ifcgmsconsultinggroup.com/
161.97.187.97301 Moved Permanently 162 B URL HTTP/1.1 ifcgmsconsultinggroup.com/
IP 161.97.187.97:0
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 4f8e702cc244ec5d4de32740c0ecbd97
3adb1f02d5b6054de0046e367c1d687b6cdf7aff
9e17cb15dd75bbbd5dbb984eda674863c3b10ab72613cf8a39a00c3e11a8492a
Analyzer Verdict Alert fortinet Phishing
GET / HTTP/1.1
Host: ifcgmsconsultinggroup.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Server: nginx
Date: Sat, 10 Dec 2022 00:12:36 GMT
Content-Type: text/html
Content-Length: 162
Connection: keep-alive
Location: https://ifcgmsconsultinggroup.com/
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash f2acd891dc6eb1f09f57a2b086791781
1e2088306501a61edcca1ade62c4d54f23b3b083
51148fed95cc00d60dc3640350f135b1b2763ff0e3cfbffc40f0948317894be9
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "51148FED95CC00D60DC3640350F135B1B2763FF0E3CFBFFC40F0948317894BE9"
Last-Modified: Wed, 07 Dec 2022 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5051
Expires: Sat, 10 Dec 2022 01:36:48 GMT
Date: Sat, 10 Dec 2022 00:12:37 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 388f6fea5bafa378266622b72311a6ee
447f102dc12172ce1ba44c5e94e1d7bb49d43372
a597afb4d4f7f3c82f0f2857322226fc69dc92e099bfd0605f7a0cd562be9d21
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "A597AFB4D4F7F3C82F0F2857322226FC69DC92E099BFD0605F7A0CD562BE9D21"
Last-Modified: Wed, 07 Dec 2022 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6268
Expires: Sat, 10 Dec 2022 01:57:05 GMT
Date: Sat, 10 Dec 2022 00:12:37 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 4ee537977be9c03702f8ffe0025bf1fe
21637881c4aa34c4add703f8bff4eff573159f45
4819229fd8f502a0c68c80bd7409e104c1b4d1a98ca8a6cd9deba629b1511aea
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "4819229FD8F502A0C68C80BD7409E104C1B4D1A98CA8A6CD9DEBA629B1511AEA"
Last-Modified: Thu, 08 Dec 2022 23:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9497
Expires: Sat, 10 Dec 2022 02:50:54 GMT
Date: Sat, 10 Dec 2022 00:12:37 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
35.241.9.150200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 14cd9a0afb6ba9a763651d5112760d1e
75d7b104ab9ab11fbb73c3f348b43b0119b5adfa
4e32a117106be587ffcd63239c16a8117eb7840830d4c9decf6527761967532e
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Alert, Backoff, Content-Length, Content-Type, Retry-After
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Fri, 09 Dec 2022 23:33:15 GMT
content-type: application/json
age: 2362
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-01-19-10-06-33.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-01-19-10-06-33.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash 53341dea33f4f3d9b4966f80589f429a
20f7b07c686c986d2ed1e3e9ad1bb2aef8edaf0d
651683e52cdbc96b289f8f123155f0b96d9f67432689e89156fa56f5a346c6a0
GET /chains/remote-settings.content-signature.mozilla.org-2023-01-19-10-06-33.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: YIJ/WfsIV2QjQfSm6WFHKrJe5QXgGPhFgMOY8CM829JXRV+4YpWMaX4reUigFV3wBx7Tu5/FNik=
x-amz-request-id: YWY9M5MFP2C3PXBT
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Fri, 09 Dec 2022 23:48:34 GMT
age: 1443
last-modified: Wed, 30 Nov 2022 10:06:34 GMT
etag: "53341dea33f4f3d9b4966f80589f429a"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Sat, 10 Dec 2022 00:12:37 GMT
content-type: application/json
content-length: 12
access-control-expose-headers: content-type
access-control-allow-credentials: true
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.sectigo.com/
172.64.155.188200 OK 472 B IP 172.64.155.188:0
Hash 973db462692b6aefad5fae959e0855fd
6f5cf887f7aa9e5ed3bf46118c110f3260c34994
a460294122ab13bc0c7df5c22e792824bb8ff60c7bd7142c40ccffe43609bb79
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sat, 10 Dec 2022 00:12:37 GMT
Content-Type: application/ocsp-response
Content-Length: 472
Connection: keep-alive
Last-Modified: Tue, 06 Dec 2022 19:21:17 GMT
Expires: Tue, 13 Dec 2022 19:21:16 GMT
Etag: "6f5cf887f7aa9e5ed3bf46118c110f3260c34994"
Cache-Control: max-age=327518,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb6
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 7771c51cadd4b50c-OSL
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
35.241.9.150200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Cache-Control, Backoff, Content-Length, Pragma, Alert, Expires, Last-Modified, Retry-After, ETag, Content-Type
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Sat, 10 Dec 2022 00:07:55 GMT
age: 282
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash e6be4d2155028ffff5d01ab6e7edf6da
07172071b5cf43c4cd7d7930b4ad8518ec1e32e9
4d8a5fa2362fd0910babd6d128d850d4460829468eb23d34ee5ee6eaa42d5a38
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4211
Cache-Control: max-age=122669
Content-Type: application/ocsp-response
Date: Sat, 10 Dec 2022 00:12:37 GMT
Etag: "6392faaf-1d7"
Expires: Sun, 11 Dec 2022 10:17:06 GMT
Last-Modified: Fri, 09 Dec 2022 09:06:55 GMT
Server: ECS (ska/F716)
X-Cache: HIT
Content-Length: 471
push.services.mozilla.com/
35.166.172.24101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 35.166.172.24:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: 9xa0lkzxdzbwiyg1PnGUWQ==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: 6DSqy+B3WEV8Gq5tu2tA7ZeXEfQ=
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 48c90992f0837a58e0a36118a27dae6a
3d238fed35e6d247bddbba92864e6b92e6aed9b6
cacc53ed285e96dcd5ba7609823922a253bc0623999b8716f430632d2c0e7dac
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "CACC53ED285E96DCD5BA7609823922A253BC0623999B8716F430632D2C0E7DAC"
Last-Modified: Wed, 07 Dec 2022 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21260
Expires: Sat, 10 Dec 2022 06:06:59 GMT
Date: Sat, 10 Dec 2022 00:12:39 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 48c90992f0837a58e0a36118a27dae6a
3d238fed35e6d247bddbba92864e6b92e6aed9b6
cacc53ed285e96dcd5ba7609823922a253bc0623999b8716f430632d2c0e7dac
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "CACC53ED285E96DCD5BA7609823922A253BC0623999B8716F430632D2C0E7DAC"
Last-Modified: Wed, 07 Dec 2022 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21260
Expires: Sat, 10 Dec 2022 06:06:59 GMT
Date: Sat, 10 Dec 2022 00:12:39 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 48c90992f0837a58e0a36118a27dae6a
3d238fed35e6d247bddbba92864e6b92e6aed9b6
cacc53ed285e96dcd5ba7609823922a253bc0623999b8716f430632d2c0e7dac
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "CACC53ED285E96DCD5BA7609823922A253BC0623999B8716F430632D2C0E7DAC"
Last-Modified: Wed, 07 Dec 2022 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21260
Expires: Sat, 10 Dec 2022 06:06:59 GMT
Date: Sat, 10 Dec 2022 00:12:39 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F32378252-8233-4d6b-b3d2-720e3ac2d0bd.jpeg
34.120.237.76200 OK 4.0 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F32378252-8233-4d6b-b3d2-720e3ac2d0bd.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash a2b4c44cc196e1f4263a895ef54e6650
c5cea524045b3394c1dfe5e5fcac4637416f8587
e31f4b95811c01b2f2f181e11b7a8e1b4c57c3c7fc067c304e8dacc6fb176442
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F32378252-8233-4d6b-b3d2-720e3ac2d0bd.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 3963
x-amzn-requestid: f067a6cf-758c-4c35-be64-3970b690ea7c
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: c5e7VHdnoAMF0Tg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6393ab7b-485a18b738763b2029f6c653;Sampled=0
x-amzn-remapped-date: Fri, 09 Dec 2022 21:41:15 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: sNDbt-t6jZeVPGJ9M80vQ3HFMvmKPI_sPwdwHCf1L_ECXYtKUNrhGg==
via: 1.1 c34da255183aa208dd1c722ff211f9b2.cloudfront.net (CloudFront), 1.1 61bc723adb3b1884ed759711e84e13a8.cloudfront.net (CloudFront), 1.1 google
date: Fri, 09 Dec 2022 21:54:59 GMT
age: 8260
etag: "c5cea524045b3394c1dfe5e5fcac4637416f8587"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F29d00d08-ec53-4c7b-a2ef-5901b64cdefd.jpeg
34.120.237.76200 OK 7.6 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F29d00d08-ec53-4c7b-a2ef-5901b64cdefd.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 5de5d319f43d9c9c641419d96655541f
cde4c7fa0145d3645af17e34c83c63c08f76a076
fdb114eb142f035c7a54195d16af51b5b423642c312f4bccc0f407d8fcc245aa
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F29d00d08-ec53-4c7b-a2ef-5901b64cdefd.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7557
x-amzn-requestid: 400d1465-ecbf-4d95-8aa8-4dce5dca0716
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ctluwGo4oAMFhTg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-638ee991-6dba29ae7065d5347a1a420d;Sampled=0
x-amzn-remapped-date: Tue, 06 Dec 2022 07:04:49 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: Lazl-stakC-31gMuQ2WzH9uFkIb0g7HaaM3xkwSFdFJMWKTaKqrBEQ==
via: 1.1 41e349e25dc4bc856d0e5d2c162428a0.cloudfront.net (CloudFront), 1.1 591683988172c7980c4ebb318cbf18a8.cloudfront.net (CloudFront), 1.1 google
date: Fri, 09 Dec 2022 04:07:07 GMT
age: 72332
etag: "cde4c7fa0145d3645af17e34c83c63c08f76a076"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fbf8a350a-c007-4620-b1d6-db700eab84a1.jpeg
34.120.237.76200 OK 6.3 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fbf8a350a-c007-4620-b1d6-db700eab84a1.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 96546d2bb2ce3e7746fcd882a65abb43
b49a885ef2b73191abcbb6f56e839b94aaafd556
ad90c8ecbcee56417a3da824e5a2c2be811e687467f953f9d23a8e2456a2755a
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fbf8a350a-c007-4620-b1d6-db700eab84a1.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6342
x-amzn-requestid: a473f123-34cf-4c43-b01f-c9aec84df6eb
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: czEZHFeQIAMFp5w=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63911aa0-78b1466c6faa4d0c20dc61b0;Sampled=0
x-amzn-remapped-date: Wed, 07 Dec 2022 22:58:40 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: w0D5JLUwjeMjMjD7HCMS1LAzYQh8B2zynnZqCtsd1yrmcOcjQbWaHw==
via: 1.1 2dc111aa3ead15d061e41a423155a53a.cloudfront.net (CloudFront), 1.1 7e87179efaa9e3c316bd3d3a74cfded8.cloudfront.net (CloudFront), 1.1 google
date: Fri, 09 Dec 2022 21:55:31 GMT
age: 8228
etag: "b49a885ef2b73191abcbb6f56e839b94aaafd556"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff9f369c6-4ce5-4eaa-9070-5c8609b145d1.png
34.120.237.76200 OK 3.9 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff9f369c6-4ce5-4eaa-9070-5c8609b145d1.png
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 2f812f19fa34380de62bc57a879fa24f
102e8572c0ec9be444a976a6ac79e7d389651c46
07a0114317594dff40692d964fdeca4cf22e4324546866042c8712577346d107
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff9f369c6-4ce5-4eaa-9070-5c8609b145d1.png HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 3924
x-amzn-requestid: b211e655-f36c-44c1-b316-5bdeea6b0921
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: c5eMHG4ZoAMFSHQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6393aa4d-75cd56ea0479970e3be4275e;Sampled=0
x-amzn-remapped-date: Fri, 09 Dec 2022 21:36:13 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: DB4kdpnob3tyFg5JwkA3zxfZzZUpHhOir1ltQklWOR2YjAZRfg43MQ==
via: 1.1 41e349e25dc4bc856d0e5d2c162428a0.cloudfront.net (CloudFront), 1.1 1b74ccf4cb51eacf97a0e6d60ae46a3e.cloudfront.net (CloudFront), 1.1 google
date: Fri, 09 Dec 2022 21:45:27 GMT
age: 8832
etag: "102e8572c0ec9be444a976a6ac79e7d389651c46"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7c73a9d6-0f56-4366-b9bd-119b0034c1aa.jpeg
34.120.237.76200 OK 5.3 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7c73a9d6-0f56-4366-b9bd-119b0034c1aa.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 44ee520c9a084ee2a04638b6abbb2b0b
ed170b8b964db1163e02c21fe4e9dbfe58e9d42d
e4f33f6556c414b498f99d6b43c4d94fa15e9b235596647d4a8513c78c21e6eb
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7c73a9d6-0f56-4366-b9bd-119b0034c1aa.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5302
x-amzn-requestid: ababe39a-ea1a-4a20-9de4-ad71500d9c59
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: c5eMWE-eoAMFZJg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6393aa4e-19c2e2c1445527c13b4b66e0;Sampled=0
x-amzn-remapped-date: Fri, 09 Dec 2022 21:36:14 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: G0r_Ee6CpwUq2liNhnyGfUlqS8aW8IM-gAkk7X7k5e6aI2akS3N1Pg==
via: 1.1 6ba2a21321beeef65404429d0a4b6380.cloudfront.net (CloudFront), 1.1 57a21088b36c69a83578b5a5579df58e.cloudfront.net (CloudFront), 1.1 google
date: Fri, 09 Dec 2022 22:00:13 GMT
age: 7946
etag: "ed170b8b964db1163e02c21fe4e9dbfe58e9d42d"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Faa7dc969-e455-4530-98cb-51f59a291532.jpeg
34.120.237.76200 OK 6.9 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Faa7dc969-e455-4530-98cb-51f59a291532.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash e4b1e76689036da0767b475294169149
7c27783f10e44b5c575616feafc6cae87beb916f
52170edde4c4494252ff0c830f21e20a62b2dfc30df2fab5feef5db9d26cf0bc
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Faa7dc969-e455-4530-98cb-51f59a291532.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6947
x-amzn-requestid: 365129c8-2e68-4a0d-8a1e-935d01cd2f0b
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: c5eNUH6ooAMF5BQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6393aa55-4182ddcb68b36bf624d758e3;Sampled=0
x-amzn-remapped-date: Fri, 09 Dec 2022 21:36:21 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: dFZzPhvzdz_SnEOa6sSy8DY0R-qnACOezHXN84OSOtPzqlyQKnZ8dw==
via: 1.1 00f0a41f749793b9dd653153037c957e.cloudfront.net (CloudFront), 1.1 e4d3d5aafc7d7d582423c073065ab562.cloudfront.net (CloudFront), 1.1 google
date: Fri, 09 Dec 2022 21:55:31 GMT
age: 8228
etag: "7c27783f10e44b5c575616feafc6cae87beb916f"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
ifcgmsconsultinggroup.com/
161.97.187.97200 OK 31 kB URL HTTP/2 ifcgmsconsultinggroup.com/
IP 161.97.187.97:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (9381)
Hash 888741e78606d1316bb65663b3319b14
d0eda695ef043c876ce01a475e3ebe81bdc5a9fc
61ec0f6117e5c4c200f3a376ede9aae8e28b2f467455ce96c818bcc06bb1aad1
Analyzer Verdict Alert fortinet Phishing
GET / HTTP/1.1
Host: ifcgmsconsultinggroup.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 200 OK
server: nginx
date: Sat, 10 Dec 2022 00:12:40 GMT
content-type: text/html; charset=UTF-8
content-length: 30611
link: <https://ifcgmsconsultinggroup.com/wp-json/>; rel="https://api.w.org/", <https://ifcgmsconsultinggroup.com/wp-json/wp/v2/pages/1071>; rel="alternate"; type="application/json", <https://ifcgmsconsultinggroup.com/>; rel=shortlink
vary: Accept-Encoding
content-encoding: gzip
x-powered-by: PHP/7.4.16, PleskLin
X-Firefox-Spdy: h2
ifcgmsconsultinggroup.com/wp-includes/css/classic-themes.min.css?ver=1
161.97.187.97200 OK 189 B URL HTTP/2 ifcgmsconsultinggroup.com/wp-includes/css/classic-themes.min.css?ver=1
IP 161.97.187.97:0
Hash 5a18e16eb01cbaa862eb32e6b77bedb2
3abf9b913cc9f558f02cba7c9b822f8d1812cb96
d2b5af913332941d5ae7786d1fa70e0d009315c4ede6ad5b80d0f663bb54521f
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/css/classic-themes.min.css?ver=1 HTTP/1.1
Host: ifcgmsconsultinggroup.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ifcgmsconsultinggroup.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 10 Dec 2022 00:12:40 GMT
content-type: text/css
content-length: 189
x-accel-version: 0.01
last-modified: Tue, 08 Nov 2022 02:47:41 GMT
etag: "d9-5ecec90585bc4-gzip"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
x-powered-by: PleskLin
X-Firefox-Spdy: h2
ifcgmsconsultinggroup.com/wp-content/plugins/header-footer-elementor/assets/css/header-footer-elementor.css?ver=1.6.13
161.97.187.97200 OK 323 B URL HTTP/2 ifcgmsconsultinggroup.com/wp-content/plugins/header-footer-elementor/assets/css/header-footer-elementor.css?ver=1.6.13
IP 161.97.187.97:0
Hash b24c24b7da3ffeed6ae8ade102a4d317
c4445b3977ce704b927508108e100213eea67a3c
5421ad49b70f379553eaceec744d753e74d4b065966c08aa7c7dd949553ca9a8
GET /wp-content/plugins/header-footer-elementor/assets/css/header-footer-elementor.css?ver=1.6.13 HTTP/1.1
Host: ifcgmsconsultinggroup.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ifcgmsconsultinggroup.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 10 Dec 2022 00:12:40 GMT
content-type: text/css
content-length: 323
x-accel-version: 0.01
last-modified: Tue, 08 Nov 2022 02:42:05 GMT
etag: "308-5ecec7c54ecc5-gzip"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
x-powered-by: PleskLin
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash edac2b4e678c48b1fc3be3a06793bfcb
23f1f41a2194536d77a2497d7255b13747fd9af0
e6b36b71f3633bd9d2b80043967f9579820f0ef1d5f66e5c401806de13cbe2a1
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 10 Dec 2022 00:12:40 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ifcgmsconsultinggroup.com/wp-includes/css/dist/block-library/style.min.css?ver=6.1.1
161.97.187.97200 OK 12 kB URL HTTP/2 ifcgmsconsultinggroup.com/wp-includes/css/dist/block-library/style.min.css?ver=6.1.1
IP 161.97.187.97:0
File type ASCII text, with very long lines (47826)
Hash f8eab4583b7a97074e8979c8bd08ffd8
f0ba8b01804513f869e9072eed5a210451c0fbd8
5e5756858165b4d2f979d28097a162e15a02addcfe7e4d378bf60f80e5d152f3
GET /wp-includes/css/dist/block-library/style.min.css?ver=6.1.1 HTTP/1.1
Host: ifcgmsconsultinggroup.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ifcgmsconsultinggroup.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 10 Dec 2022 00:12:40 GMT
content-type: text/css
last-modified: Tue, 15 Nov 2022 20:17:48 GMT
etag: W/"6373f3ec-172a9"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
ifcgmsconsultinggroup.com/wp-content/plugins/pearl-header-builder/assets/frontend/assets/vendor/sticky.css?ver=1.0
161.97.187.97200 OK 195 B URL HTTP/2 ifcgmsconsultinggroup.com/wp-content/plugins/pearl-header-builder/assets/frontend/assets/vendor/sticky.css?ver=1.0
IP 161.97.187.97:0
Hash 311e3bc13bdbd19c0fb9e14a60a77621
e60c5aae0842a67eefd4b9f09969701c6d9ca9ae
b0144258a83043cda38770d21b216e946fcd4a7198895d161f4119cbdd2313b8
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/pearl-header-builder/assets/frontend/assets/vendor/sticky.css?ver=1.0 HTTP/1.1
Host: ifcgmsconsultinggroup.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ifcgmsconsultinggroup.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 10 Dec 2022 00:12:40 GMT
content-type: text/css
content-length: 195
x-accel-version: 0.01
last-modified: Tue, 08 Nov 2022 02:42:06 GMT
etag: "17a-5ecec7c5903a6-gzip"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
x-powered-by: PleskLin
X-Firefox-Spdy: h2
ifcgmsconsultinggroup.com/wp-content/plugins/elementor/assets/lib/font-awesome/css/regular.min.css?ver=5.15.3
161.97.187.97200 OK 308 B URL HTTP/2 ifcgmsconsultinggroup.com/wp-content/plugins/elementor/assets/lib/font-awesome/css/regular.min.css?ver=5.15.3
IP 161.97.187.97:0
File type ASCII text, with very long lines (491)
Hash 851fd514d412b7e854365f20a4227c8a
08bf47072f70af1816450cc85a5efb3b8f9114d2
a9449e3cc7c003e5ed6b93bae7b0bba3e4f1713c52214f41d3591692a759b9d7
GET /wp-content/plugins/elementor/assets/lib/font-awesome/css/regular.min.css?ver=5.15.3 HTTP/1.1
Host: ifcgmsconsultinggroup.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ifcgmsconsultinggroup.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 10 Dec 2022 00:12:40 GMT
content-type: text/css
content-length: 308
x-accel-version: 0.01
last-modified: Sat, 26 Nov 2022 09:33:38 GMT
etag: "2a5-5ee5c55440a4a-gzip"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
x-powered-by: PleskLin
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash f7aef7109978f8c1c53298563756a403
d610bb812b080710945dd47f9cccd794af9fe2f7
6366bc97e3f9ac9a6e8a294da60f2d961d2106180fd8ffaae97bc82ea399edb9
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 10 Dec 2022 00:12:40 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ifcgmsconsultinggroup.com/wp-content/plugins/elementor/assets/lib/font-awesome/css/brands.min.css?ver=5.15.3
161.97.187.97200 OK 308 B URL HTTP/2 ifcgmsconsultinggroup.com/wp-content/plugins/elementor/assets/lib/font-awesome/css/brands.min.css?ver=5.15.3
IP 161.97.187.97:0
File type ASCII text, with very long lines (489)
Hash 0a08469d24387f830bbaaa00b3c228ae
01f5dfeb8f93a32c9a8f66fe5940758109771fcd
3c7c29e5fc1193ff7ce24f72f77b2dc129e1a9434a97ef7b625f6f715531803c
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/elementor/assets/lib/font-awesome/css/brands.min.css?ver=5.15.3 HTTP/1.1
Host: ifcgmsconsultinggroup.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ifcgmsconsultinggroup.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 10 Dec 2022 00:12:40 GMT
content-type: text/css
content-length: 308
x-accel-version: 0.01
last-modified: Sat, 26 Nov 2022 09:33:38 GMT
etag: "2a3-5ee5c55440a4a-gzip"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
x-powered-by: PleskLin
X-Firefox-Spdy: h2
ifcgmsconsultinggroup.com/wp-content/uploads/2022/11/gangrene-post-bac-350x250.webp
161.97.187.97200 OK 19 kB URL HTTP/2 ifcgmsconsultinggroup.com/wp-content/uploads/2022/11/gangrene-post-bac-350x250.webp
IP 161.97.187.97:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 350x250, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 003f1b5dc727066cc3931aa8d615fa40
0cf54d796058268cd0ecf9aba6b7731a3eae22a0
09324b26cce970f6de50b3f7434e2e9524a4a56ee63db502e369216c025a26a8
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/uploads/2022/11/gangrene-post-bac-350x250.webp HTTP/1.1
Host: ifcgmsconsultinggroup.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ifcgmsconsultinggroup.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 10 Dec 2022 00:12:40 GMT
content-type: image/webp
content-length: 19322
last-modified: Wed, 09 Nov 2022 10:27:44 GMT
etag: "636b80a0-4b7a"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
ifcgmsconsultinggroup.com/wp-content/plugins/elementor/assets/css/frontend-lite.min.css?ver=3.8.1
161.97.187.97200 OK 54 kB URL HTTP/2 ifcgmsconsultinggroup.com/wp-content/plugins/elementor/assets/css/frontend-lite.min.css?ver=3.8.1
IP 161.97.187.97:0
File type ASCII text, with very long lines (65497)
Hash 4374602498e42c47133c3d323933f564
dae70a971759dfeccfe513878bd024e88b5cf5f9
314b8f774a5f7bd67a7958b3e6ba61bdc8fd8c1078b6f56908954b7157bd9a58
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/elementor/assets/css/frontend-lite.min.css?ver=3.8.1 HTTP/1.1
Host: ifcgmsconsultinggroup.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ifcgmsconsultinggroup.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 10 Dec 2022 00:12:40 GMT
content-type: text/css
last-modified: Sat, 26 Nov 2022 09:33:38 GMT
etag: W/"6381dd72-19538"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
ifcgmsconsultinggroup.com/wp-content/uploads/2022/11/Il-est-toujours-important-de-sassurer-que-les-choix-des-apprenants-cadrent-avec-leurs-objectif-350x250.jpg
161.97.187.97200 OK 20 kB URL HTTP/2 ifcgmsconsultinggroup.com/wp-content/uploads/2022/11/Il-est-toujours-important-de-sassurer-que-les-choix-des-apprenants-cadrent-avec-leurs-objectif-350x250.jpg
IP 161.97.187.97:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 350x250, components 3\012- data
Hash 61ef67e01928151b0fb5e0d4b05d6d44
4621b10b64bad8974407c6fd3d0a7efb748d97d4
b1ceb971452b2787a0fbdfd573452fd08886cedec581ddd79bb41a1328964d91
GET /wp-content/uploads/2022/11/Il-est-toujours-important-de-sassurer-que-les-choix-des-apprenants-cadrent-avec-leurs-objectif-350x250.jpg HTTP/1.1
Host: ifcgmsconsultinggroup.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ifcgmsconsultinggroup.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 10 Dec 2022 00:12:40 GMT
content-type: image/jpeg
content-length: 20506
last-modified: Wed, 09 Nov 2022 11:26:33 GMT
etag: "636b8e69-501a"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
ifcgmsconsultinggroup.com/wp-content/uploads/2022/11/Il-est-toujours-important-de-sassurer-que-les-choix-des-apprenants-cadrent-avec-leurs-objectifs.-350x250.jpg
161.97.187.97200 OK 17 kB URL HTTP/2 ifcgmsconsultinggroup.com/wp-content/uploads/2022/11/Il-est-toujours-important-de-sassurer-que-les-choix-des-apprenants-cadrent-avec-leurs-objectifs.-350x250.jpg
IP 161.97.187.97:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 350x250, components 3\012- data
Hash c15ec9f82b139637c5d52755f44c9479
b79b4f035e5e8519b459f4c78498b3042b532777
31560b52451e628bb36389ee0a388e4345b2a93aa0e4c7a2e41387b4f2003d69
GET /wp-content/uploads/2022/11/Il-est-toujours-important-de-sassurer-que-les-choix-des-apprenants-cadrent-avec-leurs-objectifs.-350x250.jpg HTTP/1.1
Host: ifcgmsconsultinggroup.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ifcgmsconsultinggroup.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 10 Dec 2022 00:12:40 GMT
content-type: image/jpeg
content-length: 17326
last-modified: Wed, 09 Nov 2022 11:26:22 GMT
etag: "636b8e5e-43ae"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
ifcgmsconsultinggroup.com/wp-content/uploads/stm_fonts/stm/stm.css?ver=1.0
161.97.187.97200 OK 2.0 kB URL HTTP/2 ifcgmsconsultinggroup.com/wp-content/uploads/stm_fonts/stm/stm.css?ver=1.0
IP 161.97.187.97:0
Hash e3648abc75b0bb6a3f40514ad9057ec3
ddd2d1fcb8af0949c253af7adfbafa269abaf539
12f9466a8cede0c81c8726c73219a8983c6e5405c2ca8293dee62a0a0b1c0659
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/uploads/stm_fonts/stm/stm.css?ver=1.0 HTTP/1.1
Host: ifcgmsconsultinggroup.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ifcgmsconsultinggroup.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 10 Dec 2022 00:12:40 GMT
content-type: text/css
last-modified: Tue, 08 Nov 2022 02:42:20 GMT
etag: W/"6369c20c-29a3"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
ifcgmsconsultinggroup.com/wp-content/uploads/2022/11/FILIERE-INNOVANTES-340x250.jpg
161.97.187.97200 OK 26 kB URL HTTP/2 ifcgmsconsultinggroup.com/wp-content/uploads/2022/11/FILIERE-INNOVANTES-340x250.jpg
IP 161.97.187.97:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 340x250, components 3\012- data
Hash ed4e34db9e7bfa909a150b5995cec6ba
1068309103469434bdfe3d63b18975da22ae0fe7
0663527bf8f60bd14f41c652f2ff6f1e17eb39e31fb31168dd5642b6d13e212e
GET /wp-content/uploads/2022/11/FILIERE-INNOVANTES-340x250.jpg HTTP/1.1
Host: ifcgmsconsultinggroup.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ifcgmsconsultinggroup.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 10 Dec 2022 00:12:40 GMT
content-type: image/jpeg
content-length: 25716
last-modified: Fri, 11 Nov 2022 02:40:31 GMT
etag: "636db61f-6474"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
ifcgmsconsultinggroup.com/wp-content/uploads/2022/11/Excuses-Francais-Authentique-350x250.jpg
161.97.187.97200 OK 16 kB URL HTTP/2 ifcgmsconsultinggroup.com/wp-content/uploads/2022/11/Excuses-Francais-Authentique-350x250.jpg
IP 161.97.187.97:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 300x300, segment length 16, baseline, precision 8, 350x250, components 3\012- data
Hash 9a9da0cd99ce72546e2589fc05760855
4037fb15e7073f0d7e73d658af7b66467f7a42c3
a7a6ab3ae6af50302552cce4c48de0afb1c343dcd7ba536dced9df67fa0a3285
GET /wp-content/uploads/2022/11/Excuses-Francais-Authentique-350x250.jpg HTTP/1.1
Host: ifcgmsconsultinggroup.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ifcgmsconsultinggroup.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 10 Dec 2022 00:12:40 GMT
content-type: image/jpeg
content-length: 15843
last-modified: Fri, 11 Nov 2022 02:40:37 GMT
etag: "636db625-3de3"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash edac2b4e678c48b1fc3be3a06793bfcb
23f1f41a2194536d77a2497d7255b13747fd9af0
e6b36b71f3633bd9d2b80043967f9579820f0ef1d5f66e5c401806de13cbe2a1
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 10 Dec 2022 00:12:40 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ifcgmsconsultinggroup.com/wp-content/uploads/2022/11/gm3.png
161.97.187.97200 OK 25 kB URL HTTP/2 ifcgmsconsultinggroup.com/wp-content/uploads/2022/11/gm3.png
IP 161.97.187.97:0
