| test.igmg.site/ | 51.195.6.66 | 301 Moved Permanently | 162 B |
IP51.195.6.66:0
File typeHTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators Hash4f8e702cc244ec5d4de32740c0ecbd97 3adb1f02d5b6054de0046e367c1d687b6cdf7aff 9e17cb15dd75bbbd5dbb984eda674863c3b10ab72613cf8a39a00c3e11a8492a
Analyzer | Verdict | Alert | fortinet | Malware | |
GET / HTTP/1.1
Host: test.igmg.site
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Server: nginx
Date: Sun, 05 Feb 2023 19:02:12 GMT
Content-Type: text/html
Content-Length: 162
Connection: keep-alive
Location: https://test.igmg.site/
|
|
| r3.o.lencr.org/ | 95.101.11.115 | 200 OK | 503 B |
IP95.101.11.115:0 ASN#20940 Akamai International B.V.
Hashc21ba65e44ac95470c314e068e49a9eb 17a13b13738993d889d4afa3d848dc63bf6eba64 9bd0795b30e84ce63b6e2a365ca91bbffc395dd955e112152066c31e63a4ab66
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "9BD0795B30E84CE63B6E2A365CA91BBFFC395DD955E112152066C31E63A4AB66"
Last-Modified: Sat, 04 Feb 2023 11:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4967
Expires: Sun, 05 Feb 2023 20:24:59 GMT
Date: Sun, 05 Feb 2023 19:02:12 GMT
Connection: keep-alive
|
|
| r3.o.lencr.org/ | 95.101.11.115 | 200 OK | 503 B |
IP95.101.11.115:0 ASN#20940 Akamai International B.V.
Hash507011ccb9124dcd57e84a90a0965cc4 1a6575d0ac979c7184490cc9836ac4812ad2afd1 01626c18e1e68507aa33ef7448dbc3311901ab6f29adc2f51d449409b0680dce
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "01626C18E1E68507AA33EF7448DBC3311901AB6F29ADC2F51D449409B0680DCE"
Last-Modified: Sun, 05 Feb 2023 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=15713
Expires: Sun, 05 Feb 2023 23:24:05 GMT
Date: Sun, 05 Feb 2023 19:02:12 GMT
Connection: keep-alive
|
|
| firefox.settings.services.mozilla.com/v1/ | 35.241.9.150 | 200 OK | 939 B |
URL HTTP/2firefox.settings.services.mozilla.com/v1/ IP35.241.9.150:0
File typeJSON data\012- , ASCII text, with very long lines (939), with no line terminators Hash30db107dcf4380cef05efea409c2e6a3 96e6a306fbc07299aba64e5c14e2bfca35872fa9 b64051a4a8e346e3c72b2aef77f360a5736ab5e16711d8e0bae3876feaa15b6e
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Backoff, Retry-After, Content-Length, Alert, Content-Type
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Sun, 05 Feb 2023 18:33:56 GMT
content-type: application/json
age: 1696
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| r3.o.lencr.org/ | 95.101.11.115 | 200 OK | 503 B |
IP95.101.11.115:0 ASN#20940 Akamai International B.V.
Hashfb7b6b46e708ad73eaaa3c21e74569ae 950663c025acad81556af5aa3022ecc9d55097fe 763f58b9fb838378c92033b59907b036f4c33081f5103d9bcc2ca2a8de500d64
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "763F58B9FB838378C92033B59907B036F4C33081F5103D9BCC2CA2A8DE500D64"
Last-Modified: Sat, 04 Feb 2023 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=12559
Expires: Sun, 05 Feb 2023 22:31:31 GMT
Date: Sun, 05 Feb 2023 19:02:12 GMT
Connection: keep-alive
|
|
| content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain | 34.160.144.191 | 200 OK | 5.3 kB |
URL HTTP/2content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain IP34.160.144.191:0
File typePEM certificate\012- , ASCII text Hash7b922915ebf1fa3639b333f994c74f24 144a3f80b98fd0652d4614f24cf6cbbee40f8938 adbb3e06df0e870f5c7a9cb81e8979d4e92735853d75c9b779c06470d4db5d9c
GET /chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: LcDku87JRiZ+I+UpskSSKNMzk4+qr5E1Qn0NNLNmGZQiAdSrTRtQ2jCwOIn0BZ+5PY8MFGr+fDo=
x-amz-request-id: JSFNYYCQC19MTFR2
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Sun, 05 Feb 2023 18:53:24 GMT
age: 528
last-modified: Mon, 09 Jan 2023 18:04:21 GMT
etag: "7b922915ebf1fa3639b333f994c74f24"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| contile.services.mozilla.com/v1/tiles | 34.117.237.239 | 200 OK | 12 B |
URL HTTP/2contile.services.mozilla.com/v1/tiles IP34.117.237.239:0
File typeJSON data\012- , ASCII text, with no line terminators Hash23e88fb7b99543fb33315b29b1fad9d6 a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce 7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Sun, 05 Feb 2023 19:02:12 GMT
content-type: application/json
content-length: 12
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
access-control-allow-credentials: true
access-control-expose-headers: content-type
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| r3.o.lencr.org/ | 95.101.11.115 | 200 OK | 503 B |
IP95.101.11.115:0 ASN#20940 Akamai International B.V.
Hash8968f44907e4a71c6e5f83d2b9b5a315 8c6fa7649f8be79648a427b9bbb4f776cb165336 621e73e388dc94a1e365c43ed1b1284d7b1748a95d021493e658e7560f4b7151
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "621E73E388DC94A1E365C43ED1B1284D7B1748A95D021493E658E7560F4B7151"
Last-Modified: Sun, 05 Feb 2023 19:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21600
Expires: Mon, 06 Feb 2023 01:02:12 GMT
Date: Sun, 05 Feb 2023 19:02:12 GMT
Connection: keep-alive
|
|
| ocsp.digicert.com/ | 93.184.220.29 | 200 OK | 279 B |
IP93.184.220.29:0
Hash6630148a03da2d4ccf19993f0fefd44c 2c747b9bc89b4240ad4340b31b993e3d947d1e5a 68c252a328d6f8dbea1935f3a4a950fb02969e70aabfff9853add357f76ecd4f
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2345
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sun, 05 Feb 2023 19:02:12 GMT
Last-Modified: Sun, 05 Feb 2023 18:23:07 GMT
Server: ECS (ska/F71A)
X-Cache: HIT
Content-Length: 279
|
|
| ocsp.pki.goog/gts1c3 | 142.250.74.131 | 200 OK | 471 B |
IP142.250.74.131:0
Hash98be7fe21d059e46146a43d20c4eea92 1ec58129fea75085588be7b8baec05b0874b5274 7bb2eb5ffcd88a3b6ba7b210bdbcd4469134c9708f06befb6c616beebf8dae46
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 05 Feb 2023 19:02:12 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| cdnjs.cloudflare.com/ajax/libs/dropzone/5.4.0/dropzone.css | 104.17.24.14 | 200 OK | 1.5 kB |
URL HTTP/2cdnjs.cloudflare.com/ajax/libs/dropzone/5.4.0/dropzone.css IP104.17.24.14:0
Hash593403dc4ce9adcdf7d8b44f18513be3 ab9859e2e1e1440884c15e707e9c2eb655c60711 8dfffecd68c0f0dec371039f73aeb8d4d8551e350b42cca7da50e2d7df142263
GET /ajax/libs/dropzone/5.4.0/dropzone.css HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://test.igmg.site/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 05 Feb 2023 19:02:12 GMT
content-type: text/css; charset=utf-8
content-length: 1464
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "5eb03e3e-312b"
last-modified: Mon, 04 May 2020 16:09:34 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 615455
expires: Fri, 26 Jan 2024 19:02:12 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Fz0Kq0Y%2Bijd0jChj7ls9BaLx9mzeIDt%2BSIuDHNW%2FWar0oSaNK94wnqfPZTj1eBAPtB4b%2BqEyTjpvrfgI7WSMUy4PYf2o5eGcJsfooFe4hmKXZL%2FEXfm2JozzSGGe7kT4i%2BLwArhh"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 794de62a7caab4ff-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| test.igmg.site/images/iros_amblem.png?r=449106307 | 51.195.6.66 | 200 OK | 4.3 kB |
URL HTTP/2test.igmg.site/images/iros_amblem.png?r=449106307 IP51.195.6.66:0
File typePNG image data, 200 x 200, 8-bit/color RGBA, non-interlaced\012- data Hashe06152b0921f030754d80520b1a27237 8ab440c4bbce55cf374773017051a4defec1739b 1aa1d9de13ca429b7affd44fffe6709e3885a1cf962a9878e7abcfb40da026b1
Analyzer | Verdict | Alert | fortinet | Malware | |
GET /images/iros_amblem.png?r=449106307 HTTP/1.1
Host: test.igmg.site
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://test.igmg.site/
Cookie: PHPSESSID=e5j4b4veh9mf2il66bn6g8g25d
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 05 Feb 2023 19:02:12 GMT
content-type: image/png
content-length: 4281
last-modified: Mon, 04 Jul 2022 20:24:22 GMT
etag: "62c34c76-10b9"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| test.igmg.site/images/program2.png?r=1661054757 | 51.195.6.66 | 200 OK | 2.7 kB |
URL HTTP/2test.igmg.site/images/program2.png?r=1661054757 IP51.195.6.66:0
File typePNG image data, 200 x 133, 8-bit colormap, non-interlaced\012- data Hash8a8445dbaf9c9daba257bd6142958234 7fbf1239846097347b75409cb833ec003e712965 e6ad65ffc98707290032a8b8a7711f732a47b130098f7df9e76d59171b06bb0f
Analyzer | Verdict | Alert | fortinet | Malware | |
GET /images/program2.png?r=1661054757 HTTP/1.1
Host: test.igmg.site
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://test.igmg.site/
Cookie: PHPSESSID=e5j4b4veh9mf2il66bn6g8g25d
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 05 Feb 2023 19:02:12 GMT
content-type: image/png
content-length: 2699
last-modified: Mon, 04 Jul 2022 20:24:22 GMT
etag: "62c34c76-a8b"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| test.igmg.site/images/program7.png?r=1812155777 | 51.195.6.66 | 200 OK | 17 kB |
URL HTTP/2test.igmg.site/images/program7.png?r=1812155777 IP51.195.6.66:0
File typePNG image data, 143 x 132, 8-bit/color RGB, non-interlaced\012- data Hasheeb2d5fe356d71a3128c903cb041b306 a9b1c3099a347e38a886a075a6a75737631c9667 314f0cf28a9f6341b3c47f96c0ecf06a7c929b495b502907a987afed8fa7feed
Analyzer | Verdict | Alert | fortinet | Malware | |
GET /images/program7.png?r=1812155777 HTTP/1.1
Host: test.igmg.site
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://test.igmg.site/
Cookie: PHPSESSID=e5j4b4veh9mf2il66bn6g8g25d
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 05 Feb 2023 19:02:12 GMT
content-type: image/png
content-length: 16669
last-modified: Mon, 04 Jul 2022 20:24:22 GMT
etag: "62c34c76-411d"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| test.igmg.site/images/program1.png?r=670764709 | 51.195.6.66 | 200 OK | 3.9 kB |
URL HTTP/2test.igmg.site/images/program1.png?r=670764709 IP51.195.6.66:0
File typePNG image data, 85 x 82, 8-bit/color RGBA, non-interlaced\012- data Hashf546ddd9ea85f69f04b23bbcb9a6bbab 1e0f5dacbd43e2b6ceb0693ddc9ed5e4ff868928 96c507fd8ed7b25af04082722480424f2d88ad77144c65739ea5b259f7d97d71
Analyzer | Verdict | Alert | fortinet | Malware | |
GET /images/program1.png?r=670764709 HTTP/1.1
Host: test.igmg.site
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://test.igmg.site/
Cookie: PHPSESSID=e5j4b4veh9mf2il66bn6g8g25d
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 05 Feb 2023 19:02:12 GMT
content-type: image/png
content-length: 3922
last-modified: Mon, 04 Jul 2022 20:24:22 GMT
etag: "62c34c76-f52"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| test.igmg.site/images/program4.png?r=601730945 | 51.195.6.66 | 200 OK | 2.4 kB |
URL HTTP/2test.igmg.site/images/program4.png?r=601730945 IP51.195.6.66:0
File typePNG image data, 77 x 83, 8-bit/color RGBA, non-interlaced\012- data Hash7385f9e6996f26e048e0656af1a63b55 da3e1b9166f1a8171a7b3b0ecdd0fcad8d7fe1ec c4e1e74d6ad27c277320efec9e1bd55897e424be35b22abf1fcb5ef015984e79
Analyzer | Verdict | Alert | fortinet | Malware | |
GET /images/program4.png?r=601730945 HTTP/1.1
Host: test.igmg.site
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://test.igmg.site/
Cookie: PHPSESSID=e5j4b4veh9mf2il66bn6g8g25d
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 05 Feb 2023 19:02:12 GMT
content-type: image/png
content-length: 2363
last-modified: Mon, 04 Jul 2022 20:24:22 GMT
etag: "62c34c76-93b"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| test.igmg.site/images/program4.png?r=1482272170 | 51.195.6.66 | 200 OK | 2.4 kB |
URL HTTP/2test.igmg.site/images/program4.png?r=1482272170 IP51.195.6.66:0
File typePNG image data, 77 x 83, 8-bit/color RGBA, non-interlaced\012- data Hash7385f9e6996f26e048e0656af1a63b55 da3e1b9166f1a8171a7b3b0ecdd0fcad8d7fe1ec c4e1e74d6ad27c277320efec9e1bd55897e424be35b22abf1fcb5ef015984e79
Analyzer | Verdict | Alert | fortinet | Malware | |
GET /images/program4.png?r=1482272170 HTTP/1.1
Host: test.igmg.site
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://test.igmg.site/
Cookie: PHPSESSID=e5j4b4veh9mf2il66bn6g8g25d
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 05 Feb 2023 19:02:12 GMT
content-type: image/png
content-length: 2363
last-modified: Mon, 04 Jul 2022 20:24:22 GMT
etag: "62c34c76-93b"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| test.igmg.site/images/program3.png?r=617247580 | 51.195.6.66 | 200 OK | 2.4 kB |
URL HTTP/2test.igmg.site/images/program3.png?r=617247580 IP51.195.6.66:0
File typePNG image data, 92 x 83, 8-bit/color RGBA, non-interlaced\012- data Hash00ac55dafb6bed7c22fa6f79e268bffa e3a16f6fa4b23db5ac1567a7f7a25ee8b30176cd 2fd5cbee7816a3a0ac5863064f0e7836fc5f2e9e53174984139aaa02a108f31c
Analyzer | Verdict | Alert | fortinet | Malware | |
GET /images/program3.png?r=617247580 HTTP/1.1
Host: test.igmg.site
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://test.igmg.site/
Cookie: PHPSESSID=e5j4b4veh9mf2il66bn6g8g25d
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 05 Feb 2023 19:02:12 GMT
content-type: image/png
content-length: 2358
last-modified: Mon, 04 Jul 2022 20:24:22 GMT
etag: "62c34c76-936"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| test.igmg.site/assets/js/js.cookie.min.js | 51.195.6.66 | 200 OK | 0 B |
URL HTTP/2test.igmg.site/assets/js/js.cookie.min.js IP51.195.6.66:0
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer | Verdict | Alert | fortinet | Malware | |
GET /assets/js/js.cookie.min.js HTTP/1.1
Host: test.igmg.site
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://test.igmg.site/
Cookie: PHPSESSID=e5j4b4veh9mf2il66bn6g8g25d
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 05 Feb 2023 19:02:12 GMT
content-type: application/javascript
content-length: 0
x-accel-version: 0.01
last-modified: Mon, 04 Jul 2022 20:24:22 GMT
etag: "0-5e300857cde8e"
accept-ranges: bytes
x-powered-by: PleskLin
X-Firefox-Spdy: h2
|
|
| test.igmg.site/assets/js/jquery.sparkline.min.js | 51.195.6.66 | 200 OK | 0 B |
URL HTTP/2test.igmg.site/assets/js/jquery.sparkline.min.js IP51.195.6.66:0
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer | Verdict | Alert | fortinet | Malware | |
GET /assets/js/jquery.sparkline.min.js HTTP/1.1
Host: test.igmg.site
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://test.igmg.site/
Cookie: PHPSESSID=e5j4b4veh9mf2il66bn6g8g25d
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 05 Feb 2023 19:02:12 GMT
content-type: application/javascript
content-length: 0
x-accel-version: 0.01
last-modified: Mon, 04 Jul 2022 20:24:22 GMT
etag: "0-5e300857cceee"
accept-ranges: bytes
x-powered-by: PleskLin
X-Firefox-Spdy: h2
|
|
| ocsp.pki.goog/gts1c3 | 142.250.74.131 | 200 OK | 471 B |
IP142.250.74.131:0
Hash98be7fe21d059e46146a43d20c4eea92 1ec58129fea75085588be7b8baec05b0874b5274 7bb2eb5ffcd88a3b6ba7b210bdbcd4469134c9708f06befb6c616beebf8dae46
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 05 Feb 2023 19:02:12 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| r3.o.lencr.org/ | 95.101.11.115 | 200 OK | 503 B |
IP95.101.11.115:0 ASN#20940 Akamai International B.V.
Hashdedf9c519ac38c4bece9c5bc895787d7 4911175c3f8a435978c5301c33c7a99a5e00a1d5 bddd7e3a4939f863642a7c5348c1c8b9bc569b35c10a27f4cf5ec71f7e6b9698
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "BDDD7E3A4939F863642A7C5348C1C8B9BC569B35C10A27F4CF5EC71F7E6B9698"
Last-Modified: Fri, 03 Feb 2023 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=14978
Expires: Sun, 05 Feb 2023 23:11:51 GMT
Date: Sun, 05 Feb 2023 19:02:13 GMT
Connection: keep-alive
|
|
| firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US | 35.241.9.150 | 200 OK | 329 B |
URL HTTP/2firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US IP35.241.9.150:0
File typeJSON data\012- , ASCII text, with very long lines (329), with no line terminators Hash0333b0655111aa68de771adfcc4db243 63f295a144ac87a7c8e23417626724eeca68a7eb 60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Length, Retry-After, Last-Modified, Cache-Control, Pragma, ETag, Backoff, Content-Type, Alert, Expires
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Sun, 05 Feb 2023 18:49:07 GMT
age: 786
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| push.services.mozilla.com/ | 54.149.45.114 | 101 Switching Protocols | 0 B |
URL HTTP/1.1push.services.mozilla.com/ IP54.149.45.114:0
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: +23GwD1m8SdH/CI1fqtVsg==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: /LUHTOOt8vLZ0ZDBMMlNk3lZh+k=
|
|
| test.igmg.site/images/bg.png | 51.195.6.66 | 200 OK | 7.8 kB |
URL HTTP/2test.igmg.site/images/bg.png IP51.195.6.66:0
File typePNG image data, 115 x 115, 8-bit/color RGB, non-interlaced\012- data Hash171463dd895108e41d0a159e2af10e59 463c4f50e5387527365643bbe016fd3790e28c6f 5439f6fe48c0495aefdf68b1438cb35f2f2db9f93153044f440d69e7129a586f
GET /images/bg.png HTTP/1.1
Host: test.igmg.site
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://test.igmg.site/
Cookie: PHPSESSID=e5j4b4veh9mf2il66bn6g8g25d
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 05 Feb 2023 19:02:13 GMT
content-type: image/png
content-length: 7771
last-modified: Mon, 04 Jul 2022 20:24:22 GMT
etag: "62c34c76-1e5b"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| ocsp.pki.goog/gts1c3 | 142.250.74.131 | 200 OK | 471 B |
IP142.250.74.131:0
Hash5452c58c07ce8d3cade93b323b271c35 581b1e438daeb32a12feaf50f2aab17dcf3e3171 b99ea2af71e697f45db51732f7d3e8d3e50258c9c96e50a772b8c4638577140a
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 05 Feb 2023 19:02:13 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| ocsp.pki.goog/gts1c3 | 142.250.74.131 | 200 OK | 471 B |
IP142.250.74.131:0
Hash836bc62dbb011b6180fc7209d0061736 74e6f18561a7006a3afb6ab03559eec239ce4b36 90b197384670fdb210d364f91b423fd383d25838e38a494158a8185bef0061f0
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 05 Feb 2023 19:02:13 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| ocsp.pki.goog/gts1c3 | 142.250.74.131 | 200 OK | 471 B |
IP142.250.74.131:0
Hash5452c58c07ce8d3cade93b323b271c35 581b1e438daeb32a12feaf50f2aab17dcf3e3171 b99ea2af71e697f45db51732f7d3e8d3e50258c9c96e50a772b8c4638577140a
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 05 Feb 2023 19:02:13 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| ocsp.pki.goog/gts1c3 | 142.250.74.131 | 200 OK | 471 B |
IP142.250.74.131:0
Hash836bc62dbb011b6180fc7209d0061736 74e6f18561a7006a3afb6ab03559eec239ce4b36 90b197384670fdb210d364f91b423fd383d25838e38a494158a8185bef0061f0
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 05 Feb 2023 19:02:13 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| ocsp.pki.goog/gts1c3 | 142.250.74.131 | 200 OK | 471 B |
IP142.250.74.131:0
Hash5452c58c07ce8d3cade93b323b271c35 581b1e438daeb32a12feaf50f2aab17dcf3e3171 b99ea2af71e697f45db51732f7d3e8d3e50258c9c96e50a772b8c4638577140a
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 05 Feb 2023 19:02:13 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| fonts.gstatic.com/s/opensans/v34/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2 | 142.250.74.35 | 200 OK | 45 kB |
URL HTTP/2fonts.gstatic.com/s/opensans/v34/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2 IP142.250.74.35:0
File typeWeb Open Font Format (Version 2), TrueType, length 44856, version 1.0\012- data Hash565ce506190ad3af920b40baf1794cec ad3cba5d06100e09449a864d3b5e58403b478b3d 8778e9af2422858d7052ff9a0f3c12c08ae976bdd6e0316db144cd5579cd97db
GET /s/opensans/v34/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://test.igmg.site
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 44856
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 30 Jan 2023 18:52:41 GMT
expires: Tue, 30 Jan 2024 18:52:41 GMT
cache-control: public, max-age=31536000
age: 518972
last-modified: Mon, 15 Aug 2022 18:20:18 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| fonts.gstatic.com/s/opensans/v34/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTSGmu1aB.woff2 | 142.250.74.35 | 200 OK | 31 kB |
URL HTTP/2fonts.gstatic.com/s/opensans/v34/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTSGmu1aB.woff2 IP142.250.74.35:0
File typeWeb Open Font Format (Version 2), TrueType, length 31320, version 1.0\012- data Hash3fe71527811fbfedd2c07962e1bc49e7 f63e158a0480c5d711b5e268db0e75e57d87a8a5 24c0e724005344165ee0a0ff4c96a914e174bb4caa20c8a533fb194d92853e95
GET /s/opensans/v34/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTSGmu1aB.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://test.igmg.site
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 31320
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sun, 05 Feb 2023 10:24:41 GMT
expires: Mon, 05 Feb 2024 10:24:41 GMT
cache-control: public, max-age=31536000
age: 31052
last-modified: Mon, 15 Aug 2022 18:11:37 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| ocsp.pki.goog/gts1c3 | 142.250.74.131 | 200 OK | 471 B |
IP142.250.74.131:0
Hash5452c58c07ce8d3cade93b323b271c35 581b1e438daeb32a12feaf50f2aab17dcf3e3171 b99ea2af71e697f45db51732f7d3e8d3e50258c9c96e50a772b8c4638577140a
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 05 Feb 2023 19:02:13 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| test.igmg.site/images/logo.png | 51.195.6.66 | 200 OK | 62 kB |
URL HTTP/2test.igmg.site/images/logo.png IP51.195.6.66:0
File typePNG image data, 190 x 190, 8-bit/color RGB, non-interlaced\012- data Hashbdba6772eb3477480740c8a34de0d166 c322e86c037868cb60235ed54b3efd7e355820db 747dc61d8573f1904b33b9f7157682643018a5710bb9c2580316ec37514ff1c6
GET /images/logo.png HTTP/1.1
Host: test.igmg.site
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://test.igmg.site/
Cookie: PHPSESSID=e5j4b4veh9mf2il66bn6g8g25d
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 05 Feb 2023 19:02:13 GMT
content-type: image/png
content-length: 61610
last-modified: Mon, 04 Jul 2022 20:24:22 GMT
etag: "62c34c76-f0aa"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| unpkg.com/xlsx@0.18.5/dist/shim.min.js | 104.16.126.175 | 200 OK | 2.6 kB |
URL HTTP/2unpkg.com/xlsx@0.18.5/dist/shim.min.js IP104.16.126.175:0
File typeHTML document, ASCII text, with very long lines (5589) Hash4acdf95502eb680ca3fe22f847ffa8cd 75a7c79defd0614587c7da049ed40c12cb02fec4 218b393f723ed54092b0df7c9e5760b28bafb120e0b24d42185ef40b651dc4ef
GET /xlsx@0.18.5/dist/shim.min.js HTTP/1.1
Host: unpkg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://test.igmg.site/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 05 Feb 2023 19:02:12 GMT
content-type: application/javascript; charset=utf-8
access-control-allow-origin: *
cache-control: public, max-age=31536000
last-modified: Sat, 26 Oct 1985 08:15:00 GMT
etag: W/"1613-Z7IllA0NQSPoxrSE6c9Sl7PgwjA"
via: 1.1 fly.io
fly-request-id: 01FYY5CX0AG90XNXEV43KMCVSJ-fra
cf-cache-status: HIT
age: 27491481
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 794de62a6d64b518-OSL
content-encoding: br
X-Firefox-Spdy: h2
|
|
| r3.o.lencr.org/ | 95.101.11.115 | 200 OK | 503 B |
IP95.101.11.115:0 ASN#20940 Akamai International B.V.
Hash1b25bf82638deaab60981e1315ee0849 e3bd912fd1a890e64ee6746a78a674db7ff77039 a99b0dfa9ca7176b21cc2d65963a1b6eb6d534b3767d02ef06cc207a63331ebf
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "A99B0DFA9CA7176B21CC2D65963A1B6EB6D534B3767D02EF06CC207A63331EBF"
Last-Modified: Sat, 04 Feb 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=15784
Expires: Sun, 05 Feb 2023 23:25:18 GMT
Date: Sun, 05 Feb 2023 19:02:14 GMT
Connection: keep-alive
|
|
| r3.o.lencr.org/ | 95.101.11.115 | 200 OK | 503 B |
IP95.101.11.115:0 ASN#20940 Akamai International B.V.
Hash1b25bf82638deaab60981e1315ee0849 e3bd912fd1a890e64ee6746a78a674db7ff77039 a99b0dfa9ca7176b21cc2d65963a1b6eb6d534b3767d02ef06cc207a63331ebf
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "A99B0DFA9CA7176B21CC2D65963A1B6EB6D534B3767D02EF06CC207A63331EBF"
Last-Modified: Sat, 04 Feb 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=15784
Expires: Sun, 05 Feb 2023 23:25:18 GMT
Date: Sun, 05 Feb 2023 19:02:14 GMT
Connection: keep-alive
|
|
| img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3a6c7026-85a2-4419-bd6b-ba1bac463dda.jpeg | 34.120.237.76 | 200 OK | 8.5 kB |
URL HTTP/2img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3a6c7026-85a2-4419-bd6b-ba1bac463dda.jpeg IP34.120.237.76:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Hash6661b7263315f5eb3cd2465f671e1fcd b7b5831c6b3ccc41d7a980b6088adc10ff8785f1 eb25507950d81db4b54a1af7fadaceee1bcff780eb28b6a04dbfb3886785f5b7
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3a6c7026-85a2-4419-bd6b-ba1bac463dda.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8527
x-amzn-requestid: 6a8c6487-6069-47d1-afa1-648626f85439
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fyDqqGg5oAMFV-A=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63dd7fdd-0a772cde1e6fba6d7da97435;Sampled=0
x-amzn-remapped-date: Fri, 03 Feb 2023 21:42:53 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: CHWhIpyzhoPtMUplzh1430Q9FfCM1wkTc_hQsgQk6InM9tYBPGYnNg==
via: 1.1 e5af640ced3aa8764b82c4bc3f7af38e.cloudfront.net (CloudFront), 1.1 2bedbeaa49b4a77447d30097858cb81a.cloudfront.net (CloudFront), 1.1 google
date: Sat, 04 Feb 2023 22:05:45 GMT
age: 75389
etag: "b7b5831c6b3ccc41d7a980b6088adc10ff8785f1"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc6718344-fcb4-4366-9239-8921034a7114.jpeg | 34.120.237.76 | 200 OK | 13 kB |
URL HTTP/2img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc6718344-fcb4-4366-9239-8921034a7114.jpeg IP34.120.237.76:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Hash8e0be7db14d930d6227443314bcd1747 4e42e2ad289dfe5bd9a55d34fd768f7532bdf71d baedfbdb08a67f9ff4c698f7e65b08d7e4c5078d0a4233e6bff529b44812735a
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc6718344-fcb4-4366-9239-8921034a7114.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 12967
x-amzn-requestid: 013fa296-a431-410b-b3fb-7417b3e877eb
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fpIQAFCMIAMF0Sw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d9ed99-2e1daa8b75977de07c48b8fc;Sampled=0
x-amzn-remapped-date: Wed, 01 Feb 2023 04:42:01 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: UzQGDCYe_8AuYYLaLSAWzHQhwJMpzpXWbjE5AwukevW6G6SLDxDjmA==
via: 1.1 41e349e25dc4bc856d0e5d2c162428a0.cloudfront.net (CloudFront), 1.1 5565a51537c689d1d16f6b4d41f40082.cloudfront.net (CloudFront), 1.1 google
date: Sun, 05 Feb 2023 03:42:59 GMT
age: 55155
etag: "4e42e2ad289dfe5bd9a55d34fd768f7532bdf71d"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe8a9d301-2b38-4046-91c2-941ed351597a.jpeg | 34.120.237.76 | 200 OK | 3.5 kB |
URL HTTP/2img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe8a9d301-2b38-4046-91c2-941ed351597a.jpeg IP34.120.237.76:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Hashd7a466d89c75ff3459b7328591db52cf c3f29f9c2fbdc1fa2aef7a9e79ca796b28394afb e73243be3d01d12a224c4e9826c4f52610cf7722eee69f62755278d7550705f1
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe8a9d301-2b38-4046-91c2-941ed351597a.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 3474
x-amzn-requestid: 5846c080-9f25-4590-863c-8af2126cdbe1
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: f1WXEEbnoAMFRdg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63ded0f9-1bd490125feadc14366e7ca0;Sampled=0
x-amzn-remapped-date: Sat, 04 Feb 2023 21:41:13 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: d8aQmkW-aqLFpb79RynlJG2vY1GTDbjLNY0Qukgg_WIjdI6cmbVKFw==
via: 1.1 5ab5dc09da67e3ea794ec8a82992cc88.cloudfront.net (CloudFront), 1.1 476c2ba6d9f6cd69dbcedbd65688cbc0.cloudfront.net (CloudFront), 1.1 google
date: Sat, 04 Feb 2023 21:51:26 GMT
age: 76248
etag: "c3f29f9c2fbdc1fa2aef7a9e79ca796b28394afb"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F37422a56-a7de-4ab8-ac8a-650de9dae97c.jpeg | 34.120.237.76 | 200 OK | 5.0 kB |
URL HTTP/2img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F37422a56-a7de-4ab8-ac8a-650de9dae97c.jpeg IP34.120.237.76:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Hash5b6c30ad03669b66bf2f63b3edd69882 e630bd132b52b965a5ade646ea8a165d1abf6d7b f8233d879ec17fd91909655ff8881f2ebfad84272fde3ed5e5be37580378a989
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F37422a56-a7de-4ab8-ac8a-650de9dae97c.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5014
x-amzn-requestid: a434aae4-fe4b-4fc7-9b7e-eeb552484e8a
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fi3bIE0aoAMF6YQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d76c47-5556d14757190c842bbc6b06;Sampled=0
x-amzn-remapped-date: Mon, 30 Jan 2023 07:05:43 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: k6YqagXr3Wr-u1uDKojEnIGW0CxU5yvWPtlzNpzoIvmg9F-rJb9uFQ==
via: 1.1 a4fe306096165bb1e86e69365dc8fac2.cloudfront.net (CloudFront), 1.1 1a53057db389e96b4ef1bfbc925dde1c.cloudfront.net (CloudFront), 1.1 google
date: Sun, 05 Feb 2023 11:24:01 GMT
age: 27493
etag: "e630bd132b52b965a5ade646ea8a165d1abf6d7b"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9ad60ff0-69ec-4be2-9334-41be71ca4b7f.jpeg | 34.120.237.76 | 200 OK | 11 kB |
URL HTTP/2img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9ad60ff0-69ec-4be2-9334-41be71ca4b7f.jpeg IP34.120.237.76:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Hash1a4eed23b240d04a3cd6b085cfa93375 f29b9dc3f6bbd2ba76a5a4570ce044d5f240fd00 93e8371f80c12d3753842e36001dbb8d3dc2223b10a594639752cd816c492d4e
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9ad60ff0-69ec-4be2-9334-41be71ca4b7f.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10905
x-amzn-requestid: 093778fc-231c-452f-a6fc-15f4eb41ade0
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fmNJCEDzIAMFmxA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d8c239-7f56d6e56392f373541db219;Sampled=0
x-amzn-remapped-date: Tue, 31 Jan 2023 07:24:41 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: WVfpilnwhnRXBhJkHBWjxxoP09f7SqlRk8CdWRWOubIIwe0CX89bUA==
via: 1.1 0c96ded7ff282d2dbcf47c918b6bb500.cloudfront.net (CloudFront), 1.1 325ed3ba58a560748d886354beef39c0.cloudfront.net (CloudFront), 1.1 google
date: Sat, 04 Feb 2023 22:09:58 GMT
age: 75136
etag: "f29b9dc3f6bbd2ba76a5a4570ce044d5f240fd00"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc0def934-b27d-4612-bab8-84bfb73a9960.jpeg | 34.120.237.76 | 200 OK | 7.6 kB |
URL HTTP/2img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc0def934-b27d-4612-bab8-84bfb73a9960.jpeg IP34.120.237.76:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Hash5beaead015b2b4fb6d36009926ba0378 67e7c49ea7648fc6d1dffc22588862c993b785b7 6ae0cec9ade23fd53e9c1407b0324a8060892a65a6b675ccffa4a4c82b66f1ff
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc0def934-b27d-4612-bab8-84bfb73a9960.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7589
x-amzn-requestid: 280f7003-2696-4a82-bd50-82b0a2b66faf
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fsSpoEA0oAMFSBg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63db3170-35dcb9513c891af201b973d1;Sampled=0
x-amzn-remapped-date: Thu, 02 Feb 2023 03:43:44 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: IxfTibTq6T_wq9a5YCIBZLBb70BI7AOLEAYMYYuMZPhvVKjDbFfrvA==
via: 1.1 49b94a8674d6e86a841d6523f7dbaf14.cloudfront.net (CloudFront), 1.1 be082a2326b7d49643607b097f1e7180.cloudfront.net (CloudFront), 1.1 google
date: Sat, 04 Feb 2023 21:52:08 GMT
etag: "67e7c49ea7648fc6d1dffc22588862c993b785b7"
content-type: image/jpeg
age: 76206
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| test.igmg.site/assets/css/layout.min.css?134211818 | 51.195.6.66 | 200 OK | 0 B |
URL HTTP/2test.igmg.site/assets/css/layout.min.css?134211818 IP51.195.6.66:0
Analyzer | Verdict | Alert | fortinet | Malware | |
GET /assets/css/layout.min.css?134211818 HTTP/1.1
Host: test.igmg.site
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://test.igmg.site/
Cookie: PHPSESSID=e5j4b4veh9mf2il66bn6g8g25d
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 05 Feb 2023 19:02:12 GMT
content-type: text/css
last-modified: Mon, 04 Jul 2022 20:24:22 GMT
etag: W/"62c34c76-ec89"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
|
|
| test.igmg.site/assets/select2/select2.min.css?1028036242 | 51.195.6.66 | 200 OK | 0 B |
URL HTTP/2test.igmg.site/assets/select2/select2.min.css?1028036242 IP51.195.6.66:0
Analyzer | Verdict | Alert | fortinet | Malware | |
GET /assets/select2/select2.min.css?1028036242 HTTP/1.1
Host: test.igmg.site
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://test.igmg.site/
Cookie: PHPSESSID=e5j4b4veh9mf2il66bn6g8g25d
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 05 Feb 2023 19:02:12 GMT
content-type: text/css
last-modified: Mon, 04 Jul 2022 20:24:22 GMT
etag: W/"62c34c76-7c8b"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
|
|
| test.igmg.site/assets/css/igmgfont.css?652209729 | 51.195.6.66 | 200 OK | 0 B |
URL HTTP/2test.igmg.site/assets/css/igmgfont.css?652209729 IP51.195.6.66:0
GET /assets/css/igmgfont.css?652209729 HTTP/1.1
Host: test.igmg.site
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://test.igmg.site/
Cookie: PHPSESSID=e5j4b4veh9mf2il66bn6g8g25d
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 05 Feb 2023 19:02:12 GMT
content-type: text/css
last-modified: Mon, 04 Jul 2022 20:24:22 GMT
etag: W/"62c34c76-6c5"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
|
|
| test.igmg.site/assets/fullcalendar/lib/main.min.js | 51.195.6.66 | 200 OK | 0 B |
URL HTTP/2test.igmg.site/assets/fullcalendar/lib/main.min.js IP51.195.6.66:0
Analyzer | Verdict | Alert | fortinet | Malware | |
GET /assets/fullcalendar/lib/main.min.js HTTP/1.1
Host: test.igmg.site
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://test.igmg.site/
Cookie: PHPSESSID=e5j4b4veh9mf2il66bn6g8g25d
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 05 Feb 2023 19:02:12 GMT
content-type: application/javascript
last-modified: Mon, 04 Jul 2022 20:24:22 GMT
etag: W/"62c34c76-3c681"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
|
|
| test.igmg.site/assets/js/jquery.vmap.sampledata.js | 51.195.6.66 | 200 OK | 0 B |
URL HTTP/2test.igmg.site/assets/js/jquery.vmap.sampledata.js IP51.195.6.66:0
Analyzer | Verdict | Alert | fortinet | Malware | |
GET /assets/js/jquery.vmap.sampledata.js HTTP/1.1
Host: test.igmg.site
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://test.igmg.site/
Cookie: PHPSESSID=e5j4b4veh9mf2il66bn6g8g25d
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 05 Feb 2023 19:02:12 GMT
content-type: application/javascript
last-modified: Mon, 04 Jul 2022 20:24:22 GMT
etag: W/"62c34c76-952"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
|
|
| test.igmg.site/assets/js/bootbox.min.js | 51.195.6.66 | 200 OK | 0 B |
URL HTTP/2test.igmg.site/assets/js/bootbox.min.js IP51.195.6.66:0
Analyzer | Verdict | Alert | fortinet | Malware | |
GET /assets/js/bootbox.min.js HTTP/1.1
Host: test.igmg.site
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://test.igmg.site/
Cookie: PHPSESSID=e5j4b4veh9mf2il66bn6g8g25d
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 05 Feb 2023 19:02:12 GMT
content-type: application/javascript
last-modified: Mon, 04 Jul 2022 20:24:22 GMT
etag: W/"62c34c76-4543"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
|
|
| test.igmg.site/assets/css/morris.css?242654783 | 51.195.6.66 | 200 OK | 0 B |
URL HTTP/2test.igmg.site/assets/css/morris.css?242654783 IP51.195.6.66:0
Analyzer | Verdict | Alert | fortinet | Malware | |
GET /assets/css/morris.css?242654783 HTTP/1.1
Host: test.igmg.site
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://test.igmg.site/
Cookie: PHPSESSID=e5j4b4veh9mf2il66bn6g8g25d
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 05 Feb 2023 19:02:12 GMT
content-type: text/css
x-accel-version: 0.01
last-modified: Mon, 04 Jul 2022 20:24:22 GMT
etag: W/"1b0-5e300857c80ce"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
|
|
| test.igmg.site/assets/css/jquery-ui.css?794210561 | 51.195.6.66 | 200 OK | 0 B |
URL HTTP/2test.igmg.site/assets/css/jquery-ui.css?794210561 IP51.195.6.66:0
Analyzer | Verdict | Alert | fortinet | Malware | |
GET /assets/css/jquery-ui.css?794210561 HTTP/1.1
Host: test.igmg.site
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://test.igmg.site/
Cookie: PHPSESSID=e5j4b4veh9mf2il66bn6g8g25d
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 05 Feb 2023 19:02:12 GMT
content-type: text/css
last-modified: Mon, 04 Jul 2022 20:24:22 GMT
etag: W/"62c34c76-91ce"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
|
|
| test.igmg.site/assets/dropzone/dropzone.js | 51.195.6.66 | 200 OK | 0 B |
URL HTTP/2test.igmg.site/assets/dropzone/dropzone.js IP51.195.6.66:0
Analyzer | Verdict | Alert | fortinet | Malware | |
GET /assets/dropzone/dropzone.js HTTP/1.1
Host: test.igmg.site
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://test.igmg.site/
Cookie: PHPSESSID=e5j4b4veh9mf2il66bn6g8g25d
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 05 Feb 2023 19:02:12 GMT
content-type: application/javascript
last-modified: Mon, 04 Jul 2022 20:24:22 GMT
etag: W/"62c34c76-22feb"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
|
|
| test.igmg.site/assets/js/jquery.vmap.russia.js | 51.195.6.66 | 200 OK | 0 B |
URL HTTP/2test.igmg.site/assets/js/jquery.vmap.russia.js IP51.195.6.66:0
Analyzer | Verdict | Alert | fortinet | Malware | |
GET /assets/js/jquery.vmap.russia.js HTTP/1.1
Host: test.igmg.site
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://test.igmg.site/
Cookie: PHPSESSID=e5j4b4veh9mf2il66bn6g8g25d
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 05 Feb 2023 19:02:12 GMT
content-type: application/javascript
last-modified: Mon, 04 Jul 2022 20:24:22 GMT
etag: W/"62c34c76-267d3"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
|
|
| test.igmg.site/assets/js/pwstrength.js | 51.195.6.66 | 200 OK | 0 B |
URL HTTP/2test.igmg.site/assets/js/pwstrength.js IP51.195.6.66:0
Analyzer | Verdict | Alert | fortinet | Malware | |
GET /assets/js/pwstrength.js HTTP/1.1
Host: test.igmg.site
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://test.igmg.site/
Cookie: PHPSESSID=e5j4b4veh9mf2il66bn6g8g25d
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 05 Feb 2023 19:02:12 GMT
content-type: application/javascript
last-modified: Mon, 04 Jul 2022 20:24:22 GMT
etag: W/"62c34c76-9785"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
|
|
| test.igmg.site/assets/css/bayrakfont.css?1144532593 | 51.195.6.66 | 200 OK | 0 B |
URL HTTP/2test.igmg.site/assets/css/bayrakfont.css?1144532593 IP51.195.6.66:0
Analyzer | Verdict | Alert | fortinet | Malware | |
GET /assets/css/bayrakfont.css?1144532593 HTTP/1.1
Host: test.igmg.site
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://test.igmg.site/
Cookie: PHPSESSID=e5j4b4veh9mf2il66bn6g8g25d
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 05 Feb 2023 19:02:12 GMT
content-type: text/css
last-modified: Mon, 04 Jul 2022 20:24:22 GMT
etag: W/"62c34c76-3361"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
|
|
| test.igmg.site/assets/js/jquery.min.js | 51.195.6.66 | 200 OK | 0 B |
URL HTTP/2test.igmg.site/assets/js/jquery.min.js IP51.195.6.66:0
Analyzer | Verdict | Alert | fortinet | Malware | |
GET /assets/js/jquery.min.js HTTP/1.1
Host: test.igmg.site
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://test.igmg.site/
Cookie: PHPSESSID=e5j4b4veh9mf2il66bn6g8g25d
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 05 Feb 2023 19:02:12 GMT
content-type: application/javascript
last-modified: Mon, 04 Jul 2022 20:24:22 GMT
etag: W/"62c34c76-17b8a"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
|
|
| test.igmg.site/assets/js/moment-with-locales.js | 51.195.6.66 | 200 OK | 0 B |
URL HTTP/2test.igmg.site/assets/js/moment-with-locales.js IP51.195.6.66:0
Analyzer | Verdict | Alert | fortinet | Malware | |
GET /assets/js/moment-with-locales.js HTTP/1.1
Host: test.igmg.site
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://test.igmg.site/
Cookie: PHPSESSID=e5j4b4veh9mf2il66bn6g8g25d
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 05 Feb 2023 19:02:12 GMT
content-type: application/javascript
last-modified: Mon, 04 Jul 2022 20:24:22 GMT
etag: W/"62c34c76-9721a"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
|
|
| fonts.googleapis.com/css?family=Open+Sans:400,300,600,700&subset=all | 142.250.74.74 | 200 OK | 0 B |
URL HTTP/2fonts.googleapis.com/css?family=Open+Sans:400,300,600,700&subset=all IP142.250.74.74:0
GET /css?family=Open+Sans:400,300,600,700&subset=all HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://test.igmg.site/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Sun, 05 Feb 2023 19:02:12 GMT
date: Sun, 05 Feb 2023 19:02:12 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| test.igmg.site/assets/js/jquery.validate.min.js | 51.195.6.66 | 200 OK | 0 B |
URL HTTP/2test.igmg.site/assets/js/jquery.validate.min.js IP51.195.6.66:0
Analyzer | Verdict | Alert | fortinet | Malware | |
GET /assets/js/jquery.validate.min.js HTTP/1.1
Host: test.igmg.site
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://test.igmg.site/
Cookie: PHPSESSID=e5j4b4veh9mf2il66bn6g8g25d
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 05 Feb 2023 19:02:12 GMT
content-type: application/javascript
last-modified: Mon, 04 Jul 2022 20:24:22 GMT
etag: W/"62c34c76-5262"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
|
|
| use.fontawesome.com/releases/v5.7.2/css/all.css | 172.64.132.15 | 200 OK | 0 B |
URL HTTP/2use.fontawesome.com/releases/v5.7.2/css/all.css IP172.64.132.15:0
GET /releases/v5.7.2/css/all.css HTTP/1.1
Host: use.fontawesome.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://test.igmg.site
Connection: keep-alive
Referer: https://test.igmg.site/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 05 Feb 2023 19:02:13 GMT
content-type: text/css
x-amz-id-2: YiZ4hAUj+v50H5Kkr1oLWvuQ1rgnSKo91t4kEl/ycswlN5a9zM8ziOgsTfxDt01sGU/PZgbH9uE=
x-amz-request-id: 2QFHQ8HA3BRA5E0N
access-control-allow-origin: *
access-control-allow-methods: GET
access-control-max-age: 3000
vary: Origin, Access-Control-Request-Headers, Access-Control-Request-Method, Accept-Encoding
last-modified: Wed, 30 Jun 2021 15:45:57 GMT
etag: W/"7b1d7f457d056ace7b230b587b9f3753"
cache-control: max-age=31556926
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=44EOnx%2BljYs0r1ikW6vTGYJIh7oGfQXNste0fRNLcMD%2Bbpswb%2BFB8Ew5wOOddxeHKw%2B%2BKD3bT%2B33KnwC20c6wFJMIIyWxYabjH9uzk%2BV65d5V7qNFIY4U9eTKJVbSRVdoT0Qi%2BMh"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 794de62a9a2e7735-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| test.igmg.site/assets/css/simple-line-icons.min.css?433024361 | 51.195.6.66 | 200 OK | 0 B |
URL HTTP/2test.igmg.site/assets/css/simple-line-icons.min.css?433024361 IP51.195.6.66:0
Analyzer | Verdict | Alert | fortinet | Malware | |
GET /assets/css/simple-line-icons.min.css?433024361 HTTP/1.1
Host: test.igmg.site
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://test.igmg.site/
Cookie: PHPSESSID=e5j4b4veh9mf2il66bn6g8g25d
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 05 Feb 2023 19:02:12 GMT
content-type: text/css
last-modified: Mon, 04 Jul 2022 20:24:22 GMT
etag: W/"62c34c76-256b"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
|
|
| test.igmg.site/assets/css/colorbox.css?857335175 | 51.195.6.66 | 200 OK | 0 B |
URL HTTP/2test.igmg.site/assets/css/colorbox.css?857335175 IP51.195.6.66:0
GET /assets/css/colorbox.css?857335175 HTTP/1.1
Host: test.igmg.site
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://test.igmg.site/
Cookie: PHPSESSID=e5j4b4veh9mf2il66bn6g8g25d
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 05 Feb 2023 19:02:12 GMT
content-type: text/css
last-modified: Mon, 04 Jul 2022 20:24:22 GMT
etag: W/"62c34c76-114f"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
|
|
| test.igmg.site/assets/colorbox/jquery.colorbox-min.js | 51.195.6.66 | 200 OK | 0 B |
URL HTTP/2test.igmg.site/assets/colorbox/jquery.colorbox-min.js IP51.195.6.66:0
Analyzer | Verdict | Alert | fortinet | Malware | |
GET /assets/colorbox/jquery.colorbox-min.js HTTP/1.1
Host: test.igmg.site
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://test.igmg.site/
Cookie: PHPSESSID=e5j4b4veh9mf2il66bn6g8g25d
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 05 Feb 2023 19:02:12 GMT
content-type: application/javascript
last-modified: Mon, 04 Jul 2022 20:24:22 GMT
etag: W/"62c34c76-2eb8"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
|
|
| test.igmg.site/assets/js/fullcalendar.min.js | 51.195.6.66 | 200 OK | 0 B |
URL HTTP/2test.igmg.site/assets/js/fullcalendar.min.js IP51.195.6.66:0
Analyzer | Verdict | Alert | fortinet | Malware | |
GET /assets/js/fullcalendar.min.js HTTP/1.1
Host: test.igmg.site
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://test.igmg.site/
Cookie: PHPSESSID=e5j4b4veh9mf2il66bn6g8g25d
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 05 Feb 2023 19:02:12 GMT
content-type: application/javascript
last-modified: Mon, 04 Jul 2022 20:24:22 GMT
etag: W/"62c34c76-180ab"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
|
|
| unpkg.com/xlsx/dist/xlsx.full.min.js | 104.16.126.175 | 302 Found | 0 B |
URL HTTP/2unpkg.com/xlsx/dist/xlsx.full.min.js IP104.16.126.175:0
GET /xlsx/dist/xlsx.full.min.js HTTP/1.1
Host: unpkg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://test.igmg.site/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
date: Sun, 05 Feb 2023 19:02:12 GMT
content-type: text/plain; charset=utf-8
access-control-allow-origin: *
cache-control: public, s-maxage=600, max-age=60
location: /xlsx@0.18.5/dist/xlsx.full.min.js
vary: Accept, Accept-Encoding
via: 1.1 fly.io
fly-request-id: 01GRHET617XB4YDMTHNKQZ3TWY-fra
cf-cache-status: HIT
age: 523
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 794de62a2cc2b518-OSL
X-Firefox-Spdy: h2
|
|
| unpkg.com/file-saver@1.3.3/FileSaver.js | 104.16.126.175 | 200 OK | 0 B |
URL HTTP/2unpkg.com/file-saver@1.3.3/FileSaver.js IP104.16.126.175:0
GET /file-saver@1.3.3/FileSaver.js HTTP/1.1
Host: unpkg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://test.igmg.site/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 05 Feb 2023 19:02:12 GMT
content-type: application/javascript; charset=utf-8
access-control-allow-origin: *
cache-control: public, max-age=31536000
last-modified: Wed, 05 Oct 2016 10:43:25 GMT
etag: W/"174d-ppV+tNTWNc2klmEzFicm/vyFuQM"
via: 1.1 fly.io
fly-request-id: 01GRESF3GJSWQ6GSJVASDF4QPP-fra
cf-cache-status: HIT
age: 90015
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 794de62a3cdcb518-OSL
content-encoding: br
X-Firefox-Spdy: h2
|
|
| test.igmg.site/assets/css/bootstrap-switch.min.css?600802094 | 51.195.6.66 | 200 OK | 0 B |
URL HTTP/2test.igmg.site/assets/css/bootstrap-switch.min.css?600802094 IP51.195.6.66:0
GET /assets/css/bootstrap-switch.min.css?600802094 HTTP/1.1
Host: test.igmg.site
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://test.igmg.site/
Cookie: PHPSESSID=e5j4b4veh9mf2il66bn6g8g25d
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 05 Feb 2023 19:02:12 GMT
content-type: text/css
last-modified: Mon, 04 Jul 2022 20:24:22 GMT
etag: W/"62c34c76-1939"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
|
|
| test.igmg.site/assets/js/morris.min.js | 51.195.6.66 | 200 OK | 0 B |
URL HTTP/2test.igmg.site/assets/js/morris.min.js IP51.195.6.66:0
Analyzer | Verdict | Alert | fortinet | Malware | |
GET /assets/js/morris.min.js HTTP/1.1
Host: test.igmg.site
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://test.igmg.site/
Cookie: PHPSESSID=e5j4b4veh9mf2il66bn6g8g25d
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 05 Feb 2023 19:02:12 GMT
content-type: application/javascript
last-modified: Mon, 04 Jul 2022 20:24:22 GMT
etag: W/"62c34c76-8b44"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
|
|
| test.igmg.site/assets/js/select2.full.min.js | 51.195.6.66 | 200 OK | 0 B |
URL HTTP/2test.igmg.site/assets/js/select2.full.min.js IP51.195.6.66:0
Analyzer | Verdict | Alert | fortinet | Malware | |
GET /assets/js/select2.full.min.js HTTP/1.1
Host: test.igmg.site
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://test.igmg.site/
Cookie: PHPSESSID=e5j4b4veh9mf2il66bn6g8g25d
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 05 Feb 2023 19:02:12 GMT
content-type: application/javascript
last-modified: Mon, 04 Jul 2022 20:24:22 GMT
etag: W/"62c34c76-124fd"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
|
|
| test.igmg.site/assets/js/quick-nav.min.js | 51.195.6.66 | 200 OK | 0 B |
URL HTTP/2test.igmg.site/assets/js/quick-nav.min.js IP51.195.6.66:0
Analyzer | Verdict | Alert | fortinet | Malware | |
GET /assets/js/quick-nav.min.js HTTP/1.1
Host: test.igmg.site
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://test.igmg.site/
Cookie: PHPSESSID=e5j4b4veh9mf2il66bn6g8g25d
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 05 Feb 2023 19:02:12 GMT
content-type: application/javascript
x-accel-version: 0.01
last-modified: Mon, 04 Jul 2022 20:24:22 GMT
etag: W/"19f-5e300857ce65e"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
|
|
| test.igmg.site/assets/js/login.min.js | 51.195.6.66 | 200 OK | 0 B |
URL HTTP/2test.igmg.site/assets/js/login.min.js IP51.195.6.66:0
Analyzer | Verdict | Alert | fortinet | Malware | |
GET /assets/js/login.min.js HTTP/1.1
Host: test.igmg.site
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://test.igmg.site/
Cookie: PHPSESSID=e5j4b4veh9mf2il66bn6g8g25d
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 05 Feb 2023 19:02:12 GMT
content-type: application/javascript
last-modified: Mon, 04 Jul 2022 20:24:22 GMT
etag: W/"62c34c76-d1c"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
|
|
| test.igmg.site/assets/css/login.min.css?1320409651 | 51.195.6.66 | 200 OK | 0 B |
URL HTTP/2test.igmg.site/assets/css/login.min.css?1320409651 IP51.195.6.66:0
Analyzer | Verdict | Alert | fortinet | Malware | |
GET /assets/css/login.min.css?1320409651 HTTP/1.1
Host: test.igmg.site
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://test.igmg.site/
Cookie: PHPSESSID=e5j4b4veh9mf2il66bn6g8g25d
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 05 Feb 2023 19:02:12 GMT
content-type: text/css
last-modified: Mon, 04 Jul 2022 20:24:22 GMT
etag: W/"62c34c76-e55"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
|
|
| test.igmg.site/assets/js/jquery.blockui.min.js | 51.195.6.66 | 200 OK | 0 B |
URL HTTP/2test.igmg.site/assets/js/jquery.blockui.min.js IP51.195.6.66:0
Analyzer | Verdict | Alert | fortinet | Malware | |
GET /assets/js/jquery.blockui.min.js HTTP/1.1
Host: test.igmg.site
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://test.igmg.site/
Cookie: PHPSESSID=e5j4b4veh9mf2il66bn6g8g25d
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 05 Feb 2023 19:02:12 GMT
content-type: application/javascript
last-modified: Mon, 04 Jul 2022 20:24:22 GMT
etag: W/"62c34c76-2554"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
|
|
| test.igmg.site/assets/js/jquery.slimscroll.min.js | 51.195.6.66 | 200 OK | 0 B |
URL HTTP/2test.igmg.site/assets/js/jquery.slimscroll.min.js IP51.195.6.66:0
Analyzer | Verdict | Alert | fortinet | Malware | |
GET /assets/js/jquery.slimscroll.min.js HTTP/1.1
Host: test.igmg.site
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://test.igmg.site/
Cookie: PHPSESSID=e5j4b4veh9mf2il66bn6g8g25d
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 05 Feb 2023 19:02:12 GMT
content-type: application/javascript
last-modified: Mon, 04 Jul 2022 20:24:22 GMT
etag: W/"62c34c76-1437"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
|
|
| test.igmg.site/assets/js/jquery.vmap.germany.js | 51.195.6.66 | 200 OK | 0 B |
URL HTTP/2test.igmg.site/assets/js/jquery.vmap.germany.js IP51.195.6.66:0
Analyzer | Verdict | Alert | fortinet | Malware | |
GET /assets/js/jquery.vmap.germany.js HTTP/1.1
Host: test.igmg.site
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://test.igmg.site/
Cookie: PHPSESSID=e5j4b4veh9mf2il66bn6g8g25d
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 05 Feb 2023 19:02:12 GMT
content-type: application/javascript
last-modified: Mon, 04 Jul 2022 20:24:22 GMT
etag: W/"62c34c76-d893"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
|
|
| test.igmg.site/assets/js/jquery.vmap.js | 51.195.6.66 | 200 OK | 0 B |
URL HTTP/2test.igmg.site/assets/js/jquery.vmap.js IP51.195.6.66:0
Analyzer | Verdict | Alert | fortinet | Malware | |
GET /assets/js/jquery.vmap.js HTTP/1.1
Host: test.igmg.site
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://test.igmg.site/
Cookie: PHPSESSID=e5j4b4veh9mf2il66bn6g8g25d
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 05 Feb 2023 19:02:12 GMT
content-type: application/javascript
last-modified: Mon, 04 Jul 2022 20:24:22 GMT
etag: W/"62c34c76-6ba2"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
|
|
| test.igmg.site/assets/js/additional-methods.min.js | 51.195.6.66 | 200 OK | 0 B |
URL HTTP/2test.igmg.site/assets/js/additional-methods.min.js IP51.195.6.66:0
Analyzer | Verdict | Alert | fortinet | Malware | |
GET /assets/js/additional-methods.min.js HTTP/1.1
Host: test.igmg.site
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://test.igmg.site/
Cookie: PHPSESSID=e5j4b4veh9mf2il66bn6g8g25d
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 05 Feb 2023 19:02:12 GMT
content-type: application/javascript
last-modified: Mon, 04 Jul 2022 20:24:22 GMT
etag: W/"62c34c76-433a"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
|
|
| test.igmg.site/assets/js/layout.min.js | 51.195.6.66 | 200 OK | 0 B |
URL HTTP/2test.igmg.site/assets/js/layout.min.js IP51.195.6.66:0
Analyzer | Verdict | Alert | fortinet | Malware | |
GET /assets/js/layout.min.js HTTP/1.1
Host: test.igmg.site
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://test.igmg.site/
Cookie: PHPSESSID=e5j4b4veh9mf2il66bn6g8g25d
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 05 Feb 2023 19:02:12 GMT
content-type: application/javascript
last-modified: Mon, 04 Jul 2022 20:24:22 GMT
etag: W/"62c34c76-11c0"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
|
|
| test.igmg.site/assets/tinymce/tinymce.min.js | 51.195.6.66 | 200 OK | 0 B |
URL HTTP/2test.igmg.site/assets/tinymce/tinymce.min.js IP51.195.6.66:0
Analyzer | Verdict | Alert | fortinet | Malware | |
GET /assets/tinymce/tinymce.min.js HTTP/1.1
Host: test.igmg.site
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://test.igmg.site/
Cookie: PHPSESSID=e5j4b4veh9mf2il66bn6g8g25d
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 05 Feb 2023 19:02:12 GMT
content-type: application/javascript
last-modified: Mon, 04 Jul 2022 20:24:22 GMT
etag: W/"62c34c76-72a93"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
|
|
| test.igmg.site/assets/css/daterangepicker.min.css?635441374 | 51.195.6.66 | 200 OK | 0 B |
URL HTTP/2test.igmg.site/assets/css/daterangepicker.min.css?635441374 IP51.195.6.66:0
Analyzer | Verdict | Alert | fortinet | Malware | |
GET /assets/css/daterangepicker.min.css?635441374 HTTP/1.1
Host: test.igmg.site
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://test.igmg.site/
Cookie: PHPSESSID=e5j4b4veh9mf2il66bn6g8g25d
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 05 Feb 2023 19:02:12 GMT
content-type: text/css
last-modified: Mon, 04 Jul 2022 20:24:22 GMT
etag: W/"62c34c76-15ea"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
|
|
| test.igmg.site/assets/js/popper.min.js | 51.195.6.66 | 200 OK | 0 B |
URL HTTP/2test.igmg.site/assets/js/popper.min.js IP51.195.6.66:0
Analyzer | Verdict | Alert | fortinet | Malware | |
GET /assets/js/popper.min.js HTTP/1.1
Host: test.igmg.site
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://test.igmg.site/
Cookie: PHPSESSID=e5j4b4veh9mf2il66bn6g8g25d
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 05 Feb 2023 19:02:12 GMT
content-type: application/javascript
last-modified: Mon, 04 Jul 2022 20:24:22 GMT
etag: W/"62c34c76-52ce"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
|
|
| test.igmg.site/assets/js/bootstrap.min.js | 51.195.6.66 | 200 OK | 0 B |
URL HTTP/2test.igmg.site/assets/js/bootstrap.min.js IP51.195.6.66:0
Analyzer | Verdict | Alert | fortinet | Malware | |
GET /assets/js/bootstrap.min.js HTTP/1.1
Host: test.igmg.site
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://test.igmg.site/
Cookie: PHPSESSID=e5j4b4veh9mf2il66bn6g8g25d
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 05 Feb 2023 19:02:12 GMT
content-type: application/javascript
last-modified: Mon, 04 Jul 2022 20:24:22 GMT
etag: W/"62c34c76-ea47"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
|
|
| test.igmg.site/assets/js/jquery.waypoints.min.js | 51.195.6.66 | 200 OK | 0 B |
URL HTTP/2test.igmg.site/assets/js/jquery.waypoints.min.js IP51.195.6.66:0
Analyzer | Verdict | Alert | fortinet | Malware | |
GET /assets/js/jquery.waypoints.min.js HTTP/1.1
Host: test.igmg.site
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://test.igmg.site/
Cookie: PHPSESSID=e5j4b4veh9mf2il66bn6g8g25d
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 05 Feb 2023 19:02:12 GMT
content-type: application/javascript
last-modified: Mon, 04 Jul 2022 20:24:22 GMT
etag: W/"62c34c76-1f6c"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
|
|
| test.igmg.site/assets/js/jquery.vmap.usa.js | 51.195.6.66 | 200 OK | 0 B |
URL HTTP/2test.igmg.site/assets/js/jquery.vmap.usa.js IP51.195.6.66:0
Analyzer | Verdict | Alert | fortinet | Malware | |
GET /assets/js/jquery.vmap.usa.js HTTP/1.1
Host: test.igmg.site
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://test.igmg.site/
Cookie: PHPSESSID=e5j4b4veh9mf2il66bn6g8g25d
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 05 Feb 2023 19:02:12 GMT
content-type: application/javascript
last-modified: Mon, 04 Jul 2022 20:24:22 GMT
etag: W/"62c34c76-ba04"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
|
|
| test.igmg.site/assets/js/dashboard.min.js | 51.195.6.66 | 200 OK | 0 B |
URL HTTP/2test.igmg.site/assets/js/dashboard.min.js IP51.195.6.66:0
Analyzer | Verdict | Alert | fortinet | Malware | |
GET /assets/js/dashboard.min.js HTTP/1.1
Host: test.igmg.site
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://test.igmg.site/
Cookie: PHPSESSID=e5j4b4veh9mf2il66bn6g8g25d
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 05 Feb 2023 19:02:12 GMT
content-type: application/javascript
last-modified: Mon, 04 Jul 2022 20:24:22 GMT
etag: W/"62c34c76-530d"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
|
|
| test.igmg.site/assets/css/components.min.css?2080392403 | 51.195.6.66 | 200 OK | 0 B |
URL HTTP/2test.igmg.site/assets/css/components.min.css?2080392403 IP51.195.6.66:0
GET /assets/css/components.min.css?2080392403 HTTP/1.1
Host: test.igmg.site
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://test.igmg.site/
Cookie: PHPSESSID=e5j4b4veh9mf2il66bn6g8g25d
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 05 Feb 2023 19:02:12 GMT
content-type: text/css
last-modified: Mon, 04 Jul 2022 20:24:22 GMT
etag: W/"62c34c76-a0436"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
|
|
| test.igmg.site/assets/css/dataTables.min.css?2010636982 | 51.195.6.66 | 200 OK | 0 B |
URL HTTP/2test.igmg.site/assets/css/dataTables.min.css?2010636982 IP51.195.6.66:0
GET /assets/css/dataTables.min.css?2010636982 HTTP/1.1
Host: test.igmg.site
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://test.igmg.site/
Cookie: PHPSESSID=e5j4b4veh9mf2il66bn6g8g25d
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 05 Feb 2023 19:02:12 GMT
content-type: text/css
last-modified: Mon, 04 Jul 2022 20:24:22 GMT
etag: W/"62c34c76-342b"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
|
|
| test.igmg.site/assets/js/jquery-ui.min.js | 51.195.6.66 | 200 OK | 0 B |
URL HTTP/2test.igmg.site/assets/js/jquery-ui.min.js IP51.195.6.66:0
Analyzer | Verdict | Alert | fortinet | Malware | |
GET /assets/js/jquery-ui.min.js HTTP/1.1
Host: test.igmg.site
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://test.igmg.site/
Cookie: PHPSESSID=e5j4b4veh9mf2il66bn6g8g25d
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 05 Feb 2023 19:02:12 GMT
content-type: application/javascript
last-modified: Mon, 04 Jul 2022 20:24:22 GMT
etag: W/"62c34c76-3dee5"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
|
|
| test.igmg.site/assets/select2/tr.js | 51.195.6.66 | 200 OK | 0 B |
URL HTTP/2test.igmg.site/assets/select2/tr.js IP51.195.6.66:0
Analyzer | Verdict | Alert | fortinet | Malware | |
GET /assets/select2/tr.js HTTP/1.1
Host: test.igmg.site
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://test.igmg.site/
Cookie: PHPSESSID=e5j4b4veh9mf2il66bn6g8g25d
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 05 Feb 2023 19:02:12 GMT
content-type: application/javascript
x-accel-version: 0.01
last-modified: Mon, 04 Jul 2022 20:24:22 GMT
etag: W/"305-5e300857cee2e"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
|
|
| test.igmg.site/assets/js/jquery.easypiechart.min.js | 51.195.6.66 | 200 OK | 0 B |
URL HTTP/2test.igmg.site/assets/js/jquery.easypiechart.min.js IP51.195.6.66:0
Analyzer | Verdict | Alert | fortinet | Malware | |
GET /assets/js/jquery.easypiechart.min.js HTTP/1.1
Host: test.igmg.site
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://test.igmg.site/
Cookie: PHPSESSID=e5j4b4veh9mf2il66bn6g8g25d
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 05 Feb 2023 19:02:12 GMT
content-type: application/javascript
last-modified: Mon, 04 Jul 2022 20:24:22 GMT
etag: W/"62c34c76-f4e"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
|
|
| test.igmg.site/assets/css/default.min.css?1912238996 | 51.195.6.66 | 200 OK | 0 B |
URL HTTP/2test.igmg.site/assets/css/default.min.css?1912238996 IP51.195.6.66:0
GET /assets/css/default.min.css?1912238996 HTTP/1.1
Host: test.igmg.site
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://test.igmg.site/
Cookie: PHPSESSID=e5j4b4veh9mf2il66bn6g8g25d
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 05 Feb 2023 19:02:12 GMT
content-type: text/css
last-modified: Mon, 04 Jul 2022 20:24:22 GMT
etag: W/"62c34c76-5a7f"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
|
|
| test.igmg.site/assets/amcharts/serial.js | 51.195.6.66 | 200 OK | 0 B |
URL HTTP/2test.igmg.site/assets/amcharts/serial.js IP51.195.6.66:0
Analyzer | Verdict | Alert | fortinet | Malware | |
GET /assets/amcharts/serial.js HTTP/1.1
Host: test.igmg.site
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://test.igmg.site/
Cookie: PHPSESSID=e5j4b4veh9mf2il66bn6g8g25d
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 05 Feb 2023 19:02:12 GMT
content-type: application/javascript
last-modified: Mon, 04 Jul 2022 20:24:22 GMT
etag: W/"62c34c76-c01f"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
|
|
| test.igmg.site/assets/js/ekurs.js?411195249 | 51.195.6.66 | 200 OK | 0 B |
URL HTTP/2test.igmg.site/assets/js/ekurs.js?411195249 IP51.195.6.66:0
Analyzer | Verdict | Alert | fortinet | Malware | |
GET /assets/js/ekurs.js?411195249 HTTP/1.1
Host: test.igmg.site
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://test.igmg.site/
Cookie: PHPSESSID=e5j4b4veh9mf2il66bn6g8g25d
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 05 Feb 2023 19:02:12 GMT
content-type: application/javascript
last-modified: Tue, 29 Nov 2022 00:24:27 GMT
etag: W/"6385513b-63d9"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
|
|
| test.igmg.site/assets/amcharts/export.min.js | 51.195.6.66 | 200 OK | 0 B |
URL HTTP/2test.igmg.site/assets/amcharts/export.min.js IP51.195.6.66:0
Analyzer | Verdict | Alert | fortinet | Malware | |
GET /assets/amcharts/export.min.js HTTP/1.1
Host: test.igmg.site
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://test.igmg.site/
Cookie: PHPSESSID=e5j4b4veh9mf2il66bn6g8g25d
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 05 Feb 2023 19:02:12 GMT
content-type: application/javascript
last-modified: Mon, 04 Jul 2022 20:24:22 GMT
etag: W/"62c34c76-f3b9"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
|
|
| test.igmg.site/assets/amcharts/dataloader.min.js | 51.195.6.66 | 200 OK | 0 B |
URL HTTP/2test.igmg.site/assets/amcharts/dataloader.min.js IP51.195.6.66:0
Analyzer | Verdict | Alert | fortinet | Malware | |
GET /assets/amcharts/dataloader.min.js HTTP/1.1
Host: test.igmg.site
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://test.igmg.site/
Cookie: PHPSESSID=e5j4b4veh9mf2il66bn6g8g25d
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 05 Feb 2023 19:02:12 GMT
content-type: application/javascript
last-modified: Mon, 04 Jul 2022 20:24:22 GMT
etag: W/"62c34c76-1a8b"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
|
|
| test.igmg.site/assets/js/jquery.counterup.min.js | 51.195.6.66 | 200 OK | 0 B |
URL HTTP/2test.igmg.site/assets/js/jquery.counterup.min.js IP51.195.6.66:0
Analyzer | Verdict | Alert | fortinet | Malware | |
GET /assets/js/jquery.counterup.min.js HTTP/1.1
Host: test.igmg.site
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://test.igmg.site/
Cookie: PHPSESSID=e5j4b4veh9mf2il66bn6g8g25d
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 05 Feb 2023 19:02:12 GMT
content-type: application/javascript
last-modified: Mon, 04 Jul 2022 20:24:22 GMT
etag: W/"62c34c76-42d"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
|
|
| test.igmg.site/assets/js/quick-sidebar.min.js | 51.195.6.66 | 200 OK | 0 B |
URL HTTP/2test.igmg.site/assets/js/quick-sidebar.min.js IP51.195.6.66:0
Analyzer | Verdict | Alert | fortinet | Malware | |
GET /assets/js/quick-sidebar.min.js HTTP/1.1
Host: test.igmg.site
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://test.igmg.site/
Cookie: PHPSESSID=e5j4b4veh9mf2il66bn6g8g25d
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 05 Feb 2023 19:02:12 GMT
content-type: application/javascript
last-modified: Mon, 04 Jul 2022 20:24:22 GMT
etag: W/"62c34c76-ae3"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
|
|
| test.igmg.site/ | 51.195.6.66 | 200 OK | 0 B |
IP51.195.6.66:0
Analyzer | Verdict | Alert | fortinet | Malware | |
GET / HTTP/1.1
Host: test.igmg.site
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 200 OK
server: nginx
date: Sun, 05 Feb 2023 19:02:12 GMT
content-type: text/html; charset=UTF-8
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: no-store, no-cache, must-revalidate
pragma: no-cache
set-cookie: PHPSESSID=e5j4b4veh9mf2il66bn6g8g25d; expires=Tue, 16-May-2023 19:02:12 GMT; Max-Age=8640000; path=/
x-powered-by: PHP/7.4.33, PleskLin
content-encoding: br
X-Firefox-Spdy: h2
|
|
| test.igmg.site/assets/css/plugins.min.css?220703010 | 51.195.6.66 | 200 OK | 0 B |
URL HTTP/2test.igmg.site/assets/css/plugins.min.css?220703010 IP51.195.6.66:0
GET /assets/css/plugins.min.css?220703010 HTTP/1.1
Host: test.igmg.site
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://test.igmg.site/
Cookie: PHPSESSID=e5j4b4veh9mf2il66bn6g8g25d
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 05 Feb 2023 19:02:12 GMT
content-type: text/css
last-modified: Mon, 04 Jul 2022 20:24:22 GMT
etag: W/"62c34c76-a4bb"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
|
|
| test.igmg.site/?act=js_translates | 51.195.6.66 | 200 OK | 0 B |
URL HTTP/2test.igmg.site/?act=js_translates IP51.195.6.66:0
Analyzer | Verdict | Alert | fortinet | Malware | |
GET /?act=js_translates HTTP/1.1
Host: test.igmg.site
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://test.igmg.site/
Cookie: PHPSESSID=e5j4b4veh9mf2il66bn6g8g25d
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 05 Feb 2023 19:02:12 GMT
content-type: text/html; charset=UTF-8
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: no-store, no-cache, must-revalidate
pragma: no-cache
x-powered-by: PHP/7.4.33, PleskLin
content-encoding: br
X-Firefox-Spdy: h2
|
|
| test.igmg.site/assets/select2/select2.min.js | 51.195.6.66 | 200 OK | 0 B |
URL HTTP/2test.igmg.site/assets/select2/select2.min.js IP51.195.6.66:0
Analyzer | Verdict | Alert | fortinet | Malware | |
GET /assets/select2/select2.min.js HTTP/1.1
Host: test.igmg.site
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://test.igmg.site/
Cookie: PHPSESSID=e5j4b4veh9mf2il66bn6g8g25d
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 05 Feb 2023 19:02:12 GMT
content-type: application/javascript
last-modified: Mon, 04 Jul 2022 20:24:22 GMT
etag: W/"62c34c76-1042e"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
|
|
| test.igmg.site/assets/js/jquery.number.min.js | 51.195.6.66 | 200 OK | 0 B |
URL HTTP/2test.igmg.site/assets/js/jquery.number.min.js IP51.195.6.66:0
Analyzer | Verdict | Alert | fortinet | Malware | |
GET /assets/js/jquery.number.min.js HTTP/1.1
Host: test.igmg.site
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://test.igmg.site/
Cookie: PHPSESSID=e5j4b4veh9mf2il66bn6g8g25d
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 05 Feb 2023 19:02:12 GMT
content-type: application/javascript
last-modified: Mon, 04 Jul 2022 20:24:22 GMT
etag: W/"62c34c76-185f"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
|
|
| unpkg.com/xlsx@0.18.5/dist/xlsx.full.min.js | 104.16.126.175 | 200 OK | 0 B |
URL HTTP/2unpkg.com/xlsx@0.18.5/dist/xlsx.full.min.js IP104.16.126.175:0
GET /xlsx@0.18.5/dist/xlsx.full.min.js HTTP/1.1
Host: unpkg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://test.igmg.site/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 05 Feb 2023 19:02:12 GMT
content-type: application/javascript; charset=utf-8
access-control-allow-origin: *
cache-control: public, max-age=31536000
last-modified: Sat, 26 Oct 1985 08:15:00 GMT
etag: W/"d743f-f3SfgaRaUyKRNsbB8dUNyxbdwjM"
via: 1.1 fly.io
fly-request-id: 01G754ETJDY0FY3YHJ5RCQMFCX-fra
cf-cache-status: HIT
age: 18667641
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 794de62a4d03b518-OSL
content-encoding: br
X-Firefox-Spdy: h2
|
|
| test.igmg.site/assets/fullcalendar/lib/locales-all.min.js | 51.195.6.66 | 200 OK | 0 B |
URL HTTP/2test.igmg.site/assets/fullcalendar/lib/locales-all.min.js IP51.195.6.66:0
Analyzer | Verdict | Alert | fortinet | Malware | |
GET /assets/fullcalendar/lib/locales-all.min.js HTTP/1.1
Host: test.igmg.site
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://test.igmg.site/
Cookie: PHPSESSID=e5j4b4veh9mf2il66bn6g8g25d
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 05 Feb 2023 19:02:12 GMT
content-type: application/javascript
last-modified: Mon, 04 Jul 2022 20:24:22 GMT
etag: W/"62c34c76-47e2"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
|
|
| test.igmg.site/assets/js/jquery.flot.categories.min.js | 51.195.6.66 | 200 OK | 0 B |
URL HTTP/2test.igmg.site/assets/js/jquery.flot.categories.min.js IP51.195.6.66:0
Analyzer | Verdict | Alert | fortinet | Malware | |
GET /assets/js/jquery.flot.categories.min.js HTTP/1.1
Host: test.igmg.site
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://test.igmg.site/
Cookie: PHPSESSID=e5j4b4veh9mf2il66bn6g8g25d
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 05 Feb 2023 19:02:12 GMT
content-type: application/javascript
last-modified: Mon, 04 Jul 2022 20:24:22 GMT
etag: W/"62c34c76-a26"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
|
|
| test.igmg.site/assets/js/jquery.vmap.world.js | 51.195.6.66 | 200 OK | 0 B |
URL HTTP/2test.igmg.site/assets/js/jquery.vmap.world.js IP51.195.6.66:0
Analyzer | Verdict | Alert | fortinet | Malware | |
GET /assets/js/jquery.vmap.world.js HTTP/1.1
Host: test.igmg.site
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://test.igmg.site/
Cookie: PHPSESSID=e5j4b4veh9mf2il66bn6g8g25d
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 05 Feb 2023 19:02:12 GMT
content-type: application/javascript
last-modified: Mon, 04 Jul 2022 20:24:22 GMT
etag: W/"62c34c76-ecb8"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
|
|
| test.igmg.site/assets/js/jquery.dataTables.min.js | 51.195.6.66 | 200 OK | 0 B |
URL HTTP/2test.igmg.site/assets/js/jquery.dataTables.min.js IP51.195.6.66:0
Analyzer | Verdict | Alert | fortinet | Malware | |
GET /assets/js/jquery.dataTables.min.js HTTP/1.1
Host: test.igmg.site
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://test.igmg.site/
Cookie: PHPSESSID=e5j4b4veh9mf2il66bn6g8g25d
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 05 Feb 2023 19:02:12 GMT
content-type: application/javascript
last-modified: Mon, 04 Jul 2022 20:24:22 GMT
etag: W/"62c34c76-13ff2"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
|
|
| unpkg.com/blob.js@1.0.1/Blob.js | 104.16.126.175 | 200 OK | 0 B |
URL HTTP/2unpkg.com/blob.js@1.0.1/Blob.js IP104.16.126.175:0
GET /blob.js@1.0.1/Blob.js HTTP/1.1
Host: unpkg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://test.igmg.site/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 05 Feb 2023 19:02:12 GMT
content-type: application/javascript; charset=utf-8
access-control-allow-origin: *
cache-control: public, max-age=31536000
last-modified: Mon, 14 Nov 2016 10:24:13 GMT
etag: W/"1800-jszKs+14oLm7MdJGCNbZkvu8ALE"
via: 1.1 fly.io
fly-request-id: 01F52A04572E1EZHSX8W8CQKRK
cf-cache-status: HIT
age: 23733420
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 794de62a3ce1b518-OSL
content-encoding: br
X-Firefox-Spdy: h2
|
|
| test.igmg.site/assets/js/daterangepicker.min.js | 51.195.6.66 | 200 OK | 0 B |
URL HTTP/2test.igmg.site/assets/js/daterangepicker.min.js IP51.195.6.66:0
Analyzer | Verdict | Alert | fortinet | Malware | |
GET /assets/js/daterangepicker.min.js HTTP/1.1
Host: test.igmg.site
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://test.igmg.site/
Cookie: PHPSESSID=e5j4b4veh9mf2il66bn6g8g25d
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 05 Feb 2023 19:02:12 GMT
content-type: application/javascript
last-modified: Mon, 04 Jul 2022 20:24:22 GMT
etag: W/"62c34c76-7b6a"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
|
|
| test.igmg.site/assets/js/jquery.vmap.europe.js | 51.195.6.66 | 200 OK | 0 B |
URL HTTP/2test.igmg.site/assets/js/jquery.vmap.europe.js IP51.195.6.66:0
Analyzer | Verdict | Alert | fortinet | Malware | |
GET /assets/js/jquery.vmap.europe.js HTTP/1.1
Host: test.igmg.site
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://test.igmg.site/
Cookie: PHPSESSID=e5j4b4veh9mf2il66bn6g8g25d
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 05 Feb 2023 19:02:12 GMT
content-type: application/javascript
last-modified: Mon, 04 Jul 2022 20:24:22 GMT
etag: W/"62c34c76-17d75"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
|
|
| test.igmg.site/assets/js/bootstrap-switch.min.js | 51.195.6.66 | 200 OK | 0 B |
URL HTTP/2test.igmg.site/assets/js/bootstrap-switch.min.js IP51.195.6.66:0
Analyzer | Verdict | Alert | fortinet | Malware | |
GET /assets/js/bootstrap-switch.min.js HTTP/1.1
Host: test.igmg.site
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://test.igmg.site/
Cookie: PHPSESSID=e5j4b4veh9mf2il66bn6g8g25d
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 05 Feb 2023 19:02:12 GMT
content-type: application/javascript
last-modified: Mon, 04 Jul 2022 20:24:22 GMT
etag: W/"62c34c76-3a37"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
|
|
| test.igmg.site/assets/js/raphael-min.js | 51.195.6.66 | 200 OK | 0 B |
URL HTTP/2test.igmg.site/assets/js/raphael-min.js IP51.195.6.66:0
Analyzer | Verdict | Alert | fortinet | Malware | |
GET /assets/js/raphael-min.js HTTP/1.1
Host: test.igmg.site
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://test.igmg.site/
Cookie: PHPSESSID=e5j4b4veh9mf2il66bn6g8g25d
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 05 Feb 2023 19:02:12 GMT
content-type: application/javascript
last-modified: Mon, 04 Jul 2022 20:24:22 GMT
etag: W/"62c34c76-16555"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
|
|
| test.igmg.site/assets/js/jquery.flot.min.js | 51.195.6.66 | 200 OK | 0 B |
URL HTTP/2test.igmg.site/assets/js/jquery.flot.min.js IP51.195.6.66:0
Analyzer | Verdict | Alert | fortinet | Malware | |
GET /assets/js/jquery.flot.min.js HTTP/1.1
Host: test.igmg.site
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://test.igmg.site/
Cookie: PHPSESSID=e5j4b4veh9mf2il66bn6g8g25d
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 05 Feb 2023 19:02:12 GMT
content-type: application/javascript
last-modified: Mon, 04 Jul 2022 20:24:22 GMT
etag: W/"62c34c76-cee6"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
|
|
| test.igmg.site/assets/fullcalendar/lib/main.min.css?2073970090 | 51.195.6.66 | 200 OK | 0 B |
URL HTTP/2test.igmg.site/assets/fullcalendar/lib/main.min.css?2073970090 IP51.195.6.66:0
Analyzer | Verdict | Alert | fortinet | Malware | |
GET /assets/fullcalendar/lib/main.min.css?2073970090 HTTP/1.1
Host: test.igmg.site
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://test.igmg.site/
Cookie: PHPSESSID=e5j4b4veh9mf2il66bn6g8g25d
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 05 Feb 2023 19:02:12 GMT
content-type: text/css
last-modified: Mon, 04 Jul 2022 20:24:22 GMT
etag: W/"62c34c76-616b"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
|
|
| test.igmg.site/assets/css/jqvmap.css?1074302293 | 51.195.6.66 | 200 OK | 0 B |
URL HTTP/2test.igmg.site/assets/css/jqvmap.css?1074302293 IP51.195.6.66:0
Analyzer | Verdict | Alert | fortinet | Malware | |
GET /assets/css/jqvmap.css?1074302293 HTTP/1.1
Host: test.igmg.site
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://test.igmg.site/
Cookie: PHPSESSID=e5j4b4veh9mf2il66bn6g8g25d
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 05 Feb 2023 19:02:12 GMT
content-type: text/css
x-accel-version: 0.01
last-modified: Mon, 04 Jul 2022 20:24:22 GMT
etag: W/"38b-5e300857c80ce"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
|
|
| unpkg.com/xlsx/dist/shim.min.js | 104.16.126.175 | 302 Found | 0 B |
URL HTTP/2unpkg.com/xlsx/dist/shim.min.js IP104.16.126.175:0
GET /xlsx/dist/shim.min.js HTTP/1.1
Host: unpkg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://test.igmg.site/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
date: Sun, 05 Feb 2023 19:02:12 GMT
content-type: text/plain; charset=utf-8
access-control-allow-origin: *
cache-control: public, s-maxage=600, max-age=60
location: /xlsx@0.18.5/dist/shim.min.js
vary: Accept, Accept-Encoding
via: 1.1 fly.io
fly-request-id: 01GRHEYZKMP1WZE62V1T8Q7T8P-fra
cf-cache-status: HIT
age: 366
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 794de62a3cdfb518-OSL
X-Firefox-Spdy: h2
|
|
| test.igmg.site/assets/amcharts/pie.js | 51.195.6.66 | 200 OK | 0 B |
URL HTTP/2test.igmg.site/assets/amcharts/pie.js IP51.195.6.66:0
Analyzer | Verdict | Alert | fortinet | Malware | |
GET /assets/amcharts/pie.js HTTP/1.1
Host: test.igmg.site
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://test.igmg.site/
Cookie: PHPSESSID=e5j4b4veh9mf2il66bn6g8g25d
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 05 Feb 2023 19:02:12 GMT
content-type: application/javascript
last-modified: Mon, 04 Jul 2022 20:24:22 GMT
etag: W/"62c34c76-394d"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
|
|
| test.igmg.site/assets/js/app.min.js | 51.195.6.66 | 200 OK | 0 B |
URL HTTP/2test.igmg.site/assets/js/app.min.js IP51.195.6.66:0
Analyzer | Verdict | Alert | fortinet | Malware | |
GET /assets/js/app.min.js HTTP/1.1
Host: test.igmg.site
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://test.igmg.site/
Cookie: PHPSESSID=e5j4b4veh9mf2il66bn6g8g25d
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 05 Feb 2023 19:02:12 GMT
content-type: application/javascript
last-modified: Mon, 04 Jul 2022 20:24:22 GMT
etag: W/"62c34c76-3c77"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
|
|
| test.igmg.site/assets/js/demo.min.js | 51.195.6.66 | 200 OK | 0 B |
URL HTTP/2test.igmg.site/assets/js/demo.min.js IP51.195.6.66:0
Analyzer | Verdict | Alert | fortinet | Malware | |
GET /assets/js/demo.min.js HTTP/1.1
Host: test.igmg.site
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://test.igmg.site/
Cookie: PHPSESSID=e5j4b4veh9mf2il66bn6g8g25d
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 05 Feb 2023 19:02:12 GMT
content-type: application/javascript
last-modified: Mon, 04 Jul 2022 20:24:22 GMT
etag: W/"62c34c76-10a6"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
|
|
| test.igmg.site/assets/css/ekurs.css?602324401 | 51.195.6.66 | 200 OK | 0 B |
URL HTTP/2test.igmg.site/assets/css/ekurs.css?602324401 IP51.195.6.66:0
GET /assets/css/ekurs.css?602324401 HTTP/1.1
Host: test.igmg.site
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://test.igmg.site/
Cookie: PHPSESSID=e5j4b4veh9mf2il66bn6g8g25d
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 05 Feb 2023 19:02:12 GMT
content-type: text/css
last-modified: Mon, 04 Jul 2022 20:24:22 GMT
etag: W/"62c34c76-62b5"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
|
|
| test.igmg.site/assets/amcharts/export.css?627803172 | 51.195.6.66 | 200 OK | 0 B |
URL HTTP/2test.igmg.site/assets/amcharts/export.css?627803172 IP51.195.6.66:0
GET /assets/amcharts/export.css?627803172 HTTP/1.1
Host: test.igmg.site
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://test.igmg.site/
Cookie: PHPSESSID=e5j4b4veh9mf2il66bn6g8g25d
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 05 Feb 2023 19:02:12 GMT
content-type: text/css
last-modified: Mon, 04 Jul 2022 20:24:22 GMT
etag: W/"62c34c76-8397"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
|
|
| test.igmg.site/assets/amcharts/amcharts.js | 51.195.6.66 | 200 OK | 0 B |
URL HTTP/2test.igmg.site/assets/amcharts/amcharts.js IP51.195.6.66:0
Analyzer | Verdict | Alert | fortinet | Malware | |
GET /assets/amcharts/amcharts.js HTTP/1.1
Host: test.igmg.site
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://test.igmg.site/
Cookie: PHPSESSID=e5j4b4veh9mf2il66bn6g8g25d
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 05 Feb 2023 19:02:12 GMT
content-type: application/javascript
last-modified: Mon, 04 Jul 2022 20:24:22 GMT
etag: W/"62c34c76-3314a"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
|
|
| test.igmg.site/assets/js/jquery.flot.resize.min.js | 51.195.6.66 | 200 OK | 0 B |
URL HTTP/2test.igmg.site/assets/js/jquery.flot.resize.min.js IP51.195.6.66:0
Analyzer | Verdict | Alert | fortinet | Malware | |
GET /assets/js/jquery.flot.resize.min.js HTTP/1.1
Host: test.igmg.site
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://test.igmg.site/
Cookie: PHPSESSID=e5j4b4veh9mf2il66bn6g8g25d
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 05 Feb 2023 19:02:12 GMT
content-type: application/javascript
last-modified: Mon, 04 Jul 2022 20:24:22 GMT
etag: W/"62c34c76-928"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
|
|