Report - eng.kurskmed.com/hu/gls/gls/billing.php

Report Overview

Submitted URL
eng.kurskmed.com/hu/gls/gls/billing.php
IP
77.241.23.10
ASN
#42277 Limited liability company Kursktelecom
Submitted
2024-04-25 02:08:33
Access
public
Website Title
MyGLS - Bejelentkezés
Final URL
eng.kurskmed.com/hu/gls/gls/billing.php
Tags
urlquery detections
No alerts detected

Detections

urlquery
0
Network Intrusion Detection
0
Threat Detection Systems
2

Domain Summary

Domain / FQDN	Rank	Registered	First Seen	Last Seen	Sent	Received	IP
eng.kurskmed.com	unknown	2008-12-30	2015-07-21	2024-03-26	493 B	20 kB	77.241.23.10
mygls.hu	unknown	2017-04-04	2018-10-15	2024-03-26	4.2 kB	1.3 MB	82.141.140.12

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

Public InfoSec YARA rules

No alerts detected

OpenPhish

No alerts detected

PhishTank

Scan Date	Severity	Indicator	Alert
2023-08-28	medium	eng.kurskmed.com/hu/gls/gls/billing.php	Other

mnemonic secure dns

No alerts detected

Quad9 DNS

No alerts detected

ThreatFox

No alerts detected

JavaScript (7)

	URL	Size	First Seen	Last Seen
	eng.kurskmed.com/hu/gls/gls/billing.php	717 B	2023-09-09	2024-04-25
Pretty URL eng.kurskmed.com/hu/gls/gls/billing.php IP 77.241.23.10 ASN #42277 Limited liability company Kursktelecom Introduced by scriptElement Embedded in HTML true Observations First Seen2023-09-09 09:17:59 Last Seen2024-04-25 04:08:36 Times Seen17 Hash 243b52345add720a41205e48b181bcba fc0f5133df8bf4c49835324f7fa65104d6d14c41 488687e98247a27818cf3e9cbb5a0e026a0c595c67197393a66ad7571ebb6e09 Loading...

	eng.kurskmed.com/hu/gls/gls/billing.php	373 B	2023-09-09	2024-04-25
Pretty URL eng.kurskmed.com/hu/gls/gls/billing.php IP 77.241.23.10 ASN #42277 Limited liability company Kursktelecom Introduced by scriptElement Embedded in HTML true Observations First Seen2023-09-09 09:17:59 Last Seen2024-04-25 04:08:36 Times Seen17 Hash e56c7cd7bde84a397c239d2bad4ee48d 9114caa8d4b6543dac9de65ab5a44fc6b72cd2f3 e4787287f1bd908812885bfdb4f2140792ad70b19f9a98ad2547a1b4936b53f0 Loading...

	mygls.hu/bundles/script/doc-end?v=saLwOSVXQ-zK1INEkh1iWQnyc_r9v9M4oorVo6mfbdk1	191 kB	2023-09-09	2024-04-25
Pretty URL mygls.hu/bundles/script/doc-end?v=saLwOSVXQ-zK1INEkh1iWQnyc_r9v9M4oorVo6mfbdk1 IP 82.141.140.12 ASN #12301 Invitech ICT Services Kft. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-09-09 09:17:59 Last Seen2024-04-25 04:08:36 Times Seen34 Hash 925039b7285ca92577993edbd17ff99c 0578f45df242b31972ded6ed4b660143747c0d72 23041faeef812f668d171baf6ec1aaadc2b0cdd5e6a34fe4467be8efce73c059 Loading...

	mygls.hu/bundles/jqueryval?v=x63JhYAtPoWfuvvzOG4ie0IbeC8KtI5Q_Ln6iJWChUE1	28 kB	2023-03-07	2024-04-25
Pretty URL mygls.hu/bundles/jqueryval?v=x63JhYAtPoWfuvvzOG4ie0IbeC8KtI5Q_Ln6iJWChUE1 IP 82.141.140.12 ASN #12301 Invitech ICT Services Kft. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:18:59 Last Seen2024-04-25 04:08:36 Times Seen101 Hash 59cc39e462b2c90bd2feeab97061922b f602655ad8891ab0d8c3b0d83781494b78ed35d7 9012a9c1449111c93f495696eeaae5ba629b3918f3e1bbc1f9e4327ca97d868c Loading...

	eng.kurskmed.com/hu/gls/gls/billing.php	495 B	2023-09-09	2024-04-25
Pretty URL eng.kurskmed.com/hu/gls/gls/billing.php IP 77.241.23.10 ASN #42277 Limited liability company Kursktelecom Introduced by scriptElement Embedded in HTML true Observations First Seen2023-09-09 09:17:59 Last Seen2024-04-25 04:08:36 Times Seen17 Hash d026a3a22c5195125370b1feb550dc16 551a20d2f6b278c53e8228c92bfbb2ef4e67ff11 2aa3b2acc57911f7fcd9d76c444fbf6c19226cf5015f72d49ffde89f4bff3f34 Loading...

	mygls.hu/bundles/script/doc-start?v=mIvEf0XR69zV8K0iVv5e4oTtgZjkTP6C1sWiSYY9syI1	348 kB	2023-09-09	2024-04-25
Pretty URL mygls.hu/bundles/script/doc-start?v=mIvEf0XR69zV8K0iVv5e4oTtgZjkTP6C1sWiSYY9syI1 IP 82.141.140.12 ASN #12301 Invitech ICT Services Kft. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-09-09 09:17:59 Last Seen2024-04-25 04:08:36 Times Seen34 Hash 586886f522a8b627574e10ee8e899b73 39cf2c620cb7efbe60ab7df5a9349675f081a054 64df0b80def6f3637e4f5557e925db8104ffcfd761fbe077f7edba0eb66e9f78 Loading...

	eng.kurskmed.com/hu/gls/gls/billing.php	168 B	2023-09-09	2024-04-25
Pretty URL eng.kurskmed.com/hu/gls/gls/billing.php IP 77.241.23.10 ASN #42277 Limited liability company Kursktelecom Introduced by scriptElement Embedded in HTML true Observations First Seen2023-09-09 09:17:59 Last Seen2024-04-25 04:08:36 Times Seen17 Hash 078cb63d22da65cf561d463655a167f3 c79e38d00a8610f2dd3ebf689458e8376c71f8cc a36ae5dbef4a68cb1c1a68d8a5674232505416465217cfa8fe4824567c20f1d6 Loading...

HTTP Transactions (10)

URL IP Response Size

eng.kurskmed.com/hu/gls/gls/billing.php

77.241.23.10

200 OK

20 kB

URL User Request GET HTTP/1.1
eng.kurskmed.com/hu/gls/gls/billing.php
IP
77.241.23.10:443
ASN
#42277 Limited liability company Kursktelecom

Certificate
IssuerLet's Encrypt
Subjecteng.kurskmed.com
Fingerprint9F:D6:16:D8:3C:76:5B:85:F5:54:50:9F:91:5F:D0:2B:91:78:3C:F6
ValiditySun, 03 Mar 2024 14:13:47 GMT - Sat, 01 Jun 2024 14:13:46 GMT

File type
HTML document, Unicode text, UTF-16, little-endian text, with very long lines (338), with CRLF line terminators
Size
20 kB (20082 bytes)
Hash
4f370d09481aff8fcc510f56f8b2b7bb
02947de93c944dbf3a7d2fcff581493599373abc
c0cfce578b388e62d63ce4db9349d7607aee24a2a653773a001af4e5c0869055

Detections

Analyzer	Verdict	Alert
PhishTank	phishing	Other

HTTP Headers

GET /hu/gls/gls/billing.php HTTP/1.1
Host: eng.kurskmed.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.20.1
Date: Thu, 25 Apr 2024 02:08:08 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
X-Powered-By: PHP/7.4.29

mygls.hu/Content/Images/logo-inverse.png

82.141.140.12

200 OK

1.5 kB

URL GET HTTP/2
mygls.hu/Content/Images/logo-inverse.png
IP
82.141.140.12:443
ASN
#12301 Invitech ICT Services Kft.

Requested by
https://eng.kurskmed.com/hu/gls/gls/billing.php
Certificate
IssuerSectigo Limited
Subjectmygls.hu
Fingerprint76:6C:7B:9C:A1:C6:D7:D5:99:E0:04:13:EE:8A:CB:D5:0E:0D:37:52
ValidityTue, 16 May 2023 00:00:00 GMT - Wed, 15 May 2024 23:59:59 GMT

File type
PNG image data, 93 x 32, 8-bit/color RGBA, non-interlaced
Size
1.5 kB (1450 bytes)
Hash
d46e6cb8f49d9d8bd541d9f4e579938e
7e8c1f8a9637fa074f0bd9f1f5698bcd26cbc263
03d3e31978e539a9f1eeaa24e311e3f1e483c36071f4833ab5fda510787ff77c

HTTP Headers

GET /Content/Images/logo-inverse.png HTTP/1.1
Host: mygls.hu
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://eng.kurskmed.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
content-type: image/png
last-modified: Mon, 15 Jan 2024 12:49:10 GMT
accept-ranges: bytes
etag: "6ccff53bb147da1:0"
server: Microsoft-IIS/10.0
x-powered-by: ASP.NET
date: Thu, 25 Apr 2024 02:08:07 GMT
content-length: 1450
X-Firefox-Spdy: h2

mygls.hu/bundles/jqueryval?v=x63JhYAtPoWfuvvzOG4ie0IbeC8KtI5Q_Ln6iJWChUE1

82.141.140.12

200 OK

28 kB

URL GET HTTP/2
mygls.hu/bundles/jqueryval?v=x63JhYAtPoWfuvvzOG4ie0IbeC8KtI5Q_Ln6iJWChUE1
IP
82.141.140.12:443
ASN
#12301 Invitech ICT Services Kft.

Requested by
https://eng.kurskmed.com/hu/gls/gls/billing.php
Certificate
IssuerSectigo Limited
Subjectmygls.hu
Fingerprint76:6C:7B:9C:A1:C6:D7:D5:99:E0:04:13:EE:8A:CB:D5:0E:0D:37:52
ValidityTue, 16 May 2023 00:00:00 GMT - Wed, 15 May 2024 23:59:59 GMT

File type
JavaScript source, ASCII text, with very long lines (28330), with no line terminators
Size
28 kB (28330 bytes)
Hash
59cc39e462b2c90bd2feeab97061922b
f602655ad8891ab0d8c3b0d83781494b78ed35d7
9012a9c1449111c93f495696eeaae5ba629b3918f3e1bbc1f9e4327ca97d868c

HTTP Headers

GET /bundles/jqueryval?v=x63JhYAtPoWfuvvzOG4ie0IbeC8KtI5Q_Ln6iJWChUE1 HTTP/1.1
Host: mygls.hu
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://eng.kurskmed.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
cache-control: public, no-cache="Set-Cookie"
content-type: text/javascript; charset=utf-8
expires: Fri, 25 Apr 2025 02:08:08 GMT
last-modified: Thu, 25 Apr 2024 02:08:08 GMT
vary: User-Agent
server: Microsoft-IIS/10.0
set-cookie: __UIL_FE=HU; expires=Fri, 31-Dec-9999 23:59:59 GMT; path=/; secure; HttpOnly; SameSite=Strict
__ACU_FE=; expires=Fri, 31-Dec-9999 23:59:59 GMT; path=/; secure; HttpOnly; SameSite=Strict
x-aspnet-version: 4.0.30319
x-powered-by: ASP.NET
date: Thu, 25 Apr 2024 02:08:07 GMT
content-length: 28330
X-Firefox-Spdy: h2

mygls.hu/bundles/script/doc-end?v=saLwOSVXQ-zK1INEkh1iWQnyc_r9v9M4oorVo6mfbdk1

82.141.140.12

200 OK

191 kB

URL GET HTTP/2
mygls.hu/bundles/script/doc-end?v=saLwOSVXQ-zK1INEkh1iWQnyc_r9v9M4oorVo6mfbdk1
IP
82.141.140.12:443
ASN
#12301 Invitech ICT Services Kft.

Requested by
https://eng.kurskmed.com/hu/gls/gls/billing.php
Certificate
IssuerSectigo Limited
Subjectmygls.hu
Fingerprint76:6C:7B:9C:A1:C6:D7:D5:99:E0:04:13:EE:8A:CB:D5:0E:0D:37:52
ValidityTue, 16 May 2023 00:00:00 GMT - Wed, 15 May 2024 23:59:59 GMT

File type
JavaScript source, Unicode text, UTF-8 text, with very long lines (58236), with no line terminators
Size
191 kB (191282 bytes)
Hash
925039b7285ca92577993edbd17ff99c
0578f45df242b31972ded6ed4b660143747c0d72
23041faeef812f668d171baf6ec1aaadc2b0cdd5e6a34fe4467be8efce73c059

HTTP Headers

GET /bundles/script/doc-end?v=saLwOSVXQ-zK1INEkh1iWQnyc_r9v9M4oorVo6mfbdk1 HTTP/1.1
Host: mygls.hu
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://eng.kurskmed.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
cache-control: public, no-cache="Set-Cookie"
content-type: text/javascript; charset=utf-8
expires: Fri, 25 Apr 2025 02:08:08 GMT
last-modified: Thu, 25 Apr 2024 02:08:08 GMT
vary: User-Agent
server: Microsoft-IIS/10.0
set-cookie: __UIL_FE=HU; expires=Fri, 31-Dec-9999 23:59:59 GMT; path=/; secure; HttpOnly; SameSite=Strict
__ACU_FE=; expires=Fri, 31-Dec-9999 23:59:59 GMT; path=/; secure; HttpOnly; SameSite=Strict
x-aspnet-version: 4.0.30319
x-powered-by: ASP.NET
date: Thu, 25 Apr 2024 02:08:07 GMT
content-length: 191282
X-Firefox-Spdy: h2

mygls.hu/bundles/script/doc-start?v=mIvEf0XR69zV8K0iVv5e4oTtgZjkTP6C1sWiSYY9syI1

82.141.140.12

200 OK

348 kB

URL GET HTTP/2
mygls.hu/bundles/script/doc-start?v=mIvEf0XR69zV8K0iVv5e4oTtgZjkTP6C1sWiSYY9syI1
IP
82.141.140.12:443
ASN
#12301 Invitech ICT Services Kft.

Requested by
https://eng.kurskmed.com/hu/gls/gls/billing.php
Certificate
IssuerSectigo Limited
Subjectmygls.hu
Fingerprint76:6C:7B:9C:A1:C6:D7:D5:99:E0:04:13:EE:8A:CB:D5:0E:0D:37:52
ValidityTue, 16 May 2023 00:00:00 GMT - Wed, 15 May 2024 23:59:59 GMT

File type
JavaScript source, Unicode text, UTF-8 text, with very long lines (65534), with no line terminators
Size
348 kB (347625 bytes)
Hash
586886f522a8b627574e10ee8e899b73
39cf2c620cb7efbe60ab7df5a9349675f081a054
64df0b80def6f3637e4f5557e925db8104ffcfd761fbe077f7edba0eb66e9f78

HTTP Headers

GET /bundles/script/doc-start?v=mIvEf0XR69zV8K0iVv5e4oTtgZjkTP6C1sWiSYY9syI1 HTTP/1.1
Host: mygls.hu
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://eng.kurskmed.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
cache-control: public, no-cache="Set-Cookie"
content-type: text/javascript; charset=utf-8
expires: Fri, 25 Apr 2025 02:08:08 GMT
last-modified: Thu, 25 Apr 2024 02:08:08 GMT
vary: User-Agent
server: Microsoft-IIS/10.0
set-cookie: __UIL_FE=HU; expires=Fri, 31-Dec-9999 23:59:59 GMT; path=/; secure; HttpOnly; SameSite=Strict
__ACU_FE=; expires=Fri, 31-Dec-9999 23:59:59 GMT; path=/; secure; HttpOnly; SameSite=Strict
x-aspnet-version: 4.0.30319
x-powered-by: ASP.NET
date: Thu, 25 Apr 2024 02:08:07 GMT
content-length: 347625
X-Firefox-Spdy: h2

mygls.hu/bundles/css?v=UNT1CDAd1bBYwrl16KTVx0zLEsfeljIIwHsqN9R4mss1

82.141.140.12

200 OK

500 kB

URL GET HTTP/2
mygls.hu/bundles/css?v=UNT1CDAd1bBYwrl16KTVx0zLEsfeljIIwHsqN9R4mss1
IP
82.141.140.12:443
ASN
#12301 Invitech ICT Services Kft.

Requested by
https://eng.kurskmed.com/hu/gls/gls/billing.php
Certificate
IssuerSectigo Limited
Subjectmygls.hu
Fingerprint76:6C:7B:9C:A1:C6:D7:D5:99:E0:04:13:EE:8A:CB:D5:0E:0D:37:52
ValidityTue, 16 May 2023 00:00:00 GMT - Wed, 15 May 2024 23:59:59 GMT

File type
ASCII text, with very long lines (24794), with CRLF line terminators
Size
500 kB (499778 bytes)
Hash
b52b89f3993a63a41b7e80210d6a68e4
95a86968461810fc3b1be933a70a9fb14276f225
57c47906b723401d620d99192b60d04cbd1676f19faebdb5f384ca9e535d5dbd

HTTP Headers

GET /bundles/css?v=UNT1CDAd1bBYwrl16KTVx0zLEsfeljIIwHsqN9R4mss1 HTTP/1.1
Host: mygls.hu
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://eng.kurskmed.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
cache-control: no-cache
pragma: no-cache
content-type: text/css; charset=utf-8
expires: -1
server: Microsoft-IIS/10.0
set-cookie: __UIL_FE=HU; expires=Fri, 31-Dec-9999 23:59:59 GMT; path=/; secure; HttpOnly; SameSite=Strict
__ACU_FE=; expires=Fri, 31-Dec-9999 23:59:59 GMT; path=/; secure; HttpOnly; SameSite=Strict
x-aspnet-version: 4.0.30319
x-powered-by: ASP.NET
date: Thu, 25 Apr 2024 02:08:07 GMT
content-length: 499778
X-Firefox-Spdy: h2

mygls.hu/Content/Newson/Newson-Bold.ttf

82.141.140.12

200 OK

114 kB

URL GET HTTP/2
mygls.hu/Content/Newson/Newson-Bold.ttf
IP
82.141.140.12:443
ASN
#12301 Invitech ICT Services Kft.

Requested by
https://eng.kurskmed.com/hu/gls/gls/billing.php
Certificate
IssuerSectigo Limited
Subjectmygls.hu
Fingerprint76:6C:7B:9C:A1:C6:D7:D5:99:E0:04:13:EE:8A:CB:D5:0E:0D:37:52
ValidityTue, 16 May 2023 00:00:00 GMT - Wed, 15 May 2024 23:59:59 GMT

File type
TrueType Font data, 15 tables, 1st "FFTM", 24 names, Macintosh
Size
114 kB (114492 bytes)
Hash
ac0601e1ceac14775be18d039e13a2d2
28ec993cb2f75b4171146b158abaf0fe8c7539e7
3e623b0bf65acac57b65661aaa9b5cd2e30088b46ee036020c6fedc598cace8f

HTTP Headers

GET /Content/Newson/Newson-Bold.ttf HTTP/1.1
Host: mygls.hu
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://eng.kurskmed.com
DNT: 1
Connection: keep-alive
Referer: https://mygls.hu/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
content-type: application/octet-stream
last-modified: Mon, 15 Jan 2024 12:49:10 GMT
accept-ranges: bytes
etag: "66c52b3cb147da1:0"
server: Microsoft-IIS/10.0
x-powered-by: ASP.NET
date: Thu, 25 Apr 2024 02:08:09 GMT
content-length: 114492
X-Firefox-Spdy: h2

mygls.hu/favicon.ico

82.141.140.12

200 OK

15 kB

URL GET HTTP/2
mygls.hu/favicon.ico
IP
82.141.140.12:443
ASN
#12301 Invitech ICT Services Kft.

Requested by
https://eng.kurskmed.com/hu/gls/gls/billing.php
Certificate
IssuerSectigo Limited
Subjectmygls.hu
Fingerprint76:6C:7B:9C:A1:C6:D7:D5:99:E0:04:13:EE:8A:CB:D5:0E:0D:37:52
ValidityTue, 16 May 2023 00:00:00 GMT - Wed, 15 May 2024 23:59:59 GMT

File type
MS Windows icon resource - 3 icons, 48x48, 32 bits/pixel, 32x32, 32 bits/pixel
Size
15 kB (15086 bytes)
Hash
72c792c20135d9e77e09537fce87b1e9
32c69b36b2efeaec9e8316575382cce676b5a294
bee156a8aafd5c7c174e8c64356099b12ee104ad521bc43493bf5b65100d82f0

HTTP Headers

GET /favicon.ico HTTP/1.1
Host: mygls.hu
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://eng.kurskmed.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
content-type: image/x-icon
last-modified: Mon, 15 Jan 2024 12:49:10 GMT
accept-ranges: bytes
etag: "f0a15a3cb147da1:0"
server: Microsoft-IIS/10.0
x-powered-by: ASP.NET
date: Thu, 25 Apr 2024 02:08:09 GMT
content-length: 15086
X-Firefox-Spdy: h2

mygls.hu/Content/Newson/Newson-SemiBold.ttf

82.141.140.12

200 OK

92 kB

URL GET HTTP/2
mygls.hu/Content/Newson/Newson-SemiBold.ttf
IP
82.141.140.12:443
ASN
#12301 Invitech ICT Services Kft.

Requested by
https://eng.kurskmed.com/hu/gls/gls/billing.php
Certificate
IssuerSectigo Limited
Subjectmygls.hu
Fingerprint76:6C:7B:9C:A1:C6:D7:D5:99:E0:04:13:EE:8A:CB:D5:0E:0D:37:52
ValidityTue, 16 May 2023 00:00:00 GMT - Wed, 15 May 2024 23:59:59 GMT

File type
TrueType Font data, 15 tables, 1st "FFTM", 28 names, Macintosh
Size
92 kB (92407 bytes)
Hash
45da42f6d9bb1588a83579ebd23c2987
73a138506e252e81cb97fb6279094d2eb8c7e617
e8740f903ed4d59d37f1ffab2efd167d3982f061f1e2dd002f86ad0d0168a5af

HTTP Headers

GET /Content/Newson/Newson-SemiBold.ttf HTTP/1.1
Host: mygls.hu
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://eng.kurskmed.com
DNT: 1
Connection: keep-alive
Referer: https://mygls.hu/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: application/octet-stream
last-modified: Mon, 15 Jan 2024 12:49:10 GMT
accept-ranges: bytes
etag: "856343cb147da1:0"
server: Microsoft-IIS/10.0
x-powered-by: ASP.NET
date: Thu, 25 Apr 2024 02:08:09 GMT
content-length: 114452
X-Firefox-Spdy: h2

mygls.hu/Content/Newson/Newson-Regular.ttf

82.141.140.12

200 OK

23 kB

URL GET HTTP/2
mygls.hu/Content/Newson/Newson-Regular.ttf
IP
82.141.140.12:443
ASN
#12301 Invitech ICT Services Kft.

Requested by
https://eng.kurskmed.com/hu/gls/gls/billing.php
Certificate
IssuerSectigo Limited
Subjectmygls.hu
Fingerprint76:6C:7B:9C:A1:C6:D7:D5:99:E0:04:13:EE:8A:CB:D5:0E:0D:37:52
ValidityTue, 16 May 2023 00:00:00 GMT - Wed, 15 May 2024 23:59:59 GMT

File type
TrueType Font data, 15 tables, 1st "FFTM"
Size
23 kB (22902 bytes)
Hash
873af2448567e2ba027a716968ed1d1c
f973df88eaa031268d2e58fa4a27d6db9febe644
936e26a23a7bdbd498ffb9a49ac2b98a66ca0c6f3c577fd66d17f629051a58fd

HTTP Headers

GET /Content/Newson/Newson-Regular.ttf HTTP/1.1
Host: mygls.hu
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://eng.kurskmed.com
DNT: 1
Connection: keep-alive
Referer: https://mygls.hu/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: application/octet-stream
last-modified: Mon, 15 Jan 2024 12:49:10 GMT
accept-ranges: bytes
etag: "7b3f333cb147da1:0"
server: Microsoft-IIS/10.0
x-powered-by: ASP.NET
date: Thu, 25 Apr 2024 02:08:09 GMT
content-length: 113512
X-Firefox-Spdy: h2

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

Public InfoSec YARA rules

OpenPhish

PhishTank

mnemonic secure dns

Quad9 DNS

ThreatFox

JavaScript (7)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

HTTP Transactions (10)

URL User Request GET HTTP/1.1

IP

ASN

Certificate