File type PNG image data, 61 x 56, 8-bit/color RGBA, interlaced\012- data
Hash bbe20ec1196a4a5e6b3ef6c64b313947
d38261246611437a7d3e2e261cab95225f971831
00e91caf73f0639e777c977f2640daf8de64644d25354d8d0840ae7db8e20607
GET /wp-content/uploads/2022/11/gm3.png HTTP/1.1
Host: ifcgmsconsultinggroup.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ifcgmsconsultinggroup.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 10 Dec 2022 00:12:40 GMT
content-type: image/png
content-length: 24801
last-modified: Tue, 08 Nov 2022 02:42:17 GMT
etag: "6369c209-60e1"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
ifcgmsconsultinggroup.com/wp-content/uploads/2022/11/gm2.png
161.97.187.97200 OK 31 kB URL HTTP/2 ifcgmsconsultinggroup.com/wp-content/uploads/2022/11/gm2.png
IP 161.97.187.97:0
File type PNG image data, 110 x 56, 8-bit/color RGBA, interlaced\012- data
Hash 0f72cc529b24c2251c71fb8e8f6fcde5
ff30b28c9263edcf6a3fa2ddcd9005e9bc8597b0
11f8540ac2e7019282e30c3ab78f90921eeb52d159387afa941d884457b78876
GET /wp-content/uploads/2022/11/gm2.png HTTP/1.1
Host: ifcgmsconsultinggroup.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ifcgmsconsultinggroup.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 10 Dec 2022 00:12:40 GMT
content-type: image/png
content-length: 31125
last-modified: Tue, 08 Nov 2022 02:42:17 GMT
etag: "6369c209-7995"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
ifcgmsconsultinggroup.com/wp-content/uploads/2022/11/gm1.png
161.97.187.97200 OK 33 kB URL HTTP/2 ifcgmsconsultinggroup.com/wp-content/uploads/2022/11/gm1.png
IP 161.97.187.97:0
File type PNG image data, 110 x 56, 8-bit/color RGBA, interlaced\012- data
Hash 60a449a035bae0a181e953ef205157d1
5fb723a9b4b1c99d386f22716d880b8f71119cd1
5861e1367e2c7fe2e8a89518b87db0c244ec1fffffb6a5cefa68b23b4699487f
GET /wp-content/uploads/2022/11/gm1.png HTTP/1.1
Host: ifcgmsconsultinggroup.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ifcgmsconsultinggroup.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 10 Dec 2022 00:12:40 GMT
content-type: image/png
content-length: 32716
last-modified: Tue, 08 Nov 2022 02:42:17 GMT
etag: "6369c209-7fcc"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
ifcgmsconsultinggroup.com/wp-content/uploads/2022/11/logo_commercialBank.png
161.97.187.97200 OK 8.1 kB URL HTTP/2 ifcgmsconsultinggroup.com/wp-content/uploads/2022/11/logo_commercialBank.png
IP 161.97.187.97:0
File type PNG image data, 110 x 56, 8-bit/color RGBA, non-interlaced\012- data
Hash a4865c5cd05f146c611d5a85d6948d69
57859e2bd5594700f7cb80b8d9ee0b36e344c2a6
e8981eca39f6c2e357a9076f7621d581757268b16dbb4ab92076133dbca22753
GET /wp-content/uploads/2022/11/logo_commercialBank.png HTTP/1.1
Host: ifcgmsconsultinggroup.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ifcgmsconsultinggroup.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 10 Dec 2022 00:12:40 GMT
content-type: image/png
content-length: 8093
last-modified: Tue, 08 Nov 2022 02:42:18 GMT
etag: "6369c20a-1f9d"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
ifcgmsconsultinggroup.com/wp-content/uploads/2022/11/gm7.png
161.97.187.97200 OK 24 kB URL HTTP/2 ifcgmsconsultinggroup.com/wp-content/uploads/2022/11/gm7.png
IP 161.97.187.97:0
File type PNG image data, 110 x 56, 8-bit/color RGBA, interlaced\012- data
Hash b0658c662454284a257a1b35ce097bef
1862bb737bdf69c4feec1aaf69eb391601b61dd0
d422eaad4f57c4a56b2bf0cb013b841cb059949de9788cce48972c43fff3bd21
GET /wp-content/uploads/2022/11/gm7.png HTTP/1.1
Host: ifcgmsconsultinggroup.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ifcgmsconsultinggroup.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 10 Dec 2022 00:12:40 GMT
content-type: image/png
content-length: 24453
last-modified: Tue, 08 Nov 2022 02:42:17 GMT
etag: "6369c209-5f85"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
ifcgmsconsultinggroup.com/wp-content/uploads/2022/11/chad.png
161.97.187.97200 OK 11 kB URL HTTP/2 ifcgmsconsultinggroup.com/wp-content/uploads/2022/11/chad.png
IP 161.97.187.97:0
File type PNG image data, 110 x 56, 8-bit/color RGBA, non-interlaced\012- data
Hash 17a9e08956aeee81e325e350bb11f35b
7e28a7aa94079cde80766587e3d0b5736e435089
7aced306b0657029a9df94bfca2c298efb0e2962f30238fe5abe6a2ffb2da03f
GET /wp-content/uploads/2022/11/chad.png HTTP/1.1
Host: ifcgmsconsultinggroup.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ifcgmsconsultinggroup.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 10 Dec 2022 00:12:40 GMT
content-type: image/png
content-length: 10924
last-modified: Tue, 08 Nov 2022 02:42:15 GMT
etag: "6369c207-2aac"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
ifcgmsconsultinggroup.com/wp-content/uploads/2022/11/FILIERE-INNOVANTE2-350x250.jpg
161.97.187.97200 OK 19 kB URL HTTP/2 ifcgmsconsultinggroup.com/wp-content/uploads/2022/11/FILIERE-INNOVANTE2-350x250.jpg
IP 161.97.187.97:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 300x300, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=5, orientation=upper-left, xresolution=74, yresolution=82, resolutionunit=2], baseline, precision 8, 350x250, components 3\012- data
Hash 81be84e1d1dd8a7e5306bd7263b971a3
f177b2db09ff41d306b080f6b436327f74b8a04b
64dc5e6a39c1648fef39376644fbda64f71e3fd6dae3c2ba580d20afa955392b
GET /wp-content/uploads/2022/11/FILIERE-INNOVANTE2-350x250.jpg HTTP/1.1
Host: ifcgmsconsultinggroup.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ifcgmsconsultinggroup.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 10 Dec 2022 00:12:40 GMT
content-type: image/jpeg
content-length: 19343
last-modified: Fri, 11 Nov 2022 02:40:46 GMT
etag: "636db62e-4b8f"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
ifcgmsconsultinggroup.com/wp-content/uploads/2022/11/gm8.png
161.97.187.97200 OK 29 kB URL HTTP/2 ifcgmsconsultinggroup.com/wp-content/uploads/2022/11/gm8.png
IP 161.97.187.97:0
File type PNG image data, 110 x 56, 8-bit/color RGBA, interlaced\012- data
Hash e9b83416833a953364a5ea3ff03421e9
c51d5f9199082388df95336fbe31ec37bf166f09
b76703d0c86ac65daef27d3c35bd9a2bab7d3869ecd11c970e5a17254c55b50f
GET /wp-content/uploads/2022/11/gm8.png HTTP/1.1
Host: ifcgmsconsultinggroup.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ifcgmsconsultinggroup.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 10 Dec 2022 00:12:40 GMT
content-type: image/png
content-length: 29432
last-modified: Tue, 08 Nov 2022 02:42:17 GMT
etag: "6369c209-72f8"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
ifcgmsconsultinggroup.com/wp-content/uploads/2022/11/gm4.png
161.97.187.97200 OK 28 kB URL HTTP/2 ifcgmsconsultinggroup.com/wp-content/uploads/2022/11/gm4.png
IP 161.97.187.97:0
File type PNG image data, 110 x 56, 8-bit/color RGBA, interlaced\012- data
Hash d77dcab3fcc4d54b845b25844079b93b
825629c4ca82d71d10854fefb310fd8d9ff5195c
347d8c51f040d9891d871403d2d0e738421849c332ed54e78ce1c40786bf4529
GET /wp-content/uploads/2022/11/gm4.png HTTP/1.1
Host: ifcgmsconsultinggroup.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ifcgmsconsultinggroup.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 10 Dec 2022 00:12:40 GMT
content-type: image/png
content-length: 28457
last-modified: Tue, 08 Nov 2022 02:42:17 GMT
etag: "6369c209-6f29"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
ifcgmsconsultinggroup.com/wp-content/uploads/2022/11/cimencam.png
161.97.187.97200 OK 7.0 kB URL HTTP/2 ifcgmsconsultinggroup.com/wp-content/uploads/2022/11/cimencam.png
IP 161.97.187.97:0
File type PNG image data, 110 x 56, 8-bit/color RGB, non-interlaced\012- data
Hash 5ff18bbefc95ac90bf78bd8eca196c07
9d38e19eebacde3fd5c35886c4131cb776eb1a87
cb2c77f21780ad9259036438c8e7e26fc5ab97c0d2d2f805072327c5be6cf3d8
GET /wp-content/uploads/2022/11/cimencam.png HTTP/1.1
Host: ifcgmsconsultinggroup.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ifcgmsconsultinggroup.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 10 Dec 2022 00:12:40 GMT
content-type: image/png
content-length: 7033
last-modified: Tue, 08 Nov 2022 02:42:15 GMT
etag: "6369c207-1b79"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
ifcgmsconsultinggroup.com/wp-content/uploads/2022/11/olinga-ifc.jpg
161.97.187.97200 OK 24 kB URL HTTP/2 ifcgmsconsultinggroup.com/wp-content/uploads/2022/11/olinga-ifc.jpg
IP 161.97.187.97:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 82", baseline, precision 8, 410x395, components 3\012- data
Hash 429aa9be756d3029a32acceeb7522470
f65d92588967e2d3656ea8fe5ef90b5ad59ec0c5
a8ce93b8fc6198affe1513107cb4703ee42615ca1c414eaa2402e60269a1aec6
GET /wp-content/uploads/2022/11/olinga-ifc.jpg HTTP/1.1
Host: ifcgmsconsultinggroup.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ifcgmsconsultinggroup.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 10 Dec 2022 00:12:40 GMT
content-type: image/jpeg
content-length: 23450
last-modified: Tue, 08 Nov 2022 02:42:19 GMT
etag: "6369c20b-5b9a"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
ifcgmsconsultinggroup.com/wp-content/uploads/2022/11/lipem-ifc.jpg
161.97.187.97200 OK 73 kB URL HTTP/2 ifcgmsconsultinggroup.com/wp-content/uploads/2022/11/lipem-ifc.jpg
IP 161.97.187.97:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, baseline, precision 8, 533x546, components 3\012- data
Hash d7fd1efdf07399374e1d7e44785e7e2f
a41859c10d4733a67ebbf503268f565cc1e65159
b963003a536cec899f9ab2678a4f818c0604be75428b91b1e1fe1c8dffa234f3
GET /wp-content/uploads/2022/11/lipem-ifc.jpg HTTP/1.1
Host: ifcgmsconsultinggroup.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ifcgmsconsultinggroup.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 10 Dec 2022 00:12:40 GMT
content-type: image/jpeg
content-length: 72625
last-modified: Tue, 08 Nov 2022 02:42:18 GMT
etag: "6369c20a-11bb1"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
ifcgmsconsultinggroup.com/wp-content/uploads/2022/11/gm5.png
161.97.187.97200 OK 29 kB URL HTTP/2 ifcgmsconsultinggroup.com/wp-content/uploads/2022/11/gm5.png
IP 161.97.187.97:0
File type PNG image data, 110 x 56, 8-bit/color RGBA, interlaced\012- data
Hash a3bf7e392ac143aabacf9b62ba122b03
b8c0ac2b20039db1203e45bf7dbc29d1bd355172
1b7d7863d27a532d02fc55487e0c9a4f02559b15c25801f5f3f6c2e64bb27f60
GET /wp-content/uploads/2022/11/gm5.png HTTP/1.1
Host: ifcgmsconsultinggroup.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ifcgmsconsultinggroup.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 10 Dec 2022 00:12:40 GMT
content-type: image/png
content-length: 28598
last-modified: Tue, 08 Nov 2022 02:42:17 GMT
etag: "6369c209-6fb6"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
ifcgmsconsultinggroup.com/wp-content/uploads/2022/11/MENOUNGA-Jean-Damas-1.jpg
161.97.187.97200 OK 62 kB URL HTTP/2 ifcgmsconsultinggroup.com/wp-content/uploads/2022/11/MENOUNGA-Jean-Damas-1.jpg
IP 161.97.187.97:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, baseline, precision 8, 810x764, components 3\012- data
Hash eb107f2231cbf4ae8f8991e89d4dd6d9
7a9f939b1675fde2f0c7c13cb19e4abaecdd0ad3
c3ec3222cff4ba11eb9dc43f0843a99a6af2a9cfb8f4681855f61f933dee8e21
GET /wp-content/uploads/2022/11/MENOUNGA-Jean-Damas-1.jpg HTTP/1.1
Host: ifcgmsconsultinggroup.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ifcgmsconsultinggroup.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 10 Dec 2022 00:12:40 GMT
content-type: image/jpeg
content-length: 61610
last-modified: Tue, 08 Nov 2022 02:42:18 GMT
etag: "6369c20a-f0aa"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
ifcgmsconsultinggroup.com/wp-content/uploads/2022/11/LONTSI-PIETA-Sanchez.jpg
161.97.187.97200 OK 87 kB URL HTTP/2 ifcgmsconsultinggroup.com/wp-content/uploads/2022/11/LONTSI-PIETA-Sanchez.jpg
IP 161.97.187.97:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, baseline, precision 8, 559x512, components 3\012- data
Hash 26239bbcebd700a9295325a23fedf265
50a362502e3883b6fb18e04db64eb7bef5cfd029
d7be317d9027c13f70a3bf2c33d5386f3c334e102fde8c0f7ceefb783862880f
GET /wp-content/uploads/2022/11/LONTSI-PIETA-Sanchez.jpg HTTP/1.1
Host: ifcgmsconsultinggroup.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ifcgmsconsultinggroup.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 10 Dec 2022 00:12:40 GMT
content-type: image/jpeg
content-length: 87202
last-modified: Tue, 08 Nov 2022 02:42:18 GMT
etag: "6369c20a-154a2"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
ifcgmsconsultinggroup.com/wp-content/uploads/2022/11/bibou-ifc.jpg
161.97.187.97200 OK 34 kB URL HTTP/2 ifcgmsconsultinggroup.com/wp-content/uploads/2022/11/bibou-ifc.jpg
IP 161.97.187.97:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, baseline, precision 8, 261x300, components 3\012- data
Hash 99b5bf8465a2b6c2a39091fa6dccc178
e686ed4db1082b70b490b7d807b7de50db69a9bc
c7b379627c7b74a69d6c06a79b5e7a4bfffae759a9867852a72481b10076694e
GET /wp-content/uploads/2022/11/bibou-ifc.jpg HTTP/1.1
Host: ifcgmsconsultinggroup.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ifcgmsconsultinggroup.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 10 Dec 2022 00:12:40 GMT
content-type: image/jpeg
content-length: 34014
last-modified: Tue, 08 Nov 2022 02:42:15 GMT
etag: "6369c207-84de"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
ifcgmsconsultinggroup.com/wp-content/uploads/2022/11/HENRI-SAMGBA-e1648204192780.jpg
161.97.187.97200 OK 23 kB URL HTTP/2 ifcgmsconsultinggroup.com/wp-content/uploads/2022/11/HENRI-SAMGBA-e1648204192780.jpg
IP 161.97.187.97:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 82", baseline, precision 8, 406x298, components 3\012- data
Hash 69e665b135addc0db528d20769129d83
93a0942ae94ef27a590cb5934be51a92aa0f5b6f
b6a2934ab019dea29eab654639334e0a8b2fbf56633948d5750d2037719c2593
GET /wp-content/uploads/2022/11/HENRI-SAMGBA-e1648204192780.jpg HTTP/1.1
Host: ifcgmsconsultinggroup.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ifcgmsconsultinggroup.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 10 Dec 2022 00:12:40 GMT
content-type: image/jpeg
content-length: 22605
last-modified: Tue, 08 Nov 2022 02:42:17 GMT
etag: "6369c209-584d"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
www.googletagmanager.com/gtag/js?id=G-SPJ7LQ2ECM
142.250.74.168200 OK 79 kB URL HTTP/2 www.googletagmanager.com/gtag/js?id=G-SPJ7LQ2ECM
IP 142.250.74.168:0
File type ASCII text, with very long lines (26337)
Hash 2d6bb7c44b7c73255419f88eeb8867d2
4951fc6a469f9cd91c95fa722ba9ab39f89e9cc5
c5be5651c7633095c2a028e4873a30375dd52e92ef2bae476543d68dbcd3f0e8
GET /gtag/js?id=G-SPJ7LQ2ECM HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ifcgmsconsultinggroup.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Sat, 10 Dec 2022 00:12:40 GMT
expires: Sat, 10 Dec 2022 00:12:40 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 79003
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ifcgmsconsultinggroup.com/wp-content/uploads/2022/11/logo-ifc.png
161.97.187.97200 OK 20 kB URL HTTP/2 ifcgmsconsultinggroup.com/wp-content/uploads/2022/11/logo-ifc.png
IP 161.97.187.97:0
File type PNG image data, 560 x 383, 8-bit/color RGBA, non-interlaced\012- data
Hash c39884ced60671a2b7992c5fc24b5ef9
60d1a4bc4b1dd26157dbd4946ac6523547f69e75
1337cdde14edc04452b5d1fe02f5180ffe45c018028ce2f123ddb97eb4223ebe
GET /wp-content/uploads/2022/11/logo-ifc.png HTTP/1.1
Host: ifcgmsconsultinggroup.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ifcgmsconsultinggroup.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 10 Dec 2022 00:12:40 GMT
content-type: image/png
content-length: 19863
last-modified: Tue, 08 Nov 2022 04:03:07 GMT
etag: "6369d4fb-4d97"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
ifcgmsconsultinggroup.com/wp-content/plugins/revslider/public/assets/fonts/revicons/revicons.woff?5510888
161.97.187.97200 OK 7.5 kB URL HTTP/2 ifcgmsconsultinggroup.com/wp-content/plugins/revslider/public/assets/fonts/revicons/revicons.woff?5510888
IP 161.97.187.97:0
File type Web Open Font Format, TrueType, length 7536, version 1.0\012- data
Hash 04eb8fc57f27498e5ae37523e3bfb2c7
d942ae11706c3f7e511e3c49b0e4574d7ad199c4
f7b9c3065e55fa3b9e320093612e7b30dcb14355a44ec461247b495a3e729686
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/revslider/public/assets/fonts/revicons/revicons.woff?5510888 HTTP/1.1
Host: ifcgmsconsultinggroup.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ifcgmsconsultinggroup.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 10 Dec 2022 00:12:40 GMT
content-type: application/font-woff
content-length: 7536
last-modified: Tue, 08 Nov 2022 02:42:09 GMT
etag: "6369c201-1d70"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
ifcgmsconsultinggroup.com/wp-content/uploads/elementor/css/post-7435.css?ver=1669456561
161.97.187.97200 OK 1.5 kB URL HTTP/2 ifcgmsconsultinggroup.com/wp-content/uploads/elementor/css/post-7435.css?ver=1669456561
IP 161.97.187.97:0
File type ASCII text, with very long lines (20617), with no line terminators
Hash e5554494f84513997505e187493eda2e
740d53ce0cf4374fa1510529038c4bc054d769c0
1b698717511a422c55dae714cf2b178437c5cec8249b1d9a40fabc1a32843189
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/uploads/elementor/css/post-7435.css?ver=1669456561 HTTP/1.1
Host: ifcgmsconsultinggroup.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ifcgmsconsultinggroup.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 10 Dec 2022 00:12:40 GMT
content-type: text/css
last-modified: Sat, 26 Nov 2022 09:56:01 GMT
etag: W/"6381e2b1-5089"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash edac2b4e678c48b1fc3be3a06793bfcb
23f1f41a2194536d77a2497d7255b13747fd9af0
e6b36b71f3633bd9d2b80043967f9579820f0ef1d5f66e5c401806de13cbe2a1
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 10 Dec 2022 00:12:40 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash f7aef7109978f8c1c53298563756a403
d610bb812b080710945dd47f9cccd794af9fe2f7
6366bc97e3f9ac9a6e8a294da60f2d961d2106180fd8ffaae97bc82ea399edb9
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 10 Dec 2022 00:12:40 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ifcgmsconsultinggroup.com/wp-content/themes/consulting/assets/js/stm-hfe.js?ver=6.3.6
161.97.187.97200 OK 307 B URL HTTP/2 ifcgmsconsultinggroup.com/wp-content/themes/consulting/assets/js/stm-hfe.js?ver=6.3.6
IP 161.97.187.97:0
Hash 02a62eea2840bb78c317369c31c0d930
34ef55d10389af6e45643ab7eb865f999d82e033
f9081c5d82738cf9fe507e9737dae96bef66fc578c498bd08d07d39e866e3c0c
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/consulting/assets/js/stm-hfe.js?ver=6.3.6 HTTP/1.1
Host: ifcgmsconsultinggroup.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ifcgmsconsultinggroup.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 10 Dec 2022 00:12:40 GMT
content-type: application/javascript
content-length: 307
x-accel-version: 0.01
last-modified: Tue, 08 Nov 2022 02:42:14 GMT
etag: "302-5ecec7cd298c4-gzip"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
x-powered-by: PleskLin
X-Firefox-Spdy: h2
ifcgmsconsultinggroup.com/wp-content/plugins/pearl-header-builder/assets/frontend/assets/js/modal.js?ver=1.0
161.97.187.97200 OK 166 B URL HTTP/2 ifcgmsconsultinggroup.com/wp-content/plugins/pearl-header-builder/assets/frontend/assets/js/modal.js?ver=1.0
IP 161.97.187.97:0
Hash df1dd146cfb4c3a6e53f17b74cf2ab3a
ae289c1d39dda54ea71c71c31b69036434a49c43
30d1489b8276d25fa90f8e8d0b9bbc2eb37bd0e0aabe2c608ca02de1e3258dd8
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/pearl-header-builder/assets/frontend/assets/js/modal.js?ver=1.0 HTTP/1.1
Host: ifcgmsconsultinggroup.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ifcgmsconsultinggroup.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 10 Dec 2022 00:12:40 GMT
content-type: application/javascript
content-length: 166
x-accel-version: 0.01
last-modified: Tue, 08 Nov 2022 02:42:06 GMT
etag: "118-5ecec7c5903a6-gzip"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
x-powered-by: PleskLin
X-Firefox-Spdy: h2
ifcgmsconsultinggroup.com/wp-content/plugins/wpforms/assets/js/integrations/elementor/frontend.min.js?ver=1.7.5
161.97.187.97200 OK 374 B URL HTTP/2 ifcgmsconsultinggroup.com/wp-content/plugins/wpforms/assets/js/integrations/elementor/frontend.min.js?ver=1.7.5
IP 161.97.187.97:0
File type ASCII text, with very long lines (754), with no line terminators
Hash ef785f463505633971eae5c08ad626d4
624e22257f386801822229db3a4bbd2e24b25e2f
b2a0dc77f0f79d81698a7e3893e16ecba7b0d980b80a5233656d9b11f1d8160d
GET /wp-content/plugins/wpforms/assets/js/integrations/elementor/frontend.min.js?ver=1.7.5 HTTP/1.1
Host: ifcgmsconsultinggroup.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ifcgmsconsultinggroup.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 10 Dec 2022 00:12:40 GMT
content-type: application/javascript
content-length: 374
x-accel-version: 0.01
last-modified: Tue, 08 Nov 2022 02:42:11 GMT
etag: "2f2-5ecec7ca917ba-gzip"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
x-powered-by: PleskLin
X-Firefox-Spdy: h2
ifcgmsconsultinggroup.com/wp-content/uploads/stm_fonts/stm/stm.ttf?oljwaf
161.97.187.97200 OK 93 kB URL HTTP/2 ifcgmsconsultinggroup.com/wp-content/uploads/stm_fonts/stm/stm.ttf?oljwaf
IP 161.97.187.97:0
File type TrueType Font data, 11 tables, 1st "OS/2", 14 names, Macintosh, type 1 string, stm \012- data
Hash 39fb4f050beb4bdb58ba81abf37d1f5a
4d6fde110985b7d919e06b7dc557ab2988a70a87
e2cfedd7a30693d6e54379e7d41a442d1daf5f6161c7bc77c40a4d313027f4dc
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/uploads/stm_fonts/stm/stm.ttf?oljwaf HTTP/1.1
Host: ifcgmsconsultinggroup.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ifcgmsconsultinggroup.com/wp-content/uploads/stm_fonts/stm/stm.css?ver=1.0
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 10 Dec 2022 00:12:41 GMT
content-type: application/font-sfnt
content-length: 93104
last-modified: Tue, 08 Nov 2022 02:42:20 GMT
etag: "6369c20c-16bb0"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash e4f546e102d986faf1029509d599b730
cc045a705fd6758b7b575fde5dfb79facc9c3546
ef492301b2b30e5076f7dffa07973e65e9a200ba9ef4d3568a527d3f973f3349
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 10 Dec 2022 00:12:41 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash e4f546e102d986faf1029509d599b730
cc045a705fd6758b7b575fde5dfb79facc9c3546
ef492301b2b30e5076f7dffa07973e65e9a200ba9ef4d3568a527d3f973f3349
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 10 Dec 2022 00:12:41 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ifcgmsconsultinggroup.com/wp-content/plugins/elementor/assets/lib/font-awesome/webfonts/fa-brands-400.woff2
161.97.187.97200 OK 77 kB URL HTTP/2 ifcgmsconsultinggroup.com/wp-content/plugins/elementor/assets/lib/font-awesome/webfonts/fa-brands-400.woff2
IP 161.97.187.97:0
File type Web Open Font Format (Version 2), TrueType, length 76764, version 331.-31261\012- data
Hash f7307680c7fe85959f3ecf122493ea7d
fce0da592a3e536d6d5df5b50cb513398d8c5161
43c072c16c9ee6d67acdfa6c6d6685ff1e74eb4237b7cc3c1348ab1c108b26af
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/elementor/assets/lib/font-awesome/webfonts/fa-brands-400.woff2 HTTP/1.1
Host: ifcgmsconsultinggroup.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://ifcgmsconsultinggroup.com/wp-content/plugins/elementor/assets/lib/font-awesome/css/brands.min.css?ver=5.15.3
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 10 Dec 2022 00:12:41 GMT
content-type: font/woff2
content-length: 76764
last-modified: Sat, 26 Nov 2022 09:33:38 GMT
etag: "6381dd72-12bdc"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
ifcgmsconsultinggroup.com/wp-content/plugins/pearl-header-builder/assets/frontend/assets/fonts/fontawesome-webfont.woff2?v=4.7.0
161.97.187.97200 OK 77 kB URL HTTP/2 ifcgmsconsultinggroup.com/wp-content/plugins/pearl-header-builder/assets/frontend/assets/fonts/fontawesome-webfont.woff2?v=4.7.0
IP 161.97.187.97:0
File type Web Open Font Format (Version 2), TrueType, length 77160, version 4.459\012- data
Hash af7ae505a9eed503f8b8e6982036873e
d6f48cba7d076fb6f2fd6ba993a75b9dc1ecbf0c
2adefcbc041e7d18fcf2d417879dc5a09997aa64d675b7a3c4b6ce33da13f3fe
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/pearl-header-builder/assets/frontend/assets/fonts/fontawesome-webfont.woff2?v=4.7.0 HTTP/1.1
Host: ifcgmsconsultinggroup.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://ifcgmsconsultinggroup.com/wp-content/plugins/pearl-header-builder/assets/frontend/assets/css/font-awesome.min.css?ver=1.0
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 10 Dec 2022 00:12:41 GMT
content-type: font/woff2
content-length: 77160
last-modified: Tue, 08 Nov 2022 02:42:06 GMT
etag: "6369c1fe-12d68"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
fonts.gstatic.com/s/poppins/v20/pxiEyp8kv8JHgFVrJJfecg.woff2
216.58.207.227200 OK 7.9 kB URL HTTP/2 fonts.gstatic.com/s/poppins/v20/pxiEyp8kv8JHgFVrJJfecg.woff2
IP 216.58.207.227:0
File type Web Open Font Format (Version 2), TrueType, length 7884, version 1.0\012- data
Hash 9212f6f9860f9fc6c69b02fedf6db8c3
ac6d71b4d5fdd2b3dabc9a06ff6c001e4251da0b
7d93459d86585bfcdbb7e0376056226adb25821ee54b96236fe2123e9560929f
GET /s/poppins/v20/pxiEyp8kv8JHgFVrJJfecg.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://ifcgmsconsultinggroup.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 7884
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 09 Dec 2022 13:33:11 GMT
expires: Sat, 09 Dec 2023 13:33:11 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 27 Apr 2022 17:03:52 GMT
content-type: font/woff2
age: 38370
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ifcgmsconsultinggroup.com/wp-content/plugins/pearl-header-builder/assets/frontend/assets/css/header/main.css?ver=1.0
161.97.187.97200 OK 7.4 kB URL HTTP/2 ifcgmsconsultinggroup.com/wp-content/plugins/pearl-header-builder/assets/frontend/assets/css/header/main.css?ver=1.0
IP 161.97.187.97:0
File type ASCII text, with very long lines (48378), with no line terminators
Hash 29973347fd300306df2764611e825b4f
3937483e794b33ab1b54717100441c9cb56c25fd
e6cf7737b4e0b39c94f034026cf055ddbb3a939cb253a1b7511cfbed68b195c3
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/pearl-header-builder/assets/frontend/assets/css/header/main.css?ver=1.0 HTTP/1.1
Host: ifcgmsconsultinggroup.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ifcgmsconsultinggroup.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 10 Dec 2022 00:12:40 GMT
content-type: text/css
last-modified: Tue, 08 Nov 2022 02:42:06 GMT
etag: W/"6369c1fe-bcfa"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
ifcgmsconsultinggroup.com/wp-content/plugins/elementor-pro/assets/js/elements-handlers.min.js?ver=3.8.0
161.97.187.97200 OK 13 kB URL HTTP/2 ifcgmsconsultinggroup.com/wp-content/plugins/elementor-pro/assets/js/elements-handlers.min.js?ver=3.8.0
IP 161.97.187.97:0
File type ASCII text, with very long lines (24753)
Hash 314e141748465a763038c28cf2be6a86
4c3c70468f8e78611c286dd791f35268763fceff
5d5d348a64f816ba004ba3d6717dcc0071cf241c85164049cd46998883daaef2
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/elementor-pro/assets/js/elements-handlers.min.js?ver=3.8.0 HTTP/1.1
Host: ifcgmsconsultinggroup.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ifcgmsconsultinggroup.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 10 Dec 2022 00:12:40 GMT
content-type: application/javascript
last-modified: Tue, 08 Nov 2022 02:42:01 GMT
etag: W/"6369c1f9-60dc"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
ifcgmsconsultinggroup.com/wp-includes/js/underscore.min.js?ver=1.13.4
161.97.187.97200 OK 15 kB URL HTTP/2 ifcgmsconsultinggroup.com/wp-includes/js/underscore.min.js?ver=1.13.4
IP 161.97.187.97:0
File type ASCII text, with very long lines (18798)
Hash d58457c8c956f830c65f97eac4e44a5c
9ecb15a943231066bf551da81088c7ca80b84245
81b4e399cd5a0590ada6e1ce1c3caa8e7964e162d73b292fd97d2204fa3f35c0
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/underscore.min.js?ver=1.13.4 HTTP/1.1
Host: ifcgmsconsultinggroup.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ifcgmsconsultinggroup.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 10 Dec 2022 00:12:40 GMT
content-type: application/javascript
last-modified: Tue, 08 Nov 2022 02:47:42 GMT
etag: W/"6369c34e-4991"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
fonts.gstatic.com/s/poppins/v20/pxiGyp8kv8JHgFVrJJLucHtA.woff2
216.58.207.227200 OK 8.7 kB URL HTTP/2 fonts.gstatic.com/s/poppins/v20/pxiGyp8kv8JHgFVrJJLucHtA.woff2
IP 216.58.207.227:0
File type Web Open Font Format (Version 2), TrueType, length 8668, version 1.0\012- data
Hash a242ba0df3a128a2cab929a8c45d5056
d70e2c70b21cbb66cd883ae56e2dedacefd81c7c
50d0c1742d80ac71f4cde20e8c04d41a24806af342831f479938b527fbff0972
GET /s/poppins/v20/pxiGyp8kv8JHgFVrJJLucHtA.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://ifcgmsconsultinggroup.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 8668
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 06 Dec 2022 15:43:08 GMT
expires: Wed, 06 Dec 2023 15:43:08 GMT
cache-control: public, max-age=31536000
age: 289773
last-modified: Wed, 27 Apr 2022 16:07:02 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/poppins/v20/pxiByp8kv8JHgFVrLEj6Z1xlFQ.woff2
216.58.207.227200 OK 8.0 kB URL HTTP/2 fonts.gstatic.com/s/poppins/v20/pxiByp8kv8JHgFVrLEj6Z1xlFQ.woff2
IP 216.58.207.227:0
File type Web Open Font Format (Version 2), TrueType, length 8000, version 1.0\012- data
Hash 72993dddf88a63e8f226656f7de88e57
179f97ec0275f09603a8db94d4380eb584d81cd5
f4e80d9dfd374d02989b87a27b5ed4cb78fbb177c27f1478e9a8b0afb7513149
GET /s/poppins/v20/pxiByp8kv8JHgFVrLEj6Z1xlFQ.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://ifcgmsconsultinggroup.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 8000
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 09 Dec 2022 13:33:11 GMT
expires: Sat, 09 Dec 2023 13:33:11 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 27 Apr 2022 16:59:07 GMT
content-type: font/woff2
age: 38370
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/poppins/v20/pxiByp8kv8JHgFVrLGT9Z1xlFQ.woff2
216.58.207.227200 OK 7.7 kB URL HTTP/2 fonts.gstatic.com/s/poppins/v20/pxiByp8kv8JHgFVrLGT9Z1xlFQ.woff2
IP 216.58.207.227:0
File type Web Open Font Format (Version 2), TrueType, length 7748, version 1.0\012- data
Hash a09f2fccfee35b7247b08a1a266f0328
0da2d17e738f46d2a09e6fb7969da451719a9820
cd36de204aca2d5fa263a731f7c20009b5e3d754ba1f1e03c33e93a48f3e7446
GET /s/poppins/v20/pxiByp8kv8JHgFVrLGT9Z1xlFQ.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://ifcgmsconsultinggroup.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 7748
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 07 Dec 2022 19:28:50 GMT
expires: Thu, 07 Dec 2023 19:28:50 GMT
cache-control: public, max-age=31536000
age: 189831
last-modified: Wed, 27 Apr 2022 16:21:30 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ifcgmsconsultinggroup.com/wp-content/plugins/elementor/assets/lib/font-awesome/webfonts/fa-regular-400.woff2
161.97.187.97200 OK 13 kB URL HTTP/2 ifcgmsconsultinggroup.com/wp-content/plugins/elementor/assets/lib/font-awesome/webfonts/fa-regular-400.woff2
IP 161.97.187.97:0
File type Web Open Font Format (Version 2), TrueType, length 13276, version 331.-31261\012- data
Hash f0f8230116992e521526097a28f54066
0447c6b10bbf73f97b23dcfd6e6a48510822cb6e
8afc6e5e842baab16010c2ce6fcf48ec4ded8e1579a37c1f1bc027e120d04951
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/elementor/assets/lib/font-awesome/webfonts/fa-regular-400.woff2 HTTP/1.1
Host: ifcgmsconsultinggroup.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://ifcgmsconsultinggroup.com/wp-content/plugins/elementor/assets/lib/font-awesome/css/regular.min.css?ver=5.15.3
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 10 Dec 2022 00:12:41 GMT
content-type: font/woff2
content-length: 13276
last-modified: Sat, 26 Nov 2022 09:33:38 GMT
etag: "6381dd72-33dc"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash e4f546e102d986faf1029509d599b730
cc045a705fd6758b7b575fde5dfb79facc9c3546
ef492301b2b30e5076f7dffa07973e65e9a200ba9ef4d3568a527d3f973f3349
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 10 Dec 2022 00:12:41 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ifcgmsconsultinggroup.com/wp-content/plugins/elementor/assets/lib/eicons/fonts/eicons.woff2?5.16.0
161.97.187.97200 OK 93 kB URL HTTP/2 ifcgmsconsultinggroup.com/wp-content/plugins/elementor/assets/lib/eicons/fonts/eicons.woff2?5.16.0
IP 161.97.187.97:0
File type Web Open Font Format (Version 2), TrueType, length 93372, version 1.0\012- data
Hash aab0bb3379e0eb7ebc26071db61fbd57
711c8d350c4192c2f1aa7f73551445b89fb4b161
691fa7d17effc7d303eda0ad7e4a1d91b2f375506cfc8a774480cc2b55f156ea
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/elementor/assets/lib/eicons/fonts/eicons.woff2?5.16.0 HTTP/1.1
Host: ifcgmsconsultinggroup.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://ifcgmsconsultinggroup.com/wp-content/plugins/elementor/assets/lib/eicons/css/elementor-icons.min.css?ver=5.16.0
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 10 Dec 2022 00:12:41 GMT
content-type: font/woff2
content-length: 93372
last-modified: Sat, 26 Nov 2022 09:33:38 GMT
etag: "6381dd72-16cbc"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
ifcgmsconsultinggroup.com/wp-content/uploads/2022/11/business-team-planning-marketing-strategy-1024x576.jpg
161.97.187.97200 OK 48 kB URL HTTP/2 ifcgmsconsultinggroup.com/wp-content/uploads/2022/11/business-team-planning-marketing-strategy-1024x576.jpg
IP 161.97.187.97:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v90), quality = 82", baseline, precision 8, 1024x576, components 3\012- data
Hash b90be14b1f21db2db215bfead635ca9b
ae5535e4e27200d1f049d7b5475bfb1d6ae97761
400c0376ca879b176c29f4b9ec014ed2ee5e711d9e97d18736c8dfbb7bb92e1c
GET /wp-content/uploads/2022/11/business-team-planning-marketing-strategy-1024x576.jpg HTTP/1.1
Host: ifcgmsconsultinggroup.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ifcgmsconsultinggroup.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 10 Dec 2022 00:12:41 GMT
content-type: image/jpeg
content-length: 47968
last-modified: Tue, 08 Nov 2022 02:42:15 GMT
etag: "6369c207-bb60"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
ifcgmsconsultinggroup.com/wp-content/uploads/2022/11/informatique-et-digital-1024x576.webp
161.97.187.97200 OK 49 kB URL HTTP/2 ifcgmsconsultinggroup.com/wp-content/uploads/2022/11/informatique-et-digital-1024x576.webp
IP 161.97.187.97:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 1024x576, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 2fb096b856e556e874148e9531842779
37f453577d7c1f2f7c8e3f655f525ee530dd40b7
2fd294f45cff385fa433b0c133334c5e699370f50b5d9238140e5c93670bf51e
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/uploads/2022/11/informatique-et-digital-1024x576.webp HTTP/1.1
Host: ifcgmsconsultinggroup.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ifcgmsconsultinggroup.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 10 Dec 2022 00:12:41 GMT
content-type: image/webp
content-length: 49184
last-modified: Tue, 08 Nov 2022 02:42:18 GMT
etag: "6369c20a-c020"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
ifcgmsconsultinggroup.com/wp-content/uploads/2022/11/cropped-logo-ifc-gms-192x192.png
161.97.187.97200 OK 30 kB URL HTTP/2 ifcgmsconsultinggroup.com/wp-content/uploads/2022/11/cropped-logo-ifc-gms-192x192.png
IP 161.97.187.97:0
File type PNG image data, 192 x 192, 8-bit/color RGBA, non-interlaced\012- data
Hash 2ee8a69b95b97ca6a6732b0fd3c7b580
6c7197e4e82d14c7c01ff846588c760528c9d46f
d9cb5f72782665cde94216653d5fa4d0f066df75cf02994281c8998a87a431ff
GET /wp-content/uploads/2022/11/cropped-logo-ifc-gms-192x192.png HTTP/1.1
Host: ifcgmsconsultinggroup.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ifcgmsconsultinggroup.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 10 Dec 2022 00:12:41 GMT
content-type: image/png
content-length: 30378
last-modified: Wed, 09 Nov 2022 15:55:54 GMT
etag: "636bcd8a-76aa"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
ifcgmsconsultinggroup.com/wp-content/plugins/pearl-header-builder/assets/frontend/assets/css/font-awesome.min.css?ver=1.0
161.97.187.97200 OK 8.6 kB URL HTTP/2 ifcgmsconsultinggroup.com/wp-content/plugins/pearl-header-builder/assets/frontend/assets/css/font-awesome.min.css?ver=1.0
IP 161.97.187.97:0
File type ASCII text, with very long lines (30837)
Hash 194ab6c315977a36d350738544f8fe87
dae4ebd1c07ed6ce0d3f545452b169cb9cdd07d4
c6d56144ee7e72823a778631076e51d89cef003a03afee11187387e2e563ff3c
GET /wp-content/plugins/pearl-header-builder/assets/frontend/assets/css/font-awesome.min.css?ver=1.0 HTTP/1.1
Host: ifcgmsconsultinggroup.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ifcgmsconsultinggroup.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 10 Dec 2022 00:12:40 GMT
content-type: text/css
last-modified: Tue, 08 Nov 2022 02:42:06 GMT
etag: W/"6369c1fe-7918"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
ifcgmsconsultinggroup.com/wp-content/plugins/revslider/public/assets/assets/loader.gif
161.97.187.97200 OK 2.5 kB URL HTTP/2 ifcgmsconsultinggroup.com/wp-content/plugins/revslider/public/assets/assets/loader.gif
IP 161.97.187.97:0
File type GIF image data, version 89a, 24 x 24\012- data
Hash 4b3afb84b2b71ef56df09997a350bd04
accdac8a7abeab0e21c49539aad0a973addb28ef
9034d5d34015e4b05d2c1d1a8dc9f6ec9d59bd96d305eb9e24e24e65c591a645
GET /wp-content/plugins/revslider/public/assets/assets/loader.gif HTTP/1.1
Host: ifcgmsconsultinggroup.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ifcgmsconsultinggroup.com/wp-content/plugins/revslider/public/assets/css/rs6.css?ver=6.6.3
Cookie: _ga_SPJ7LQ2ECM=GS1.1.1670631160.1.0.1670631160.0.0.0; _ga=GA1.1.2139295611.1670631160
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 10 Dec 2022 00:12:41 GMT
content-type: image/gif
content-length: 2545
last-modified: Tue, 08 Nov 2022 02:42:06 GMT
etag: "6369c1fe-9f1"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
ifcgmsconsultinggroup.com/wp-content/uploads/2022/11/cover-3-1536x1024.jpg
161.97.187.97200 OK 182 kB URL HTTP/2 ifcgmsconsultinggroup.com/wp-content/uploads/2022/11/cover-3-1536x1024.jpg
IP 161.97.187.97:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v90), quality = 82", baseline, precision 8, 1536x1024, components 3\012- data
Size 182 kB (182079 bytes)
Hash 6599b247f0042f56bc96dfeb1f8ffbe1
2cf65b6e02d7d4f78bd6a9479dbf37967afa9650
9c90ed643ec7a2070b86b9dc9dc1ccddf029e27dedb1ca9a4e420b04714478b3
GET /wp-content/uploads/2022/11/cover-3-1536x1024.jpg HTTP/1.1
Host: ifcgmsconsultinggroup.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ifcgmsconsultinggroup.com/
Cookie: _ga_SPJ7LQ2ECM=GS1.1.1670631160.1.0.1670631160.0.0.0; _ga=GA1.1.2139295611.1670631160
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 10 Dec 2022 00:12:41 GMT
content-type: image/jpeg
content-length: 182079
last-modified: Tue, 08 Nov 2022 02:42:16 GMT
etag: "6369c208-2c73f"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
ifcgmsconsultinggroup.com/wp-content/uploads/2022/11/ifc_gms.jpeg
161.97.187.97200 OK 136 kB URL HTTP/2 ifcgmsconsultinggroup.com/wp-content/uploads/2022/11/ifc_gms.jpeg
IP 161.97.187.97:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, baseline, precision 8, 720x737, components 3\012- data
Size 136 kB (135971 bytes)
Hash e83f87cf10929973c35c29dd4ae13b28
0451b7a2ec710dc5109cc384bd90abb471fd00e0
8c53d8f5de81b9aa57b82a3c0d59d9d105619699b2bda18615517a72005a876d
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/uploads/2022/11/ifc_gms.jpeg HTTP/1.1
Host: ifcgmsconsultinggroup.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ifcgmsconsultinggroup.com/
Cookie: _ga_SPJ7LQ2ECM=GS1.1.1670631160.1.0.1670631160.0.0.0; _ga=GA1.1.2139295611.1670631160
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 10 Dec 2022 00:12:41 GMT
content-type: image/jpeg
content-length: 135971
last-modified: Fri, 18 Nov 2022 00:23:29 GMT
etag: "6376d081-21323"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
ifcgmsconsultinggroup.com/wp-content/uploads/2022/11/IFC_REMISE1.jpg
161.97.187.97200 OK 101 kB URL HTTP/2 ifcgmsconsultinggroup.com/wp-content/uploads/2022/11/IFC_REMISE1.jpg
IP 161.97.187.97:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 1080x720, components 3\012- data
Size 101 kB (100759 bytes)
Hash f88e4943baa0afaa7be023b6a34f6fef
a6d57d00c6820a24bd553367bcc29cfd57543d31
a8c51ac8c36daf338a389eda8edc6b5c8aa6d9b0b0fc2488d19f7cacd725fad2
GET /wp-content/uploads/2022/11/IFC_REMISE1.jpg HTTP/1.1
Host: ifcgmsconsultinggroup.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ifcgmsconsultinggroup.com/
Cookie: _ga_SPJ7LQ2ECM=GS1.1.1670631160.1.0.1670631160.0.0.0; _ga=GA1.1.2139295611.1670631160
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 10 Dec 2022 00:12:41 GMT
content-type: image/jpeg
content-length: 100759
last-modified: Tue, 08 Nov 2022 02:42:17 GMT
etag: "6369c209-18997"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
ifcgmsconsultinggroup.com/wp-content/uploads/2022/11/cover-9.webp
161.97.187.97200 OK 47 kB URL HTTP/2 ifcgmsconsultinggroup.com/wp-content/uploads/2022/11/cover-9.webp
IP 161.97.187.97:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 626x417, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 03d31b81647bfc85aaae98068b3fc524
a3244d63ec9f09aff19f269406c37b6678c96974
5ba34f7606cba9912918db4d6b3291a44dfaa6a16cb9b355567edb0c4e91043b
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/uploads/2022/11/cover-9.webp HTTP/1.1
Host: ifcgmsconsultinggroup.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ifcgmsconsultinggroup.com/
Cookie: _ga_SPJ7LQ2ECM=GS1.1.1670631160.1.0.1670631160.0.0.0; _ga=GA1.1.2139295611.1670631160
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 10 Dec 2022 00:12:41 GMT
content-type: image/webp
content-length: 47210
last-modified: Tue, 08 Nov 2022 02:42:16 GMT
etag: "6369c208-b86a"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
ifcgmsconsultinggroup.com/wp-content/uploads/2022/11/business-team-planning-marketing-strategy-scaled.jpg
161.97.187.97200 OK 204 kB URL HTTP/2 ifcgmsconsultinggroup.com/wp-content/uploads/2022/11/business-team-planning-marketing-strategy-scaled.jpg
IP 161.97.187.97:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v90), quality = 82", baseline, precision 8, 2560x1440, components 3\012- data
Size 204 kB (203545 bytes)
Hash 7350e54dcc027ea37113393e0fe621ca
0d1b7ecdf37503bd397fe662a1bc30be10ce7d62
5b527cd773fb9c2a5197ab0256767e12095bf6c4db27d1157362b0b5dc46165f
GET /wp-content/uploads/2022/11/business-team-planning-marketing-strategy-scaled.jpg HTTP/1.1
Host: ifcgmsconsultinggroup.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ifcgmsconsultinggroup.com/
Cookie: _ga_SPJ7LQ2ECM=GS1.1.1670631160.1.0.1670631160.0.0.0; _ga=GA1.1.2139295611.1670631160
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 10 Dec 2022 00:12:41 GMT
content-type: image/jpeg
content-length: 203545
last-modified: Tue, 08 Nov 2022 02:42:15 GMT
etag: "6369c207-31b19"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
ifcgmsconsultinggroup.com/wp-content/plugins/elementor/assets/js/text-editor.2c35aafbe5bf0e127950.bundle.min.js
161.97.187.97200 OK 131 kB URL HTTP/2 ifcgmsconsultinggroup.com/wp-content/plugins/elementor/assets/js/text-editor.2c35aafbe5bf0e127950.bundle.min.js
IP 161.97.187.97:0
File type ASCII text, with very long lines (1320)
Size 131 kB (131143 bytes)
Hash 68686ea9af6f6698831c76381fe8adb9
a31893e333d7de1c228886f8640b280583fb7a83
fd7f99e2d9b56f96c3901937e1c8c5adf50fa5b421b72faafaca5485c7676baa
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/elementor/assets/js/text-editor.2c35aafbe5bf0e127950.bundle.min.js HTTP/1.1
Host: ifcgmsconsultinggroup.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ifcgmsconsultinggroup.com/
Cookie: _ga_SPJ7LQ2ECM=GS1.1.1670631160.1.0.1670631160.0.0.0; _ga=GA1.1.2139295611.1670631160
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 10 Dec 2022 00:12:41 GMT
content-type: application/javascript
last-modified: Sat, 26 Nov 2022 09:33:38 GMT
etag: W/"6381dd72-54f"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
ifcgmsconsultinggroup.com/wp-content/uploads/2022/11/IFC_REMISE2.jpg
161.97.187.97200 OK 96 kB URL HTTP/2 ifcgmsconsultinggroup.com/wp-content/uploads/2022/11/IFC_REMISE2.jpg
IP 161.97.187.97:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 1080x720, components 3\012- data
Hash ac9e35ab46b9605b15efec1d243f6522
4e8a0214a85599680c85d3f9184b9a909f19e89e
2daf4c5f2cdbbe1a7df64d1500d505306c5c67fd25cb55a34c84a89f4781aabb
GET /wp-content/uploads/2022/11/IFC_REMISE2.jpg HTTP/1.1
Host: ifcgmsconsultinggroup.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ifcgmsconsultinggroup.com/
Cookie: _ga_SPJ7LQ2ECM=GS1.1.1670631160.1.0.1670631160.0.0.0; _ga=GA1.1.2139295611.1670631160
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 10 Dec 2022 00:12:41 GMT
content-type: image/jpeg
content-length: 96279
last-modified: Tue, 08 Nov 2022 02:42:17 GMT
etag: "6369c209-17817"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
region1.google-analytics.com/g/collect?v=2&tid=G-SPJ7LQ2ECM>m=2oebu0&_p=400383932&cid=2139295611.1670631160&ul=en-us&sr=1280x1024&_s=1&sid=1670631160&sct=1&seg=0&dl=https%3A%2F%2Fifcgmsconsultinggroup.com%2F&dt=Accueil%20-%20IFC%20GMS%20CONSULTING%20GROUP%2C%20Institut%2FCentre%20de%20Formation%20Professionnelle%20et%20de%20Certification%2C%20Yaound%C3%A9-Douala-Cameroun.%20QHSE-Ressources%20Humaines%20(RH)-Marketing-Communication%20Digitale-Informatique-Secr%C3%A9tariat-Maintenance-Infographie%20WebDesign-Management%20des%20Projets-Suivi%20Evaluation&en=page_view&_fv=1&_nsi=1&_ss=1&_ee=1
216.239.32.36204 No Content 0 B URL HTTP/2 region1.google-analytics.com/g/collect?v=2&tid=G-SPJ7LQ2ECM>m=2oebu0&_p=400383932&cid=2139295611.1670631160&ul=en-us&sr=1280x1024&_s=1&sid=1670631160&sct=1&seg=0&dl=https%3A%2F%2Fifcgmsconsultinggroup.com%2F&dt=Accueil%20-%20IFC%20GMS%20CONSULTING%20GROUP%2C%20Institut%2FCentre%20de%20Formation%20Professionnelle%20et%20de%20Certification%2C%20Yaound%C3%A9-Douala-Cameroun.%20QHSE-Ressources%20Humaines%20(RH)-Marketing-Communication%20Digitale-Informatique-Secr%C3%A9tariat-Maintenance-Infographie%20WebDesign-Management%20des%20Projets-Suivi%20Evaluation&en=page_view&_fv=1&_nsi=1&_ss=1&_ee=1
IP 216.239.32.36:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /g/collect?v=2&tid=G-SPJ7LQ2ECM>m=2oebu0&_p=400383932&cid=2139295611.1670631160&ul=en-us&sr=1280x1024&_s=1&sid=1670631160&sct=1&seg=0&dl=https%3A%2F%2Fifcgmsconsultinggroup.com%2F&dt=Accueil%20-%20IFC%20GMS%20CONSULTING%20GROUP%2C%20Institut%2FCentre%20de%20Formation%20Professionnelle%20et%20de%20Certification%2C%20Yaound%C3%A9-Douala-Cameroun.%20QHSE-Ressources%20Humaines%20(RH)-Marketing-Communication%20Digitale-Informatique-Secr%C3%A9tariat-Maintenance-Infographie%20WebDesign-Management%20des%20Projets-Suivi%20Evaluation&en=page_view&_fv=1&_nsi=1&_ss=1&_ee=1 HTTP/1.1
Host: region1.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://ifcgmsconsultinggroup.com
Connection: keep-alive
Referer: https://ifcgmsconsultinggroup.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0
HTTP/2 204 No Content
access-control-allow-origin: https://ifcgmsconsultinggroup.com
date: Sat, 10 Dec 2022 00:12:42 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
access-control-allow-credentials: true
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3aa5c262-0114-433f-bea5-d75296b8bcd2.jpeg
34.120.237.76200 OK 9.2 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3aa5c262-0114-433f-bea5-d75296b8bcd2.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 4ccbd106eb57e1a4f6d60408118fe2dd
cc916150425f00b44ede3ec473e3e248afabaf8d
740c62dfdd20f2fb7270ea602825ba7eaad99c4fe5ab8d726072909c6b73c87f
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3aa5c262-0114-433f-bea5-d75296b8bcd2.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-length: 9209
x-amzn-requestid: a740ddf7-5325-4ac1-a694-aaa3d4345fe4
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: c5eNUGIroAMFdlQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6393aa55-08856c7b0757108a5c6811c9;Sampled=0
x-amzn-remapped-date: Fri, 09 Dec 2022 21:36:21 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: YUoiKVdDbKhNYwvJrsKp8RbC8Otq3ClQEmIx-HDe4wQYYompXjy2Yw==
via: 1.1 2afae0d44e2540f472c0635ab62c232a.cloudfront.net (CloudFront), 1.1 64f86ae1c24221f3a2e4d653d6dbc416.cloudfront.net (CloudFront), 1.1 google
date: Fri, 09 Dec 2022 22:04:44 GMT
age: 7682
etag: "cc916150425f00b44ede3ec473e3e248afabaf8d"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
ifcgmsconsultinggroup.com/wp-content/plugins/elementor/assets/lib/font-awesome/css/fontawesome.min.css?ver=5.15.3
161.97.187.97200 OK 0 B URL HTTP/2 ifcgmsconsultinggroup.com/wp-content/plugins/elementor/assets/lib/font-awesome/css/fontawesome.min.css?ver=5.15.3
IP 161.97.187.97:0
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/elementor/assets/lib/font-awesome/css/fontawesome.min.css?ver=5.15.3 HTTP/1.1
Host: ifcgmsconsultinggroup.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ifcgmsconsultinggroup.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 10 Dec 2022 00:12:40 GMT
content-type: text/css
last-modified: Sat, 26 Nov 2022 09:33:38 GMT
etag: W/"6381dd72-e238"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
ifcgmsconsultinggroup.com/wp-includes/js/dist/vendor/wp-polyfill.min.js?ver=3.15.0
161.97.187.97200 OK 0 B URL HTTP/2 ifcgmsconsultinggroup.com/wp-includes/js/dist/vendor/wp-polyfill.min.js?ver=3.15.0
IP 161.97.187.97:0
GET /wp-includes/js/dist/vendor/wp-polyfill.min.js?ver=3.15.0 HTTP/1.1
Host: ifcgmsconsultinggroup.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ifcgmsconsultinggroup.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 10 Dec 2022 00:12:40 GMT
content-type: application/javascript
last-modified: Tue, 08 Nov 2022 02:47:42 GMT
etag: W/"6369c34e-459f"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
ifcgmsconsultinggroup.com/wp-content/themes/consulting/inc/megamenu/assets/js/megamenu.js?ver=6.1.1
161.97.187.97200 OK 0 B URL HTTP/2 ifcgmsconsultinggroup.com/wp-content/themes/consulting/inc/megamenu/assets/js/megamenu.js?ver=6.1.1
IP 161.97.187.97:0
GET /wp-content/themes/consulting/inc/megamenu/assets/js/megamenu.js?ver=6.1.1 HTTP/1.1
Host: ifcgmsconsultinggroup.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ifcgmsconsultinggroup.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 10 Dec 2022 00:12:40 GMT
content-type: application/javascript
last-modified: Tue, 08 Nov 2022 02:42:14 GMT
etag: W/"6369c206-6af"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
ifcgmsconsultinggroup.com/wp-content/themes/consulting/assets/js/packery-mode.pkgd.min.js?ver=6.3.6
161.97.187.97200 OK 0 B URL HTTP/2 ifcgmsconsultinggroup.com/wp-content/themes/consulting/assets/js/packery-mode.pkgd.min.js?ver=6.3.6
IP 161.97.187.97:0
GET /wp-content/themes/consulting/assets/js/packery-mode.pkgd.min.js?ver=6.3.6 HTTP/1.1
Host: ifcgmsconsultinggroup.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ifcgmsconsultinggroup.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 10 Dec 2022 00:12:40 GMT
content-type: application/javascript
last-modified: Tue, 08 Nov 2022 02:42:14 GMT
etag: W/"6369c206-3532"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
ifcgmsconsultinggroup.com/wp-content/plugins/elementor-pro/assets/css/frontend-lite.min.css?ver=3.8.0
161.97.187.97200 OK 0 B URL HTTP/2 ifcgmsconsultinggroup.com/wp-content/plugins/elementor-pro/assets/css/frontend-lite.min.css?ver=3.8.0
IP 161.97.187.97:0
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/elementor-pro/assets/css/frontend-lite.min.css?ver=3.8.0 HTTP/1.1
Host: ifcgmsconsultinggroup.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ifcgmsconsultinggroup.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 10 Dec 2022 00:12:40 GMT
content-type: text/css
last-modified: Tue, 08 Nov 2022 02:42:01 GMT
etag: W/"6369c1f9-2e8e"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
ifcgmsconsultinggroup.com/wp-content/plugins/elementor/assets/lib/font-awesome/css/v4-shims.min.css?ver=3.8.1
161.97.187.97200 OK 0 B URL HTTP/2 ifcgmsconsultinggroup.com/wp-content/plugins/elementor/assets/lib/font-awesome/css/v4-shims.min.css?ver=3.8.1
IP 161.97.187.97:0
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/elementor/assets/lib/font-awesome/css/v4-shims.min.css?ver=3.8.1 HTTP/1.1
Host: ifcgmsconsultinggroup.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ifcgmsconsultinggroup.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 10 Dec 2022 00:12:40 GMT
content-type: text/css
last-modified: Sat, 26 Nov 2022 09:33:38 GMT
etag: W/"6381dd72-684e"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
ifcgmsconsultinggroup.com/wp-content/themes/consulting/assets/css/layouts/global_styles/main.css?ver=6.3.6
161.97.187.97200 OK 0 B URL HTTP/2 ifcgmsconsultinggroup.com/wp-content/themes/consulting/assets/css/layouts/global_styles/main.css?ver=6.3.6
IP 161.97.187.97:0
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/consulting/assets/css/layouts/global_styles/main.css?ver=6.3.6 HTTP/1.1
Host: ifcgmsconsultinggroup.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ifcgmsconsultinggroup.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 10 Dec 2022 00:12:40 GMT
content-type: text/css
last-modified: Tue, 08 Nov 2022 02:42:13 GMT
etag: W/"6369c205-fb21"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
ifcgmsconsultinggroup.com/wp-content/plugins/elementor/assets/lib/font-awesome/js/v4-shims.min.js?ver=3.8.1
161.97.187.97200 OK 0 B URL HTTP/2 ifcgmsconsultinggroup.com/wp-content/plugins/elementor/assets/lib/font-awesome/js/v4-shims.min.js?ver=3.8.1
IP 161.97.187.97:0
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/elementor/assets/lib/font-awesome/js/v4-shims.min.js?ver=3.8.1 HTTP/1.1
Host: ifcgmsconsultinggroup.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ifcgmsconsultinggroup.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 10 Dec 2022 00:12:40 GMT
content-type: application/javascript
last-modified: Sat, 26 Nov 2022 09:33:38 GMT
etag: W/"6381dd72-3acf"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
ifcgmsconsultinggroup.com/wp-content/plugins/elementor/assets/lib/font-awesome/css/all.min.css?ver=3.8.1
161.97.187.97200 OK 0 B URL HTTP/2 ifcgmsconsultinggroup.com/wp-content/plugins/elementor/assets/lib/font-awesome/css/all.min.css?ver=3.8.1
IP 161.97.187.97:0
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/elementor/assets/lib/font-awesome/css/all.min.css?ver=3.8.1 HTTP/1.1
Host: ifcgmsconsultinggroup.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ifcgmsconsultinggroup.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 10 Dec 2022 00:12:40 GMT
content-type: text/css
last-modified: Sat, 26 Nov 2022 09:33:38 GMT
etag: W/"6381dd72-e7d0"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
ifcgmsconsultinggroup.com/wp-content/themes/consulting/assets/css/layouts/layout_barcelona/main.css?ver=6.3.6
161.97.187.97200 OK 0 B URL HTTP/2 ifcgmsconsultinggroup.com/wp-content/themes/consulting/assets/css/layouts/layout_barcelona/main.css?ver=6.3.6
IP 161.97.187.97:0
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/consulting/assets/css/layouts/layout_barcelona/main.css?ver=6.3.6 HTTP/1.1
Host: ifcgmsconsultinggroup.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ifcgmsconsultinggroup.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 10 Dec 2022 00:12:40 GMT
content-type: text/css
last-modified: Tue, 08 Nov 2022 02:42:13 GMT
etag: W/"6369c205-ad14a"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
ifcgmsconsultinggroup.com/wp-content/themes/consulting/assets/js/owl.carousel.min.js?ver=6.3.6
161.97.187.97200 OK 0 B URL HTTP/2 ifcgmsconsultinggroup.com/wp-content/themes/consulting/assets/js/owl.carousel.min.js?ver=6.3.6
IP 161.97.187.97:0
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/consulting/assets/js/owl.carousel.min.js?ver=6.3.6 HTTP/1.1
Host: ifcgmsconsultinggroup.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ifcgmsconsultinggroup.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 10 Dec 2022 00:12:40 GMT
content-type: application/javascript
last-modified: Tue, 08 Nov 2022 02:42:14 GMT
etag: W/"6369c206-9dd1"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
fonts.googleapis.com/css?family=Poppins:600%2C700%7CRoboto:400&display=swap
142.250.74.106200 OK 0 B URL HTTP/2 fonts.googleapis.com/css?family=Poppins:600%2C700%7CRoboto:400&display=swap
IP 142.250.74.106:0
GET /css?family=Poppins:600%2C700%7CRoboto:400&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ifcgmsconsultinggroup.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Sat, 10 Dec 2022 00:12:40 GMT
date: Sat, 10 Dec 2022 00:12:40 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ifcgmsconsultinggroup.com/wp-content/plugins/elementor/assets/lib/waypoints/waypoints.min.js?ver=4.0.2
161.97.187.97200 OK 0 B URL HTTP/2 ifcgmsconsultinggroup.com/wp-content/plugins/elementor/assets/lib/waypoints/waypoints.min.js?ver=4.0.2
IP 161.97.187.97:0
GET /wp-content/plugins/elementor/assets/lib/waypoints/waypoints.min.js?ver=4.0.2 HTTP/1.1
Host: ifcgmsconsultinggroup.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ifcgmsconsultinggroup.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 10 Dec 2022 00:12:40 GMT
content-type: application/javascript
last-modified: Sat, 26 Nov 2022 09:33:38 GMT
etag: W/"6381dd72-2fa6"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
ifcgmsconsultinggroup.com/wp-content/themes/consulting/assets/css/header_builder.css?ver=6.3.6
161.97.187.97200 OK 0 B URL HTTP/2 ifcgmsconsultinggroup.com/wp-content/themes/consulting/assets/css/header_builder.css?ver=6.3.6
IP 161.97.187.97:0
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/consulting/assets/css/header_builder.css?ver=6.3.6 HTTP/1.1
Host: ifcgmsconsultinggroup.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ifcgmsconsultinggroup.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 10 Dec 2022 00:12:40 GMT
content-type: text/css
last-modified: Tue, 08 Nov 2022 02:42:13 GMT
etag: W/"6369c205-9cb"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
ifcgmsconsultinggroup.com/wp-content/plugins/elementor/assets/lib/animations/animations.min.css?ver=3.8.1
161.97.187.97200 OK 0 B URL HTTP/2 ifcgmsconsultinggroup.com/wp-content/plugins/elementor/assets/lib/animations/animations.min.css?ver=3.8.1
IP 161.97.187.97:0
GET /wp-content/plugins/elementor/assets/lib/animations/animations.min.css?ver=3.8.1 HTTP/1.1
Host: ifcgmsconsultinggroup.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ifcgmsconsultinggroup.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 10 Dec 2022 00:12:40 GMT
content-type: text/css
last-modified: Sat, 26 Nov 2022 09:33:38 GMT
etag: W/"6381dd72-4824"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
ifcgmsconsultinggroup.com/wp-content/themes/consulting/assets/js/jquery.fancybox.pack.js?ver=6.3.6
161.97.187.97200 OK 0 B URL HTTP/2 ifcgmsconsultinggroup.com/wp-content/themes/consulting/assets/js/jquery.fancybox.pack.js?ver=6.3.6
IP 161.97.187.97:0
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/consulting/assets/js/jquery.fancybox.pack.js?ver=6.3.6 HTTP/1.1
Host: ifcgmsconsultinggroup.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ifcgmsconsultinggroup.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 10 Dec 2022 00:12:40 GMT
content-type: application/javascript
last-modified: Tue, 08 Nov 2022 02:42:14 GMT
etag: W/"6369c206-10a9d"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
ifcgmsconsultinggroup.com/wp-content/plugins/elementor-pro/assets/js/webpack-pro.runtime.min.js?ver=3.8.0
161.97.187.97200 OK 0 B URL HTTP/2 ifcgmsconsultinggroup.com/wp-content/plugins/elementor-pro/assets/js/webpack-pro.runtime.min.js?ver=3.8.0
IP 161.97.187.97:0
GET /wp-content/plugins/elementor-pro/assets/js/webpack-pro.runtime.min.js?ver=3.8.0 HTTP/1.1
Host: ifcgmsconsultinggroup.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ifcgmsconsultinggroup.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 10 Dec 2022 00:12:40 GMT
content-type: application/javascript
last-modified: Tue, 08 Nov 2022 02:42:01 GMT
etag: W/"6369c1f9-1472"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
ifcgmsconsultinggroup.com/wp-content/plugins/elementor-pro/assets/js/frontend.min.js?ver=3.8.0
161.97.187.97200 OK 0 B URL HTTP/2 ifcgmsconsultinggroup.com/wp-content/plugins/elementor-pro/assets/js/frontend.min.js?ver=3.8.0
IP 161.97.187.97:0
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/elementor-pro/assets/js/frontend.min.js?ver=3.8.0 HTTP/1.1
Host: ifcgmsconsultinggroup.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ifcgmsconsultinggroup.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 10 Dec 2022 00:12:40 GMT
content-type: application/javascript
last-modified: Tue, 08 Nov 2022 02:42:01 GMT
etag: W/"6369c1f9-54a3"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
ifcgmsconsultinggroup.com/wp-content/uploads/elementor/css/post-6.css?ver=1669456559
161.97.187.97200 OK 0 B URL HTTP/2 ifcgmsconsultinggroup.com/wp-content/uploads/elementor/css/post-6.css?ver=1669456559
IP 161.97.187.97:0
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/uploads/elementor/css/post-6.css?ver=1669456559 HTTP/1.1
Host: ifcgmsconsultinggroup.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ifcgmsconsultinggroup.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 10 Dec 2022 00:12:40 GMT
content-type: text/css
last-modified: Sat, 26 Nov 2022 09:55:59 GMT
etag: W/"6381e2af-488"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
ifcgmsconsultinggroup.com/wp-content/themes/consulting/style.css?ver=6.3.6
161.97.187.97200 OK 0 B URL HTTP/2 ifcgmsconsultinggroup.com/wp-content/themes/consulting/style.css?ver=6.3.6
IP 161.97.187.97:0
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/consulting/style.css?ver=6.3.6 HTTP/1.1
Host: ifcgmsconsultinggroup.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ifcgmsconsultinggroup.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 10 Dec 2022 00:12:40 GMT
content-type: text/css
last-modified: Tue, 08 Nov 2022 02:42:15 GMT
etag: W/"6369c207-4fec"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
ifcgmsconsultinggroup.com/wp-includes/js/dist/i18n.min.js?ver=9e794f35a71bb98672ae
161.97.187.97200 OK 0 B URL HTTP/2 ifcgmsconsultinggroup.com/wp-includes/js/dist/i18n.min.js?ver=9e794f35a71bb98672ae
IP 161.97.187.97:0
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/dist/i18n.min.js?ver=9e794f35a71bb98672ae HTTP/1.1
Host: ifcgmsconsultinggroup.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ifcgmsconsultinggroup.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 10 Dec 2022 00:12:40 GMT
content-type: application/javascript
last-modified: Tue, 08 Nov 2022 02:47:42 GMT
etag: W/"6369c34e-27f6"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
ifcgmsconsultinggroup.com/wp-content/plugins/elementor/assets/lib/eicons/css/elementor-icons.min.css?ver=5.16.0
161.97.187.97200 OK 0 B URL HTTP/2 ifcgmsconsultinggroup.com/wp-content/plugins/elementor/assets/lib/eicons/css/elementor-icons.min.css?ver=5.16.0
IP 161.97.187.97:0
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/elementor/assets/lib/eicons/css/elementor-icons.min.css?ver=5.16.0 HTTP/1.1
Host: ifcgmsconsultinggroup.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ifcgmsconsultinggroup.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 10 Dec 2022 00:12:40 GMT
content-type: text/css
last-modified: Sat, 26 Nov 2022 09:33:38 GMT
etag: W/"6381dd72-4b4f"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
ifcgmsconsultinggroup.com/wp-content/uploads/essential-addons-elementor/eael-7435.css?ver=1669396630
161.97.187.97200 OK 0 B URL HTTP/2 ifcgmsconsultinggroup.com/wp-content/uploads/essential-addons-elementor/eael-7435.css?ver=1669396630
IP 161.97.187.97:0
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/uploads/essential-addons-elementor/eael-7435.css?ver=1669396630 HTTP/1.1
Host: ifcgmsconsultinggroup.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ifcgmsconsultinggroup.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 10 Dec 2022 00:12:40 GMT
content-type: text/css
last-modified: Tue, 08 Nov 2022 02:42:20 GMT
etag: W/"6369c20c-141f"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
ifcgmsconsultinggroup.com/wp-content/plugins/elementor-pro/assets/css/widget-carousel.min.css
161.97.187.97200 OK 0 B URL HTTP/2 ifcgmsconsultinggroup.com/wp-content/plugins/elementor-pro/assets/css/widget-carousel.min.css
IP 161.97.187.97:0
GET /wp-content/plugins/elementor-pro/assets/css/widget-carousel.min.css HTTP/1.1
Host: ifcgmsconsultinggroup.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ifcgmsconsultinggroup.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 10 Dec 2022 00:12:40 GMT
content-type: text/css
last-modified: Tue, 08 Nov 2022 02:42:01 GMT
etag: W/"6369c1f9-9011"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
ifcgmsconsultinggroup.com/wp-content/themes/consulting/assets/css/font-awesome.min.css?ver=6.3.6
161.97.187.97200 OK 0 B URL HTTP/2 ifcgmsconsultinggroup.com/wp-content/themes/consulting/assets/css/font-awesome.min.css?ver=6.3.6
IP 161.97.187.97:0
GET /wp-content/themes/consulting/assets/css/font-awesome.min.css?ver=6.3.6 HTTP/1.1
Host: ifcgmsconsultinggroup.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ifcgmsconsultinggroup.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 10 Dec 2022 00:12:40 GMT
content-type: text/css
last-modified: Tue, 08 Nov 2022 02:42:13 GMT
etag: W/"6369c205-792c"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
ifcgmsconsultinggroup.com/wp-content/uploads/2022/11/gm6.png
161.97.187.97200 OK 0 B URL HTTP/2 ifcgmsconsultinggroup.com/wp-content/uploads/2022/11/gm6.png
IP 161.97.187.97:0
GET /wp-content/uploads/2022/11/gm6.png HTTP/1.1
Host: ifcgmsconsultinggroup.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ifcgmsconsultinggroup.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 10 Dec 2022 00:12:40 GMT
content-type: image/png
content-length: 26225
last-modified: Tue, 08 Nov 2022 02:42:17 GMT
etag: "6369c209-6671"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
ifcgmsconsultinggroup.com/wp-content/plugins/essential-addons-for-elementor-lite/assets/front-end/css/view/general.min.css?ver=5.4.4
161.97.187.97200 OK 0 B URL HTTP/2 ifcgmsconsultinggroup.com/wp-content/plugins/essential-addons-for-elementor-lite/assets/front-end/css/view/general.min.css?ver=5.4.4
IP 161.97.187.97:0
GET /wp-content/plugins/essential-addons-for-elementor-lite/assets/front-end/css/view/general.min.css?ver=5.4.4 HTTP/1.1
Host: ifcgmsconsultinggroup.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ifcgmsconsultinggroup.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 10 Dec 2022 00:12:40 GMT
content-type: text/css
last-modified: Sat, 26 Nov 2022 09:33:55 GMT
etag: W/"6381dd83-d69"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
ifcgmsconsultinggroup.com/wp-content/themes/consulting/inc/megamenu/assets/css/megamenu.css?ver=6.1.1
161.97.187.97200 OK 0 B URL HTTP/2 ifcgmsconsultinggroup.com/wp-content/themes/consulting/inc/megamenu/assets/css/megamenu.css?ver=6.1.1
IP 161.97.187.97:0
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/consulting/inc/megamenu/assets/css/megamenu.css?ver=6.1.1 HTTP/1.1
Host: ifcgmsconsultinggroup.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ifcgmsconsultinggroup.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 10 Dec 2022 00:12:40 GMT
content-type: text/css
last-modified: Tue, 08 Nov 2022 02:42:14 GMT
etag: W/"6369c206-39fc"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
ifcgmsconsultinggroup.com/wp-content/plugins/revslider/public/assets/css/rs6.css?ver=6.6.3
161.97.187.97200 OK 0 B URL HTTP/2 ifcgmsconsultinggroup.com/wp-content/plugins/revslider/public/assets/css/rs6.css?ver=6.6.3
IP 161.97.187.97:0
GET /wp-content/plugins/revslider/public/assets/css/rs6.css?ver=6.6.3 HTTP/1.1
Host: ifcgmsconsultinggroup.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ifcgmsconsultinggroup.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 10 Dec 2022 00:12:40 GMT
content-type: text/css
last-modified: Tue, 08 Nov 2022 02:42:09 GMT
etag: W/"6369c201-e394"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
ifcgmsconsultinggroup.com/wp-includes/js/wp-util.min.js?ver=6.1.1
161.97.187.97200 OK 0 B URL HTTP/2 ifcgmsconsultinggroup.com/wp-includes/js/wp-util.min.js?ver=6.1.1
IP 161.97.187.97:0
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/wp-util.min.js?ver=6.1.1 HTTP/1.1
Host: ifcgmsconsultinggroup.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ifcgmsconsultinggroup.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 10 Dec 2022 00:12:40 GMT
content-type: application/javascript
last-modified: Tue, 08 Nov 2022 02:47:42 GMT
etag: W/"6369c34e-592"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
fonts.googleapis.com/css?family=Poppins%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2Cregular%2Citalic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic&ver=6.3.6
142.250.74.106200 OK 0 B URL HTTP/2 fonts.googleapis.com/css?family=Poppins%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2Cregular%2Citalic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic&ver=6.3.6
IP 142.250.74.106:0
GET /css?family=Poppins%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2Cregular%2Citalic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic&ver=6.3.6 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ifcgmsconsultinggroup.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Sat, 10 Dec 2022 00:12:40 GMT
date: Sat, 10 Dec 2022 00:12:40 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ifcgmsconsultinggroup.com/wp-content/plugins/pearl-header-builder/assets/frontend/assets/js/app.js?ver=1.0
161.97.187.97200 OK 0 B URL HTTP/2 ifcgmsconsultinggroup.com/wp-content/plugins/pearl-header-builder/assets/frontend/assets/js/app.js?ver=1.0
IP 161.97.187.97:0
GET /wp-content/plugins/pearl-header-builder/assets/frontend/assets/js/app.js?ver=1.0 HTTP/1.1
Host: ifcgmsconsultinggroup.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ifcgmsconsultinggroup.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 10 Dec 2022 00:12:40 GMT
content-type: application/javascript
last-modified: Tue, 08 Nov 2022 02:42:06 GMT
etag: W/"6369c1fe-c93"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
ifcgmsconsultinggroup.com/wp-content/uploads/elementor/css/post-1071.css?ver=1669456561
161.97.187.97200 OK 0 B URL HTTP/2 ifcgmsconsultinggroup.com/wp-content/uploads/elementor/css/post-1071.css?ver=1669456561
IP 161.97.187.97:0
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/uploads/elementor/css/post-1071.css?ver=1669456561 HTTP/1.1
Host: ifcgmsconsultinggroup.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ifcgmsconsultinggroup.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 10 Dec 2022 00:12:40 GMT
content-type: text/css
last-modified: Sat, 26 Nov 2022 09:56:01 GMT
etag: W/"6381e2b1-d6da"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
ifcgmsconsultinggroup.com/wp-content/plugins/elementor/assets/css/widget-icon-list.min.css
161.97.187.97200 OK 0 B URL HTTP/2 ifcgmsconsultinggroup.com/wp-content/plugins/elementor/assets/css/widget-icon-list.min.css
IP 161.97.187.97:0
GET /wp-content/plugins/elementor/assets/css/widget-icon-list.min.css HTTP/1.1
Host: ifcgmsconsultinggroup.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ifcgmsconsultinggroup.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 10 Dec 2022 00:12:40 GMT
content-type: text/css
last-modified: Sat, 26 Nov 2022 09:33:38 GMT
etag: W/"6381dd72-2dff"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
ifcgmsconsultinggroup.com/wp-includes/js/dist/vendor/regenerator-runtime.min.js?ver=0.13.9
161.97.187.97200 OK 0 B URL HTTP/2 ifcgmsconsultinggroup.com/wp-includes/js/dist/vendor/regenerator-runtime.min.js?ver=0.13.9
IP 161.97.187.97:0
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/dist/vendor/regenerator-runtime.min.js?ver=0.13.9 HTTP/1.1
Host: ifcgmsconsultinggroup.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ifcgmsconsultinggroup.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 10 Dec 2022 00:12:40 GMT
content-type: application/javascript
last-modified: Tue, 08 Nov 2022 02:42:23 GMT
etag: W/"6369c20f-194b"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
ifcgmsconsultinggroup.com/wp-content/plugins/elementor/assets/js/webpack.runtime.min.js?ver=3.8.1
161.97.187.97200 OK 0 B URL HTTP/2 ifcgmsconsultinggroup.com/wp-content/plugins/elementor/assets/js/webpack.runtime.min.js?ver=3.8.1
IP 161.97.187.97:0
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/elementor/assets/js/webpack.runtime.min.js?ver=3.8.1 HTTP/1.1
Host: ifcgmsconsultinggroup.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ifcgmsconsultinggroup.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 10 Dec 2022 00:12:40 GMT
content-type: application/javascript
last-modified: Sat, 26 Nov 2022 09:33:38 GMT
etag: W/"6381dd72-135d"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
ifcgmsconsultinggroup.com/wp-content/themes/consulting/assets/css/select2.min.css?ver=6.3.6
161.97.187.97200 OK 0 B URL HTTP/2 ifcgmsconsultinggroup.com/wp-content/themes/consulting/assets/css/select2.min.css?ver=6.3.6
IP 161.97.187.97:0
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/consulting/assets/css/select2.min.css?ver=6.3.6 HTTP/1.1
Host: ifcgmsconsultinggroup.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ifcgmsconsultinggroup.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 10 Dec 2022 00:12:40 GMT
content-type: text/css
last-modified: Tue, 08 Nov 2022 02:42:13 GMT
etag: W/"6369c205-3a4b"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
ifcgmsconsultinggroup.com/wp-content/themes/consulting/assets/js/isotope.pkgd.min.js?ver=6.3.6
161.97.187.97200 OK 0 B URL HTTP/2 ifcgmsconsultinggroup.com/wp-content/themes/consulting/assets/js/isotope.pkgd.min.js?ver=6.3.6
IP 161.97.187.97:0
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/consulting/assets/js/isotope.pkgd.min.js?ver=6.3.6 HTTP/1.1
Host: ifcgmsconsultinggroup.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ifcgmsconsultinggroup.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 10 Dec 2022 00:12:40 GMT
content-type: application/javascript
last-modified: Tue, 08 Nov 2022 02:42:14 GMT
etag: W/"6369c206-86e2"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
ifcgmsconsultinggroup.com/wp-content/themes/consulting/assets/css/jquery.fancybox.css?ver=6.3.6
161.97.187.97200 OK 0 B URL HTTP/2 ifcgmsconsultinggroup.com/wp-content/themes/consulting/assets/css/jquery.fancybox.css?ver=6.3.6
IP 161.97.187.97:0
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/consulting/assets/css/jquery.fancybox.css?ver=6.3.6 HTTP/1.1
Host: ifcgmsconsultinggroup.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ifcgmsconsultinggroup.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 10 Dec 2022 00:12:40 GMT
content-type: text/css
last-modified: Tue, 08 Nov 2022 02:42:13 GMT
etag: W/"6369c205-4404"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
ifcgmsconsultinggroup.com/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2
161.97.187.97200 OK 0 B URL HTTP/2 ifcgmsconsultinggroup.com/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2
IP 161.97.187.97:0
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2 HTTP/1.1
Host: ifcgmsconsultinggroup.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ifcgmsconsultinggroup.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 10 Dec 2022 00:12:40 GMT
content-type: application/javascript
last-modified: Tue, 08 Nov 2022 02:42:23 GMT
etag: W/"6369c20f-2bd8"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
ifcgmsconsultinggroup.com/wp-content/plugins/elementor/assets/js/frontend-modules.min.js?ver=3.8.1
161.97.187.97200 OK 0 B URL HTTP/2 ifcgmsconsultinggroup.com/wp-content/plugins/elementor/assets/js/frontend-modules.min.js?ver=3.8.1
IP 161.97.187.97:0
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/elementor/assets/js/frontend-modules.min.js?ver=3.8.1 HTTP/1.1
Host: ifcgmsconsultinggroup.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ifcgmsconsultinggroup.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 10 Dec 2022 00:12:40 GMT
content-type: application/javascript
last-modified: Sat, 26 Nov 2022 09:33:38 GMT
etag: W/"6381dd72-80b3"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
ifcgmsconsultinggroup.com/wp-includes/js/jquery/ui/core.min.js?ver=1.13.2
161.97.187.97200 OK 0 B URL HTTP/2 ifcgmsconsultinggroup.com/wp-includes/js/jquery/ui/core.min.js?ver=1.13.2
IP 161.97.187.97:0
GET /wp-includes/js/jquery/ui/core.min.js?ver=1.13.2 HTTP/1.1
Host: ifcgmsconsultinggroup.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ifcgmsconsultinggroup.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 10 Dec 2022 00:12:40 GMT
content-type: application/javascript
last-modified: Tue, 08 Nov 2022 02:47:42 GMT
etag: W/"6369c34e-53c0"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
ifcgmsconsultinggroup.com/wp-content/uploads/stm_uploads/theme_options.css?ver=6.3.6
161.97.187.97200 OK 0 B URL HTTP/2 ifcgmsconsultinggroup.com/wp-content/uploads/stm_uploads/theme_options.css?ver=6.3.6
IP 161.97.187.97:0
GET /wp-content/uploads/stm_uploads/theme_options.css?ver=6.3.6 HTTP/1.1
Host: ifcgmsconsultinggroup.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ifcgmsconsultinggroup.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 10 Dec 2022 00:12:40 GMT
content-type: text/css
last-modified: Tue, 08 Nov 2022 04:29:38 GMT
etag: W/"6369db32-21c9"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
ifcgmsconsultinggroup.com/wp-content/plugins/header-footer-elementor/inc/widgets-css/frontend.css?ver=1.6.13
161.97.187.97200 OK 0 B URL HTTP/2 ifcgmsconsultinggroup.com/wp-content/plugins/header-footer-elementor/inc/widgets-css/frontend.css?ver=1.6.13
IP 161.97.187.97:0
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/header-footer-elementor/inc/widgets-css/frontend.css?ver=1.6.13 HTTP/1.1
Host: ifcgmsconsultinggroup.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ifcgmsconsultinggroup.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 10 Dec 2022 00:12:40 GMT
content-type: text/css
last-modified: Tue, 08 Nov 2022 02:42:06 GMT
etag: W/"6369c1fe-127a4"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
ifcgmsconsultinggroup.com/wp-includes/js/imagesloaded.min.js?ver=4.1.4
161.97.187.97200 OK 0 B URL HTTP/2 ifcgmsconsultinggroup.com/wp-includes/js/imagesloaded.min.js?ver=4.1.4
IP 161.97.187.97:0
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/imagesloaded.min.js?ver=4.1.4 HTTP/1.1
Host: ifcgmsconsultinggroup.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ifcgmsconsultinggroup.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 10 Dec 2022 00:12:40 GMT
content-type: application/javascript
last-modified: Tue, 08 Nov 2022 02:42:23 GMT
etag: W/"6369c20f-15fd"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
ifcgmsconsultinggroup.com/wp-content/plugins/stm-post-type/theme-options/nuxy/metaboxes/assets/vendors/font-awesome.min.css?ver=1670631159
161.97.187.97200 OK 0 B URL HTTP/2 ifcgmsconsultinggroup.com/wp-content/plugins/stm-post-type/theme-options/nuxy/metaboxes/assets/vendors/font-awesome.min.css?ver=1670631159
IP 161.97.187.97:0
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/stm-post-type/theme-options/nuxy/metaboxes/assets/vendors/font-awesome.min.css?ver=1670631159 HTTP/1.1
Host: ifcgmsconsultinggroup.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ifcgmsconsultinggroup.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 10 Dec 2022 00:12:40 GMT
content-type: text/css
last-modified: Tue, 08 Nov 2022 02:42:10 GMT
etag: W/"6369c202-e7d0"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
fonts.googleapis.com/css?family=Roboto%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic%7CRoboto+Slab%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic%7CPoppins%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic&display=swap&ver=6.1.1
142.250.74.106200 OK 0 B URL HTTP/2 fonts.googleapis.com/css?family=Roboto%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic%7CRoboto+Slab%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic%7CPoppins%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic&display=swap&ver=6.1.1
IP 142.250.74.106:0
GET /css?family=Roboto%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic%7CRoboto+Slab%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic%7CPoppins%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic&display=swap&ver=6.1.1 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ifcgmsconsultinggroup.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Sat, 10 Dec 2022 00:12:40 GMT
date: Sat, 10 Dec 2022 00:12:40 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ifcgmsconsultinggroup.com/wp-includes/js/jquery/jquery.min.js?ver=3.6.1
161.97.187.97200 OK 0 B URL HTTP/2 ifcgmsconsultinggroup.com/wp-includes/js/jquery/jquery.min.js?ver=3.6.1
IP 161.97.187.97:0
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/jquery/jquery.min.js?ver=3.6.1 HTTP/1.1
Host: ifcgmsconsultinggroup.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ifcgmsconsultinggroup.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 10 Dec 2022 00:12:40 GMT
content-type: application/javascript
last-modified: Tue, 08 Nov 2022 02:47:42 GMT
etag: W/"6369c34e-15e54"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
ifcgmsconsultinggroup.com/wp-content/themes/consulting/assets/css/owl.carousel.css?ver=6.3.6
161.97.187.97200 OK 0 B URL HTTP/2 ifcgmsconsultinggroup.com/wp-content/themes/consulting/assets/css/owl.carousel.css?ver=6.3.6
IP 161.97.187.97:0
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/consulting/assets/css/owl.carousel.css?ver=6.3.6 HTTP/1.1
Host: ifcgmsconsultinggroup.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ifcgmsconsultinggroup.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 10 Dec 2022 00:12:40 GMT
content-type: text/css
last-modified: Tue, 08 Nov 2022 02:42:13 GMT
etag: W/"6369c205-c62"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
ifcgmsconsultinggroup.com/wp-content/plugins/pearl-header-builder/assets/frontend/assets/js/sticky.js?ver=1.0
161.97.187.97200 OK 0 B URL HTTP/2 ifcgmsconsultinggroup.com/wp-content/plugins/pearl-header-builder/assets/frontend/assets/js/sticky.js?ver=1.0
IP 161.97.187.97:0
GET /wp-content/plugins/pearl-header-builder/assets/frontend/assets/js/sticky.js?ver=1.0 HTTP/1.1
Host: ifcgmsconsultinggroup.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ifcgmsconsultinggroup.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 10 Dec 2022 00:12:40 GMT
content-type: application/javascript
last-modified: Tue, 08 Nov 2022 02:42:06 GMT
etag: W/"6369c1fe-8c0"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
ifcgmsconsultinggroup.com/wp-includes/js/dist/hooks.min.js?ver=4169d3cf8e8d95a3d6d5
161.97.187.97200 OK 0 B URL HTTP/2 ifcgmsconsultinggroup.com/wp-includes/js/dist/hooks.min.js?ver=4169d3cf8e8d95a3d6d5
IP 161.97.187.97:0
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/dist/hooks.min.js?ver=4169d3cf8e8d95a3d6d5 HTTP/1.1
Host: ifcgmsconsultinggroup.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ifcgmsconsultinggroup.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 10 Dec 2022 00:12:40 GMT
content-type: application/javascript
last-modified: Tue, 08 Nov 2022 02:42:23 GMT
etag: W/"6369c20f-132e"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
ifcgmsconsultinggroup.com/wp-content/themes/consulting/assets/css/bootstrap.min.css?ver=6.3.6
161.97.187.97200 OK 0 B URL HTTP/2 ifcgmsconsultinggroup.com/wp-content/themes/consulting/assets/css/bootstrap.min.css?ver=6.3.6
IP 161.97.187.97:0
GET /wp-content/themes/consulting/assets/css/bootstrap.min.css?ver=6.3.6 HTTP/1.1
Host: ifcgmsconsultinggroup.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ifcgmsconsultinggroup.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 10 Dec 2022 00:12:40 GMT
content-type: text/css
last-modified: Tue, 08 Nov 2022 02:42:13 GMT
etag: W/"6369c205-1cdcd"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2