Report - castrolmintabolt.hu/images/upload/file/86962071840.pdf

Report Overview

Submitted URL
castrolmintabolt.hu/images/upload/file/86962071840.pdf
IP
79.172.206.97
ASN
#42964 SigmaNet Szolgaltato es Kereskedelm Ltd
Submitted
2022-10-20 23:54:22
Access
Website Title
Final URL
Tags
None
urlquery detections
No alerts detected

Detections

urlquery
0
Network Intrusion Detection
0
Threat Detection Systems
18

Domain Summary

Domain / FQDN	Rank	First Seen	Last Seen	Sent	Received	IP
img-getpocket.cdn.mozilla.net	1631	2018-06-22T01:36:00Z	2023-03-09T10:04:36Z	3.2 kB	57 kB	34.120.237.76
contile.services.mozilla.com	1114	2021-05-27T20:32:35Z	2023-03-09T05:09:48Z	321 B	229 B	34.117.237.239
ocsp.digicert.com	86	2012-05-21T09:02:23Z	2023-03-09T11:52:10Z	1.3 kB	3.0 kB	93.184.220.29
maps.gstatic.com	unknown	2016-01-11T17:55:17Z	2023-03-09T10:16:17Z	391 B	156 kB	142.250.74.163
fonts.googleapis.com	8877	2013-06-10T22:14:26Z	2023-03-09T12:17:45Z	809 B	3.4 kB	142.250.74.10
push.services.mozilla.com	2140	2014-10-24T10:27:06Z	2023-03-09T05:09:13Z	594 B	127 B	34.214.236.46
www.google.com	7	2015-05-10T13:11:19Z	2023-03-09T13:38:50Z	841 B	2.3 kB	142.250.74.164
r3.o.lencr.org	344	2020-12-02T09:52:13Z	2023-03-09T05:09:05Z	2.6 kB	8.8 kB	23.36.76.226
firefox.settings.services.mozilla.com	867	2020-06-04T22:08:41Z	2023-03-09T05:09:18Z	758 B	2.8 kB	143.204.55.115
ocsp.pki.goog	175	2018-07-01T08:43:07Z	2023-03-09T05:09:50Z	4.3 kB	9.1 kB	142.250.74.3
fonts.gstatic.com	unknown	2014-09-09T02:40:21Z	2023-03-09T10:01:47Z	2.4 kB	76 kB	216.58.207.195
connect.facebook.net	139	2012-05-22T04:51:28Z	2023-03-09T05:09:57Z	365 B	28 kB	31.13.72.12
www.google-analytics.com	40	2012-10-03T03:04:21Z	2023-03-09T13:53:17Z	364 B	21 kB	142.250.74.174
www.facebook.com	99	2012-05-21T02:23:41Z	2021-02-04T00:31:35Z	582 B	349 B	31.13.72.36
castrolmintabolt.hu	unknown			20 kB	2.8 MB	79.172.206.97
content-signature-2.cdn.mozilla.net	1152	2020-11-03T13:26:46Z	2023-03-09T05:09:49Z	401 B	5.9 kB	34.160.144.191
www.googletagmanager.com	75	2013-05-22T04:07:37Z	2023-03-09T13:40:16Z	377 B	44 kB	142.250.74.168
pixel.barion.com	270087	2019-06-18T22:15:35Z	2023-03-09T02:15:03Z	349 B	787 B	172.66.41.42

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

OpenPhish

No alerts detected

PhishTank

No alerts detected

Fortinet's Web Filter

Scan Date	Severity	Indicator	Alert
2022-10-20	medium	castrolmintabolt.hu/images/upload/file/86962071840.pdf	Phishing
2022-10-20	medium	castrolmintabolt.hu/images/upload/file/86962071840.pdf	Phishing
2022-10-20	medium	castrolmintabolt.hu/	Phishing
2022-10-20	medium	castrolmintabolt.hu/index/style.php	Phishing
2022-10-20	medium	castrolmintabolt.hu/js/jquery/slider-orbit/jquery.orbit.js	Phishing
2022-10-20	medium	castrolmintabolt.hu/js/jquery/datetimepicker/jquery-ui-timepicker-addon.js	Phishing
2022-10-20	medium	castrolmintabolt.hu/index/javascript.php	Phishing
2022-10-20	medium	castrolmintabolt.hu/fonts/font-awesome-5/webfonts/fa-solid-900.woff2	Phishing
2022-10-20	medium	castrolmintabolt.hu/upload/favicon/308.ico	Phishing

mnemonic secure dns

No alerts detected

Quad9 DNS

No alerts detected

JavaScript (31)

	URL	Size	First Seen	Last Seen
	maps.googleapis.com/maps/api/js/ViewportInfoService.GetViewportInfo?1m6&1m2&1d47.499939526663496&2d19.08325617064063&2m2&1d47.51409353521191&2d19.146264337727157&2u16&4shu&5e0&6sm%40623000000&7b0&8e0&11e289&12e1&13shttps%3A%2F%2Fwww.google.com%2Fmaps%2Fembed&14b1&callback=_xdc_._i39u9s&client=google-maps-embed&token=17933	30 kB	2023-03-10	2023-03-10
Pretty URL maps.googleapis.com/maps/api/js/ViewportInfoService.GetViewportInfo?1m6&1m2&1d47.499939526663496&2d19.08325617064063&2m2&1d47.51409353521191&2d19.146264337727157&2u16&4shu&5e0&6sm%40623000000&7b0&8e0&11e289&12e1&13shttps%3A%2F%2Fwww.google.com%2Fmaps%2Fembed&14b1&callback=_xdc_._i39u9s&client=google-maps-embed&token=17933 IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-10 12:12:34 Last Seen2023-03-10 12:12:34 Times Seen1 Hash a52be6f7bc6a3732416d10be8533dc69 f16341d723479ad3e2ba42c9e7863e1a492900ab a3e03ed935445674796fe7f218f668b30f011db04d8a112a09f7fd8fb2b83a99 Loading...

	pixel.barion.com/cdn-cgi/scripts/7d0fa10a/cloudflare-static/rocket-loader.min.js	12 kB	2023-03-07	2024-05-11
Pretty URL pixel.barion.com/cdn-cgi/scripts/7d0fa10a/cloudflare-static/rocket-loader.min.js IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:06 Last Seen2024-05-11 03:01:56 Times Seen43985 Hash 88a769d2fe35899fd45a332a0a032cc0 514c6c1d8475d17e412849a4c90159517d0fa10a ccf00d1923b0131a10e0c6d26f95e5dee6ebf8621a27e83c5a2f68a2e0093142 Loading...

	maps.googleapis.com/maps/api/js/QuotaService.RecordEvent?1shttps%3A%2F%2Fwww.google.com%2Fmaps%2Fembed&2sgoogle-maps-embed&7shpzmuj&10e1&11b0&callback=_xdc_._cxgn0q&client=google-maps-embed&token=82922	62 B	2023-03-10	2023-03-10
Pretty URL maps.googleapis.com/maps/api/js/QuotaService.RecordEvent?1shttps%3A%2F%2Fwww.google.com%2Fmaps%2Fembed&2sgoogle-maps-embed&7shpzmuj&10e1&11b0&callback=_xdc_._cxgn0q&client=google-maps-embed&token=82922 IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-10 12:12:34 Last Seen2023-03-10 12:12:34 Times Seen1 Hash 2db0916e7075221960198d80ec7ef8c1 5abdef2761f7c0f54bdb5f74bce3011aa670e485 6152e9a12536fb1dd071d9f1de6fcd50e6003be880406cff68738a035e3b761b Loading...

	www.googletagmanager.com/gtag/js?id=UA-42485366-72	111 kB	2023-03-10	2023-03-10
Pretty URL www.googletagmanager.com/gtag/js?id=UA-42485366-72 IP 142.250.74.168 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-10 12:12:34 Last Seen2023-03-10 12:12:34 Times Seen1 Hash 64fb8e58dd424d6cca4a3cfd8df7985b 5f019256d1a690dd328cfa433d408cbde378aa17 3822476f794add5c0e3fc59af560101a4a4c51c22dcffbe3a88bdfe9458a9aca Loading...

	maps.googleapis.com/maps-api-v3/api/js/50/10/intl/hu_ALL/controls.js	92 kB	2023-03-10	2023-03-10
Pretty URL maps.googleapis.com/maps-api-v3/api/js/50/10/intl/hu_ALL/controls.js IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-10 12:12:34 Last Seen2023-03-10 14:39:59 Times Seen1 Hash 8e854f0b64762a340efa2eb67d215c29 9dcac9ad1eacbeab31c526b1240a034ecfdb3479 3dbe95d5d8e4bb7e191c9f3b276c896f44144ee4ac92b8970adc4a21e9dbeb0d Loading...

	maps.googleapis.com/maps-api-v3/api/js/50/10/intl/hu_ALL/overlay.js	3.6 kB	2023-03-10	2023-03-10
Pretty URL maps.googleapis.com/maps-api-v3/api/js/50/10/intl/hu_ALL/overlay.js IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-10 12:04:32 Last Seen2023-03-10 16:02:14 Times Seen1 Hash fd48b7785c5579e23cc997abc206c1f9 0189c5e4938826afd75344df56555a49889e11fc 8bb7a4afa09765738d890d2cb0927473a3f4b901b6feefcfd7ee33ac85af5f42 Loading...

	castrolmintabolt.hu/js/jquery/slider-orbit/jquery.orbit.js	17 kB	2023-03-10	2024-04-08
Pretty URL castrolmintabolt.hu/js/jquery/slider-orbit/jquery.orbit.js IP 79.172.206.97 ASN #42964 SigmaNet Szolgaltato es Kereskedelm Ltd Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-10 12:12:34 Last Seen2024-04-08 20:23:37 Times Seen181 Hash 33cb283ebd985fdbd6917efed0ef04c4 1cbc0b9122b5db8770561b03c9cf8d01a26a513d 8ff46929f94626e03136f672674346be30db0e336da85253e6245136441c9158 Loading...

	connect.facebook.net/en_US/fbevents.js	104 kB	2023-03-08	2023-10-23
Pretty URL connect.facebook.net/en_US/fbevents.js IP 31.13.72.12 ASN #32934 FACEBOOK Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 22:00:40 Last Seen2023-10-23 15:37:18 Times Seen8 Hash ba4feb901b5e33b95808908a1fc07264 eb7193f6fa6df7849a40a0a6f1e3da9513bae84c f8486cf55c57486f26236be045e02ada380d1ee0378008375cf54295c23954c8 Loading...

	castrolmintabolt.hu/	155 B	2023-03-10	2023-11-20
Pretty URL castrolmintabolt.hu/ IP 79.172.206.97 ASN #42964 SigmaNet Szolgaltato es Kereskedelm Ltd Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-10 12:12:34 Last Seen2023-11-20 18:29:28 Times Seen2 Hash 0552124d611cb3cdde9e203a8e87d76e b137e1c7de1f682801c7ef5769249bfaaf835624 8ce3a5e80c5b9bc3f6f06a135dca46051387b878b9424b61a310205b0c98d364 Loading...

	www.google.com/maps/embed?pb=!1m18!1m12!1m3!1d2695.1681489032617!2d19.11647900358875!3d47.50611646173222!2m3!1f0!2f0!3f0!3m2!1i1024!2i768!4f13.1!3m3!1m2!1s0x4741dc9f959c6e39%3A0xe94a62868dd96504!2sCastrol%20Mintabolt%20%C3%A9s%20Castrol%20Aut%C3%B3szerviz%20-%20Castrol%20motorolajok%20%C3%A9s%20m%C3%A1rkaf%C3%BCggetlen%20aut%C3%B3szerviz!5e0!3m2!1shu!2shu!4v1617012224882!5m2!1shu!2shu	3.7 kB	2023-03-10	2023-03-10
Pretty URL www.google.com/maps/embed?pb=!1m18!1m12!1m3!1d2695.1681489032617!2d19.11647900358875!3d47.50611646173222!2m3!1f0!2f0!3f0!3m2!1i1024!2i768!4f13.1!3m3!1m2!1s0x4741dc9f959c6e39%3A0xe94a62868dd96504!2sCastrol%20Mintabolt%20%C3%A9s%20Castrol%20Aut%C3%B3szerviz%20-%20Castrol%20motorolajok%20%C3%A9s%20m%C3%A1rkaf%C3%BCggetlen%20aut%C3%B3szerviz!5e0!3m2!1shu!2shu!4v1617012224882!5m2!1shu!2shu IP 142.250.74.164 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-10 12:12:34 Last Seen2023-03-10 12:12:34 Times Seen1 Hash eac311d8301b3de63f6e5d263048ba25 dd71865b400d3bb0efd0ed323ebd1e79e9d343f8 98f89cc329717876f59c0a5dde9082afed7949b63c269bd4f9aac34806688f5a Loading...

	maps.gstatic.com/maps-api-v3/embed/js/50/10/intl/hu_ALL/init_embed.js	228 kB	2023-03-10	2023-03-10
Pretty URL maps.gstatic.com/maps-api-v3/embed/js/50/10/intl/hu_ALL/init_embed.js IP 142.250.74.163 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-10 12:12:34 Last Seen2023-03-10 14:39:59 Times Seen1 Hash 0e66c35e468e4ac2885d53063e9de191 6783aa50f3b85a8bb913724ec16e86da702ec34b 0253ba5af6f25ca6d1a69f8876ef2108bf881b2f41e48b808c925bd3614c5888 Loading...

	maps.googleapis.com/maps-api-v3/api/js/50/10/intl/hu_ALL/search_impl.js	2.8 kB	2023-03-10	2023-03-10
Pretty URL maps.googleapis.com/maps-api-v3/api/js/50/10/intl/hu_ALL/search_impl.js IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-10 12:08:59 Last Seen2023-03-10 15:51:02 Times Seen1 Hash 58851aa6ea8a91d040611d1c1af6e61d 8d898c60fc1b29829f5333e9b81644c89680bd59 734d640e111fa7be0ba6c5e226e6b15c0fc3b40355ffd067616e05ddda0e0673 Loading...

	castrolmintabolt.hu/index/javascript.php	379 kB	2023-03-10	2023-03-10
Pretty URL castrolmintabolt.hu/index/javascript.php IP 79.172.206.97 ASN #42964 SigmaNet Szolgaltato es Kereskedelm Ltd Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-10 12:12:34 Last Seen2023-03-10 14:28:33 Times Seen1 Hash bc9c8f1babec42b366e1c46e10bc5487 ddac9ed21de8d307bada318fa66c8e37387aedc3 3bc3ff19bcae55ee6839906488166e58153c68f65bffb6ee5c60fba489b2cf81 Loading...

	castrolmintabolt.hu/js/jquery/datetimepicker/jquery-ui-timepicker-addon.js	78 kB	2023-03-10	2024-04-08
Pretty URL castrolmintabolt.hu/js/jquery/datetimepicker/jquery-ui-timepicker-addon.js IP 79.172.206.97 ASN #42964 SigmaNet Szolgaltato es Kereskedelm Ltd Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-10 12:12:34 Last Seen2024-04-08 20:23:38 Times Seen186 Hash 1d0a08da45212bbdf0184483ba9af672 622c7bbd8234bd69ce74b7b43f2d3aeaa026c169 9523e6da166a2a9ba2031529fe4a7f7bf14835fdaa6cb93a89c0367e523f5e16 Loading...

	castrolmintabolt.hu/	223 B	2023-03-10	2023-03-10
Pretty URL castrolmintabolt.hu/ IP 79.172.206.97 ASN #42964 SigmaNet Szolgaltato es Kereskedelm Ltd Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-10 12:12:34 Last Seen2023-03-10 14:28:33 Times Seen1 Hash 4e6d868d810e8060ccebd520391b8978 bab348ede42e9ee8ecd8a1c4a0e0e8eb3b2ed47d 73e7ab528bb8154881e3cba206ab1f57d7e4039f2ff4e74f87ade84c2e2e754e Loading...

	castrolmintabolt.hu/	458 B	2023-03-10	2024-02-29
Pretty URL castrolmintabolt.hu/ IP 79.172.206.97 ASN #42964 SigmaNet Szolgaltato es Kereskedelm Ltd Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-10 12:12:34 Last Seen2024-02-29 20:55:05 Times Seen70 Hash 24ff2465d23aad9e6a0e2d31a1dcfa95 fd7e1313cfc1150fbcbca4d5b871e5cbcd960500 61f8a8a866a697715d53d120a0694bc482cd8c54e1fd813d485c69afdd75b3d5 Loading...

	www.google-analytics.com/analytics.js	50 kB	2023-03-08	2024-05-10
Pretty URL www.google-analytics.com/analytics.js IP 142.250.74.174 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 05:22:31 Last Seen2024-05-10 19:48:26 Times Seen1646 Hash fda30e8a22c9bcd954fd8d0fadd0e77c ae47cd34cbde081a48d7f92fc80aaf06a1381193 b42e4a056cb5b80c5a315040826866445ec9332f0749e184509ab2d9d3b86719 Loading...

	maps.googleapis.com/maps/api/js?client=google-maps-embed&paint_origin=&libraries=geometry,search&v=3.exp&language=hu&region=hu&callback=onApiLoad	176 kB	2023-03-10	2023-03-10
Pretty URL maps.googleapis.com/maps/api/js?client=google-maps-embed&paint_origin=&libraries=geometry,search&v=3.exp&language=hu&region=hu&callback=onApiLoad IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-10 12:12:34 Last Seen2023-03-10 12:12:34 Times Seen1 Hash 2025f1ec673e16b108798fa2eff4f364 e7961d8e793e2ddfe350a551e7613a5fd807a85e e97eebf884f7af47fba74fe46f2617f816575c7d2a4d218dc1778d25db486b02 Loading...

	maps.googleapis.com/maps-api-v3/api/js/50/10/intl/hu_ALL/map.js	73 kB	2023-03-10	2023-03-10
Pretty URL maps.googleapis.com/maps-api-v3/api/js/50/10/intl/hu_ALL/map.js IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-10 12:12:34 Last Seen2023-03-10 14:39:59 Times Seen1 Hash 332891f320b6a5c30869d6136f87e6c9 4bb30082dbbec9417424fe5b34a5362c1e9852c8 f3e026bd49d3b418bf53a0cbb8e90eb5cdfe0c76e3adb71ca6694dab2da80b26 Loading...

	maps.googleapis.com/maps-api-v3/api/js/50/10/intl/hu_ALL/onion.js	28 kB	2023-03-10	2023-03-10
Pretty URL maps.googleapis.com/maps-api-v3/api/js/50/10/intl/hu_ALL/onion.js IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-10 12:12:34 Last Seen2023-03-10 14:39:59 Times Seen1 Hash 90745801843b0086326cb20c811945af 10f125043ee66bcbf4a91612c4ee071f5a586133 ddc4e24003e9ced3b43afb1725bedf17755ac442410c3a9125cbb8043584d804 Loading...

	pixel.barion.com/bp.js	44 kB	2023-03-08	2023-03-29
Pretty URL pixel.barion.com/bp.js IP 172.66.41.42 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 13:38:34 Last Seen2023-03-29 23:58:45 Times Seen2 Hash 04fdf09d07451ba3c124d0eb8aff62e2 a2ca1ef3bf7bb89f32f5225cb52d4dcd65f48a68 95a61d0a7782f2669aaf0551fd79ea4309d008c8e2407f01afd6ec19662567f9 Loading...

	pixel.barion.com/barionbase.html?s=https://castrolmintabolt.hu	13 kB	2023-03-08	2024-01-11
Pretty URL pixel.barion.com/barionbase.html?s=https://castrolmintabolt.hu IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 13:38:34 Last Seen2024-01-11 01:35:47 Times Seen19 Hash a19b152e1c489fbe14b87eb1a4e924b6 ea5fb6901e6cd69e1c99b823af675e10e5c5b363 e6ed42bac2c3befbe969a84ad870d5a2ed4709408cbc1ad69a19b11256d54e04 Loading...

	maps.googleapis.com/maps/api/js/ViewportInfoService.GetViewportInfo?1m6&1m2&1d47.50020912669452&2d19.104690832995615&2m2&1d47.513868868277726&2d19.12451949013252&2u13&4shu&5e2&7b0&8e0&11e289&12e1&13shttps%3A%2F%2Fwww.google.com%2Fmaps%2Fembed&14b1&callback=_xdc_._6z7a64&client=google-maps-embed&token=41265	6.3 kB	2023-03-10	2023-03-10
Pretty URL maps.googleapis.com/maps/api/js/ViewportInfoService.GetViewportInfo?1m6&1m2&1d47.50020912669452&2d19.104690832995615&2m2&1d47.513868868277726&2d19.12451949013252&2u13&4shu&5e2&7b0&8e0&11e289&12e1&13shttps%3A%2F%2Fwww.google.com%2Fmaps%2Fembed&14b1&callback=_xdc_._6z7a64&client=google-maps-embed&token=41265 IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-10 12:12:34 Last Seen2023-03-10 14:28:33 Times Seen1 Hash ca7c9a7c9088c443692be80877e976e3 4617521b6e37938fe8f2acaec722dab925b2bdd4 a96da3ab9946a08dbe479e70ed6348eb8ab988076105c5bdc75c8770491393c8 Loading...

	maps.googleapis.com/maps/api/js/QuotaService.RecordEvent?1shttps%3A%2F%2Fwww.google.com%2Fmaps%2Fembed&2sgoogle-maps-embed&7shpzoic&10e1&11b0&callback=_xdc_._ifpzjj&client=google-maps-embed&token=110441	62 B	2023-03-10	2023-03-10
Pretty URL maps.googleapis.com/maps/api/js/QuotaService.RecordEvent?1shttps%3A%2F%2Fwww.google.com%2Fmaps%2Fembed&2sgoogle-maps-embed&7shpzoic&10e1&11b0&callback=_xdc_._ifpzjj&client=google-maps-embed&token=110441 IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-10 12:12:34 Last Seen2023-03-10 12:12:34 Times Seen1 Hash f35a0f011fa51755ece14636a19f1347 4348ae91e3b1a4373f550e784a5247b85eaef283 4deaa6b187c7908287448ae50a79c62dff96724bcb5cfa3ba2e07d17f9a4db02 Loading...

	maps.googleapis.com/maps/api/js/AuthenticationService.Authenticate?1shttps%3A%2F%2Fwww.google.com%2Fmaps%2Fembed&2sgoogle-maps-embed&7m1&1e0&8b0&callback=_xdc_._uxcir0&client=google-maps-embed&token=24152	62 B	2023-03-08	2023-08-17
Pretty URL maps.googleapis.com/maps/api/js/AuthenticationService.Authenticate?1shttps%3A%2F%2Fwww.google.com%2Fmaps%2Fembed&2sgoogle-maps-embed&7m1&1e0&8b0&callback=_xdc_._uxcir0&client=google-maps-embed&token=24152 IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 06:25:00 Last Seen2023-08-17 14:45:14 Times Seen1761 Hash ac206f9aca43cbd08f77ebff219bad68 a8f70e30f06a72933f89c350b8fcc8e77280ff5d 5da1360295132675024820ab37f9bc1c658f6b900180906ec44125f8127f762e Loading...

	castrolmintabolt.hu/	445 B	2023-03-10	2023-11-20
Pretty URL castrolmintabolt.hu/ IP 79.172.206.97 ASN #42964 SigmaNet Szolgaltato es Kereskedelm Ltd Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-10 12:12:34 Last Seen2023-11-20 18:29:28 Times Seen2 Hash 95d77943506b378dfc353b4da962f521 8307de650c5de1b1438bd9e134b26dd99f8381d1 38a161abdef2e867e81c42bcc5577884381226e425f4d4857f699858ee7bb314 Loading...

	connect.facebook.net/signals/config/398316621223737?v=2.9.87&r=stable	299 kB	2023-03-10	2023-03-10
Pretty URL connect.facebook.net/signals/config/398316621223737?v=2.9.87&r=stable IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-10 12:12:34 Last Seen2023-03-10 14:28:33 Times Seen1 Hash fa732452e26813a148140fd15226942b f6e407441de42dd50ddc3ea908c4ed4edfa0797b 058d3da16229c2b6f8b3f299f2f0b3e00917eb692c44e7f84539f70b0a22bdcb Loading...

	maps.googleapis.com/maps-api-v3/api/js/50/10/intl/hu_ALL/util.js	169 kB	2023-03-10	2023-03-10
Pretty URL maps.googleapis.com/maps-api-v3/api/js/50/10/intl/hu_ALL/util.js IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-10 12:12:34 Last Seen2023-03-10 14:39:59 Times Seen1 Hash a3c5cf547cb6804306c1f172f2ca38e8 be26d192253d7781c6d51ef5cf7ad9a251436172 4688f525abbae1de7e148b411f281d0e47bad6cae3d1179481c829e9fafe0265 Loading...

	castrolmintabolt.hu/	813 B	2023-03-10	2023-11-20
Pretty URL castrolmintabolt.hu/ IP 79.172.206.97 ASN #42964 SigmaNet Szolgaltato es Kereskedelm Ltd Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-10 12:12:34 Last Seen2023-11-20 18:29:28 Times Seen2 Hash 021a48a2675641281888771b339fa602 8296e3c1265716e1a9c3989816ab747a1fa97046 dee905a4273176bba7d3a0b77dd055c4028c9f8dc903cdf42de292c2dfde7785 Loading...

	pixel.barion.com/barion.html?s=https://castrolmintabolt.hu	5.1 kB	2023-03-08	2023-03-29
Pretty URL pixel.barion.com/barion.html?s=https://castrolmintabolt.hu IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 13:38:34 Last Seen2023-03-29 23:58:45 Times Seen2 Hash 517ed2e673fad18c8e274b084edfdb55 3fc5df56d3eba35e9708a11d613df06f728dcfe5 ee5979436aee96000fcb31a09c2dae94e01063405e3ab04cb3ce6a4d2c0e3c3b Loading...

	maps.googleapis.com/maps-api-v3/api/js/50/10/intl/hu_ALL/common.js	254 kB	2023-03-10	2023-03-10
Pretty URL maps.googleapis.com/maps-api-v3/api/js/50/10/intl/hu_ALL/common.js IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-10 12:12:34 Last Seen2023-03-10 14:28:33 Times Seen1 Hash 1a9d75f0ef30dbeaefe1317d89a05cac 4eb9dab58ea7bf170cece8d1344da714a9db6082 435ff02eb325d8c62b8d8891ce64723390c43e8a90277e5bb8f5f821a357109e Loading...

HTTP Transactions (92)

URL IP Response Size

castrolmintabolt.hu/images/upload/file/86962071840.pdf

79.172.206.97

301 Moved Permanently

0 B

URL HTTP/1.1
castrolmintabolt.hu/images/upload/file/86962071840.pdf
IP
79.172.206.97:0
ASN
#42964 SigmaNet Szolgaltato es Kereskedelm Ltd

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /images/upload/file/86962071840.pdf HTTP/1.1
Host: castrolmintabolt.hu
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1

HTTP/1.1 301 Moved Permanently
Date: Thu, 20 Oct 2022 23:54:11 GMT
Server: Apache
strict-transport-security: max-age=600
Set-Cookie: PHPSESSID=rnebkpovasat8jutq4osdefc0s; path=/; secure; HttpOnly; SameSite=Strict
PHPSESSID=rnebkpovasat8jutq4osdefc0s; expires=Fri, 21-Oct-2022 11:54:11 GMT; Max-Age=43200
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate
Pragma: no-cache
Location: https://castrolmintabolt.hu/images/upload/file/86962071840.pdf
X-Content-Type-Options: nosniff
X-Frame-Options: sameorigin
Content-Length: 0
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/html; charset=UTF-8

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
24a97183f836954e0f05c4dc794ff4d1
52778bbe39b9f736c16b5798575d1d96607ce9d0
01f6721f2674f54662fff590fdf7247cc8c58a3f84906cae75527fb7b6dd2436

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "01F6721F2674F54662FFF590FDF7247CC8C58A3F84906CAE75527FB7B6DD2436"
Last-Modified: Wed, 19 Oct 2022 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5757
Expires: Fri, 21 Oct 2022 01:30:08 GMT
Date: Thu, 20 Oct 2022 23:54:11 GMT
Connection: keep-alive

firefox.settings.services.mozilla.com/v1/

143.204.55.115

200 OK

939 B

URL HTTP/1.1
firefox.settings.services.mozilla.com/v1/
IP
143.204.55.115:0
ASN
#16509 AMAZON-02

File type
JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Size
939 B (939 bytes)
Hash
bdb8b66c705a7b996496d780f50c00b5
403ae92039fcc933870f51f913f78ccaf9652256
c923ed2539f4ce9f4d43743c402fbb2060a52a4cbedbf14c5f5742ab718073d6

HTTP Headers

GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 939
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Content-Type, Alert, Content-Length, Retry-After, Backoff
Cache-Control: max-age=3600
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Date: Thu, 20 Oct 2022 23:52:12 GMT
Expires: Fri, 21 Oct 2022 00:44:07 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
X-Cache: Hit from cloudfront
Via: 1.1 057fdebf738f5915bf38a78949190758.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: eJE1XMeIREu27JjZc6osflR0xi-C0E7jW63hiCykFytmWI8ne7RNSA==
Age: 119

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
9dc4f23f82148797f6d8041bdda3c7f7
6841ded3e2dd94fd762316d01efd43f7aafb8354
e229db1854a85b320cee574e805210f3adf5797136ea820c0a0ce9abcd63d4dd

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "E229DB1854A85B320CEE574E805210F3ADF5797136EA820C0A0CE9ABCD63D4DD"
Last-Modified: Thu, 20 Oct 2022 02:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5756
Expires: Fri, 21 Oct 2022 01:30:07 GMT
Date: Thu, 20 Oct 2022 23:54:11 GMT
Connection: keep-alive

content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain

34.160.144.191

200 OK

5.3 kB

URL HTTP/2
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain
IP
34.160.144.191:0
ASN
#15169 GOOGLE

File type
PEM certificate\012- , ASCII text
Size
5.3 kB (5348 bytes)
Hash
67d5a988edcda47bc3b3b3f65d32b4b6
d4f0e0da8b3690cc7da925026d3414b68c7d954f
55e4848e3ec682e808ce7ee70950f86179c43af4f81926d826a95edfda395a78

HTTP Headers

GET /chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
x-amz-id-2: u4Y/wzFRP+91qZqfdLlEio92+Z+l5h8g0zBNl4dTV3fmyuxH8uesQZCFKcyaeDwkuuQBqEKhlc2jSIMVdYVi6A==
x-amz-request-id: VQP20VN2Z5DY332M
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Thu, 20 Oct 2022 23:04:53 GMT
age: 2958
last-modified: Fri, 30 Sep 2022 18:50:55 GMT
etag: "67d5a988edcda47bc3b3b3f65d32b4b6"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2

contile.services.mozilla.com/v1/tiles

34.117.237.239

200 OK

12 B

URL HTTP/2
contile.services.mozilla.com/v1/tiles
IP
34.117.237.239:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with no line terminators
Size
12 B (12 bytes)
Hash
23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3

HTTP Headers

GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
date: Thu, 20 Oct 2022 23:54:11 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
c771714976822e7c8c46f2428045eab0
00e23b41514e2d251cf5e31eab497886de20d847
581600617b277bb12b09131870431a206b4d3997c19e34a98ae73130704c4021

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "581600617B277BB12B09131870431A206B4D3997C19E34A98AE73130704C4021"
Last-Modified: Thu, 20 Oct 2022 04:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21552
Expires: Fri, 21 Oct 2022 05:53:23 GMT
Date: Thu, 20 Oct 2022 23:54:11 GMT
Connection: keep-alive

firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US

143.204.55.115

200 OK

329 B

URL HTTP/1.1
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP
143.204.55.115:0
ASN
#16509 AMAZON-02

File type
JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Size
329 B (329 bytes)
Hash
0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300

HTTP Headers

GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 329
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: ETag, Expires, Content-Length, Cache-Control, Pragma, Content-Type, Alert, Backoff, Last-Modified, Retry-After
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Last-Modified: Fri, 25 Mar 2022 17:45:46 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
Date: Thu, 20 Oct 2022 23:43:40 GMT
Cache-Control: max-age=3600
Expires: Fri, 21 Oct 2022 00:32:01 GMT
ETag: "1648230346554"
X-Cache: Hit from cloudfront
Via: 1.1 095562e8748e634f880ee3c4ada2b6d0.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: vkSCy2D7l7030DeK-EDjQZduTh2JAMHA1MSUxZWHqbFiU90KSpU8Hw==
Age: 631

castrolmintabolt.hu/images/upload/file/86962071840.pdf

79.172.206.97

301 Moved Permanently

0 B

URL HTTP/1.1
castrolmintabolt.hu/images/upload/file/86962071840.pdf
IP
79.172.206.97:0
ASN
#42964 SigmaNet Szolgaltato es Kereskedelm Ltd

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /images/upload/file/86962071840.pdf HTTP/1.1
Host: castrolmintabolt.hu
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1

HTTP/1.1 301 Moved Permanently
Date: Thu, 20 Oct 2022 23:54:11 GMT
Server: Apache
strict-transport-security: max-age=600
Set-Cookie: PHPSESSID=98trhh0kbsilfec84id4m8mveb; path=/; secure; HttpOnly; SameSite=Strict
PHPSESSID=98trhh0kbsilfec84id4m8mveb; expires=Fri, 21-Oct-2022 11:54:11 GMT; Max-Age=43200
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate
Pragma: no-cache
Location: /
X-Content-Type-Options: nosniff
X-Frame-Options: sameorigin
Content-Length: 0
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/html; charset=UTF-8

castrolmintabolt.hu/

79.172.206.97

200 OK

8.1 kB

URL HTTP/1.1
castrolmintabolt.hu/
IP
79.172.206.97:0
ASN
#42964 SigmaNet Szolgaltato es Kereskedelm Ltd

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (511), with CRLF, LF line terminators
Size
8.1 kB (8143 bytes)
Hash
feda98e61f505e117e559a1e2e3792ab
350d227578504c1820170e93bfcdb3b85849de7a
8954c00bdf15be2aac6da537b5d0ef5fde5749d00267cc27bf589d0bbc23c100

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET / HTTP/1.1
Host: castrolmintabolt.hu
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Cookie: PHPSESSID=98trhh0kbsilfec84id4m8mveb
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1

HTTP/1.1 200 OK
Date: Thu, 20 Oct 2022 23:54:11 GMT
Server: Apache
strict-transport-security: max-age=600
Set-Cookie: PHPSESSID=98trhh0kbsilfec84id4m8mveb; expires=Fri, 21-Oct-2022 11:54:11 GMT; Max-Age=43200
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate
Pragma: no-cache
Vary: Accept-Encoding
Content-Encoding: gzip
X-Content-Type-Options: nosniff
X-Frame-Options: sameorigin
Content-Length: 8143
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: text/html; charset=UTF-8

ocsp.digicert.com/

93.184.220.29

200 OK

471 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
471 B (471 bytes)
Hash
a5dd4f71f4ddd5be9201466ed7a6c423
1d0832fb6e227d42137d319f728c8bc1414c816f
1edffa6a320210fccbd0e5fa6dbdaa45561678a75a66639985f02791c8283b40

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1761
Cache-Control: max-age=117714
Content-Type: application/ocsp-response
Date: Thu, 20 Oct 2022 23:54:12 GMT
Etag: "63510196-1d7"
Expires: Sat, 22 Oct 2022 08:36:06 GMT
Last-Modified: Thu, 20 Oct 2022 08:06:46 GMT
Server: ECS (ska/F70A)
X-Cache: HIT
Content-Length: 471

castrolmintabolt.hu/fonts/font-awesome-5/css/all.css

79.172.206.97

200 OK

12 kB

URL HTTP/1.1
castrolmintabolt.hu/fonts/font-awesome-5/css/all.css
IP
79.172.206.97:0
ASN
#42964 SigmaNet Szolgaltato es Kereskedelm Ltd

File type
ASCII text
Size
12 kB (12381 bytes)
Hash
be017c9b8cb4188749dadc32c9235129
7fcea0798bdc4a63b2cd9aea6f888077368d39b0
275d72ef6d5ae93666407e377522441a3705707c11490fe3fb94d21ba2305c0f

HTTP Headers

GET /fonts/font-awesome-5/css/all.css HTTP/1.1
Host: castrolmintabolt.hu
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://castrolmintabolt.hu/
Cookie: PHPSESSID=98trhh0kbsilfec84id4m8mveb
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Thu, 20 Oct 2022 23:54:12 GMT
Server: Apache
Last-Modified: Mon, 05 Oct 2020 08:18:30 GMT
ETag: "10abc-5b0e820a43890-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
X-Content-Type-Options: nosniff
X-Frame-Options: sameorigin
Content-Length: 12381
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: text/css

castrolmintabolt.hu/index/style.php

79.172.206.97

200 OK

20 kB

URL HTTP/1.1
castrolmintabolt.hu/index/style.php
IP
79.172.206.97:0
ASN
#42964 SigmaNet Szolgaltato es Kereskedelm Ltd

File type
ASCII text, with CRLF, LF line terminators
Size
20 kB (19468 bytes)
Hash
1c6dc9dbd3c55570392a8d5c1141d4a0
1d5be38b9cb6a642dd81f5e8a2270ac29c3cf33f
0bd31672de6193a2a3daf2b3c7361bf06107c10ecbdf44cab206638652f21d9c

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /index/style.php HTTP/1.1
Host: castrolmintabolt.hu
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://castrolmintabolt.hu/
Cookie: PHPSESSID=98trhh0kbsilfec84id4m8mveb
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Thu, 20 Oct 2022 23:54:12 GMT
Server: Apache
Cache-Control: no-store, no-cache, must-revalidate
strict-transport-security: max-age=600
Set-Cookie: PHPSESSID=98trhh0kbsilfec84id4m8mveb; expires=Fri, 21-Oct-2022 11:54:12 GMT; Max-Age=43200
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Pragma: no-cache
Vary: Accept-Encoding
Content-Encoding: gzip
X-Content-Type-Options: nosniff
X-Frame-Options: sameorigin
Content-Length: 19468
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: text/css;charset=UTF-8

ocsp.digicert.com/

93.184.220.29

200 OK

279 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
279 B (279 bytes)
Hash
ffd3a4c58f9b992d01f42979aae31d92
dd0bb7bee286844d1b5a7eacbe570518e82c67c4
8f2da9ed1f8c524e8702cf22c0e6dd57d1fb9836bb32aa879bbe9037e8d9f5fe

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4616
Cache-Control: max-age=107994
Content-Type: application/ocsp-response
Date: Thu, 20 Oct 2022 23:54:12 GMT
Etag: "6350d076-117"
Expires: Sat, 22 Oct 2022 05:54:06 GMT
Last-Modified: Thu, 20 Oct 2022 04:37:10 GMT
Server: ECS (amb/6BBC)
X-Cache: HIT
Content-Length: 279

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
e6c3e0486533b0a2edffeca191cd7785
2d688b3c35b26c69e8490ed21ccb94dbbe5ddd27
0780ccc7e7101d6bbfb981fcfdc6e9642f49b4671e2109bde58362d5be33c5d8

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 20 Oct 2022 23:54:12 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
e6c3e0486533b0a2edffeca191cd7785
2d688b3c35b26c69e8490ed21ccb94dbbe5ddd27
0780ccc7e7101d6bbfb981fcfdc6e9642f49b4671e2109bde58362d5be33c5d8

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 20 Oct 2022 23:54:12 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
13b2ffd04752d468f707090604f6ed1c
94de24b43698a598b060edea68a4b1b5c6bf9879
98f0ad0db175ed53ed6b048cc4427f902c148adc378d833dcb8cd89d59397aad

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 20 Oct 2022 23:54:12 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

castrolmintabolt.hu/js/jquery/jquery-ui.min.css

79.172.206.97

200 OK

7.4 kB

URL HTTP/1.1
castrolmintabolt.hu/js/jquery/jquery-ui.min.css
IP
79.172.206.97:0
ASN
#42964 SigmaNet Szolgaltato es Kereskedelm Ltd

File type
ASCII text, with very long lines (28290)
Size
7.4 kB (7369 bytes)
Hash
958c015e114aa877acf99ac35728ec7d
7d75a6f8ddda2ad0dfefb17d6c9bb25066ea34dc
b4195b0e2fe628e1df186e71beb24378e203b4e3ed2cec7bd53856221b0bcd25

HTTP Headers

GET /js/jquery/jquery-ui.min.css HTTP/1.1
Host: castrolmintabolt.hu
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://castrolmintabolt.hu/
Cookie: PHPSESSID=98trhh0kbsilfec84id4m8mveb
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Thu, 20 Oct 2022 23:54:12 GMT
Server: Apache
Last-Modified: Mon, 16 Nov 2015 01:19:38 GMT
ETag: "7545-5249e33ea9e80-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
X-Content-Type-Options: nosniff
X-Frame-Options: sameorigin
Content-Length: 7369
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/css

castrolmintabolt.hu/js/jquery/slider-orbit/orbit.css

79.172.206.97

200 OK

1.2 kB

URL HTTP/1.1
castrolmintabolt.hu/js/jquery/slider-orbit/orbit.css
IP
79.172.206.97:0
ASN
#42964 SigmaNet Szolgaltato es Kereskedelm Ltd

File type
ASCII text
Size
1.2 kB (1229 bytes)
Hash
f9313d3a5cf17fd99f815710a7465de4
93731ee8fce60f723e2e52d39073c54309d5d78c
b0a9ade57657e66229d27f3b163f8a87a4dd6da506986efc7b6d0ae5b8063c17

HTTP Headers

GET /js/jquery/slider-orbit/orbit.css HTTP/1.1
Host: castrolmintabolt.hu
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://castrolmintabolt.hu/
Cookie: PHPSESSID=98trhh0kbsilfec84id4m8mveb
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Thu, 20 Oct 2022 23:54:12 GMT
Server: Apache
Last-Modified: Mon, 16 Nov 2015 01:19:36 GMT
ETag: "fc0-5249e33cc1a00-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
X-Content-Type-Options: nosniff
X-Frame-Options: sameorigin
Content-Length: 1229
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: text/css

castrolmintabolt.hu/js/jquery/datetimepicker/jquery-ui-timepicker-addon.css

79.172.206.97

200 OK

248 B

URL HTTP/1.1
castrolmintabolt.hu/js/jquery/datetimepicker/jquery-ui-timepicker-addon.css
IP
79.172.206.97:0
ASN
#42964 SigmaNet Szolgaltato es Kereskedelm Ltd

File type
ASCII text, with CRLF line terminators
Size
248 B (248 bytes)
Hash
b5476b94feb88758805a9bb8cb7afcb7
468cbc99ed36395e27a51934cc58fcb35d1950f6
947aa91757b477100ab7bf31f09ff7132a882b5a13220c2aacfc4a2b068ac204

HTTP Headers

GET /js/jquery/datetimepicker/jquery-ui-timepicker-addon.css HTTP/1.1
Host: castrolmintabolt.hu
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://castrolmintabolt.hu/
Cookie: PHPSESSID=98trhh0kbsilfec84id4m8mveb
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Thu, 20 Oct 2022 23:54:12 GMT
Server: Apache
Last-Modified: Mon, 16 Nov 2015 01:19:37 GMT
ETag: "244-5249e33db5c40-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
X-Content-Type-Options: nosniff
X-Frame-Options: sameorigin
Content-Length: 248
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/css

castrolmintabolt.hu/js/jquery/slider-orbit/jquery.orbit.js

79.172.206.97

200 OK

3.6 kB

URL HTTP/1.1
castrolmintabolt.hu/js/jquery/slider-orbit/jquery.orbit.js
IP
79.172.206.97:0
ASN
#42964 SigmaNet Szolgaltato es Kereskedelm Ltd

File type
ASCII text
Size
3.6 kB (3570 bytes)
Hash
c0b98e68bca5c85d4e65a4d9cba3baf8
1d40f9712463f188a1ee3ccff541628355ca69c2
10ae0ccb98988aa989bdec002d7755447fd04d786c3a15a6e092f96166889440

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /js/jquery/slider-orbit/jquery.orbit.js HTTP/1.1
Host: castrolmintabolt.hu
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://castrolmintabolt.hu/
Cookie: PHPSESSID=98trhh0kbsilfec84id4m8mveb
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Thu, 20 Oct 2022 23:54:12 GMT
Server: Apache
Last-Modified: Mon, 16 Nov 2015 01:19:36 GMT
ETag: "40ce-5249e33cc1a00-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
X-Content-Type-Options: nosniff
X-Frame-Options: sameorigin
Content-Length: 3570
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: application/javascript

fonts.googleapis.com/css2?family=Roboto:wght@300;400&display=swap

142.250.74.10

200 OK

887 B

URL HTTP/2
fonts.googleapis.com/css2?family=Roboto:wght@300;400&display=swap
IP
142.250.74.10:0
ASN
#15169 GOOGLE

File type
data
Size
887 B (887 bytes)
Hash
99ee1ccfba32b4cd85c6a7e240a5313f
7aa3501af989bbd3ca9dff3266744886e7cf31ec
5fa33b0c3b74a3e9611974155a58ab631e3f6525dfc11197321851ae0e161782

HTTP Headers

GET /css2?family=Roboto:wght@300;400&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://castrolmintabolt.hu/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Thu, 20 Oct 2022 23:54:12 GMT
date: Thu, 20 Oct 2022 23:54:12 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

castrolmintabolt.hu/js/jquery/datetimepicker/jquery-ui-timepicker-addon.js

79.172.206.97

200 OK

18 kB

URL HTTP/1.1
castrolmintabolt.hu/js/jquery/datetimepicker/jquery-ui-timepicker-addon.js
IP
79.172.206.97:0
ASN
#42964 SigmaNet Szolgaltato es Kereskedelm Ltd

File type
Algol 68 source text\012- Pascal source, ASCII text, with CRLF line terminators
Size
18 kB (18363 bytes)
Hash
ea6d6a0c0de4e9abe00bb34af39b3d42
154d81942ee4f696e03a40b6a26fab300b47931d
88d7c765d981fb389401bd320f2c94d248361d4b10fd8c62da86f475a87308b9

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /js/jquery/datetimepicker/jquery-ui-timepicker-addon.js HTTP/1.1
Host: castrolmintabolt.hu
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://castrolmintabolt.hu/
Cookie: PHPSESSID=98trhh0kbsilfec84id4m8mveb
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Thu, 20 Oct 2022 23:54:12 GMT
Server: Apache
Last-Modified: Mon, 16 Nov 2015 01:19:37 GMT
ETag: "1307c-5249e33db5c40-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
X-Content-Type-Options: nosniff
X-Frame-Options: sameorigin
Content-Length: 18363
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: application/javascript

www.googletagmanager.com/gtag/js?id=UA-42485366-72

142.250.74.168

200 OK

44 kB

URL HTTP/2
www.googletagmanager.com/gtag/js?id=UA-42485366-72
IP
142.250.74.168:0
ASN
#15169 GOOGLE

File type
ASCII text, with very long lines (1588)
Size
44 kB (43636 bytes)
Hash
158da181511b261f4abcc8fdab5f7dd7
584beb0359142b27b65552af50a55792342e301c
ae9df24f49735a8d7a3fea48f8d6260e7ea0088c37231135ccf8ff5b6fac68f0

HTTP Headers

GET /gtag/js?id=UA-42485366-72 HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://castrolmintabolt.hu/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Thu, 20 Oct 2022 23:54:12 GMT
expires: Thu, 20 Oct 2022 23:54:12 GMT
cache-control: private, max-age=900
last-modified: Thu, 20 Oct 2022 21:44:31 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 43636
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

fonts.googleapis.com/css2?family=Roboto+Condensed&display=swap

142.250.74.10

200 OK

1.0 kB

URL HTTP/2
fonts.googleapis.com/css2?family=Roboto+Condensed&display=swap
IP
142.250.74.10:0
ASN
#15169 GOOGLE

File type
data
Size
1.0 kB (1019 bytes)
Hash
c87dfac085901e806c0bb2f7a9a7e407
0518354bc3eb5b079ea7ec00fe17a346e80a5e75
ed1175786f146949d1d1c5d7d0ab09654f34027e7d5c4ad74179258e54e8412e

HTTP Headers

GET /css2?family=Roboto+Condensed&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://castrolmintabolt.hu/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Thu, 20 Oct 2022 23:54:12 GMT
date: Thu, 20 Oct 2022 23:54:12 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
13b2ffd04752d468f707090604f6ed1c
94de24b43698a598b060edea68a4b1b5c6bf9879
98f0ad0db175ed53ed6b048cc4427f902c148adc378d833dcb8cd89d59397aad

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 20 Oct 2022 23:54:12 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

push.services.mozilla.com/

34.214.236.46

101 Switching Protocols

0 B

URL HTTP/1.1
push.services.mozilla.com/
IP
34.214.236.46:0
ASN
#16509 AMAZON-02

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: 0KG0CAviFQlltu3MaMhxRQ==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket

HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: K8M6QFOLJxo2IP0DhSnf2ODZzFo=

castrolmintabolt.hu/index/javascript.php

79.172.206.97

200 OK

379 kB

URL HTTP/1.1
castrolmintabolt.hu/index/javascript.php
IP
79.172.206.97:0
ASN
#42964 SigmaNet Szolgaltato es Kereskedelm Ltd

File type
ASCII text, with very long lines (32069)
Size
379 kB (379092 bytes)
Hash
bc9c8f1babec42b366e1c46e10bc5487
ddac9ed21de8d307bada318fa66c8e37387aedc3
3bc3ff19bcae55ee6839906488166e58153c68f65bffb6ee5c60fba489b2cf81

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /index/javascript.php HTTP/1.1
Host: castrolmintabolt.hu
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://castrolmintabolt.hu/
Cookie: PHPSESSID=98trhh0kbsilfec84id4m8mveb
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Thu, 20 Oct 2022 23:54:12 GMT
Server: Apache
strict-transport-security: max-age=600
Set-Cookie: PHPSESSID=98trhh0kbsilfec84id4m8mveb; expires=Fri, 21-Oct-2022 11:54:12 GMT; Max-Age=43200
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate
Pragma: no-cache
X-Content-Type-Options: nosniff
X-Frame-Options: sameorigin
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: text/javascript;charset=UTF-8

castrolmintabolt.hu/upload/files/308/kenoangyag-sugo-16168.png

79.172.206.97

200 OK

4.9 kB

URL HTTP/1.1
castrolmintabolt.hu/upload/files/308/kenoangyag-sugo-16168.png
IP
79.172.206.97:0
ASN
#42964 SigmaNet Szolgaltato es Kereskedelm Ltd

File type
PNG image data, 128 x 128, 8-bit/color RGBA, non-interlaced\012- data
Size
4.9 kB (4940 bytes)
Hash
d6fe432802a3ecd873fb027cb91df6ea
00a821fd00bf84d1692eae14d98d93ecd8aed033
6a19a6e9fd4d7deb43b43c4f6ff8c783ca742243f20c5e4ff6ba9b5b81bbfcde

HTTP Headers

GET /upload/files/308/kenoangyag-sugo-16168.png HTTP/1.1
Host: castrolmintabolt.hu
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://castrolmintabolt.hu/
Cookie: PHPSESSID=98trhh0kbsilfec84id4m8mveb
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Thu, 20 Oct 2022 23:54:12 GMT
Server: Apache
Last-Modified: Sun, 20 Dec 2020 17:03:51 GMT
ETag: "134c-5b6e8536df76a"
Accept-Ranges: bytes
Content-Length: 4940
X-Content-Type-Options: nosniff
X-Frame-Options: sameorigin
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive
Content-Type: image/png

castrolmintabolt.hu/upload/files/308/castrol-gtx-16172.png

79.172.206.97

200 OK

18 kB

URL HTTP/1.1
castrolmintabolt.hu/upload/files/308/castrol-gtx-16172.png
IP
79.172.206.97:0
ASN
#42964 SigmaNet Szolgaltato es Kereskedelm Ltd

File type
PNG image data, 217 x 126, 8-bit/color RGBA, non-interlaced\012- data
Size
18 kB (18314 bytes)
Hash
bb6029f9dd22e92e3d067caedf0b68c8
a4c4d82df3627347ea1f27eabde013a68e0e27dc
c37b520575d99c38e8d037a041d6219e63ff5ba73d1ab37cab00bbefde00f95f

HTTP Headers

GET /upload/files/308/castrol-gtx-16172.png HTTP/1.1
Host: castrolmintabolt.hu
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://castrolmintabolt.hu/
Cookie: PHPSESSID=98trhh0kbsilfec84id4m8mveb
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Thu, 20 Oct 2022 23:54:12 GMT
Server: Apache
Last-Modified: Sun, 20 Dec 2020 17:30:42 GMT
ETag: "478a-5b6e8b3672cb0"
Accept-Ranges: bytes
Content-Length: 18314
X-Content-Type-Options: nosniff
X-Frame-Options: sameorigin
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: image/png

castrolmintabolt.hu/upload/files/308/castrol-mintabolt-16166.png

79.172.206.97

200 OK

5.4 kB

URL HTTP/1.1
castrolmintabolt.hu/upload/files/308/castrol-mintabolt-16166.png
IP
79.172.206.97:0
ASN
#42964 SigmaNet Szolgaltato es Kereskedelm Ltd

File type
PNG image data, 128 x 128, 8-bit/color RGBA, non-interlaced\012- data
Size
5.4 kB (5439 bytes)
Hash
195ee57dbbd8e03c3dd95ca6317515df
558eb4949b4da7780401d571429b2ca388308a55
2e14585fc5b5433c11be2f71d6e343c4bf47c57a78d48167dce67b72dc1a6b02

HTTP Headers

GET /upload/files/308/castrol-mintabolt-16166.png HTTP/1.1
Host: castrolmintabolt.hu
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://castrolmintabolt.hu/
Cookie: PHPSESSID=98trhh0kbsilfec84id4m8mveb
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Thu, 20 Oct 2022 23:54:12 GMT
Server: Apache
Last-Modified: Sun, 20 Dec 2020 17:00:00 GMT
ETag: "153f-5b6e8459c69aa"
Accept-Ranges: bytes
Content-Length: 5439
X-Content-Type-Options: nosniff
X-Frame-Options: sameorigin
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: image/png

castrolmintabolt.hu/upload/files/308/castrol-autoszerviz-16165.png

79.172.206.97

200 OK

5.5 kB

URL HTTP/1.1
castrolmintabolt.hu/upload/files/308/castrol-autoszerviz-16165.png
IP
79.172.206.97:0
ASN
#42964 SigmaNet Szolgaltato es Kereskedelm Ltd

File type
PNG image data, 128 x 128, 8-bit/color RGBA, non-interlaced\012- data
Size
5.5 kB (5452 bytes)
Hash
808e35f8104e603070cd396209432bf9
f2320657cc10cf8da3b826eac284b7a59833ed33
657aa9dc8648096330ecc1f359a67a0d5610a35b4ca222d2ab5bc14327463586

HTTP Headers

GET /upload/files/308/castrol-autoszerviz-16165.png HTTP/1.1
Host: castrolmintabolt.hu
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://castrolmintabolt.hu/
Cookie: PHPSESSID=98trhh0kbsilfec84id4m8mveb
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Thu, 20 Oct 2022 23:54:12 GMT
Server: Apache
Last-Modified: Sun, 20 Dec 2020 17:00:00 GMT
ETag: "154c-5b6e8459c69aa"
Accept-Ranges: bytes
Content-Length: 5452
X-Content-Type-Options: nosniff
X-Frame-Options: sameorigin
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: image/png

castrolmintabolt.hu/upload/files/308/castrol-edge-16170.png

79.172.206.97

200 OK

27 kB

URL HTTP/1.1
castrolmintabolt.hu/upload/files/308/castrol-edge-16170.png
IP
79.172.206.97:0
ASN
#42964 SigmaNet Szolgaltato es Kereskedelm Ltd

File type
PNG image data, 217 x 121, 8-bit/color RGBA, non-interlaced\012- data
Size
27 kB (27060 bytes)
Hash
bcc78c501d840f761e649e4481a3a17f
f24f59e14461553ad31e1945d7003d68b11135cc
8629b8c3bf85d4b774f6ca582fe16d37073523728dc8015cd0740933aca3ab06

HTTP Headers

GET /upload/files/308/castrol-edge-16170.png HTTP/1.1
Host: castrolmintabolt.hu
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://castrolmintabolt.hu/
Cookie: PHPSESSID=98trhh0kbsilfec84id4m8mveb
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Thu, 20 Oct 2022 23:54:12 GMT
Server: Apache
Last-Modified: Sun, 20 Dec 2020 17:30:42 GMT
ETag: "69b4-5b6e8b3672cb0"
Accept-Ranges: bytes
Content-Length: 27060
X-Content-Type-Options: nosniff
X-Frame-Options: sameorigin
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: image/png

castrolmintabolt.hu/upload/files/308/castrol-power1-16171.png

79.172.206.97

200 OK

22 kB

URL HTTP/1.1
castrolmintabolt.hu/upload/files/308/castrol-power1-16171.png
IP
79.172.206.97:0
ASN
#42964 SigmaNet Szolgaltato es Kereskedelm Ltd

File type
PNG image data, 220 x 155, 8-bit/color RGBA, non-interlaced\012- data
Size
22 kB (21577 bytes)
Hash
cc00a48300f0855bf8faac1be0898c29
e31331a0e1b974f6d4071e4bd6f6e046efb46142
b0f2f9f4ed81fc3af2b639118b0cfacddeff9d009d13eefc28fae238bb6915da

HTTP Headers

GET /upload/files/308/castrol-power1-16171.png HTTP/1.1
Host: castrolmintabolt.hu
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://castrolmintabolt.hu/
Cookie: PHPSESSID=98trhh0kbsilfec84id4m8mveb
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Thu, 20 Oct 2022 23:54:12 GMT
Server: Apache
Last-Modified: Sun, 20 Dec 2020 17:30:42 GMT
ETag: "5449-5b6e8b3672cb0"
Accept-Ranges: bytes
Content-Length: 21577
X-Content-Type-Options: nosniff
X-Frame-Options: sameorigin
Keep-Alive: timeout=5, max=94
Connection: Keep-Alive
Content-Type: image/png

castrolmintabolt.hu/upload/files/308/castrol-magnatec-16169.png

79.172.206.97

200 OK

28 kB

URL HTTP/1.1
castrolmintabolt.hu/upload/files/308/castrol-magnatec-16169.png
IP
79.172.206.97:0
ASN
#42964 SigmaNet Szolgaltato es Kereskedelm Ltd

File type
PNG image data, 230 x 116, 8-bit/color RGBA, non-interlaced\012- data
Size
28 kB (27685 bytes)
Hash
efe6363b9b9b08cf54e7cb0e05808183
2963c4bd1e90165188d258b0828ab0d3a1c05ccf
c96a7849e5516ff8aebe17747bd3ce153861f59e1a1f0f19214cefa4b455dd5f

HTTP Headers

GET /upload/files/308/castrol-magnatec-16169.png HTTP/1.1
Host: castrolmintabolt.hu
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://castrolmintabolt.hu/
Cookie: PHPSESSID=98trhh0kbsilfec84id4m8mveb
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Thu, 20 Oct 2022 23:54:12 GMT
Server: Apache
Last-Modified: Sun, 20 Dec 2020 17:30:41 GMT
ETag: "6c25-5b6e8b3616fee"
Accept-Ranges: bytes
Content-Length: 27685
X-Content-Type-Options: nosniff
X-Frame-Options: sameorigin
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: image/png

castrolmintabolt.hu/upload/images/308/castrol-power-1-4t-10w-40-60-literes-172557.png

79.172.206.97

200 OK

33 kB

URL HTTP/1.1
castrolmintabolt.hu/upload/images/308/castrol-power-1-4t-10w-40-60-literes-172557.png
IP
79.172.206.97:0
ASN
#42964 SigmaNet Szolgaltato es Kereskedelm Ltd

File type
PNG image data, 200 x 200, 8-bit/color RGBA, non-interlaced\012- data
Size
33 kB (32877 bytes)
Hash
2b9f4090b77e7dbe172920a28b772237
466b4435040c1ca65478993863ce48f0720175ba
ed604bc7706490a94bd690cc23860c8fecb789e95a02a2bd90fd2b3eab9707bd

HTTP Headers

GET /upload/images/308/castrol-power-1-4t-10w-40-60-literes-172557.png HTTP/1.1
Host: castrolmintabolt.hu
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://castrolmintabolt.hu/
Cookie: PHPSESSID=98trhh0kbsilfec84id4m8mveb
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Thu, 20 Oct 2022 23:54:12 GMT
Server: Apache
Last-Modified: Wed, 27 Oct 2021 11:20:16 GMT
ETag: "806d-5cf53c7475893"
Accept-Ranges: bytes
Content-Length: 32877
X-Content-Type-Options: nosniff
X-Frame-Options: sameorigin
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: image/png

castrolmintabolt.hu/upload/images/308/castrol-power-1-racing-4t-10w-50-1-literes-172566.png

79.172.206.97

200 OK

34 kB

URL HTTP/1.1
castrolmintabolt.hu/upload/images/308/castrol-power-1-racing-4t-10w-50-1-literes-172566.png
IP
79.172.206.97:0
ASN
#42964 SigmaNet Szolgaltato es Kereskedelm Ltd

File type
PNG image data, 200 x 200, 8-bit/color RGBA, non-interlaced\012- data
Size
34 kB (33849 bytes)
Hash
9cd4d8be5447e9311f294c1f207bc5c7
8650050baac4b27b008a3a0a81ea894dc4707478
9a7878fe4c17a321075a99983c3c23aa2d84c6a77ee64506cfb55247e31a2cd3

HTTP Headers

GET /upload/images/308/castrol-power-1-racing-4t-10w-50-1-literes-172566.png HTTP/1.1
Host: castrolmintabolt.hu
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://castrolmintabolt.hu/
Cookie: PHPSESSID=98trhh0kbsilfec84id4m8mveb
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Thu, 20 Oct 2022 23:54:12 GMT
Server: Apache
Last-Modified: Wed, 27 Oct 2021 11:26:08 GMT
ETag: "8439-5cf53dc462187"
Accept-Ranges: bytes
Content-Length: 33849
X-Content-Type-Options: nosniff
X-Frame-Options: sameorigin
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: image/png

castrolmintabolt.hu/upload/files/308/castrol-garancia-16173.jpg

79.172.206.97

200 OK

20 kB

URL HTTP/1.1
castrolmintabolt.hu/upload/files/308/castrol-garancia-16173.jpg
IP
79.172.206.97:0
ASN
#42964 SigmaNet Szolgaltato es Kereskedelm Ltd

File type
JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 232x232, components 3\012- data
Size
20 kB (19730 bytes)
Hash
bf0181216da33cbe7ccad38439b1e68d
c853cbb7dfc67ea839ed21799e154c83f5f6a0e6
34cd540baae194065248503cc2f6229e89c5a1ddea6ea3c66741e46faaf4deef

HTTP Headers

GET /upload/files/308/castrol-garancia-16173.jpg HTTP/1.1
Host: castrolmintabolt.hu
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://castrolmintabolt.hu/
Cookie: PHPSESSID=98trhh0kbsilfec84id4m8mveb
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Thu, 20 Oct 2022 23:54:12 GMT
Server: Apache
Last-Modified: Sun, 20 Dec 2020 17:43:31 GMT
ETag: "4d12-5b6e8e1482a28"
Accept-Ranges: bytes
Content-Length: 19730
X-Content-Type-Options: nosniff
X-Frame-Options: sameorigin
Keep-Alive: timeout=5, max=93
Connection: Keep-Alive
Content-Type: image/jpeg

castrolmintabolt.hu/upload/images/308/castrol-power-1-4t-15w-50-1-literes-172563.png

79.172.206.97

200 OK

33 kB

URL HTTP/1.1
castrolmintabolt.hu/upload/images/308/castrol-power-1-4t-15w-50-1-literes-172563.png
IP
79.172.206.97:0
ASN
#42964 SigmaNet Szolgaltato es Kereskedelm Ltd

File type
PNG image data, 200 x 200, 8-bit/color RGBA, non-interlaced\012- data
Size
33 kB (33369 bytes)
Hash
a1d94a717a63ea60b2d08fe86c51c1ef
0fa9e3e2759f9c17d839ca7fd05ca3e2ab6b4bbb
2fc9510be74ff5399237c85ce5edbe0f26065a56747d96d0b2790a47848a9a8a

HTTP Headers

GET /upload/images/308/castrol-power-1-4t-15w-50-1-literes-172563.png HTTP/1.1
Host: castrolmintabolt.hu
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://castrolmintabolt.hu/
Cookie: PHPSESSID=98trhh0kbsilfec84id4m8mveb
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Thu, 20 Oct 2022 23:54:12 GMT
Server: Apache
Last-Modified: Wed, 27 Oct 2021 11:22:55 GMT
ETag: "8259-5cf53d0cdc655"
Accept-Ranges: bytes
Content-Length: 33369
X-Content-Type-Options: nosniff
X-Frame-Options: sameorigin
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: image/png

castrolmintabolt.hu/upload/images/308/castrol-power-1-4t-10w-40-1-literes-172554.png

79.172.206.97

200 OK

34 kB

URL HTTP/1.1
castrolmintabolt.hu/upload/images/308/castrol-power-1-4t-10w-40-1-literes-172554.png
IP
79.172.206.97:0
ASN
#42964 SigmaNet Szolgaltato es Kereskedelm Ltd

File type
PNG image data, 200 x 200, 8-bit/color RGBA, non-interlaced\012- data
Size
34 kB (33526 bytes)
Hash
4bd38cb461f851078b6e684912a205c9
482d2b6c96e4cff02218c731b5e5b9b093359dea
574af35a43951305f41d6bb5d1b82c37250437aaf096f2aed54b8be46dec9d71

HTTP Headers

GET /upload/images/308/castrol-power-1-4t-10w-40-1-literes-172554.png HTTP/1.1
Host: castrolmintabolt.hu
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://castrolmintabolt.hu/
Cookie: PHPSESSID=98trhh0kbsilfec84id4m8mveb
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Thu, 20 Oct 2022 23:54:12 GMT
Server: Apache
Last-Modified: Wed, 27 Oct 2021 11:16:46 GMT
ETag: "82f6-5cf53bac184a2"
Accept-Ranges: bytes
Content-Length: 33526
X-Content-Type-Options: nosniff
X-Frame-Options: sameorigin
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: image/png

castrolmintabolt.hu/pictures/Barion-logo.png

79.172.206.97

200 OK

7.2 kB

URL HTTP/1.1
castrolmintabolt.hu/pictures/Barion-logo.png
IP
79.172.206.97:0
ASN
#42964 SigmaNet Szolgaltato es Kereskedelm Ltd

File type
PNG image data, 400 x 42, 8-bit/color RGBA, non-interlaced\012- data
Size
7.2 kB (7196 bytes)
Hash
59fee8cbc07c97c63323f84dc8e5c670
3f5b38d30c49f5c27bccf3fdf7acc320a589fc5c
41826ff97733fb530302d656858daabe376e8a6ee132e14c82d42e0f215860e2

HTTP Headers

GET /pictures/Barion-logo.png HTTP/1.1
Host: castrolmintabolt.hu
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://castrolmintabolt.hu/
Cookie: PHPSESSID=98trhh0kbsilfec84id4m8mveb
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Thu, 20 Oct 2022 23:54:12 GMT
Server: Apache
Last-Modified: Tue, 15 Jun 2021 07:28:34 GMT
ETag: "1c1c-5c4c8ebf3133d"
Accept-Ranges: bytes
Content-Length: 7196
X-Content-Type-Options: nosniff
X-Frame-Options: sameorigin
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: image/png

castrolmintabolt.hu/upload/files/308/facebook-icon-32454.png

79.172.206.97

200 OK

2.1 kB

URL HTTP/1.1
castrolmintabolt.hu/upload/files/308/facebook-icon-32454.png
IP
79.172.206.97:0
ASN
#42964 SigmaNet Szolgaltato es Kereskedelm Ltd

File type
PNG image data, 60 x 60, 8-bit/color RGBA, non-interlaced\012- data
Size
2.1 kB (2120 bytes)
Hash
c107956b42aff15304ca79730b444dbc
299c83f1497e93af95508130f2d056818da7a0af
6f3e7d8e5723e62b8388385172fec6c88e509cf7b07db38142aa1b97d3d133a2

HTTP Headers

GET /upload/files/308/facebook-icon-32454.png HTTP/1.1
Host: castrolmintabolt.hu
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://castrolmintabolt.hu/
Cookie: PHPSESSID=98trhh0kbsilfec84id4m8mveb
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Thu, 20 Oct 2022 23:54:12 GMT
Server: Apache
Last-Modified: Wed, 05 Jan 2022 08:27:48 GMT
ETag: "848-5d4d1876758d0"
Accept-Ranges: bytes
Content-Length: 2120
X-Content-Type-Options: nosniff
X-Frame-Options: sameorigin
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: image/png

castrolmintabolt.hu/upload/images/308/ne-vtelen-terv-167033-1--167033.jpg

79.172.206.97

200 OK

79 kB

URL HTTP/1.1
castrolmintabolt.hu/upload/images/308/ne-vtelen-terv-167033-1--167033.jpg
IP
79.172.206.97:0
ASN
#42964 SigmaNet Szolgaltato es Kereskedelm Ltd

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 100", baseline, precision 8, 307x252, components 3\012- data
Size
79 kB (78592 bytes)
Hash
ec585dc9d698403b9cf61972c2041bbf
dedd9d28d6fc37c52141762652d50afcdc0d4c8c
e2c99577787fd5668397d5e06130495448cc352c0d3338ccaec260f5a6bae93b

HTTP Headers

GET /upload/images/308/ne-vtelen-terv-167033-1--167033.jpg HTTP/1.1
Host: castrolmintabolt.hu
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://castrolmintabolt.hu/
Cookie: PHPSESSID=98trhh0kbsilfec84id4m8mveb
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Thu, 20 Oct 2022 23:54:12 GMT
Server: Apache
Last-Modified: Sat, 27 Nov 2021 14:29:54 GMT
ETag: "13300-5d1c60a8d98a6"
Accept-Ranges: bytes
Content-Length: 78592
X-Content-Type-Options: nosniff
X-Frame-Options: sameorigin
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: image/jpeg

castrolmintabolt.hu/upload/files/308/szuro-ajanlatkeres-16163.jpg

79.172.206.97

200 OK

18 kB

URL HTTP/1.1
castrolmintabolt.hu/upload/files/308/szuro-ajanlatkeres-16163.jpg
IP
79.172.206.97:0
ASN
#42964 SigmaNet Szolgaltato es Kereskedelm Ltd

File type
JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 390x193, components 3\012- data
Size
18 kB (17761 bytes)
Hash
532c9a6f88122de8e402ca39457f9db7
54aaf445da173a7cd564584a013fb242df48b6cd
8dd40a2626c87ed649fd2162f2b529928dbc441852460444de186d20b5ac7857

HTTP Headers

GET /upload/files/308/szuro-ajanlatkeres-16163.jpg HTTP/1.1
Host: castrolmintabolt.hu
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://castrolmintabolt.hu/
Cookie: PHPSESSID=98trhh0kbsilfec84id4m8mveb
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Thu, 20 Oct 2022 23:54:12 GMT
Server: Apache
Last-Modified: Sun, 20 Dec 2020 16:33:47 GMT
ETag: "4561-5b6e7e7e3420e"
Accept-Ranges: bytes
Content-Length: 17761
X-Content-Type-Options: nosniff
X-Frame-Options: sameorigin
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: image/jpeg

castrolmintabolt.hu/upload/files/308/castrol-autoszerviz-16158.jpg

79.172.206.97

200 OK

23 kB

URL HTTP/1.1
castrolmintabolt.hu/upload/files/308/castrol-autoszerviz-16158.jpg
IP
79.172.206.97:0
ASN
#42964 SigmaNet Szolgaltato es Kereskedelm Ltd

File type
JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 390x193, components 3\012- data
Size
23 kB (22591 bytes)
Hash
6b4cde559bfd0cd5e5013a5b6bdd367b
e75623d457dc74b3db95c64180743ce4ad3d937e
8f1d5aae5495bf98a458b9ac33564d35725196da455beea862549120918e3a58

HTTP Headers

GET /upload/files/308/castrol-autoszerviz-16158.jpg HTTP/1.1
Host: castrolmintabolt.hu
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://castrolmintabolt.hu/
Cookie: PHPSESSID=98trhh0kbsilfec84id4m8mveb
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Thu, 20 Oct 2022 23:54:12 GMT
Server: Apache
Last-Modified: Sun, 20 Dec 2020 15:51:24 GMT
ETag: "583f-5b6e7505325fd"
Accept-Ranges: bytes
Content-Length: 22591
X-Content-Type-Options: nosniff
X-Frame-Options: sameorigin
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: image/jpeg

castrolmintabolt.hu/upload/files/308/castrol-logo-sm-31987.png

79.172.206.97

200 OK

12 kB

URL HTTP/1.1
castrolmintabolt.hu/upload/files/308/castrol-logo-sm-31987.png
IP
79.172.206.97:0
ASN
#42964 SigmaNet Szolgaltato es Kereskedelm Ltd

File type
PNG image data, 200 x 51, 8-bit/color RGBA, non-interlaced\012- data
Size
12 kB (12388 bytes)
Hash
951d8482eef0be3c2ad0d50ab5d18eb1
d166839b7d84b9b4c65be81ea72f547691261814
cfec79a5a803ddfbfd80e76a2c05831669645fe7ad15a4ba01bcb9443cb16ffc

HTTP Headers

GET /upload/files/308/castrol-logo-sm-31987.png HTTP/1.1
Host: castrolmintabolt.hu
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://castrolmintabolt.hu/
Cookie: PHPSESSID=98trhh0kbsilfec84id4m8mveb
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Thu, 20 Oct 2022 23:54:12 GMT
Server: Apache
Last-Modified: Sun, 05 Dec 2021 15:55:03 GMT
ETag: "3064-5d26829d15212"
Accept-Ranges: bytes
Content-Length: 12388
X-Content-Type-Options: nosniff
X-Frame-Options: sameorigin
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: image/png

castrolmintabolt.hu/upload/images/308/supercar-2.jpg.img.1024.medium-167015.jpg

79.172.206.97

200 OK

83 kB

URL HTTP/1.1
castrolmintabolt.hu/upload/images/308/supercar-2.jpg.img.1024.medium-167015.jpg
IP
79.172.206.97:0
ASN
#42964 SigmaNet Szolgaltato es Kereskedelm Ltd

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 100", baseline, precision 8, 307x173, components 3\012- data
Size
83 kB (83282 bytes)
Hash
8d2b55472d276f9240970bbde08118c0
0f22115243522e96f76c94d1198d9d2970a0eefb
057ef229f8e422bde2fab88e83b8678c21a0e144afe8820c87a77c3e73a373d5

HTTP Headers

GET /upload/images/308/supercar-2.jpg.img.1024.medium-167015.jpg HTTP/1.1
Host: castrolmintabolt.hu
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://castrolmintabolt.hu/
Cookie: PHPSESSID=98trhh0kbsilfec84id4m8mveb
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Thu, 20 Oct 2022 23:54:12 GMT
Server: Apache
Last-Modified: Wed, 28 Jul 2021 14:43:02 GMT
ETag: "14552-5c83000e4ec86"
Accept-Ranges: bytes
Content-Length: 83282
X-Content-Type-Options: nosniff
X-Frame-Options: sameorigin
Keep-Alive: timeout=5, max=92
Connection: Keep-Alive
Content-Type: image/jpeg

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
a0738b138f262176b9a5984a8afe3127
513e61f1dd78a6c51077165a5e5391119b9d9228
04a69025a549be2708481584eb6a6a361c5541c0490d9c42ccba8161720e6075

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 20 Oct 2022 23:54:12 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

castrolmintabolt.hu/upload/files/308/olajcsere-16164.png

79.172.206.97

200 OK

98 kB

URL HTTP/1.1
castrolmintabolt.hu/upload/files/308/olajcsere-16164.png
IP
79.172.206.97:0
ASN
#42964 SigmaNet Szolgaltato es Kereskedelm Ltd

File type
PNG image data, 390 x 193, 8-bit/color RGB, non-interlaced\012- data
Size
98 kB (97807 bytes)
Hash
3598fdcdfe414479adaeec66e1546cd2
38c68a85d15bc2c3ead5cf4abcb9af12b1f97220
727c5f639f20e2b5d68c06f586de56a17efe648cfbee0b5fc29ad32382ba08b0

HTTP Headers

GET /upload/files/308/olajcsere-16164.png HTTP/1.1
Host: castrolmintabolt.hu
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://castrolmintabolt.hu/
Cookie: PHPSESSID=98trhh0kbsilfec84id4m8mveb
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Thu, 20 Oct 2022 23:54:12 GMT
Server: Apache
Last-Modified: Sun, 20 Dec 2020 16:33:47 GMT
ETag: "17e0f-5b6e7e7e3fd8e"
Accept-Ranges: bytes
Content-Length: 97807
X-Content-Type-Options: nosniff
X-Frame-Options: sameorigin
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: image/png

fonts.gstatic.com/s/robotocondensed/v25/ieVl2ZhZI2eCN5jzbjEETS9weq8-19y7DRs5.woff2

216.58.207.195

200 OK

12 kB

URL HTTP/2
fonts.gstatic.com/s/robotocondensed/v25/ieVl2ZhZI2eCN5jzbjEETS9weq8-19y7DRs5.woff2
IP
216.58.207.195:0
ASN
#15169 GOOGLE

File type
Web Open Font Format (Version 2), TrueType, length 11816, version 1.0\012- data
Size
12 kB (11816 bytes)
Hash
7fa68490a833a8fa395e5f3bffafc052
1880e3743548106319713b937e7769eee6b1ce21
30fa70635379ae1b58491bc41572760c1f3c8445265436a5fec4c36a197e4121

HTTP Headers

GET /s/robotocondensed/v25/ieVl2ZhZI2eCN5jzbjEETS9weq8-19y7DRs5.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://castrolmintabolt.hu
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 11816
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 18 Oct 2022 23:49:57 GMT
expires: Wed, 18 Oct 2023 23:49:57 GMT
cache-control: public, max-age=31536000
age: 173055
last-modified: Tue, 19 Apr 2022 18:52:18 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
a0738b138f262176b9a5984a8afe3127
513e61f1dd78a6c51077165a5e5391119b9d9228
04a69025a549be2708481584eb6a6a361c5541c0490d9c42ccba8161720e6075

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 20 Oct 2022 23:54:12 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

castrolmintabolt.hu/upload/files/308/head-bg-32453.png

79.172.206.97

200 OK

9.2 kB

URL HTTP/1.1
castrolmintabolt.hu/upload/files/308/head-bg-32453.png
IP
79.172.206.97:0
ASN
#42964 SigmaNet Szolgaltato es Kereskedelm Ltd

File type
PNG image data, 1920 x 82, 8-bit/color RGBA, non-interlaced\012- data
Size
9.2 kB (9242 bytes)
Hash
1d46e00d95ab2b55d59b0b9fc989746c
bd6b9d605f900ff72e0167ff6d5165c2e3bb060e
1c389a62f79379cce0aef8817ebca7c653f6a44bb08202e04692f1ad1a53ddbf

HTTP Headers

GET /upload/files/308/head-bg-32453.png HTTP/1.1
Host: castrolmintabolt.hu
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://castrolmintabolt.hu/index/style.php
Cookie: PHPSESSID=98trhh0kbsilfec84id4m8mveb
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Thu, 20 Oct 2022 23:54:12 GMT
Server: Apache
Last-Modified: Wed, 05 Jan 2022 08:16:45 GMT
ETag: "241a-5d4d15fdd77a5"
Accept-Ranges: bytes
Content-Length: 9242
X-Content-Type-Options: nosniff
X-Frame-Options: sameorigin
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive
Content-Type: image/png

castrolmintabolt.hu/fonts/font-awesome-5/webfonts/fa-solid-900.woff2

79.172.206.97

200 OK

74 kB

URL HTTP/1.1
castrolmintabolt.hu/fonts/font-awesome-5/webfonts/fa-solid-900.woff2
IP
79.172.206.97:0
ASN
#42964 SigmaNet Szolgaltato es Kereskedelm Ltd

File type
Web Open Font Format (Version 2), TrueType, length 74320, version 329.30998\012- data
Size
74 kB (74320 bytes)
Hash
3638e62ea50e6f5859b6a15276c25c87
f5aa1a463e223a294a42b314e1c63a614d594ec0
9e6bd5b2d75bba485d2337d020750744983a3521ec697adfe21b29ee4f14f6a9

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /fonts/font-awesome-5/webfonts/fa-solid-900.woff2 HTTP/1.1
Host: castrolmintabolt.hu
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://castrolmintabolt.hu/fonts/font-awesome-5/css/all.css
Cookie: PHPSESSID=98trhh0kbsilfec84id4m8mveb
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Thu, 20 Oct 2022 23:54:12 GMT
Server: Apache
Last-Modified: Sat, 09 Feb 2019 17:38:30 GMT
ETag: "12250-581798b3ff49c"
Accept-Ranges: bytes
Content-Length: 74320
X-Content-Type-Options: nosniff
X-Frame-Options: sameorigin
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: font/woff2

fonts.gstatic.com/s/robotocondensed/v25/ieVl2ZhZI2eCN5jzbjEETS9weq8-19K7DQ.woff2

216.58.207.195

200 OK

16 kB

URL HTTP/2
fonts.gstatic.com/s/robotocondensed/v25/ieVl2ZhZI2eCN5jzbjEETS9weq8-19K7DQ.woff2
IP
216.58.207.195:0
ASN
#15169 GOOGLE

File type
Web Open Font Format (Version 2), TrueType, length 15700, version 1.0\012- data
Size
16 kB (15700 bytes)
Hash
3d7f7413fca69bff4d231ebdc50aaab0
cb18e7943b6a8a0e3672d7242197c19a226b92e8
6b4fac99c39b9ee2693d87a2508d0c7d4b4859072966616bd1f6e18c5b2f9d36

HTTP Headers

GET /s/robotocondensed/v25/ieVl2ZhZI2eCN5jzbjEETS9weq8-19K7DQ.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://castrolmintabolt.hu
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15700
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 14 Oct 2022 16:04:44 GMT
expires: Sat, 14 Oct 2023 16:04:44 GMT
cache-control: public, max-age=31536000
age: 546568
last-modified: Tue, 19 Apr 2022 18:51:55 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
a0738b138f262176b9a5984a8afe3127
513e61f1dd78a6c51077165a5e5391119b9d9228
04a69025a549be2708481584eb6a6a361c5541c0490d9c42ccba8161720e6075

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 20 Oct 2022 23:54:12 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

castrolmintabolt.hu/upload/files/308/motorolaj-kereso-16167.png

79.172.206.97

200 OK

5.7 kB

URL HTTP/1.1
castrolmintabolt.hu/upload/files/308/motorolaj-kereso-16167.png
IP
79.172.206.97:0
ASN
#42964 SigmaNet Szolgaltato es Kereskedelm Ltd

File type
PNG image data, 128 x 128, 8-bit/color RGBA, non-interlaced\012- data
Size
5.7 kB (5748 bytes)
Hash
810d97bcd4230a2977e693e7c7c8fbc0
bd9f4b8c5dfcd3eac21b6c08432df469fdaa8da8
99ea86fc40668e70577750a7dafda73887a0fc2caeae5c8db701bde3428b3a6b

HTTP Headers

GET /upload/files/308/motorolaj-kereso-16167.png HTTP/1.1
Host: castrolmintabolt.hu
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://castrolmintabolt.hu/
Cookie: PHPSESSID=98trhh0kbsilfec84id4m8mveb
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Thu, 20 Oct 2022 23:54:12 GMT
Server: Apache
Last-Modified: Sun, 20 Dec 2020 17:00:00 GMT
ETag: "1674-5b6e8459c794a"
Accept-Ranges: bytes
Content-Length: 5748
X-Content-Type-Options: nosniff
X-Frame-Options: sameorigin
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: image/png

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
a0738b138f262176b9a5984a8afe3127
513e61f1dd78a6c51077165a5e5391119b9d9228
04a69025a549be2708481584eb6a6a361c5541c0490d9c42ccba8161720e6075

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 20 Oct 2022 23:54:12 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2

216.58.207.195

200 OK

16 kB

URL HTTP/2
fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2
IP
216.58.207.195:0
ASN
#15169 GOOGLE

File type
Web Open Font Format (Version 2), TrueType, length 15744, version 1.0\012- data
Size
16 kB (15744 bytes)
Hash
15d9f621c3bd1599f0169dcf0bd5e63e
7ca9c5967f3bb8bffeab24b639b49c1e7d03fa52
f6734f8177112c0839b961f96d813fcb189d81b60e96c33278c1983b6f419615

HTTP Headers

GET /s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://castrolmintabolt.hu
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15744
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 19 Oct 2022 19:34:08 GMT
expires: Thu, 19 Oct 2023 19:34:08 GMT
cache-control: public, max-age=31536000
age: 102004
last-modified: Wed, 11 May 2022 19:24:48 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
9f4b1d3c4fdfbd28fa4afc92115bd9f9
365125fe68f668bae6f3c13ef21d92bb00783ebe
92ea3ab34acb6f2464ef06496365dd1a54767519d3429346849898739bf05bb5

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 20 Oct 2022 23:54:12 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

castrolmintabolt.hu/upload/files/308/gumiabroncs-ertekesites3-1--18010.png

79.172.206.97

200 OK

125 kB

URL HTTP/1.1
castrolmintabolt.hu/upload/files/308/gumiabroncs-ertekesites3-1--18010.png
IP
79.172.206.97:0
ASN
#42964 SigmaNet Szolgaltato es Kereskedelm Ltd

File type
PNG image data, 333 x 167, 8-bit/color RGB, non-interlaced\012- data
Size
125 kB (124815 bytes)
Hash
881572c2309e929a397ec9dc5164fa87
d0194b6ebb90c567cf77b05ab4cc8eb56fc64897
8880b2a2ce98be5e75578fa3abef01457ad1615fa4beac24ee492293b522ce64

HTTP Headers

GET /upload/files/308/gumiabroncs-ertekesites3-1--18010.png HTTP/1.1
Host: castrolmintabolt.hu
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://castrolmintabolt.hu/
Cookie: PHPSESSID=98trhh0kbsilfec84id4m8mveb
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Thu, 20 Oct 2022 23:54:12 GMT
Server: Apache
Last-Modified: Sun, 21 Mar 2021 00:29:57 GMT
ETag: "1e78f-5be010c7ed378"
Accept-Ranges: bytes
Content-Length: 124815
X-Content-Type-Options: nosniff
X-Frame-Options: sameorigin
Keep-Alive: timeout=5, max=94
Connection: Keep-Alive
Content-Type: image/png

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
a0738b138f262176b9a5984a8afe3127
513e61f1dd78a6c51077165a5e5391119b9d9228
04a69025a549be2708481584eb6a6a361c5541c0490d9c42ccba8161720e6075

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 20 Oct 2022 23:54:12 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu7GxKOzY.woff2

216.58.207.195

200 OK

12 kB

URL HTTP/2
fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu7GxKOzY.woff2
IP
216.58.207.195:0
ASN
#15169 GOOGLE

File type
Web Open Font Format (Version 2), TrueType, length 11872, version 1.0\012- data
Size
12 kB (11872 bytes)
Hash
87ace20058325aa069320aa4af875dff
b743548770c46d905ae1ba06310bc001c587fe8e
3c23eb02de6b34e30f18cfb7167abd81a2cedfd1da60dfcb71989517ab3fb431

HTTP Headers

GET /s/roboto/v30/KFOmCnqEu92Fr1Mu7GxKOzY.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://castrolmintabolt.hu
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 11872
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 19 Oct 2022 19:35:48 GMT
expires: Thu, 19 Oct 2023 19:35:48 GMT
cache-control: public, max-age=31536000
age: 101904
last-modified: Wed, 11 May 2022 19:25:01 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

castrolmintabolt.hu/upload/files/308/fooldalkisdobozpng2x-1--18011.png

79.172.206.97

200 OK

73 kB

URL HTTP/1.1
castrolmintabolt.hu/upload/files/308/fooldalkisdobozpng2x-1--18011.png
IP
79.172.206.97:0
ASN
#42964 SigmaNet Szolgaltato es Kereskedelm Ltd

File type
PNG image data, 333 x 167, 8-bit/color RGBA, non-interlaced\012- data
Size
73 kB (72586 bytes)
Hash
38a6c8fd5f373dd54b356942ce7c5080
d28d1cbc0913c6f2a888815785ed2a00abd4b085
de0a94e568349537fa3dc8b532209097de1f07fda670d40ab63661a65562c816

HTTP Headers

GET /upload/files/308/fooldalkisdobozpng2x-1--18011.png HTTP/1.1
Host: castrolmintabolt.hu
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://castrolmintabolt.hu/
Cookie: PHPSESSID=98trhh0kbsilfec84id4m8mveb
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Thu, 20 Oct 2022 23:54:12 GMT
Server: Apache
Last-Modified: Sun, 21 Mar 2021 00:30:17 GMT
ETag: "11b8a-5be010da9697d"
Accept-Ranges: bytes
Content-Length: 72586
X-Content-Type-Options: nosniff
X-Frame-Options: sameorigin
Keep-Alive: timeout=5, max=91
Connection: Keep-Alive
Content-Type: image/png

castrolmintabolt.hu/upload/files/308/fooldalmajus2020png-1--18009.png

79.172.206.97

200 OK

109 kB

URL HTTP/1.1
castrolmintabolt.hu/upload/files/308/fooldalmajus2020png-1--18009.png
IP
79.172.206.97:0
ASN
#42964 SigmaNet Szolgaltato es Kereskedelm Ltd

File type
PNG image data, 333 x 167, 8-bit/color RGBA, non-interlaced\012- data
Size
109 kB (109429 bytes)
Hash
f50ad59a49037e8c909658933f49e089
d4c36b76f9fe3bf706ef5d6b165c7c62bba04724
a214695a24c62e2b6a8beaf98ba7ecbc983ac47b066a31361e9cf04fa40a6b0e

HTTP Headers

GET /upload/files/308/fooldalmajus2020png-1--18009.png HTTP/1.1
Host: castrolmintabolt.hu
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://castrolmintabolt.hu/
Cookie: PHPSESSID=98trhh0kbsilfec84id4m8mveb
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Thu, 20 Oct 2022 23:54:12 GMT
Server: Apache
Last-Modified: Sun, 21 Mar 2021 00:29:50 GMT
ETag: "1ab75-5be010c1357a8"
Accept-Ranges: bytes
Content-Length: 109429
X-Content-Type-Options: nosniff
X-Frame-Options: sameorigin
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive
Content-Type: image/png

castrolmintabolt.hu/upload/files/308/question-16181.png

79.172.206.97

200 OK

2.1 kB

URL HTTP/1.1
castrolmintabolt.hu/upload/files/308/question-16181.png
IP
79.172.206.97:0
ASN
#42964 SigmaNet Szolgaltato es Kereskedelm Ltd

File type
PNG image data, 55 x 55, 8-bit/color RGBA, non-interlaced\012- data
Size
2.1 kB (2105 bytes)
Hash
a5111a1da260c16695603fab5f95f0f9
92e64a4541cbe1b205d35a3b58612d6594f1fa3c
d8aa0e2d9552634daee898b8c95167c73d7767e43a22c9441169eb01c4e1a927

HTTP Headers

GET /upload/files/308/question-16181.png HTTP/1.1
Host: castrolmintabolt.hu
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://castrolmintabolt.hu/index/style.php
Cookie: PHPSESSID=98trhh0kbsilfec84id4m8mveb
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Thu, 20 Oct 2022 23:54:12 GMT
Server: Apache
Last-Modified: Mon, 21 Dec 2020 18:21:28 GMT
ETag: "839-5b6fd86d4842d"
Accept-Ranges: bytes
Content-Length: 2105
X-Content-Type-Options: nosniff
X-Frame-Options: sameorigin
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: image/png

castrolmintabolt.hu/upload/files/308/answer-16180.png

79.172.206.97

200 OK

2.7 kB

URL HTTP/1.1
castrolmintabolt.hu/upload/files/308/answer-16180.png
IP
79.172.206.97:0
ASN
#42964 SigmaNet Szolgaltato es Kereskedelm Ltd

File type
PNG image data, 55 x 55, 8-bit/color RGBA, non-interlaced\012- data
Size
2.7 kB (2673 bytes)
Hash
5a8b7d74bb93867e569d7251f83ed0e9
385bd185299c9811c20e7f54b0f756aa586b92c1
0b454de7cf536f11538259c0dbd87bb930c29dcbcd8e70538fc32e8168b5195b

HTTP Headers

GET /upload/files/308/answer-16180.png HTTP/1.1
Host: castrolmintabolt.hu
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://castrolmintabolt.hu/index/style.php
Cookie: PHPSESSID=98trhh0kbsilfec84id4m8mveb
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Thu, 20 Oct 2022 23:54:12 GMT
Server: Apache
Last-Modified: Mon, 21 Dec 2020 18:21:28 GMT
ETag: "a71-5b6fd86d4842d"
Accept-Ranges: bytes
Content-Length: 2673
X-Content-Type-Options: nosniff
X-Frame-Options: sameorigin
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive
Content-Type: image/png

ocsp.digicert.com/

93.184.220.29

200 OK

471 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
471 B (471 bytes)
Hash
3f290cedd01b4a81b6a04cc063ffae78
bee7247a8fe4989960ee73053fd70ac45859b066
9a334b44fbaf8c430e23d564b2ccc751f1313d60bfe545b49ab4f56cf8d9323d

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1411
Cache-Control: max-age=117752
Content-Type: application/ocsp-response
Date: Thu, 20 Oct 2022 23:54:12 GMT
Etag: "6351031a-1d7"
Expires: Sat, 22 Oct 2022 08:36:44 GMT
Last-Modified: Thu, 20 Oct 2022 08:13:14 GMT
Server: ECS (ska/F70A)
X-Cache: HIT
Content-Length: 471

castrolmintabolt.hu/upload/favicon/308.ico

79.172.206.97

200 OK

1.2 kB

URL HTTP/1.1
castrolmintabolt.hu/upload/favicon/308.ico
IP
79.172.206.97:0
ASN
#42964 SigmaNet Szolgaltato es Kereskedelm Ltd

File type
MS Windows icon resource - 1 icon, 16x16, 32 bits/pixel\012- data
Size
1.2 kB (1150 bytes)
Hash
2bc3c747a687e0ae2f0b626b7904ca68
82a0a3f0c64459aad53bf2164747ea60658c5f9b
331647b0e607d7bf8c8e78317b518ec8714c1ee90078d2b9bb82fd80cb7f18af

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /upload/favicon/308.ico HTTP/1.1
Host: castrolmintabolt.hu
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://castrolmintabolt.hu/
Cookie: PHPSESSID=98trhh0kbsilfec84id4m8mveb
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Thu, 20 Oct 2022 23:54:12 GMT
Server: Apache
Last-Modified: Wed, 24 Aug 2022 05:17:14 GMT
ETag: "47e-5e6f5cb34fd7f"
Accept-Ranges: bytes
Content-Length: 1150
X-Content-Type-Options: nosniff
X-Frame-Options: sameorigin
Keep-Alive: timeout=5, max=93
Connection: Keep-Alive
Content-Type: image/vnd.microsoft.icon

connect.facebook.net/en_US/fbevents.js

31.13.72.12

200 OK

27 kB

URL HTTP/2
connect.facebook.net/en_US/fbevents.js
IP
31.13.72.12:0
ASN
#32934 FACEBOOK

File type
ASCII text, with very long lines (64348)
Size
27 kB (27027 bytes)
Hash
71875f848896ee82a106224e048bd060
277a624e507dff2cd9cff104aa0c5618ca76e105
a22635e404a419027fc88eee705d254910d05d481953733d5e1fda4bc6ab3c5b

HTTP Headers

GET /en_US/fbevents.js HTTP/1.1
Host: connect.facebook.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://castrolmintabolt.hu/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
vary: Accept-Encoding
content-encoding: gzip
content-type: application/x-javascript; charset=utf-8
content-security-policy: default-src facebook.net *.facebook.net fbcdn.net *.fbcdn.net fbsbx.com *.fbsbx.com data: blob: 'self';script-src *.fbcdn.net *.facebook.net 'unsafe-inline' 'unsafe-eval' blob: data: 'self';style-src data: blob: 'unsafe-inline' facebook.net *.facebook.net fbcdn.net *.fbcdn.net fbsbx.com *.fbsbx.com;connect-src *.fbcdn.net *.facebook.net wss://*.fbcdn.net attachment.fbsbx.com blob: 'self';block-all-mixed-content;upgrade-insecure-requests;report-uri https://www.facebook.com/csp/reporting/?m=c&minimize=0;
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
pragma: public
cache-control: public, max-age=1200
expires: Sat, 01 Jan 2000 00:00:00 GMT
x-content-type-options: nosniff
x-xss-protection: 0
x-frame-options: DENY
strict-transport-security: max-age=31536000; preload; includeSubDomains
x-fb-debug: FpWFzeZOp+P4TLuwDrI7h0N8S5FCGXtQeRq/fA5ep7WtmOrFrsewBDz/EgMHGcjMNWdhfkPJzXFkXlVIrwsVfw==
priority: u=3,i
content-length: 27027
x-fb-trip-id: 1904183273
date: Thu, 20 Oct 2022 23:54:12 GMT
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

ocsp.digicert.com/

93.184.220.29

200 OK

471 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
471 B (471 bytes)
Hash
3f290cedd01b4a81b6a04cc063ffae78
bee7247a8fe4989960ee73053fd70ac45859b066
9a334b44fbaf8c430e23d564b2ccc751f1313d60bfe545b49ab4f56cf8d9323d

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1411
Cache-Control: max-age=117752
Content-Type: application/ocsp-response
Date: Thu, 20 Oct 2022 23:54:12 GMT
Etag: "6351031a-1d7"
Expires: Sat, 22 Oct 2022 08:36:44 GMT
Last-Modified: Thu, 20 Oct 2022 08:13:14 GMT
Server: ECS (ska/F70A)
X-Cache: HIT
Content-Length: 471

www.google-analytics.com/analytics.js

142.250.74.174

200 OK

20 kB

URL HTTP/2
www.google-analytics.com/analytics.js
IP
142.250.74.174:0
ASN
#15169 GOOGLE

File type
ASCII text, with very long lines (1325)
Size
20 kB (20039 bytes)
Hash
47e6f374ca946fddd5b59871b325736c
baa9282efc8785e84d247c3bff518eaa45f101c4
16580b5c87c58e5702e411f1888fdef511094e4cd6d62bb47d16291ffb25985e

HTTP Headers

GET /analytics.js HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://castrolmintabolt.hu/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
strict-transport-security: max-age=10886400; includeSubDomains; preload
x-content-type-options: nosniff
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 20039
date: Thu, 20 Oct 2022 22:41:09 GMT
expires: Fri, 21 Oct 2022 00:41:09 GMT
cache-control: public, max-age=7200
age: 4383
last-modified: Tue, 27 Sep 2022 22:01:05 GMT
content-type: text/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

www.google.com/maps/embed?pb=!1m18!1m12!1m3!1d2695.1681489032617!2d19.11647900358875!3d47.50611646173222!2m3!1f0!2f0!3f0!3m2!1i1024!2i768!4f13.1!3m3!1m2!1s0x4741dc9f959c6e39%3A0xe94a62868dd96504!2sCastrol%20Mintabolt%20%C3%A9s%20Castrol%20Aut%C3%B3szerviz%20-%20Castrol%20motorolajok%20%C3%A9s%20m%C3%A1rkaf%C3%BCggetlen%20aut%C3%B3szerviz!5e0!3m2!1shu!2shu!4v1617012224882!5m2!1shu!2shu

142.250.74.164

200 OK

1.6 kB

URL HTTP/2
www.google.com/maps/embed?pb=!1m18!1m12!1m3!1d2695.1681489032617!2d19.11647900358875!3d47.50611646173222!2m3!1f0!2f0!3f0!3m2!1i1024!2i768!4f13.1!3m3!1m2!1s0x4741dc9f959c6e39%3A0xe94a62868dd96504!2sCastrol%20Mintabolt%20%C3%A9s%20Castrol%20Aut%C3%B3szerviz%20-%20Castrol%20motorolajok%20%C3%A9s%20m%C3%A1rkaf%C3%BCggetlen%20aut%C3%B3szerviz!5e0!3m2!1shu!2shu!4v1617012224882!5m2!1shu!2shu
IP
142.250.74.164:0
ASN
#15169 GOOGLE

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (3331)
Size
1.6 kB (1566 bytes)
Hash
bbd0c3f262e0043c737e432ffb8c4ab8
3c9c36c2af47060c44ad7f4b6eca96ca28e6e20a
655d0ee09e9a2449832273a54c444f65b7dbe24c9242d54b0834f96869c555e2

HTTP Headers

GET /maps/embed?pb=!1m18!1m12!1m3!1d2695.1681489032617!2d19.11647900358875!3d47.50611646173222!2m3!1f0!2f0!3f0!3m2!1i1024!2i768!4f13.1!3m3!1m2!1s0x4741dc9f959c6e39%3A0xe94a62868dd96504!2sCastrol%20Mintabolt%20%C3%A9s%20Castrol%20Aut%C3%B3szerviz%20-%20Castrol%20motorolajok%20%C3%A9s%20m%C3%A1rkaf%C3%BCggetlen%20aut%C3%B3szerviz!5e0!3m2!1shu!2shu!4v1617012224882!5m2!1shu!2shu HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://castrolmintabolt.hu/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
content-type: text/html; charset=UTF-8
date: Thu, 20 Oct 2022 23:54:12 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
vary: Accept-Language
content-security-policy: object-src 'none';base-uri 'self';script-src 'nonce-34lkUmvTO_QcUkjGUv5HsQ' 'strict-dynamic' 'report-sample' 'unsafe-eval' 'unsafe-inline' https: http:;report-uri https://csp.withgoogle.com/csp/geo-maps-api/1
content-encoding: gzip
server: mafe
content-length: 1566
x-xss-protection: 0
server-timing: gfet4t7; dur=144
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
6894994e02f8f5ba7b41315e467ec514
20381d88239721ae42a0637d67417a19b41af581
df9e40affa62e2ef3a0797b0fbb3093c9906ce8254a035f547553d563a329505

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 20 Oct 2022 23:54:12 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

maps.gstatic.com/maps-api-v3/embed/js/50/10/intl/hu_ALL/init_embed.js

142.250.74.163

200 OK

155 kB

URL HTTP/2
maps.gstatic.com/maps-api-v3/embed/js/50/10/intl/hu_ALL/init_embed.js
IP
142.250.74.163:0
ASN
#15169 GOOGLE

File type
ASCII text, with very long lines (64471)
Size
155 kB (155208 bytes)
Hash
2e90acbfa26a7682cb56aa553cedce5a
62df4504ba7728b480ed30c63a90aa1c9b8094a4
e30adeb55e13f02c8177b781aef036185d1a23580bcc78b4305114a60897c5a5

HTTP Headers

GET /maps-api-v3/embed/js/50/10/intl/hu_ALL/init_embed.js HTTP/1.1
Host: maps.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.google.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding, Origin
content-encoding: gzip
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/maps-api-js
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="maps-api-js"
report-to: {"group":"maps-api-js","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/maps-api-js"}]}
content-length: 69361
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 19 Oct 2022 18:35:45 GMT
expires: Thu, 19 Oct 2023 18:35:45 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 17 Oct 2022 20:03:50 GMT
content-type: text/javascript
age: 105508
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

www.facebook.com/tr/?id=398316621223737&ev=PageView&dl=https%3A%2F%2Fcastrolmintabolt.hu%2F&rl=&if=false&ts=1666310064610&sw=1280&sh=1024&v=2.9.87&r=stable&ec=0&o=30&fbp=fb.1.1666310064609.1674789194&it=1666310064414&coo=false&rqm=GET

31.13.72.36

200 OK

0 B

URL HTTP/2
www.facebook.com/tr/?id=398316621223737&ev=PageView&dl=https%3A%2F%2Fcastrolmintabolt.hu%2F&rl=&if=false&ts=1666310064610&sw=1280&sh=1024&v=2.9.87&r=stable&ec=0&o=30&fbp=fb.1.1666310064609.1674789194&it=1666310064414&coo=false&rqm=GET
IP
31.13.72.36:0
ASN
#32934 FACEBOOK

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /tr/?id=398316621223737&ev=PageView&dl=https%3A%2F%2Fcastrolmintabolt.hu%2F&rl=&if=false&ts=1666310064610&sw=1280&sh=1024&v=2.9.87&r=stable&ec=0&o=30&fbp=fb.1.1666310064609.1674789194&it=1666310064414&coo=false&rqm=GET HTTP/1.1
Host: www.facebook.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://castrolmintabolt.hu/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: text/plain
access-control-allow-origin: 
access-control-allow-credentials: true
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
content-length: 0
server: proxygen-bolt
alt-svc: h3=":443"; ma=86400
date: Thu, 20 Oct 2022 23:54:13 GMT
X-Firefox-Spdy: h2

castrolmintabolt.hu/upload/files/308/castrol-edge-product-banner.jpg.img.1670.medium-16162.jpg

79.172.206.97

200 OK

129 kB

URL HTTP/1.1
castrolmintabolt.hu/upload/files/308/castrol-edge-product-banner.jpg.img.1670.medium-16162.jpg
IP
79.172.206.97:0
ASN
#42964 SigmaNet Szolgaltato es Kereskedelm Ltd

File type
JPEG image data, JFIF standard 1.02, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 1670x492, components 3\012- data
Size
129 kB (129024 bytes)
Hash
cfb25791f4dfc7b86285cc40dc859b50
975ba13ce4b9f8572c534b87c0ce63b94fa7df83
e8b05924320b0ed33733f501ebcf48b21bb89bd8e2be17aa7db472e2a0665bdd

HTTP Headers

GET /upload/files/308/castrol-edge-product-banner.jpg.img.1670.medium-16162.jpg HTTP/1.1
Host: castrolmintabolt.hu
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://castrolmintabolt.hu/
Cookie: PHPSESSID=98trhh0kbsilfec84id4m8mveb; _ga=GA1.2.956243909.1666310064; _gid=GA1.2.741719450.1666310064; _gat_gtag_UA_42485366_72=1; _fbp=fb.1.1666310064609.1674789194
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Thu, 20 Oct 2022 23:54:13 GMT
Server: Apache
Last-Modified: Sun, 20 Dec 2020 16:11:05 GMT
ETag: "1f800-5b6e796adbb4b"
Accept-Ranges: bytes
Content-Length: 129024
X-Content-Type-Options: nosniff
X-Frame-Options: sameorigin
Keep-Alive: timeout=5, max=92
Connection: Keep-Alive
Content-Type: image/jpeg

castrolmintabolt.hu/upload/files/308/magnatec-products-2-large-banner-16174.jpg

79.172.206.97

200 OK

1.2 MB

URL HTTP/1.1
castrolmintabolt.hu/upload/files/308/magnatec-products-2-large-banner-16174.jpg
IP
79.172.206.97:0
ASN
#42964 SigmaNet Szolgaltato es Kereskedelm Ltd

File type
JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], progressive, precision 8, 2000x820, components 3\012- data
Size
1.2 MB (1190367 bytes)
Hash
939a8d03c774ee02445c661e7cabba9b
f678099c8c773cf7a2c38ad87d043dae73bc7adb
ab6d8a8446385c302cab5cbe684bac908e46566e4ea664f557845e8adfd00c97

HTTP Headers

GET /upload/files/308/magnatec-products-2-large-banner-16174.jpg HTTP/1.1
Host: castrolmintabolt.hu
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://castrolmintabolt.hu/
Cookie: PHPSESSID=98trhh0kbsilfec84id4m8mveb; _ga=GA1.2.956243909.1666310064; _gid=GA1.2.741719450.1666310064; _gat_gtag_UA_42485366_72=1; _fbp=fb.1.1666310064609.1674789194
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Thu, 20 Oct 2022 23:54:13 GMT
Server: Apache
Last-Modified: Sun, 20 Dec 2020 19:01:33 GMT
ETag: "1229df-5b6e9f853ff84"
Accept-Ranges: bytes
Content-Length: 1190367
X-Content-Type-Options: nosniff
X-Frame-Options: sameorigin
Keep-Alive: timeout=5, max=94
Connection: Keep-Alive
Content-Type: image/jpeg

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
56aa4d33e288d7ec3acf3ac1a61ef7f9
ac2e2f3609cc604dde554e37471567c042bf8191
544823f794ac3e837c81449d896a9dcbe94f4d59a13e293d84b5af44531141d0

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "544823F794AC3E837C81449D896A9DCBE94F4D59A13E293D84B5AF44531141D0"
Last-Modified: Wed, 19 Oct 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5757
Expires: Fri, 21 Oct 2022 01:30:10 GMT
Date: Thu, 20 Oct 2022 23:54:13 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
56aa4d33e288d7ec3acf3ac1a61ef7f9
ac2e2f3609cc604dde554e37471567c042bf8191
544823f794ac3e837c81449d896a9dcbe94f4d59a13e293d84b5af44531141d0

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "544823F794AC3E837C81449D896A9DCBE94F4D59A13E293D84B5AF44531141D0"
Last-Modified: Wed, 19 Oct 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5757
Expires: Fri, 21 Oct 2022 01:30:10 GMT
Date: Thu, 20 Oct 2022 23:54:13 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
56aa4d33e288d7ec3acf3ac1a61ef7f9
ac2e2f3609cc604dde554e37471567c042bf8191
544823f794ac3e837c81449d896a9dcbe94f4d59a13e293d84b5af44531141d0

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "544823F794AC3E837C81449D896A9DCBE94F4D59A13E293D84B5AF44531141D0"
Last-Modified: Wed, 19 Oct 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5757
Expires: Fri, 21 Oct 2022 01:30:10 GMT
Date: Thu, 20 Oct 2022 23:54:13 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
56aa4d33e288d7ec3acf3ac1a61ef7f9
ac2e2f3609cc604dde554e37471567c042bf8191
544823f794ac3e837c81449d896a9dcbe94f4d59a13e293d84b5af44531141d0

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "544823F794AC3E837C81449D896A9DCBE94F4D59A13E293D84B5AF44531141D0"
Last-Modified: Wed, 19 Oct 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5757
Expires: Fri, 21 Oct 2022 01:30:10 GMT
Date: Thu, 20 Oct 2022 23:54:13 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.76.226

200 OK

2.3 kB

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
2.3 kB (2258 bytes)
Hash
13bfcc34253eb76bda0247e43b42e47b
e316baf7034a223bed2cebf89b31bc69517d6f6a
15cfe5efd96899e19cca76292a3b407c342b567ef67ecae451847258e2c3c1bc

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "544823F794AC3E837C81449D896A9DCBE94F4D59A13E293D84B5AF44531141D0"
Last-Modified: Wed, 19 Oct 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5757
Expires: Fri, 21 Oct 2022 01:30:10 GMT
Date: Thu, 20 Oct 2022 23:54:13 GMT
Connection: keep-alive

img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F66bcc767-1c09-4b79-aee1-3917407a2700.jpeg

34.120.237.76

200 OK

9.2 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F66bcc767-1c09-4b79-aee1-3917407a2700.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
9.2 kB (9195 bytes)
Hash
d369f8641d3489521afd62e112136f5b
088a3290733195efeb1d79dcc995c22b603bece0
b18601499cbb7bbcc1eaa464cec12c0287f8fab52a89e97973bd78fcb26ea918

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F66bcc767-1c09-4b79-aee1-3917407a2700.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 9195
x-amzn-requestid: e40418b8-2272-44a3-83d6-9465798793ad
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: aUsKLEk4oAMFsSQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6351c0a7-34994aca1e13dcab306bf1a4;Sampled=0
x-amzn-remapped-date: Thu, 20 Oct 2022 21:41:59 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: 86MQ2WBrOZ2pH88f27PxZ9f8tuu_9u6qNzyr4LZz6-yNbfjJdjgr0w==
via: 1.1 010c0731b9775a983eceaec0f5fa6a2e.cloudfront.net (CloudFront), 1.1 556b99c6be8d7078b9f067347c62df6a.cloudfront.net (CloudFront), 1.1 google
date: Thu, 20 Oct 2022 21:48:08 GMT
age: 7565
etag: "088a3290733195efeb1d79dcc995c22b603bece0"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

6.6 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb97a147f-f3d0-45e2-ab3e-cd90d0626589.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
6.6 kB (6551 bytes)
Hash
1c6ab9a31e082a0c0eaab2a0f526495a
c30e9954dcef66d4f14ac8618ebf2a1da0b3e12a
ca3a602c8af7b3e87957e54910663ea2bb72d008e14719af0f9fd7bd1a949f3e

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb97a147f-f3d0-45e2-ab3e-cd90d0626589.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 6551
x-amzn-requestid: 4deffe4d-e687-436e-938c-f8128bb84376
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Zql_MG5QoAMFahg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6340e9fa-66d4e2210fda5a80155f2466;Sampled=0
x-amzn-remapped-date: Sat, 08 Oct 2022 03:09:46 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: V5ilfg4GVL-HvWbuZrvFkZynDNCZDiBVNTDWjLdr2ZCLjH04NW3yqw==
via: 1.1 86b676273517904f44af31586adb06ae.cloudfront.net (CloudFront), 1.1 2324edbcb8fc72f617442c65f36a40fc.cloudfront.net (CloudFront), 1.1 google
date: Thu, 20 Oct 2022 07:30:12 GMT
age: 59041
etag: "c30e9954dcef66d4f14ac8618ebf2a1da0b3e12a"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

11 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4f52601f-0c98-4537-a72e-d72f9dbe4167.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
11 kB (10973 bytes)
Hash
6bd5e942443ffd011faf10dc88d92081
beff4ae9e24599addce8a961c955788045c56645
2c59d984971e73d497975032c23700b5602fccf403f4683a8047f5f42d4e261f

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4f52601f-0c98-4537-a72e-d72f9dbe4167.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 10973
x-amzn-requestid: 081470ca-0107-4052-be55-9c713105bb27
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: aUr-TEKPoAMFZfQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6351c05b-17199f8c0fc0fb7443a902f1;Sampled=0
x-amzn-remapped-date: Thu, 20 Oct 2022 21:40:43 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: h8elwC37DfS3PoG9NuRyfp-bqOoLi9KWeSWvwuY4mFMGG4HHC3jZAg==
via: 1.1 8dbfaf7df256a75768461d934659b6b2.cloudfront.net (CloudFront), 1.1 32c16f33c8f5601364fa8229b0d74dc2.cloudfront.net (CloudFront), 1.1 google
date: Thu, 20 Oct 2022 22:17:34 GMT
age: 5799
etag: "beff4ae9e24599addce8a961c955788045c56645"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

11 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4e577f39-aa15-4065-b955-f3cf59e0a65f.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
11 kB (11020 bytes)
Hash
2700a9d3641a903962e653eb6f97f058
42fcdd8866af4012a37c9e929feab11217af97cc
c983878fab0833edf963ef4120013c72b8df018bc860c926f558a313268bf3ad

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4e577f39-aa15-4065-b955-f3cf59e0a65f.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 11020
x-amzn-requestid: 39112660-41c4-4058-8db4-19763c39f6eb
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: aUr--FAVIAMFmHQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6351c05f-7a1d5cbb236c8a2d262d83d6;Sampled=0
x-amzn-remapped-date: Thu, 20 Oct 2022 21:40:47 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: apgmm6HH8_3W2Z8GZ1ulJIwRzkWApGHZXgW_zsIIC7npDHsw7c4ttg==
via: 1.1 0005a84c2971ff4f5bbb79e7ebc622a8.cloudfront.net (CloudFront), 1.1 b2f9564ebf9c745cc2ceae96d434977e.cloudfront.net (CloudFront), 1.1 google
date: Thu, 20 Oct 2022 22:17:23 GMT
age: 5810
etag: "42fcdd8866af4012a37c9e929feab11217af97cc"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

6.7 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5eaba338-753d-49fa-b65c-70aa4d08ec7d.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
6.7 kB (6730 bytes)
Hash
41720951bc9f58ea936fb65b472ef05a
b8739209bdacc59cbf87b49024f73650a9a0f113
9dd1c174c5a45cf4167c4c20752c2575ab4280f869f49dd9056907c9521afe36

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5eaba338-753d-49fa-b65c-70aa4d08ec7d.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 6730
x-amzn-requestid: 97d867bc-a398-4b2b-8dda-2497a105845e
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: aSsAnEP3oAMF2lw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6350f39d-3f56509c395ff64a396b5706;Sampled=0
x-amzn-remapped-date: Thu, 20 Oct 2022 07:07:09 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: HnxmItt9LDm9ME1eITiRbQQr9xr7PLXcdTCRGyDVvO2Zo6x9pjavsw==
via: 1.1 c7c3cdef911c9ee3c1a83a78f425dc5a.cloudfront.net (CloudFront), 1.1 cd858042f70b416ca05e042acf3908a4.cloudfront.net (CloudFront), 1.1 google
date: Thu, 20 Oct 2022 07:13:08 GMT
age: 60065
etag: "b8739209bdacc59cbf87b49024f73650a9a0f113"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

5.7 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8cf1b5d7-d878-479d-b3d9-7686ee0227ab.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
5.7 kB (5748 bytes)
Hash
ef2bbeb80f3b5ed8230377024febf22a
542d0ec1eb9ed3805327a415606dfdaebc760650
b05e48b03380a0f57cafd7e78682cdf78b087de20a8af3f9e83b286c3df27e19

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8cf1b5d7-d878-479d-b3d9-7686ee0227ab.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 5748
x-amzn-requestid: 43155cec-36ed-461c-80d8-4dd55a74f622
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: aUsKLHLgoAMFrpg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6351c0a7-5dc550c8214d049c6319189f;Sampled=0
x-amzn-remapped-date: Thu, 20 Oct 2022 21:41:59 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: hEjyTWJG-5hG2_dT0-lhuJ6LH846ls6-wLEXM-tfnXZQfmgP8ERdbw==
via: 1.1 9b311162717b41c968f6f00426d88aaa.cloudfront.net (CloudFront), 1.1 556b99c6be8d7078b9f067347c62df6a.cloudfront.net (CloudFront), 1.1 google
date: Thu, 20 Oct 2022 21:50:08 GMT
etag: "542d0ec1eb9ed3805327a415606dfdaebc760650"
content-type: image/jpeg
age: 7445
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmEU9fBBc4.woff2

216.58.207.195

200 OK

16 kB

URL HTTP/2
fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmEU9fBBc4.woff2
IP
216.58.207.195:0
ASN
#15169 GOOGLE

File type
Web Open Font Format (Version 2), TrueType, length 15920, version 1.0\012- data
Size
16 kB (15920 bytes)
Hash
3a44e06eb954b96aa043227f3534189d
23cef6993ddb2b2979e8e7647fc3763694e2ba7d
b019538234514166ec7665359d097403358f8a4c991901983922fb4d56989f1e

HTTP Headers

GET /s/roboto/v30/KFOlCnqEu92Fr1MmEU9fBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.google.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15920
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 19 Oct 2022 14:07:32 GMT
expires: Thu, 19 Oct 2023 14:07:32 GMT
cache-control: public, max-age=31536000
age: 121603
last-modified: Wed, 11 May 2022 19:24:45 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
b2f2dcfbd83f14e6cfab306caf84f40a
7878417dc2a940724f1742721ea179bd57b8efd0
d302e4d1ca92105eef9efc2b8b2d8ee146077cc783febd962a0e3f44a408fc00

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 20 Oct 2022 23:54:16 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
b2f2dcfbd83f14e6cfab306caf84f40a
7878417dc2a940724f1742721ea179bd57b8efd0
d302e4d1ca92105eef9efc2b8b2d8ee146077cc783febd962a0e3f44a408fc00

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 20 Oct 2022 23:54:16 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

pixel.barion.com/bp.js

172.66.41.42

200 OK

0 B

URL HTTP/2
pixel.barion.com/bp.js
IP
172.66.41.42:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /bp.js HTTP/1.1
Host: pixel.barion.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://castrolmintabolt.hu/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Thu, 20 Oct 2022 23:54:12 GMT
content-type: application/javascript
cache-control: max-age=2592000, public
cf-bgj: minify
cf-polished: origSize=68448
access-control-allow-credentials: true
access-control-allow-origin: *
content-security-policy: block-all-mixed-content
etag: W/"f050ec3c8b6d9ebbe2ae90042a6efcbd"
expires: Fri, 04 Nov 2022 13:25:42 GMT
last-modified: Thu, 07 Jul 2022 13:25:26 GMT
strict-transport-security: max-age=15552000
vary: Accept-Encoding, Origin
x-amz-request-id: 16FF8EEDA9ECD6AA
x-xss-protection: 1; mode=block
cf-cache-status: HIT
age: 1333343
x-content-type-options: nosniff
server: cloudflare
cf-ray: 75d5ad62a9edb50f-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

OpenPhish

PhishTank

Fortinet's Web Filter

mnemonic secure dns

Quad9 DNS

JavaScript (31)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations