Report - igmg.site/

Report Overview

Submitted URL
igmg.site/
IP
51.195.6.66
ASN
#16276 OVH SAS
Submitted
2023-03-23 23:02:08
Access
public
Website Title
Final URL
Tags
urlquery detections
No alerts detected

Detections

urlquery
0
Network Intrusion Detection
0
Threat Detection Systems
150

Domain Summary

Domain / FQDN	Rank	First Seen	Last Seen	Sent	Received	IP
use.fontawesome.com	942	2017-01-30T05:43:25Z	2023-03-29T05:19:40Z	414 B	1.0 kB	172.64.133.15
fonts.googleapis.com	8877	2013-06-10T22:14:26Z	2023-03-29T10:13:53Z	411 B	630 B	216.58.207.202
r3.o.lencr.org	344	2020-12-02T09:52:13Z	2023-03-29T05:09:11Z	2.7 kB	7.1 kB	23.36.76.226
firefox.settings.services.mozilla.com	867	2020-06-04T22:08:41Z	2023-03-29T05:09:03Z	337 B	1.4 kB	35.241.9.150
ocsp.pki.goog	175	2018-07-01T08:43:07Z	2023-03-29T05:09:04Z	1.7 kB	3.5 kB	142.250.74.163
fonts.gstatic.com	unknown	2014-09-09T02:40:21Z	2023-03-29T11:19:48Z	497 B	46 kB	142.250.74.163
img-getpocket.cdn.mozilla.net	1631	2018-06-22T01:36:00Z	2023-03-29T05:09:12Z	1.6 kB	24 kB	34.120.237.76
unpkg.com	11693	2016-01-08T00:26:01Z	2023-03-29T09:19:23Z	1.9 kB	2.8 kB	104.16.124.175
igmg.site	unknown	2017-07-20T06:18:43Z	2023-03-28T06:01:48Z	40 kB	420 kB	51.195.6.66
content-signature-2.cdn.mozilla.net	1152	2020-11-03T13:26:46Z	2023-03-29T05:09:31Z	413 B	5.9 kB	34.160.144.191
contile.services.mozilla.com	1114	2021-05-27T20:32:35Z	2023-03-29T05:09:31Z	333 B	391 B	34.117.237.239
cdnjs.cloudflare.com	235	2015-04-17T22:46:33Z	2023-03-29T05:16:53Z	401 B	2.5 kB	104.17.25.14
push.services.mozilla.com	2140	2014-10-24T10:27:06Z	2023-03-29T05:09:32Z	606 B	127 B	54.201.249.32

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

OpenPhish

No alerts detected

PhishTank

No alerts detected

Fortinet's Web Filter

Scan Date	Severity	Indicator	Alert
2023-03-23	medium	igmg.site/system	Malware
2023-03-23	medium	igmg.site/system/images/program5.png?r=1257752025	Malware
2023-03-23	medium	igmg.site/system/images/iros_amblem.png?r=2023830170	Malware
2023-03-23	medium	igmg.site/system/images/program7.png?r=1350309410	Malware
2023-03-23	medium	igmg.site/system/images/program4.png?r=489100697	Malware
2023-03-23	medium	igmg.site/system/images/program1.png?r=1870152320	Malware
2023-03-23	medium	igmg.site/system/images/program2.png?r=1753520340	Malware
2023-03-23	medium	igmg.site/system/images/program3.png?r=58463472	Malware
2023-03-23	medium	igmg.site/system/images/program4.png?r=1457411160	Malware
2023-03-23	medium	igmg.site/system/assets/js/js.cookie.min.js	Malware
2023-03-23	medium	igmg.site/system/assets/js/jquery.sparkline.min.js	Malware
2023-03-23	medium	igmg.site/system/assets/js/jquery.flot.min.js	Malware
2023-03-23	medium	igmg.site/system/assets/js/jquery.flot.resize.min.js	Malware
2023-03-23	medium	igmg.site/system/assets/js/additional-methods.min.js	Malware
2023-03-23	medium	igmg.site/system/assets/js/jquery.vmap.usa.js	Malware
2023-03-23	medium	igmg.site/system/assets/js/app.min.js	Malware
2023-03-23	medium	igmg.site/system/assets/js/jquery.flot.categories.min.js	Malware
2023-03-23	medium	igmg.site/system/assets/tinymce/tinymce.min.js	Malware
2023-03-23	medium	igmg.site/system/assets/js/dashboard.min.js	Malware
2023-03-23	medium	igmg.site/system/assets/amcharts/amcharts.js	Malware
2023-03-23	medium	igmg.site/system/assets/select2/tr.js	Malware
2023-03-23	medium	igmg.site/system/assets/js/jquery.counterup.min.js	Malware
2023-03-23	medium	igmg.site/system/assets/js/jquery.vmap.world.js	Malware
2023-03-23	medium	igmg.site/system/assets/amcharts/export.min.js	Malware
2023-03-23	medium	igmg.site/system/assets/js/jquery.vmap.europe.js	Malware
2023-03-23	medium	igmg.site/system/assets/amcharts/serial.js	Malware
2023-03-23	medium	igmg.site/system/assets/css/dataTables.min.css?546566387	Malware
2023-03-23	medium	igmg.site/system/assets/fullcalendar/lib/main.min.js	Malware
2023-03-23	medium	igmg.site/system/assets/js/daterangepicker.min.js	Malware
2023-03-23	medium	igmg.site/system/assets/css/bootstrap-switch.min.css?1814398978	Malware
2023-03-23	medium	igmg.site/system/assets/js/morris.min.js	Malware
2023-03-23	medium	igmg.site/system/assets/css/colorbox.css?737145721	Malware
2023-03-23	medium	igmg.site/system/assets/js/demo.min.js	Malware
2023-03-23	medium	igmg.site/system/assets/js/moment-with-locales.js	Malware
2023-03-23	medium	igmg.site/system/assets/js/jquery.validate.min.js	Malware
2023-03-23	medium	igmg.site/system/assets/js/fullcalendar.min.js	Malware
2023-03-23	medium	igmg.site/system/assets/css/igmgfont.css?497371035	Malware
2023-03-23	medium	igmg.site/system/assets/js/jquery.min.js	Malware
2023-03-23	medium	igmg.site/system/assets/js/popper.min.js	Malware
2023-03-23	medium	igmg.site/system/assets/js/quick-sidebar.min.js	Malware
2023-03-23	medium	igmg.site/system/assets/js/bootstrap.min.js	Malware
2023-03-23	medium	igmg.site/system/assets/js/select2.full.min.js	Malware
2023-03-23	medium	igmg.site/system/assets/js/jquery.vmap.sampledata.js	Malware
2023-03-23	medium	igmg.site/system/assets/css/daterangepicker.min.css?1810798440	Malware
2023-03-23	medium	igmg.site/system/assets/js/jquery-ui.min.js	Malware
2023-03-23	medium	igmg.site/system/assets/css/bayrakfont.css?2048810455	Malware
2023-03-23	medium	igmg.site/system/assets/js/jquery.waypoints.min.js	Malware
2023-03-23	medium	igmg.site/system/assets/js/bootbox.min.js	Malware
2023-03-23	medium	igmg.site/system/assets/js/layout.min.js	Malware
2023-03-23	medium	igmg.site/system/assets/css/plugins.min.css?283616279	Malware
2023-03-23	medium	igmg.site/system/assets/css/ekurs.css?1911242710	Malware
2023-03-23	medium	igmg.site/system/assets/js/pwstrength.js	Malware
2023-03-23	medium	igmg.site/system/assets/js/jquery.blockui.min.js	Malware
2023-03-23	medium	igmg.site/system/assets/js/jquery.vmap.germany.js	Malware
2023-03-23	medium	igmg.site/system/assets/css/default.min.css?1393005616	Malware
2023-03-23	medium	igmg.site/system/assets/amcharts/dataloader.min.js	Malware
2023-03-23	medium	igmg.site/system/assets/dropzone/dropzone.js	Malware
2023-03-23	medium	igmg.site/system/assets/js/jquery.number.min.js	Malware
2023-03-23	medium	igmg.site/system/assets/css/components.min.css?1298161843	Malware
2023-03-23	medium	igmg.site/system/assets/fullcalendar/lib/locales-all.min.js	Malware
2023-03-23	medium	igmg.site/system/assets/js/jquery.easypiechart.min.js	Malware
2023-03-23	medium	igmg.site/system/assets/js/quick-nav.min.js	Malware
2023-03-23	medium	igmg.site/system/assets/js/jquery.dataTables.min.js	Malware
2023-03-23	medium	igmg.site/system/assets/amcharts/pie.js	Malware
2023-03-23	medium	igmg.site/system/assets/js/raphael-min.js	Malware
2023-03-23	medium	igmg.site/system/	Malware
2023-03-23	medium	igmg.site/system/assets/css/bootstrap.min.css?1083619210	Malware
2023-03-23	medium	igmg.site/system/assets/select2/select2.min.js	Malware
2023-03-23	medium	igmg.site/system/assets/js/jquery.slimscroll.min.js	Malware
2023-03-23	medium	igmg.site/system/assets/amcharts/export.css?1036740399	Malware
2023-03-23	medium	igmg.site/system/assets/amcharts/light.js	Malware
2023-03-23	medium	igmg.site/system/assets/js/jquery.vmap.russia.js	Malware
2023-03-23	medium	igmg.site/system/assets/js/jquery.vmap.js	Malware
2023-03-23	medium	igmg.site/system/assets/js/login.min.js	Malware
2023-03-23	medium	igmg.site/system/assets/css/layout.min.css?521360093	Malware

mnemonic secure dns

No alerts detected

Quad9 DNS

No alerts detected

ThreatFox

No alerts detected

JavaScript (65)

	URL	Size	First Seen	Last Seen
	unpkg.com/blob.js@1.0.1/Blob.js	6.1 kB	2023-03-07	2023-11-29
Pretty URL unpkg.com/blob.js@1.0.1/Blob.js IP 104.16.124.175 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:39:58 Last Seen2023-11-29 12:31:12 Times Seen34 Hash 2325e1bd4a8df90a1bd527f2f9434aa9 8ecccab3ed78a0b9bb31d24608d6d992fbbc00b1 d1f38f27f9aeff811d09eef64829cc6eb2091fc300afc2cab4071d8250a8fd38 Loading...

	igmg.site/system/assets/select2/select2.min.js	67 kB	2023-03-07	2024-05-04
Pretty URL igmg.site/system/assets/select2/select2.min.js IP 51.195.6.66 ASN #16276 OVH SAS Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:15:37 Last Seen2024-05-04 11:48:44 Times Seen453 Hash 26abb17f4b7260ea8c912313e2c80fef 42fe805a338908436c5c326dbf7e9aec0c8484c7 140d78b4123cbfeff506d707f57b49a5c35b0a898112975ac14640e813d7455c Loading...

	igmg.site/system/assets/js/popper.min.js	21 kB	2023-03-07	2024-02-13
Pretty URL igmg.site/system/assets/js/popper.min.js IP 51.195.6.66 ASN #16276 OVH SAS Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:39:58 Last Seen2024-02-13 20:11:28 Times Seen36 Hash f3be40c79eb3c99245088be95d024b78 ec2608fba6d6e827b8fdd0886ad8b70e8ff02647 4da459ba1114414379aa4156c25fd3be16d4c04f641bb428c0650903a24780f7 Loading...

	igmg.site/system/assets/js/bootbox.min.js	18 kB	2023-03-07	2023-05-24
Pretty URL igmg.site/system/assets/js/bootbox.min.js IP 51.195.6.66 ASN #16276 OVH SAS Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:39:59 Last Seen2023-05-24 17:31:38 Times Seen19 Hash 8a3f52babe36191baeaa8e08a7a4a588 a62f4c8ba4ebca134a4db37f92765b4dabae43bd fe2d5687d5d5d2f8d06b06f8ae2aae24ae5e125692de191000af31af5e04e245 Loading...

	igmg.site/system/assets/js/demo.min.js	4.3 kB	2023-03-07	2023-12-27
Pretty URL igmg.site/system/assets/js/demo.min.js IP 51.195.6.66 ASN #16276 OVH SAS Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:39:58 Last Seen2023-12-27 13:01:43 Times Seen29 Hash bac36cbf333287c2aa825c11b6450348 20bf43a6385f0b98504c7a32674162f9cb7bdde1 df7224580639911392f03619bdf31cf35034e6cafc715c8c557e706be0675f41 Loading...

	igmg.site/system/	140 B	2023-03-07	2023-05-21
Pretty URL igmg.site/system/ IP 51.195.6.66 ASN #16276 OVH SAS Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:39:58 Last Seen2023-05-21 13:02:45 Times Seen18 Hash 7ce2c84b957b58eddd5f0540ced95aa8 7602182b2880ca45d06ea38c2010f078b9288ef2 3abafd0ca31b05ebdf6082db218d897488cb8e1e88efc382f26f230156956b21 Loading...

	igmg.site/system/assets/js/layout.min.js	4.5 kB	2023-03-07	2023-12-27
Pretty URL igmg.site/system/assets/js/layout.min.js IP 51.195.6.66 ASN #16276 OVH SAS Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:39:58 Last Seen2023-12-27 13:01:43 Times Seen20 Hash 67f9487626ba3393f0f46657ec094744 849c7ba6f2f2a4824aabe80229a5548fd8c8b0ed e4d5c50219cb3323e90a4a69c07296ce35e35642e08e7e3e5c1d01b53fd20a43 Loading...

	igmg.site/system/assets/js/jquery.vmap.germany.js	55 kB	2023-03-07	2024-05-01
Pretty URL igmg.site/system/assets/js/jquery.vmap.germany.js IP 51.195.6.66 ASN #16276 OVH SAS Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:39:59 Last Seen2024-05-01 12:31:27 Times Seen25 Hash 90b1835d83d2880a5c578d50843005a8 4ed251e40b1c45ab1f37e04706a5206135e2dd44 b09f490426f2c8476f94edd9d15cfcd7b17da15781fa3e5ef08dcf56d24e7498 Loading...

	igmg.site/system/assets/js/jquery.counterup.min.js	1.1 kB	2023-03-07	2023-07-21
Pretty URL igmg.site/system/assets/js/jquery.counterup.min.js IP 51.195.6.66 ASN #16276 OVH SAS Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:39:59 Last Seen2023-07-21 19:24:36 Times Seen23 Hash e26cc385a6669d66b74165e780eb5f7f 517220fe23a5cca37db5a25ce3ddfba60c6d8153 7f9b26af596f8ca4d8cb8ec573f71c1d670b08cad0661726b6ec6748b5c55d9d Loading...

	igmg.site/system/assets/js/jquery.easypiechart.min.js	3.9 kB	2023-03-07	2024-05-04
Pretty URL igmg.site/system/assets/js/jquery.easypiechart.min.js IP 51.195.6.66 ASN #16276 OVH SAS Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:39:58 Last Seen2024-05-04 17:23:58 Times Seen168 Hash d2e1eadb5379ef5cfef1135d558bc140 52b415689a384bbd98d6a20be9ca10af3b255bca 68402284ca93b99eafdfe9cbd378402e8f1412fefe6c490c99ec28cc797a18c9 Loading...

	igmg.site/system/assets/js/moment-with-locales.js	619 kB	2023-03-07	2023-05-21
Pretty URL igmg.site/system/assets/js/moment-with-locales.js IP 51.195.6.66 ASN #16276 OVH SAS Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:43:48 Last Seen2023-05-21 13:02:45 Times Seen14 Hash d3fea734a4ca1acda67ba32239e82bf5 effe48375e62846c399ec769b0c33c69c1623de5 ee7bee9863e79a32763da540c039a2add2c0f0388bf920a5d8a6aba984d89a34 Loading...

	unknown	0 B	2023-03-07	2024-05-05
Pretty Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:01:59 Last Seen2024-05-05 05:32:15 Times Seen37354279 Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 Loading...

	igmg.site/system/assets/js/ekurs.js?808473292	26 kB	2023-03-14	2023-04-05
Pretty URL igmg.site/system/assets/js/ekurs.js?808473292 IP 51.195.6.66 ASN #16276 OVH SAS Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-14 18:49:45 Last Seen2023-04-05 01:50:42 Times Seen15 Hash c6eca18155ef6d8a0628bdd902837698 907210ec2a7376760423268b85b95628dd5c632f df738ed1e81159743ccd5f2b73b7b94282bc3f6fbaffecb6ff8b3b2f71e55ba9 Loading...

	igmg.site/system/assets/js/jquery.flot.min.js	53 kB	2023-03-07	2024-05-03
Pretty URL igmg.site/system/assets/js/jquery.flot.min.js IP 51.195.6.66 ASN #16276 OVH SAS Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:39:58 Last Seen2024-05-03 22:47:48 Times Seen132 Hash 9927ea93540a2a08b3c5125ff2126102 935a7104dda9dcfce22258659ab6f6732059bc22 ba4498a5218c71658ae6433b625664cd0fcc9980d06549983ea079828159c169 Loading...

	igmg.site/system/assets/js/jquery.vmap.usa.js	48 kB	2023-03-07	2024-05-01
Pretty URL igmg.site/system/assets/js/jquery.vmap.usa.js IP 51.195.6.66 ASN #16276 OVH SAS Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:39:58 Last Seen2024-05-01 12:31:27 Times Seen28 Hash 2984c6e4c0a70882512318a394d1b3b9 79181d184b0cd361d498f6f65a7c5dc39dd4ab18 5d7a815e58d4ef5a171b3c91c3be950161d3704a7337c095c3539e231102f091 Loading...

	igmg.site/system/assets/js/jquery.validate.min.js	21 kB	2023-03-07	2024-05-03
Pretty URL igmg.site/system/assets/js/jquery.validate.min.js IP 51.195.6.66 ASN #16276 OVH SAS Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:23:34 Last Seen2024-05-03 23:56:02 Times Seen456 Hash 3b00d60f87e893caf2649eff0d48813a fc82fb23ccece3522359fe88dad3569925b3379c 2e3e3b2660cbfaac5febf7a50b31d0494159989626a84102b2c3792cffe27d13 Loading...

	igmg.site/	22 B	2023-03-07	2023-04-05
Pretty URL igmg.site/ IP 51.195.6.66 ASN #16276 OVH SAS Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:43:48 Last Seen2023-04-05 01:50:42 Times Seen9 Hash cb33c875c4d30416f27f9b6c229fa157 62b6e1c67a85ae84d116f2fe4ccd632d6574aef8 b6680881cdfd9ce970c18e57aa22a35f3415de888c62235f2b64b3ba8d8413ad Loading...

	unpkg.com/xlsx/dist/xlsx.full.min.js	882 kB	2023-03-07	2024-02-24
Pretty URL unpkg.com/xlsx/dist/xlsx.full.min.js IP 104.16.124.175 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:39:58 Last Seen2024-02-24 12:13:02 Times Seen22 Hash 31e9848e80e1ddf43c5aa31009cd2b7b 7f749f81a45a53229136c6c1f1d50dcb16ddc233 c9506197caf809a075b6dee1da0d36fb19da7158ffe8a88e7b0c96c5d8623c99 Loading...

	unpkg.com/file-saver@1.3.3/FileSaver.js	6.0 kB	2023-03-07	2023-12-15
Pretty URL unpkg.com/file-saver@1.3.3/FileSaver.js IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:39:59 Last Seen2023-12-15 18:17:09 Times Seen86 Hash 45f38b6b3af540acb66ae0cc2ef3c47f a6957eb4d4d635cda4966133162726fefc85b903 86db91d4ec31f22f619b887863877f16394f2e88f6b5e426849e569cd4a8df0d Loading...

	igmg.site/system/assets/js/morris.min.js	36 kB	2023-03-07	2024-04-29
Pretty URL igmg.site/system/assets/js/morris.min.js IP 51.195.6.66 ASN #16276 OVH SAS Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:39:58 Last Seen2024-04-29 13:42:38 Times Seen283 Hash fadac462637afd6cdc0cb0a0137629af f40a80188a0422041f59284940c46d86c163a279 d2b83656d7c9a375548a3fd463d5f41c93fb3444fab60018f7c68c39fc0fd0ff Loading...

	igmg.site/system/assets/js/app.min.js	16 kB	2023-03-07	2023-05-21
Pretty URL igmg.site/system/assets/js/app.min.js IP 51.195.6.66 ASN #16276 OVH SAS Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:39:58 Last Seen2023-05-21 13:02:46 Times Seen21 Hash c7c42c6e0e9223597a6c12d82b45651e 163b42413ff275a864eeb2a4de81e6a972e800fe bf9eb82890be1766a2f0758bcfeaba6cdd93022189ce165c847f076fd0e862dd Loading...

	igmg.site/system/	20 kB	2023-03-07	2023-04-05
Pretty URL igmg.site/system/ IP 51.195.6.66 ASN #16276 OVH SAS Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:39:58 Last Seen2023-04-05 01:50:42 Times Seen15 Hash 59ca5042e01ef5a491638f41bd1c78d7 1f5c15e67d56c323a171c1eae5c54f9c06477bd6 72fac4ea20983006678d80d77d89f0b3c428df6f06650d6015ac8460057ad11d Loading...

	igmg.site/system/assets/js/jquery.dataTables.min.js	82 kB	2023-03-07	2024-04-17
Pretty URL igmg.site/system/assets/js/jquery.dataTables.min.js IP 51.195.6.66 ASN #16276 OVH SAS Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:39:58 Last Seen2024-04-17 03:44:44 Times Seen127 Hash 114c26084cb472c6a5f8b58908472ad7 997b4df51ef05dde32eabf731e945efb4ff9126d a9c575c2bf9b9f836806dc58aa0866cb558806fc5ea1ef2f4250a8c0b1be7278 Loading...

	igmg.site/system/assets/js/daterangepicker.min.js	32 kB	2023-03-07	2024-03-16
Pretty URL igmg.site/system/assets/js/daterangepicker.min.js IP 51.195.6.66 ASN #16276 OVH SAS Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:27:58 Last Seen2024-03-16 14:33:49 Times Seen96 Hash 986689503bc2bda3e369b4273b3cb21d 9e4b415c6c60a7f7b6d23d580ae3adaabf65b296 db8ada507e2c907f71c42bbda3aedeb77a318260c8713705386d5fc714027f7c Loading...

	igmg.site/system/	1.1 kB	2023-03-07	2023-04-05
Pretty URL igmg.site/system/ IP 51.195.6.66 ASN #16276 OVH SAS Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:39:59 Last Seen2023-04-05 01:50:42 Times Seen15 Hash eb1251f79335352d441e6407529948cd 53aae33613b2e143a644f6bf21c7355a1295bcbb 9b4359a2d79d1a944001dc99c12e418bc500be4048f7afd4010f9407e807bb95 Loading...

	igmg.site/system/assets/js/login.min.js	3.4 kB	2023-03-07	2023-11-19
Pretty URL igmg.site/system/assets/js/login.min.js IP 51.195.6.66 ASN #16276 OVH SAS Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:39:59 Last Seen2023-11-19 08:32:21 Times Seen26 Hash ae25ccc2909b93703bf61e396bfc5444 dc05c4cb3fa4ac2b2de191b68eddb23aa129beb5 a2ba9015d446f912cc8206bb3b314355eedc6f5cf563375e35a09ea377e5b8f9 Loading...

	igmg.site/system/	63 B	2023-03-07	2023-05-21
Pretty URL igmg.site/system/ IP 51.195.6.66 ASN #16276 OVH SAS Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:39:58 Last Seen2023-05-21 13:02:45 Times Seen18 Hash ce493a576c54a2b5087caa6c47a77dca 123b796e9a9fcd267063aed47adabce817e1b97b 8fa03092a5bcc44c371ef5a3ecff2a137f79e8239caf9e574b12a386549daf3b Loading...

	igmg.site/system/assets/amcharts/serial.js	49 kB	2023-03-07	2023-05-21
Pretty URL igmg.site/system/assets/amcharts/serial.js IP 51.195.6.66 ASN #16276 OVH SAS Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:39:58 Last Seen2023-05-21 13:02:46 Times Seen21 Hash 15448a1138fd7a1c8d0ca7f8bb68027d a015004a89608b6ba3dc930074947e74519192c8 b70c114728313b0fdda4c1d760ce8354cb9195d804362976c566dd8eae66e62c Loading...

	igmg.site/system/assets/js/jquery.vmap.russia.js	158 kB	2023-03-07	2024-05-01
Pretty URL igmg.site/system/assets/js/jquery.vmap.russia.js IP 51.195.6.66 ASN #16276 OVH SAS Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:39:58 Last Seen2024-05-01 12:31:27 Times Seen23 Hash 866659c3095a9fc3772ae96ee4335080 29eb6ae460e11eb58213181ac1920d56b8f2d606 0292017ecfc5201c15d194b1351d14bd77dc199fdb0695d6b363d3a1a5c3f976 Loading...

	igmg.site/system/assets/js/jquery.flot.resize.min.js	2.3 kB	2023-03-07	2024-05-03
Pretty URL igmg.site/system/assets/js/jquery.flot.resize.min.js IP 51.195.6.66 ASN #16276 OVH SAS Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:39:59 Last Seen2024-05-03 22:47:47 Times Seen47 Hash 31e21fd1856200b80b1ed9f64f78dee0 ca15494c798ac1393d1ce2733845f04e378b086f 082e4e0fea3505e50b3534a6e801b3b55a00857aaa9b8a242ae669edf1affc99 Loading...

	igmg.site/system/assets/js/quick-sidebar.min.js	2.8 kB	2023-03-07	2024-01-30
Pretty URL igmg.site/system/assets/js/quick-sidebar.min.js IP 51.195.6.66 ASN #16276 OVH SAS Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:39:59 Last Seen2024-01-30 15:50:11 Times Seen30 Hash 9143e8f8630f1fe1447f525acce2c3f3 77fbc027a182b5e659f9955ee2b78371cf3c9601 ac9a539357da2b28e2240681309f298906309e4c9c968ced29890269b2269e79 Loading...

	igmg.site/system/assets/fullcalendar/lib/locales-all.min.js	18 kB	2023-03-07	2023-04-05
Pretty URL igmg.site/system/assets/fullcalendar/lib/locales-all.min.js IP 51.195.6.66 ASN #16276 OVH SAS Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:39:58 Last Seen2023-04-05 01:50:42 Times Seen15 Hash 73530777ac3445350e0e3b66eb163c4c a26d3ac434ccd2d8113efc893995ab60b33d73e3 9731a4e7217279534d7a077d6ebe8c5d95172de328cb5c55e4dfe4ef59055dbc Loading...

	igmg.site/system/assets/js/bootstrap.min.js	60 kB	2023-03-07	2024-05-02
Pretty URL igmg.site/system/assets/js/bootstrap.min.js IP 51.195.6.66 ASN #16276 OVH SAS Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:39:59 Last Seen2024-05-02 08:01:18 Times Seen49 Hash c6bb081c5cc9b6a562db61d021528815 e414856c1ef34eb5c5bfcfae6cd1d2b0cedacb82 30e4f792a9e8445bf42c1be07f66ebb88420558a0f9891bebc166f0a1264cc8a Loading...

	igmg.site/system/assets/js/jquery.waypoints.min.js	8.0 kB	2023-03-07	2024-05-04
Pretty URL igmg.site/system/assets/js/jquery.waypoints.min.js IP 51.195.6.66 ASN #16276 OVH SAS Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:07:26 Last Seen2024-05-04 06:24:19 Times Seen6816 Hash dfe0eedf8da578f4a4c43b05448c51d9 812d7071b4e44b1aa5d5ea6c7ce0b79eb9d46520 a0fded691aed767f851011cd3185b928619298a21a0fbdad4808a9e88b490833 Loading...

	igmg.site/system/assets/js/jquery.vmap.js	28 kB	2023-03-07	2023-05-21
Pretty URL igmg.site/system/assets/js/jquery.vmap.js IP 51.195.6.66 ASN #16276 OVH SAS Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:39:58 Last Seen2023-05-21 13:02:46 Times Seen26 Hash 9eca1222ba4eb1c3c1158c2b446add2e 7330279b159843b70215149cd6202604d9cafef5 bb2fd702647bb08cfc13f45a328a0e1974cb9e5b8d1f719904d36b1d72ef43a6 Loading...

	igmg.site/system/assets/js/fullcalendar.min.js	98 kB	2023-03-07	2023-11-28
Pretty URL igmg.site/system/assets/js/fullcalendar.min.js IP 51.195.6.66 ASN #16276 OVH SAS Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:39:58 Last Seen2023-11-28 10:02:54 Times Seen28 Hash 8852a7a154e3773480c357c7a636098c 96e55107d7f5412129c6c232825339787f1186ab 10d5db5ad06ffca64505bee9513e18428016adc95e12a97c0d74f3b02a3f60b4 Loading...

	igmg.site/system/	1.9 kB	2023-03-07	2023-04-05
Pretty URL igmg.site/system/ IP 51.195.6.66 ASN #16276 OVH SAS Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:39:58 Last Seen2023-04-05 01:50:42 Times Seen15 Hash c571c8d720e259471db15fd621446176 88c101b22810b41c46ef542c3034eb53587a6a0e a9e7291a576d2a4b4d8631489e52f7a6e142fa441c6f4c5b5f487a717f3ce663 Loading...

	maps.googleapis.com/maps/api/js?key=AIzaSyCRQS0vrHQ-0PdWwo4RQRcWkcYh_zFcJFA&libraries=places&callback=geoLocationInit	175 kB	2023-03-29	2023-03-29
Pretty URL maps.googleapis.com/maps/api/js?key=AIzaSyCRQS0vrHQ-0PdWwo4RQRcWkcYh_zFcJFA&libraries=places&callback=geoLocationInit IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-29 21:09:58 Last Seen2023-03-29 21:09:58 Times Seen1 Hash 8360e96f32b63809d6dcfcf17bcc68ed 913b3108a9fd3f1e2605e4bf4d1bcfbb7cbad1f6 737997bd5fa78c5805337ceeaa4e29df20ec0c2b020ef1f2e8163a8c2210523e Loading...

	maps.googleapis.com/maps-api-v3/api/js/52/6/util.js	165 kB	2023-03-26	2024-01-20
Pretty URL maps.googleapis.com/maps-api-v3/api/js/52/6/util.js IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-26 14:27:24 Last Seen2024-01-20 22:45:59 Times Seen829 Hash db59a2b62c461b092e39a4a7bd83920b 5e1111bcc399eaa3ca075b4c77d3a77cf85e522f cda881db98d107ebd3b91eb46c5d6f3fcd18d9230250b5bdb1d2f0b6abe50673 Loading...

	igmg.site/system/assets/js/jquery.min.js	97 kB	2023-03-07	2024-05-04
Pretty URL igmg.site/system/assets/js/jquery.min.js IP 51.195.6.66 ASN #16276 OVH SAS Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:06:51 Last Seen2024-05-04 22:24:50 Times Seen2432 Hash 0fca26b5a37a66d68d0f4406976be4b5 ee000eb654b3bd37185665d3901e93b34ce1aa52 8c2812ded6436715279f8fd8db58de307aa39ab0296fe3cf0e879067c51e9b18 Loading...

	igmg.site/system/assets/js/pwstrength.js	39 kB	2023-03-07	2023-05-21
Pretty URL igmg.site/system/assets/js/pwstrength.js IP 51.195.6.66 ASN #16276 OVH SAS Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:39:58 Last Seen2023-05-21 13:02:46 Times Seen21 Hash 0c011d0525dceed9fad00e8f862e33ad 878c379ad6613d23629806ac2ee328fa09c95295 d41bd9460fcca7e5f24154121bd08b1fdd4db7b7f1412a230a9d3455afcc932a Loading...

	igmg.site/system/assets/js/raphael-min.js	92 kB	2023-03-07	2023-05-03
Pretty URL igmg.site/system/assets/js/raphael-min.js IP 51.195.6.66 ASN #16276 OVH SAS Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:39:58 Last Seen2023-05-03 00:03:14 Times Seen22 Hash b8aae4c0168869b23ab1ca7e206a040c 021f5ed820c36a2e3dc254338f89424a85aef371 befd2cab719fa10dba3fdb0f28b9257cc4fd4f6c9392a45742e1f2860e0cc080 Loading...

	igmg.site/system/assets/js/dashboard.min.js	21 kB	2023-03-07	2023-05-21
Pretty URL igmg.site/system/assets/js/dashboard.min.js IP 51.195.6.66 ASN #16276 OVH SAS Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:39:58 Last Seen2023-05-21 13:02:46 Times Seen21 Hash 0b3c77a1425fcd1b1969c47df1c669ee 4e1f53b25303b03fba47ecdaf8e90a762ec17d4b 9e5b93f58e47064622a70528e880d08be545ca1a8f8ad0b1622f9124a6983c4d Loading...

	igmg.site/system/?act=js_translates	62 B	2023-03-07	2023-05-21
Pretty URL igmg.site/system/?act=js_translates IP 51.195.6.66 ASN #16276 OVH SAS Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:39:59 Last Seen2023-05-21 13:02:45 Times Seen18 Hash 72a50a7005d7b5000a39f47a60b73e2a a31924727b76096d857774b206691949b3b65bda 3da0747f69b0f9a5368ee07ac222472d0b2cc78bc54b864ac6cdc7fbed2d7b7c Loading...

	unpkg.com/xlsx/dist/shim.min.js	5.7 kB	2023-03-07	2024-02-27
Pretty URL unpkg.com/xlsx/dist/shim.min.js IP 104.16.124.175 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:39:59 Last Seen2024-02-27 04:11:30 Times Seen33 Hash d98c1e57a8bd101276e93ff22c7899ef 67b225940d0d4123e8c6b484e9cf5297b3e0c230 0c16091947c28ec153e281cd303d8b3867bd1d964607af6ad4f264ccd9e512e7 Loading...

	igmg.site/system/assets/js/jquery.number.min.js	6.2 kB	2023-03-07	2024-02-08
Pretty URL igmg.site/system/assets/js/jquery.number.min.js IP 51.195.6.66 ASN #16276 OVH SAS Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:39:58 Last Seen2024-02-08 13:14:51 Times Seen21 Hash c22635e10a8ca07b578c4bc5f7706ba1 9171fffc4de5f651079115ae5653ba4b3121448b 03b3511d7999022c81ee03fb6a29a231660bea40b2dfbb4d07d4084118593468 Loading...

	igmg.site/system/assets/js/jquery.flot.categories.min.js	2.6 kB	2023-03-07	2023-06-02
Pretty URL igmg.site/system/assets/js/jquery.flot.categories.min.js IP 51.195.6.66 ASN #16276 OVH SAS Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:39:58 Last Seen2023-06-02 17:26:05 Times Seen28 Hash ca6ccf0c7988a62a59b95b5d54cceb3e ef1b90d2f4d328a79949e7de7c57f9a074ac5aba a5dc326686cafb4ea3c63979a7577eae0778cac43cf3db59f4e39c91f4debfef Loading...

	igmg.site/system/assets/js/jquery.vmap.sampledata.js	2.4 kB	2023-03-07	2024-05-01
Pretty URL igmg.site/system/assets/js/jquery.vmap.sampledata.js IP 51.195.6.66 ASN #16276 OVH SAS Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:39:58 Last Seen2024-05-01 12:31:27 Times Seen62 Hash b6f14a696445b519ec8e5b78da5cd25f e668e7572e892fcbd2bc33f95f2d6b87405b71e9 fa625655ea804dceabcd523b0c3ddd2b8333cb04084a8eed28aa1bd9339d3d1b Loading...

	igmg.site/system/assets/js/quick-nav.min.js	415 B	2023-03-07	2024-01-30
Pretty URL igmg.site/system/assets/js/quick-nav.min.js IP 51.195.6.66 ASN #16276 OVH SAS Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:39:59 Last Seen2024-01-30 15:50:11 Times Seen38 Hash 7e7cb7fa0d7cb7c315fe672b7e6bc30a 0b7900b9fadf5a5f18f444146a867e0f48cd5351 a67562f88befda9b96ff9f0d98c7162839b8c5a0934d332e6e0c3660ebdcec4f Loading...

	igmg.site/system/assets/js/jquery.vmap.world.js	61 kB	2023-03-07	2024-05-01
Pretty URL igmg.site/system/assets/js/jquery.vmap.world.js IP 51.195.6.66 ASN #16276 OVH SAS Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:39:59 Last Seen2024-05-01 12:31:27 Times Seen29 Hash 584eac9e358afdcdb9970eb2a09f095b 8284c27a6fbc4125fc72194f93d8e815f56d3731 f358d8571fc218aa2315553ceb3be5747170a460ab83204a44d097d6558d3993 Loading...

	igmg.site/system/assets/js/jquery.blockui.min.js	9.6 kB	2023-03-07	2024-04-28
Pretty URL igmg.site/system/assets/js/jquery.blockui.min.js IP 51.195.6.66 ASN #16276 OVH SAS Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:39:58 Last Seen2024-04-28 18:49:03 Times Seen73 Hash f5648ad27cd84967fd417b394c1689a5 0e6a0cb2e7a36cc94033a0fa3b99cab0d22674eb b7c5671c199df9e6bba7a2f4aea76afc96a3fe716611968a79c2091a06b7f20b Loading...

	igmg.site/system/assets/tinymce/tinymce.min.js	470 kB	2023-03-07	2024-02-02
Pretty URL igmg.site/system/assets/tinymce/tinymce.min.js IP 51.195.6.66 ASN #16276 OVH SAS Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:39:58 Last Seen2024-02-02 06:19:28 Times Seen32 Hash d51a90121b08e6b946e131e6dc52a860 94174332c504c8183a8bda9b10d59fafc4fa974f 353281486901889ec21017db9f7583049d620715465a9e2ced6bacfaa0288076 Loading...

	igmg.site/system/assets/amcharts/pie.js	15 kB	2023-03-07	2023-05-21
Pretty URL igmg.site/system/assets/amcharts/pie.js IP 51.195.6.66 ASN #16276 OVH SAS Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:39:58 Last Seen2023-05-21 13:02:46 Times Seen21 Hash 0d9992f6a1668f0ff10af5849c264ff5 4bb4c591aa3072674c416d7fad2987a813d02c3a 2eef0d943257edc440f10105f3da6cc5d7787e3af4c8f6dadbf26926e5e066ce Loading...

	igmg.site/system/assets/amcharts/dataloader.min.js	6.8 kB	2023-03-07	2024-02-27
Pretty URL igmg.site/system/assets/amcharts/dataloader.min.js IP 51.195.6.66 ASN #16276 OVH SAS Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:39:58 Last Seen2024-02-27 09:17:32 Times Seen29 Hash 5d7f82037f8d18817043f7f95530d24c 7e3a674a8c485223f3bbf35ac568984c69ca7fce cae7bac7f1593451b941d21a66cd560612bf29a1678be4019d5d579cfd4994d2 Loading...

	igmg.site/system/assets/js/jquery.slimscroll.min.js	5.2 kB	2023-03-07	2024-04-17
Pretty URL igmg.site/system/assets/js/jquery.slimscroll.min.js IP 51.195.6.66 ASN #16276 OVH SAS Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:39:58 Last Seen2024-04-17 03:43:18 Times Seen180 Hash a83ca7a332677203800b1d9b7d22eac0 b0d21f603aee7a1460bcbe559b1e5d010c38941e 6e13ca9248b431e3be16a43100185e8e3a3311001154d73c30ddbcce1a4d5d94 Loading...

	igmg.site/system/assets/js/select2.full.min.js	75 kB	2023-03-07	2024-05-01
Pretty URL igmg.site/system/assets/js/select2.full.min.js IP 51.195.6.66 ASN #16276 OVH SAS Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:39:58 Last Seen2024-05-01 12:55:49 Times Seen656 Hash da607360bcc65284a197ada3d68d5439 a3cf7f0ff2baef254ce214b9bb042f01a7140a35 149b8bc61889897fb9420b347362582c8c89e62d28e1c720e8343ace08ad0986 Loading...

	igmg.site/system/assets/select2/tr.js	773 B	2023-03-07	2023-05-21
Pretty URL igmg.site/system/assets/select2/tr.js IP 51.195.6.66 ASN #16276 OVH SAS Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:39:58 Last Seen2023-05-21 13:02:45 Times Seen18 Hash 58a4e9829081626b1aaad3d46ccbdddf f30db1f40ab825e6066afd40461952fe436abdec 5938b1a44ef3cfd30e93f03e2a0d23997a0aca6fc526d154abbf8708df67baf2 Loading...

	igmg.site/system/assets/amcharts/export.min.js	62 kB	2023-03-07	2023-04-05
Pretty URL igmg.site/system/assets/amcharts/export.min.js IP 51.195.6.66 ASN #16276 OVH SAS Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:39:59 Last Seen2023-04-05 01:50:42 Times Seen15 Hash a919d64d492bf249b42e2bfa642137c0 6b8f2cc95ea7a4192d9428b0cbb4da85ddb90e68 67174a218d77309d99565c25993d84c67ea26802cf3305ddf903283c8a038040 Loading...

	igmg.site/system/assets/js/jquery.vmap.europe.js	98 kB	2023-03-07	2023-05-21
Pretty URL igmg.site/system/assets/js/jquery.vmap.europe.js IP 51.195.6.66 ASN #16276 OVH SAS Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:39:58 Last Seen2023-05-21 13:02:46 Times Seen25 Hash 92f5ac5a6be4f9d48e9b870ebc06cef8 cd2464bbdc9535cb6c9a18a97e50db2d7ae22a67 6b055c35eee34bba53f4f35c681db33c4f65f796b9597cd8d0ac29d5a00bdbc1 Loading...

	igmg.site/system/assets/js/bootstrap-switch.min.js	15 kB	2023-03-07	2024-04-17
Pretty URL igmg.site/system/assets/js/bootstrap-switch.min.js IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:39:58 Last Seen2024-04-17 03:43:18 Times Seen213 Hash 12ce5d59f687e3c2a8d8395aee0c89b3 7e0725897d7b99c3c33b56915d202e2dde552ea9 b009172f00c548007f4b4f4908e591be7a0e9e11980eef55a8c9db08a0213332 Loading...

	igmg.site/system/assets/js/additional-methods.min.js	17 kB	2023-03-07	2024-05-03
Pretty URL igmg.site/system/assets/js/additional-methods.min.js IP 51.195.6.66 ASN #16276 OVH SAS Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:27:58 Last Seen2024-05-03 18:07:04 Times Seen90 Hash 424557ef2a8b89693026b3b43d4b1e1c 1b7274faaf4a99dccf4a55f69c44f117e4fd9d92 2b9a658314baccfef5f3b1d279571f0c1dbe62e6f71735828dd7606e426ba798 Loading...

	igmg.site/system/assets/amcharts/light.js	2.9 kB	2023-03-07	2024-05-01
Pretty URL igmg.site/system/assets/amcharts/light.js IP 51.195.6.66 ASN #16276 OVH SAS Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:39:58 Last Seen2024-05-01 11:55:53 Times Seen32 Hash 6b2c19499a66186c2cb4678a0cc4ab3e 50fe4a3f8e94dbdac3e6bfe406e03b2d6bfd7b27 12f63f53a92496268edf3c7a7b12a05bafadf5722cc9e3f24801715af6df9373 Loading...

	igmg.site/system/assets/colorbox/jquery.colorbox-min.js	12 kB	2023-03-07	2024-05-04
Pretty URL igmg.site/system/assets/colorbox/jquery.colorbox-min.js IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:07:22 Last Seen2024-05-04 17:45:22 Times Seen3666 Hash 663dd01c8e3859c4aa97cf088c49a64e 4181716dabb9a951a17bfa6e3a03f48ad17e016f 41bc4d4fe88139d6ee89abfcb2abac71e1430d85dbffc0be7c8f6bd36f4ced7e Loading...

		Size	First Seen	Last Seen
	#1 Write - a92328b4dcb2323bae3b39354bc7c8cf	444 B	2023-03-07	2024-02-27
Pretty Observations First Seen2023-03-07 01:39:59 Last Seen2024-02-27 04:11:30 Times Seen32 Hash a92328b4dcb2323bae3b39354bc7c8cf 9627c35f9be833d7818a17f1ff94e7bc6007f982 db50c44b45d1a31d1ae2bd4adc4857bb7418965f76ffad53a594d53ab7ff98c9 Loading...

	#2 Write - b955fcdb49decf570e74451fa9e98c10	859 B	2023-03-07	2024-02-27
Pretty Observations First Seen2023-03-07 01:39:59 Last Seen2024-02-27 04:11:30 Times Seen32 Hash b955fcdb49decf570e74451fa9e98c10 102926f8d48e6010d53bca230b49c1b649c2c993 e7dd1ff6a4b1da81c74c2ae4612526abf2a685d43dad244a639d3ecd8c609f55 Loading...

HTTP Transactions (117)

URL IP Response Size

igmg.site/

51.195.6.66

301 Moved Permanently

162 B

URL HTTP/1.1
igmg.site/
IP
51.195.6.66:0
ASN
#16276 OVH SAS

File type
HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Size
162 B (162 bytes)
Hash
4f8e702cc244ec5d4de32740c0ecbd97
3adb1f02d5b6054de0046e367c1d687b6cdf7aff
9e17cb15dd75bbbd5dbb984eda674863c3b10ab72613cf8a39a00c3e11a8492a

HTTP Headers

GET / HTTP/1.1
Host: igmg.site
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1

HTTP/1.1 301 Moved Permanently
Server: nginx
Date: Thu, 23 Mar 2023 23:01:57 GMT
Content-Type: text/html
Content-Length: 162
Connection: keep-alive
Location: https://igmg.site/

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
bea3185dd820a31c1981317f37c3456d
1a548a5d27270fc11df9011837a7149571cedd78
469b97bf9f57401b3c9571039483589f2815f4794212b75c7c85cfefe0ae71e9

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "469B97BF9F57401B3C9571039483589F2815F4794212B75C7C85CFEFE0AE71E9"
Last-Modified: Wed, 22 Mar 2023 14:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7556
Expires: Fri, 24 Mar 2023 01:07:53 GMT
Date: Thu, 23 Mar 2023 23:01:57 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
65fc860bc043f3fb83bdc3debdcd322d
418010755deae099ef1284e402813c5837a10f42
d93d50c523c7f735987aba09db628259441eb75efe713a2df3c214e1fb8b5171

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D93D50C523C7F735987ABA09DB628259441EB75EFE713A2DF3C214E1FB8B5171"
Last-Modified: Wed, 22 Mar 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7184
Expires: Fri, 24 Mar 2023 01:01:41 GMT
Date: Thu, 23 Mar 2023 23:01:57 GMT
Connection: keep-alive

firefox.settings.services.mozilla.com/v1/

35.241.9.150

200 OK

939 B

URL HTTP/2
firefox.settings.services.mozilla.com/v1/
IP
35.241.9.150:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Size
939 B (939 bytes)
Hash
4ad6984a756720fbfff47b37a75513a2
355e35258114452af8b9638985ed9d8ef3bf0aca
43181fccb10652c68cae86e5e32b4e8f426fb5ad49d8125cb99e072cff573cf5

HTTP Headers

GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Retry-After, Content-Length, Alert, Content-Type, Backoff
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Thu, 23 Mar 2023 22:15:08 GMT
content-type: application/json
age: 2809
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
dc2752d83fbed82852248898a132467a
b27a6b4af2e07663a58cafb641513f7224c7a7c3
ea7838393d83805a7b8a2b01bd09e4423617c4da285b983a11e9ba36266810d5

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "EA7838393D83805A7B8A2B01BD09E4423617C4DA285B983A11E9BA36266810D5"
Last-Modified: Wed, 22 Mar 2023 19:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=13022
Expires: Fri, 24 Mar 2023 02:38:59 GMT
Date: Thu, 23 Mar 2023 23:01:57 GMT
Connection: keep-alive

content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-04-30-16-53-14.chain

34.160.144.191

200 OK

5.3 kB

URL HTTP/2
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-04-30-16-53-14.chain
IP
34.160.144.191:0
ASN
#15169 GOOGLE

File type
PEM certificate\012- , ASCII text
Size
5.3 kB (5348 bytes)
Hash
e7bace7c1e04d44012e37ddffe36e5d5
3ac8d7c0a9d3e3f0b28b2530c7b8d8407b4042c2
6b4f80f2e95b26f6122ea8dcd0ef8d762299be822c69e839fc37581ca2bcb5f2

HTTP Headers

GET /chains/remote-settings.content-signature.mozilla.org-2023-04-30-16-53-14.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
x-amz-id-2: 5DLPvyIULTtfH9APjpIc/rjYTsgrH/gSI9xHrM1yQf5lbtIGJuw5rpmVlaH6XSg5Me1MWaYAegc=
x-amz-request-id: 0MRZXWCET9E7JAKA
x-amz-server-side-encryption: AES256
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Thu, 23 Mar 2023 22:54:13 GMT
age: 464
last-modified: Sat, 11 Mar 2023 16:53:15 GMT
etag: "e7bace7c1e04d44012e37ddffe36e5d5"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2

contile.services.mozilla.com/v1/tiles

34.117.237.239

200 OK

12 B

URL HTTP/2
contile.services.mozilla.com/v1/tiles
IP
34.117.237.239:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with no line terminators
Size
12 B (12 bytes)
Hash
23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3

HTTP Headers

GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
date: Thu, 23 Mar 2023 23:01:57 GMT
content-type: application/json
content-length: 12
access-control-allow-credentials: true
access-control-expose-headers: content-type
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
9d4ca74d26abf8563a5de0511c896cb5
70387faf18b1ff5b9be1cd645e097550c94b714e
d8cae9c77eafe15d37f0f90c955d093afcb0fbd6b3c445a77fccfd9029f9143f

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D8CAE9C77EAFE15D37F0F90C955D093AFCB0FBD6B3C445A77FCCFD9029F9143F"
Last-Modified: Wed, 22 Mar 2023 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21570
Expires: Fri, 24 Mar 2023 05:01:27 GMT
Date: Thu, 23 Mar 2023 23:01:57 GMT
Connection: keep-alive

igmg.site/system

51.195.6.66

301 Moved Permanently

233 B

URL HTTP/2
igmg.site/system
IP
51.195.6.66:0
ASN
#16276 OVH SAS

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Size
233 B (233 bytes)
Hash
84565f4bd848790acc0d97cbfad343dc
d5d36eac47d960d695b06ab6bbdda0350729c3f6
faa4c981c4c96a0ec17ad1a519c05efdafae7e67fe7205681d3fb53565d91a9c

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /system HTTP/1.1
Host: igmg.site
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://igmg.site/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 301 Moved Permanently
server: nginx
date: Thu, 23 Mar 2023 23:01:58 GMT
content-type: text/html; charset=iso-8859-1
content-length: 233
location: https://igmg.site/system/
x-cache-status: MISS
x-powered-by: PleskLin
X-Firefox-Spdy: h2

cdnjs.cloudflare.com/ajax/libs/dropzone/5.4.0/dropzone.css

104.17.25.14

200 OK

1.5 kB

URL HTTP/2
cdnjs.cloudflare.com/ajax/libs/dropzone/5.4.0/dropzone.css
IP
104.17.25.14:0
ASN
#13335 CLOUDFLARENET

File type
ASCII text
Size
1.5 kB (1464 bytes)
Hash
593403dc4ce9adcdf7d8b44f18513be3
ab9859e2e1e1440884c15e707e9c2eb655c60711
8dfffecd68c0f0dec371039f73aeb8d4d8551e350b42cca7da50e2d7df142263

HTTP Headers

GET /ajax/libs/dropzone/5.4.0/dropzone.css HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://igmg.site/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Thu, 23 Mar 2023 23:01:58 GMT
content-type: text/css; charset=utf-8
content-length: 1464
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "5eb03e3e-312b"
last-modified: Mon, 04 May 2020 16:09:34 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 50386
expires: Tue, 12 Mar 2024 23:01:58 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=RponbwOXWjcbVdcZI1f3pSv8hIoJ0Eh65pOF69Mfpvp99lY5piA9ZqTiCHVo749mwCpsP%2FHq89Vq%2FIn8FgaTc4io3o%2BiWQ2IwfkCiY6z2I9gmJpzAZ%2F0xVJeaiqursYSw7YujVwM"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 7aca4c9f5ff2fab4-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.163

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.163:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
1d54d3c84e73cd1f00a835aa7616c399
e869898915967fb645a7ae3bd711a831329cc792
9cca1d2ea17f54a8688823e6fb8cbb7247c0a808808b382ffdda35b2770a26f8

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 23 Mar 2023 23:01:58 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

igmg.site/system/images/igmg_os_logo.png

51.195.6.66

200 OK

4.9 kB

URL HTTP/2
igmg.site/system/images/igmg_os_logo.png
IP
51.195.6.66:0
ASN
#16276 OVH SAS

File type
PNG image data, 400 x 54, 8-bit/color RGBA, non-interlaced\012- data
Size
4.9 kB (4912 bytes)
Hash
bb5bd0155bb30ba44c129be28c0e3428
885a119b71895fa9699bb1afff6f5d503364744a
3347cf02ef082e471361b37cdc867dea84e44c7ce138502c13e8284855d2d4a1

HTTP Headers

GET /system/images/igmg_os_logo.png HTTP/1.1
Host: igmg.site
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://igmg.site/system/
Cookie: PHPSESSID=mhkanfsohjrh27auu22920mu4p
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Thu, 23 Mar 2023 23:01:58 GMT
content-type: image/png
content-length: 4912
last-modified: Wed, 18 May 2022 15:54:17 GMT
etag: "628516a9-1330"
x-cache-status: BYPASS
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2

igmg.site/system/images/program5.png?r=1257752025

51.195.6.66

200 OK

34 kB

URL HTTP/2
igmg.site/system/images/program5.png?r=1257752025
IP
51.195.6.66:0
ASN
#16276 OVH SAS

File type
PNG image data, 150 x 150, 8-bit/color RGB, non-interlaced\012- data
Size
34 kB (34008 bytes)
Hash
10df1fbe515007849e1dce800a69b332
3476224effecaa7c050cdebba17da09699e356c5
f914c7f0a5075be27429eae01730847ab78864d092d6e3cfdedcc9f08d95ea74

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /system/images/program5.png?r=1257752025 HTTP/1.1
Host: igmg.site
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://igmg.site/system/
Cookie: PHPSESSID=mhkanfsohjrh27auu22920mu4p
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Thu, 23 Mar 2023 23:01:58 GMT
content-type: image/png
content-length: 34008
last-modified: Wed, 18 May 2022 15:54:17 GMT
etag: "628516a9-84d8"
x-cache-status: BYPASS
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2

igmg.site/system/images/iros_amblem.png?r=2023830170

51.195.6.66

200 OK

4.3 kB

URL HTTP/2
igmg.site/system/images/iros_amblem.png?r=2023830170
IP
51.195.6.66:0
ASN
#16276 OVH SAS

File type
PNG image data, 200 x 200, 8-bit/color RGBA, non-interlaced\012- data
Size
4.3 kB (4281 bytes)
Hash
e06152b0921f030754d80520b1a27237
8ab440c4bbce55cf374773017051a4defec1739b
1aa1d9de13ca429b7affd44fffe6709e3885a1cf962a9878e7abcfb40da026b1

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /system/images/iros_amblem.png?r=2023830170 HTTP/1.1
Host: igmg.site
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://igmg.site/system/
Cookie: PHPSESSID=mhkanfsohjrh27auu22920mu4p
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Thu, 23 Mar 2023 23:01:58 GMT
content-type: image/png
content-length: 4281
last-modified: Wed, 18 May 2022 15:54:17 GMT
etag: "628516a9-10b9"
x-cache-status: BYPASS
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2

igmg.site/system/images/program7.png?r=1350309410

51.195.6.66

200 OK

17 kB

URL HTTP/2
igmg.site/system/images/program7.png?r=1350309410
IP
51.195.6.66:0
ASN
#16276 OVH SAS

File type
PNG image data, 143 x 132, 8-bit/color RGB, non-interlaced\012- data
Size
17 kB (16669 bytes)
Hash
eeb2d5fe356d71a3128c903cb041b306
a9b1c3099a347e38a886a075a6a75737631c9667
314f0cf28a9f6341b3c47f96c0ecf06a7c929b495b502907a987afed8fa7feed

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /system/images/program7.png?r=1350309410 HTTP/1.1
Host: igmg.site
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://igmg.site/system/
Cookie: PHPSESSID=mhkanfsohjrh27auu22920mu4p
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Thu, 23 Mar 2023 23:01:58 GMT
content-type: image/png
content-length: 16669
last-modified: Wed, 18 May 2022 15:54:17 GMT
etag: "628516a9-411d"
x-cache-status: BYPASS
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2

igmg.site/system/images/program4.png?r=489100697

51.195.6.66

200 OK

2.4 kB

URL HTTP/2
igmg.site/system/images/program4.png?r=489100697
IP
51.195.6.66:0
ASN
#16276 OVH SAS

File type
PNG image data, 77 x 83, 8-bit/color RGBA, non-interlaced\012- data
Size
2.4 kB (2363 bytes)
Hash
7385f9e6996f26e048e0656af1a63b55
da3e1b9166f1a8171a7b3b0ecdd0fcad8d7fe1ec
c4e1e74d6ad27c277320efec9e1bd55897e424be35b22abf1fcb5ef015984e79

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /system/images/program4.png?r=489100697 HTTP/1.1
Host: igmg.site
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://igmg.site/system/
Cookie: PHPSESSID=mhkanfsohjrh27auu22920mu4p
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Thu, 23 Mar 2023 23:01:58 GMT
content-type: image/png
content-length: 2363
last-modified: Wed, 18 May 2022 15:54:17 GMT
etag: "628516a9-93b"
x-cache-status: BYPASS
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2

igmg.site/system/images/program1.png?r=1870152320

51.195.6.66

200 OK

3.9 kB

URL HTTP/2
igmg.site/system/images/program1.png?r=1870152320
IP
51.195.6.66:0
ASN
#16276 OVH SAS

File type
PNG image data, 85 x 82, 8-bit/color RGBA, non-interlaced\012- data
Size
3.9 kB (3922 bytes)
Hash
f546ddd9ea85f69f04b23bbcb9a6bbab
1e0f5dacbd43e2b6ceb0693ddc9ed5e4ff868928
96c507fd8ed7b25af04082722480424f2d88ad77144c65739ea5b259f7d97d71

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /system/images/program1.png?r=1870152320 HTTP/1.1
Host: igmg.site
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://igmg.site/system/
Cookie: PHPSESSID=mhkanfsohjrh27auu22920mu4p
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Thu, 23 Mar 2023 23:01:58 GMT
content-type: image/png
content-length: 3922
last-modified: Wed, 18 May 2022 15:54:17 GMT
etag: "628516a9-f52"
x-cache-status: BYPASS
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2

igmg.site/system/images/program2.png?r=1753520340

51.195.6.66

200 OK

2.7 kB

URL HTTP/2
igmg.site/system/images/program2.png?r=1753520340
IP
51.195.6.66:0
ASN
#16276 OVH SAS

File type
PNG image data, 200 x 133, 8-bit colormap, non-interlaced\012- data
Size
2.7 kB (2699 bytes)
Hash
8a8445dbaf9c9daba257bd6142958234
7fbf1239846097347b75409cb833ec003e712965
e6ad65ffc98707290032a8b8a7711f732a47b130098f7df9e76d59171b06bb0f

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /system/images/program2.png?r=1753520340 HTTP/1.1
Host: igmg.site
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://igmg.site/system/
Cookie: PHPSESSID=mhkanfsohjrh27auu22920mu4p
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Thu, 23 Mar 2023 23:01:58 GMT
content-type: image/png
content-length: 2699
last-modified: Wed, 18 May 2022 15:54:17 GMT
etag: "628516a9-a8b"
x-cache-status: BYPASS
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2

igmg.site/system/images/program3.png?r=58463472

51.195.6.66

200 OK

2.4 kB

URL HTTP/2
igmg.site/system/images/program3.png?r=58463472
IP
51.195.6.66:0
ASN
#16276 OVH SAS

File type
PNG image data, 92 x 83, 8-bit/color RGBA, non-interlaced\012- data
Size
2.4 kB (2358 bytes)
Hash
00ac55dafb6bed7c22fa6f79e268bffa
e3a16f6fa4b23db5ac1567a7f7a25ee8b30176cd
2fd5cbee7816a3a0ac5863064f0e7836fc5f2e9e53174984139aaa02a108f31c

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /system/images/program3.png?r=58463472 HTTP/1.1
Host: igmg.site
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://igmg.site/system/
Cookie: PHPSESSID=mhkanfsohjrh27auu22920mu4p
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Thu, 23 Mar 2023 23:01:58 GMT
content-type: image/png
content-length: 2358
last-modified: Wed, 18 May 2022 15:54:17 GMT
etag: "628516a9-936"
x-cache-status: BYPASS
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2

igmg.site/system/images/program4.png?r=1457411160

51.195.6.66

200 OK

2.4 kB

URL HTTP/2
igmg.site/system/images/program4.png?r=1457411160
IP
51.195.6.66:0
ASN
#16276 OVH SAS

File type
PNG image data, 77 x 83, 8-bit/color RGBA, non-interlaced\012- data
Size
2.4 kB (2363 bytes)
Hash
7385f9e6996f26e048e0656af1a63b55
da3e1b9166f1a8171a7b3b0ecdd0fcad8d7fe1ec
c4e1e74d6ad27c277320efec9e1bd55897e424be35b22abf1fcb5ef015984e79

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /system/images/program4.png?r=1457411160 HTTP/1.1
Host: igmg.site
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://igmg.site/system/
Cookie: PHPSESSID=mhkanfsohjrh27auu22920mu4p
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Thu, 23 Mar 2023 23:01:58 GMT
content-type: image/png
content-length: 2363
last-modified: Wed, 18 May 2022 15:54:17 GMT
etag: "628516a9-93b"
x-cache-status: BYPASS
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2

igmg.site/system/assets/js/js.cookie.min.js

51.195.6.66

200 OK

0 B

URL HTTP/2
igmg.site/system/assets/js/js.cookie.min.js
IP
51.195.6.66:0
ASN
#16276 OVH SAS

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /system/assets/js/js.cookie.min.js HTTP/1.1
Host: igmg.site
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://igmg.site/system/
Cookie: PHPSESSID=mhkanfsohjrh27auu22920mu4p
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Thu, 23 Mar 2023 23:01:58 GMT
content-type: application/javascript
content-length: 0
x-accel-version: 0.01
last-modified: Wed, 18 May 2022 15:54:17 GMT
etag: "0-5df4b45069287"
x-cache-status: BYPASS
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2

igmg.site/system/assets/js/jquery.sparkline.min.js

51.195.6.66

200 OK

0 B

URL HTTP/2
igmg.site/system/assets/js/jquery.sparkline.min.js
IP
51.195.6.66:0
ASN
#16276 OVH SAS

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /system/assets/js/jquery.sparkline.min.js HTTP/1.1
Host: igmg.site
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://igmg.site/system/
Cookie: PHPSESSID=mhkanfsohjrh27auu22920mu4p
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Thu, 23 Mar 2023 23:01:58 GMT
content-type: application/javascript
content-length: 0
x-accel-version: 0.01
last-modified: Wed, 18 May 2022 15:54:17 GMT
etag: "0-5df4b450682e7"
x-cache-status: BYPASS
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2

igmg.site/system/assets/js/jquery.flot.min.js

51.195.6.66

200 OK

14 kB

URL HTTP/2
igmg.site/system/assets/js/jquery.flot.min.js
IP
51.195.6.66:0
ASN
#16276 OVH SAS

File type
ASCII text, with very long lines (32033)
Size
14 kB (14484 bytes)
Hash
38f39710e45c1ae594a8c64a9d99252c
241f348635cf9db11098a59e5332b37218465147
7bc5521193fc5e7312203ab626e6315090051018942744b51ffca875c60e828f

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /system/assets/js/jquery.flot.min.js HTTP/1.1
Host: igmg.site
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://igmg.site/system/
Cookie: PHPSESSID=mhkanfsohjrh27auu22920mu4p
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Thu, 23 Mar 2023 23:01:58 GMT
content-type: application/javascript
last-modified: Wed, 18 May 2022 15:54:17 GMT
etag: W/"628516a9-cee6"
x-cache-status: BYPASS
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
050ca4dc2182e0a27573b0d9f32b7834
bec14dc5af0d0b32210470673511acd8db404308
b6129b9d1848f75265dca4446c5399927bdaf15c7b49c083765847b0fe276eaf

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "B6129B9D1848F75265DCA4446C5399927BDAF15C7B49C083765847B0FE276EAF"
Last-Modified: Wed, 22 Mar 2023 06:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4727
Expires: Fri, 24 Mar 2023 00:20:45 GMT
Date: Thu, 23 Mar 2023 23:01:58 GMT
Connection: keep-alive

igmg.site/system/assets/js/jquery.flot.resize.min.js

51.195.6.66

200 OK

8.7 kB

URL HTTP/2
igmg.site/system/assets/js/jquery.flot.resize.min.js
IP
51.195.6.66:0
ASN
#16276 OVH SAS

File type
ASCII text, with very long lines (2203)
Size
8.7 kB (8724 bytes)
Hash
da05c8ec5a824178185c63419628fb3d
c2357af104ed2c6fc80a2a81879a2099781f6d52
bfb9df69ccb35a5e777a74061c6a5a4e5c6ce16051a7e2be204bfd00458925f7

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /system/assets/js/jquery.flot.resize.min.js HTTP/1.1
Host: igmg.site
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://igmg.site/system/
Cookie: PHPSESSID=mhkanfsohjrh27auu22920mu4p
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Thu, 23 Mar 2023 23:01:58 GMT
content-type: application/javascript
last-modified: Wed, 18 May 2022 15:54:17 GMT
etag: W/"628516a9-928"
x-cache-status: BYPASS
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2

push.services.mozilla.com/

54.201.249.32

101 Switching Protocols

0 B

URL HTTP/1.1
push.services.mozilla.com/
IP
54.201.249.32:0
ASN
#16509 AMAZON-02

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: ey4b2f8ERpXC+EkAY/h4bg==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket

HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: 7Wry//iUawIuYtOunKFOGT5/NjY=

ocsp.pki.goog/gts1c3

142.250.74.163

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.163:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
dd5380daefecc523858637dcbdda1cf3
0ec5910f57d8ab84179a5d0687e6b16d2cacfb1a
e58977b0dceb06edf2a7c752aa433c71b3bca571e814a7a83bbddc75d4428c0f

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 23 Mar 2023 23:01:59 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/gts1c3

142.250.74.163

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.163:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
dd5380daefecc523858637dcbdda1cf3
0ec5910f57d8ab84179a5d0687e6b16d2cacfb1a
e58977b0dceb06edf2a7c752aa433c71b3bca571e814a7a83bbddc75d4428c0f

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 23 Mar 2023 23:01:59 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

igmg.site/system/assets/js/additional-methods.min.js

51.195.6.66

200 OK

5.3 kB

URL HTTP/2
igmg.site/system/assets/js/additional-methods.min.js
IP
51.195.6.66:0
ASN
#16276 OVH SAS

File type
Unicode text, UTF-8 text, with very long lines (17065)
Size
5.3 kB (5340 bytes)
Hash
bea6c2b17961a661f4dcfe3abcfdd374
35c179495c41c0a0f0f7aa755bc785fd716d9dd6
a175de20bd1b0ae805258ad4a3ee185dee8ccf7a03d665f9ac3d5d14de4d4170

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /system/assets/js/additional-methods.min.js HTTP/1.1
Host: igmg.site
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://igmg.site/system/
Cookie: PHPSESSID=mhkanfsohjrh27auu22920mu4p
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Thu, 23 Mar 2023 23:01:58 GMT
content-type: application/javascript
last-modified: Wed, 18 May 2022 15:54:17 GMT
etag: W/"628516a9-433a"
x-cache-status: BYPASS
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2

igmg.site/system/assets/js/jquery.vmap.usa.js

51.195.6.66

200 OK

20 kB

URL HTTP/2
igmg.site/system/assets/js/jquery.vmap.usa.js
IP
51.195.6.66:0
ASN
#16276 OVH SAS

File type
ASCII text, with very long lines (47588)
Size
20 kB (20012 bytes)
Hash
3cf12f8388d358aac3dd3411d45ba364
98564e8f7101f3bbe3978957566306484ef20829
838da915101366e0b04fea889f4d8b57ca1f69472e804a7d2bcf93c4f3c78de1

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /system/assets/js/jquery.vmap.usa.js HTTP/1.1
Host: igmg.site
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://igmg.site/system/
Cookie: PHPSESSID=mhkanfsohjrh27auu22920mu4p
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Thu, 23 Mar 2023 23:01:58 GMT
content-type: application/javascript
last-modified: Wed, 18 May 2022 15:54:17 GMT
etag: W/"628516a9-ba04"
x-cache-status: BYPASS
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.163

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.163:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
dd5380daefecc523858637dcbdda1cf3
0ec5910f57d8ab84179a5d0687e6b16d2cacfb1a
e58977b0dceb06edf2a7c752aa433c71b3bca571e814a7a83bbddc75d4428c0f

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 23 Mar 2023 23:01:59 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

igmg.site/system/assets/js/app.min.js

51.195.6.66

200 OK

36 kB

URL HTTP/2
igmg.site/system/assets/js/app.min.js
IP
51.195.6.66:0
ASN
#16276 OVH SAS

File type
ASCII text, with very long lines (15479), with no line terminators
Size
36 kB (35787 bytes)
Hash
39a90ac28767e89aa0e75887d1abc972
d3a4c94a5a311d49def64f37b3641192ec08246d
09e18ca8c26735c450ba14e595f937f4bc26ef8a747d06dd9730c5a2f5d3a493

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /system/assets/js/app.min.js HTTP/1.1
Host: igmg.site
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://igmg.site/system/
Cookie: PHPSESSID=mhkanfsohjrh27auu22920mu4p
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Thu, 23 Mar 2023 23:01:58 GMT
content-type: application/javascript
last-modified: Wed, 18 May 2022 15:54:17 GMT
etag: W/"628516a9-3c77"
x-cache-status: BYPASS
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2

fonts.gstatic.com/s/opensans/v34/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2

142.250.74.163

200 OK

45 kB

URL HTTP/2
fonts.gstatic.com/s/opensans/v34/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2
IP
142.250.74.163:0
ASN
#15169 GOOGLE

File type
Web Open Font Format (Version 2), TrueType, length 44856, version 1.0\012- data
Size
45 kB (44856 bytes)
Hash
565ce506190ad3af920b40baf1794cec
ad3cba5d06100e09449a864d3b5e58403b478b3d
8778e9af2422858d7052ff9a0f3c12c08ae976bdd6e0316db144cd5579cd97db

HTTP Headers

GET /s/opensans/v34/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://igmg.site
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 44856
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 22 Mar 2023 18:05:11 GMT
expires: Thu, 21 Mar 2024 18:05:11 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 15 Aug 2022 18:20:18 GMT
content-type: font/woff2
age: 104208
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.163

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.163:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
dd5380daefecc523858637dcbdda1cf3
0ec5910f57d8ab84179a5d0687e6b16d2cacfb1a
e58977b0dceb06edf2a7c752aa433c71b3bca571e814a7a83bbddc75d4428c0f

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 23 Mar 2023 23:01:59 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

igmg.site/system/images/logo.png

51.195.6.66

200 OK

62 kB

URL HTTP/2
igmg.site/system/images/logo.png
IP
51.195.6.66:0
ASN
#16276 OVH SAS

File type
PNG image data, 190 x 190, 8-bit/color RGB, non-interlaced\012- data
Size
62 kB (61610 bytes)
Hash
bdba6772eb3477480740c8a34de0d166
c322e86c037868cb60235ed54b3efd7e355820db
747dc61d8573f1904b33b9f7157682643018a5710bb9c2580316ec37514ff1c6

HTTP Headers

GET /system/images/logo.png HTTP/1.1
Host: igmg.site
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://igmg.site/system/
Cookie: PHPSESSID=mhkanfsohjrh27auu22920mu4p
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Thu, 23 Mar 2023 23:01:59 GMT
content-type: image/png
content-length: 61610
last-modified: Wed, 18 May 2022 15:54:17 GMT
etag: "628516a9-f0aa"
x-cache-status: BYPASS
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
a0d3d7099bbc5fed74a6e78e1a3096bf
96afaf8b3ac053577c56aca5f4a20d8655ecb771
c8ff32c6809a506d4c656d3200dbfc6682c156c3de0647d13ab8f07a6f9a38ba

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C8FF32C6809A506D4C656D3200DBFC6682C156C3DE0647D13AB8F07A6F9A38BA"
Last-Modified: Tue, 21 Mar 2023 15:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6458
Expires: Fri, 24 Mar 2023 00:49:38 GMT
Date: Thu, 23 Mar 2023 23:02:00 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
a0d3d7099bbc5fed74a6e78e1a3096bf
96afaf8b3ac053577c56aca5f4a20d8655ecb771
c8ff32c6809a506d4c656d3200dbfc6682c156c3de0647d13ab8f07a6f9a38ba

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C8FF32C6809A506D4C656D3200DBFC6682C156C3DE0647D13AB8F07A6F9A38BA"
Last-Modified: Tue, 21 Mar 2023 15:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6458
Expires: Fri, 24 Mar 2023 00:49:38 GMT
Date: Thu, 23 Mar 2023 23:02:00 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
a0d3d7099bbc5fed74a6e78e1a3096bf
96afaf8b3ac053577c56aca5f4a20d8655ecb771
c8ff32c6809a506d4c656d3200dbfc6682c156c3de0647d13ab8f07a6f9a38ba

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C8FF32C6809A506D4C656D3200DBFC6682C156C3DE0647D13AB8F07A6F9A38BA"
Last-Modified: Tue, 21 Mar 2023 15:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6458
Expires: Fri, 24 Mar 2023 00:49:38 GMT
Date: Thu, 23 Mar 2023 23:02:00 GMT
Connection: keep-alive

img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4d9f0256-f2a3-48d2-9cbe-230433c09812.jpeg

34.120.237.76

200 OK

7.4 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4d9f0256-f2a3-48d2-9cbe-230433c09812.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
7.4 kB (7405 bytes)
Hash
9bb55b1044454d0db2324a4af956cd51
5aa34545aa2274453b301c74a083034273177cbd
fb7fa8b91ff7374ac6be2df05e1e98194f2adf3ce728b02a66323993145975ef

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4d9f0256-f2a3-48d2-9cbe-230433c09812.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 7405
x-amzn-requestid: 9865b715-ff9b-498d-95b3-c728fd3430be
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: CQPt7E46oAMF1Fg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-641cc658-78b66faf317a7aaf689de782;Sampled=0
x-amzn-remapped-date: Thu, 23 Mar 2023 21:36:24 GMT
x-amz-cf-pop: HIO52-P1, SEA19-C1
x-cache: Hit from cloudfront
x-amz-cf-id: MOdi4IjE6ooc_bhXhjI2pikpJfBxxg7kS8qHmvDRZD169vLef4FKYw==
via: 1.1 e39f48cc8f516dc1072afdb086c71f32.cloudfront.net (CloudFront), 1.1 331202b5b8aab67acbf389883133f256.cloudfront.net (CloudFront), 1.1 google
date: Thu, 23 Mar 2023 21:42:31 GMT
age: 4769
etag: "5aa34545aa2274453b301c74a083034273177cbd"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

igmg.site/system/assets/js/jquery.flot.categories.min.js

51.195.6.66

200 OK

12 kB

URL HTTP/2
igmg.site/system/assets/js/jquery.flot.categories.min.js
IP
51.195.6.66:0
ASN
#16276 OVH SAS

File type
ASCII text, with very long lines (2457)
Size
12 kB (11564 bytes)
Hash
e169e9b7d0a4f2a870682ad065553c0a
c5566f41be5d16f71a459a5bb5527d1cc9d99479
272b37300fa0797ded1400d41a5f447992325a122daedd57810a83d677f9c0a2

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /system/assets/js/jquery.flot.categories.min.js HTTP/1.1
Host: igmg.site
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://igmg.site/system/
Cookie: PHPSESSID=mhkanfsohjrh27auu22920mu4p
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Thu, 23 Mar 2023 23:01:58 GMT
content-type: application/javascript
last-modified: Wed, 18 May 2022 15:54:17 GMT
etag: W/"628516a9-a26"
x-cache-status: BYPASS
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2

igmg.site/system/assets/tinymce/tinymce.min.js

51.195.6.66

200 OK

150 kB

URL HTTP/2
igmg.site/system/assets/tinymce/tinymce.min.js
IP
51.195.6.66:0
ASN
#16276 OVH SAS

File type
ASCII text, with very long lines (32023)
Size
150 kB (149578 bytes)
Hash
7fb9f6c79b2e22e606d2fa23e8a93e46
03b85ae9c68ba18034f2e51f4a4a069925ff69bb
82aeb9065fb8277927963996d89f19bf78fed6bcc81659759a4b84f9e28930b9

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /system/assets/tinymce/tinymce.min.js HTTP/1.1
Host: igmg.site
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://igmg.site/system/
Cookie: PHPSESSID=mhkanfsohjrh27auu22920mu4p
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Thu, 23 Mar 2023 23:01:58 GMT
content-type: application/javascript
last-modified: Wed, 18 May 2022 15:54:17 GMT
etag: W/"628516a9-72a93"
x-cache-status: BYPASS
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2

34.120.237.76

200 OK

8.0 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fced2b6fc-bd10-4ea8-bf1d-03a29da081f6.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
8.0 kB (8001 bytes)
Hash
09021529f311448e284f6b65ef322bf9
f9aecb6f69fb068c5b2bb660d21338ab6cff3ae9
2bc6b1fd474101cbbc6100f2afab3973552ff71d3fd73e9970efd6c67e71cd38

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fced2b6fc-bd10-4ea8-bf1d-03a29da081f6.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 8001
x-amzn-requestid: c128e071-673c-4e31-96a8-049a6eb48660
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: CQQjsHlXIAMFX3g=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-641cc7b0-3efff85e1cdbe08118fe7dce;Sampled=0
x-amzn-remapped-date: Thu, 23 Mar 2023 21:42:08 GMT
x-amz-cf-pop: HIO52-P1, SEA19-C1
x-cache: Hit from cloudfront
x-amz-cf-id: t-lqKBTduo9OZniqXSzzvxHu2XzsQIn0CsboARa7nwcIuHA63Ir0UA==
via: 1.1 288c777a01e22425da9494dad7a69734.cloudfront.net (CloudFront), 1.1 34f8ef0e4c880df0650a814412a26ea6.cloudfront.net (CloudFront), 1.1 google
date: Thu, 23 Mar 2023 22:14:01 GMT
age: 2879
etag: "f9aecb6f69fb068c5b2bb660d21338ab6cff3ae9"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

5.3 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F2f947105-6cc0-4247-b3ec-7c68cacd88db.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
5.3 kB (5294 bytes)
Hash
39dc7eccbbdbce5418c71665f7c1f39b
b98f7fc52dc3c513c56b63c005a6589bf06b5f25
d2402feb468524953cd2a55c1875aaeb1d96b45f371ff91c11649a5d987bd19a

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F2f947105-6cc0-4247-b3ec-7c68cacd88db.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 5294
x-amzn-requestid: 9117b510-c5d8-453d-b5ac-74d2fa490b69
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: CQQFtGqCoAMFclA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-641cc6f0-58a5514777447c960d847bbe;Sampled=0
x-amzn-remapped-date: Thu, 23 Mar 2023 21:38:57 GMT
x-amz-cf-pop: HIO52-P1, SEA19-C1
x-cache: Hit from cloudfront
x-amz-cf-id: wJzkphLYzfNMpaLVK_Qf3Wna8bHtfch5RwL4bzwF5voPpCeEgMRSlA==
via: 1.1 8591441a35c0af61913aec9af012bc38.cloudfront.net (CloudFront), 1.1 27a84054de24e45f952ea4056a821764.cloudfront.net (CloudFront), 1.1 google
date: Thu, 23 Mar 2023 21:49:53 GMT
age: 4327
etag: "b98f7fc52dc3c513c56b63c005a6589bf06b5f25"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

igmg.site/system/assets/js/dashboard.min.js

51.195.6.66

200 OK

15 kB

URL HTTP/2
igmg.site/system/assets/js/dashboard.min.js
IP
51.195.6.66:0
ASN
#16276 OVH SAS

File type
ASCII text, with very long lines (21261), with no line terminators
Size
15 kB (15350 bytes)
Hash
2443ae2043fe544201a8b69adb438747
42b47ced66e0e97e2f9e4f8813ea5bb67e9214be
0513ceb60018053be59d9b3ec84e9b093d27eb399f3bc625ec45f00226f60bc1

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /system/assets/js/dashboard.min.js HTTP/1.1
Host: igmg.site
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://igmg.site/system/
Cookie: PHPSESSID=mhkanfsohjrh27auu22920mu4p
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Thu, 23 Mar 2023 23:01:58 GMT
content-type: application/javascript
last-modified: Wed, 18 May 2022 15:54:17 GMT
etag: W/"628516a9-530d"
x-cache-status: BYPASS
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2

igmg.site/system/assets/amcharts/amcharts.js

51.195.6.66

200 OK

0 B

URL HTTP/2
igmg.site/system/assets/amcharts/amcharts.js
IP
51.195.6.66:0
ASN
#16276 OVH SAS

File type

Size
0 B (0 bytes)
Hash

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /system/assets/amcharts/amcharts.js HTTP/1.1
Host: igmg.site
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://igmg.site/system/
Cookie: PHPSESSID=mhkanfsohjrh27auu22920mu4p
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Thu, 23 Mar 2023 23:01:58 GMT
content-type: application/javascript
last-modified: Wed, 18 May 2022 15:54:17 GMT
etag: W/"628516a9-3314a"
x-cache-status: BYPASS
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2

igmg.site/system/assets/select2/tr.js

51.195.6.66

200 OK

0 B

URL HTTP/2
igmg.site/system/assets/select2/tr.js
IP
51.195.6.66:0
ASN
#16276 OVH SAS

File type

Size
0 B (0 bytes)
Hash

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /system/assets/select2/tr.js HTTP/1.1
Host: igmg.site
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://igmg.site/system/
Cookie: PHPSESSID=mhkanfsohjrh27auu22920mu4p
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Thu, 23 Mar 2023 23:01:58 GMT
content-type: application/javascript
x-accel-version: 0.01
last-modified: Wed, 18 May 2022 15:54:17 GMT
etag: W/"305-5df4b4506a227"
x-cache-status: BYPASS
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2

igmg.site/system/assets/js/jquery.counterup.min.js

51.195.6.66

200 OK

0 B

URL HTTP/2
igmg.site/system/assets/js/jquery.counterup.min.js
IP
51.195.6.66:0
ASN
#16276 OVH SAS

File type

Size
0 B (0 bytes)
Hash

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /system/assets/js/jquery.counterup.min.js HTTP/1.1
Host: igmg.site
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://igmg.site/system/
Cookie: PHPSESSID=mhkanfsohjrh27auu22920mu4p
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Thu, 23 Mar 2023 23:01:58 GMT
content-type: application/javascript
last-modified: Wed, 18 May 2022 15:54:17 GMT
etag: W/"628516a9-42d"
x-cache-status: BYPASS
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2

igmg.site/system/assets/js/jquery.vmap.world.js

51.195.6.66

200 OK

0 B

URL HTTP/2
igmg.site/system/assets/js/jquery.vmap.world.js
IP
51.195.6.66:0
ASN
#16276 OVH SAS

File type

Size
0 B (0 bytes)
Hash

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /system/assets/js/jquery.vmap.world.js HTTP/1.1
Host: igmg.site
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://igmg.site/system/
Cookie: PHPSESSID=mhkanfsohjrh27auu22920mu4p
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Thu, 23 Mar 2023 23:01:58 GMT
content-type: application/javascript
last-modified: Wed, 18 May 2022 15:54:17 GMT
etag: W/"628516a9-ecb8"
x-cache-status: BYPASS
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2

igmg.site/system/assets/css/simple-line-icons.min.css?367798030

51.195.6.66

200 OK

0 B

URL HTTP/2
igmg.site/system/assets/css/simple-line-icons.min.css?367798030
IP
51.195.6.66:0
ASN
#16276 OVH SAS

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /system/assets/css/simple-line-icons.min.css?367798030 HTTP/1.1
Host: igmg.site
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://igmg.site/system/
Cookie: PHPSESSID=mhkanfsohjrh27auu22920mu4p
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Thu, 23 Mar 2023 23:01:58 GMT
content-type: text/css
last-modified: Wed, 18 May 2022 15:54:17 GMT
etag: W/"628516a9-256b"
x-cache-status: BYPASS
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2

igmg.site/system/assets/css/login.min.css?1775226393

51.195.6.66

200 OK

0 B

URL HTTP/2
igmg.site/system/assets/css/login.min.css?1775226393
IP
51.195.6.66:0
ASN
#16276 OVH SAS

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /system/assets/css/login.min.css?1775226393 HTTP/1.1
Host: igmg.site
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://igmg.site/system/
Cookie: PHPSESSID=mhkanfsohjrh27auu22920mu4p
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Thu, 23 Mar 2023 23:01:58 GMT
content-type: text/css
last-modified: Wed, 18 May 2022 15:54:17 GMT
etag: W/"628516a9-e55"
x-cache-status: BYPASS
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2

igmg.site/system/assets/amcharts/export.min.js

51.195.6.66

200 OK

0 B

URL HTTP/2
igmg.site/system/assets/amcharts/export.min.js
IP
51.195.6.66:0
ASN
#16276 OVH SAS

File type

Size
0 B (0 bytes)
Hash

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /system/assets/amcharts/export.min.js HTTP/1.1
Host: igmg.site
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://igmg.site/system/
Cookie: PHPSESSID=mhkanfsohjrh27auu22920mu4p
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Thu, 23 Mar 2023 23:01:58 GMT
content-type: application/javascript
last-modified: Wed, 18 May 2022 15:54:17 GMT
etag: W/"628516a9-f3b9"
x-cache-status: BYPASS
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2

igmg.site/system/assets/js/jquery.vmap.europe.js

51.195.6.66

200 OK

0 B

URL HTTP/2
igmg.site/system/assets/js/jquery.vmap.europe.js
IP
51.195.6.66:0
ASN
#16276 OVH SAS

File type

Size
0 B (0 bytes)
Hash

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /system/assets/js/jquery.vmap.europe.js HTTP/1.1
Host: igmg.site
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://igmg.site/system/
Cookie: PHPSESSID=mhkanfsohjrh27auu22920mu4p
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Thu, 23 Mar 2023 23:01:58 GMT
content-type: application/javascript
last-modified: Wed, 18 May 2022 15:54:17 GMT
etag: W/"628516a9-17d75"
x-cache-status: BYPASS
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2

igmg.site/system/?act=js_translates

51.195.6.66

200 OK

0 B

URL HTTP/2
igmg.site/system/?act=js_translates
IP
51.195.6.66:0
ASN
#16276 OVH SAS

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /system/?act=js_translates HTTP/1.1
Host: igmg.site
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://igmg.site/system/
Cookie: PHPSESSID=mhkanfsohjrh27auu22920mu4p
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Thu, 23 Mar 2023 23:01:58 GMT
content-type: text/html; charset=UTF-8
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: no-store, no-cache, must-revalidate
pragma: no-cache
x-cache-status: BYPASS
x-powered-by: PHP/7.4.33, PleskLin
content-encoding: br
X-Firefox-Spdy: h2

igmg.site/system/assets/amcharts/serial.js

51.195.6.66

200 OK

0 B

URL HTTP/2
igmg.site/system/assets/amcharts/serial.js
IP
51.195.6.66:0
ASN
#16276 OVH SAS

File type

Size
0 B (0 bytes)
Hash

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /system/assets/amcharts/serial.js HTTP/1.1
Host: igmg.site
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://igmg.site/system/
Cookie: PHPSESSID=mhkanfsohjrh27auu22920mu4p
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Thu, 23 Mar 2023 23:01:58 GMT
content-type: application/javascript
last-modified: Wed, 18 May 2022 15:54:17 GMT
etag: W/"628516a9-c01f"
x-cache-status: BYPASS
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2

igmg.site/system/assets/css/dataTables.min.css?546566387

51.195.6.66

200 OK

0 B

URL HTTP/2
igmg.site/system/assets/css/dataTables.min.css?546566387
IP
51.195.6.66:0
ASN
#16276 OVH SAS

File type

Size
0 B (0 bytes)
Hash

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /system/assets/css/dataTables.min.css?546566387 HTTP/1.1
Host: igmg.site
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://igmg.site/system/
Cookie: PHPSESSID=mhkanfsohjrh27auu22920mu4p
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Thu, 23 Mar 2023 23:01:58 GMT
content-type: text/css
last-modified: Wed, 18 May 2022 15:54:17 GMT
etag: W/"628516a9-342b"
x-cache-status: BYPASS
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2

igmg.site/system/assets/fullcalendar/lib/main.min.js

51.195.6.66

200 OK

0 B

URL HTTP/2
igmg.site/system/assets/fullcalendar/lib/main.min.js
IP
51.195.6.66:0
ASN
#16276 OVH SAS

File type

Size
0 B (0 bytes)
Hash

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /system/assets/fullcalendar/lib/main.min.js HTTP/1.1
Host: igmg.site
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://igmg.site/system/
Cookie: PHPSESSID=mhkanfsohjrh27auu22920mu4p
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Thu, 23 Mar 2023 23:01:58 GMT
content-type: application/javascript
last-modified: Wed, 18 May 2022 15:54:17 GMT
etag: W/"628516a9-3c681"
x-cache-status: BYPASS
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2

igmg.site/system/assets/js/daterangepicker.min.js

51.195.6.66

200 OK

0 B

URL HTTP/2
igmg.site/system/assets/js/daterangepicker.min.js
IP
51.195.6.66:0
ASN
#16276 OVH SAS

File type

Size
0 B (0 bytes)
Hash

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /system/assets/js/daterangepicker.min.js HTTP/1.1
Host: igmg.site
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://igmg.site/system/
Cookie: PHPSESSID=mhkanfsohjrh27auu22920mu4p
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Thu, 23 Mar 2023 23:01:58 GMT
content-type: application/javascript
last-modified: Wed, 18 May 2022 15:54:17 GMT
etag: W/"628516a9-7b6a"
x-cache-status: BYPASS
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2

igmg.site/system/assets/css/bootstrap-switch.min.css?1814398978

51.195.6.66

200 OK

0 B

URL HTTP/2
igmg.site/system/assets/css/bootstrap-switch.min.css?1814398978
IP
51.195.6.66:0
ASN
#16276 OVH SAS

File type

Size
0 B (0 bytes)
Hash

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /system/assets/css/bootstrap-switch.min.css?1814398978 HTTP/1.1
Host: igmg.site
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://igmg.site/system/
Cookie: PHPSESSID=mhkanfsohjrh27auu22920mu4p
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Thu, 23 Mar 2023 23:01:58 GMT
content-type: text/css
last-modified: Wed, 18 May 2022 15:54:17 GMT
etag: W/"628516a9-1939"
x-cache-status: BYPASS
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2

unpkg.com/blob.js@1.0.1/Blob.js

104.16.124.175

200 OK

0 B

URL HTTP/2
unpkg.com/blob.js@1.0.1/Blob.js
IP
104.16.124.175:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /blob.js@1.0.1/Blob.js HTTP/1.1
Host: unpkg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://igmg.site/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Thu, 23 Mar 2023 23:01:58 GMT
content-type: application/javascript; charset=utf-8
access-control-allow-origin: *
cache-control: public, max-age=31536000
last-modified: Mon, 14 Nov 2016 10:24:13 GMT
etag: W/"1800-jszKs+14oLm7MdJGCNbZkvu8ALE"
via: 1.1 fly.io
fly-request-id: 01GV22BFBHG55CD2RMX7G2KPRJ-ams
cf-cache-status: HIT
age: 1284463
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 7aca4c9f8876067b-OSL
content-encoding: br
X-Firefox-Spdy: h2

use.fontawesome.com/releases/v5.7.2/css/all.css

172.64.133.15

200 OK

0 B

URL HTTP/2
use.fontawesome.com/releases/v5.7.2/css/all.css
IP
172.64.133.15:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /releases/v5.7.2/css/all.css HTTP/1.1
Host: use.fontawesome.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://igmg.site
Connection: keep-alive
Referer: https://igmg.site/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Thu, 23 Mar 2023 23:01:58 GMT
content-type: text/css
x-amz-id-2: B/MODjexvd8v+mhmtP2pWRrdokjw5Oiu1agNBM/gRzj/en55dtJKCA1M3d41RwXsdKSGWKTqERftzcDriJz0sg==
x-amz-request-id: 76RCBY6JA8J6J2HQ
access-control-allow-origin: *
access-control-allow-methods: GET
access-control-max-age: 3000
vary: Origin, Access-Control-Request-Headers, Access-Control-Request-Method, Accept-Encoding
last-modified: Wed, 30 Jun 2021 15:45:57 GMT
etag: W/"7b1d7f457d056ace7b230b587b9f3753"
cache-control: max-age=31556926
cf-cache-status: HIT
age: 1174324
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=s5ERR28idaS9Tbou8hBhpzD1Gjwmhqc3u9Wg4N8KpIiXN6aWI1%2BEZ0%2Fm%2F4Za%2F3Ix6umTNwVP4qyX1MJ27VDBE9kHQRHlCT0y8jrTd2jxVkBH2nQKkomHWBdBEQOOVsOGrbJaps2D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7aca4ca00c287777-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

igmg.site/system/assets/js/morris.min.js

51.195.6.66

200 OK

0 B

URL HTTP/2
igmg.site/system/assets/js/morris.min.js
IP
51.195.6.66:0
ASN
#16276 OVH SAS

File type

Size
0 B (0 bytes)
Hash

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /system/assets/js/morris.min.js HTTP/1.1
Host: igmg.site
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://igmg.site/system/
Cookie: PHPSESSID=mhkanfsohjrh27auu22920mu4p
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Thu, 23 Mar 2023 23:01:58 GMT
content-type: application/javascript
last-modified: Wed, 18 May 2022 15:54:17 GMT
etag: W/"628516a9-8b44"
x-cache-status: BYPASS
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2

igmg.site/system/assets/css/colorbox.css?737145721

51.195.6.66

200 OK

0 B

URL HTTP/2
igmg.site/system/assets/css/colorbox.css?737145721
IP
51.195.6.66:0
ASN
#16276 OVH SAS

File type

Size
0 B (0 bytes)
Hash

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /system/assets/css/colorbox.css?737145721 HTTP/1.1
Host: igmg.site
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://igmg.site/system/
Cookie: PHPSESSID=mhkanfsohjrh27auu22920mu4p
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Thu, 23 Mar 2023 23:01:58 GMT
content-type: text/css
last-modified: Wed, 18 May 2022 15:54:17 GMT
etag: W/"628516a9-114f"
x-cache-status: BYPASS
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2

fonts.googleapis.com/css?family=Open+Sans:400,300,600,700&subset=all

216.58.207.202

200 OK

0 B

URL HTTP/2
fonts.googleapis.com/css?family=Open+Sans:400,300,600,700&subset=all
IP
216.58.207.202:0
ASN
#15169 GOOGLE

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /css?family=Open+Sans:400,300,600,700&subset=all HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://igmg.site/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Thu, 23 Mar 2023 23:01:58 GMT
date: Thu, 23 Mar 2023 23:01:58 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

igmg.site/system/assets/js/demo.min.js

51.195.6.66

200 OK

0 B

URL HTTP/2
igmg.site/system/assets/js/demo.min.js
IP
51.195.6.66:0
ASN
#16276 OVH SAS

File type

Size
0 B (0 bytes)
Hash

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /system/assets/js/demo.min.js HTTP/1.1
Host: igmg.site
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://igmg.site/system/
Cookie: PHPSESSID=mhkanfsohjrh27auu22920mu4p
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Thu, 23 Mar 2023 23:01:58 GMT
content-type: application/javascript
last-modified: Wed, 18 May 2022 15:54:17 GMT
etag: W/"628516a9-10a6"
x-cache-status: BYPASS
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2

igmg.site/system/assets/js/moment-with-locales.js

51.195.6.66

200 OK

0 B

URL HTTP/2
igmg.site/system/assets/js/moment-with-locales.js
IP
51.195.6.66:0
ASN
#16276 OVH SAS

File type

Size
0 B (0 bytes)
Hash

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /system/assets/js/moment-with-locales.js HTTP/1.1
Host: igmg.site
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://igmg.site/system/
Cookie: PHPSESSID=mhkanfsohjrh27auu22920mu4p
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Thu, 23 Mar 2023 23:01:58 GMT
content-type: application/javascript
last-modified: Wed, 18 May 2022 15:54:17 GMT
etag: W/"628516a9-9721a"
x-cache-status: BYPASS
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2

igmg.site/system/assets/js/jquery.validate.min.js

51.195.6.66

200 OK

0 B

URL HTTP/2
igmg.site/system/assets/js/jquery.validate.min.js
IP
51.195.6.66:0
ASN
#16276 OVH SAS

File type

Size
0 B (0 bytes)
Hash

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /system/assets/js/jquery.validate.min.js HTTP/1.1
Host: igmg.site
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://igmg.site/system/
Cookie: PHPSESSID=mhkanfsohjrh27auu22920mu4p
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Thu, 23 Mar 2023 23:01:58 GMT
content-type: application/javascript
last-modified: Wed, 18 May 2022 15:54:17 GMT
etag: W/"628516a9-5262"
x-cache-status: BYPASS
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2

igmg.site/system/assets/js/fullcalendar.min.js

51.195.6.66

200 OK

0 B

URL HTTP/2
igmg.site/system/assets/js/fullcalendar.min.js
IP
51.195.6.66:0
ASN
#16276 OVH SAS

File type

Size
0 B (0 bytes)
Hash

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /system/assets/js/fullcalendar.min.js HTTP/1.1
Host: igmg.site
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://igmg.site/system/
Cookie: PHPSESSID=mhkanfsohjrh27auu22920mu4p
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Thu, 23 Mar 2023 23:01:58 GMT
content-type: application/javascript
last-modified: Wed, 18 May 2022 15:54:17 GMT
etag: W/"628516a9-180ab"
x-cache-status: BYPASS
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2

igmg.site/system/assets/css/morris.css?153002302

51.195.6.66

200 OK

0 B

URL HTTP/2
igmg.site/system/assets/css/morris.css?153002302
IP
51.195.6.66:0
ASN
#16276 OVH SAS

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /system/assets/css/morris.css?153002302 HTTP/1.1
Host: igmg.site
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://igmg.site/system/
Cookie: PHPSESSID=mhkanfsohjrh27auu22920mu4p
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Thu, 23 Mar 2023 23:01:58 GMT
content-type: text/css
x-accel-version: 0.01
last-modified: Wed, 18 May 2022 15:54:17 GMT
etag: W/"1b0-5df4b450634c7"
x-cache-status: BYPASS
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2

unpkg.com/xlsx@0.18.5/dist/xlsx.full.min.js

104.16.124.175

200 OK

0 B

URL HTTP/2
unpkg.com/xlsx@0.18.5/dist/xlsx.full.min.js
IP
104.16.124.175:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /xlsx@0.18.5/dist/xlsx.full.min.js HTTP/1.1
Host: unpkg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://igmg.site/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
date: Thu, 23 Mar 2023 23:01:58 GMT
content-type: application/javascript; charset=utf-8
access-control-allow-origin: *
cache-control: public, max-age=31536000
last-modified: Sat, 26 Oct 1985 08:15:00 GMT
etag: W/"d743f-f3SfgaRaUyKRNsbB8dUNyxbdwjM"
via: 1.1 fly.io
fly-request-id: 01G754ETJDY0FY3YHJ5RCQMFCX-fra
cf-cache-status: HIT
age: 22656427
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 7aca4c9fe8a0067b-OSL
content-encoding: br
X-Firefox-Spdy: h2

igmg.site/system/assets/css/igmgfont.css?497371035

51.195.6.66

200 OK

0 B

URL HTTP/2
igmg.site/system/assets/css/igmgfont.css?497371035
IP
51.195.6.66:0
ASN
#16276 OVH SAS

File type

Size
0 B (0 bytes)
Hash

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /system/assets/css/igmgfont.css?497371035 HTTP/1.1
Host: igmg.site
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://igmg.site/system/
Cookie: PHPSESSID=mhkanfsohjrh27auu22920mu4p
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Thu, 23 Mar 2023 23:01:58 GMT
content-type: text/css
last-modified: Wed, 18 May 2022 15:54:17 GMT
etag: W/"628516a9-6c5"
x-cache-status: BYPASS
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2

igmg.site/system/assets/js/jquery.min.js

51.195.6.66

200 OK

0 B

URL HTTP/2
igmg.site/system/assets/js/jquery.min.js
IP
51.195.6.66:0
ASN
#16276 OVH SAS

File type

Size
0 B (0 bytes)
Hash

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /system/assets/js/jquery.min.js HTTP/1.1
Host: igmg.site
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://igmg.site/system/
Cookie: PHPSESSID=mhkanfsohjrh27auu22920mu4p
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Thu, 23 Mar 2023 23:01:58 GMT
content-type: application/javascript
last-modified: Wed, 18 May 2022 15:54:17 GMT
etag: W/"628516a9-17b8a"
x-cache-status: BYPASS
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2

igmg.site/system/assets/js/popper.min.js

51.195.6.66

200 OK

0 B

URL HTTP/2
igmg.site/system/assets/js/popper.min.js
IP
51.195.6.66:0
ASN
#16276 OVH SAS

File type

Size
0 B (0 bytes)
Hash

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /system/assets/js/popper.min.js HTTP/1.1
Host: igmg.site
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://igmg.site/system/
Cookie: PHPSESSID=mhkanfsohjrh27auu22920mu4p
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Thu, 23 Mar 2023 23:01:58 GMT
content-type: application/javascript
last-modified: Wed, 18 May 2022 15:54:17 GMT
etag: W/"628516a9-52ce"
x-cache-status: BYPASS
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2

igmg.site/system/assets/js/quick-sidebar.min.js

51.195.6.66

200 OK

0 B

URL HTTP/2
igmg.site/system/assets/js/quick-sidebar.min.js
IP
51.195.6.66:0
ASN
#16276 OVH SAS

File type

Size
0 B (0 bytes)
Hash

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /system/assets/js/quick-sidebar.min.js HTTP/1.1
Host: igmg.site
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://igmg.site/system/
Cookie: PHPSESSID=mhkanfsohjrh27auu22920mu4p
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Thu, 23 Mar 2023 23:01:58 GMT
content-type: application/javascript
last-modified: Wed, 18 May 2022 15:54:17 GMT
etag: W/"628516a9-ae3"
x-cache-status: BYPASS
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2

unpkg.com/xlsx/dist/xlsx.full.min.js

104.16.124.175

302 Found

0 B

URL HTTP/2
unpkg.com/xlsx/dist/xlsx.full.min.js
IP
104.16.124.175:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /xlsx/dist/xlsx.full.min.js HTTP/1.1
Host: unpkg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://igmg.site/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 302 Found
date: Thu, 23 Mar 2023 23:01:58 GMT
content-type: text/plain; charset=utf-8
access-control-allow-origin: *
cache-control: public, s-maxage=600, max-age=60
location: /xlsx@0.18.5/dist/xlsx.full.min.js
vary: Accept, Accept-Encoding
via: 1.1 fly.io
fly-request-id: 01GW8AWPESMHH8VM2SZRK3VDYP-fra
cf-cache-status: HIT
age: 444
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 7aca4c9f6864067b-OSL
X-Firefox-Spdy: h2

igmg.site/system/assets/css/jquery-ui.css?546177637

51.195.6.66

200 OK

0 B

URL HTTP/2
igmg.site/system/assets/css/jquery-ui.css?546177637
IP
51.195.6.66:0
ASN
#16276 OVH SAS

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /system/assets/css/jquery-ui.css?546177637 HTTP/1.1
Host: igmg.site
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://igmg.site/system/
Cookie: PHPSESSID=mhkanfsohjrh27auu22920mu4p
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Thu, 23 Mar 2023 23:01:58 GMT
content-type: text/css
last-modified: Wed, 18 May 2022 15:54:17 GMT
etag: W/"628516a9-91ce"
x-cache-status: BYPASS
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2

igmg.site/system/assets/js/bootstrap.min.js

51.195.6.66

200 OK

0 B

URL HTTP/2
igmg.site/system/assets/js/bootstrap.min.js
IP
51.195.6.66:0
ASN
#16276 OVH SAS

File type

Size
0 B (0 bytes)
Hash

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /system/assets/js/bootstrap.min.js HTTP/1.1
Host: igmg.site
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://igmg.site/system/
Cookie: PHPSESSID=mhkanfsohjrh27auu22920mu4p
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Thu, 23 Mar 2023 23:01:58 GMT
content-type: application/javascript
last-modified: Wed, 18 May 2022 15:54:17 GMT
etag: W/"628516a9-ea47"
x-cache-status: BYPASS
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2

igmg.site/system/assets/js/select2.full.min.js

51.195.6.66

200 OK

0 B

URL HTTP/2
igmg.site/system/assets/js/select2.full.min.js
IP
51.195.6.66:0
ASN
#16276 OVH SAS

File type

Size
0 B (0 bytes)
Hash

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /system/assets/js/select2.full.min.js HTTP/1.1
Host: igmg.site
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://igmg.site/system/
Cookie: PHPSESSID=mhkanfsohjrh27auu22920mu4p
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Thu, 23 Mar 2023 23:01:58 GMT
content-type: application/javascript
last-modified: Wed, 18 May 2022 15:54:17 GMT
etag: W/"628516a9-124fd"
x-cache-status: BYPASS
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2

igmg.site/system/assets/js/jquery.vmap.sampledata.js

51.195.6.66

200 OK

0 B

URL HTTP/2
igmg.site/system/assets/js/jquery.vmap.sampledata.js
IP
51.195.6.66:0
ASN
#16276 OVH SAS

File type

Size
0 B (0 bytes)
Hash

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /system/assets/js/jquery.vmap.sampledata.js HTTP/1.1
Host: igmg.site
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://igmg.site/system/
Cookie: PHPSESSID=mhkanfsohjrh27auu22920mu4p
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Thu, 23 Mar 2023 23:01:58 GMT
content-type: application/javascript
last-modified: Wed, 18 May 2022 15:54:17 GMT
etag: W/"628516a9-952"
x-cache-status: BYPASS
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2

igmg.site/system/assets/css/daterangepicker.min.css?1810798440

51.195.6.66

200 OK

0 B

URL HTTP/2
igmg.site/system/assets/css/daterangepicker.min.css?1810798440
IP
51.195.6.66:0
ASN
#16276 OVH SAS

File type

Size
0 B (0 bytes)
Hash

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /system/assets/css/daterangepicker.min.css?1810798440 HTTP/1.1
Host: igmg.site
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://igmg.site/system/
Cookie: PHPSESSID=mhkanfsohjrh27auu22920mu4p
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Thu, 23 Mar 2023 23:01:58 GMT
content-type: text/css
last-modified: Wed, 18 May 2022 15:54:17 GMT
etag: W/"628516a9-15ea"
x-cache-status: BYPASS
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2

igmg.site/system/assets/js/jquery-ui.min.js

51.195.6.66

200 OK

0 B

URL HTTP/2
igmg.site/system/assets/js/jquery-ui.min.js
IP
51.195.6.66:0
ASN
#16276 OVH SAS

File type

Size
0 B (0 bytes)
Hash

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /system/assets/js/jquery-ui.min.js HTTP/1.1
Host: igmg.site
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://igmg.site/system/
Cookie: PHPSESSID=mhkanfsohjrh27auu22920mu4p
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Thu, 23 Mar 2023 23:01:58 GMT
content-type: application/javascript
last-modified: Wed, 18 May 2022 15:54:17 GMT
etag: W/"628516a9-3dee5"
x-cache-status: BYPASS
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2

igmg.site/system/assets/css/bayrakfont.css?2048810455

51.195.6.66

200 OK

0 B

URL HTTP/2
igmg.site/system/assets/css/bayrakfont.css?2048810455
IP
51.195.6.66:0
ASN
#16276 OVH SAS

File type

Size
0 B (0 bytes)
Hash

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /system/assets/css/bayrakfont.css?2048810455 HTTP/1.1
Host: igmg.site
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://igmg.site/system/
Cookie: PHPSESSID=mhkanfsohjrh27auu22920mu4p
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Thu, 23 Mar 2023 23:01:58 GMT
content-type: text/css
last-modified: Wed, 18 May 2022 15:54:17 GMT
etag: W/"628516a9-3361"
x-cache-status: BYPASS
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2

igmg.site/system/assets/js/jquery.waypoints.min.js

51.195.6.66

200 OK

0 B

URL HTTP/2
igmg.site/system/assets/js/jquery.waypoints.min.js
IP
51.195.6.66:0
ASN
#16276 OVH SAS

File type

Size
0 B (0 bytes)
Hash

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /system/assets/js/jquery.waypoints.min.js HTTP/1.1
Host: igmg.site
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://igmg.site/system/
Cookie: PHPSESSID=mhkanfsohjrh27auu22920mu4p
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Thu, 23 Mar 2023 23:01:58 GMT
content-type: application/javascript
last-modified: Wed, 18 May 2022 15:54:17 GMT
etag: W/"628516a9-1f6c"
x-cache-status: BYPASS
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2

igmg.site/system/assets/js/bootbox.min.js

51.195.6.66

200 OK

0 B

URL HTTP/2
igmg.site/system/assets/js/bootbox.min.js
IP
51.195.6.66:0
ASN
#16276 OVH SAS

File type

Size
0 B (0 bytes)
Hash

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /system/assets/js/bootbox.min.js HTTP/1.1
Host: igmg.site
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://igmg.site/system/
Cookie: PHPSESSID=mhkanfsohjrh27auu22920mu4p
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Thu, 23 Mar 2023 23:01:58 GMT
content-type: application/javascript
last-modified: Wed, 18 May 2022 15:54:17 GMT
etag: W/"628516a9-4543"
x-cache-status: BYPASS
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2

igmg.site/system/assets/js/layout.min.js

51.195.6.66

200 OK

0 B

URL HTTP/2
igmg.site/system/assets/js/layout.min.js
IP
51.195.6.66:0
ASN
#16276 OVH SAS

File type

Size
0 B (0 bytes)
Hash

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /system/assets/js/layout.min.js HTTP/1.1
Host: igmg.site
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://igmg.site/system/
Cookie: PHPSESSID=mhkanfsohjrh27auu22920mu4p
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Thu, 23 Mar 2023 23:01:58 GMT
content-type: application/javascript
last-modified: Wed, 18 May 2022 15:54:17 GMT
etag: W/"628516a9-11c0"
x-cache-status: BYPASS
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2

igmg.site/system/assets/css/plugins.min.css?283616279

51.195.6.66

200 OK

0 B

URL HTTP/2
igmg.site/system/assets/css/plugins.min.css?283616279
IP
51.195.6.66:0
ASN
#16276 OVH SAS

File type

Size
0 B (0 bytes)
Hash

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /system/assets/css/plugins.min.css?283616279 HTTP/1.1
Host: igmg.site
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://igmg.site/system/
Cookie: PHPSESSID=mhkanfsohjrh27auu22920mu4p
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Thu, 23 Mar 2023 23:01:58 GMT
content-type: text/css
last-modified: Wed, 18 May 2022 15:54:17 GMT
etag: W/"628516a9-a4bb"
x-cache-status: BYPASS
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2

igmg.site/system/assets/css/ekurs.css?1911242710

51.195.6.66

200 OK

0 B

URL HTTP/2
igmg.site/system/assets/css/ekurs.css?1911242710
IP
51.195.6.66:0
ASN
#16276 OVH SAS

File type

Size
0 B (0 bytes)
Hash

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /system/assets/css/ekurs.css?1911242710 HTTP/1.1
Host: igmg.site
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://igmg.site/system/
Cookie: PHPSESSID=mhkanfsohjrh27auu22920mu4p
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Thu, 23 Mar 2023 23:01:58 GMT
content-type: text/css
last-modified: Wed, 18 May 2022 15:54:17 GMT
etag: W/"628516a9-62b5"
x-cache-status: BYPASS
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2

igmg.site/system/assets/js/pwstrength.js

51.195.6.66

200 OK

0 B

URL HTTP/2
igmg.site/system/assets/js/pwstrength.js
IP
51.195.6.66:0
ASN
#16276 OVH SAS

File type

Size
0 B (0 bytes)
Hash

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /system/assets/js/pwstrength.js HTTP/1.1
Host: igmg.site
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://igmg.site/system/
Cookie: PHPSESSID=mhkanfsohjrh27auu22920mu4p
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Thu, 23 Mar 2023 23:01:58 GMT
content-type: application/javascript
last-modified: Wed, 18 May 2022 15:54:17 GMT
etag: W/"628516a9-9785"
x-cache-status: BYPASS
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2

igmg.site/system/assets/js/jquery.blockui.min.js

51.195.6.66

200 OK

0 B

URL HTTP/2
igmg.site/system/assets/js/jquery.blockui.min.js
IP
51.195.6.66:0
ASN
#16276 OVH SAS

File type

Size
0 B (0 bytes)
Hash

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /system/assets/js/jquery.blockui.min.js HTTP/1.1
Host: igmg.site
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://igmg.site/system/
Cookie: PHPSESSID=mhkanfsohjrh27auu22920mu4p
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Thu, 23 Mar 2023 23:01:58 GMT
content-type: application/javascript
last-modified: Wed, 18 May 2022 15:54:17 GMT
etag: W/"628516a9-2554"
x-cache-status: BYPASS
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2

igmg.site/system/assets/js/jquery.vmap.germany.js

51.195.6.66

200 OK

0 B

URL HTTP/2
igmg.site/system/assets/js/jquery.vmap.germany.js
IP
51.195.6.66:0
ASN
#16276 OVH SAS

File type

Size
0 B (0 bytes)
Hash

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /system/assets/js/jquery.vmap.germany.js HTTP/1.1
Host: igmg.site
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://igmg.site/system/
Cookie: PHPSESSID=mhkanfsohjrh27auu22920mu4p
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Thu, 23 Mar 2023 23:01:58 GMT
content-type: application/javascript
last-modified: Wed, 18 May 2022 15:54:17 GMT
etag: W/"628516a9-d893"
x-cache-status: BYPASS
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2

igmg.site/system/assets/fullcalendar/lib/main.min.css?94125473

51.195.6.66

200 OK

0 B

URL HTTP/2
igmg.site/system/assets/fullcalendar/lib/main.min.css?94125473
IP
51.195.6.66:0
ASN
#16276 OVH SAS

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /system/assets/fullcalendar/lib/main.min.css?94125473 HTTP/1.1
Host: igmg.site
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://igmg.site/system/
Cookie: PHPSESSID=mhkanfsohjrh27auu22920mu4p
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Thu, 23 Mar 2023 23:01:58 GMT
content-type: text/css
last-modified: Wed, 18 May 2022 15:54:17 GMT
etag: W/"628516a9-616b"
x-cache-status: BYPASS
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2

igmg.site/system/assets/css/default.min.css?1393005616

51.195.6.66

200 OK

0 B

URL HTTP/2
igmg.site/system/assets/css/default.min.css?1393005616
IP
51.195.6.66:0
ASN
#16276 OVH SAS

File type

Size
0 B (0 bytes)
Hash

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /system/assets/css/default.min.css?1393005616 HTTP/1.1
Host: igmg.site
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://igmg.site/system/
Cookie: PHPSESSID=mhkanfsohjrh27auu22920mu4p
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Thu, 23 Mar 2023 23:01:58 GMT
content-type: text/css
last-modified: Wed, 18 May 2022 15:54:17 GMT
etag: W/"628516a9-5a7f"
x-cache-status: BYPASS
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2

igmg.site/system/assets/amcharts/dataloader.min.js

51.195.6.66

200 OK

0 B

URL HTTP/2
igmg.site/system/assets/amcharts/dataloader.min.js
IP
51.195.6.66:0
ASN
#16276 OVH SAS

File type

Size
0 B (0 bytes)
Hash

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /system/assets/amcharts/dataloader.min.js HTTP/1.1
Host: igmg.site
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://igmg.site/system/
Cookie: PHPSESSID=mhkanfsohjrh27auu22920mu4p
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Thu, 23 Mar 2023 23:01:58 GMT
content-type: application/javascript
last-modified: Wed, 18 May 2022 15:54:17 GMT
etag: W/"628516a9-1a8b"
x-cache-status: BYPASS
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2

igmg.site/system/assets/dropzone/dropzone.js

51.195.6.66

200 OK

0 B

URL HTTP/2
igmg.site/system/assets/dropzone/dropzone.js
IP
51.195.6.66:0
ASN
#16276 OVH SAS

File type

Size
0 B (0 bytes)
Hash

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /system/assets/dropzone/dropzone.js HTTP/1.1
Host: igmg.site
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://igmg.site/system/
Cookie: PHPSESSID=mhkanfsohjrh27auu22920mu4p
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Thu, 23 Mar 2023 23:01:58 GMT
content-type: application/javascript
last-modified: Wed, 18 May 2022 15:54:17 GMT
etag: W/"628516a9-22feb"
x-cache-status: BYPASS
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2

igmg.site/system/assets/js/ekurs.js?808473292

51.195.6.66

200 OK

0 B

URL HTTP/2
igmg.site/system/assets/js/ekurs.js?808473292
IP
51.195.6.66:0
ASN
#16276 OVH SAS

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /system/assets/js/ekurs.js?808473292 HTTP/1.1
Host: igmg.site
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://igmg.site/system/
Cookie: PHPSESSID=mhkanfsohjrh27auu22920mu4p
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Thu, 23 Mar 2023 23:01:58 GMT
content-type: application/javascript
last-modified: Sat, 04 Mar 2023 09:56:51 GMT
etag: W/"640315e3-6383"
x-cache-status: BYPASS
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2

igmg.site/system/assets/js/jquery.number.min.js

51.195.6.66

200 OK

0 B

URL HTTP/2
igmg.site/system/assets/js/jquery.number.min.js
IP
51.195.6.66:0
ASN
#16276 OVH SAS

File type

Size
0 B (0 bytes)
Hash

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /system/assets/js/jquery.number.min.js HTTP/1.1
Host: igmg.site
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://igmg.site/system/
Cookie: PHPSESSID=mhkanfsohjrh27auu22920mu4p
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Thu, 23 Mar 2023 23:01:58 GMT
content-type: application/javascript
last-modified: Wed, 18 May 2022 15:54:17 GMT
etag: W/"628516a9-185f"
x-cache-status: BYPASS
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2

igmg.site/system/assets/css/components.min.css?1298161843

51.195.6.66

200 OK

0 B

URL HTTP/2
igmg.site/system/assets/css/components.min.css?1298161843
IP
51.195.6.66:0
ASN
#16276 OVH SAS

File type

Size
0 B (0 bytes)
Hash

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /system/assets/css/components.min.css?1298161843 HTTP/1.1
Host: igmg.site
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://igmg.site/system/
Cookie: PHPSESSID=mhkanfsohjrh27auu22920mu4p
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Thu, 23 Mar 2023 23:01:58 GMT
content-type: text/css
last-modified: Wed, 18 May 2022 15:54:17 GMT
etag: W/"628516a9-a0436"
x-cache-status: BYPASS
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2

igmg.site/system/assets/fullcalendar/lib/locales-all.min.js

51.195.6.66

200 OK

0 B

URL HTTP/2
igmg.site/system/assets/fullcalendar/lib/locales-all.min.js
IP
51.195.6.66:0
ASN
#16276 OVH SAS

File type

Size
0 B (0 bytes)
Hash

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /system/assets/fullcalendar/lib/locales-all.min.js HTTP/1.1
Host: igmg.site
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://igmg.site/system/
Cookie: PHPSESSID=mhkanfsohjrh27auu22920mu4p
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Thu, 23 Mar 2023 23:01:58 GMT
content-type: application/javascript
last-modified: Wed, 18 May 2022 15:54:17 GMT
etag: W/"628516a9-47e2"
x-cache-status: BYPASS
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2

unpkg.com/xlsx@0.18.5/dist/shim.min.js

104.16.124.175

200 OK

0 B

URL HTTP/2
unpkg.com/xlsx@0.18.5/dist/shim.min.js
IP
104.16.124.175:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /xlsx@0.18.5/dist/shim.min.js HTTP/1.1
Host: unpkg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://igmg.site/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
date: Thu, 23 Mar 2023 23:01:58 GMT
content-type: application/javascript; charset=utf-8
access-control-allow-origin: *
cache-control: public, max-age=31536000
last-modified: Sat, 26 Oct 1985 08:15:00 GMT
etag: W/"1613-Z7IllA0NQSPoxrSE6c9Sl7PgwjA"
via: 1.1 fly.io
fly-request-id: 01FYY5CX0AG90XNXEV43KMCVSJ-fra
cf-cache-status: HIT
age: 31480267
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 7aca4c9fe8a1067b-OSL
content-encoding: br
X-Firefox-Spdy: h2

igmg.site/system/assets/js/jquery.easypiechart.min.js

51.195.6.66

200 OK

0 B

URL HTTP/2
igmg.site/system/assets/js/jquery.easypiechart.min.js
IP
51.195.6.66:0
ASN
#16276 OVH SAS

File type

Size
0 B (0 bytes)
Hash

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /system/assets/js/jquery.easypiechart.min.js HTTP/1.1
Host: igmg.site
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://igmg.site/system/
Cookie: PHPSESSID=mhkanfsohjrh27auu22920mu4p
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Thu, 23 Mar 2023 23:01:58 GMT
content-type: application/javascript
last-modified: Wed, 18 May 2022 15:54:17 GMT
etag: W/"628516a9-f4e"
x-cache-status: BYPASS
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2

igmg.site/system/assets/js/quick-nav.min.js

51.195.6.66

200 OK

0 B

URL HTTP/2
igmg.site/system/assets/js/quick-nav.min.js
IP
51.195.6.66:0
ASN
#16276 OVH SAS

File type

Size
0 B (0 bytes)
Hash

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /system/assets/js/quick-nav.min.js HTTP/1.1
Host: igmg.site
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://igmg.site/system/
Cookie: PHPSESSID=mhkanfsohjrh27auu22920mu4p
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Thu, 23 Mar 2023 23:01:58 GMT
content-type: application/javascript
x-accel-version: 0.01
last-modified: Wed, 18 May 2022 15:54:17 GMT
etag: W/"19f-5df4b45069a57"
x-cache-status: BYPASS
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2

unpkg.com/xlsx/dist/shim.min.js

104.16.124.175

302 Found

0 B

URL HTTP/2
unpkg.com/xlsx/dist/shim.min.js
IP
104.16.124.175:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /xlsx/dist/shim.min.js HTTP/1.1
Host: unpkg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://igmg.site/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 302 Found
date: Thu, 23 Mar 2023 23:01:58 GMT
content-type: text/plain; charset=utf-8
access-control-allow-origin: *
cache-control: public, s-maxage=600, max-age=60
location: /xlsx@0.18.5/dist/shim.min.js
vary: Accept, Accept-Encoding
via: 1.1 fly.io
fly-request-id: 01GW8BA7XV9JPHWRQ8KMM7ZRGD-fra
cf-cache-status: EXPIRED
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 7aca4c9f7870067b-OSL
X-Firefox-Spdy: h2

igmg.site/system/assets/js/jquery.dataTables.min.js

51.195.6.66

200 OK

0 B

URL HTTP/2
igmg.site/system/assets/js/jquery.dataTables.min.js
IP
51.195.6.66:0
ASN
#16276 OVH SAS

File type

Size
0 B (0 bytes)
Hash

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /system/assets/js/jquery.dataTables.min.js HTTP/1.1
Host: igmg.site
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://igmg.site/system/
Cookie: PHPSESSID=mhkanfsohjrh27auu22920mu4p
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Thu, 23 Mar 2023 23:01:58 GMT
content-type: application/javascript
last-modified: Wed, 18 May 2022 15:54:17 GMT
etag: W/"628516a9-13ff2"
x-cache-status: BYPASS
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2

igmg.site/system/assets/css/jqvmap.css?919193392

51.195.6.66

200 OK

0 B

URL HTTP/2
igmg.site/system/assets/css/jqvmap.css?919193392
IP
51.195.6.66:0
ASN
#16276 OVH SAS

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /system/assets/css/jqvmap.css?919193392 HTTP/1.1
Host: igmg.site
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://igmg.site/system/
Cookie: PHPSESSID=mhkanfsohjrh27auu22920mu4p
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Thu, 23 Mar 2023 23:01:58 GMT
content-type: text/css
x-accel-version: 0.01
last-modified: Wed, 18 May 2022 15:54:17 GMT
etag: W/"38b-5df4b450634c7"
x-cache-status: BYPASS
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2

igmg.site/system/assets/amcharts/pie.js

51.195.6.66

200 OK

0 B

URL HTTP/2
igmg.site/system/assets/amcharts/pie.js
IP
51.195.6.66:0
ASN
#16276 OVH SAS

File type

Size
0 B (0 bytes)
Hash

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /system/assets/amcharts/pie.js HTTP/1.1
Host: igmg.site
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://igmg.site/system/
Cookie: PHPSESSID=mhkanfsohjrh27auu22920mu4p
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Thu, 23 Mar 2023 23:01:58 GMT
content-type: application/javascript
last-modified: Wed, 18 May 2022 15:54:17 GMT
etag: W/"628516a9-394d"
x-cache-status: BYPASS
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2

igmg.site/system/assets/js/raphael-min.js

51.195.6.66

200 OK

0 B

URL HTTP/2
igmg.site/system/assets/js/raphael-min.js
IP
51.195.6.66:0
ASN
#16276 OVH SAS

File type

Size
0 B (0 bytes)
Hash

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /system/assets/js/raphael-min.js HTTP/1.1
Host: igmg.site
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://igmg.site/system/
Cookie: PHPSESSID=mhkanfsohjrh27auu22920mu4p
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Thu, 23 Mar 2023 23:01:58 GMT
content-type: application/javascript
last-modified: Wed, 18 May 2022 15:54:17 GMT
etag: W/"628516a9-16555"
x-cache-status: BYPASS
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2

igmg.site/system/

51.195.6.66

200 OK

0 B

URL HTTP/2
igmg.site/system/
IP
51.195.6.66:0
ASN
#16276 OVH SAS

File type

Size
0 B (0 bytes)
Hash

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /system/ HTTP/1.1
Host: igmg.site
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://igmg.site/
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Thu, 23 Mar 2023 23:01:58 GMT
content-type: text/html; charset=UTF-8
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: no-store, no-cache, must-revalidate
pragma: no-cache
set-cookie: PHPSESSID=mhkanfsohjrh27auu22920mu4p; expires=Sat, 01-Jul-2023 23:01:58 GMT; Max-Age=8640000; path=/
x-cache-status: MISS
x-powered-by: PHP/7.4.33, PleskLin
content-encoding: br
X-Firefox-Spdy: h2

igmg.site/system/assets/css/bootstrap.min.css?1083619210

51.195.6.66

200 OK

0 B

URL HTTP/2
igmg.site/system/assets/css/bootstrap.min.css?1083619210
IP
51.195.6.66:0
ASN
#16276 OVH SAS

File type

Size
0 B (0 bytes)
Hash

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /system/assets/css/bootstrap.min.css?1083619210 HTTP/1.1
Host: igmg.site
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://igmg.site/system/
Cookie: PHPSESSID=mhkanfsohjrh27auu22920mu4p
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Thu, 23 Mar 2023 23:01:58 GMT
content-type: text/css
last-modified: Wed, 18 May 2022 15:54:17 GMT
etag: W/"628516a9-1cc99"
x-cache-status: BYPASS
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2

igmg.site/system/assets/select2/select2.min.js

51.195.6.66

200 OK

0 B

URL HTTP/2
igmg.site/system/assets/select2/select2.min.js
IP
51.195.6.66:0
ASN
#16276 OVH SAS

File type

Size
0 B (0 bytes)
Hash

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /system/assets/select2/select2.min.js HTTP/1.1
Host: igmg.site
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://igmg.site/system/
Cookie: PHPSESSID=mhkanfsohjrh27auu22920mu4p
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Thu, 23 Mar 2023 23:01:58 GMT
content-type: application/javascript
last-modified: Wed, 18 May 2022 15:54:17 GMT
etag: W/"628516a9-1042e"
x-cache-status: BYPASS
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2

igmg.site/system/assets/js/jquery.slimscroll.min.js

51.195.6.66

200 OK

0 B

URL HTTP/2
igmg.site/system/assets/js/jquery.slimscroll.min.js
IP
51.195.6.66:0
ASN
#16276 OVH SAS

File type

Size
0 B (0 bytes)
Hash

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /system/assets/js/jquery.slimscroll.min.js HTTP/1.1
Host: igmg.site
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://igmg.site/system/
Cookie: PHPSESSID=mhkanfsohjrh27auu22920mu4p
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Thu, 23 Mar 2023 23:01:58 GMT
content-type: application/javascript
last-modified: Wed, 18 May 2022 15:54:17 GMT
etag: W/"628516a9-1437"
x-cache-status: BYPASS
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2

igmg.site/system/assets/amcharts/export.css?1036740399

51.195.6.66

200 OK

0 B

URL HTTP/2
igmg.site/system/assets/amcharts/export.css?1036740399
IP
51.195.6.66:0
ASN
#16276 OVH SAS

File type

Size
0 B (0 bytes)
Hash

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /system/assets/amcharts/export.css?1036740399 HTTP/1.1
Host: igmg.site
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://igmg.site/system/
Cookie: PHPSESSID=mhkanfsohjrh27auu22920mu4p
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Thu, 23 Mar 2023 23:01:58 GMT
content-type: text/css
last-modified: Wed, 18 May 2022 15:54:17 GMT
etag: W/"628516a9-8397"
x-cache-status: BYPASS
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2

igmg.site/system/assets/select2/select2.min.css?1181346672

51.195.6.66

200 OK

0 B

URL HTTP/2
igmg.site/system/assets/select2/select2.min.css?1181346672
IP
51.195.6.66:0
ASN
#16276 OVH SAS

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /system/assets/select2/select2.min.css?1181346672 HTTP/1.1
Host: igmg.site
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://igmg.site/system/
Cookie: PHPSESSID=mhkanfsohjrh27auu22920mu4p
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Thu, 23 Mar 2023 23:01:58 GMT
content-type: text/css
last-modified: Wed, 18 May 2022 15:54:17 GMT
etag: W/"628516a9-7c8b"
x-cache-status: BYPASS
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2

igmg.site/system/assets/amcharts/light.js

51.195.6.66

200 OK

0 B

URL HTTP/2
igmg.site/system/assets/amcharts/light.js
IP
51.195.6.66:0
ASN
#16276 OVH SAS

File type

Size
0 B (0 bytes)
Hash

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /system/assets/amcharts/light.js HTTP/1.1
Host: igmg.site
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://igmg.site/system/
Cookie: PHPSESSID=mhkanfsohjrh27auu22920mu4p
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Thu, 23 Mar 2023 23:01:58 GMT
content-type: application/javascript
last-modified: Wed, 18 May 2022 15:54:17 GMT
etag: W/"628516a9-b62"
x-cache-status: BYPASS
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2

igmg.site/system/assets/js/jquery.vmap.russia.js

51.195.6.66

200 OK

0 B

URL HTTP/2
igmg.site/system/assets/js/jquery.vmap.russia.js
IP
51.195.6.66:0
ASN
#16276 OVH SAS

File type

Size
0 B (0 bytes)
Hash

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /system/assets/js/jquery.vmap.russia.js HTTP/1.1
Host: igmg.site
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://igmg.site/system/
Cookie: PHPSESSID=mhkanfsohjrh27auu22920mu4p
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Thu, 23 Mar 2023 23:01:58 GMT
content-type: application/javascript
last-modified: Wed, 18 May 2022 15:54:17 GMT
etag: W/"628516a9-267d3"
x-cache-status: BYPASS
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2

igmg.site/system/assets/js/jquery.vmap.js

51.195.6.66

200 OK

0 B

URL HTTP/2
igmg.site/system/assets/js/jquery.vmap.js
IP
51.195.6.66:0
ASN
#16276 OVH SAS

File type

Size
0 B (0 bytes)
Hash

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /system/assets/js/jquery.vmap.js HTTP/1.1
Host: igmg.site
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://igmg.site/system/
Cookie: PHPSESSID=mhkanfsohjrh27auu22920mu4p
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Thu, 23 Mar 2023 23:01:58 GMT
content-type: application/javascript
last-modified: Wed, 18 May 2022 15:54:17 GMT
etag: W/"628516a9-6ba2"
x-cache-status: BYPASS
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2

igmg.site/system/assets/js/login.min.js

51.195.6.66

200 OK

0 B

URL HTTP/2
igmg.site/system/assets/js/login.min.js
IP
51.195.6.66:0
ASN
#16276 OVH SAS

File type

Size
0 B (0 bytes)
Hash

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /system/assets/js/login.min.js HTTP/1.1
Host: igmg.site
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://igmg.site/system/
Cookie: PHPSESSID=mhkanfsohjrh27auu22920mu4p
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Thu, 23 Mar 2023 23:01:58 GMT
content-type: application/javascript
last-modified: Wed, 18 May 2022 15:54:17 GMT
etag: W/"628516a9-d1c"
x-cache-status: BYPASS
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2

igmg.site/

51.195.6.66

200 OK

0 B

URL HTTP/2
igmg.site/
IP
51.195.6.66:0
ASN
#16276 OVH SAS

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET / HTTP/1.1
Host: igmg.site
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1

HTTP/2 200 OK
server: nginx
date: Thu, 23 Mar 2023 23:01:57 GMT
content-type: text/html
x-accel-version: 0.01
last-modified: Wed, 29 Jun 2022 10:49:44 GMT
etag: W/"28-5e293e94074cd"
x-cache-status: STALE
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2

igmg.site/system/assets/css/layout.min.css?521360093

51.195.6.66

200 OK

0 B

URL HTTP/2
igmg.site/system/assets/css/layout.min.css?521360093
IP
51.195.6.66:0
ASN
#16276 OVH SAS

File type

Size
0 B (0 bytes)
Hash

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /system/assets/css/layout.min.css?521360093 HTTP/1.1
Host: igmg.site
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://igmg.site/system/
Cookie: PHPSESSID=mhkanfsohjrh27auu22920mu4p
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Thu, 23 Mar 2023 23:01:58 GMT
content-type: text/css
last-modified: Wed, 18 May 2022 15:54:17 GMT
etag: W/"628516a9-ec89"
x-cache-status: BYPASS
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

OpenPhish

PhishTank

Fortinet's Web Filter

mnemonic secure dns

Quad9 DNS

ThreatFox

JavaScript (65)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML