| test.igmg.site/ |  51.195.6.66 | 301 Moved Permanently | 162 B |
IP51.195.6.66:0
File typeHTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators Hash4f8e702cc244ec5d4de32740c0ecbd97 3adb1f02d5b6054de0046e367c1d687b6cdf7aff 9e17cb15dd75bbbd5dbb984eda674863c3b10ab72613cf8a39a00c3e11a8492a
| Analyzer | Verdict | Alert |
|---|
| fortinet | Malware | |
GET / HTTP/1.1
Host: test.igmg.site
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Server: nginx
Date: Mon, 05 Dec 2022 06:58:58 GMT
Content-Type: text/html
Content-Length: 162
Connection: keep-alive
Location: https://test.igmg.site/
|
|
| r3.o.lencr.org/ |  23.36.76.226 | 200 OK | 503 B |
IP23.36.76.226:0 ASN#20940 Akamai International B.V.
Hashcfec3d7283a9b66d2be426ce54d210f3 808c1feb1ba918951d1928c1f6bfc0c253262774 1bad6c06aa3e88dcbc125fc98a6cb753eb2b18d2c8dd61da21d12209aeeda3f9
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "1BAD6C06AA3E88DCBC125FC98A6CB753EB2B18D2C8DD61DA21D12209AEEDA3F9"
Last-Modified: Sat, 03 Dec 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=12741
Expires: Mon, 05 Dec 2022 10:31:19 GMT
Date: Mon, 05 Dec 2022 06:58:58 GMT
Connection: keep-alive
|
|
| ocsp.digicert.com/ |  93.184.220.29 | 200 OK | 471 B |
IP93.184.220.29:0
Hashfb2c0697c6d9a96a5411dd2952947458 79e57f831ec396bbdaa5bfe9472a05e6c9fb31f4 3fd7edcc349ab4402f62e54a142be6b4cecf0e7ee3f431d3168bdf0643ba4d92
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5810
Cache-Control: max-age=104949
Content-Type: application/ocsp-response
Date: Mon, 05 Dec 2022 06:58:58 GMT
Etag: "638c76f5-1d7"
Expires: Tue, 06 Dec 2022 12:08:07 GMT
Last-Modified: Sun, 04 Dec 2022 10:31:17 GMT
Server: ECS (ska/F712)
X-Cache: HIT
Content-Length: 471
|
|
| r3.o.lencr.org/ | 23.36.76.226 | 200 OK | 503 B |
IP23.36.76.226:0 ASN#20940 Akamai International B.V.
Hash1ea206ac3c440825741687351f8c6e4e 2f38dafd8c43dcce2411a0590bc5c02cd6286735 7d7232c8c91bcd18161ba2c9d23e3bff159604e058bd5b3fc1c7fcbcd03a7ee3
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "7D7232C8C91BCD18161BA2C9D23E3BFF159604E058BD5B3FC1C7FCBCD03A7EE3"
Last-Modified: Sat, 03 Dec 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=12448
Expires: Mon, 05 Dec 2022 10:26:26 GMT
Date: Mon, 05 Dec 2022 06:58:58 GMT
Connection: keep-alive
|
|
| firefox.settings.services.mozilla.com/v1/ |  34.102.187.140 | 200 OK | 939 B |
URL HTTP/2firefox.settings.services.mozilla.com/v1/ IP34.102.187.140:0
File typeJSON data\012- , ASCII text, with very long lines (939), with no line terminators Hash30db107dcf4380cef05efea409c2e6a3 96e6a306fbc07299aba64e5c14e2bfca35872fa9 b64051a4a8e346e3c72b2aef77f360a5736ab5e16711d8e0bae3876feaa15b6e
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Retry-After, Content-Type, Backoff, Content-Length, Alert
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Mon, 05 Dec 2022 06:20:13 GMT
cache-control: public,max-age=3600
content-type: application/json
age: 2325
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain | 34.160.144.191 | 200 OK | 5.3 kB |
URL HTTP/2content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain IP34.160.144.191:0
File typePEM certificate\012- , ASCII text Hash9ebddc2b260d081ebbefee47c037cb28 492bad62a7ca6a74738921ef5ae6f0be5edebf39 74bbb7cba16f7d084a08a0907d47d7496e5c148f904707ec6950f8f6a61027e5
GET /chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: xZSbjMZfFzFO3nNF5lW5KCAssz1TWdtGOw0VK5CK7tDjMRHNJEHoQWbuzpX9evdMP3M9+917970=
x-amz-request-id: 8STX7401RYVVETWN
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Mon, 05 Dec 2022 06:47:52 GMT
age: 666
last-modified: Thu, 10 Nov 2022 09:21:27 GMT
etag: "9ebddc2b260d081ebbefee47c037cb28"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| contile.services.mozilla.com/v1/tiles | 34.117.237.239 | 200 OK | 12 B |
URL HTTP/2contile.services.mozilla.com/v1/tiles IP34.117.237.239:0
File typeJSON data\012- , ASCII text, with no line terminators Hash23e88fb7b99543fb33315b29b1fad9d6 a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce 7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Mon, 05 Dec 2022 06:58:58 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| r3.o.lencr.org/ | 23.36.76.226 | 200 OK | 503 B |
IP23.36.76.226:0 ASN#20940 Akamai International B.V.
Hashde47dc5c6cc017bb01b8aac07444540c d27a8690b3b8f4e44b01ebb4279482ec1569aabd 20f5d8d4ce312d2d1f8d9652ad18495c3432f2eb072636b6937f1ddc8ccf1ae0
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "20F5D8D4CE312D2D1F8D9652AD18495C3432F2EB072636B6937F1DDC8CCF1AE0"
Last-Modified: Sat, 03 Dec 2022 07:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21586
Expires: Mon, 05 Dec 2022 12:58:44 GMT
Date: Mon, 05 Dec 2022 06:58:58 GMT
Connection: keep-alive
|
|
| ocsp.digicert.com/ | 93.184.220.29 | 200 OK | 278 B |
IP93.184.220.29:0
Hash5d17643cb7d9da06ff2207534716c5fa e5570b9aba70d191a4bc1fb5409a4343d76de066 2ebc061d9e88cb42e802089b8dde62b7d8f71c9ccb901e4b56df64fa04b68fc5
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4879
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Mon, 05 Dec 2022 06:58:58 GMT
Last-Modified: Mon, 05 Dec 2022 05:37:39 GMT
Server: ECS (ska/F712)
X-Cache: HIT
Content-Length: 278
|
|
| ocsp.digicert.com/ | 93.184.220.29 | 200 OK | 278 B |
IP93.184.220.29:0
Hash1245db08bc06bdc452fdb41b8e959f26 ba2fa041fbea0e124b6fd418724a46225fac0089 d591926f6495b722a0b545d292f16a342cba87889fd7d4f5ca448c3613760be6
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6243
Cache-Control: max-age=141008
Content-Type: application/ocsp-response
Date: Mon, 05 Dec 2022 06:58:58 GMT
Etag: "638d021f-116"
Expires: Tue, 06 Dec 2022 22:09:06 GMT
Last-Modified: Sun, 04 Dec 2022 20:25:03 GMT
Server: ECS (ska/F712)
X-Cache: HIT
Content-Length: 278
|
|
| ocsp.digicert.com/ | 93.184.220.29 | 200 OK | 278 B |
IP93.184.220.29:0
Hash5d17643cb7d9da06ff2207534716c5fa e5570b9aba70d191a4bc1fb5409a4343d76de066 2ebc061d9e88cb42e802089b8dde62b7d8f71c9ccb901e4b56df64fa04b68fc5
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5139
Cache-Control: max-age=120106
Content-Type: application/ocsp-response
Date: Mon, 05 Dec 2022 06:58:58 GMT
Etag: "638cb4c9-116"
Expires: Tue, 06 Dec 2022 16:20:44 GMT
Last-Modified: Sun, 04 Dec 2022 14:55:05 GMT
Server: ECS (ska/F719)
X-Cache: HIT
Content-Length: 278
|
|
| ocsp.digicert.com/ | 93.184.220.29 | 200 OK | 278 B |
IP93.184.220.29:0
Hash5d17643cb7d9da06ff2207534716c5fa e5570b9aba70d191a4bc1fb5409a4343d76de066 2ebc061d9e88cb42e802089b8dde62b7d8f71c9ccb901e4b56df64fa04b68fc5
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4879
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Mon, 05 Dec 2022 06:58:58 GMT
Last-Modified: Mon, 05 Dec 2022 05:37:39 GMT
Server: ECS (ska/F712)
X-Cache: HIT
Content-Length: 278
|
|
| ocsp.pki.goog/gts1c3 | 142.250.74.131 | 200 OK | 472 B |
IP142.250.74.131:0
Hash7dfb548d8f8a99d32050803775fad5d6 8b47999a01db7c2217d76a1cec576809a229cf1b 68dd2a1e5a0002f4d25d3b5884ab55bc6b5a91e38f6dc464c4261b19c6e5887e
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 05 Dec 2022 06:58:58 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| test.igmg.site/images/igmg_os_logo.png | 51.195.6.66 | 200 OK | 4.9 kB |
URL HTTP/2test.igmg.site/images/igmg_os_logo.png IP51.195.6.66:0
File typePNG image data, 400 x 54, 8-bit/color RGBA, non-interlaced\012- data Hashbb5bd0155bb30ba44c129be28c0e3428 885a119b71895fa9699bb1afff6f5d503364744a 3347cf02ef082e471361b37cdc867dea84e44c7ce138502c13e8284855d2d4a1
GET /images/igmg_os_logo.png HTTP/1.1
Host: test.igmg.site
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://test.igmg.site/
Cookie: PHPSESSID=iig4navvqovegf0vmkkt985oie
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 05 Dec 2022 06:58:58 GMT
content-type: image/png
content-length: 4912
last-modified: Mon, 04 Jul 2022 20:24:22 GMT
etag: "62c34c76-1330"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| test.igmg.site/images/program5.png?r=297296834 | 51.195.6.66 | 200 OK | 34 kB |
URL HTTP/2test.igmg.site/images/program5.png?r=297296834 IP51.195.6.66:0
File typePNG image data, 150 x 150, 8-bit/color RGB, non-interlaced\012- data Hash10df1fbe515007849e1dce800a69b332 3476224effecaa7c050cdebba17da09699e356c5 f914c7f0a5075be27429eae01730847ab78864d092d6e3cfdedcc9f08d95ea74
| Analyzer | Verdict | Alert |
|---|
| fortinet | Malware | |
GET /images/program5.png?r=297296834 HTTP/1.1
Host: test.igmg.site
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://test.igmg.site/
Cookie: PHPSESSID=iig4navvqovegf0vmkkt985oie
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 05 Dec 2022 06:58:58 GMT
content-type: image/png
content-length: 34008
last-modified: Mon, 04 Jul 2022 20:24:22 GMT
etag: "62c34c76-84d8"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| test.igmg.site/images/program1.png?r=370170258 | 51.195.6.66 | 200 OK | 3.9 kB |
URL HTTP/2test.igmg.site/images/program1.png?r=370170258 IP51.195.6.66:0
File typePNG image data, 85 x 82, 8-bit/color RGBA, non-interlaced\012- data Hashf546ddd9ea85f69f04b23bbcb9a6bbab 1e0f5dacbd43e2b6ceb0693ddc9ed5e4ff868928 96c507fd8ed7b25af04082722480424f2d88ad77144c65739ea5b259f7d97d71
| Analyzer | Verdict | Alert |
|---|
| fortinet | Malware | |
GET /images/program1.png?r=370170258 HTTP/1.1
Host: test.igmg.site
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://test.igmg.site/
Cookie: PHPSESSID=iig4navvqovegf0vmkkt985oie
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 05 Dec 2022 06:58:58 GMT
content-type: image/png
content-length: 3922
last-modified: Mon, 04 Jul 2022 20:24:22 GMT
etag: "62c34c76-f52"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| test.igmg.site/images/program7.png?r=1900148429 | 51.195.6.66 | 200 OK | 17 kB |
URL HTTP/2test.igmg.site/images/program7.png?r=1900148429 IP51.195.6.66:0
File typePNG image data, 143 x 132, 8-bit/color RGB, non-interlaced\012- data Hasheeb2d5fe356d71a3128c903cb041b306 a9b1c3099a347e38a886a075a6a75737631c9667 314f0cf28a9f6341b3c47f96c0ecf06a7c929b495b502907a987afed8fa7feed
| Analyzer | Verdict | Alert |
|---|
| fortinet | Malware | |
GET /images/program7.png?r=1900148429 HTTP/1.1
Host: test.igmg.site
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://test.igmg.site/
Cookie: PHPSESSID=iig4navvqovegf0vmkkt985oie
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 05 Dec 2022 06:58:58 GMT
content-type: image/png
content-length: 16669
last-modified: Mon, 04 Jul 2022 20:24:22 GMT
etag: "62c34c76-411d"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| test.igmg.site/images/program2.png?r=838734875 | 51.195.6.66 | 200 OK | 2.7 kB |
URL HTTP/2test.igmg.site/images/program2.png?r=838734875 IP51.195.6.66:0
File typePNG image data, 200 x 133, 8-bit colormap, non-interlaced\012- data Hash8a8445dbaf9c9daba257bd6142958234 7fbf1239846097347b75409cb833ec003e712965 e6ad65ffc98707290032a8b8a7711f732a47b130098f7df9e76d59171b06bb0f
| Analyzer | Verdict | Alert |
|---|
| fortinet | Malware | |
GET /images/program2.png?r=838734875 HTTP/1.1
Host: test.igmg.site
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://test.igmg.site/
Cookie: PHPSESSID=iig4navvqovegf0vmkkt985oie
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 05 Dec 2022 06:58:58 GMT
content-type: image/png
content-length: 2699
last-modified: Mon, 04 Jul 2022 20:24:22 GMT
etag: "62c34c76-a8b"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| test.igmg.site/images/program4.png?r=330386485 | 51.195.6.66 | 200 OK | 2.4 kB |
URL HTTP/2test.igmg.site/images/program4.png?r=330386485 IP51.195.6.66:0
File typePNG image data, 77 x 83, 8-bit/color RGBA, non-interlaced\012- data Hash7385f9e6996f26e048e0656af1a63b55 da3e1b9166f1a8171a7b3b0ecdd0fcad8d7fe1ec c4e1e74d6ad27c277320efec9e1bd55897e424be35b22abf1fcb5ef015984e79
| Analyzer | Verdict | Alert |
|---|
| fortinet | Malware | |
GET /images/program4.png?r=330386485 HTTP/1.1
Host: test.igmg.site
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://test.igmg.site/
Cookie: PHPSESSID=iig4navvqovegf0vmkkt985oie
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 05 Dec 2022 06:58:58 GMT
content-type: image/png
content-length: 2363
last-modified: Mon, 04 Jul 2022 20:24:22 GMT
etag: "62c34c76-93b"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| ocsp.digicert.com/ | 93.184.220.29 | 200 OK | 279 B |
IP93.184.220.29:0
Hash1d7ae9cb4d3ada56f3c875f55b37a3e1 296e23579403d85854df89b45e91dde802a91617 b86bdf54353e0459f9acb777656d5928b8d04aece9f060a8ecf4961548f7c490
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5409
Cache-Control: max-age=110284
Content-Type: application/ocsp-response
Date: Mon, 05 Dec 2022 06:58:58 GMT
Etag: "638c8d5e-117"
Expires: Tue, 06 Dec 2022 13:37:02 GMT
Last-Modified: Sun, 04 Dec 2022 12:06:54 GMT
Server: ECS (ska/F712)
X-Cache: HIT
Content-Length: 279
|
|
| test.igmg.site/images/iros_amblem.png?r=1656388279 | 51.195.6.66 | 200 OK | 4.3 kB |
URL HTTP/2test.igmg.site/images/iros_amblem.png?r=1656388279 IP51.195.6.66:0
File typePNG image data, 200 x 200, 8-bit/color RGBA, non-interlaced\012- data Hashe06152b0921f030754d80520b1a27237 8ab440c4bbce55cf374773017051a4defec1739b 1aa1d9de13ca429b7affd44fffe6709e3885a1cf962a9878e7abcfb40da026b1
| Analyzer | Verdict | Alert |
|---|
| fortinet | Malware | |
GET /images/iros_amblem.png?r=1656388279 HTTP/1.1
Host: test.igmg.site
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://test.igmg.site/
Cookie: PHPSESSID=iig4navvqovegf0vmkkt985oie
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 05 Dec 2022 06:58:58 GMT
content-type: image/png
content-length: 4281
last-modified: Mon, 04 Jul 2022 20:24:22 GMT
etag: "62c34c76-10b9"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| cdnjs.cloudflare.com/ajax/libs/dropzone/5.4.0/dropzone.css |  104.17.25.14 | 200 OK | 1.5 kB |
URL HTTP/2cdnjs.cloudflare.com/ajax/libs/dropzone/5.4.0/dropzone.css IP104.17.25.14:0
Hash593403dc4ce9adcdf7d8b44f18513be3 ab9859e2e1e1440884c15e707e9c2eb655c60711 8dfffecd68c0f0dec371039f73aeb8d4d8551e350b42cca7da50e2d7df142263
GET /ajax/libs/dropzone/5.4.0/dropzone.css HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://test.igmg.site/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Mon, 05 Dec 2022 06:58:58 GMT
content-type: text/css; charset=utf-8
content-length: 1464
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "5eb03e3e-312b"
last-modified: Mon, 04 May 2020 16:09:34 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 28628
expires: Sat, 25 Nov 2023 06:58:58 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=jGM6auZsprUj8s7kPx4q1RApgWCQobJS8B2DBksZFPTS5J5G1urGI%2FMBFz3YL61x0fWmf7b2oMddLvmf8YgEzBSwal56XQ2Djz50zHSCmHvWNAdlUT%2BsMbucuK9OAP2TE1ElikqJ"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 774ae57e4c54b500-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| test.igmg.site/images/program4.png?r=1076478034 | 51.195.6.66 | 200 OK | 2.4 kB |
URL HTTP/2test.igmg.site/images/program4.png?r=1076478034 IP51.195.6.66:0
File typePNG image data, 77 x 83, 8-bit/color RGBA, non-interlaced\012- data Hash7385f9e6996f26e048e0656af1a63b55 da3e1b9166f1a8171a7b3b0ecdd0fcad8d7fe1ec c4e1e74d6ad27c277320efec9e1bd55897e424be35b22abf1fcb5ef015984e79
| Analyzer | Verdict | Alert |
|---|
| fortinet | Malware | |
GET /images/program4.png?r=1076478034 HTTP/1.1
Host: test.igmg.site
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://test.igmg.site/
Cookie: PHPSESSID=iig4navvqovegf0vmkkt985oie
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 05 Dec 2022 06:58:58 GMT
content-type: image/png
content-length: 2363
last-modified: Mon, 04 Jul 2022 20:24:22 GMT
etag: "62c34c76-93b"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| test.igmg.site/assets/js/js.cookie.min.js | 51.195.6.66 | 200 OK | 0 B |
URL HTTP/2test.igmg.site/assets/js/js.cookie.min.js IP51.195.6.66:0
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
| Analyzer | Verdict | Alert |
|---|
| fortinet | Malware | |
GET /assets/js/js.cookie.min.js HTTP/1.1
Host: test.igmg.site
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://test.igmg.site/
Cookie: PHPSESSID=iig4navvqovegf0vmkkt985oie
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 05 Dec 2022 06:58:58 GMT
content-type: application/javascript
content-length: 0
x-accel-version: 0.01
last-modified: Mon, 04 Jul 2022 20:24:22 GMT
etag: "0-5e300857cde8e"
accept-ranges: bytes
x-powered-by: PleskLin
X-Firefox-Spdy: h2
|
|
| test.igmg.site/images/program3.png?r=405101161 | 51.195.6.66 | 200 OK | 2.4 kB |
URL HTTP/2test.igmg.site/images/program3.png?r=405101161 IP51.195.6.66:0
File typePNG image data, 92 x 83, 8-bit/color RGBA, non-interlaced\012- data Hash00ac55dafb6bed7c22fa6f79e268bffa e3a16f6fa4b23db5ac1567a7f7a25ee8b30176cd 2fd5cbee7816a3a0ac5863064f0e7836fc5f2e9e53174984139aaa02a108f31c
| Analyzer | Verdict | Alert |
|---|
| fortinet | Malware | |
GET /images/program3.png?r=405101161 HTTP/1.1
Host: test.igmg.site
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://test.igmg.site/
Cookie: PHPSESSID=iig4navvqovegf0vmkkt985oie
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 05 Dec 2022 06:58:58 GMT
content-type: image/png
content-length: 2358
last-modified: Mon, 04 Jul 2022 20:24:22 GMT
etag: "62c34c76-936"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| test.igmg.site/assets/js/select2.full.min.js | 51.195.6.66 | 200 OK | 20 kB |
URL HTTP/2test.igmg.site/assets/js/select2.full.min.js IP51.195.6.66:0
File typeUnicode text, UTF-8 text, with very long lines (32091) Hash22f046e78e871413f3210334b40a508c 6edd50488c0ada54ca1a052fba570b601855f78f 8a4202dfc9f93b029b1949e636360a51de8205e37774fa018c74336fa994aad7
| Analyzer | Verdict | Alert |
|---|
| fortinet | Malware | |
GET /assets/js/select2.full.min.js HTTP/1.1
Host: test.igmg.site
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://test.igmg.site/
Cookie: PHPSESSID=iig4navvqovegf0vmkkt985oie
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 05 Dec 2022 06:58:58 GMT
content-type: application/javascript
last-modified: Mon, 04 Jul 2022 20:24:22 GMT
etag: W/"62c34c76-124fd"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
|
|
| test.igmg.site/assets/js/jquery.vmap.world.js | 51.195.6.66 | 200 OK | 24 kB |
URL HTTP/2test.igmg.site/assets/js/jquery.vmap.world.js IP51.195.6.66:0
File typeASCII text, with very long lines (60566) Hash6789519fdf6eb777700924df4e916a57 fedc680d82057b10a2a2f42a457a0bddce679793 53a773ba129a06690286d39fad29bc20a355fa8b688a731ccd2e6d0bca652e16
| Analyzer | Verdict | Alert |
|---|
| fortinet | Malware | |
GET /assets/js/jquery.vmap.world.js HTTP/1.1
Host: test.igmg.site
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://test.igmg.site/
Cookie: PHPSESSID=iig4navvqovegf0vmkkt985oie
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 05 Dec 2022 06:58:58 GMT
content-type: application/javascript
last-modified: Mon, 04 Jul 2022 20:24:22 GMT
etag: W/"62c34c76-ecb8"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
|
|
| test.igmg.site/assets/js/jquery.flot.categories.min.js | 51.195.6.66 | 200 OK | 1.2 kB |
URL HTTP/2test.igmg.site/assets/js/jquery.flot.categories.min.js IP51.195.6.66:0
File typeASCII text, with very long lines (2457) Hash7b695fdd76c725f064a71f7f0944eb14 afb3210c8fac05f810021a4bfe0ba112f89ac5b4 019ac96278e2b78b5923089ed4254d3fd3acd3c4ef6e10f72a55230eb9fb1104
| Analyzer | Verdict | Alert |
|---|
| fortinet | Malware | |
GET /assets/js/jquery.flot.categories.min.js HTTP/1.1
Host: test.igmg.site
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://test.igmg.site/
Cookie: PHPSESSID=iig4navvqovegf0vmkkt985oie
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 05 Dec 2022 06:58:58 GMT
content-type: application/javascript
last-modified: Mon, 04 Jul 2022 20:24:22 GMT
etag: W/"62c34c76-a26"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
|
|
| ocsp.digicert.com/ | 93.184.220.29 | 200 OK | 471 B |
IP93.184.220.29:0
Hash31b129c94a90b1e695b21395cb54e378 a3cae46b48d469cc61ab0581303bcd5f5b654db9 fac3f681be358a20f78958dff10c89b7a91365c5114c81246c1bc34c1362ba1e
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5809
Cache-Control: max-age=99881
Content-Type: application/ocsp-response
Date: Mon, 05 Dec 2022 06:58:59 GMT
Etag: "638c632b-1d7"
Expires: Tue, 06 Dec 2022 10:43:40 GMT
Last-Modified: Sun, 04 Dec 2022 09:06:51 GMT
Server: ECS (ska/F712)
X-Cache: HIT
Content-Length: 471
|
|
| test.igmg.site/assets/js/jquery.vmap.usa.js | 51.195.6.66 | 200 OK | 312 kB |
URL HTTP/2test.igmg.site/assets/js/jquery.vmap.usa.js IP51.195.6.66:0
File typeASCII text, with very long lines (47588) Size312 kB (311796 bytes) Hash05b96027169e5f38892eaa5cea3c0f6c 56d98bdd8531d00256b03abbf8d202dec5ecaf21 1fcd9fd4ddfd2399fcccae050b5866ec47086b7f6bf14dc227f67d47a8aa443a
| Analyzer | Verdict | Alert |
|---|
| fortinet | Malware | |
GET /assets/js/jquery.vmap.usa.js HTTP/1.1
Host: test.igmg.site
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://test.igmg.site/
Cookie: PHPSESSID=iig4navvqovegf0vmkkt985oie
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 05 Dec 2022 06:58:58 GMT
content-type: application/javascript
last-modified: Mon, 04 Jul 2022 20:24:22 GMT
etag: W/"62c34c76-ba04"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
|
|
| push.services.mozilla.com/ | 35.161.230.192 | 101 Switching Protocols | 0 B |
URL HTTP/1.1push.services.mozilla.com/ IP35.161.230.192:0
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: kDTii9s9n2LvK6xNnue7tQ==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: UQ7zLPt+7YRFnHSf/IeBtufbmHo=
|
|
| test.igmg.site/images/bg.png | 51.195.6.66 | 200 OK | 7.8 kB |
URL HTTP/2test.igmg.site/images/bg.png IP51.195.6.66:0
File typePNG image data, 115 x 115, 8-bit/color RGB, non-interlaced\012- data Hash171463dd895108e41d0a159e2af10e59 463c4f50e5387527365643bbe016fd3790e28c6f 5439f6fe48c0495aefdf68b1438cb35f2f2db9f93153044f440d69e7129a586f
GET /images/bg.png HTTP/1.1
Host: test.igmg.site
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://test.igmg.site/
Cookie: PHPSESSID=iig4navvqovegf0vmkkt985oie
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 05 Dec 2022 06:58:59 GMT
content-type: image/png
content-length: 7771
last-modified: Mon, 04 Jul 2022 20:24:22 GMT
etag: "62c34c76-1e5b"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| unpkg.com/xlsx/dist/xlsx.full.min.js | 104.16.124.175 | 302 Found | 528 B |
URL HTTP/2unpkg.com/xlsx/dist/xlsx.full.min.js IP104.16.124.175:0
Hash2f54873ce45371f4513a3e04dc0ca31d 888684844e8a74cd7b2a94f544137887f39bea11 dbdf427741d77bd5df03b45f08f9e6d5b63f4a5470f33a67f14e7ada8ec79775
GET /xlsx/dist/xlsx.full.min.js HTTP/1.1
Host: unpkg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://test.igmg.site/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
date: Mon, 05 Dec 2022 06:58:58 GMT
content-type: text/plain; charset=utf-8
access-control-allow-origin: *
cache-control: public, s-maxage=600, max-age=60
location: /xlsx@0.18.5/dist/xlsx.full.min.js
vary: Accept, Accept-Encoding
via: 1.1 fly.io
fly-request-id: 01GKGGVD225ZXY37BN2TFGXGAX-fra
cf-cache-status: HIT
age: 456
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 774ae57e3adfb4f4-OSL
X-Firefox-Spdy: h2
|
|
| test.igmg.site/assets/css/bootstrap-switch.min.css?1206107174 | 51.195.6.66 | 200 OK | 1.7 kB |
URL HTTP/2test.igmg.site/assets/css/bootstrap-switch.min.css?1206107174 IP51.195.6.66:0
File typeASCII text, with very long lines (5487) Hashdd85cdcfb33fe1d744834372adc11667 afb13dfe5e3c439507fe1e16b5155cd880d21068 41fb38ac9fe65eb31bd8dff31c390919b558ca8cf4682652ae9699fba5c7d763
GET /assets/css/bootstrap-switch.min.css?1206107174 HTTP/1.1
Host: test.igmg.site
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://test.igmg.site/
Cookie: PHPSESSID=iig4navvqovegf0vmkkt985oie
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 05 Dec 2022 06:58:58 GMT
content-type: text/css
last-modified: Mon, 04 Jul 2022 20:24:22 GMT
etag: W/"62c34c76-1939"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
|
|
| ocsp.pki.goog/gts1c3 | 142.250.74.131 | 200 OK | 472 B |
IP142.250.74.131:0
Hash79c225db327a78b782f5a9512b07eaf0 398a1be3a70264d959146d6670d2ca54cdf4e91a 8539ea44d81775448ae8c6179d54d8a397c559b112291fa78abcf6ac6c480815
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 05 Dec 2022 06:58:59 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| ocsp.pki.goog/gts1c3 | 142.250.74.131 | 200 OK | 472 B |
IP142.250.74.131:0
Hash79c225db327a78b782f5a9512b07eaf0 398a1be3a70264d959146d6670d2ca54cdf4e91a 8539ea44d81775448ae8c6179d54d8a397c559b112291fa78abcf6ac6c480815
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 05 Dec 2022 06:58:59 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| ocsp.pki.goog/gts1c3 | 142.250.74.131 | 200 OK | 472 B |
IP142.250.74.131:0
Hash79c225db327a78b782f5a9512b07eaf0 398a1be3a70264d959146d6670d2ca54cdf4e91a 8539ea44d81775448ae8c6179d54d8a397c559b112291fa78abcf6ac6c480815
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 05 Dec 2022 06:58:59 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| fonts.gstatic.com/s/opensans/v34/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2 | 142.250.74.163 | 200 OK | 45 kB |
URL HTTP/2fonts.gstatic.com/s/opensans/v34/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2 IP142.250.74.163:0
File typeWeb Open Font Format (Version 2), TrueType, length 44856, version 1.0\012- data Hash565ce506190ad3af920b40baf1794cec ad3cba5d06100e09449a864d3b5e58403b478b3d 8778e9af2422858d7052ff9a0f3c12c08ae976bdd6e0316db144cd5579cd97db
GET /s/opensans/v34/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://test.igmg.site
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 44856
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 01 Dec 2022 05:42:51 GMT
expires: Fri, 01 Dec 2023 05:42:51 GMT
cache-control: public, max-age=31536000
age: 350168
last-modified: Mon, 15 Aug 2022 18:20:18 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
|
|
| fonts.gstatic.com/s/opensans/v34/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTSGmu1aB.woff2 | 142.250.74.163 | 200 OK | 31 kB |
URL HTTP/2fonts.gstatic.com/s/opensans/v34/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTSGmu1aB.woff2 IP142.250.74.163:0
File typeWeb Open Font Format (Version 2), TrueType, length 31320, version 1.0\012- data Hash3fe71527811fbfedd2c07962e1bc49e7 f63e158a0480c5d711b5e268db0e75e57d87a8a5 24c0e724005344165ee0a0ff4c96a914e174bb4caa20c8a533fb194d92853e95
GET /s/opensans/v34/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTSGmu1aB.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://test.igmg.site
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 31320
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 28 Nov 2022 18:57:58 GMT
expires: Tue, 28 Nov 2023 18:57:58 GMT
cache-control: public, max-age=31536000
age: 561661
last-modified: Mon, 15 Aug 2022 18:11:37 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
|
|
| ocsp.pki.goog/gts1c3 | 142.250.74.131 | 200 OK | 472 B |
IP142.250.74.131:0
Hash79c225db327a78b782f5a9512b07eaf0 398a1be3a70264d959146d6670d2ca54cdf4e91a 8539ea44d81775448ae8c6179d54d8a397c559b112291fa78abcf6ac6c480815
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 05 Dec 2022 06:58:59 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| test.igmg.site/images/logo.png | 51.195.6.66 | 200 OK | 62 kB |
URL HTTP/2test.igmg.site/images/logo.png IP51.195.6.66:0
File typePNG image data, 190 x 190, 8-bit/color RGB, non-interlaced\012- data Hashbdba6772eb3477480740c8a34de0d166 c322e86c037868cb60235ed54b3efd7e355820db 747dc61d8573f1904b33b9f7157682643018a5710bb9c2580316ec37514ff1c6
GET /images/logo.png HTTP/1.1
Host: test.igmg.site
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://test.igmg.site/
Cookie: PHPSESSID=iig4navvqovegf0vmkkt985oie
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 05 Dec 2022 06:58:59 GMT
content-type: image/png
content-length: 61610
last-modified: Mon, 04 Jul 2022 20:24:22 GMT
etag: "62c34c76-f0aa"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| r3.o.lencr.org/ | 23.36.76.226 | 200 OK | 503 B |
IP23.36.76.226:0 ASN#20940 Akamai International B.V.
Hash83e0936435ad95a15c9ec5ff9520f4fe a8225ee0d8ae117f977f7ff817c342c62e91b5a9 ef0f5b2ab2055446d4ea8b738f605c3bf835cf72e872d6a9c9a6c9b2917737e7
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "EF0F5B2AB2055446D4EA8B738F605C3BF835CF72E872D6A9C9A6C9B2917737E7"
Last-Modified: Sat, 03 Dec 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10923
Expires: Mon, 05 Dec 2022 10:01:03 GMT
Date: Mon, 05 Dec 2022 06:59:00 GMT
Connection: keep-alive
|
|
| r3.o.lencr.org/ | 23.36.76.226 | 200 OK | 503 B |
IP23.36.76.226:0 ASN#20940 Akamai International B.V.
Hash83e0936435ad95a15c9ec5ff9520f4fe a8225ee0d8ae117f977f7ff817c342c62e91b5a9 ef0f5b2ab2055446d4ea8b738f605c3bf835cf72e872d6a9c9a6c9b2917737e7
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "EF0F5B2AB2055446D4EA8B738F605C3BF835CF72E872D6A9C9A6C9B2917737E7"
Last-Modified: Sat, 03 Dec 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10923
Expires: Mon, 05 Dec 2022 10:01:03 GMT
Date: Mon, 05 Dec 2022 06:59:00 GMT
Connection: keep-alive
|
|
| r3.o.lencr.org/ | 23.36.76.226 | 200 OK | 503 B |
IP23.36.76.226:0 ASN#20940 Akamai International B.V.
Hash83e0936435ad95a15c9ec5ff9520f4fe a8225ee0d8ae117f977f7ff817c342c62e91b5a9 ef0f5b2ab2055446d4ea8b738f605c3bf835cf72e872d6a9c9a6c9b2917737e7
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "EF0F5B2AB2055446D4EA8B738F605C3BF835CF72E872D6A9C9A6C9B2917737E7"
Last-Modified: Sat, 03 Dec 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10923
Expires: Mon, 05 Dec 2022 10:01:03 GMT
Date: Mon, 05 Dec 2022 06:59:00 GMT
Connection: keep-alive
|
|
| r3.o.lencr.org/ | 23.36.76.226 | 200 OK | 503 B |
IP23.36.76.226:0 ASN#20940 Akamai International B.V.
Hash83e0936435ad95a15c9ec5ff9520f4fe a8225ee0d8ae117f977f7ff817c342c62e91b5a9 ef0f5b2ab2055446d4ea8b738f605c3bf835cf72e872d6a9c9a6c9b2917737e7
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "EF0F5B2AB2055446D4EA8B738F605C3BF835CF72E872D6A9C9A6C9B2917737E7"
Last-Modified: Sat, 03 Dec 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10923
Expires: Mon, 05 Dec 2022 10:01:03 GMT
Date: Mon, 05 Dec 2022 06:59:00 GMT
Connection: keep-alive
|
|
| img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc2955536-4372-40c4-bbce-37f3da5c8a64.jpeg | 34.120.237.76 | 200 OK | 10 kB |
URL HTTP/2img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc2955536-4372-40c4-bbce-37f3da5c8a64.jpeg IP34.120.237.76:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Hashbb029b41d342a82250aef6d6f713be6e cd754bb6094d2e456b95dce8daace45a0de8a121 c16e364547c9e7a3c487b614073d59c7c495c5e5387b75136afab0dc68bebca4
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc2955536-4372-40c4-bbce-37f3da5c8a64.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10031
x-amzn-requestid: ca6c11c5-8842-4ffb-bb9e-5351c4e60c5c
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cjY0CGUVIAMFxog=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-638ad4e6-4282be9f505aa5764e9b1fa2;Sampled=0
x-amzn-remapped-date: Sat, 03 Dec 2022 04:47:34 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: 8QEt6AHIT6gkW2X3RUuu1-K3lPlgjio-cckhiwppWK7vujPlBHrG7Q==
via: 1.1 ddd913fbbe7367d44af4ac06097e7a2a.cloudfront.net (CloudFront), 1.1 5565a51537c689d1d16f6b4d41f40082.cloudfront.net (CloudFront), 1.1 google
date: Sun, 04 Dec 2022 18:59:33 GMT
age: 43167
etag: "cd754bb6094d2e456b95dce8daace45a0de8a121"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6df54ea7-8915-4ac7-af2b-6a71ce14dbf4.webp | 34.120.237.76 | 200 OK | 5.7 kB |
URL HTTP/2img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6df54ea7-8915-4ac7-af2b-6a71ce14dbf4.webp IP34.120.237.76:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Hash43309032a892c486f9985ef520df696e 36f4682ca6a33ff80ee02129c77e6f27e996ede0 24225ff504f30405d9ec3feb2555c738fcca0d6b265f285aa9c73a64c78a496e
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6df54ea7-8915-4ac7-af2b-6a71ce14dbf4.webp HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5681
x-amzn-requestid: 8f0d66b8-d532-48d9-9a29-74540cd6ab3a
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cltXnEotIAMFqkA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-638bc296-27349a376ff819ab63b04a81;Sampled=0
x-amzn-remapped-date: Sat, 03 Dec 2022 21:41:42 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: Uz-wJTZjej3sjP-O68BQ4hB_kkAecG0o7GkeZUan90ZgV87g0Cg_ZA==
via: 1.1 26ca01ec7377e425b59b6a08cb1ec342.cloudfront.net (CloudFront), 1.1 3cd7af07832481c336aa1c93c9b4a6fe.cloudfront.net (CloudFront), 1.1 google
date: Sun, 04 Dec 2022 21:52:41 GMT
age: 32779
etag: "36f4682ca6a33ff80ee02129c77e6f27e996ede0"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe9e8d044-2cda-4dba-9da8-c0a296845bca.jpeg | 34.120.237.76 | 200 OK | 12 kB |
URL HTTP/2img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe9e8d044-2cda-4dba-9da8-c0a296845bca.jpeg IP34.120.237.76:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Hashb8e6f84dff61fedd8ff9baa9bb648883 f8d5cc7b315879b66a11b403463da1330617d2fa 025c66a4a0e7927353e1733d7f8cfb6ec3c9c0228d34267cbff11f09cf112127
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe9e8d044-2cda-4dba-9da8-c0a296845bca.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 12348
x-amzn-requestid: 72f681ef-9ae7-4fc5-8539-230e1d4277a1
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cjKa_HpTIAMFrcg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-638abddf-43ef45165fd982997e5018c8;Sampled=0
x-amzn-remapped-date: Sat, 03 Dec 2022 03:09:19 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: tGsNaADKr1KoJT7rxDSFf8dxM1_IXsaF67Eqe8DIO9PAJy8HtqQKng==
via: 1.1 49b94a8674d6e86a841d6523f7dbaf14.cloudfront.net (CloudFront), 1.1 556b99c6be8d7078b9f067347c62df6a.cloudfront.net (CloudFront), 1.1 google
date: Mon, 05 Dec 2022 04:17:03 GMT
age: 9717
etag: "f8d5cc7b315879b66a11b403463da1330617d2fa"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7663e5fc-37de-4be8-9be7-49805622f85d.jpeg | 34.120.237.76 | 200 OK | 10 kB |
URL HTTP/2img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7663e5fc-37de-4be8-9be7-49805622f85d.jpeg IP34.120.237.76:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Hash99d1ff8fa2e095dcf2bda3d1e1af1221 f914f04a0e1fb45a221d31d2105bfc73015b03e6 90325d4299a44dbd213857ada6f6880db8c33ad61685cfcb60c4a2455a84cf87
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7663e5fc-37de-4be8-9be7-49805622f85d.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10183
x-amzn-requestid: 0cdea572-aab4-4d52-948b-976170a787a4
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: co_uLHQZoAMF4hA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-638d1327-7948052f39c4f6071b4a0e0d;Sampled=0
x-amzn-remapped-date: Sun, 04 Dec 2022 21:37:43 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: Vhtd0Bo5kTQySEn0vD_RJin0usoC7GQvK74fhVtrtZNEy64_vrWQNw==
via: 1.1 a4fe306096165bb1e86e69365dc8fac2.cloudfront.net (CloudFront), 1.1 6a9b42e38e76b7d4a4044ebe0e0eca08.cloudfront.net (CloudFront), 1.1 google
date: Sun, 04 Dec 2022 21:45:46 GMT
age: 33194
etag: "f914f04a0e1fb45a221d31d2105bfc73015b03e6"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fcb6034ca-f8c1-4979-8165-5f755e5d12a1.jpeg | 34.120.237.76 | 200 OK | 6.4 kB |
URL HTTP/2img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fcb6034ca-f8c1-4979-8165-5f755e5d12a1.jpeg IP34.120.237.76:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Hash3c36448c65274ebbe1eb21e3bf02385e e03cf1c7c2ec15b3cc50d9c54bebbf81aa08cf28 6f17788a394f1305755805a1b92117b1c1a03a1e3a075cb97a0da5184d574553
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fcb6034ca-f8c1-4979-8165-5f755e5d12a1.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6430
x-amzn-requestid: ae2ec151-d383-4554-9ac2-3d204701251c
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: co_ttFDKoAMFp0A=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-638d1324-15aebb1a06253068472a6ab0;Sampled=0
x-amzn-remapped-date: Sun, 04 Dec 2022 21:37:40 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: kYXmy10msfeWdDYgvq0PXyGpy9UJyQkSLAhR_Q5PQMllJPXOOTnalw==
via: 1.1 4f87745990545c1ac0195c157e1668f8.cloudfront.net (CloudFront), 1.1 1b74ccf4cb51eacf97a0e6d60ae46a3e.cloudfront.net (CloudFront), 1.1 google
date: Sun, 04 Dec 2022 21:45:53 GMT
age: 33187
etag: "e03cf1c7c2ec15b3cc50d9c54bebbf81aa08cf28"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F60dcc231-abb7-48f1-8ec5-e25b31bd100b.jpeg | 34.120.237.76 | 200 OK | 10 kB |
URL HTTP/2img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F60dcc231-abb7-48f1-8ec5-e25b31bd100b.jpeg IP34.120.237.76:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Hash24c69d7ef356b352956d6dcbc9f5df1d 2cc31dc1c5d2d2a8b3a378dce8a1240a79acfec9 94d068620c34652cb2d24ca8b3cf962febe9606e6d3a33d937fc9d99f176edef
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F60dcc231-abb7-48f1-8ec5-e25b31bd100b.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10396
x-amzn-requestid: b879fd2e-b6cf-4373-b780-2d97481c45f8
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cioNbH5KoAMFUsA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-638a8722-6add7f8e225878473b20c015;Sampled=0
x-amzn-remapped-date: Fri, 02 Dec 2022 23:15:46 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: ir97GJKaFoW6BNXCcmMqp0JSUd5JhCACyUvLh5G-0BWCDVJsqs7XhQ==
via: 1.1 cd48ffda04934d18865e47e99ea080bc.cloudfront.net (CloudFront), 1.1 943c6a4d4ee43b18ee91634536f53eae.cloudfront.net (CloudFront), 1.1 google
date: Sun, 04 Dec 2022 22:03:01 GMT
age: 32159
etag: "2cc31dc1c5d2d2a8b3a378dce8a1240a79acfec9"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| fonts.googleapis.com/css?family=Open+Sans:400,300,600,700&subset=all | 142.250.74.106 | 200 OK | 0 B |
URL HTTP/2fonts.googleapis.com/css?family=Open+Sans:400,300,600,700&subset=all IP142.250.74.106:0
GET /css?family=Open+Sans:400,300,600,700&subset=all HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://test.igmg.site/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Mon, 05 Dec 2022 06:58:58 GMT
date: Mon, 05 Dec 2022 06:58:58 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
|
|
| test.igmg.site/assets/js/additional-methods.min.js | 51.195.6.66 | 200 OK | 0 B |
URL HTTP/2test.igmg.site/assets/js/additional-methods.min.js IP51.195.6.66:0
| Analyzer | Verdict | Alert |
|---|
| fortinet | Malware | |
GET /assets/js/additional-methods.min.js HTTP/1.1
Host: test.igmg.site
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://test.igmg.site/
Cookie: PHPSESSID=iig4navvqovegf0vmkkt985oie
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 05 Dec 2022 06:58:58 GMT
content-type: application/javascript
last-modified: Mon, 04 Jul 2022 20:24:22 GMT
etag: W/"62c34c76-433a"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
|
|
| test.igmg.site/assets/js/jquery.vmap.sampledata.js | 51.195.6.66 | 200 OK | 0 B |
URL HTTP/2test.igmg.site/assets/js/jquery.vmap.sampledata.js IP51.195.6.66:0
| Analyzer | Verdict | Alert |
|---|
| fortinet | Malware | |
GET /assets/js/jquery.vmap.sampledata.js HTTP/1.1
Host: test.igmg.site
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://test.igmg.site/
Cookie: PHPSESSID=iig4navvqovegf0vmkkt985oie
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 05 Dec 2022 06:58:58 GMT
content-type: application/javascript
last-modified: Mon, 04 Jul 2022 20:24:22 GMT
etag: W/"62c34c76-952"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
|
|
| test.igmg.site/assets/js/jquery.vmap.germany.js | 51.195.6.66 | 200 OK | 0 B |
URL HTTP/2test.igmg.site/assets/js/jquery.vmap.germany.js IP51.195.6.66:0
| Analyzer | Verdict | Alert |
|---|
| fortinet | Malware | |
GET /assets/js/jquery.vmap.germany.js HTTP/1.1
Host: test.igmg.site
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://test.igmg.site/
Cookie: PHPSESSID=iig4navvqovegf0vmkkt985oie
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 05 Dec 2022 06:58:58 GMT
content-type: application/javascript
last-modified: Mon, 04 Jul 2022 20:24:22 GMT
etag: W/"62c34c76-d893"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
|
|
| test.igmg.site/assets/js/jquery.validate.min.js | 51.195.6.66 | 200 OK | 0 B |
URL HTTP/2test.igmg.site/assets/js/jquery.validate.min.js IP51.195.6.66:0
| Analyzer | Verdict | Alert |
|---|
| fortinet | Malware | |
GET /assets/js/jquery.validate.min.js HTTP/1.1
Host: test.igmg.site
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://test.igmg.site/
Cookie: PHPSESSID=iig4navvqovegf0vmkkt985oie
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 05 Dec 2022 06:58:58 GMT
content-type: application/javascript
last-modified: Mon, 04 Jul 2022 20:24:22 GMT
etag: W/"62c34c76-5262"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
|
|
| test.igmg.site/assets/css/bayrakfont.css?1226275801 | 51.195.6.66 | 200 OK | 0 B |
URL HTTP/2test.igmg.site/assets/css/bayrakfont.css?1226275801 IP51.195.6.66:0
| Analyzer | Verdict | Alert |
|---|
| fortinet | Malware | |
GET /assets/css/bayrakfont.css?1226275801 HTTP/1.1
Host: test.igmg.site
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://test.igmg.site/
Cookie: PHPSESSID=iig4navvqovegf0vmkkt985oie
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 05 Dec 2022 06:58:58 GMT
content-type: text/css
last-modified: Mon, 04 Jul 2022 20:24:22 GMT
etag: W/"62c34c76-3361"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
|
|
| test.igmg.site/assets/js/jquery.dataTables.min.js | 51.195.6.66 | 200 OK | 0 B |
URL HTTP/2test.igmg.site/assets/js/jquery.dataTables.min.js IP51.195.6.66:0
| Analyzer | Verdict | Alert |
|---|
| fortinet | Malware | |
GET /assets/js/jquery.dataTables.min.js HTTP/1.1
Host: test.igmg.site
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://test.igmg.site/
Cookie: PHPSESSID=iig4navvqovegf0vmkkt985oie
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 05 Dec 2022 06:58:58 GMT
content-type: application/javascript
last-modified: Mon, 04 Jul 2022 20:24:22 GMT
etag: W/"62c34c76-13ff2"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
|
|
| test.igmg.site/assets/js/fullcalendar.min.js | 51.195.6.66 | 200 OK | 0 B |
URL HTTP/2test.igmg.site/assets/js/fullcalendar.min.js IP51.195.6.66:0
| Analyzer | Verdict | Alert |
|---|
| fortinet | Malware | |
GET /assets/js/fullcalendar.min.js HTTP/1.1
Host: test.igmg.site
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://test.igmg.site/
Cookie: PHPSESSID=iig4navvqovegf0vmkkt985oie
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 05 Dec 2022 06:58:58 GMT
content-type: application/javascript
last-modified: Mon, 04 Jul 2022 20:24:22 GMT
etag: W/"62c34c76-180ab"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
|
|
| test.igmg.site/assets/js/jquery.blockui.min.js | 51.195.6.66 | 200 OK | 0 B |
URL HTTP/2test.igmg.site/assets/js/jquery.blockui.min.js IP51.195.6.66:0
| Analyzer | Verdict | Alert |
|---|
| fortinet | Malware | |
GET /assets/js/jquery.blockui.min.js HTTP/1.1
Host: test.igmg.site
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://test.igmg.site/
Cookie: PHPSESSID=iig4navvqovegf0vmkkt985oie
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 05 Dec 2022 06:58:58 GMT
content-type: application/javascript
last-modified: Mon, 04 Jul 2022 20:24:22 GMT
etag: W/"62c34c76-2554"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
|
|
| test.igmg.site/assets/js/jquery.waypoints.min.js | 51.195.6.66 | 200 OK | 0 B |
URL HTTP/2test.igmg.site/assets/js/jquery.waypoints.min.js IP51.195.6.66:0
| Analyzer | Verdict | Alert |
|---|
| fortinet | Malware | |
GET /assets/js/jquery.waypoints.min.js HTTP/1.1
Host: test.igmg.site
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://test.igmg.site/
Cookie: PHPSESSID=iig4navvqovegf0vmkkt985oie
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 05 Dec 2022 06:58:58 GMT
content-type: application/javascript
last-modified: Mon, 04 Jul 2022 20:24:22 GMT
etag: W/"62c34c76-1f6c"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
|
|
| test.igmg.site/assets/js/quick-nav.min.js | 51.195.6.66 | 200 OK | 0 B |
URL HTTP/2test.igmg.site/assets/js/quick-nav.min.js IP51.195.6.66:0
| Analyzer | Verdict | Alert |
|---|
| fortinet | Malware | |
GET /assets/js/quick-nav.min.js HTTP/1.1
Host: test.igmg.site
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://test.igmg.site/
Cookie: PHPSESSID=iig4navvqovegf0vmkkt985oie
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 05 Dec 2022 06:58:58 GMT
content-type: application/javascript
x-accel-version: 0.01
last-modified: Mon, 04 Jul 2022 20:24:22 GMT
etag: W/"19f-5e300857ce65e"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
|
|
| test.igmg.site/assets/css/components.min.css?758668368 | 51.195.6.66 | 200 OK | 0 B |
URL HTTP/2test.igmg.site/assets/css/components.min.css?758668368 IP51.195.6.66:0
GET /assets/css/components.min.css?758668368 HTTP/1.1
Host: test.igmg.site
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://test.igmg.site/
Cookie: PHPSESSID=iig4navvqovegf0vmkkt985oie
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 05 Dec 2022 06:58:58 GMT
content-type: text/css
last-modified: Mon, 04 Jul 2022 20:24:22 GMT
etag: W/"62c34c76-a0436"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
|
|
| test.igmg.site/assets/css/jqvmap.css?1081417053 | 51.195.6.66 | 200 OK | 0 B |
URL HTTP/2test.igmg.site/assets/css/jqvmap.css?1081417053 IP51.195.6.66:0
| Analyzer | Verdict | Alert |
|---|
| fortinet | Malware | |
GET /assets/css/jqvmap.css?1081417053 HTTP/1.1
Host: test.igmg.site
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://test.igmg.site/
Cookie: PHPSESSID=iig4navvqovegf0vmkkt985oie
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 05 Dec 2022 06:58:58 GMT
content-type: text/css
x-accel-version: 0.01
last-modified: Mon, 04 Jul 2022 20:24:22 GMT
etag: W/"38b-5e300857c80ce"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
|
|
| test.igmg.site/assets/select2/select2.min.js | 51.195.6.66 | 200 OK | 0 B |
URL HTTP/2test.igmg.site/assets/select2/select2.min.js IP51.195.6.66:0
| Analyzer | Verdict | Alert |
|---|
| fortinet | Malware | |
GET /assets/select2/select2.min.js HTTP/1.1
Host: test.igmg.site
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://test.igmg.site/
Cookie: PHPSESSID=iig4navvqovegf0vmkkt985oie
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 05 Dec 2022 06:58:58 GMT
content-type: application/javascript
last-modified: Mon, 04 Jul 2022 20:24:22 GMT
etag: W/"62c34c76-1042e"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
|
|
| test.igmg.site/assets/js/jquery.slimscroll.min.js | 51.195.6.66 | 200 OK | 0 B |
URL HTTP/2test.igmg.site/assets/js/jquery.slimscroll.min.js IP51.195.6.66:0
| Analyzer | Verdict | Alert |
|---|
| fortinet | Malware | |
GET /assets/js/jquery.slimscroll.min.js HTTP/1.1
Host: test.igmg.site
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://test.igmg.site/
Cookie: PHPSESSID=iig4navvqovegf0vmkkt985oie
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 05 Dec 2022 06:58:58 GMT
content-type: application/javascript
last-modified: Mon, 04 Jul 2022 20:24:22 GMT
etag: W/"62c34c76-1437"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
|
|
| test.igmg.site/assets/js/quick-sidebar.min.js | 51.195.6.66 | 200 OK | 0 B |
URL HTTP/2test.igmg.site/assets/js/quick-sidebar.min.js IP51.195.6.66:0
| Analyzer | Verdict | Alert |
|---|
| fortinet | Malware | |
GET /assets/js/quick-sidebar.min.js HTTP/1.1
Host: test.igmg.site
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://test.igmg.site/
Cookie: PHPSESSID=iig4navvqovegf0vmkkt985oie
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 05 Dec 2022 06:58:58 GMT
content-type: application/javascript
last-modified: Mon, 04 Jul 2022 20:24:22 GMT
etag: W/"62c34c76-ae3"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
|
|
| test.igmg.site/assets/tinymce/tinymce.min.js | 51.195.6.66 | 200 OK | 0 B |
URL HTTP/2test.igmg.site/assets/tinymce/tinymce.min.js IP51.195.6.66:0
| Analyzer | Verdict | Alert |
|---|
| fortinet | Malware | |
GET /assets/tinymce/tinymce.min.js HTTP/1.1
Host: test.igmg.site
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://test.igmg.site/
Cookie: PHPSESSID=iig4navvqovegf0vmkkt985oie
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 05 Dec 2022 06:58:58 GMT
content-type: application/javascript
last-modified: Mon, 04 Jul 2022 20:24:22 GMT
etag: W/"62c34c76-72a93"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
|
|
| test.igmg.site/assets/css/login.min.css?1506487842 | 51.195.6.66 | 200 OK | 0 B |
URL HTTP/2test.igmg.site/assets/css/login.min.css?1506487842 IP51.195.6.66:0
| Analyzer | Verdict | Alert |
|---|
| fortinet | Malware | |
GET /assets/css/login.min.css?1506487842 HTTP/1.1
Host: test.igmg.site
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://test.igmg.site/
Cookie: PHPSESSID=iig4navvqovegf0vmkkt985oie
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 05 Dec 2022 06:58:58 GMT
content-type: text/css
last-modified: Mon, 04 Jul 2022 20:24:22 GMT
etag: W/"62c34c76-e55"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
|
|
| test.igmg.site/assets/css/layout.min.css?802816045 | 51.195.6.66 | 200 OK | 0 B |
URL HTTP/2test.igmg.site/assets/css/layout.min.css?802816045 IP51.195.6.66:0
| Analyzer | Verdict | Alert |
|---|
| fortinet | Malware | |
GET /assets/css/layout.min.css?802816045 HTTP/1.1
Host: test.igmg.site
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://test.igmg.site/
Cookie: PHPSESSID=iig4navvqovegf0vmkkt985oie
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 05 Dec 2022 06:58:58 GMT
content-type: text/css
last-modified: Mon, 04 Jul 2022 20:24:22 GMT
etag: W/"62c34c76-ec89"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
|
|
| test.igmg.site/assets/select2/select2.min.css?1885944100 | 51.195.6.66 | 200 OK | 0 B |
URL HTTP/2test.igmg.site/assets/select2/select2.min.css?1885944100 IP51.195.6.66:0
| Analyzer | Verdict | Alert |
|---|
| fortinet | Malware | |
GET /assets/select2/select2.min.css?1885944100 HTTP/1.1
Host: test.igmg.site
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://test.igmg.site/
Cookie: PHPSESSID=iig4navvqovegf0vmkkt985oie
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 05 Dec 2022 06:58:58 GMT
content-type: text/css
last-modified: Mon, 04 Jul 2022 20:24:22 GMT
etag: W/"62c34c76-7c8b"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
|
|
| test.igmg.site/assets/amcharts/pie.js | 51.195.6.66 | 200 OK | 0 B |
URL HTTP/2test.igmg.site/assets/amcharts/pie.js IP51.195.6.66:0
| Analyzer | Verdict | Alert |
|---|
| fortinet | Malware | |
GET /assets/amcharts/pie.js HTTP/1.1
Host: test.igmg.site
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://test.igmg.site/
Cookie: PHPSESSID=iig4navvqovegf0vmkkt985oie
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 05 Dec 2022 06:58:58 GMT
content-type: application/javascript
last-modified: Mon, 04 Jul 2022 20:24:22 GMT
etag: W/"62c34c76-394d"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
|
|
| unpkg.com/xlsx/dist/shim.min.js | 104.16.124.175 | 302 Found | 0 B |
URL HTTP/2unpkg.com/xlsx/dist/shim.min.js IP104.16.124.175:0
GET /xlsx/dist/shim.min.js HTTP/1.1
Host: unpkg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://test.igmg.site/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
date: Mon, 05 Dec 2022 06:58:58 GMT
content-type: text/plain; charset=utf-8
access-control-allow-origin: *
cache-control: public, s-maxage=600, max-age=60
location: /xlsx@0.18.5/dist/shim.min.js
vary: Accept, Accept-Encoding
via: 1.1 fly.io
fly-request-id: 01GKGH1REE2MEMNJ7PBACEK552-fra
cf-cache-status: HIT
age: 248
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 774ae57e3ad5b4f4-OSL
X-Firefox-Spdy: h2
|
|
| test.igmg.site/assets/css/default.min.css?148945952 | 51.195.6.66 | 200 OK | 0 B |
URL HTTP/2test.igmg.site/assets/css/default.min.css?148945952 IP51.195.6.66:0
GET /assets/css/default.min.css?148945952 HTTP/1.1
Host: test.igmg.site
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://test.igmg.site/
Cookie: PHPSESSID=iig4navvqovegf0vmkkt985oie
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 05 Dec 2022 06:58:58 GMT
content-type: text/css
last-modified: Mon, 04 Jul 2022 20:24:22 GMT
etag: W/"62c34c76-5a7f"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
|
|
| test.igmg.site/assets/css/jquery-ui.css?782045420 | 51.195.6.66 | 200 OK | 0 B |
URL HTTP/2test.igmg.site/assets/css/jquery-ui.css?782045420 IP51.195.6.66:0
| Analyzer | Verdict | Alert |
|---|
| fortinet | Malware | |
GET /assets/css/jquery-ui.css?782045420 HTTP/1.1
Host: test.igmg.site
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://test.igmg.site/
Cookie: PHPSESSID=iig4navvqovegf0vmkkt985oie
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 05 Dec 2022 06:58:58 GMT
content-type: text/css
last-modified: Mon, 04 Jul 2022 20:24:22 GMT
etag: W/"62c34c76-91ce"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
|
|
| test.igmg.site/?act=js_translates | 51.195.6.66 | 200 OK | 0 B |
URL HTTP/2test.igmg.site/?act=js_translates IP51.195.6.66:0
| Analyzer | Verdict | Alert |
|---|
| fortinet | Malware | |
GET /?act=js_translates HTTP/1.1
Host: test.igmg.site
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://test.igmg.site/
Cookie: PHPSESSID=iig4navvqovegf0vmkkt985oie
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 05 Dec 2022 06:58:58 GMT
content-type: text/html; charset=UTF-8
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: no-store, no-cache, must-revalidate
pragma: no-cache
x-powered-by: PHP/7.4.33, PleskLin
content-encoding: br
X-Firefox-Spdy: h2
|
|
| test.igmg.site/assets/css/colorbox.css?656512332 | 51.195.6.66 | 200 OK | 0 B |
URL HTTP/2test.igmg.site/assets/css/colorbox.css?656512332 IP51.195.6.66:0
GET /assets/css/colorbox.css?656512332 HTTP/1.1
Host: test.igmg.site
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://test.igmg.site/
Cookie: PHPSESSID=iig4navvqovegf0vmkkt985oie
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 05 Dec 2022 06:58:58 GMT
content-type: text/css
last-modified: Mon, 04 Jul 2022 20:24:22 GMT
etag: W/"62c34c76-114f"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
|
|
| test.igmg.site/assets/css/daterangepicker.min.css?373716802 | 51.195.6.66 | 200 OK | 0 B |
URL HTTP/2test.igmg.site/assets/css/daterangepicker.min.css?373716802 IP51.195.6.66:0
| Analyzer | Verdict | Alert |
|---|
| fortinet | Malware | |
GET /assets/css/daterangepicker.min.css?373716802 HTTP/1.1
Host: test.igmg.site
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://test.igmg.site/
Cookie: PHPSESSID=iig4navvqovegf0vmkkt985oie
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 05 Dec 2022 06:58:58 GMT
content-type: text/css
last-modified: Mon, 04 Jul 2022 20:24:22 GMT
etag: W/"62c34c76-15ea"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
|
|
| test.igmg.site/assets/css/ekurs.css?1768498485 | 51.195.6.66 | 200 OK | 0 B |
URL HTTP/2test.igmg.site/assets/css/ekurs.css?1768498485 IP51.195.6.66:0
GET /assets/css/ekurs.css?1768498485 HTTP/1.1
Host: test.igmg.site
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://test.igmg.site/
Cookie: PHPSESSID=iig4navvqovegf0vmkkt985oie
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 05 Dec 2022 06:58:58 GMT
content-type: text/css
last-modified: Mon, 04 Jul 2022 20:24:22 GMT
etag: W/"62c34c76-62b5"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
|
|
| test.igmg.site/assets/js/jquery.flot.min.js | 51.195.6.66 | 200 OK | 0 B |
URL HTTP/2test.igmg.site/assets/js/jquery.flot.min.js IP51.195.6.66:0
| Analyzer | Verdict | Alert |
|---|
| fortinet | Malware | |
GET /assets/js/jquery.flot.min.js HTTP/1.1
Host: test.igmg.site
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://test.igmg.site/
Cookie: PHPSESSID=iig4navvqovegf0vmkkt985oie
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 05 Dec 2022 06:58:58 GMT
content-type: application/javascript
last-modified: Mon, 04 Jul 2022 20:24:22 GMT
etag: W/"62c34c76-cee6"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
|
|
| test.igmg.site/assets/js/bootbox.min.js | 51.195.6.66 | 200 OK | 0 B |
URL HTTP/2test.igmg.site/assets/js/bootbox.min.js IP51.195.6.66:0
| Analyzer | Verdict | Alert |
|---|
| fortinet | Malware | |
GET /assets/js/bootbox.min.js HTTP/1.1
Host: test.igmg.site
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://test.igmg.site/
Cookie: PHPSESSID=iig4navvqovegf0vmkkt985oie
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 05 Dec 2022 06:58:58 GMT
content-type: application/javascript
last-modified: Mon, 04 Jul 2022 20:24:22 GMT
etag: W/"62c34c76-4543"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
|
|
| test.igmg.site/ | 51.195.6.66 | 200 OK | 0 B |
IP51.195.6.66:0
| Analyzer | Verdict | Alert |
|---|
| fortinet | Malware | |
GET / HTTP/1.1
Host: test.igmg.site
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 200 OK
server: nginx
date: Mon, 05 Dec 2022 06:58:58 GMT
content-type: text/html; charset=UTF-8
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: no-store, no-cache, must-revalidate
pragma: no-cache
set-cookie: PHPSESSID=iig4navvqovegf0vmkkt985oie; expires=Wed, 15-Mar-2023 06:58:58 GMT; Max-Age=8640000; path=/
x-powered-by: PHP/7.4.33, PleskLin
content-encoding: br
X-Firefox-Spdy: h2
|
|
| test.igmg.site/assets/fullcalendar/lib/main.min.css?1046818081 | 51.195.6.66 | 200 OK | 0 B |
URL HTTP/2test.igmg.site/assets/fullcalendar/lib/main.min.css?1046818081 IP51.195.6.66:0
| Analyzer | Verdict | Alert |
|---|
| fortinet | Malware | |
GET /assets/fullcalendar/lib/main.min.css?1046818081 HTTP/1.1
Host: test.igmg.site
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://test.igmg.site/
Cookie: PHPSESSID=iig4navvqovegf0vmkkt985oie
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 05 Dec 2022 06:58:58 GMT
content-type: text/css
last-modified: Mon, 04 Jul 2022 20:24:22 GMT
etag: W/"62c34c76-616b"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
|
|
| test.igmg.site/assets/css/plugins.min.css?1218355919 | 51.195.6.66 | 200 OK | 0 B |
URL HTTP/2test.igmg.site/assets/css/plugins.min.css?1218355919 IP51.195.6.66:0
GET /assets/css/plugins.min.css?1218355919 HTTP/1.1
Host: test.igmg.site
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://test.igmg.site/
Cookie: PHPSESSID=iig4navvqovegf0vmkkt985oie
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 05 Dec 2022 06:58:58 GMT
content-type: text/css
last-modified: Mon, 04 Jul 2022 20:24:22 GMT
etag: W/"62c34c76-a4bb"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
|
|
| test.igmg.site/assets/css/dataTables.min.css?930052408 | 51.195.6.66 | 200 OK | 0 B |
URL HTTP/2test.igmg.site/assets/css/dataTables.min.css?930052408 IP51.195.6.66:0
GET /assets/css/dataTables.min.css?930052408 HTTP/1.1
Host: test.igmg.site
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://test.igmg.site/
Cookie: PHPSESSID=iig4navvqovegf0vmkkt985oie
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 05 Dec 2022 06:58:58 GMT
content-type: text/css
last-modified: Mon, 04 Jul 2022 20:24:22 GMT
etag: W/"62c34c76-342b"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
|
|
| test.igmg.site/assets/js/jquery.vmap.js | 51.195.6.66 | 200 OK | 0 B |
URL HTTP/2test.igmg.site/assets/js/jquery.vmap.js IP51.195.6.66:0
| Analyzer | Verdict | Alert |
|---|
| fortinet | Malware | |
GET /assets/js/jquery.vmap.js HTTP/1.1
Host: test.igmg.site
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://test.igmg.site/
Cookie: PHPSESSID=iig4navvqovegf0vmkkt985oie
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 05 Dec 2022 06:58:58 GMT
content-type: application/javascript
last-modified: Mon, 04 Jul 2022 20:24:22 GMT
etag: W/"62c34c76-6ba2"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
|
|
| test.igmg.site/assets/css/simple-line-icons.min.css?1824501838 | 51.195.6.66 | 200 OK | 0 B |
URL HTTP/2test.igmg.site/assets/css/simple-line-icons.min.css?1824501838 IP51.195.6.66:0
| Analyzer | Verdict | Alert |
|---|
| fortinet | Malware | |
GET /assets/css/simple-line-icons.min.css?1824501838 HTTP/1.1
Host: test.igmg.site
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://test.igmg.site/
Cookie: PHPSESSID=iig4navvqovegf0vmkkt985oie
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 05 Dec 2022 06:58:58 GMT
content-type: text/css
last-modified: Mon, 04 Jul 2022 20:24:22 GMT
etag: W/"62c34c76-256b"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
|
|
| test.igmg.site/assets/css/igmgfont.css?1330223414 | 51.195.6.66 | 200 OK | 0 B |
URL HTTP/2test.igmg.site/assets/css/igmgfont.css?1330223414 IP51.195.6.66:0
GET /assets/css/igmgfont.css?1330223414 HTTP/1.1
Host: test.igmg.site
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://test.igmg.site/
Cookie: PHPSESSID=iig4navvqovegf0vmkkt985oie
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 05 Dec 2022 06:58:58 GMT
content-type: text/css
last-modified: Mon, 04 Jul 2022 20:24:22 GMT
etag: W/"62c34c76-6c5"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
|
|
| test.igmg.site/assets/amcharts/dataloader.min.js | 51.195.6.66 | 200 OK | 0 B |
URL HTTP/2test.igmg.site/assets/amcharts/dataloader.min.js IP51.195.6.66:0
| Analyzer | Verdict | Alert |
|---|
| fortinet | Malware | |
GET /assets/amcharts/dataloader.min.js HTTP/1.1
Host: test.igmg.site
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://test.igmg.site/
Cookie: PHPSESSID=iig4navvqovegf0vmkkt985oie
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 05 Dec 2022 06:58:58 GMT
content-type: application/javascript
last-modified: Mon, 04 Jul 2022 20:24:22 GMT
etag: W/"62c34c76-1a8b"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
|
|
| unpkg.com/file-saver@1.3.3/FileSaver.js | 104.16.124.175 | 200 OK | 0 B |
URL HTTP/2unpkg.com/file-saver@1.3.3/FileSaver.js IP104.16.124.175:0
GET /file-saver@1.3.3/FileSaver.js HTTP/1.1
Host: unpkg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://test.igmg.site/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Mon, 05 Dec 2022 06:58:58 GMT
content-type: application/javascript; charset=utf-8
access-control-allow-origin: *
cache-control: public, max-age=31536000
last-modified: Wed, 05 Oct 2016 10:43:25 GMT
etag: W/"174d-ppV+tNTWNc2klmEzFicm/vyFuQM"
via: 1.1 fly.io
fly-request-id: 01GHZQ5V4V5ACDNY7SPCPWY9M9-fra
cf-cache-status: HIT
age: 1637989
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 774ae57e4ae2b4f4-OSL
content-encoding: br
X-Firefox-Spdy: h2
|
|
| test.igmg.site/assets/js/jquery.min.js | 51.195.6.66 | 200 OK | 0 B |
URL HTTP/2test.igmg.site/assets/js/jquery.min.js IP51.195.6.66:0
| Analyzer | Verdict | Alert |
|---|
| fortinet | Malware | |
GET /assets/js/jquery.min.js HTTP/1.1
Host: test.igmg.site
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://test.igmg.site/
Cookie: PHPSESSID=iig4navvqovegf0vmkkt985oie
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 05 Dec 2022 06:58:58 GMT
content-type: application/javascript
last-modified: Mon, 04 Jul 2022 20:24:22 GMT
etag: W/"62c34c76-17b8a"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
|
|
| test.igmg.site/assets/amcharts/amcharts.js | 51.195.6.66 | 200 OK | 0 B |
URL HTTP/2test.igmg.site/assets/amcharts/amcharts.js IP51.195.6.66:0
| Analyzer | Verdict | Alert |
|---|
| fortinet | Malware | |
GET /assets/amcharts/amcharts.js HTTP/1.1
Host: test.igmg.site
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://test.igmg.site/
Cookie: PHPSESSID=iig4navvqovegf0vmkkt985oie
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 05 Dec 2022 06:58:58 GMT
content-type: application/javascript
last-modified: Mon, 04 Jul 2022 20:24:22 GMT
etag: W/"62c34c76-3314a"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
|
|
| test.igmg.site/assets/js/jquery.vmap.russia.js | 51.195.6.66 | 200 OK | 0 B |
URL HTTP/2test.igmg.site/assets/js/jquery.vmap.russia.js IP51.195.6.66:0
| Analyzer | Verdict | Alert |
|---|
| fortinet | Malware | |
GET /assets/js/jquery.vmap.russia.js HTTP/1.1
Host: test.igmg.site
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://test.igmg.site/
Cookie: PHPSESSID=iig4navvqovegf0vmkkt985oie
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 05 Dec 2022 06:58:58 GMT
content-type: application/javascript
last-modified: Mon, 04 Jul 2022 20:24:22 GMT
etag: W/"62c34c76-267d3"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
|
|
| test.igmg.site/assets/js/app.min.js | 51.195.6.66 | 200 OK | 0 B |
URL HTTP/2test.igmg.site/assets/js/app.min.js IP51.195.6.66:0
| Analyzer | Verdict | Alert |
|---|
| fortinet | Malware | |
GET /assets/js/app.min.js HTTP/1.1
Host: test.igmg.site
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://test.igmg.site/
Cookie: PHPSESSID=iig4navvqovegf0vmkkt985oie
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 05 Dec 2022 06:58:58 GMT
content-type: application/javascript
last-modified: Mon, 04 Jul 2022 20:24:22 GMT
etag: W/"62c34c76-3c77"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
|
|
| test.igmg.site/assets/fullcalendar/lib/main.min.js | 51.195.6.66 | 200 OK | 0 B |
URL HTTP/2test.igmg.site/assets/fullcalendar/lib/main.min.js IP51.195.6.66:0
| Analyzer | Verdict | Alert |
|---|
| fortinet | Malware | |
GET /assets/fullcalendar/lib/main.min.js HTTP/1.1
Host: test.igmg.site
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://test.igmg.site/
Cookie: PHPSESSID=iig4navvqovegf0vmkkt985oie
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 05 Dec 2022 06:58:58 GMT
content-type: application/javascript
last-modified: Mon, 04 Jul 2022 20:24:22 GMT
etag: W/"62c34c76-3c681"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
|
|
| test.igmg.site/assets/fullcalendar/lib/locales-all.min.js | 51.195.6.66 | 200 OK | 0 B |
URL HTTP/2test.igmg.site/assets/fullcalendar/lib/locales-all.min.js IP51.195.6.66:0
| Analyzer | Verdict | Alert |
|---|
| fortinet | Malware | |
GET /assets/fullcalendar/lib/locales-all.min.js HTTP/1.1
Host: test.igmg.site
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://test.igmg.site/
Cookie: PHPSESSID=iig4navvqovegf0vmkkt985oie
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 05 Dec 2022 06:58:58 GMT
content-type: application/javascript
last-modified: Mon, 04 Jul 2022 20:24:22 GMT
etag: W/"62c34c76-47e2"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
|
|
| test.igmg.site/assets/js/raphael-min.js | 51.195.6.66 | 200 OK | 0 B |
URL HTTP/2test.igmg.site/assets/js/raphael-min.js IP51.195.6.66:0
| Analyzer | Verdict | Alert |
|---|
| fortinet | Malware | |
GET /assets/js/raphael-min.js HTTP/1.1
Host: test.igmg.site
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://test.igmg.site/
Cookie: PHPSESSID=iig4navvqovegf0vmkkt985oie
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 05 Dec 2022 06:58:58 GMT
content-type: application/javascript
last-modified: Mon, 04 Jul 2022 20:24:22 GMT
etag: W/"62c34c76-16555"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
|
|
| test.igmg.site/assets/js/pwstrength.js | 51.195.6.66 | 200 OK | 0 B |
URL HTTP/2test.igmg.site/assets/js/pwstrength.js IP51.195.6.66:0
| Analyzer | Verdict | Alert |
|---|
| fortinet | Malware | |
GET /assets/js/pwstrength.js HTTP/1.1
Host: test.igmg.site
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://test.igmg.site/
Cookie: PHPSESSID=iig4navvqovegf0vmkkt985oie
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 05 Dec 2022 06:58:58 GMT
content-type: application/javascript
last-modified: Mon, 04 Jul 2022 20:24:22 GMT
etag: W/"62c34c76-9785"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
|
|
| use.fontawesome.com/releases/v5.7.2/css/all.css | 172.64.133.15 | 200 OK | 0 B |
URL HTTP/2use.fontawesome.com/releases/v5.7.2/css/all.css IP172.64.133.15:0
GET /releases/v5.7.2/css/all.css HTTP/1.1
Host: use.fontawesome.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://test.igmg.site
Connection: keep-alive
Referer: https://test.igmg.site/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Mon, 05 Dec 2022 06:58:59 GMT
content-type: text/css
x-amz-id-2: 0QEi34m2kSsj5yAMK/XrkezyaiqY4L1v/p7UbyMeOoMe5nJ66kRRG5hzgHgTItMK0Dyj8OV2D0Y=
x-amz-request-id: HHSMETS7Q4ZZGA28
access-control-allow-origin: *
access-control-allow-methods: GET
access-control-max-age: 3000
vary: Origin, Access-Control-Request-Headers, Access-Control-Request-Method, Accept-Encoding
last-modified: Wed, 30 Jun 2021 15:45:57 GMT
etag: W/"7b1d7f457d056ace7b230b587b9f3753"
cache-control: max-age=31556926
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=%2B6wv%2BxO1I41Rc2TE79Uc5dgGHnVyphuZsThD2%2F7DcYdjnE6ggw1j%2FgHjksupUlsOZQyzy9JMdipl0BgrlT0dHqM8FVkhk%2FyfJcl7AMkdliA%2B7eH4vjKUP9sxN5PBchbwcgFoSfXw"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 774ae57e9848240f-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| test.igmg.site/assets/js/jquery-ui.min.js | 51.195.6.66 | 200 OK | 0 B |
URL HTTP/2test.igmg.site/assets/js/jquery-ui.min.js IP51.195.6.66:0
| Analyzer | Verdict | Alert |
|---|
| fortinet | Malware | |
GET /assets/js/jquery-ui.min.js HTTP/1.1
Host: test.igmg.site
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://test.igmg.site/
Cookie: PHPSESSID=iig4navvqovegf0vmkkt985oie
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 05 Dec 2022 06:58:58 GMT
content-type: application/javascript
last-modified: Mon, 04 Jul 2022 20:24:22 GMT
etag: W/"62c34c76-3dee5"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
|
|
| test.igmg.site/assets/js/moment-with-locales.js | 51.195.6.66 | 200 OK | 0 B |
URL HTTP/2test.igmg.site/assets/js/moment-with-locales.js IP51.195.6.66:0
| Analyzer | Verdict | Alert |
|---|
| fortinet | Malware | |
GET /assets/js/moment-with-locales.js HTTP/1.1
Host: test.igmg.site
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://test.igmg.site/
Cookie: PHPSESSID=iig4navvqovegf0vmkkt985oie
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 05 Dec 2022 06:58:58 GMT
content-type: application/javascript
last-modified: Mon, 04 Jul 2022 20:24:22 GMT
etag: W/"62c34c76-9721a"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
|
|
| test.igmg.site/assets/js/bootstrap-switch.min.js | 51.195.6.66 | 200 OK | 0 B |
URL HTTP/2test.igmg.site/assets/js/bootstrap-switch.min.js IP51.195.6.66:0
| Analyzer | Verdict | Alert |
|---|
| fortinet | Malware | |
GET /assets/js/bootstrap-switch.min.js HTTP/1.1
Host: test.igmg.site
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://test.igmg.site/
Cookie: PHPSESSID=iig4navvqovegf0vmkkt985oie
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 05 Dec 2022 06:58:58 GMT
content-type: application/javascript
last-modified: Mon, 04 Jul 2022 20:24:22 GMT
etag: W/"62c34c76-3a37"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
|
|
| test.igmg.site/assets/js/popper.min.js | 51.195.6.66 | 200 OK | 0 B |
URL HTTP/2test.igmg.site/assets/js/popper.min.js IP51.195.6.66:0
| Analyzer | Verdict | Alert |
|---|
| fortinet | Malware | |
GET /assets/js/popper.min.js HTTP/1.1
Host: test.igmg.site
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://test.igmg.site/
Cookie: PHPSESSID=iig4navvqovegf0vmkkt985oie
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 05 Dec 2022 06:58:58 GMT
content-type: application/javascript
last-modified: Mon, 04 Jul 2022 20:24:22 GMT
etag: W/"62c34c76-52ce"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
|
|
| test.igmg.site/assets/js/demo.min.js | 51.195.6.66 | 200 OK | 0 B |
URL HTTP/2test.igmg.site/assets/js/demo.min.js IP51.195.6.66:0
| Analyzer | Verdict | Alert |
|---|
| fortinet | Malware | |
GET /assets/js/demo.min.js HTTP/1.1
Host: test.igmg.site
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://test.igmg.site/
Cookie: PHPSESSID=iig4navvqovegf0vmkkt985oie
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 05 Dec 2022 06:58:58 GMT
content-type: application/javascript
last-modified: Mon, 04 Jul 2022 20:24:22 GMT
etag: W/"62c34c76-10a6"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
|
|
| test.igmg.site/assets/css/bootstrap.min.css?176323120 | 51.195.6.66 | 200 OK | 0 B |
URL HTTP/2test.igmg.site/assets/css/bootstrap.min.css?176323120 IP51.195.6.66:0
| Analyzer | Verdict | Alert |
|---|
| fortinet | Malware | |
GET /assets/css/bootstrap.min.css?176323120 HTTP/1.1
Host: test.igmg.site
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://test.igmg.site/
Cookie: PHPSESSID=iig4navvqovegf0vmkkt985oie
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 05 Dec 2022 06:58:58 GMT
content-type: text/css
last-modified: Mon, 04 Jul 2022 20:24:22 GMT
etag: W/"62c34c76-1cc99"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
|
|
| test.igmg.site/assets/amcharts/export.css?317289400 | 51.195.6.66 | 200 OK | 0 B |
URL HTTP/2test.igmg.site/assets/amcharts/export.css?317289400 IP51.195.6.66:0
GET /assets/amcharts/export.css?317289400 HTTP/1.1
Host: test.igmg.site
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://test.igmg.site/
Cookie: PHPSESSID=iig4navvqovegf0vmkkt985oie
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 05 Dec 2022 06:58:58 GMT
content-type: text/css
last-modified: Mon, 04 Jul 2022 20:24:22 GMT
etag: W/"62c34c76-8397"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
|
|
| test.igmg.site/assets/amcharts/export.min.js | 51.195.6.66 | 200 OK | 0 B |
URL HTTP/2test.igmg.site/assets/amcharts/export.min.js IP51.195.6.66:0
| Analyzer | Verdict | Alert |
|---|
| fortinet | Malware | |
GET /assets/amcharts/export.min.js HTTP/1.1
Host: test.igmg.site
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://test.igmg.site/
Cookie: PHPSESSID=iig4navvqovegf0vmkkt985oie
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 05 Dec 2022 06:58:58 GMT
content-type: application/javascript
last-modified: Mon, 04 Jul 2022 20:24:22 GMT
etag: W/"62c34c76-f3b9"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
|
|
| test.igmg.site/assets/amcharts/serial.js | 51.195.6.66 | 200 OK | 0 B |
URL HTTP/2test.igmg.site/assets/amcharts/serial.js IP51.195.6.66:0
| Analyzer | Verdict | Alert |
|---|
| fortinet | Malware | |
GET /assets/amcharts/serial.js HTTP/1.1
Host: test.igmg.site
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://test.igmg.site/
Cookie: PHPSESSID=iig4navvqovegf0vmkkt985oie
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 05 Dec 2022 06:58:58 GMT
content-type: application/javascript
last-modified: Mon, 04 Jul 2022 20:24:22 GMT
etag: W/"62c34c76-c01f"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
|
|
| unpkg.com/blob.js@1.0.1/Blob.js | 104.16.124.175 | 200 OK | 0 B |
URL HTTP/2unpkg.com/blob.js@1.0.1/Blob.js IP104.16.124.175:0
GET /blob.js@1.0.1/Blob.js HTTP/1.1
Host: unpkg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://test.igmg.site/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Mon, 05 Dec 2022 06:58:58 GMT
content-type: application/javascript; charset=utf-8
access-control-allow-origin: *
cache-control: public, max-age=31536000
last-modified: Mon, 14 Nov 2016 10:24:13 GMT
etag: W/"1800-jszKs+14oLm7MdJGCNbZkvu8ALE"
via: 1.1 fly.io
fly-request-id: 01F52A04572E1EZHSX8W8CQKRK
cf-cache-status: HIT
age: 18333226
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 774ae57e3adcb4f4-OSL
content-encoding: br
X-Firefox-Spdy: h2
|
|
| test.igmg.site/assets/js/ekurs.js?849590638 | 51.195.6.66 | 200 OK | 0 B |
URL HTTP/2test.igmg.site/assets/js/ekurs.js?849590638 IP51.195.6.66:0
| Analyzer | Verdict | Alert |
|---|
| fortinet | Malware | |
GET /assets/js/ekurs.js?849590638 HTTP/1.1
Host: test.igmg.site
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://test.igmg.site/
Cookie: PHPSESSID=iig4navvqovegf0vmkkt985oie
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 05 Dec 2022 06:58:58 GMT
content-type: application/javascript
last-modified: Tue, 29 Nov 2022 00:24:27 GMT
etag: W/"6385513b-63d9"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
|
|
| test.igmg.site/assets/dropzone/dropzone.js | 51.195.6.66 | 200 OK | 0 B |
URL HTTP/2test.igmg.site/assets/dropzone/dropzone.js IP51.195.6.66:0
| Analyzer | Verdict | Alert |
|---|
| fortinet | Malware | |
GET /assets/dropzone/dropzone.js HTTP/1.1
Host: test.igmg.site
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://test.igmg.site/
Cookie: PHPSESSID=iig4navvqovegf0vmkkt985oie
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 05 Dec 2022 06:58:58 GMT
content-type: application/javascript
last-modified: Mon, 04 Jul 2022 20:24:22 GMT
etag: W/"62c34c76-22feb"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
|
|
| test.igmg.site/assets/js/layout.min.js | 51.195.6.66 | 200 OK | 0 B |
URL HTTP/2test.igmg.site/assets/js/layout.min.js IP51.195.6.66:0
| Analyzer | Verdict | Alert |
|---|
| fortinet | Malware | |
GET /assets/js/layout.min.js HTTP/1.1
Host: test.igmg.site
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://test.igmg.site/
Cookie: PHPSESSID=iig4navvqovegf0vmkkt985oie
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 05 Dec 2022 06:58:58 GMT
content-type: application/javascript
last-modified: Mon, 04 Jul 2022 20:24:22 GMT
etag: W/"62c34c76-11c0"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
|
|
| test.igmg.site/assets/css/morris.css?1369192150 | 51.195.6.66 | 200 OK | 0 B |
URL HTTP/2test.igmg.site/assets/css/morris.css?1369192150 IP51.195.6.66:0
| Analyzer | Verdict | Alert |
|---|
| fortinet | Malware | |
GET /assets/css/morris.css?1369192150 HTTP/1.1
Host: test.igmg.site
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://test.igmg.site/
Cookie: PHPSESSID=iig4navvqovegf0vmkkt985oie
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 05 Dec 2022 06:58:58 GMT
content-type: text/css
x-accel-version: 0.01
last-modified: Mon, 04 Jul 2022 20:24:22 GMT
etag: W/"1b0-5e300857c80ce"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
|
|
| test.igmg.site/assets/select2/tr.js | 51.195.6.66 | 200 OK | 0 B |
URL HTTP/2test.igmg.site/assets/select2/tr.js IP51.195.6.66:0
| Analyzer | Verdict | Alert |
|---|
| fortinet | Malware | |
GET /assets/select2/tr.js HTTP/1.1
Host: test.igmg.site
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://test.igmg.site/
Cookie: PHPSESSID=iig4navvqovegf0vmkkt985oie
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 05 Dec 2022 06:58:58 GMT
content-type: application/javascript
x-accel-version: 0.01
last-modified: Mon, 04 Jul 2022 20:24:22 GMT
etag: W/"305-5e300857cee2e"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
|
|
| test.igmg.site/assets/js/jquery.easypiechart.min.js | 51.195.6.66 | 200 OK | 0 B |
URL HTTP/2test.igmg.site/assets/js/jquery.easypiechart.min.js IP51.195.6.66:0
| Analyzer | Verdict | Alert |
|---|
| fortinet | Malware | |
GET /assets/js/jquery.easypiechart.min.js HTTP/1.1
Host: test.igmg.site
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://test.igmg.site/
Cookie: PHPSESSID=iig4navvqovegf0vmkkt985oie
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 05 Dec 2022 06:58:58 GMT
content-type: application/javascript
last-modified: Mon, 04 Jul 2022 20:24:22 GMT
etag: W/"62c34c76-f4e"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
|
|
| test.igmg.site/assets/js/jquery.number.min.js | 51.195.6.66 | 200 OK | 0 B |
URL HTTP/2test.igmg.site/assets/js/jquery.number.min.js IP51.195.6.66:0
| Analyzer | Verdict | Alert |
|---|
| fortinet | Malware | |
GET /assets/js/jquery.number.min.js HTTP/1.1
Host: test.igmg.site
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://test.igmg.site/
Cookie: PHPSESSID=iig4navvqovegf0vmkkt985oie
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 05 Dec 2022 06:58:58 GMT
content-type: application/javascript
last-modified: Mon, 04 Jul 2022 20:24:22 GMT
etag: W/"62c34c76-185f"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
|
|
| test.igmg.site/assets/js/login.min.js | 51.195.6.66 | 200 OK | 0 B |
URL HTTP/2test.igmg.site/assets/js/login.min.js IP51.195.6.66:0
| Analyzer | Verdict | Alert |
|---|
| fortinet | Malware | |
GET /assets/js/login.min.js HTTP/1.1
Host: test.igmg.site
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://test.igmg.site/
Cookie: PHPSESSID=iig4navvqovegf0vmkkt985oie
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 05 Dec 2022 06:58:58 GMT
content-type: application/javascript
last-modified: Mon, 04 Jul 2022 20:24:22 GMT
etag: W/"62c34c76-d1c"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
|
|
| test.igmg.site/assets/js/morris.min.js | 51.195.6.66 | 200 OK | 0 B |
URL HTTP/2test.igmg.site/assets/js/morris.min.js IP51.195.6.66:0
| Analyzer | Verdict | Alert |
|---|
| fortinet | Malware | |
GET /assets/js/morris.min.js HTTP/1.1
Host: test.igmg.site
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://test.igmg.site/
Cookie: PHPSESSID=iig4navvqovegf0vmkkt985oie
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 05 Dec 2022 06:58:58 GMT
content-type: application/javascript
last-modified: Mon, 04 Jul 2022 20:24:22 GMT
etag: W/"62c34c76-8b44"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
|
|
| test.igmg.site/assets/js/daterangepicker.min.js | 51.195.6.66 | 200 OK | 0 B |
URL HTTP/2test.igmg.site/assets/js/daterangepicker.min.js IP51.195.6.66:0
| Analyzer | Verdict | Alert |
|---|
| fortinet | Malware | |
GET /assets/js/daterangepicker.min.js HTTP/1.1
Host: test.igmg.site
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://test.igmg.site/
Cookie: PHPSESSID=iig4navvqovegf0vmkkt985oie
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 05 Dec 2022 06:58:58 GMT
content-type: application/javascript
last-modified: Mon, 04 Jul 2022 20:24:22 GMT
etag: W/"62c34c76-7b6a"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
|
|
| test.igmg.site/assets/js/jquery.vmap.europe.js | 51.195.6.66 | 200 OK | 0 B |
URL HTTP/2test.igmg.site/assets/js/jquery.vmap.europe.js IP51.195.6.66:0
| Analyzer | Verdict | Alert |
|---|
| fortinet | Malware | |
GET /assets/js/jquery.vmap.europe.js HTTP/1.1
Host: test.igmg.site
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://test.igmg.site/
Cookie: PHPSESSID=iig4navvqovegf0vmkkt985oie
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 05 Dec 2022 06:58:58 GMT
content-type: application/javascript
last-modified: Mon, 04 Jul 2022 20:24:22 GMT
etag: W/"62c34c76-17d75"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
|
|
| test.igmg.site/assets/js/dashboard.min.js | 51.195.6.66 | 200 OK | 0 B |
URL HTTP/2test.igmg.site/assets/js/dashboard.min.js IP51.195.6.66:0
| Analyzer | Verdict | Alert |
|---|
| fortinet | Malware | |
GET /assets/js/dashboard.min.js HTTP/1.1
Host: test.igmg.site
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://test.igmg.site/
Cookie: PHPSESSID=iig4navvqovegf0vmkkt985oie
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 05 Dec 2022 06:58:58 GMT
content-type: application/javascript
last-modified: Mon, 04 Jul 2022 20:24:22 GMT
etag: W/"62c34c76-530d"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
|
|
| test.igmg.site/assets/amcharts/light.js | 51.195.6.66 | 200 OK | 0 B |
URL HTTP/2test.igmg.site/assets/amcharts/light.js IP51.195.6.66:0
| Analyzer | Verdict | Alert |
|---|
| fortinet | Malware | |
GET /assets/amcharts/light.js HTTP/1.1
Host: test.igmg.site
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://test.igmg.site/
Cookie: PHPSESSID=iig4navvqovegf0vmkkt985oie
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 05 Dec 2022 06:58:58 GMT
content-type: application/javascript
last-modified: Mon, 04 Jul 2022 20:24:22 GMT
etag: W/"62c34c76-b62"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
|
|
| test.igmg.site/assets/colorbox/jquery.colorbox-min.js | 51.195.6.66 | 200 OK | 0 B |
URL HTTP/2test.igmg.site/assets/colorbox/jquery.colorbox-min.js IP51.195.6.66:0
| Analyzer | Verdict | Alert |
|---|
| fortinet | Malware | |
GET /assets/colorbox/jquery.colorbox-min.js HTTP/1.1
Host: test.igmg.site
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://test.igmg.site/
Cookie: PHPSESSID=iig4navvqovegf0vmkkt985oie
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 05 Dec 2022 06:58:58 GMT
content-type: application/javascript
last-modified: Mon, 04 Jul 2022 20:24:22 GMT
etag: W/"62c34c76-2eb8"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
|
|