Report - surgimedhealth.com/main

Report Overview

Submitted URL
surgimedhealth.com/main_login.php
IP
162.210.99.158
ASN
#32748 STEADFAST
Submitted
2024-05-04 08:47:06
Access
public
Website Title
surgimed
Final URL
surgimedhealth.com/main_login.php
Tags
urlquery detections
No alerts detected

Detections

urlquery
0
Network Intrusion Detection
0
Threat Detection Systems
64

Domain Summary

Domain / FQDN	Rank	Registered	First Seen	Last Seen	Sent	Received	IP
surgimedhealth.com	unknown	2014-01-28	2016-02-22	2024-03-22	16 kB	183 kB	162.210.99.158

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

Public InfoSec YARA rules

No alerts detected

OpenPhish

No alerts detected

PhishTank

No alerts detected

mnemonic secure dns

No alerts detected

Quad9 DNS

Scan Date	Severity	Indicator	Alert
2024-05-04	medium	surgimedhealth.com	Sinkholed
2024-05-04	medium	surgimedhealth.com	Sinkholed
2024-05-04	medium	surgimedhealth.com	Sinkholed
2024-05-04	medium	surgimedhealth.com	Sinkholed
2024-05-04	medium	surgimedhealth.com	Sinkholed
2024-05-04	medium	surgimedhealth.com	Sinkholed
2024-05-04	medium	surgimedhealth.com	Sinkholed
2024-05-04	medium	surgimedhealth.com	Sinkholed
2024-05-04	medium	surgimedhealth.com	Sinkholed
2024-05-04	medium	surgimedhealth.com	Sinkholed
2024-05-04	medium	surgimedhealth.com	Sinkholed
2024-05-04	medium	surgimedhealth.com	Sinkholed
2024-05-04	medium	surgimedhealth.com	Sinkholed
2024-05-04	medium	surgimedhealth.com	Sinkholed
2024-05-04	medium	surgimedhealth.com	Sinkholed
2024-05-04	medium	surgimedhealth.com	Sinkholed
2024-05-04	medium	surgimedhealth.com	Sinkholed
2024-05-04	medium	surgimedhealth.com	Sinkholed
2024-05-04	medium	surgimedhealth.com	Sinkholed
2024-05-04	medium	surgimedhealth.com	Sinkholed
2024-05-04	medium	surgimedhealth.com	Sinkholed
2024-05-04	medium	surgimedhealth.com	Sinkholed
2024-05-04	medium	surgimedhealth.com	Sinkholed
2024-05-04	medium	surgimedhealth.com	Sinkholed
2024-05-04	medium	surgimedhealth.com	Sinkholed
2024-05-04	medium	surgimedhealth.com	Sinkholed
2024-05-04	medium	surgimedhealth.com	Sinkholed
2024-05-04	medium	surgimedhealth.com	Sinkholed
2024-05-04	medium	surgimedhealth.com	Sinkholed
2024-05-04	medium	surgimedhealth.com	Sinkholed
2024-05-04	medium	surgimedhealth.com	Sinkholed
2024-05-04	medium	surgimedhealth.com	Sinkholed

ThreatFox

No alerts detected

JavaScript (3)

	URL	Size	First Seen	Last Seen
	surgimedhealth.com/js/boxOver.js	11 kB	2023-04-14	2024-05-04
Pretty URL surgimedhealth.com/js/boxOver.js IP 162.210.99.158 ASN #32748 STEADFAST Introduced by scriptElement Embedded in HTML false Observations First Seen2023-04-14 18:18:22 Last Seen2024-05-04 10:47:08 Times Seen18 Hash 569b918e316fb4ef49d4e961f593af7c dd0fa3e193a5981219ae4c900ae4e9489f8bcc9c 226c9d83631bdfa5a85e0d93dc88d93b63a17eb03ca3f3fd2ac9a4682ebc60df Loading...

	surgimedhealth.com/main_login.php	205 B	2023-04-14	2024-05-04
Pretty URL surgimedhealth.com/main_login.php IP 162.210.99.158 ASN #32748 STEADFAST Introduced by scriptElement Embedded in HTML true Observations First Seen2023-04-14 18:18:22 Last Seen2024-05-04 10:47:08 Times Seen6 Hash a29e8bef9380149798ec163cc25beb50 476c6fc07ab1933f90887b14865cbba9b5649a2e d83bab1bb7db849492e6851b8dde66c9f362a0e7b3e5409a4afa401d165edacc Loading...

	surgimedhealth.com/main_login.php	226 B	2023-04-14	2024-05-04
Pretty URL surgimedhealth.com/main_login.php IP 162.210.99.158 ASN #32748 STEADFAST Introduced by scriptElement Embedded in HTML true Observations First Seen2023-04-14 18:18:22 Last Seen2024-05-04 10:47:08 Times Seen6 Hash b60b2f28227a31ee610504ca10833cba 7af58b295aa05f4d6433c3e8766524dcb2e7662a 78c651d9579ccedd745b2d84a1ff5b900e1c2e317b1bd82cad44145cb620a757 Loading...

HTTP Transactions (32)

URL IP Response Size

surgimedhealth.com/style.css

162.210.99.158

200 OK

2.8 kB

URL GET HTTP/2
surgimedhealth.com/style.css
IP
162.210.99.158:443
ASN
#32748 STEADFAST

Requested by
https://surgimedhealth.com/main_login.php
Certificate
IssuercPanel, Inc.
Subjectsurgimedhealth.com
Fingerprint50:6A:E9:9F:CF:E5:CA:44:3C:90:57:C5:E7:F6:18:BD:A4:D6:14:1D
ValidityTue, 23 Apr 2024 00:00:00 GMT - Mon, 22 Jul 2024 23:59:59 GMT

File type
ASCII text, with CRLF line terminators
Size
2.8 kB (2779 bytes)
Hash
4c60709e338aa2f8973473b73a078357
bfcc109968d27f090d84cda013415a0c249a2a8a
c1790c1ed935fc6c4cc75eb3786c35683cdfdb968b041e0e3a657f9e3bd840ec

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /style.css HTTP/1.1
Host: surgimedhealth.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://surgimedhealth.com/main_login.php
Cookie: PHPSESSID=i6tbs4ll1iegqn5gb71rp1e5f4
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sat, 11 May 2024 08:46:40 GMT
content-type: text/css
last-modified: Wed, 14 May 2014 12:15:12 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 2779
date: Sat, 04 May 2024 08:46:40 GMT
server: LiteSpeed
X-Firefox-Spdy: h2

surgimedhealth.com/main_login.php

162.210.99.158

200 OK

5.3 kB

URL User Request GET HTTP/2
surgimedhealth.com/main_login.php
IP
162.210.99.158:443
ASN
#32748 STEADFAST

Certificate
IssuercPanel, Inc.
Subjectsurgimedhealth.com
Fingerprint50:6A:E9:9F:CF:E5:CA:44:3C:90:57:C5:E7:F6:18:BD:A4:D6:14:1D
ValidityTue, 23 Apr 2024 00:00:00 GMT - Mon, 22 Jul 2024 23:59:59 GMT

File type
HTML document, ASCII text, with CRLF line terminators
Size
5.3 kB (5333 bytes)
Hash
198c6597ca9fe1df121a0ffb7f6484a7
67c8a5f55c0606d63be03400431421781d298d86
7cf28171fc62752857a2e143ea83b5483d8dfeb5f7a4d6969611d59c3f35464c

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /main_login.php HTTP/1.1
Host: surgimedhealth.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
x-powered-by: PHP/5.6.40
set-cookie: PHPSESSID=i6tbs4ll1iegqn5gb71rp1e5f4; path=/; secure
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
pragma: no-cache
content-type: text/html; charset=UTF-8
content-encoding: br
vary: Accept-Encoding
date: Sat, 04 May 2024 08:46:40 GMT
server: LiteSpeed
alt-svc: h3=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
X-Firefox-Spdy: h2

surgimedhealth.com/images/kidneydish.jpg

162.210.99.158

200 OK

4.7 kB

URL GET HTTP/2
surgimedhealth.com/images/kidneydish.jpg
IP
162.210.99.158:443
ASN
#32748 STEADFAST

Requested by
https://surgimedhealth.com/main_login.php
Certificate
IssuercPanel, Inc.
Subjectsurgimedhealth.com
Fingerprint50:6A:E9:9F:CF:E5:CA:44:3C:90:57:C5:E7:F6:18:BD:A4:D6:14:1D
ValidityTue, 23 Apr 2024 00:00:00 GMT - Mon, 22 Jul 2024 23:59:59 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 259x194, components 3
Size
4.7 kB (4703 bytes)
Hash
de9d6b6813aec3d47dba0ccf04d672fa
6d05bd437fd955ef17ef362c902dc2c51445f8fc
87fad03509fbcbbc1d583345ad77b5fba06055c55de36c7f207ce86cfa4909ca

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /images/kidneydish.jpg HTTP/1.1
Host: surgimedhealth.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://surgimedhealth.com/main_login.php
Cookie: PHPSESSID=i6tbs4ll1iegqn5gb71rp1e5f4
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sat, 11 May 2024 08:46:40 GMT
content-type: image/jpeg
last-modified: Mon, 28 Oct 2013 10:16:00 GMT
accept-ranges: bytes
content-length: 4703
date: Sat, 04 May 2024 08:46:40 GMT
server: LiteSpeed
X-Firefox-Spdy: h2

surgimedhealth.com/images/header_divider.png

162.210.99.158

200 OK

220 B

URL GET HTTP/2
surgimedhealth.com/images/header_divider.png
IP
162.210.99.158:443
ASN
#32748 STEADFAST

Requested by
https://surgimedhealth.com/main_login.php
Certificate
IssuercPanel, Inc.
Subjectsurgimedhealth.com
Fingerprint50:6A:E9:9F:CF:E5:CA:44:3C:90:57:C5:E7:F6:18:BD:A4:D6:14:1D
ValidityTue, 23 Apr 2024 00:00:00 GMT - Mon, 22 Jul 2024 23:59:59 GMT

File type
PNG image data, 1 x 164, 8-bit/color RGBA, non-interlaced
Size
220 B (220 bytes)
Hash
765bf7dd2045a105f8a82e7ea521caeb
b662e205eec4fd7b68b241e7cad5641500ad278c
9a5f0b3bfc2587e5a6cca91b0f800e9537bdb3363ac956824c620c7d218f0b7a

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /images/header_divider.png HTTP/1.1
Host: surgimedhealth.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://surgimedhealth.com/main_login.php
Cookie: PHPSESSID=i6tbs4ll1iegqn5gb71rp1e5f4
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sat, 11 May 2024 08:46:40 GMT
content-type: image/png
last-modified: Mon, 21 Feb 2011 03:47:44 GMT
accept-ranges: bytes
content-length: 220
date: Sat, 04 May 2024 08:46:40 GMT
server: LiteSpeed
X-Firefox-Spdy: h2

surgimedhealth.com/images/bann.jpg

162.210.99.158

404 Not Found

1.3 kB

URL GET HTTP/2
surgimedhealth.com/images/bann.jpg
IP
162.210.99.158:443
ASN
#32748 STEADFAST

Requested by
https://surgimedhealth.com/main_login.php
Certificate
IssuercPanel, Inc.
Subjectsurgimedhealth.com
Fingerprint50:6A:E9:9F:CF:E5:CA:44:3C:90:57:C5:E7:F6:18:BD:A4:D6:14:1D
ValidityTue, 23 Apr 2024 00:00:00 GMT - Mon, 22 Jul 2024 23:59:59 GMT

File type
HTML document, ASCII text, with CRLF, LF line terminators
Size
1.3 kB (1251 bytes)
Hash
8150f458ed6fb9b1db4e5cfa57a1a281
6e5726854d28687b560d7fdcb5c782c425c7dfb9
4c13d452dd5d49671bd93ca32f2b4f85c78e39b6ab0ad1f38d98ed267f8fd896

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /images/bann.jpg HTTP/1.1
Host: surgimedhealth.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://surgimedhealth.com/main_login.php
Cookie: PHPSESSID=i6tbs4ll1iegqn5gb71rp1e5f4
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 404 Not Found
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
pragma: no-cache
content-type: text/html
content-length: 1251
date: Sat, 04 May 2024 08:46:40 GMT
server: LiteSpeed
X-Firefox-Spdy: h2

surgimedhealth.com/images/Doctors%20caps.jpg

162.210.99.158

200 OK

4.9 kB

URL GET HTTP/2
surgimedhealth.com/images/Doctors%20caps.jpg
IP
162.210.99.158:443
ASN
#32748 STEADFAST

Requested by
https://surgimedhealth.com/main_login.php
Certificate
IssuercPanel, Inc.
Subjectsurgimedhealth.com
Fingerprint50:6A:E9:9F:CF:E5:CA:44:3C:90:57:C5:E7:F6:18:BD:A4:D6:14:1D
ValidityTue, 23 Apr 2024 00:00:00 GMT - Mon, 22 Jul 2024 23:59:59 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 225x225, components 3
Size
4.9 kB (4895 bytes)
Hash
36e0c2c6d00568652edac2af437952bb
cc3a7e7184c02884ff5925cee106ac316d0786cd
98402114acceed68f0fa309ceaaf07a3bbdc1085dd4bbb26ed7ce075d8c58078

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /images/Doctors%20caps.jpg HTTP/1.1
Host: surgimedhealth.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://surgimedhealth.com/main_login.php
Cookie: PHPSESSID=i6tbs4ll1iegqn5gb71rp1e5f4
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sat, 11 May 2024 08:46:40 GMT
content-type: image/jpeg
last-modified: Mon, 28 Oct 2013 12:16:06 GMT
accept-ranges: bytes
content-length: 4895
date: Sat, 04 May 2024 08:46:40 GMT
server: LiteSpeed
X-Firefox-Spdy: h2

surgimedhealth.com/images/instrument.jpg

162.210.99.158

200 OK

6.9 kB

URL GET HTTP/2
surgimedhealth.com/images/instrument.jpg
IP
162.210.99.158:443
ASN
#32748 STEADFAST

Requested by
https://surgimedhealth.com/main_login.php
Certificate
IssuercPanel, Inc.
Subjectsurgimedhealth.com
Fingerprint50:6A:E9:9F:CF:E5:CA:44:3C:90:57:C5:E7:F6:18:BD:A4:D6:14:1D
ValidityTue, 23 Apr 2024 00:00:00 GMT - Mon, 22 Jul 2024 23:59:59 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 259x194, components 3
Size
6.9 kB (6882 bytes)
Hash
f775894b2fe8ff6002d4e9b1a470c86a
9a76929843716b4de30e6d75dd8fd3156264d26a
18a19d2090b154b14c6b4ba16db9388497c24e1b561b37e140e3f722f72ea6ad

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /images/instrument.jpg HTTP/1.1
Host: surgimedhealth.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://surgimedhealth.com/main_login.php
Cookie: PHPSESSID=i6tbs4ll1iegqn5gb71rp1e5f4
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sat, 11 May 2024 08:46:40 GMT
content-type: image/jpeg
last-modified: Mon, 28 Oct 2013 10:16:46 GMT
accept-ranges: bytes
content-length: 6882
date: Sat, 04 May 2024 08:46:40 GMT
server: LiteSpeed
X-Firefox-Spdy: h2

surgimedhealth.com/images/search.gif

162.210.99.158

200 OK

1.1 kB

URL GET HTTP/3
surgimedhealth.com/images/search.gif
IP
162.210.99.158:443
ASN
#32748 STEADFAST

Requested by
https://surgimedhealth.com/main_login.php
Certificate
IssuercPanel, Inc.
Subjectsurgimedhealth.com
Fingerprint50:6A:E9:9F:CF:E5:CA:44:3C:90:57:C5:E7:F6:18:BD:A4:D6:14:1D
ValidityTue, 23 Apr 2024 00:00:00 GMT - Mon, 22 Jul 2024 23:59:59 GMT

File type
GIF image data, version 89a, 29 x 26
Size
1.1 kB (1140 bytes)
Hash
5d01cb2bad9a2ca035be236b704b999c
afe7655ec5dabcdf7fb6a0e2f162adb814374820
ec566c80e2aa41599c1c2d8720d2e001f537070b41bf8deb85f228991bc49fde

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /images/search.gif HTTP/1.1
Host: surgimedhealth.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://surgimedhealth.com/main_login.php
Cookie: PHPSESSID=i6tbs4ll1iegqn5gb71rp1e5f4
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
cache-control: public, max-age=604800
expires: Sat, 11 May 2024 08:46:41 GMT
content-type: image/gif
last-modified: Mon, 21 Feb 2011 03:47:44 GMT
accept-ranges: bytes
content-length: 1140
date: Sat, 04 May 2024 08:46:41 GMT
server: LiteSpeed

surgimedhealth.com/images/top_search_bg.gif

162.210.99.158

200 OK

1.3 kB

URL GET HTTP/3
surgimedhealth.com/images/top_search_bg.gif
IP
162.210.99.158:443
ASN
#32748 STEADFAST

Requested by
https://surgimedhealth.com/main_login.php
Certificate
IssuercPanel, Inc.
Subjectsurgimedhealth.com
Fingerprint50:6A:E9:9F:CF:E5:CA:44:3C:90:57:C5:E7:F6:18:BD:A4:D6:14:1D
ValidityTue, 23 Apr 2024 00:00:00 GMT - Mon, 22 Jul 2024 23:59:59 GMT

File type
GIF image data, version 89a, 369 x 32
Size
1.3 kB (1252 bytes)
Hash
6abffafafb57274c2ef21714fd445e2c
a8ccb5021489f47fe103fd37c6c2ce06a507254b
8c6423d8912c1df3ae7d94b43706c7f01fcc41e08482d9116e5f4e10b652b34c

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /images/top_search_bg.gif HTTP/1.1
Host: surgimedhealth.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://surgimedhealth.com/style.css
Cookie: PHPSESSID=i6tbs4ll1iegqn5gb71rp1e5f4
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
cache-control: public, max-age=604800
expires: Sat, 11 May 2024 08:46:41 GMT
content-type: image/gif
last-modified: Mon, 21 Feb 2011 03:47:46 GMT
accept-ranges: bytes
content-length: 1252
date: Sat, 04 May 2024 08:46:41 GMT
server: LiteSpeed

surgimedhealth.com/images/stethoscope.jpg

162.210.99.158

200 OK

59 kB

URL GET HTTP/2
surgimedhealth.com/images/stethoscope.jpg
IP
162.210.99.158:443
ASN
#32748 STEADFAST

Requested by
https://surgimedhealth.com/main_login.php
Certificate
IssuercPanel, Inc.
Subjectsurgimedhealth.com
Fingerprint50:6A:E9:9F:CF:E5:CA:44:3C:90:57:C5:E7:F6:18:BD:A4:D6:14:1D
ValidityTue, 23 Apr 2024 00:00:00 GMT - Mon, 22 Jul 2024 23:59:59 GMT

File type
PNG image data, 603 x 316, 8-bit/color RGBA, non-interlaced
Size
59 kB (59230 bytes)
Hash
0a48ab874c4251ddd77d48c65bb6d9f3
c1a83b3288132c2dcc1e174eee218c17b2c021dc
d5adc97a80fdc8701d43e8dca5d85a7b02e3d8a31d421d292a164e2891508bd6

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /images/stethoscope.jpg HTTP/1.1
Host: surgimedhealth.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://surgimedhealth.com/main_login.php
Cookie: PHPSESSID=i6tbs4ll1iegqn5gb71rp1e5f4
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sat, 11 May 2024 08:46:40 GMT
content-type: image/jpeg
last-modified: Tue, 29 Apr 2014 22:07:48 GMT
accept-ranges: bytes
content-length: 59230
date: Sat, 04 May 2024 08:46:40 GMT
server: LiteSpeed
X-Firefox-Spdy: h2

surgimedhealth.com/images/bg.jpg

162.210.99.158

200 OK

47 kB

URL GET HTTP/3
surgimedhealth.com/images/bg.jpg
IP
162.210.99.158:443
ASN
#32748 STEADFAST

Requested by
https://surgimedhealth.com/main_login.php
Certificate
IssuercPanel, Inc.
Subjectsurgimedhealth.com
Fingerprint50:6A:E9:9F:CF:E5:CA:44:3C:90:57:C5:E7:F6:18:BD:A4:D6:14:1D
ValidityTue, 23 Apr 2024 00:00:00 GMT - Mon, 22 Jul 2024 23:59:59 GMT

File type
JPEG image data, JFIF standard 1.02, aspect ratio, density 100x100, segment length 16, baseline, precision 8, 1600x300, components 3
Size
47 kB (47233 bytes)
Hash
6b7ff413ed023e58f6e81452c640d9b9
ffe1e26dc63ec67ffc658c93874ca6031e7e5722
43d4857ad7285c47afc4026e6c522f0d4f12de0407c88477fc8411b84121b2e0

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /images/bg.jpg HTTP/1.1
Host: surgimedhealth.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://surgimedhealth.com/style.css
Cookie: PHPSESSID=i6tbs4ll1iegqn5gb71rp1e5f4
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
cache-control: public, max-age=604800
expires: Sat, 11 May 2024 08:46:41 GMT
content-type: image/jpeg
last-modified: Mon, 21 Feb 2011 03:47:44 GMT
accept-ranges: bytes
content-length: 47233
date: Sat, 04 May 2024 08:46:41 GMT
server: LiteSpeed
alt-svc: h3=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"

surgimedhealth.com/images/contact-new.png

162.210.99.158

200 OK

628 B

URL GET HTTP/3
surgimedhealth.com/images/contact-new.png
IP
162.210.99.158:443
ASN
#32748 STEADFAST

Requested by
https://surgimedhealth.com/main_login.php
Certificate
IssuercPanel, Inc.
Subjectsurgimedhealth.com
Fingerprint50:6A:E9:9F:CF:E5:CA:44:3C:90:57:C5:E7:F6:18:BD:A4:D6:14:1D
ValidityTue, 23 Apr 2024 00:00:00 GMT - Mon, 22 Jul 2024 23:59:59 GMT

File type
PNG image data, 16 x 16, 8-bit/color RGBA, non-interlaced
Size
628 B (628 bytes)
Hash
f0c05c438d03ae6c552645ed7beb4e38
1ea9c5f8e749f88c41d72a1aa93d4b4ff6d700ee
c38d752e73c80a8a4c844ad546311f3723a76061dc473c12d164063f9555417f

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /images/contact-new.png HTTP/1.1
Host: surgimedhealth.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://surgimedhealth.com/style.css
Cookie: PHPSESSID=i6tbs4ll1iegqn5gb71rp1e5f4
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
cache-control: public, max-age=604800
expires: Sat, 11 May 2024 08:46:41 GMT
content-type: image/png
last-modified: Mon, 21 Feb 2011 03:47:44 GMT
accept-ranges: bytes
content-length: 628
date: Sat, 04 May 2024 08:46:41 GMT
server: LiteSpeed

surgimedhealth.com/images/user_add.png

162.210.99.158

200 OK

746 B

URL GET HTTP/3
surgimedhealth.com/images/user_add.png
IP
162.210.99.158:443
ASN
#32748 STEADFAST

Requested by
https://surgimedhealth.com/main_login.php
Certificate
IssuercPanel, Inc.
Subjectsurgimedhealth.com
Fingerprint50:6A:E9:9F:CF:E5:CA:44:3C:90:57:C5:E7:F6:18:BD:A4:D6:14:1D
ValidityTue, 23 Apr 2024 00:00:00 GMT - Mon, 22 Jul 2024 23:59:59 GMT

File type
PNG image data, 16 x 16, 8-bit/color RGBA, non-interlaced
Size
746 B (746 bytes)
Hash
8ec0763bc1d06ea61e7ec1f904060cdc
56a6f12c36ef9e5220b070830a3d36b23450ff22
7c5f28cfc605c1aba58fd8987edec1ced2c199341180102054245ec44a51c36f

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /images/user_add.png HTTP/1.1
Host: surgimedhealth.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://surgimedhealth.com/style.css
Cookie: PHPSESSID=i6tbs4ll1iegqn5gb71rp1e5f4
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
cache-control: public, max-age=604800
expires: Sat, 11 May 2024 08:46:41 GMT
content-type: image/png
last-modified: Mon, 21 Feb 2011 03:47:46 GMT
accept-ranges: bytes
content-length: 746
date: Sat, 04 May 2024 08:46:41 GMT
server: LiteSpeed

surgimedhealth.com/images/navbullet.png

162.210.99.158

200 OK

150 B

URL GET HTTP/3
surgimedhealth.com/images/navbullet.png
IP
162.210.99.158:443
ASN
#32748 STEADFAST

Requested by
https://surgimedhealth.com/main_login.php
Certificate
IssuercPanel, Inc.
Subjectsurgimedhealth.com
Fingerprint50:6A:E9:9F:CF:E5:CA:44:3C:90:57:C5:E7:F6:18:BD:A4:D6:14:1D
ValidityTue, 23 Apr 2024 00:00:00 GMT - Mon, 22 Jul 2024 23:59:59 GMT

File type
PNG image data, 12 x 12, 4-bit colormap, non-interlaced
Size
150 B (150 bytes)
Hash
d56d1afef8d2ab18c15a0f872c08f999
e480a38789f4e7a9f4eea642983ef49c58d5dfd5
7ca52ed12ef931ff007f8bd75288733e43dd552294629b47cc6b4796d3489f9a

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /images/navbullet.png HTTP/1.1
Host: surgimedhealth.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://surgimedhealth.com/style.css
Cookie: PHPSESSID=i6tbs4ll1iegqn5gb71rp1e5f4
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
cache-control: public, max-age=604800
expires: Sat, 11 May 2024 08:46:41 GMT
content-type: image/png
last-modified: Mon, 21 Feb 2011 03:47:44 GMT
accept-ranges: bytes
content-length: 150
date: Sat, 04 May 2024 08:46:41 GMT
server: LiteSpeed

surgimedhealth.com/images/menu_right.gif

162.210.99.158

200 OK

441 B

URL GET HTTP/3
surgimedhealth.com/images/menu_right.gif
IP
162.210.99.158:443
ASN
#32748 STEADFAST

Requested by
https://surgimedhealth.com/main_login.php
Certificate
IssuercPanel, Inc.
Subjectsurgimedhealth.com
Fingerprint50:6A:E9:9F:CF:E5:CA:44:3C:90:57:C5:E7:F6:18:BD:A4:D6:14:1D
ValidityTue, 23 Apr 2024 00:00:00 GMT - Mon, 22 Jul 2024 23:59:59 GMT

File type
GIF image data, version 89a, 9 x 50
Size
441 B (441 bytes)
Hash
2f3d2f949717c8282348d3ddc2461dfd
b7292ce84acd7faba4abc8e6afe0e547398d68c5
b4b083a73cd527a7e83547819f0997060bf3d9bef4e286efa39735b2a4721475

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /images/menu_right.gif HTTP/1.1
Host: surgimedhealth.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://surgimedhealth.com/style.css
Cookie: PHPSESSID=i6tbs4ll1iegqn5gb71rp1e5f4
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
cache-control: public, max-age=604800
expires: Sat, 11 May 2024 08:46:41 GMT
content-type: image/gif
last-modified: Mon, 21 Feb 2011 03:47:44 GMT
accept-ranges: bytes
content-length: 441
date: Sat, 04 May 2024 08:46:41 GMT
server: LiteSpeed

surgimedhealth.com/images/menu_title_bg.gif

162.210.99.158

200 OK

946 B

URL GET HTTP/3
surgimedhealth.com/images/menu_title_bg.gif
IP
162.210.99.158:443
ASN
#32748 STEADFAST

Requested by
https://surgimedhealth.com/main_login.php
Certificate
IssuercPanel, Inc.
Subjectsurgimedhealth.com
Fingerprint50:6A:E9:9F:CF:E5:CA:44:3C:90:57:C5:E7:F6:18:BD:A4:D6:14:1D
ValidityTue, 23 Apr 2024 00:00:00 GMT - Mon, 22 Jul 2024 23:59:59 GMT

File type
GIF image data, version 89a, 196 x 30
Size
946 B (946 bytes)
Hash
19c48b5e93f418f081a831ea108207a5
25f2523acc491fe5c4ecaddd14bc7c3328ce9f9d
ef0f1740922dee989498209987c37b1632309b1a7029e125ad378444b77a52fc

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /images/menu_title_bg.gif HTTP/1.1
Host: surgimedhealth.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://surgimedhealth.com/style.css
Cookie: PHPSESSID=i6tbs4ll1iegqn5gb71rp1e5f4
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
cache-control: public, max-age=604800
expires: Sat, 11 May 2024 08:46:41 GMT
content-type: image/gif
last-modified: Mon, 21 Feb 2011 03:47:44 GMT
accept-ranges: bytes
content-length: 946
date: Sat, 04 May 2024 08:46:41 GMT
server: LiteSpeed

surgimedhealth.com/images/checked.png

162.210.99.158

200 OK

399 B

URL GET HTTP/3
surgimedhealth.com/images/checked.png
IP
162.210.99.158:443
ASN
#32748 STEADFAST

Requested by
https://surgimedhealth.com/main_login.php
Certificate
IssuercPanel, Inc.
Subjectsurgimedhealth.com
Fingerprint50:6A:E9:9F:CF:E5:CA:44:3C:90:57:C5:E7:F6:18:BD:A4:D6:14:1D
ValidityTue, 23 Apr 2024 00:00:00 GMT - Mon, 22 Jul 2024 23:59:59 GMT

File type
PNG image data, 16 x 16, 8-bit/color RGBA, non-interlaced
Size
399 B (399 bytes)
Hash
d0fcb1c31b1c6d8c4fe3da5fc364dba7
b1cf3f01631f330f1911f534dfd5fda77e8fa004
18734c53979445c95baad899b27c5c3e9e1757c5e3bf6ec098764106f7d927dd

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /images/checked.png HTTP/1.1
Host: surgimedhealth.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://surgimedhealth.com/style.css
Cookie: PHPSESSID=i6tbs4ll1iegqn5gb71rp1e5f4
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
cache-control: public, max-age=604800
expires: Sat, 11 May 2024 08:46:41 GMT
content-type: image/png
last-modified: Mon, 21 Feb 2011 03:47:44 GMT
accept-ranges: bytes
content-length: 399
date: Sat, 04 May 2024 08:46:41 GMT
server: LiteSpeed

surgimedhealth.com/images/blue-add.png

162.210.99.158

200 OK

355 B

URL GET HTTP/3
surgimedhealth.com/images/blue-add.png
IP
162.210.99.158:443
ASN
#32748 STEADFAST

Requested by
https://surgimedhealth.com/main_login.php
Certificate
IssuercPanel, Inc.
Subjectsurgimedhealth.com
Fingerprint50:6A:E9:9F:CF:E5:CA:44:3C:90:57:C5:E7:F6:18:BD:A4:D6:14:1D
ValidityTue, 23 Apr 2024 00:00:00 GMT - Mon, 22 Jul 2024 23:59:59 GMT

File type
PNG image data, 16 x 16, 8-bit colormap, non-interlaced
Size
355 B (355 bytes)
Hash
3fbe8f6ea3c8155c1515175e163b795b
a9dbef2ff54c76a27a85f63d9f7dc4f62dce8fb6
085372ff0431dde6dee50dc3f7d018549938b45abf8a68db6e43644f81174810

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /images/blue-add.png HTTP/1.1
Host: surgimedhealth.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://surgimedhealth.com/style.css
Cookie: PHPSESSID=i6tbs4ll1iegqn5gb71rp1e5f4
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
cache-control: public, max-age=604800
expires: Sat, 11 May 2024 08:46:41 GMT
content-type: image/png
last-modified: Mon, 21 Feb 2011 03:47:44 GMT
accept-ranges: bytes
content-length: 355
date: Sat, 04 May 2024 08:46:41 GMT
server: LiteSpeed

surgimedhealth.com/images/bar_bg.gif

162.210.99.158

200 OK

974 B

URL GET HTTP/3
surgimedhealth.com/images/bar_bg.gif
IP
162.210.99.158:443
ASN
#32748 STEADFAST

Requested by
https://surgimedhealth.com/main_login.php
Certificate
IssuercPanel, Inc.
Subjectsurgimedhealth.com
Fingerprint50:6A:E9:9F:CF:E5:CA:44:3C:90:57:C5:E7:F6:18:BD:A4:D6:14:1D
ValidityTue, 23 Apr 2024 00:00:00 GMT - Mon, 22 Jul 2024 23:59:59 GMT

File type
GIF image data, version 89a, 560 x 33
Size
974 B (974 bytes)
Hash
7f033021648185f659914905f807ab01
dd289d9159c3575b87a458255f199491b8c47a01
702cbc4e30a7ae629f2b4ac1c61faa29fd80cfdc63e8ebf8ac2f8bfaea1af900

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /images/bar_bg.gif HTTP/1.1
Host: surgimedhealth.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://surgimedhealth.com/style.css
Cookie: PHPSESSID=i6tbs4ll1iegqn5gb71rp1e5f4
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
cache-control: public, max-age=604800
expires: Sat, 11 May 2024 08:46:41 GMT
content-type: image/gif
last-modified: Mon, 21 Feb 2011 03:47:44 GMT
accept-ranges: bytes
content-length: 974
date: Sat, 04 May 2024 08:46:41 GMT
server: LiteSpeed

surgimedhealth.com/images/details_box_top.gif

162.210.99.158

200 OK

293 B

URL GET HTTP/3
surgimedhealth.com/images/details_box_top.gif
IP
162.210.99.158:443
ASN
#32748 STEADFAST

Requested by
https://surgimedhealth.com/main_login.php
Certificate
IssuercPanel, Inc.
Subjectsurgimedhealth.com
Fingerprint50:6A:E9:9F:CF:E5:CA:44:3C:90:57:C5:E7:F6:18:BD:A4:D6:14:1D
ValidityTue, 23 Apr 2024 00:00:00 GMT - Mon, 22 Jul 2024 23:59:59 GMT

File type
GIF image data, version 89a, 554 x 12
Size
293 B (293 bytes)
Hash
b689e8a79bf898979576376ba901bfe4
e5fdb21cbb5b3900cead70f3a709133689d0f1d1
12cefc561915b677472c4a087eaae52061431f43474edb6bc1c64fb4c6eeadd2

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /images/details_box_top.gif HTTP/1.1
Host: surgimedhealth.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://surgimedhealth.com/style.css
Cookie: PHPSESSID=i6tbs4ll1iegqn5gb71rp1e5f4
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
cache-control: public, max-age=604800
expires: Sat, 11 May 2024 08:46:41 GMT
content-type: image/gif
last-modified: Mon, 21 Feb 2011 03:47:44 GMT
accept-ranges: bytes
content-length: 293
date: Sat, 04 May 2024 08:46:41 GMT
server: LiteSpeed

surgimedhealth.com/images/details_box_center.gif

162.210.99.158

200 OK

81 B

URL GET HTTP/3
surgimedhealth.com/images/details_box_center.gif
IP
162.210.99.158:443
ASN
#32748 STEADFAST

Requested by
https://surgimedhealth.com/main_login.php
Certificate
IssuercPanel, Inc.
Subjectsurgimedhealth.com
Fingerprint50:6A:E9:9F:CF:E5:CA:44:3C:90:57:C5:E7:F6:18:BD:A4:D6:14:1D
ValidityTue, 23 Apr 2024 00:00:00 GMT - Mon, 22 Jul 2024 23:59:59 GMT

File type
GIF image data, version 89a, 554 x 2
Size
81 B (81 bytes)
Hash
8e9602b6e46482fc5d48831d8823f1e7
8799989f6bdec9362caef7f163029d54a9cc44a5
3fe16c39691bacd5a471759dc6c305377dc545145aaa518a4ef9f1138386a917

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /images/details_box_center.gif HTTP/1.1
Host: surgimedhealth.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://surgimedhealth.com/style.css
Cookie: PHPSESSID=i6tbs4ll1iegqn5gb71rp1e5f4
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
cache-control: public, max-age=604800
expires: Sat, 11 May 2024 08:46:41 GMT
content-type: image/gif
last-modified: Mon, 21 Feb 2011 03:47:44 GMT
accept-ranges: bytes
content-length: 81
date: Sat, 04 May 2024 08:46:41 GMT
server: LiteSpeed

surgimedhealth.com/images/details_box_bottom.gif

162.210.99.158

200 OK

467 B

URL GET HTTP/3
surgimedhealth.com/images/details_box_bottom.gif
IP
162.210.99.158:443
ASN
#32748 STEADFAST

Requested by
https://surgimedhealth.com/main_login.php
Certificate
IssuercPanel, Inc.
Subjectsurgimedhealth.com
Fingerprint50:6A:E9:9F:CF:E5:CA:44:3C:90:57:C5:E7:F6:18:BD:A4:D6:14:1D
ValidityTue, 23 Apr 2024 00:00:00 GMT - Mon, 22 Jul 2024 23:59:59 GMT

File type
GIF image data, version 89a, 554 x 12
Size
467 B (467 bytes)
Hash
a1796f99d0ac655ad658805d18b0d20a
1332cd5663c6aa47860f4a4dadac90093ac86bce
51c8bc88283910fb87c8c3167f00c4bfb94b3e7804eacea064b4e4b3d7044178

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /images/details_box_bottom.gif HTTP/1.1
Host: surgimedhealth.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://surgimedhealth.com/style.css
Cookie: PHPSESSID=i6tbs4ll1iegqn5gb71rp1e5f4
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
cache-control: public, max-age=604800
expires: Sat, 11 May 2024 08:46:41 GMT
content-type: image/gif
last-modified: Mon, 21 Feb 2011 03:47:44 GMT
accept-ranges: bytes
content-length: 467
date: Sat, 04 May 2024 08:46:41 GMT
server: LiteSpeed

surgimedhealth.com/images/footer_bg.gif

162.210.99.158

200 OK

171 B

URL GET HTTP/3
surgimedhealth.com/images/footer_bg.gif
IP
162.210.99.158:443
ASN
#32748 STEADFAST

Requested by
https://surgimedhealth.com/main_login.php
Certificate
IssuercPanel, Inc.
Subjectsurgimedhealth.com
Fingerprint50:6A:E9:9F:CF:E5:CA:44:3C:90:57:C5:E7:F6:18:BD:A4:D6:14:1D
ValidityTue, 23 Apr 2024 00:00:00 GMT - Mon, 22 Jul 2024 23:59:59 GMT

File type
GIF image data, version 89a, 1 x 61
Size
171 B (171 bytes)
Hash
b5346420803fc598cb6f88e0c97b847b
6f8435be6769982dfddc7c991d9c249ce13ad81f
a4f2881ef33414e4f2e9545d66b0a73c859914c70d4c73cb9f7e257d5cb99c27

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /images/footer_bg.gif HTTP/1.1
Host: surgimedhealth.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://surgimedhealth.com/style.css
Cookie: PHPSESSID=i6tbs4ll1iegqn5gb71rp1e5f4
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
cache-control: public, max-age=604800
expires: Sat, 11 May 2024 08:46:41 GMT
content-type: image/gif
last-modified: Mon, 21 Feb 2011 03:47:44 GMT
accept-ranges: bytes
content-length: 171
date: Sat, 04 May 2024 08:46:41 GMT
server: LiteSpeed

surgimedhealth.com/images/header_bg.jpg

162.210.99.158

200 OK

17 kB

URL GET HTTP/3
surgimedhealth.com/images/header_bg.jpg
IP
162.210.99.158:443
ASN
#32748 STEADFAST

Requested by
https://surgimedhealth.com/main_login.php
Certificate
IssuercPanel, Inc.
Subjectsurgimedhealth.com
Fingerprint50:6A:E9:9F:CF:E5:CA:44:3C:90:57:C5:E7:F6:18:BD:A4:D6:14:1D
ValidityTue, 23 Apr 2024 00:00:00 GMT - Mon, 22 Jul 2024 23:59:59 GMT

File type
JPEG image data, JFIF standard 1.02, aspect ratio, density 100x100, segment length 16, baseline, precision 8, 1000x173, components 3
Size
17 kB (16579 bytes)
Hash
828e62148e26a3046c358434c23900e4
ea3ae38d4fb438adfdbd352992253a01054f9213
cb2c1273eae12aed9e003a84185f509fd0ee77a73774ca2f34c165a807257355

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /images/header_bg.jpg HTTP/1.1
Host: surgimedhealth.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://surgimedhealth.com/style.css
Cookie: PHPSESSID=i6tbs4ll1iegqn5gb71rp1e5f4
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
cache-control: public, max-age=604800
expires: Sat, 11 May 2024 08:46:41 GMT
content-type: image/jpeg
last-modified: Mon, 21 Feb 2011 03:47:44 GMT
accept-ranges: bytes
content-length: 16579
date: Sat, 04 May 2024 08:46:41 GMT
server: LiteSpeed

surgimedhealth.com/images/details_bt_bg.gif

162.210.99.158

200 OK

1.5 kB

URL GET HTTP/3
surgimedhealth.com/images/details_bt_bg.gif
IP
162.210.99.158:443
ASN
#32748 STEADFAST

Requested by
https://surgimedhealth.com/main_login.php
Certificate
IssuercPanel, Inc.
Subjectsurgimedhealth.com
Fingerprint50:6A:E9:9F:CF:E5:CA:44:3C:90:57:C5:E7:F6:18:BD:A4:D6:14:1D
ValidityTue, 23 Apr 2024 00:00:00 GMT - Mon, 22 Jul 2024 23:59:59 GMT

File type
GIF image data, version 89a, 83 x 21
Size
1.5 kB (1528 bytes)
Hash
4c683c8dad2bea48a0e17bbf38720632
e94fa6a60f2098c558bd9edf096ba2e3748c86b4
c1f31137309b20180af2f7da81c2893427715e5fd57b2508a9f42e942d0fe8ef

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /images/details_bt_bg.gif HTTP/1.1
Host: surgimedhealth.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://surgimedhealth.com/style.css
Cookie: PHPSESSID=i6tbs4ll1iegqn5gb71rp1e5f4
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
cache-control: public, max-age=604800
expires: Sat, 11 May 2024 08:46:41 GMT
content-type: image/gif
last-modified: Mon, 28 Apr 2014 22:56:58 GMT
accept-ranges: bytes
content-length: 1528
date: Sat, 04 May 2024 08:46:41 GMT
server: LiteSpeed

surgimedhealth.com/images/menu_left.gif

162.210.99.158

200 OK

440 B

URL GET HTTP/3
surgimedhealth.com/images/menu_left.gif
IP
162.210.99.158:443
ASN
#32748 STEADFAST

Requested by
https://surgimedhealth.com/main_login.php
Certificate
IssuercPanel, Inc.
Subjectsurgimedhealth.com
Fingerprint50:6A:E9:9F:CF:E5:CA:44:3C:90:57:C5:E7:F6:18:BD:A4:D6:14:1D
ValidityTue, 23 Apr 2024 00:00:00 GMT - Mon, 22 Jul 2024 23:59:59 GMT

File type
GIF image data, version 89a, 9 x 50
Size
440 B (440 bytes)
Hash
dd15d93c770f03c230d31e3202dce1ef
a2cc9caa990c40d1113ec3c49e3d02e69556b69b
40c13e13d4f39c71ced348218aff24341e9d836737f6624e0ee0239083a5b2a3

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /images/menu_left.gif HTTP/1.1
Host: surgimedhealth.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://surgimedhealth.com/style.css
Cookie: PHPSESSID=i6tbs4ll1iegqn5gb71rp1e5f4
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
cache-control: public, max-age=604800
expires: Sat, 11 May 2024 08:46:41 GMT
content-type: image/gif
last-modified: Mon, 21 Feb 2011 03:47:44 GMT
accept-ranges: bytes
content-length: 440
date: Sat, 04 May 2024 08:46:41 GMT
server: LiteSpeed

surgimedhealth.com/images/menu_bg.gif

162.210.99.158

200 OK

365 B

URL GET HTTP/3
surgimedhealth.com/images/menu_bg.gif
IP
162.210.99.158:443
ASN
#32748 STEADFAST

Requested by
https://surgimedhealth.com/main_login.php
Certificate
IssuercPanel, Inc.
Subjectsurgimedhealth.com
Fingerprint50:6A:E9:9F:CF:E5:CA:44:3C:90:57:C5:E7:F6:18:BD:A4:D6:14:1D
ValidityTue, 23 Apr 2024 00:00:00 GMT - Mon, 22 Jul 2024 23:59:59 GMT

File type
GIF image data, version 89a, 4 x 50
Size
365 B (365 bytes)
Hash
502231412b59d1c2db2e9746e8dcfbcb
a0be2fe2adc5066a61af1475266f4e54326c4512
dc6b364b77a9d02ceef8e45c3d5eaadd3e5687e67d845a3f6407087ee7795c27

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /images/menu_bg.gif HTTP/1.1
Host: surgimedhealth.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://surgimedhealth.com/style.css
Cookie: PHPSESSID=i6tbs4ll1iegqn5gb71rp1e5f4
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
cache-control: public, max-age=604800
expires: Sat, 11 May 2024 08:46:41 GMT
content-type: image/gif
last-modified: Mon, 21 Feb 2011 03:47:44 GMT
accept-ranges: bytes
content-length: 365
date: Sat, 04 May 2024 08:46:41 GMT
server: LiteSpeed

surgimedhealth.com/images/home.png

162.210.99.158

200 OK

618 B

URL GET HTTP/3
surgimedhealth.com/images/home.png
IP
162.210.99.158:443
ASN
#32748 STEADFAST

Requested by
https://surgimedhealth.com/main_login.php
Certificate
IssuercPanel, Inc.
Subjectsurgimedhealth.com
Fingerprint50:6A:E9:9F:CF:E5:CA:44:3C:90:57:C5:E7:F6:18:BD:A4:D6:14:1D
ValidityTue, 23 Apr 2024 00:00:00 GMT - Mon, 22 Jul 2024 23:59:59 GMT

File type
PNG image data, 16 x 16, 8-bit/color RGBA, non-interlaced
Size
618 B (618 bytes)
Hash
fb3263a8f20addb0abaee04f9e6a2fb3
92e31c700291280e4769923b3977b1154f5ab8e1
908c4320457225f00c1bbd61a673997bdd4b115c54b09b9f36b0867d44342b19

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /images/home.png HTTP/1.1
Host: surgimedhealth.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://surgimedhealth.com/style.css
Cookie: PHPSESSID=i6tbs4ll1iegqn5gb71rp1e5f4
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
cache-control: public, max-age=604800
expires: Sat, 11 May 2024 08:46:41 GMT
content-type: image/png
last-modified: Mon, 21 Feb 2011 03:47:44 GMT
accept-ranges: bytes
content-length: 618
date: Sat, 04 May 2024 08:46:41 GMT
server: LiteSpeed

surgimedhealth.com/images/menu_divider.gif

162.210.99.158

200 OK

308 B

URL GET HTTP/3
surgimedhealth.com/images/menu_divider.gif
IP
162.210.99.158:443
ASN
#32748 STEADFAST

Requested by
https://surgimedhealth.com/main_login.php
Certificate
IssuercPanel, Inc.
Subjectsurgimedhealth.com
Fingerprint50:6A:E9:9F:CF:E5:CA:44:3C:90:57:C5:E7:F6:18:BD:A4:D6:14:1D
ValidityTue, 23 Apr 2024 00:00:00 GMT - Mon, 22 Jul 2024 23:59:59 GMT

File type
GIF image data, version 89a, 2 x 50
Size
308 B (308 bytes)
Hash
0682fa89306d5ac9b7bbda0c4b1d2faf
629e893296507196c1d30c3fd1a93c10ce5ed222
00d2b8e7f126aa84646adc4446dc36e52d7c5324ba8cf7d04af3bd79793c1bd6

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /images/menu_divider.gif HTTP/1.1
Host: surgimedhealth.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://surgimedhealth.com/style.css
Cookie: PHPSESSID=i6tbs4ll1iegqn5gb71rp1e5f4
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
cache-control: public, max-age=604800
expires: Sat, 11 May 2024 08:46:41 GMT
content-type: image/gif
last-modified: Mon, 21 Feb 2011 03:47:44 GMT
accept-ranges: bytes
content-length: 308
date: Sat, 04 May 2024 08:46:41 GMT
server: LiteSpeed

surgimedhealth.com/images/services.png

162.210.99.158

200 OK

1.1 kB

URL GET HTTP/3
surgimedhealth.com/images/services.png
IP
162.210.99.158:443
ASN
#32748 STEADFAST

Requested by
https://surgimedhealth.com/main_login.php
Certificate
IssuercPanel, Inc.
Subjectsurgimedhealth.com
Fingerprint50:6A:E9:9F:CF:E5:CA:44:3C:90:57:C5:E7:F6:18:BD:A4:D6:14:1D
ValidityTue, 23 Apr 2024 00:00:00 GMT - Mon, 22 Jul 2024 23:59:59 GMT

File type
PNG image data, 16 x 16, 8-bit/color RGBA, non-interlaced
Size
1.1 kB (1059 bytes)
Hash
c4dde23eb905c3f6c18124625b5f5f96
d380b25fa1f004cf496bff77f9092960ac44d3e9
15147ff566be8f7e6d0f0c1843205fcfd29ab4fef13fc788c153e318b97e571d

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /images/services.png HTTP/1.1
Host: surgimedhealth.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://surgimedhealth.com/style.css
Cookie: PHPSESSID=i6tbs4ll1iegqn5gb71rp1e5f4
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
cache-control: public, max-age=604800
expires: Sat, 11 May 2024 08:46:41 GMT
content-type: image/png
last-modified: Mon, 21 Feb 2011 03:47:44 GMT
accept-ranges: bytes
content-length: 1059
date: Sat, 04 May 2024 08:46:41 GMT
server: LiteSpeed

surgimedhealth.com/favicon.ico

162.210.99.158

404 Not Found

1.3 kB

URL GET HTTP/3
surgimedhealth.com/favicon.ico
IP
162.210.99.158:443
ASN
#32748 STEADFAST

Requested by
https://surgimedhealth.com/main_login.php
Certificate
IssuercPanel, Inc.
Subjectsurgimedhealth.com
Fingerprint50:6A:E9:9F:CF:E5:CA:44:3C:90:57:C5:E7:F6:18:BD:A4:D6:14:1D
ValidityTue, 23 Apr 2024 00:00:00 GMT - Mon, 22 Jul 2024 23:59:59 GMT

File type
HTML document, ASCII text, with CRLF, LF line terminators
Size
1.3 kB (1251 bytes)
Hash
8150f458ed6fb9b1db4e5cfa57a1a281
6e5726854d28687b560d7fdcb5c782c425c7dfb9
4c13d452dd5d49671bd93ca32f2b4f85c78e39b6ab0ad1f38d98ed267f8fd896

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /favicon.ico HTTP/1.1
Host: surgimedhealth.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://surgimedhealth.com/main_login.php
Cookie: PHPSESSID=i6tbs4ll1iegqn5gb71rp1e5f4
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 404 Not Found
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
pragma: no-cache
content-type: text/html
content-length: 1251
date: Sat, 04 May 2024 08:46:41 GMT
server: LiteSpeed

surgimedhealth.com/js/boxOver.js

162.210.99.158

200 OK

11 kB

URL GET HTTP/2
surgimedhealth.com/js/boxOver.js
IP
162.210.99.158:443
ASN
#32748 STEADFAST

Requested by
https://surgimedhealth.com/main_login.php
Certificate
IssuercPanel, Inc.
Subjectsurgimedhealth.com
Fingerprint50:6A:E9:9F:CF:E5:CA:44:3C:90:57:C5:E7:F6:18:BD:A4:D6:14:1D
ValidityTue, 23 Apr 2024 00:00:00 GMT - Mon, 22 Jul 2024 23:59:59 GMT

File type
ASCII text, with CRLF line terminators
Size
11 kB (11231 bytes)
Hash
569b918e316fb4ef49d4e961f593af7c
dd0fa3e193a5981219ae4c900ae4e9489f8bcc9c
226c9d83631bdfa5a85e0d93dc88d93b63a17eb03ca3f3fd2ac9a4682ebc60df

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /js/boxOver.js HTTP/1.1
Host: surgimedhealth.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://surgimedhealth.com/main_login.php
Cookie: PHPSESSID=i6tbs4ll1iegqn5gb71rp1e5f4
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sat, 11 May 2024 08:46:40 GMT
content-type: application/javascript
last-modified: Tue, 28 Jan 2014 17:21:48 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 3255
date: Sat, 04 May 2024 08:46:40 GMT
server: LiteSpeed
X-Firefox-Spdy: h2

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

Public InfoSec YARA rules

OpenPhish

PhishTank

mnemonic secure dns

Quad9 DNS

ThreatFox

JavaScript (3)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

HTTP Transactions (32)

URL GET HTTP/2

IP

ASN

Requested by

Certificate

File type

Size

Hash

Detections

HTTP Headers

URL User Request GET HTTP/2

IP

ASN

Certificate

File type

Size

Hash

Detections

HTTP Headers

URL GET HTTP/2

IP

ASN

Requested by

Certificate

File type

Size

Hash

Detections

HTTP Headers

URL GET HTTP/2

IP

ASN