

0 B

URL HTTP/2
test.igmg.site/assets/js/fullcalendar.min.js
IP
51.195.6.66:0
ASN
#16276 OVH SAS

File type

Size
0 B (0 bytes)
Hash

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /assets/js/fullcalendar.min.js HTTP/1.1
Host: test.igmg.site
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://test.igmg.site/
Cookie: PHPSESSID=e5j4b4veh9mf2il66bn6g8g25d
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Sun, 05 Feb 2023 19:02:12 GMT
content-type: application/javascript
last-modified: Mon, 04 Jul 2022 20:24:22 GMT
etag: W/"62c34c76-180ab"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2

unpkg.com/xlsx/dist/xlsx.full.min.js

104.16.126.175

302 Found

0 B

URL HTTP/2
unpkg.com/xlsx/dist/xlsx.full.min.js
IP
104.16.126.175:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /xlsx/dist/xlsx.full.min.js HTTP/1.1
Host: unpkg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://test.igmg.site/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 302 Found
date: Sun, 05 Feb 2023 19:02:12 GMT
content-type: text/plain; charset=utf-8
access-control-allow-origin: *
cache-control: public, s-maxage=600, max-age=60
location: /xlsx@0.18.5/dist/xlsx.full.min.js
vary: Accept, Accept-Encoding
via: 1.1 fly.io
fly-request-id: 01GRHET617XB4YDMTHNKQZ3TWY-fra
cf-cache-status: HIT
age: 523
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 794de62a2cc2b518-OSL
X-Firefox-Spdy: h2

unpkg.com/file-saver@1.3.3/FileSaver.js

104.16.126.175

200 OK

0 B

URL HTTP/2
unpkg.com/file-saver@1.3.3/FileSaver.js
IP
104.16.126.175:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /file-saver@1.3.3/FileSaver.js HTTP/1.1
Host: unpkg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://test.igmg.site/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Sun, 05 Feb 2023 19:02:12 GMT
content-type: application/javascript; charset=utf-8
access-control-allow-origin: *
cache-control: public, max-age=31536000
last-modified: Wed, 05 Oct 2016 10:43:25 GMT
etag: W/"174d-ppV+tNTWNc2klmEzFicm/vyFuQM"
via: 1.1 fly.io
fly-request-id: 01GRESF3GJSWQ6GSJVASDF4QPP-fra
cf-cache-status: HIT
age: 90015
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 794de62a3cdcb518-OSL
content-encoding: br
X-Firefox-Spdy: h2

test.igmg.site/assets/css/bootstrap-switch.min.css?600802094

51.195.6.66

200 OK

0 B

URL HTTP/2
test.igmg.site/assets/css/bootstrap-switch.min.css?600802094
IP
51.195.6.66:0
ASN
#16276 OVH SAS

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /assets/css/bootstrap-switch.min.css?600802094 HTTP/1.1
Host: test.igmg.site
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://test.igmg.site/
Cookie: PHPSESSID=e5j4b4veh9mf2il66bn6g8g25d
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Sun, 05 Feb 2023 19:02:12 GMT
content-type: text/css
last-modified: Mon, 04 Jul 2022 20:24:22 GMT
etag: W/"62c34c76-1939"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2

test.igmg.site/assets/js/morris.min.js

51.195.6.66

200 OK

0 B

URL HTTP/2
test.igmg.site/assets/js/morris.min.js
IP
51.195.6.66:0
ASN
#16276 OVH SAS

File type

Size
0 B (0 bytes)
Hash

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /assets/js/morris.min.js HTTP/1.1
Host: test.igmg.site
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://test.igmg.site/
Cookie: PHPSESSID=e5j4b4veh9mf2il66bn6g8g25d
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Sun, 05 Feb 2023 19:02:12 GMT
content-type: application/javascript
last-modified: Mon, 04 Jul 2022 20:24:22 GMT
etag: W/"62c34c76-8b44"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2

test.igmg.site/assets/js/select2.full.min.js

51.195.6.66

200 OK

0 B

URL HTTP/2
test.igmg.site/assets/js/select2.full.min.js
IP
51.195.6.66:0
ASN
#16276 OVH SAS

File type

Size
0 B (0 bytes)
Hash

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /assets/js/select2.full.min.js HTTP/1.1
Host: test.igmg.site
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://test.igmg.site/
Cookie: PHPSESSID=e5j4b4veh9mf2il66bn6g8g25d
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Sun, 05 Feb 2023 19:02:12 GMT
content-type: application/javascript
last-modified: Mon, 04 Jul 2022 20:24:22 GMT
etag: W/"62c34c76-124fd"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2

test.igmg.site/assets/js/quick-nav.min.js

51.195.6.66

200 OK

0 B

URL HTTP/2
test.igmg.site/assets/js/quick-nav.min.js
IP
51.195.6.66:0
ASN
#16276 OVH SAS

File type

Size
0 B (0 bytes)
Hash

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /assets/js/quick-nav.min.js HTTP/1.1
Host: test.igmg.site
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://test.igmg.site/
Cookie: PHPSESSID=e5j4b4veh9mf2il66bn6g8g25d
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Sun, 05 Feb 2023 19:02:12 GMT
content-type: application/javascript
x-accel-version: 0.01
last-modified: Mon, 04 Jul 2022 20:24:22 GMT
etag: W/"19f-5e300857ce65e"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2

test.igmg.site/assets/js/login.min.js

51.195.6.66

200 OK

0 B

URL HTTP/2
test.igmg.site/assets/js/login.min.js
IP
51.195.6.66:0
ASN
#16276 OVH SAS

File type

Size
0 B (0 bytes)
Hash

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /assets/js/login.min.js HTTP/1.1
Host: test.igmg.site
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://test.igmg.site/
Cookie: PHPSESSID=e5j4b4veh9mf2il66bn6g8g25d
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Sun, 05 Feb 2023 19:02:12 GMT
content-type: application/javascript
last-modified: Mon, 04 Jul 2022 20:24:22 GMT
etag: W/"62c34c76-d1c"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2

test.igmg.site/assets/css/login.min.css?1320409651

51.195.6.66

200 OK

0 B

URL HTTP/2
test.igmg.site/assets/css/login.min.css?1320409651
IP
51.195.6.66:0
ASN
#16276 OVH SAS

File type

Size
0 B (0 bytes)
Hash

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /assets/css/login.min.css?1320409651 HTTP/1.1
Host: test.igmg.site
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://test.igmg.site/
Cookie: PHPSESSID=e5j4b4veh9mf2il66bn6g8g25d
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Sun, 05 Feb 2023 19:02:12 GMT
content-type: text/css
last-modified: Mon, 04 Jul 2022 20:24:22 GMT
etag: W/"62c34c76-e55"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2

test.igmg.site/assets/js/jquery.blockui.min.js

51.195.6.66

200 OK

0 B

URL HTTP/2
test.igmg.site/assets/js/jquery.blockui.min.js
IP
51.195.6.66:0
ASN
#16276 OVH SAS

File type

Size
0 B (0 bytes)
Hash

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /assets/js/jquery.blockui.min.js HTTP/1.1
Host: test.igmg.site
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://test.igmg.site/
Cookie: PHPSESSID=e5j4b4veh9mf2il66bn6g8g25d
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Sun, 05 Feb 2023 19:02:12 GMT
content-type: application/javascript
last-modified: Mon, 04 Jul 2022 20:24:22 GMT
etag: W/"62c34c76-2554"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2

test.igmg.site/assets/js/jquery.slimscroll.min.js

51.195.6.66

200 OK

0 B

URL HTTP/2
test.igmg.site/assets/js/jquery.slimscroll.min.js
IP
51.195.6.66:0
ASN
#16276 OVH SAS

File type

Size
0 B (0 bytes)
Hash

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /assets/js/jquery.slimscroll.min.js HTTP/1.1
Host: test.igmg.site
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://test.igmg.site/
Cookie: PHPSESSID=e5j4b4veh9mf2il66bn6g8g25d
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Sun, 05 Feb 2023 19:02:12 GMT
content-type: application/javascript
last-modified: Mon, 04 Jul 2022 20:24:22 GMT
etag: W/"62c34c76-1437"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2

test.igmg.site/assets/js/jquery.vmap.germany.js

51.195.6.66

200 OK

0 B

URL HTTP/2
test.igmg.site/assets/js/jquery.vmap.germany.js
IP
51.195.6.66:0
ASN
#16276 OVH SAS

File type

Size
0 B (0 bytes)
Hash

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /assets/js/jquery.vmap.germany.js HTTP/1.1
Host: test.igmg.site
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://test.igmg.site/
Cookie: PHPSESSID=e5j4b4veh9mf2il66bn6g8g25d
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Sun, 05 Feb 2023 19:02:12 GMT
content-type: application/javascript
last-modified: Mon, 04 Jul 2022 20:24:22 GMT
etag: W/"62c34c76-d893"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2

test.igmg.site/assets/js/jquery.vmap.js

51.195.6.66

200 OK

0 B

URL HTTP/2
test.igmg.site/assets/js/jquery.vmap.js
IP
51.195.6.66:0
ASN
#16276 OVH SAS

File type

Size
0 B (0 bytes)
Hash

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /assets/js/jquery.vmap.js HTTP/1.1
Host: test.igmg.site
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://test.igmg.site/
Cookie: PHPSESSID=e5j4b4veh9mf2il66bn6g8g25d
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Sun, 05 Feb 2023 19:02:12 GMT
content-type: application/javascript
last-modified: Mon, 04 Jul 2022 20:24:22 GMT
etag: W/"62c34c76-6ba2"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2

test.igmg.site/assets/js/additional-methods.min.js

51.195.6.66

200 OK

0 B

URL HTTP/2
test.igmg.site/assets/js/additional-methods.min.js
IP
51.195.6.66:0
ASN
#16276 OVH SAS

File type

Size
0 B (0 bytes)
Hash

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /assets/js/additional-methods.min.js HTTP/1.1
Host: test.igmg.site
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://test.igmg.site/
Cookie: PHPSESSID=e5j4b4veh9mf2il66bn6g8g25d
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Sun, 05 Feb 2023 19:02:12 GMT
content-type: application/javascript
last-modified: Mon, 04 Jul 2022 20:24:22 GMT
etag: W/"62c34c76-433a"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2

test.igmg.site/assets/js/layout.min.js

51.195.6.66

200 OK

0 B

URL HTTP/2
test.igmg.site/assets/js/layout.min.js
IP
51.195.6.66:0
ASN
#16276 OVH SAS

File type

Size
0 B (0 bytes)
Hash

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /assets/js/layout.min.js HTTP/1.1
Host: test.igmg.site
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://test.igmg.site/
Cookie: PHPSESSID=e5j4b4veh9mf2il66bn6g8g25d
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Sun, 05 Feb 2023 19:02:12 GMT
content-type: application/javascript
last-modified: Mon, 04 Jul 2022 20:24:22 GMT
etag: W/"62c34c76-11c0"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2

test.igmg.site/assets/tinymce/tinymce.min.js

51.195.6.66

200 OK

0 B

URL HTTP/2
test.igmg.site/assets/tinymce/tinymce.min.js
IP
51.195.6.66:0
ASN
#16276 OVH SAS

File type

Size
0 B (0 bytes)
Hash

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /assets/tinymce/tinymce.min.js HTTP/1.1
Host: test.igmg.site
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://test.igmg.site/
Cookie: PHPSESSID=e5j4b4veh9mf2il66bn6g8g25d
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Sun, 05 Feb 2023 19:02:12 GMT
content-type: application/javascript
last-modified: Mon, 04 Jul 2022 20:24:22 GMT
etag: W/"62c34c76-72a93"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2

test.igmg.site/assets/css/daterangepicker.min.css?635441374

51.195.6.66

200 OK

0 B

URL HTTP/2
test.igmg.site/assets/css/daterangepicker.min.css?635441374
IP
51.195.6.66:0
ASN
#16276 OVH SAS

File type

Size
0 B (0 bytes)
Hash

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /assets/css/daterangepicker.min.css?635441374 HTTP/1.1
Host: test.igmg.site
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://test.igmg.site/
Cookie: PHPSESSID=e5j4b4veh9mf2il66bn6g8g25d
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Sun, 05 Feb 2023 19:02:12 GMT
content-type: text/css
last-modified: Mon, 04 Jul 2022 20:24:22 GMT
etag: W/"62c34c76-15ea"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2

test.igmg.site/assets/js/popper.min.js

51.195.6.66

200 OK

0 B

URL HTTP/2
test.igmg.site/assets/js/popper.min.js
IP
51.195.6.66:0
ASN
#16276 OVH SAS

File type

Size
0 B (0 bytes)
Hash

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /assets/js/popper.min.js HTTP/1.1
Host: test.igmg.site
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://test.igmg.site/
Cookie: PHPSESSID=e5j4b4veh9mf2il66bn6g8g25d
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Sun, 05 Feb 2023 19:02:12 GMT
content-type: application/javascript
last-modified: Mon, 04 Jul 2022 20:24:22 GMT
etag: W/"62c34c76-52ce"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2

test.igmg.site/assets/js/bootstrap.min.js

51.195.6.66

200 OK

0 B

URL HTTP/2
test.igmg.site/assets/js/bootstrap.min.js
IP
51.195.6.66:0
ASN
#16276 OVH SAS

File type

Size
0 B (0 bytes)
Hash

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /assets/js/bootstrap.min.js HTTP/1.1
Host: test.igmg.site
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://test.igmg.site/
Cookie: PHPSESSID=e5j4b4veh9mf2il66bn6g8g25d
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Sun, 05 Feb 2023 19:02:12 GMT
content-type: application/javascript
last-modified: Mon, 04 Jul 2022 20:24:22 GMT
etag: W/"62c34c76-ea47"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2

test.igmg.site/assets/js/jquery.waypoints.min.js

51.195.6.66

200 OK

0 B

URL HTTP/2
test.igmg.site/assets/js/jquery.waypoints.min.js
IP
51.195.6.66:0
ASN
#16276 OVH SAS

File type

Size
0 B (0 bytes)
Hash

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /assets/js/jquery.waypoints.min.js HTTP/1.1
Host: test.igmg.site
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://test.igmg.site/
Cookie: PHPSESSID=e5j4b4veh9mf2il66bn6g8g25d
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Sun, 05 Feb 2023 19:02:12 GMT
content-type: application/javascript
last-modified: Mon, 04 Jul 2022 20:24:22 GMT
etag: W/"62c34c76-1f6c"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2

test.igmg.site/assets/js/jquery.vmap.usa.js

51.195.6.66

200 OK

0 B

URL HTTP/2
test.igmg.site/assets/js/jquery.vmap.usa.js
IP
51.195.6.66:0
ASN
#16276 OVH SAS

File type

Size
0 B (0 bytes)
Hash

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /assets/js/jquery.vmap.usa.js HTTP/1.1
Host: test.igmg.site
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://test.igmg.site/
Cookie: PHPSESSID=e5j4b4veh9mf2il66bn6g8g25d
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Sun, 05 Feb 2023 19:02:12 GMT
content-type: application/javascript
last-modified: Mon, 04 Jul 2022 20:24:22 GMT
etag: W/"62c34c76-ba04"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2

test.igmg.site/assets/js/dashboard.min.js

51.195.6.66

200 OK

0 B

URL HTTP/2
test.igmg.site/assets/js/dashboard.min.js
IP
51.195.6.66:0
ASN
#16276 OVH SAS

File type

Size
0 B (0 bytes)
Hash

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /assets/js/dashboard.min.js HTTP/1.1
Host: test.igmg.site
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://test.igmg.site/
Cookie: PHPSESSID=e5j4b4veh9mf2il66bn6g8g25d
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Sun, 05 Feb 2023 19:02:12 GMT
content-type: application/javascript
last-modified: Mon, 04 Jul 2022 20:24:22 GMT
etag: W/"62c34c76-530d"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2

test.igmg.site/assets/css/components.min.css?2080392403

51.195.6.66

200 OK

0 B

URL HTTP/2
test.igmg.site/assets/css/components.min.css?2080392403
IP
51.195.6.66:0
ASN
#16276 OVH SAS

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /assets/css/components.min.css?2080392403 HTTP/1.1
Host: test.igmg.site
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://test.igmg.site/
Cookie: PHPSESSID=e5j4b4veh9mf2il66bn6g8g25d
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Sun, 05 Feb 2023 19:02:12 GMT
content-type: text/css
last-modified: Mon, 04 Jul 2022 20:24:22 GMT
etag: W/"62c34c76-a0436"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2

test.igmg.site/assets/css/dataTables.min.css?2010636982

51.195.6.66

200 OK

0 B

URL HTTP/2
test.igmg.site/assets/css/dataTables.min.css?2010636982
IP
51.195.6.66:0
ASN
#16276 OVH SAS

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /assets/css/dataTables.min.css?2010636982 HTTP/1.1
Host: test.igmg.site
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://test.igmg.site/
Cookie: PHPSESSID=e5j4b4veh9mf2il66bn6g8g25d
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Sun, 05 Feb 2023 19:02:12 GMT
content-type: text/css
last-modified: Mon, 04 Jul 2022 20:24:22 GMT
etag: W/"62c34c76-342b"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2

test.igmg.site/assets/js/jquery-ui.min.js

51.195.6.66

200 OK

0 B

URL HTTP/2
test.igmg.site/assets/js/jquery-ui.min.js
IP
51.195.6.66:0
ASN
#16276 OVH SAS

File type

Size
0 B (0 bytes)
Hash

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /assets/js/jquery-ui.min.js HTTP/1.1
Host: test.igmg.site
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://test.igmg.site/
Cookie: PHPSESSID=e5j4b4veh9mf2il66bn6g8g25d
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Sun, 05 Feb 2023 19:02:12 GMT
content-type: application/javascript
last-modified: Mon, 04 Jul 2022 20:24:22 GMT
etag: W/"62c34c76-3dee5"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2

test.igmg.site/assets/select2/tr.js

51.195.6.66

200 OK

0 B

URL HTTP/2
test.igmg.site/assets/select2/tr.js
IP
51.195.6.66:0
ASN
#16276 OVH SAS

File type

Size
0 B (0 bytes)
Hash

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /assets/select2/tr.js HTTP/1.1
Host: test.igmg.site
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://test.igmg.site/
Cookie: PHPSESSID=e5j4b4veh9mf2il66bn6g8g25d
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Sun, 05 Feb 2023 19:02:12 GMT
content-type: application/javascript
x-accel-version: 0.01
last-modified: Mon, 04 Jul 2022 20:24:22 GMT
etag: W/"305-5e300857cee2e"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2

test.igmg.site/assets/js/jquery.easypiechart.min.js

51.195.6.66

200 OK

0 B

URL HTTP/2
test.igmg.site/assets/js/jquery.easypiechart.min.js
IP
51.195.6.66:0
ASN
#16276 OVH SAS

File type

Size
0 B (0 bytes)
Hash

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /assets/js/jquery.easypiechart.min.js HTTP/1.1
Host: test.igmg.site
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://test.igmg.site/
Cookie: PHPSESSID=e5j4b4veh9mf2il66bn6g8g25d
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Sun, 05 Feb 2023 19:02:12 GMT
content-type: application/javascript
last-modified: Mon, 04 Jul 2022 20:24:22 GMT
etag: W/"62c34c76-f4e"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2

test.igmg.site/assets/css/default.min.css?1912238996

51.195.6.66

200 OK

0 B

URL HTTP/2
test.igmg.site/assets/css/default.min.css?1912238996
IP
51.195.6.66:0
ASN
#16276 OVH SAS

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /assets/css/default.min.css?1912238996 HTTP/1.1
Host: test.igmg.site
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://test.igmg.site/
Cookie: PHPSESSID=e5j4b4veh9mf2il66bn6g8g25d
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Sun, 05 Feb 2023 19:02:12 GMT
content-type: text/css
last-modified: Mon, 04 Jul 2022 20:24:22 GMT
etag: W/"62c34c76-5a7f"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2

test.igmg.site/assets/amcharts/serial.js

51.195.6.66

200 OK

0 B

URL HTTP/2
test.igmg.site/assets/amcharts/serial.js
IP
51.195.6.66:0
ASN
#16276 OVH SAS

File type

Size
0 B (0 bytes)
Hash

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /assets/amcharts/serial.js HTTP/1.1
Host: test.igmg.site
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://test.igmg.site/
Cookie: PHPSESSID=e5j4b4veh9mf2il66bn6g8g25d
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Sun, 05 Feb 2023 19:02:12 GMT
content-type: application/javascript
last-modified: Mon, 04 Jul 2022 20:24:22 GMT
etag: W/"62c34c76-c01f"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2

test.igmg.site/assets/js/ekurs.js?411195249

51.195.6.66

200 OK

0 B

URL HTTP/2
test.igmg.site/assets/js/ekurs.js?411195249
IP
51.195.6.66:0
ASN
#16276 OVH SAS

File type

Size
0 B (0 bytes)
Hash

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /assets/js/ekurs.js?411195249 HTTP/1.1
Host: test.igmg.site
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://test.igmg.site/
Cookie: PHPSESSID=e5j4b4veh9mf2il66bn6g8g25d
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Sun, 05 Feb 2023 19:02:12 GMT
content-type: application/javascript
last-modified: Tue, 29 Nov 2022 00:24:27 GMT
etag: W/"6385513b-63d9"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2

test.igmg.site/assets/amcharts/export.min.js

51.195.6.66

200 OK

0 B

URL HTTP/2
test.igmg.site/assets/amcharts/export.min.js
IP
51.195.6.66:0
ASN
#16276 OVH SAS

File type

Size
0 B (0 bytes)
Hash

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /assets/amcharts/export.min.js HTTP/1.1
Host: test.igmg.site
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://test.igmg.site/
Cookie: PHPSESSID=e5j4b4veh9mf2il66bn6g8g25d
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Sun, 05 Feb 2023 19:02:12 GMT
content-type: application/javascript
last-modified: Mon, 04 Jul 2022 20:24:22 GMT
etag: W/"62c34c76-f3b9"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2

test.igmg.site/assets/amcharts/dataloader.min.js

51.195.6.66

200 OK

0 B

URL HTTP/2
test.igmg.site/assets/amcharts/dataloader.min.js
IP
51.195.6.66:0
ASN
#16276 OVH SAS

File type

Size
0 B (0 bytes)
Hash

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /assets/amcharts/dataloader.min.js HTTP/1.1
Host: test.igmg.site
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://test.igmg.site/
Cookie: PHPSESSID=e5j4b4veh9mf2il66bn6g8g25d
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Sun, 05 Feb 2023 19:02:12 GMT
content-type: application/javascript
last-modified: Mon, 04 Jul 2022 20:24:22 GMT
etag: W/"62c34c76-1a8b"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2

test.igmg.site/assets/js/jquery.counterup.min.js

51.195.6.66

200 OK

0 B

URL HTTP/2
test.igmg.site/assets/js/jquery.counterup.min.js
IP
51.195.6.66:0
ASN
#16276 OVH SAS

File type

Size
0 B (0 bytes)
Hash

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /assets/js/jquery.counterup.min.js HTTP/1.1
Host: test.igmg.site
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://test.igmg.site/
Cookie: PHPSESSID=e5j4b4veh9mf2il66bn6g8g25d
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Sun, 05 Feb 2023 19:02:12 GMT
content-type: application/javascript
last-modified: Mon, 04 Jul 2022 20:24:22 GMT
etag: W/"62c34c76-42d"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2

test.igmg.site/assets/js/quick-sidebar.min.js

51.195.6.66

200 OK

0 B

URL HTTP/2
test.igmg.site/assets/js/quick-sidebar.min.js
IP
51.195.6.66:0
ASN
#16276 OVH SAS

File type

Size
0 B (0 bytes)
Hash

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /assets/js/quick-sidebar.min.js HTTP/1.1
Host: test.igmg.site
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://test.igmg.site/
Cookie: PHPSESSID=e5j4b4veh9mf2il66bn6g8g25d
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Sun, 05 Feb 2023 19:02:12 GMT
content-type: application/javascript
last-modified: Mon, 04 Jul 2022 20:24:22 GMT
etag: W/"62c34c76-ae3"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2

test.igmg.site/

51.195.6.66

200 OK

0 B

URL HTTP/2
test.igmg.site/
IP
51.195.6.66:0
ASN
#16276 OVH SAS

File type

Size
0 B (0 bytes)
Hash

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET / HTTP/1.1
Host: test.igmg.site
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1

HTTP/2 200 OK
server: nginx
date: Sun, 05 Feb 2023 19:02:12 GMT
content-type: text/html; charset=UTF-8
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: no-store, no-cache, must-revalidate
pragma: no-cache
set-cookie: PHPSESSID=e5j4b4veh9mf2il66bn6g8g25d; expires=Tue, 16-May-2023 19:02:12 GMT; Max-Age=8640000; path=/
x-powered-by: PHP/7.4.33, PleskLin
content-encoding: br
X-Firefox-Spdy: h2

test.igmg.site/assets/css/plugins.min.css?220703010

51.195.6.66

200 OK

0 B

URL HTTP/2
test.igmg.site/assets/css/plugins.min.css?220703010
IP
51.195.6.66:0
ASN
#16276 OVH SAS

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /assets/css/plugins.min.css?220703010 HTTP/1.1
Host: test.igmg.site
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://test.igmg.site/
Cookie: PHPSESSID=e5j4b4veh9mf2il66bn6g8g25d
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Sun, 05 Feb 2023 19:02:12 GMT
content-type: text/css
last-modified: Mon, 04 Jul 2022 20:24:22 GMT
etag: W/"62c34c76-a4bb"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2

test.igmg.site/?act=js_translates

51.195.6.66

200 OK

0 B

URL HTTP/2
test.igmg.site/?act=js_translates
IP
51.195.6.66:0
ASN
#16276 OVH SAS

File type

Size
0 B (0 bytes)
Hash

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /?act=js_translates HTTP/1.1
Host: test.igmg.site
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://test.igmg.site/
Cookie: PHPSESSID=e5j4b4veh9mf2il66bn6g8g25d
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Sun, 05 Feb 2023 19:02:12 GMT
content-type: text/html; charset=UTF-8
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: no-store, no-cache, must-revalidate
pragma: no-cache
x-powered-by: PHP/7.4.33, PleskLin
content-encoding: br
X-Firefox-Spdy: h2

test.igmg.site/assets/select2/select2.min.js

51.195.6.66

200 OK

0 B

URL HTTP/2
test.igmg.site/assets/select2/select2.min.js
IP
51.195.6.66:0
ASN
#16276 OVH SAS

File type

Size
0 B (0 bytes)
Hash

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /assets/select2/select2.min.js HTTP/1.1
Host: test.igmg.site
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://test.igmg.site/
Cookie: PHPSESSID=e5j4b4veh9mf2il66bn6g8g25d
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Sun, 05 Feb 2023 19:02:12 GMT
content-type: application/javascript
last-modified: Mon, 04 Jul 2022 20:24:22 GMT
etag: W/"62c34c76-1042e"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2

test.igmg.site/assets/js/jquery.number.min.js

51.195.6.66

200 OK

0 B

URL HTTP/2
test.igmg.site/assets/js/jquery.number.min.js
IP
51.195.6.66:0
ASN
#16276 OVH SAS

File type

Size
0 B (0 bytes)
Hash

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /assets/js/jquery.number.min.js HTTP/1.1
Host: test.igmg.site
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://test.igmg.site/
Cookie: PHPSESSID=e5j4b4veh9mf2il66bn6g8g25d
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Sun, 05 Feb 2023 19:02:12 GMT
content-type: application/javascript
last-modified: Mon, 04 Jul 2022 20:24:22 GMT
etag: W/"62c34c76-185f"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2

unpkg.com/xlsx@0.18.5/dist/xlsx.full.min.js

104.16.126.175

200 OK

0 B

URL HTTP/2
unpkg.com/xlsx@0.18.5/dist/xlsx.full.min.js
IP
104.16.126.175:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /xlsx@0.18.5/dist/xlsx.full.min.js HTTP/1.1
Host: unpkg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://test.igmg.site/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
date: Sun, 05 Feb 2023 19:02:12 GMT
content-type: application/javascript; charset=utf-8
access-control-allow-origin: *
cache-control: public, max-age=31536000
last-modified: Sat, 26 Oct 1985 08:15:00 GMT
etag: W/"d743f-f3SfgaRaUyKRNsbB8dUNyxbdwjM"
via: 1.1 fly.io
fly-request-id: 01G754ETJDY0FY3YHJ5RCQMFCX-fra
cf-cache-status: HIT
age: 18667641
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 794de62a4d03b518-OSL
content-encoding: br
X-Firefox-Spdy: h2

test.igmg.site/assets/fullcalendar/lib/locales-all.min.js

51.195.6.66

200 OK

0 B

URL HTTP/2
test.igmg.site/assets/fullcalendar/lib/locales-all.min.js
IP
51.195.6.66:0
ASN
#16276 OVH SAS

File type

Size
0 B (0 bytes)
Hash

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /assets/fullcalendar/lib/locales-all.min.js HTTP/1.1
Host: test.igmg.site
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://test.igmg.site/
Cookie: PHPSESSID=e5j4b4veh9mf2il66bn6g8g25d
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Sun, 05 Feb 2023 19:02:12 GMT
content-type: application/javascript
last-modified: Mon, 04 Jul 2022 20:24:22 GMT
etag: W/"62c34c76-47e2"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2

test.igmg.site/assets/js/jquery.flot.categories.min.js

51.195.6.66

200 OK

0 B

URL HTTP/2
test.igmg.site/assets/js/jquery.flot.categories.min.js
IP
51.195.6.66:0
ASN
#16276 OVH SAS

File type

Size
0 B (0 bytes)
Hash

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /assets/js/jquery.flot.categories.min.js HTTP/1.1
Host: test.igmg.site
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://test.igmg.site/
Cookie: PHPSESSID=e5j4b4veh9mf2il66bn6g8g25d
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Sun, 05 Feb 2023 19:02:12 GMT
content-type: application/javascript
last-modified: Mon, 04 Jul 2022 20:24:22 GMT
etag: W/"62c34c76-a26"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2

test.igmg.site/assets/js/jquery.vmap.world.js

51.195.6.66

200 OK

0 B

URL HTTP/2
test.igmg.site/assets/js/jquery.vmap.world.js
IP
51.195.6.66:0
ASN
#16276 OVH SAS

File type

Size
0 B (0 bytes)
Hash

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /assets/js/jquery.vmap.world.js HTTP/1.1
Host: test.igmg.site
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://test.igmg.site/
Cookie: PHPSESSID=e5j4b4veh9mf2il66bn6g8g25d
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Sun, 05 Feb 2023 19:02:12 GMT
content-type: application/javascript
last-modified: Mon, 04 Jul 2022 20:24:22 GMT
etag: W/"62c34c76-ecb8"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2

test.igmg.site/assets/js/jquery.dataTables.min.js

51.195.6.66

200 OK

0 B

URL HTTP/2
test.igmg.site/assets/js/jquery.dataTables.min.js
IP
51.195.6.66:0
ASN
#16276 OVH SAS

File type

Size
0 B (0 bytes)
Hash

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /assets/js/jquery.dataTables.min.js HTTP/1.1
Host: test.igmg.site
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://test.igmg.site/
Cookie: PHPSESSID=e5j4b4veh9mf2il66bn6g8g25d
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Sun, 05 Feb 2023 19:02:12 GMT
content-type: application/javascript
last-modified: Mon, 04 Jul 2022 20:24:22 GMT
etag: W/"62c34c76-13ff2"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2

unpkg.com/blob.js@1.0.1/Blob.js

104.16.126.175

200 OK

0 B

URL HTTP/2
unpkg.com/blob.js@1.0.1/Blob.js
IP
104.16.126.175:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /blob.js@1.0.1/Blob.js HTTP/1.1
Host: unpkg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://test.igmg.site/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Sun, 05 Feb 2023 19:02:12 GMT
content-type: application/javascript; charset=utf-8
access-control-allow-origin: *
cache-control: public, max-age=31536000
last-modified: Mon, 14 Nov 2016 10:24:13 GMT
etag: W/"1800-jszKs+14oLm7MdJGCNbZkvu8ALE"
via: 1.1 fly.io
fly-request-id: 01F52A04572E1EZHSX8W8CQKRK
cf-cache-status: HIT
age: 23733420
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 794de62a3ce1b518-OSL
content-encoding: br
X-Firefox-Spdy: h2

test.igmg.site/assets/js/daterangepicker.min.js

51.195.6.66

200 OK

0 B

URL HTTP/2
test.igmg.site/assets/js/daterangepicker.min.js
IP
51.195.6.66:0
ASN
#16276 OVH SAS

File type

Size
0 B (0 bytes)
Hash

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /assets/js/daterangepicker.min.js HTTP/1.1
Host: test.igmg.site
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://test.igmg.site/
Cookie: PHPSESSID=e5j4b4veh9mf2il66bn6g8g25d
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Sun, 05 Feb 2023 19:02:12 GMT
content-type: application/javascript
last-modified: Mon, 04 Jul 2022 20:24:22 GMT
etag: W/"62c34c76-7b6a"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2

test.igmg.site/assets/js/jquery.vmap.europe.js

51.195.6.66

200 OK

0 B

URL HTTP/2
test.igmg.site/assets/js/jquery.vmap.europe.js
IP
51.195.6.66:0
ASN
#16276 OVH SAS

File type

Size
0 B (0 bytes)
Hash

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /assets/js/jquery.vmap.europe.js HTTP/1.1
Host: test.igmg.site
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://test.igmg.site/
Cookie: PHPSESSID=e5j4b4veh9mf2il66bn6g8g25d
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Sun, 05 Feb 2023 19:02:12 GMT
content-type: application/javascript
last-modified: Mon, 04 Jul 2022 20:24:22 GMT
etag: W/"62c34c76-17d75"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2

test.igmg.site/assets/js/bootstrap-switch.min.js

51.195.6.66

200 OK

0 B

URL HTTP/2
test.igmg.site/assets/js/bootstrap-switch.min.js
IP
51.195.6.66:0
ASN
#16276 OVH SAS

File type

Size
0 B (0 bytes)
Hash

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /assets/js/bootstrap-switch.min.js HTTP/1.1
Host: test.igmg.site
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://test.igmg.site/
Cookie: PHPSESSID=e5j4b4veh9mf2il66bn6g8g25d
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Sun, 05 Feb 2023 19:02:12 GMT
content-type: application/javascript
last-modified: Mon, 04 Jul 2022 20:24:22 GMT
etag: W/"62c34c76-3a37"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2

test.igmg.site/assets/js/raphael-min.js

51.195.6.66

200 OK

0 B

URL HTTP/2
test.igmg.site/assets/js/raphael-min.js
IP
51.195.6.66:0
ASN
#16276 OVH SAS

File type

Size
0 B (0 bytes)
Hash

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /assets/js/raphael-min.js HTTP/1.1
Host: test.igmg.site
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://test.igmg.site/
Cookie: PHPSESSID=e5j4b4veh9mf2il66bn6g8g25d
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Sun, 05 Feb 2023 19:02:12 GMT
content-type: application/javascript
last-modified: Mon, 04 Jul 2022 20:24:22 GMT
etag: W/"62c34c76-16555"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2

test.igmg.site/assets/js/jquery.flot.min.js

51.195.6.66

200 OK

0 B

URL HTTP/2
test.igmg.site/assets/js/jquery.flot.min.js
IP
51.195.6.66:0
ASN
#16276 OVH SAS

File type

Size
0 B (0 bytes)
Hash

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /assets/js/jquery.flot.min.js HTTP/1.1
Host: test.igmg.site
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://test.igmg.site/
Cookie: PHPSESSID=e5j4b4veh9mf2il66bn6g8g25d
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Sun, 05 Feb 2023 19:02:12 GMT
content-type: application/javascript
last-modified: Mon, 04 Jul 2022 20:24:22 GMT
etag: W/"62c34c76-cee6"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2

test.igmg.site/assets/fullcalendar/lib/main.min.css?2073970090

51.195.6.66

200 OK

0 B

URL HTTP/2
test.igmg.site/assets/fullcalendar/lib/main.min.css?2073970090
IP
51.195.6.66:0
ASN
#16276 OVH SAS

File type

Size
0 B (0 bytes)
Hash

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /assets/fullcalendar/lib/main.min.css?2073970090 HTTP/1.1
Host: test.igmg.site
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://test.igmg.site/
Cookie: PHPSESSID=e5j4b4veh9mf2il66bn6g8g25d
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Sun, 05 Feb 2023 19:02:12 GMT
content-type: text/css
last-modified: Mon, 04 Jul 2022 20:24:22 GMT
etag: W/"62c34c76-616b"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2

test.igmg.site/assets/css/jqvmap.css?1074302293

51.195.6.66

200 OK

0 B

URL HTTP/2
test.igmg.site/assets/css/jqvmap.css?1074302293
IP
51.195.6.66:0
ASN
#16276 OVH SAS

File type

Size
0 B (0 bytes)
Hash

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /assets/css/jqvmap.css?1074302293 HTTP/1.1
Host: test.igmg.site
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://test.igmg.site/
Cookie: PHPSESSID=e5j4b4veh9mf2il66bn6g8g25d
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Sun, 05 Feb 2023 19:02:12 GMT
content-type: text/css
x-accel-version: 0.01
last-modified: Mon, 04 Jul 2022 20:24:22 GMT
etag: W/"38b-5e300857c80ce"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2

unpkg.com/xlsx/dist/shim.min.js

104.16.126.175

302 Found

0 B

URL HTTP/2
unpkg.com/xlsx/dist/shim.min.js
IP
104.16.126.175:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /xlsx/dist/shim.min.js HTTP/1.1
Host: unpkg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://test.igmg.site/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 302 Found
date: Sun, 05 Feb 2023 19:02:12 GMT
content-type: text/plain; charset=utf-8
access-control-allow-origin: *
cache-control: public, s-maxage=600, max-age=60
location: /xlsx@0.18.5/dist/shim.min.js
vary: Accept, Accept-Encoding
via: 1.1 fly.io
fly-request-id: 01GRHEYZKMP1WZE62V1T8Q7T8P-fra
cf-cache-status: HIT
age: 366
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 794de62a3cdfb518-OSL
X-Firefox-Spdy: h2

test.igmg.site/assets/amcharts/pie.js

51.195.6.66

200 OK

0 B

URL HTTP/2
test.igmg.site/assets/amcharts/pie.js
IP
51.195.6.66:0
ASN
#16276 OVH SAS

File type

Size
0 B (0 bytes)
Hash

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /assets/amcharts/pie.js HTTP/1.1
Host: test.igmg.site
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://test.igmg.site/
Cookie: PHPSESSID=e5j4b4veh9mf2il66bn6g8g25d
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Sun, 05 Feb 2023 19:02:12 GMT
content-type: application/javascript
last-modified: Mon, 04 Jul 2022 20:24:22 GMT
etag: W/"62c34c76-394d"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2

test.igmg.site/assets/js/app.min.js

51.195.6.66

200 OK

0 B

URL HTTP/2
test.igmg.site/assets/js/app.min.js
IP
51.195.6.66:0
ASN
#16276 OVH SAS

File type

Size
0 B (0 bytes)
Hash

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /assets/js/app.min.js HTTP/1.1
Host: test.igmg.site
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://test.igmg.site/
Cookie: PHPSESSID=e5j4b4veh9mf2il66bn6g8g25d
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Sun, 05 Feb 2023 19:02:12 GMT
content-type: application/javascript
last-modified: Mon, 04 Jul 2022 20:24:22 GMT
etag: W/"62c34c76-3c77"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2

test.igmg.site/assets/js/demo.min.js

51.195.6.66

200 OK

0 B

URL HTTP/2
test.igmg.site/assets/js/demo.min.js
IP
51.195.6.66:0
ASN
#16276 OVH SAS

File type

Size
0 B (0 bytes)
Hash

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /assets/js/demo.min.js HTTP/1.1
Host: test.igmg.site
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://test.igmg.site/
Cookie: PHPSESSID=e5j4b4veh9mf2il66bn6g8g25d
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Sun, 05 Feb 2023 19:02:12 GMT
content-type: application/javascript
last-modified: Mon, 04 Jul 2022 20:24:22 GMT
etag: W/"62c34c76-10a6"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2

test.igmg.site/assets/css/ekurs.css?602324401

51.195.6.66

200 OK

0 B

URL HTTP/2
test.igmg.site/assets/css/ekurs.css?602324401
IP
51.195.6.66:0
ASN
#16276 OVH SAS

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /assets/css/ekurs.css?602324401 HTTP/1.1
Host: test.igmg.site
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://test.igmg.site/
Cookie: PHPSESSID=e5j4b4veh9mf2il66bn6g8g25d
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Sun, 05 Feb 2023 19:02:12 GMT
content-type: text/css
last-modified: Mon, 04 Jul 2022 20:24:22 GMT
etag: W/"62c34c76-62b5"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2

test.igmg.site/assets/amcharts/export.css?627803172

51.195.6.66

200 OK

0 B

URL HTTP/2
test.igmg.site/assets/amcharts/export.css?627803172
IP
51.195.6.66:0
ASN
#16276 OVH SAS

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /assets/amcharts/export.css?627803172 HTTP/1.1
Host: test.igmg.site
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://test.igmg.site/
Cookie: PHPSESSID=e5j4b4veh9mf2il66bn6g8g25d
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Sun, 05 Feb 2023 19:02:12 GMT
content-type: text/css
last-modified: Mon, 04 Jul 2022 20:24:22 GMT
etag: W/"62c34c76-8397"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2

test.igmg.site/assets/amcharts/amcharts.js

51.195.6.66

200 OK

0 B

URL HTTP/2
test.igmg.site/assets/amcharts/amcharts.js
IP
51.195.6.66:0
ASN
#16276 OVH SAS

File type

Size
0 B (0 bytes)
Hash

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /assets/amcharts/amcharts.js HTTP/1.1
Host: test.igmg.site
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://test.igmg.site/
Cookie: PHPSESSID=e5j4b4veh9mf2il66bn6g8g25d
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Sun, 05 Feb 2023 19:02:12 GMT
content-type: application/javascript
last-modified: Mon, 04 Jul 2022 20:24:22 GMT
etag: W/"62c34c76-3314a"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2

test.igmg.site/assets/js/jquery.flot.resize.min.js

51.195.6.66

200 OK

0 B

URL HTTP/2
test.igmg.site/assets/js/jquery.flot.resize.min.js
IP
51.195.6.66:0
ASN
#16276 OVH SAS

File type

Size
0 B (0 bytes)
Hash

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /assets/js/jquery.flot.resize.min.js HTTP/1.1
Host: test.igmg.site
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://test.igmg.site/
Cookie: PHPSESSID=e5j4b4veh9mf2il66bn6g8g25d
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Sun, 05 Feb 2023 19:02:12 GMT
content-type: application/javascript
last-modified: Mon, 04 Jul 2022 20:24:22 GMT
etag: W/"62c34c76-928"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

OpenPhish

PhishTank

Fortinet's Web Filter

mnemonic secure dns

Quad9 DNS

ThreatFox

JavaScript (65)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML