Report - www.policlinicariovermelho.com.br/home

Report Overview

Submitted URL
www.policlinicariovermelho.com.br/home
IP
187.1.137.73
ASN
#28299 Cyberweb Networks Ltda
Submitted
2024-05-04 16:01:28
Access
public
Website Title
Policlínica Rio Vermelho
Final URL
www.policlinicariovermelho.com.br/home
Tags
urlquery detections
No alerts detected

Detections

urlquery
0
Network Intrusion Detection
0
Threat Detection Systems
82

Domain Summary

Domain / FQDN	Rank	Registered	First Seen	Last Seen	Sent	Received	IP
maps.gstatic.com	unknown	2008-02-11	2016-01-11	2024-05-03	430 B	63 kB	142.250.74.35
maps.googleapis.com	33876	2005-01-25	2019-10-17	2024-05-03	4.2 kB	386 kB	142.250.74.74
www.googletagmanager.com	75	2011-11-11	2013-05-22	2024-05-03	913 B	164 kB	142.250.74.72
www.policlinicariovermelho.com.br	unknown	2012-06-08	2014-03-21	2023-10-13	20 kB	6.4 MB	187.1.137.73
www.google.com	7	1997-09-15	2015-05-10	2024-03-23	722 B	2.1 kB	142.250.74.132

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

Public InfoSec YARA rules

No alerts detected

OpenPhish

Scan Date	Severity	Indicator	Alert
2024-04-25	medium	www.policlinicariovermelho.com.br/	WhatsApp
2024-04-25	medium	www.policlinicariovermelho.com.br/	WhatsApp
2024-04-25	medium	www.policlinicariovermelho.com.br/	WhatsApp
2024-04-25	medium	www.policlinicariovermelho.com.br/	WhatsApp
2024-05-04	medium	www.policlinicariovermelho.com.br/home	WhatsApp
2024-04-25	medium	www.policlinicariovermelho.com.br/	WhatsApp
2024-04-25	medium	www.policlinicariovermelho.com.br/	WhatsApp
2024-04-25	medium	www.policlinicariovermelho.com.br/	WhatsApp
2024-04-25	medium	www.policlinicariovermelho.com.br/	WhatsApp
2024-04-25	medium	www.policlinicariovermelho.com.br/	WhatsApp
2024-04-25	medium	www.policlinicariovermelho.com.br/	WhatsApp
2024-04-25	medium	www.policlinicariovermelho.com.br/	WhatsApp
2024-04-25	medium	www.policlinicariovermelho.com.br/	WhatsApp
2024-04-25	medium	www.policlinicariovermelho.com.br/	WhatsApp
2024-04-25	medium	www.policlinicariovermelho.com.br/	WhatsApp
2024-04-25	medium	www.policlinicariovermelho.com.br/	WhatsApp
2024-04-25	medium	www.policlinicariovermelho.com.br/	WhatsApp
2024-04-25	medium	www.policlinicariovermelho.com.br/	WhatsApp
2024-04-25	medium	www.policlinicariovermelho.com.br/	WhatsApp
2024-04-25	medium	www.policlinicariovermelho.com.br/	WhatsApp
2024-04-25	medium	www.policlinicariovermelho.com.br/	WhatsApp
2024-04-25	medium	www.policlinicariovermelho.com.br/	WhatsApp
2024-04-25	medium	www.policlinicariovermelho.com.br/	WhatsApp
2024-04-25	medium	www.policlinicariovermelho.com.br/	WhatsApp
2024-04-25	medium	www.policlinicariovermelho.com.br/	WhatsApp
2024-04-25	medium	www.policlinicariovermelho.com.br/	WhatsApp
2024-04-25	medium	www.policlinicariovermelho.com.br/	WhatsApp
2024-04-25	medium	www.policlinicariovermelho.com.br/	WhatsApp
2024-04-25	medium	www.policlinicariovermelho.com.br/	WhatsApp
2024-04-25	medium	www.policlinicariovermelho.com.br/	WhatsApp
2024-04-25	medium	www.policlinicariovermelho.com.br/	WhatsApp
2024-04-25	medium	www.policlinicariovermelho.com.br/	WhatsApp
2024-04-25	medium	www.policlinicariovermelho.com.br/	WhatsApp
2024-04-25	medium	www.policlinicariovermelho.com.br/	WhatsApp
2024-04-25	medium	www.policlinicariovermelho.com.br/	WhatsApp
2024-04-25	medium	www.policlinicariovermelho.com.br/	WhatsApp
2024-04-25	medium	www.policlinicariovermelho.com.br/	WhatsApp
2024-04-25	medium	www.policlinicariovermelho.com.br/	WhatsApp
2024-04-25	medium	www.policlinicariovermelho.com.br/	WhatsApp
2024-04-25	medium	www.policlinicariovermelho.com.br/	WhatsApp
2024-04-25	medium	www.policlinicariovermelho.com.br/	WhatsApp

PhishTank

No alerts detected

mnemonic secure dns

No alerts detected

Quad9 DNS

No alerts detected

ThreatFox

No alerts detected

JavaScript (20)

	URL	Size	First Seen	Last Seen
	maps.googleapis.com/maps-api-v3/api/js/56/11/map.js	76 kB	2024-05-03	2024-05-08
Pretty URL maps.googleapis.com/maps-api-v3/api/js/56/11/map.js IP 142.250.74.74 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2024-05-03 01:39:26 Last Seen2024-05-08 22:05:06 Times Seen108 Hash 4dc29aac68404911a51e89d8033bdf07 7fd38bbcf95d13474710a630046b23777b5809a7 015915b914baa3754ad388605726432beb01fb2c0de2baa2385354073ffcf212 Loading...

	maps.googleapis.com/maps-api-v3/api/js/56/11/overlay.js	3.4 kB	2024-05-03	2024-05-08
Pretty URL maps.googleapis.com/maps-api-v3/api/js/56/11/overlay.js IP 142.250.74.74 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2024-05-03 01:39:26 Last Seen2024-05-08 22:05:05 Times Seen87 Hash 87d24719537b7cb864c35b840536883b ba91a3f6b58033550e8f76518b82bed79e57f522 7a764cabec07cf84e771f7cc65d7d43263fc979f24eb13d4155f7a1bfb2912ce Loading...

	www.policlinicariovermelho.com.br/home	90 B	2023-03-13	2024-05-04
Pretty URL www.policlinicariovermelho.com.br/home IP 187.1.137.73 ASN #28299 Cyberweb Networks Ltda Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-13 02:31:08 Last Seen2024-05-04 18:01:31 Times Seen5 Hash 0783639294ea5c0ec7c3518b33bdbc39 f2359455809ae1bee17635813d47081ae55dec6d e8624535f9bc88484a20ea25e5464b831974c41fd70866b32d7e87b43a7580c5 Loading...

	www.googletagmanager.com/gtag/js?id=UA-127176008-1	208 kB	2024-05-04	2024-05-04
Pretty URL www.googletagmanager.com/gtag/js?id=UA-127176008-1 IP 142.250.74.72 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2024-05-04 18:01:31 Last Seen2024-05-04 18:01:31 Times Seen2 Hash c37cfd3de34e53f67c9ba6194aab947a 3fe1efbb04e9875f7782add44b4917dac6fa22ca fed8bf070002f93de1c51e3bd39bdd43d1f01650b3467a240362c1ccca5d344e Loading...

	maps.googleapis.com/maps-api-v3/api/js/56/11/common.js	262 kB	2024-05-02	2024-05-08
Pretty URL maps.googleapis.com/maps-api-v3/api/js/56/11/common.js IP 142.250.74.74 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2024-05-02 22:46:54 Last Seen2024-05-08 22:05:05 Times Seen267 Hash c539ef27b29c256473721ade9a64cdf3 ff1d3c458af547b8ade347dca5d395b2f179a96a 69c1875ee6d8b36898661ebf5c49d5763a83e26c8cf353889283867c4dbffc6b Loading...

	maps.googleapis.com/maps-api-v3/api/js/56/11/onion.js	28 kB	2024-05-03	2024-05-08
Pretty URL maps.googleapis.com/maps-api-v3/api/js/56/11/onion.js IP 142.250.74.74 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2024-05-03 01:39:25 Last Seen2024-05-08 22:05:05 Times Seen94 Hash a1a5bdec7eefda3a330d1d8516d3a12c f83d7be53d3e9b1a96b31db52b9fa02f3979cce7 46129f2497bb67eab877683b031a2b57573bc4510181a9a22cd84745e60e6977 Loading...

	connect.facebook.net/pt_BR/sdk.js#xfbml=1&version=v3.0&appId=601151913580634&autoLogAppEvents=1	17 kB	2023-05-05	2024-05-18
Pretty URL connect.facebook.net/pt_BR/sdk.js#xfbml=1&version=v3.0&appId=601151913580634&autoLogAppEvents=1 IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-05-05 22:33:37 Last Seen2024-05-18 12:20:31 Times Seen45641 Hash b938e0b835c600209bdaae9d8ccda6d7 d5ee79d277057e05f002a18381722b5eb75d3883 d1b95aeb57c3285042e1e24c00cc56a8560d16daf7ee5cdfd5c75296b21ac91b Loading...

	www.google-analytics.com/analytics.js	4.7 kB	2023-04-11	2024-05-18
Pretty URL www.google-analytics.com/analytics.js IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-04-11 21:07:53 Last Seen2024-05-18 12:20:01 Times Seen349741 Hash f24128d0c9cba7be2916c693427a3483 1b6397d496ea896ebc2018b01b995cee4f166029 58173de4697da1a218f04c3a783a733bab4e769ceabc37cd42da9dc3e036a7e8 Loading...

	www.googletagmanager.com/gtag/js?id=G-5NG9Q76KSH&l=dataLayer&cx=c	248 kB	2024-05-04	2024-05-04
Pretty URL www.googletagmanager.com/gtag/js?id=G-5NG9Q76KSH&l=dataLayer&cx=c IP 142.250.74.72 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2024-05-04 18:01:31 Last Seen2024-05-04 18:01:31 Times Seen2 Hash 82dda78261ed03dcae2df849f08a8721 d82081441f1ea6df8f0c6efa113751c054b9bd3b f115d765c0e6d16621cd0c2942c0c3163f90d83e6122d0d5c1c0e6c621bdb27c Loading...

	www.google.com/maps/embed?pb=!1m14!1m8!1m3!1d15549.969989192014!2d-38.4825777!3d-13.0042789!3m2!1i1024!2i768!4f13.1!3m3!1m2!1s0x0%3A0xbab06ccd3696a9f2!2sPoliclinica+Do+Rio+Vermelho!5e0!3m2!1spt-BR!2sbr!4v1547219693071	0 B	2023-03-07	2024-05-18
Pretty URL www.google.com/maps/embed?pb=!1m14!1m8!1m3!1d15549.969989192014!2d-38.4825777!3d-13.0042789!3m2!1i1024!2i768!4f13.1!3m3!1m2!1s0x0%3A0xbab06ccd3696a9f2!2sPoliclinica+Do+Rio+Vermelho!5e0!3m2!1spt-BR!2sbr!4v1547219693071 IP 142.250.74.132 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-07 01:01:59 Last Seen2024-05-18 12:31:34 Times Seen37785043 Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 Loading...

	maps.googleapis.com/maps/api/js?client=google-maps-embed&paint_origin=&libraries=geometry,search&v=weekly&loading=async&language=en_US&callback=onApiLoad	212 kB	2024-05-04	2024-05-04
Pretty URL maps.googleapis.com/maps/api/js?client=google-maps-embed&paint_origin=&libraries=geometry,search&v=weekly&loading=async&language=en_US&callback=onApiLoad IP 142.250.74.74 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2024-05-04 04:14:57 Last Seen2024-05-04 20:05:10 Times Seen16 Hash e3ecdc499df19899d058ddd762d35d9c 72aab29aaffde6dc26fbb691ddca0da1db22f24a acdc2be13973a04150a12bd049f3f52c92d6ad2750bd38c90b253454981bb286 Loading...

	maps.gstatic.com/maps-api-v3/embed/js/56/11/init_embed.js	234 kB	2024-05-03	2024-05-08
Pretty URL maps.gstatic.com/maps-api-v3/embed/js/56/11/init_embed.js IP 142.250.74.35 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2024-05-03 01:39:26 Last Seen2024-05-08 22:05:05 Times Seen91 Hash caeecd26c33cf8a317e5ce88603f022d bdf67de10dc32305a5e732a497bd6ee193de525f 3dc231dd23d38ec266f3f04e2972af9047d46e4054083b0f065cc0bf106e0d00 Loading...

	maps.googleapis.com/maps-api-v3/api/js/56/11/search_impl.js	3.4 kB	2024-05-03	2024-05-08
Pretty URL maps.googleapis.com/maps-api-v3/api/js/56/11/search_impl.js IP 142.250.74.74 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2024-05-03 01:39:26 Last Seen2024-05-08 22:05:05 Times Seen81 Hash fc6ba34751534e382c2951cc9ecfa1e9 91b0b36fdd6f3edeadbcc98e3dda5f2060243e08 ad1a3afb7b432b36a7a13d4c03e8cffcb6c1b98c36c22251e13fee7699fb8fb9 Loading...

	unknown	150 B	2023-04-24	2024-05-04
Pretty Introduced by eventHandler Embedded in HTML false Observations First Seen2023-04-24 21:23:09 Last Seen2024-05-04 18:01:31 Times Seen7 Hash 952c337d05e6e5320632610958d3d89c cd37dcab6459a64c9c146c08d9c2dc762a0a8a4d 79c964d23a0f7aa7c99d06bcfde21eeb0a0b4d4b2a9c416ac09e5f7ef3a170d4 Loading...

	www.policlinicariovermelho.com.br/home	155 B	2023-03-08	2024-05-04
Pretty URL www.policlinicariovermelho.com.br/home IP 187.1.137.73 ASN #28299 Cyberweb Networks Ltda Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-08 06:21:50 Last Seen2024-05-04 18:01:31 Times Seen10 Hash 10c53f73c8ca3f33c7985c0717dbe962 116a65260481c79888688185d3c6ca4207bc262e 9112bd7a79c2dd37ff510e9af2445574e506add43b3b00260e94648b510d949b Loading...

	www.policlinicariovermelho.com.br/sandbox%20eval%20code	147 B	2023-04-11	2024-05-18
Pretty URL www.policlinicariovermelho.com.br/sandbox%20eval%20code IP 0.0.0.0 ASN #0 Introduced by Embedded in HTML false Observations First Seen2023-04-11 21:07:53 Last Seen2024-05-18 12:20:02 Times Seen350253 Hash 92b651082ce234f66bb544e678befda3 14c21c55ddce43b6f677caadf51d4ab98c6a3df8 25d57d1d97abeb84531d3d3e5754dd5cb19a2c115edfa7cfc7af8247084faded Loading...

	maps.googleapis.com/maps-api-v3/api/js/56/11/util.js	187 kB	2024-05-02	2024-05-08
Pretty URL maps.googleapis.com/maps-api-v3/api/js/56/11/util.js IP 142.250.74.74 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2024-05-02 22:46:54 Last Seen2024-05-08 22:05:05 Times Seen266 Hash 6b83f9fe82267b670ae8b10a07772c75 c7d70e3dc62c283fc1adfbf6797a684058ef18a2 30879513240591048e7ebec42b40fe68b006b44515b60c3dde3a0919d154ac25 Loading...

	www.policlinicariovermelho.com.br/home	280 B	2023-03-08	2024-05-04
Pretty URL www.policlinicariovermelho.com.br/home IP 187.1.137.73 ASN #28299 Cyberweb Networks Ltda Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-08 06:21:50 Last Seen2024-05-04 18:01:31 Times Seen10 Hash c1d3189ae0eb4c5e50658a5313341853 23b18b99e477b903bdace08f7db82233345dd172 de6a78c1bf676753a260e1dbfd92176140d80ace9c87114df3332962722d38bc Loading...

	www.policlinicariovermelho.com.br/home	342 B	2023-03-08	2024-05-04
Pretty URL www.policlinicariovermelho.com.br/home IP 187.1.137.73 ASN #28299 Cyberweb Networks Ltda Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-08 06:21:50 Last Seen2024-05-04 18:01:31 Times Seen10 Hash 60f4b1ff396ae9d93506bbf8bc9e3f8b b558821531c618df911ea82dc580290c03c34a33 5a614cde10fc298bde706730ab314d602c78a53c41276fb792834fc6c259457d Loading...

	moz-extension://374908d2-0475-4f5d-b9f6-d1abf756a6ed/lib/shim_messaging_helper.js	1.7 kB	2023-05-05	2024-05-18
Pretty URL moz-extension://374908d2-0475-4f5d-b9f6-d1abf756a6ed/lib/shim_messaging_helper.js IP 0.0.0.0 ASN #0 Introduced by Embedded in HTML false Observations First Seen2023-05-05 22:33:37 Last Seen2024-05-18 12:20:32 Times Seen46190 Hash 865f01cbb34eb505834e826380d7dc2e c239ccc37191f1be78dfaa6bb3f1da5d314fdf9e 30ed6392b8de4590bd974a4a797ee0b12b382f2141738115bfd2d692cfa6ec17 Loading...

HTTP Transactions (54)

URL IP Response Size

www.googletagmanager.com/gtag/js?id=UA-127176008-1

142.250.74.72

200 OK

75 kB

URL GET HTTP/2
www.googletagmanager.com/gtag/js?id=UA-127176008-1
IP
142.250.74.72:443
ASN
#15169 GOOGLE

Requested by
https://www.policlinicariovermelho.com.br/home
Certificate
IssuerGoogle Trust Services LLC
Subject*.google-analytics.com
Fingerprint93:6B:D2:9D:92:BE:2D:D8:02:67:82:83:5E:EF:A3:F9:13:F3:26:AE
ValidityTue, 16 Apr 2024 03:18:45 GMT - Tue, 09 Jul 2024 03:18:44 GMT

File type
JavaScript source, ASCII text, with very long lines (4179)
Size
75 kB (74752 bytes)
Hash
c37cfd3de34e53f67c9ba6194aab947a
3fe1efbb04e9875f7782add44b4917dac6fa22ca
fed8bf070002f93de1c51e3bd39bdd43d1f01650b3467a240362c1ccca5d344e

HTTP Headers

GET /gtag/js?id=UA-127176008-1 HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.policlinicariovermelho.com.br/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Sat, 04 May 2024 16:01:02 GMT
expires: Sat, 04 May 2024 16:01:02 GMT
cache-control: private, max-age=900
last-modified: Sat, 04 May 2024 15:00:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 74752
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

www.policlinicariovermelho.com.br/css/padrao/default.css

187.1.137.73

200 OK

8.7 kB

URL GET HTTP/2
www.policlinicariovermelho.com.br/css/padrao/default.css
IP
187.1.137.73:443
ASN
#28299 Cyberweb Networks Ltda

Requested by
https://www.policlinicariovermelho.com.br/home
Certificate
IssuerLet's Encrypt
Subjectpoliclinicariovermelho.com.br
Fingerprint45:15:BA:1C:E7:20:35:94:28:29:E9:6B:C6:B7:ED:FF:2E:F8:1C:46
ValidityThu, 02 May 2024 02:10:24 GMT - Wed, 31 Jul 2024 02:10:23 GMT

File type
Unicode text, UTF-8 text
Size
8.7 kB (8657 bytes)
Hash
297fa248cb69fd8e352bd38ff918ef79
d4be8af11a57b385f9d9b9df534a4ff317eaa806
f2d09f76b56c7a4136650721a1eb590cd0cf3503c40a35478c89d7b9e4dc9ecd

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	WhatsApp

HTTP Headers

GET /css/padrao/default.css HTTP/1.1
Host: www.policlinicariovermelho.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.policlinicariovermelho.com.br/home
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
last-modified: Wed, 21 Sep 2022 20:34:29 GMT
etag: "21d1-5e935df26daff"
accept-ranges: bytes
content-length: 8657
cache-control: max-age=1800
content-type: text/css
date: Sat, 04 May 2024 16:01:02 GMT
server: Apache
X-Firefox-Spdy: h2

www.policlinicariovermelho.com.br/css/plugins/jquery.fancybox.min.css

187.1.137.73

200 OK

10 kB

URL GET HTTP/2
www.policlinicariovermelho.com.br/css/plugins/jquery.fancybox.min.css
IP
187.1.137.73:443
ASN
#28299 Cyberweb Networks Ltda

Requested by
https://www.policlinicariovermelho.com.br/home
Certificate
IssuerLet's Encrypt
Subjectpoliclinicariovermelho.com.br
Fingerprint45:15:BA:1C:E7:20:35:94:28:29:E9:6B:C6:B7:ED:FF:2E:F8:1C:46
ValidityThu, 02 May 2024 02:10:24 GMT - Wed, 31 Jul 2024 02:10:23 GMT

File type
Unicode text, UTF-8 text, with very long lines (10423), with no line terminators
Size
10 kB (10424 bytes)
Hash
2c7a9e5694ffa1b6e9c39e10dadc487e
a69aefe10474fdf70ee06349dc7191497fe1d81f
52974e1f2c9fb2f17952ee8185bb18407775682348bf1848083163cf841b10da

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	WhatsApp

HTTP Headers

GET /css/plugins/jquery.fancybox.min.css HTTP/1.1
Host: www.policlinicariovermelho.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.policlinicariovermelho.com.br/home
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
last-modified: Wed, 21 Sep 2022 20:34:32 GMT
etag: "28b8-5e935df4f088a"
accept-ranges: bytes
content-length: 10424
cache-control: max-age=1800
content-type: text/css
date: Sat, 04 May 2024 16:01:02 GMT
server: Apache
X-Firefox-Spdy: h2

www.policlinicariovermelho.com.br/css/plugins/owl.carousel.css

187.1.137.73

200 OK

4.6 kB

URL GET HTTP/2
www.policlinicariovermelho.com.br/css/plugins/owl.carousel.css
IP
187.1.137.73:443
ASN
#28299 Cyberweb Networks Ltda

Requested by
https://www.policlinicariovermelho.com.br/home
Certificate
IssuerLet's Encrypt
Subjectpoliclinicariovermelho.com.br
Fingerprint45:15:BA:1C:E7:20:35:94:28:29:E9:6B:C6:B7:ED:FF:2E:F8:1C:46
ValidityThu, 02 May 2024 02:10:24 GMT - Wed, 31 Jul 2024 02:10:23 GMT

File type
ASCII text
Size
4.6 kB (4614 bytes)
Hash
b51416af9e8adbe3d16f5f2526aba221
097c8d67412f44534449ed4cadc6dd22b025801d
dd7b97c7ad9d7b3eb79bdc728bcbc6a7ab8e3d5db0421fb0dd16d34f3dc88277

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	WhatsApp

HTTP Headers

GET /css/plugins/owl.carousel.css HTTP/1.1
Host: www.policlinicariovermelho.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.policlinicariovermelho.com.br/home
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
last-modified: Wed, 21 Sep 2022 20:34:32 GMT
etag: "1206-5e935df51bfe0"
accept-ranges: bytes
content-length: 4614
cache-control: max-age=1800
content-type: text/css
date: Sat, 04 May 2024 16:01:02 GMT
server: Apache
X-Firefox-Spdy: h2

www.policlinicariovermelho.com.br/css/main.css

187.1.137.73

200 OK

152 kB

URL GET HTTP/2
www.policlinicariovermelho.com.br/css/main.css
IP
187.1.137.73:443
ASN
#28299 Cyberweb Networks Ltda

Requested by
https://www.policlinicariovermelho.com.br/home
Certificate
IssuerLet's Encrypt
Subjectpoliclinicariovermelho.com.br
Fingerprint45:15:BA:1C:E7:20:35:94:28:29:E9:6B:C6:B7:ED:FF:2E:F8:1C:46
ValidityThu, 02 May 2024 02:10:24 GMT - Wed, 31 Jul 2024 02:10:23 GMT

File type
ASCII text
Size
152 kB (152432 bytes)
Hash
580ca1896512401428a7d5ac3022b4cb
752821f8560c3ae165772a94066d52ac725cb25b
700c64232aa968897cddc6b724481976155fb8911909867bf58e85539cf8f9fc

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	WhatsApp

HTTP Headers

GET /css/main.css HTTP/1.1
Host: www.policlinicariovermelho.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.policlinicariovermelho.com.br/home
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
last-modified: Wed, 21 Sep 2022 20:34:27 GMT
etag: "25370-5e935defe5783"
accept-ranges: bytes
content-length: 152432
cache-control: max-age=1800
content-type: text/css
date: Sat, 04 May 2024 16:01:02 GMT
server: Apache
X-Firefox-Spdy: h2

www.policlinicariovermelho.com.br/home

187.1.137.73

200 OK

21 kB

URL User Request GET HTTP/2
www.policlinicariovermelho.com.br/home
IP
187.1.137.73:443
ASN
#28299 Cyberweb Networks Ltda

Certificate
IssuerLet's Encrypt
Subjectpoliclinicariovermelho.com.br
Fingerprint45:15:BA:1C:E7:20:35:94:28:29:E9:6B:C6:B7:ED:FF:2E:F8:1C:46
ValidityThu, 02 May 2024 02:10:24 GMT - Wed, 31 Jul 2024 02:10:23 GMT

File type
gzip compressed data, from Unix
Size
21 kB (21375 bytes)
Hash
da930616b49b5f1ac575c101917b1d2d
f0d980373c155b3ab208d00b60da030584868cfa
e12119ef9f6abfc31b5627d0cfae6a74734973b4f3024f28bc0eb575842af291

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	WhatsApp

HTTP Headers

GET /home HTTP/1.1
Host: www.policlinicariovermelho.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-encoding: gzip
vary: Accept-Encoding
content-type: text/html; charset=utf-8
date: Sat, 04 May 2024 16:01:01 GMT
server: Apache
X-Firefox-Spdy: h2

www.policlinicariovermelho.com.br/css/padrao/linkFontes.css

187.1.137.73

200 OK

5.1 kB

URL GET HTTP/2
www.policlinicariovermelho.com.br/css/padrao/linkFontes.css
IP
187.1.137.73:443
ASN
#28299 Cyberweb Networks Ltda

Requested by
https://www.policlinicariovermelho.com.br/home
Certificate
IssuerLet's Encrypt
Subjectpoliclinicariovermelho.com.br
Fingerprint45:15:BA:1C:E7:20:35:94:28:29:E9:6B:C6:B7:ED:FF:2E:F8:1C:46
ValidityThu, 02 May 2024 02:10:24 GMT - Wed, 31 Jul 2024 02:10:23 GMT

File type
ASCII text
Size
5.1 kB (5076 bytes)
Hash
87c1df49e625e5a4d2b6b93de32239e6
cfe8fda0bc71477741328f5840bc3c22e199b58b
cdc662253ce768de6cb677f8b041f5a4794ce41ef0ddca280a37b95559bdece9

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	WhatsApp

HTTP Headers

GET /css/padrao/linkFontes.css HTTP/1.1
Host: www.policlinicariovermelho.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.policlinicariovermelho.com.br/home
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
last-modified: Wed, 21 Sep 2022 20:34:29 GMT
etag: "13d4-5e935df25dd14"
accept-ranges: bytes
content-length: 5076
cache-control: max-age=1800
content-type: text/css
date: Sat, 04 May 2024 16:01:02 GMT
server: Apache
X-Firefox-Spdy: h2

www.policlinicariovermelho.com.br/images/icon-artigo.png

187.1.137.73

200 OK

1.3 kB

URL GET HTTP/2
www.policlinicariovermelho.com.br/images/icon-artigo.png
IP
187.1.137.73:443
ASN
#28299 Cyberweb Networks Ltda

Requested by
https://www.policlinicariovermelho.com.br/home
Certificate
IssuerLet's Encrypt
Subjectpoliclinicariovermelho.com.br
Fingerprint45:15:BA:1C:E7:20:35:94:28:29:E9:6B:C6:B7:ED:FF:2E:F8:1C:46
ValidityThu, 02 May 2024 02:10:24 GMT - Wed, 31 Jul 2024 02:10:23 GMT

File type
PNG image data, 23 x 25, 8-bit/color RGBA, non-interlaced
Size
1.3 kB (1260 bytes)
Hash
84d06e60b91dbbd64b95054c9fa23822
1da67b9042d9b2b8be71dc447b17bb98de1b3810
94619e2f2b10a9d57fb9bcc85320db8eadc2fa6910e8a63cd193d260613ee979

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	WhatsApp

HTTP Headers

GET /images/icon-artigo.png HTTP/1.1
Host: www.policlinicariovermelho.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.policlinicariovermelho.com.br/home
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
last-modified: Wed, 21 Sep 2022 20:35:20 GMT
etag: "4ec-5e935e2253611"
accept-ranges: bytes
content-length: 1260
cache-control: max-age=1800
content-type: image/png
date: Sat, 04 May 2024 16:01:02 GMT
server: Apache
X-Firefox-Spdy: h2

www.policlinicariovermelho.com.br/images/logo.png

187.1.137.73

200 OK

26 kB

URL GET HTTP/2
www.policlinicariovermelho.com.br/images/logo.png
IP
187.1.137.73:443
ASN
#28299 Cyberweb Networks Ltda

Requested by
https://www.policlinicariovermelho.com.br/home
Certificate
IssuerLet's Encrypt
Subjectpoliclinicariovermelho.com.br
Fingerprint45:15:BA:1C:E7:20:35:94:28:29:E9:6B:C6:B7:ED:FF:2E:F8:1C:46
ValidityThu, 02 May 2024 02:10:24 GMT - Wed, 31 Jul 2024 02:10:23 GMT

File type
PNG image data, 601 x 149, 8-bit/color RGBA, non-interlaced
Size
26 kB (25642 bytes)
Hash
f87c27cf45ad96c65b4b620497c4735f
bc3cd0df1c1682079e94edd6db7213205179ae2f
a0317a14d4a009dcee82bf35b00daedca25a9dc76b1c9ce08fd63fdabacdd3d2

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	WhatsApp

HTTP Headers

GET /images/logo.png HTTP/1.1
Host: www.policlinicariovermelho.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.policlinicariovermelho.com.br/home
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
last-modified: Wed, 21 Sep 2022 20:35:22 GMT
etag: "642a-5e935e24e26ee"
accept-ranges: bytes
content-length: 25642
cache-control: max-age=1800
content-type: image/png
date: Sat, 04 May 2024 16:01:02 GMT
server: Apache
X-Firefox-Spdy: h2

www.policlinicariovermelho.com.br/images/icon-whattsapp.png

187.1.137.73

200 OK

76 kB

URL GET HTTP/2
www.policlinicariovermelho.com.br/images/icon-whattsapp.png
IP
187.1.137.73:443
ASN
#28299 Cyberweb Networks Ltda

Requested by
https://www.policlinicariovermelho.com.br/home
Certificate
IssuerLet's Encrypt
Subjectpoliclinicariovermelho.com.br
Fingerprint45:15:BA:1C:E7:20:35:94:28:29:E9:6B:C6:B7:ED:FF:2E:F8:1C:46
ValidityThu, 02 May 2024 02:10:24 GMT - Wed, 31 Jul 2024 02:10:23 GMT

File type
PNG image data, 1000 x 1000, 8-bit colormap, non-interlaced
Size
76 kB (76055 bytes)
Hash
66dfcc3339a64498814b139d313dd148
91ce3dcb1747dd4601db9b92fef73f4c6b66b000
4d79aa43e89c85952788e312ca24cf11391229fff797f255bb468a863bcd0edd

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	WhatsApp

HTTP Headers

GET /images/icon-whattsapp.png HTTP/1.1
Host: www.policlinicariovermelho.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.policlinicariovermelho.com.br/home
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
last-modified: Wed, 21 Sep 2022 20:35:20 GMT
etag: "12917-5e935e229ba5c"
accept-ranges: bytes
content-length: 76055
cache-control: max-age=1800
content-type: image/png
date: Sat, 04 May 2024 16:01:02 GMT
server: Apache
X-Firefox-Spdy: h2

www.policlinicariovermelho.com.br/images/vbanner.png

187.1.137.73

200 OK

408 B

URL GET HTTP/2
www.policlinicariovermelho.com.br/images/vbanner.png
IP
187.1.137.73:443
ASN
#28299 Cyberweb Networks Ltda

Requested by
https://www.policlinicariovermelho.com.br/home
Certificate
IssuerLet's Encrypt
Subjectpoliclinicariovermelho.com.br
Fingerprint45:15:BA:1C:E7:20:35:94:28:29:E9:6B:C6:B7:ED:FF:2E:F8:1C:46
ValidityThu, 02 May 2024 02:10:24 GMT - Wed, 31 Jul 2024 02:10:23 GMT

File type
PNG image data, 38 x 36, 8-bit colormap, non-interlaced
Size
408 B (408 bytes)
Hash
a4a8d908d74312249243b384f5feef06
5a28992cbdfd8142d30832b75fd9ccc1b884251e
150d07d792994e08aae38a9a063587aedaa65b7fce09a189ab44fb1cbfc203e1

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	WhatsApp

HTTP Headers

GET /images/vbanner.png HTTP/1.1
Host: www.policlinicariovermelho.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.policlinicariovermelho.com.br/home
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
last-modified: Wed, 21 Sep 2022 20:35:25 GMT
etag: "198-5e935e2768f11"
accept-ranges: bytes
content-length: 408
cache-control: max-age=1800
content-type: image/png
date: Sat, 04 May 2024 16:01:02 GMT
server: Apache
X-Firefox-Spdy: h2

www.policlinicariovermelho.com.br/painel/dados/fotos/prevencao-br-da-mulher_412502f7.png

187.1.137.73

200 OK

1.0 kB

URL GET HTTP/2
www.policlinicariovermelho.com.br/painel/dados/fotos/prevencao-br-da-mulher_412502f7.png
IP
187.1.137.73:443
ASN
#28299 Cyberweb Networks Ltda

Requested by
https://www.policlinicariovermelho.com.br/home
Certificate
IssuerLet's Encrypt
Subjectpoliclinicariovermelho.com.br
Fingerprint45:15:BA:1C:E7:20:35:94:28:29:E9:6B:C6:B7:ED:FF:2E:F8:1C:46
ValidityThu, 02 May 2024 02:10:24 GMT - Wed, 31 Jul 2024 02:10:23 GMT

File type
PNG image data, 67 x 72, 8-bit colormap, non-interlaced
Size
1.0 kB (1020 bytes)
Hash
aa1e78750b71b811eafcb8ff19a205df
e636b8d22e6543dc89cda1ac745aff83399669b7
81cb7f1ddabea7ccb2b7ec50cc1f964ec8b46f2e5dd8d2923667477c5f0ecf95

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	WhatsApp

HTTP Headers

GET /painel/dados/fotos/prevencao-br-da-mulher_412502f7.png HTTP/1.1
Host: www.policlinicariovermelho.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.policlinicariovermelho.com.br/home
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
last-modified: Wed, 21 Sep 2022 20:36:33 GMT
etag: "3fc-5e935e6814022"
accept-ranges: bytes
content-length: 1020
cache-control: max-age=1800
content-type: image/png
date: Sat, 04 May 2024 16:01:02 GMT
server: Apache
X-Firefox-Spdy: h2

www.policlinicariovermelho.com.br/painel/dados/fotos/prevencao-br-cardiologica_4135ca85.png

187.1.137.73

200 OK

1.2 kB

URL GET HTTP/2
www.policlinicariovermelho.com.br/painel/dados/fotos/prevencao-br-cardiologica_4135ca85.png
IP
187.1.137.73:443
ASN
#28299 Cyberweb Networks Ltda

Requested by
https://www.policlinicariovermelho.com.br/home
Certificate
IssuerLet's Encrypt
Subjectpoliclinicariovermelho.com.br
Fingerprint45:15:BA:1C:E7:20:35:94:28:29:E9:6B:C6:B7:ED:FF:2E:F8:1C:46
ValidityThu, 02 May 2024 02:10:24 GMT - Wed, 31 Jul 2024 02:10:23 GMT

File type
PNG image data, 74 x 74, 8-bit colormap, non-interlaced
Size
1.2 kB (1237 bytes)
Hash
41ed44d5890a710cf42aca639effd60c
0b355dee2fd47dd092cc06be542026084516eac9
516bafb09e4edddb0686b120e6bbc5b900a627e8243767fd48831159004400fb

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	WhatsApp

HTTP Headers

GET /painel/dados/fotos/prevencao-br-cardiologica_4135ca85.png HTTP/1.1
Host: www.policlinicariovermelho.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.policlinicariovermelho.com.br/home
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
last-modified: Wed, 21 Sep 2022 20:36:32 GMT
etag: "4d5-5e935e67c42be"
accept-ranges: bytes
content-length: 1237
cache-control: max-age=1800
content-type: image/png
date: Sat, 04 May 2024 16:01:02 GMT
server: Apache
X-Firefox-Spdy: h2

www.policlinicariovermelho.com.br/painel/dados/fotos/prevencao-br-do-homem_41646f11.png

187.1.137.73

200 OK

1.1 kB

URL GET HTTP/2
www.policlinicariovermelho.com.br/painel/dados/fotos/prevencao-br-do-homem_41646f11.png
IP
187.1.137.73:443
ASN
#28299 Cyberweb Networks Ltda

Requested by
https://www.policlinicariovermelho.com.br/home
Certificate
IssuerLet's Encrypt
Subjectpoliclinicariovermelho.com.br
Fingerprint45:15:BA:1C:E7:20:35:94:28:29:E9:6B:C6:B7:ED:FF:2E:F8:1C:46
ValidityThu, 02 May 2024 02:10:24 GMT - Wed, 31 Jul 2024 02:10:23 GMT

File type
PNG image data, 67 x 72, 8-bit colormap, non-interlaced
Size
1.1 kB (1144 bytes)
Hash
39b068b523b63a976e38cbd3b6c4b8d8
876a8ade28151f85b1df09f7072ff5499c5c2c0e
e8e23106465ff8f4babf340dac15b64833625b29241c4eeedc0253444070d92e

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	WhatsApp

HTTP Headers

GET /painel/dados/fotos/prevencao-br-do-homem_41646f11.png HTTP/1.1
Host: www.policlinicariovermelho.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.policlinicariovermelho.com.br/home
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
last-modified: Wed, 21 Sep 2022 20:36:33 GMT
etag: "478-5e935e689894f"
accept-ranges: bytes
content-length: 1144
cache-control: max-age=1800
content-type: image/png
date: Sat, 04 May 2024 16:01:02 GMT
server: Apache
X-Firefox-Spdy: h2

www.policlinicariovermelho.com.br/painel/dados/fotos/angiologia_39111a5b.png

187.1.137.73

200 OK

2.6 kB

URL GET HTTP/2
www.policlinicariovermelho.com.br/painel/dados/fotos/angiologia_39111a5b.png
IP
187.1.137.73:443
ASN
#28299 Cyberweb Networks Ltda

Requested by
https://www.policlinicariovermelho.com.br/home
Certificate
IssuerLet's Encrypt
Subjectpoliclinicariovermelho.com.br
Fingerprint45:15:BA:1C:E7:20:35:94:28:29:E9:6B:C6:B7:ED:FF:2E:F8:1C:46
ValidityThu, 02 May 2024 02:10:24 GMT - Wed, 31 Jul 2024 02:10:23 GMT

File type
PNG image data, 80 x 65, 8-bit/color RGBA, non-interlaced
Size
2.6 kB (2641 bytes)
Hash
a3281a3b765fb2c98612871d2ca14af2
c8ec528180b263720a414e00940d24301743523b
102423831e553197b7eacb55f6d410ce50e4c997a924e48f8beb12f4a36aa13f

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	WhatsApp

HTTP Headers

GET /painel/dados/fotos/angiologia_39111a5b.png HTTP/1.1
Host: www.policlinicariovermelho.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.policlinicariovermelho.com.br/home
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
last-modified: Wed, 21 Sep 2022 20:36:21 GMT
etag: "a51-5e935e5ceda72"
accept-ranges: bytes
content-length: 2641
cache-control: max-age=1800
content-type: image/png
date: Sat, 04 May 2024 16:01:02 GMT
server: Apache
X-Firefox-Spdy: h2

www.policlinicariovermelho.com.br/images/icone-ok.png

187.1.137.73

200 OK

1.8 kB

URL GET HTTP/2
www.policlinicariovermelho.com.br/images/icone-ok.png
IP
187.1.137.73:443
ASN
#28299 Cyberweb Networks Ltda

Requested by
https://www.policlinicariovermelho.com.br/home
Certificate
IssuerLet's Encrypt
Subjectpoliclinicariovermelho.com.br
Fingerprint45:15:BA:1C:E7:20:35:94:28:29:E9:6B:C6:B7:ED:FF:2E:F8:1C:46
ValidityThu, 02 May 2024 02:10:24 GMT - Wed, 31 Jul 2024 02:10:23 GMT

File type
PNG image data, 32 x 32, 8-bit/color RGBA, non-interlaced
Size
1.8 kB (1806 bytes)
Hash
11f73ad9a14821420e2535ac4c8b5ed7
221042c17b3d2f6259f64761b2cbf0ed45529d24
e673b1c51272bfe347663699abdd94359fc58d5fe8b3460251c7d2d0621adeaa

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	WhatsApp

HTTP Headers

GET /images/icone-ok.png HTTP/1.1
Host: www.policlinicariovermelho.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.policlinicariovermelho.com.br/home
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
last-modified: Wed, 21 Sep 2022 20:35:21 GMT
etag: "70e-5e935e23658f3"
accept-ranges: bytes
content-length: 1806
cache-control: max-age=1800
content-type: image/png
date: Sat, 04 May 2024 16:01:02 GMT
server: Apache
X-Firefox-Spdy: h2

www.policlinicariovermelho.com.br/images/firula-balao.png

187.1.137.73

200 OK

14 kB

URL GET HTTP/2
www.policlinicariovermelho.com.br/images/firula-balao.png
IP
187.1.137.73:443
ASN
#28299 Cyberweb Networks Ltda

Requested by
https://www.policlinicariovermelho.com.br/home
Certificate
IssuerLet's Encrypt
Subjectpoliclinicariovermelho.com.br
Fingerprint45:15:BA:1C:E7:20:35:94:28:29:E9:6B:C6:B7:ED:FF:2E:F8:1C:46
ValidityThu, 02 May 2024 02:10:24 GMT - Wed, 31 Jul 2024 02:10:23 GMT

File type
PNG image data, 425 x 424, 8-bit colormap, non-interlaced
Size
14 kB (13587 bytes)
Hash
77751357e502797035d1bf432ab9f6fa
1b65ab655891e07047d2821215b9eb714dd22f95
f4404ba001b14b1a8de12736e1af96599df23cd9bed876395c530ca2e39d83a0

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	WhatsApp

HTTP Headers

GET /images/firula-balao.png HTTP/1.1
Host: www.policlinicariovermelho.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.policlinicariovermelho.com.br/home
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
last-modified: Wed, 21 Sep 2022 20:35:18 GMT
etag: "3513-5e935e20d48d6"
accept-ranges: bytes
content-length: 13587
cache-control: max-age=1800
content-type: image/png
date: Sat, 04 May 2024 16:01:02 GMT
server: Apache
X-Firefox-Spdy: h2

www.policlinicariovermelho.com.br/painel/dados/fotos/cardiologia_394336bf.png

187.1.137.73

200 OK

2.6 kB

URL GET HTTP/2
www.policlinicariovermelho.com.br/painel/dados/fotos/cardiologia_394336bf.png
IP
187.1.137.73:443
ASN
#28299 Cyberweb Networks Ltda

Requested by
https://www.policlinicariovermelho.com.br/home
Certificate
IssuerLet's Encrypt
Subjectpoliclinicariovermelho.com.br
Fingerprint45:15:BA:1C:E7:20:35:94:28:29:E9:6B:C6:B7:ED:FF:2E:F8:1C:46
ValidityThu, 02 May 2024 02:10:24 GMT - Wed, 31 Jul 2024 02:10:23 GMT

File type
PNG image data, 80 x 65, 8-bit/color RGBA, non-interlaced
Size
2.6 kB (2555 bytes)
Hash
968e6985697f20fff9dfa82c9be8aac1
f35562e3ca353a9dee1d4bccefae3478f7a0df87
0f28c1c2a6ff069893da96a6c271a4f12c513f2e181b561bf81210eea83aed99

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	WhatsApp

HTTP Headers

GET /painel/dados/fotos/cardiologia_394336bf.png HTTP/1.1
Host: www.policlinicariovermelho.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.policlinicariovermelho.com.br/home
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
last-modified: Wed, 21 Sep 2022 20:36:26 GMT
etag: "9fb-5e935e61e379e"
accept-ranges: bytes
content-length: 2555
cache-control: max-age=1800
content-type: image/png
date: Sat, 04 May 2024 16:01:02 GMT
server: Apache
X-Firefox-Spdy: h2

www.policlinicariovermelho.com.br/painel/dados/fotos/clinica-medica_396051da.png

187.1.137.73

200 OK

1.3 kB

URL GET HTTP/2
www.policlinicariovermelho.com.br/painel/dados/fotos/clinica-medica_396051da.png
IP
187.1.137.73:443
ASN
#28299 Cyberweb Networks Ltda

Requested by
https://www.policlinicariovermelho.com.br/home
Certificate
IssuerLet's Encrypt
Subjectpoliclinicariovermelho.com.br
Fingerprint45:15:BA:1C:E7:20:35:94:28:29:E9:6B:C6:B7:ED:FF:2E:F8:1C:46
ValidityThu, 02 May 2024 02:10:24 GMT - Wed, 31 Jul 2024 02:10:23 GMT

File type
PNG image data, 80 x 65, 8-bit/color RGBA, non-interlaced
Size
1.3 kB (1282 bytes)
Hash
7cdcaa130fc4257e5897e37cfce67777
df68b3fe88d1132e6eb84f7bfe9b1b2aed5ad376
08cab7affa61f5f3d8f29a2daecb166bdbb5f74193b347f703f02118ed8c144d

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	WhatsApp

HTTP Headers

GET /painel/dados/fotos/clinica-medica_396051da.png HTTP/1.1
Host: www.policlinicariovermelho.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.policlinicariovermelho.com.br/home
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
last-modified: Wed, 21 Sep 2022 20:36:27 GMT
etag: "502-5e935e6221fa7"
accept-ranges: bytes
content-length: 1282
cache-control: max-age=1800
content-type: image/png
date: Sat, 04 May 2024 16:01:02 GMT
server: Apache
X-Firefox-Spdy: h2

www.policlinicariovermelho.com.br/painel/dados/fotos/dermatologia_40038606.png

187.1.137.73

200 OK

2.9 kB

URL GET HTTP/2
www.policlinicariovermelho.com.br/painel/dados/fotos/dermatologia_40038606.png
IP
187.1.137.73:443
ASN
#28299 Cyberweb Networks Ltda

Requested by
https://www.policlinicariovermelho.com.br/home
Certificate
IssuerLet's Encrypt
Subjectpoliclinicariovermelho.com.br
Fingerprint45:15:BA:1C:E7:20:35:94:28:29:E9:6B:C6:B7:ED:FF:2E:F8:1C:46
ValidityThu, 02 May 2024 02:10:24 GMT - Wed, 31 Jul 2024 02:10:23 GMT

File type
PNG image data, 80 x 65, 8-bit/color RGBA, non-interlaced
Size
2.9 kB (2938 bytes)
Hash
13f209569b17a36ed780218eed412a02
a04001e775adb7863a89b6201cac5b96eb71d161
a79b0e1ad8503034fdc5f7897d011d00f131ec85687798f33a8bd26f3191f2f8

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	WhatsApp

HTTP Headers

GET /painel/dados/fotos/dermatologia_40038606.png HTTP/1.1
Host: www.policlinicariovermelho.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.policlinicariovermelho.com.br/home
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
last-modified: Wed, 21 Sep 2022 20:36:27 GMT
etag: "b7a-5e935e62b959f"
accept-ranges: bytes
content-length: 2938
cache-control: max-age=1800
content-type: image/png
date: Sat, 04 May 2024 16:01:02 GMT
server: Apache
X-Firefox-Spdy: h2

www.policlinicariovermelho.com.br/painel/dados/fotos/fonoaudiologia_4146371a.png

187.1.137.73

200 OK

2.8 kB

URL GET HTTP/2
www.policlinicariovermelho.com.br/painel/dados/fotos/fonoaudiologia_4146371a.png
IP
187.1.137.73:443
ASN
#28299 Cyberweb Networks Ltda

Requested by
https://www.policlinicariovermelho.com.br/home
Certificate
IssuerLet's Encrypt
Subjectpoliclinicariovermelho.com.br
Fingerprint45:15:BA:1C:E7:20:35:94:28:29:E9:6B:C6:B7:ED:FF:2E:F8:1C:46
ValidityThu, 02 May 2024 02:10:24 GMT - Wed, 31 Jul 2024 02:10:23 GMT

File type
PNG image data, 80 x 65, 8-bit/color RGBA, non-interlaced
Size
2.8 kB (2759 bytes)
Hash
5b3ce212e36997538de2825de62be980
c9fd2877942b2640eb720eb549235ef5c1b967c6
e5f2cf588ad239ddee80fa515385d1f50c3c5695b07d3d82e734d19141554477

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	WhatsApp

HTTP Headers

GET /painel/dados/fotos/fonoaudiologia_4146371a.png HTTP/1.1
Host: www.policlinicariovermelho.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.policlinicariovermelho.com.br/home
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
last-modified: Wed, 21 Sep 2022 20:36:28 GMT
etag: "ac7-5e935e6373e1b"
accept-ranges: bytes
content-length: 2759
cache-control: max-age=1800
content-type: image/png
date: Sat, 04 May 2024 16:01:02 GMT
server: Apache
X-Firefox-Spdy: h2

www.google.com/maps/embed?pb=!1m14!1m8!1m3!1d15549.969989192014!2d-38.4825777!3d-13.0042789!3m2!1i1024!2i768!4f13.1!3m3!1m2!1s0x0%3A0xbab06ccd3696a9f2!2sPoliclinica+Do+Rio+Vermelho!5e0!3m2!1spt-BR!2sbr!4v1547219693071

142.250.74.132

200 OK

1.4 kB

URL GET HTTP/2
www.google.com/maps/embed?pb=!1m14!1m8!1m3!1d15549.969989192014!2d-38.4825777!3d-13.0042789!3m2!1i1024!2i768!4f13.1!3m3!1m2!1s0x0%3A0xbab06ccd3696a9f2!2sPoliclinica+Do+Rio+Vermelho!5e0!3m2!1spt-BR!2sbr!4v1547219693071
IP
142.250.74.132:443
ASN
#15169 GOOGLE

Requested by
https://www.policlinicariovermelho.com.br/home
Certificate
IssuerGoogle Trust Services LLC
Subjectwww.google.com
FingerprintC6:A2:DC:31:5A:53:FA:DD:55:71:A3:F4:DD:43:3D:16:71:B8:B3:99
ValidityTue, 16 Apr 2024 04:20:32 GMT - Tue, 09 Jul 2024 04:20:31 GMT

File type
HTML document, Unicode text, UTF-8 text, with very long lines (2531)
Size
1.4 kB (1406 bytes)
Hash
1e82c15f61c8c03114b7fcc01ef2a268
30f1718437a7cc0fed28e41c4e6b9b600bec9706
9568ae2926aa4ea27509eb76ebe83058b04be5e6a4fe0214493772c2d9c67bca

HTTP Headers

GET /maps/embed?pb=!1m14!1m8!1m3!1d15549.969989192014!2d-38.4825777!3d-13.0042789!3m2!1i1024!2i768!4f13.1!3m3!1m2!1s0x0%3A0xbab06ccd3696a9f2!2sPoliclinica+Do+Rio+Vermelho!5e0!3m2!1spt-BR!2sbr!4v1547219693071 HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.policlinicariovermelho.com.br/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
x-robots-tag: noindex,nofollow
pragma: no-cache
vary: Accept-Language, Origin, X-Origin, Referer
content-security-policy: object-src 'none';base-uri 'self';script-src 'nonce-rpDXJL0TqyTKnKu3etVoEg' 'strict-dynamic' 'report-sample' 'unsafe-eval' 'unsafe-inline' https: http:;report-uri https://csp.withgoogle.com/csp/geo-maps-api/1
cache-control: no-cache, must-revalidate
expires: Fri, 01 Jan 1990 00:00:00 GMT
content-type: text/html; charset=UTF-8
content-encoding: gzip
date: Sat, 04 May 2024 16:01:03 GMT
server: scaffolding on HTTPServer2
content-length: 1406
x-xss-protection: 0
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

www.googletagmanager.com/gtag/js?id=G-5NG9Q76KSH&l=dataLayer&cx=c

142.250.74.72

200 OK

88 kB

URL GET HTTP/3
www.googletagmanager.com/gtag/js?id=G-5NG9Q76KSH&l=dataLayer&cx=c
IP
142.250.74.72:443
ASN
#15169 GOOGLE

Requested by
https://www.policlinicariovermelho.com.br/home
Certificate
IssuerGoogle Trust Services LLC
Subject*.google-analytics.com
Fingerprint93:6B:D2:9D:92:BE:2D:D8:02:67:82:83:5E:EF:A3:F9:13:F3:26:AE
ValidityTue, 16 Apr 2024 03:18:45 GMT - Tue, 09 Jul 2024 03:18:44 GMT

File type
JavaScript source, ASCII text, with very long lines (4179)
Size
88 kB (87991 bytes)
Hash
82dda78261ed03dcae2df849f08a8721
d82081441f1ea6df8f0c6efa113751c054b9bd3b
f115d765c0e6d16621cd0c2942c0c3163f90d83e6122d0d5c1c0e6c621bdb27c

HTTP Headers

GET /gtag/js?id=G-5NG9Q76KSH&l=dataLayer&cx=c HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.policlinicariovermelho.com.br/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Sat, 04 May 2024 16:01:03 GMT
expires: Sat, 04 May 2024 16:01:03 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 87991
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

www.policlinicariovermelho.com.br/painel/dados/fotos/-b-marque-sua-b-br-b-consulta-b-_8684e8ea.jpg

187.1.137.73

200 OK

46 kB

URL GET HTTP/2
www.policlinicariovermelho.com.br/painel/dados/fotos/-b-marque-sua-b-br-b-consulta-b-_8684e8ea.jpg
IP
187.1.137.73:443
ASN
#28299 Cyberweb Networks Ltda

Requested by
https://www.policlinicariovermelho.com.br/home
Certificate
IssuerLet's Encrypt
Subjectpoliclinicariovermelho.com.br
Fingerprint45:15:BA:1C:E7:20:35:94:28:29:E9:6B:C6:B7:ED:FF:2E:F8:1C:46
ValidityThu, 02 May 2024 02:10:24 GMT - Wed, 31 Jul 2024 02:10:23 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 1858x600, components 3
Size
46 kB (45934 bytes)
Hash
4fd4468dbc142fd2f02e579d5de9fb8f
b4da773ef9b52bf046c341bcc1a83d189a697659
38bcd80a8dd3f46a34e6d3d022958a52036400cbc5e5603c7b222d5bc0d47115

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	WhatsApp

HTTP Headers

GET /painel/dados/fotos/-b-marque-sua-b-br-b-consulta-b-_8684e8ea.jpg HTTP/1.1
Host: www.policlinicariovermelho.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.policlinicariovermelho.com.br/home
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
last-modified: Wed, 21 Sep 2022 20:36:19 GMT
etag: "b36e-5e935e5a7f8f2"
accept-ranges: bytes
content-length: 45934
cache-control: max-age=1800
content-type: image/jpeg
date: Sat, 04 May 2024 16:01:02 GMT
server: Apache
X-Firefox-Spdy: h2

www.policlinicariovermelho.com.br/funcoes/plugins/owl.carousel.min.js

187.1.137.73

200 OK

439 kB

URL GET HTTP/2
www.policlinicariovermelho.com.br/funcoes/plugins/owl.carousel.min.js
IP
187.1.137.73:443
ASN
#28299 Cyberweb Networks Ltda

Requested by
https://www.policlinicariovermelho.com.br/home
Certificate
IssuerLet's Encrypt
Subjectpoliclinicariovermelho.com.br
Fingerprint45:15:BA:1C:E7:20:35:94:28:29:E9:6B:C6:B7:ED:FF:2E:F8:1C:46
ValidityThu, 02 May 2024 02:10:24 GMT - Wed, 31 Jul 2024 02:10:23 GMT

File type
gzip compressed data, from Unix
Size
439 kB (438674 bytes)
Hash
a102206030c9c03026e403b99afadfb7
2057084a3d992acfe06d881e6b510f1727bbb58f
2441e7faa45d7289542c7012f0610d38c1b7617cddea71044e9aa37e51fa8fb6

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	WhatsApp

HTTP Headers

GET /funcoes/plugins/owl.carousel.min.js HTTP/1.1
Host: www.policlinicariovermelho.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.policlinicariovermelho.com.br/home
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
content-encoding: gzip
vary: Accept-Encoding
content-type: text/html; charset=utf-8
date: Sat, 04 May 2024 16:01:02 GMT
server: Apache
X-Firefox-Spdy: h2

maps.gstatic.com/maps-api-v3/embed/js/56/11/init_embed.js

142.250.74.35

200 OK

62 kB

URL GET HTTP/2
maps.gstatic.com/maps-api-v3/embed/js/56/11/init_embed.js
IP
142.250.74.35:443
ASN
#15169 GOOGLE

Requested by
https://www.google.com/maps/embed?pb=!1m14!1m8!1m3!1d15549.969989192014!2d-38.4825777!3d-13.0042789!3m2!1i1024!2i768!4f13.1!3m3!1m2!1s0x0%3A0xbab06ccd3696a9f2!2sPoliclinica+Do+Rio+Vermelho!5e0!3m2!1spt-BR!2sbr!4v1547219693071
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
Fingerprint15:DD:05:B3:2F:D8:E3:54:C9:B4:FA:E4:AC:01:ED:C8:E1:EA:A7:AD
ValidityTue, 16 Apr 2024 04:17:07 GMT - Tue, 09 Jul 2024 04:17:06 GMT

File type
JavaScript source, ASCII text, with very long lines (3892)
Size
62 kB (61897 bytes)
Hash
caeecd26c33cf8a317e5ce88603f022d
bdf67de10dc32305a5e732a497bd6ee193de525f
3dc231dd23d38ec266f3f04e2972af9047d46e4054083b0f065cc0bf106e0d00

HTTP Headers

GET /maps-api-v3/embed/js/56/11/init_embed.js HTTP/1.1
Host: maps.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.google.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
content-encoding: br
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/maps-api-js
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="maps-api-js"
report-to: {"group":"maps-api-js","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/maps-api-js"}]}
timing-allow-origin: *
content-length: 61897
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 02 May 2024 18:01:11 GMT
expires: Fri, 02 May 2025 18:01:11 GMT
cache-control: public, max-age=31536000
last-modified: Thu, 02 May 2024 04:26:44 GMT
content-type: text/javascript
vary: Accept-Encoding, Origin
age: 165592
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

www.policlinicariovermelho.com.br/funcoes/plugins/jquery.menusidebar.js

187.1.137.73

200 OK

76 kB

URL GET HTTP/2
www.policlinicariovermelho.com.br/funcoes/plugins/jquery.menusidebar.js
IP
187.1.137.73:443
ASN
#28299 Cyberweb Networks Ltda

Requested by
https://www.policlinicariovermelho.com.br/home
Certificate
IssuerLet's Encrypt
Subjectpoliclinicariovermelho.com.br
Fingerprint45:15:BA:1C:E7:20:35:94:28:29:E9:6B:C6:B7:ED:FF:2E:F8:1C:46
ValidityThu, 02 May 2024 02:10:24 GMT - Wed, 31 Jul 2024 02:10:23 GMT

File type
HTML document, Unicode text, UTF-8 text, with very long lines (10171)
Size
76 kB (75556 bytes)
Hash
3321da26bc94dcb32ed4a6ac1ffe5fd8
dbf1305db3a337c6ede5be939dbc25baa72310cc
68a805cc08a698e65153c6e05c01ce09695ca35637860a69de4aa0aac3bc1b74

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	WhatsApp

HTTP Headers

GET /funcoes/plugins/jquery.menusidebar.js HTTP/1.1
Host: www.policlinicariovermelho.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.policlinicariovermelho.com.br/home
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
content-encoding: gzip
vary: Accept-Encoding
content-type: text/html; charset=utf-8
date: Sat, 04 May 2024 16:01:02 GMT
server: Apache
X-Firefox-Spdy: h2

www.policlinicariovermelho.com.br/funcoes/plugins/jquery.fancybox.min.js

187.1.137.73

200 OK

17 kB

URL GET HTTP/2
www.policlinicariovermelho.com.br/funcoes/plugins/jquery.fancybox.min.js
IP
187.1.137.73:443
ASN
#28299 Cyberweb Networks Ltda

Requested by
https://www.policlinicariovermelho.com.br/home
Certificate
IssuerLet's Encrypt
Subjectpoliclinicariovermelho.com.br
Fingerprint45:15:BA:1C:E7:20:35:94:28:29:E9:6B:C6:B7:ED:FF:2E:F8:1C:46
ValidityThu, 02 May 2024 02:10:24 GMT - Wed, 31 Jul 2024 02:10:23 GMT

File type
gzip compressed data, from Unix
Size
17 kB (17429 bytes)
Hash
f7480b86bfb9bfdcba61729cd8c39184
a86054bbe56ffc74fed80fd4f1e20e1a8bdecca9
1e2ea8316487cdeb623825f8f8959d6aab7b32ad6b29c62f37102b7c1d9dd029

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	WhatsApp

HTTP Headers

GET /funcoes/plugins/jquery.fancybox.min.js HTTP/1.1
Host: www.policlinicariovermelho.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.policlinicariovermelho.com.br/home
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
content-encoding: gzip
vary: Accept-Encoding
content-type: text/html; charset=utf-8
date: Sat, 04 May 2024 16:01:02 GMT
server: Apache
X-Firefox-Spdy: h2

www.policlinicariovermelho.com.br/painel/dados/fotos/-b-prevencao-b-cardiologia_38503cb7.jpg

187.1.137.73

200 OK

805 kB

URL GET HTTP/2
www.policlinicariovermelho.com.br/painel/dados/fotos/-b-prevencao-b-cardiologia_38503cb7.jpg
IP
187.1.137.73:443
ASN
#28299 Cyberweb Networks Ltda

Requested by
https://www.policlinicariovermelho.com.br/home
Certificate
IssuerLet's Encrypt
Subjectpoliclinicariovermelho.com.br
Fingerprint45:15:BA:1C:E7:20:35:94:28:29:E9:6B:C6:B7:ED:FF:2E:F8:1C:46
ValidityThu, 02 May 2024 02:10:24 GMT - Wed, 31 Jul 2024 02:10:23 GMT

File type
JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=12, height=1117, bps=158, PhotometricInterpretation=RGB, orientation=upper-left, width=4249], baseline, precision 8, 4249x1117, components 3
Size
805 kB (805057 bytes)
Hash
a6d60ac5c6fe92cbeeab543d98e6beb7
21960a5f98352eccba5a0445c8313000b8b1ba39
20389757f5b2e9c7e905c5ffddf98996e9a36ec4ab174d6444c7134c6f46f056

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	WhatsApp

HTTP Headers

GET /painel/dados/fotos/-b-prevencao-b-cardiologia_38503cb7.jpg HTTP/1.1
Host: www.policlinicariovermelho.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.policlinicariovermelho.com.br/home
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
last-modified: Wed, 21 Sep 2022 20:36:19 GMT
etag: "c48c1-5e935e5ac756d"
accept-ranges: bytes
content-length: 805057
cache-control: max-age=1800
content-type: image/jpeg
date: Sat, 04 May 2024 16:01:02 GMT
server: Apache
X-Firefox-Spdy: h2

www.policlinicariovermelho.com.br/css/fontes/alleyn/AlleynW01-Bold.woff2

187.1.137.73

200 OK

14 kB

URL GET HTTP/2
www.policlinicariovermelho.com.br/css/fontes/alleyn/AlleynW01-Bold.woff2
IP
187.1.137.73:443
ASN
#28299 Cyberweb Networks Ltda

Requested by
https://www.policlinicariovermelho.com.br/home
Certificate
IssuerLet's Encrypt
Subjectpoliclinicariovermelho.com.br
Fingerprint45:15:BA:1C:E7:20:35:94:28:29:E9:6B:C6:B7:ED:FF:2E:F8:1C:46
ValidityThu, 02 May 2024 02:10:24 GMT - Wed, 31 Jul 2024 02:10:23 GMT

File type
Web Open Font Format (Version 2), TrueType, length 13508, version 1.0
Size
14 kB (13508 bytes)
Hash
313acc8012ebc0468fb0c0b8c726aba7
fdb792b48eff661e6f5e329050b6cd488f9679e9
3da07fec0e70b2ea268fcbe0f6901c9349362bc35d0e85d16a8494de191e700e

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	WhatsApp

HTTP Headers

GET /css/fontes/alleyn/AlleynW01-Bold.woff2 HTTP/1.1
Host: www.policlinicariovermelho.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
DNT: 1
Connection: keep-alive
Referer: https://www.policlinicariovermelho.com.br/css/padrao/linkFontes.css
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
last-modified: Wed, 21 Sep 2022 20:34:38 GMT
etag: "34c4-5e935dfa3b523"
accept-ranges: bytes
content-length: 13508
date: Sat, 04 May 2024 16:01:03 GMT
server: Apache
X-Firefox-Spdy: h2

www.policlinicariovermelho.com.br/funcoes/plugins/jquery.banner.js

187.1.137.73

200 OK

4.1 kB

URL GET HTTP/2
www.policlinicariovermelho.com.br/funcoes/plugins/jquery.banner.js
IP
187.1.137.73:443
ASN
#28299 Cyberweb Networks Ltda

Requested by
https://www.policlinicariovermelho.com.br/home
Certificate
IssuerLet's Encrypt
Subjectpoliclinicariovermelho.com.br
Fingerprint45:15:BA:1C:E7:20:35:94:28:29:E9:6B:C6:B7:ED:FF:2E:F8:1C:46
ValidityThu, 02 May 2024 02:10:24 GMT - Wed, 31 Jul 2024 02:10:23 GMT

File type
HTML document, Unicode text, UTF-8 text, with very long lines (332)
Size
4.1 kB (4136 bytes)
Hash
46ae881e7f6f48d55741460d8757199c
9520cdd66f5fbdb90666c80cf8b2c17ebe13e4fa
b12f2fb623af4fb858ef862af81128ea757ed233d853e69947a4122491ceea4c

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	WhatsApp

HTTP Headers

GET /funcoes/plugins/jquery.banner.js HTTP/1.1
Host: www.policlinicariovermelho.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.policlinicariovermelho.com.br/home
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
content-encoding: gzip
vary: Accept-Encoding
content-type: text/html; charset=utf-8
date: Sat, 04 May 2024 16:01:02 GMT
server: Apache
X-Firefox-Spdy: h2

maps.googleapis.com/maps-api-v3/api/js/56/11/map.js

142.250.74.74

200 OK

24 kB

URL GET HTTP/3
maps.googleapis.com/maps-api-v3/api/js/56/11/map.js
IP
142.250.74.74:443
ASN
#15169 GOOGLE

Requested by
https://www.google.com/maps/embed?pb=!1m14!1m8!1m3!1d15549.969989192014!2d-38.4825777!3d-13.0042789!3m2!1i1024!2i768!4f13.1!3m3!1m2!1s0x0%3A0xbab06ccd3696a9f2!2sPoliclinica+Do+Rio+Vermelho!5e0!3m2!1spt-BR!2sbr!4v1547219693071
Certificate
IssuerGoogle Trust Services LLC
Subjectupload.video.google.com
Fingerprint36:49:20:36:0C:4D:DA:55:65:64:23:0F:49:3E:FA:78:87:35:A3:79
ValidityTue, 16 Apr 2024 04:17:12 GMT - Tue, 09 Jul 2024 04:17:11 GMT

File type
JavaScript source, ASCII text, with very long lines (2374)
Size
24 kB (24377 bytes)
Hash
4dc29aac68404911a51e89d8033bdf07
7fd38bbcf95d13474710a630046b23777b5809a7
015915b914baa3754ad388605726432beb01fb2c0de2baa2385354073ffcf212

HTTP Headers

GET /maps-api-v3/api/js/56/11/map.js HTTP/1.1
Host: maps.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.google.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
accept-ranges: bytes
content-encoding: br
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/maps-api-js
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="maps-api-js"
report-to: {"group":"maps-api-js","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/maps-api-js"}]}
timing-allow-origin: *
content-length: 24377
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 02 May 2024 18:01:07 GMT
expires: Fri, 02 May 2025 18:01:07 GMT
cache-control: public, max-age=31536000
last-modified: Thu, 02 May 2024 04:26:55 GMT
content-type: text/javascript
vary: Accept-Encoding, Origin
age: 165596
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

maps.googleapis.com/maps-api-v3/api/js/56/11/overlay.js

142.250.74.74

200 OK

1.3 kB

URL GET HTTP/3
maps.googleapis.com/maps-api-v3/api/js/56/11/overlay.js
IP
142.250.74.74:443
ASN
#15169 GOOGLE

Requested by
https://www.google.com/maps/embed?pb=!1m14!1m8!1m3!1d15549.969989192014!2d-38.4825777!3d-13.0042789!3m2!1i1024!2i768!4f13.1!3m3!1m2!1s0x0%3A0xbab06ccd3696a9f2!2sPoliclinica+Do+Rio+Vermelho!5e0!3m2!1spt-BR!2sbr!4v1547219693071
Certificate
IssuerGoogle Trust Services LLC
Subjectupload.video.google.com
Fingerprint36:49:20:36:0C:4D:DA:55:65:64:23:0F:49:3E:FA:78:87:35:A3:79
ValidityTue, 16 Apr 2024 04:17:12 GMT - Tue, 09 Jul 2024 04:17:11 GMT

File type
ASCII text, with very long lines (1205)
Size
1.3 kB (1280 bytes)
Hash
87d24719537b7cb864c35b840536883b
ba91a3f6b58033550e8f76518b82bed79e57f522
7a764cabec07cf84e771f7cc65d7d43263fc979f24eb13d4155f7a1bfb2912ce

HTTP Headers

GET /maps-api-v3/api/js/56/11/overlay.js HTTP/1.1
Host: maps.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.google.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
accept-ranges: bytes
content-encoding: br
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/maps-api-js
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="maps-api-js"
report-to: {"group":"maps-api-js","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/maps-api-js"}]}
timing-allow-origin: *
content-length: 1280
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 02 May 2024 18:01:07 GMT
expires: Fri, 02 May 2025 18:01:07 GMT
cache-control: public, max-age=31536000
last-modified: Thu, 02 May 2024 04:26:55 GMT
content-type: text/javascript
vary: Accept-Encoding, Origin
age: 165596
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

maps.googleapis.com/maps-api-v3/api/js/56/11/util.js

142.250.74.74

200 OK

57 kB

URL GET HTTP/3
maps.googleapis.com/maps-api-v3/api/js/56/11/util.js
IP
142.250.74.74:443
ASN
#15169 GOOGLE

Requested by
https://www.google.com/maps/embed?pb=!1m14!1m8!1m3!1d15549.969989192014!2d-38.4825777!3d-13.0042789!3m2!1i1024!2i768!4f13.1!3m3!1m2!1s0x0%3A0xbab06ccd3696a9f2!2sPoliclinica+Do+Rio+Vermelho!5e0!3m2!1spt-BR!2sbr!4v1547219693071
Certificate
IssuerGoogle Trust Services LLC
Subjectupload.video.google.com
Fingerprint36:49:20:36:0C:4D:DA:55:65:64:23:0F:49:3E:FA:78:87:35:A3:79
ValidityTue, 16 Apr 2024 04:17:12 GMT - Tue, 09 Jul 2024 04:17:11 GMT

File type
JavaScript source, ASCII text, with very long lines (562)
Size
57 kB (57227 bytes)
Hash
6b83f9fe82267b670ae8b10a07772c75
c7d70e3dc62c283fc1adfbf6797a684058ef18a2
30879513240591048e7ebec42b40fe68b006b44515b60c3dde3a0919d154ac25

HTTP Headers

GET /maps-api-v3/api/js/56/11/util.js HTTP/1.1
Host: maps.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.google.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
accept-ranges: bytes
content-encoding: br
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/maps-api-js
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="maps-api-js"
report-to: {"group":"maps-api-js","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/maps-api-js"}]}
timing-allow-origin: *
content-length: 57227
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 02 May 2024 18:01:07 GMT
expires: Fri, 02 May 2025 18:01:07 GMT
cache-control: public, max-age=31536000
last-modified: Thu, 02 May 2024 04:26:55 GMT
content-type: text/javascript
vary: Accept-Encoding, Origin
age: 165596
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

www.policlinicariovermelho.com.br/css/fontes/mosk/MoskExtra-Light200.woff2

187.1.137.73

200 OK

16 kB

URL GET HTTP/2
www.policlinicariovermelho.com.br/css/fontes/mosk/MoskExtra-Light200.woff2
IP
187.1.137.73:443
ASN
#28299 Cyberweb Networks Ltda

Requested by
https://www.policlinicariovermelho.com.br/home
Certificate
IssuerLet's Encrypt
Subjectpoliclinicariovermelho.com.br
Fingerprint45:15:BA:1C:E7:20:35:94:28:29:E9:6B:C6:B7:ED:FF:2E:F8:1C:46
ValidityThu, 02 May 2024 02:10:24 GMT - Wed, 31 Jul 2024 02:10:23 GMT

File type
Web Open Font Format (Version 2), TrueType, length 15680, version 1.0
Size
16 kB (15680 bytes)
Hash
351c5958d1e8861a8c0c8f5aeea6bce9
3d26fdd48ff1b7dc84af6171828c6a66c5d21f7c
eee0c9f519559e7cfc900fd1ca905ee6cd5b0704f852eabd561d4e7acf8359e4

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	WhatsApp

HTTP Headers

GET /css/fontes/mosk/MoskExtra-Light200.woff2 HTTP/1.1
Host: www.policlinicariovermelho.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
DNT: 1
Connection: keep-alive
Referer: https://www.policlinicariovermelho.com.br/css/padrao/linkFontes.css
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
last-modified: Wed, 21 Sep 2022 20:34:46 GMT
etag: "3d40-5e935e028ad7b"
accept-ranges: bytes
content-length: 15680
date: Sat, 04 May 2024 16:01:03 GMT
server: Apache
X-Firefox-Spdy: h2

maps.googleapis.com/maps-api-v3/api/js/56/11/onion.js

142.250.74.74

200 OK

9.3 kB

URL GET HTTP/3
maps.googleapis.com/maps-api-v3/api/js/56/11/onion.js
IP
142.250.74.74:443
ASN
#15169 GOOGLE

Requested by
https://www.google.com/maps/embed?pb=!1m14!1m8!1m3!1d15549.969989192014!2d-38.4825777!3d-13.0042789!3m2!1i1024!2i768!4f13.1!3m3!1m2!1s0x0%3A0xbab06ccd3696a9f2!2sPoliclinica+Do+Rio+Vermelho!5e0!3m2!1spt-BR!2sbr!4v1547219693071
Certificate
IssuerGoogle Trust Services LLC
Subjectupload.video.google.com
Fingerprint36:49:20:36:0C:4D:DA:55:65:64:23:0F:49:3E:FA:78:87:35:A3:79
ValidityTue, 16 Apr 2024 04:17:12 GMT - Tue, 09 Jul 2024 04:17:11 GMT

File type
JavaScript source, ASCII text, with very long lines (2963)
Size
9.3 kB (9251 bytes)
Hash
a1a5bdec7eefda3a330d1d8516d3a12c
f83d7be53d3e9b1a96b31db52b9fa02f3979cce7
46129f2497bb67eab877683b031a2b57573bc4510181a9a22cd84745e60e6977

HTTP Headers

GET /maps-api-v3/api/js/56/11/onion.js HTTP/1.1
Host: maps.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.google.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
accept-ranges: bytes
content-encoding: br
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/maps-api-js
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="maps-api-js"
report-to: {"group":"maps-api-js","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/maps-api-js"}]}
timing-allow-origin: *
content-length: 9251
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 02 May 2024 18:01:07 GMT
expires: Fri, 02 May 2025 18:01:07 GMT
cache-control: public, max-age=31536000
last-modified: Thu, 02 May 2024 04:26:55 GMT
content-type: text/javascript
vary: Accept-Encoding, Origin
age: 165596
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

maps.googleapis.com/maps-api-v3/api/js/56/11/search_impl.js

142.250.74.74

200 OK

1.3 kB

URL GET HTTP/3
maps.googleapis.com/maps-api-v3/api/js/56/11/search_impl.js
IP
142.250.74.74:443
ASN
#15169 GOOGLE

Requested by
https://www.google.com/maps/embed?pb=!1m14!1m8!1m3!1d15549.969989192014!2d-38.4825777!3d-13.0042789!3m2!1i1024!2i768!4f13.1!3m3!1m2!1s0x0%3A0xbab06ccd3696a9f2!2sPoliclinica+Do+Rio+Vermelho!5e0!3m2!1spt-BR!2sbr!4v1547219693071
Certificate
IssuerGoogle Trust Services LLC
Subjectupload.video.google.com
Fingerprint36:49:20:36:0C:4D:DA:55:65:64:23:0F:49:3E:FA:78:87:35:A3:79
ValidityTue, 16 Apr 2024 04:17:12 GMT - Tue, 09 Jul 2024 04:17:11 GMT

File type
ASCII text, with very long lines (1499)
Size
1.3 kB (1267 bytes)
Hash
fc6ba34751534e382c2951cc9ecfa1e9
91b0b36fdd6f3edeadbcc98e3dda5f2060243e08
ad1a3afb7b432b36a7a13d4c03e8cffcb6c1b98c36c22251e13fee7699fb8fb9

HTTP Headers

GET /maps-api-v3/api/js/56/11/search_impl.js HTTP/1.1
Host: maps.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.google.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
accept-ranges: bytes
content-encoding: br
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/maps-api-js
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="maps-api-js"
report-to: {"group":"maps-api-js","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/maps-api-js"}]}
timing-allow-origin: *
content-length: 1267
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 03 May 2024 11:32:22 GMT
expires: Sat, 03 May 2025 11:32:22 GMT
cache-control: public, max-age=31536000
last-modified: Thu, 02 May 2024 04:26:55 GMT
content-type: text/javascript
vary: Accept-Encoding, Origin
age: 102521
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

maps.googleapis.com/maps-api-v3/api/js/56/11/common.js

142.250.74.74

200 OK

57 kB

URL GET HTTP/3
maps.googleapis.com/maps-api-v3/api/js/56/11/common.js
IP
142.250.74.74:443
ASN
#15169 GOOGLE

Requested by
https://www.google.com/maps/embed?pb=!1m14!1m8!1m3!1d15549.969989192014!2d-38.4825777!3d-13.0042789!3m2!1i1024!2i768!4f13.1!3m3!1m2!1s0x0%3A0xbab06ccd3696a9f2!2sPoliclinica+Do+Rio+Vermelho!5e0!3m2!1spt-BR!2sbr!4v1547219693071
Certificate
IssuerGoogle Trust Services LLC
Subjectupload.video.google.com
Fingerprint36:49:20:36:0C:4D:DA:55:65:64:23:0F:49:3E:FA:78:87:35:A3:79
ValidityTue, 16 Apr 2024 04:17:12 GMT - Tue, 09 Jul 2024 04:17:11 GMT

File type
JavaScript source, ASCII text, with very long lines (7036)
Size
57 kB (57228 bytes)
Hash
c539ef27b29c256473721ade9a64cdf3
ff1d3c458af547b8ade347dca5d395b2f179a96a
69c1875ee6d8b36898661ebf5c49d5763a83e26c8cf353889283867c4dbffc6b

HTTP Headers

GET /maps-api-v3/api/js/56/11/common.js HTTP/1.1
Host: maps.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.google.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
accept-ranges: bytes
content-encoding: br
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/maps-api-js
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="maps-api-js"
report-to: {"group":"maps-api-js","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/maps-api-js"}]}
timing-allow-origin: *
content-length: 57228
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 02 May 2024 18:01:07 GMT
expires: Fri, 02 May 2025 18:01:07 GMT
cache-control: public, max-age=31536000
last-modified: Thu, 02 May 2024 04:26:55 GMT
content-type: text/javascript
vary: Accept-Encoding, Origin
age: 165596
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

www.policlinicariovermelho.com.br/images/paralax-meio.jpg

187.1.137.73

200 OK

3.2 MB

URL GET HTTP/2
www.policlinicariovermelho.com.br/images/paralax-meio.jpg
IP
187.1.137.73:443
ASN
#28299 Cyberweb Networks Ltda

Requested by
https://www.policlinicariovermelho.com.br/home
Certificate
IssuerLet's Encrypt
Subjectpoliclinicariovermelho.com.br
Fingerprint45:15:BA:1C:E7:20:35:94:28:29:E9:6B:C6:B7:ED:FF:2E:F8:1C:46
ValidityThu, 02 May 2024 02:10:24 GMT - Wed, 31 Jul 2024 02:10:23 GMT

File type
JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=12, height=1117, bps=158, PhotometricInterpretation=RGB, orientation=upper-left, width=4249], baseline, precision 8, 4249x1117, components 3
Size
3.2 MB (3210830 bytes)
Hash
a7e0329af900c6d304d4a6dcc61132a6
ca04a6db5122716f3e492a2e55d47dc96b3a5450
0397eef8f65b2b16f09644b4bd41315ce1f4084e6d3f8523d8232e83bf07d7cb

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	WhatsApp

HTTP Headers

GET /images/paralax-meio.jpg HTTP/1.1
Host: www.policlinicariovermelho.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.policlinicariovermelho.com.br/home
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
last-modified: Wed, 21 Sep 2022 20:35:24 GMT
etag: "30fe4e-5e935e265f4e8"
accept-ranges: bytes
content-length: 3210830
cache-control: max-age=1800
content-type: image/jpeg
date: Sat, 04 May 2024 16:01:02 GMT
server: Apache
X-Firefox-Spdy: h2

www.policlinicariovermelho.com.br/css/fontes/alleyn/AlleynW01-Regular.woff2

187.1.137.73

200 OK

14 kB

URL GET HTTP/2
www.policlinicariovermelho.com.br/css/fontes/alleyn/AlleynW01-Regular.woff2
IP
187.1.137.73:443
ASN
#28299 Cyberweb Networks Ltda

Requested by
https://www.policlinicariovermelho.com.br/home
Certificate
IssuerLet's Encrypt
Subjectpoliclinicariovermelho.com.br
Fingerprint45:15:BA:1C:E7:20:35:94:28:29:E9:6B:C6:B7:ED:FF:2E:F8:1C:46
ValidityThu, 02 May 2024 02:10:24 GMT - Wed, 31 Jul 2024 02:10:23 GMT

File type
Web Open Font Format (Version 2), TrueType, length 14064, version 1.0
Size
14 kB (14064 bytes)
Hash
450dd7038ec047be2c8124521ff82d58
b6ea59b84bfc3fe70f55b5752e49ba19126f2204
ac6ed2a5982437ecc3abd09a02b5e5e8f48e92ea8abdadbd9305e6ab5a72ff9e

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	WhatsApp

HTTP Headers

GET /css/fontes/alleyn/AlleynW01-Regular.woff2 HTTP/1.1
Host: www.policlinicariovermelho.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
DNT: 1
Connection: keep-alive
Referer: https://www.policlinicariovermelho.com.br/css/padrao/linkFontes.css
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
last-modified: Wed, 21 Sep 2022 20:34:39 GMT
etag: "36f0-5e935dfb7d1c4"
accept-ranges: bytes
content-length: 14064
date: Sat, 04 May 2024 16:01:03 GMT
server: Apache
X-Firefox-Spdy: h2

www.policlinicariovermelho.com.br/funcoes/plugins/instagramLite.js

187.1.137.73

200 OK

441 kB

URL GET HTTP/2
www.policlinicariovermelho.com.br/funcoes/plugins/instagramLite.js
IP
187.1.137.73:443
ASN
#28299 Cyberweb Networks Ltda

Requested by
https://www.policlinicariovermelho.com.br/home
Certificate
IssuerLet's Encrypt
Subjectpoliclinicariovermelho.com.br
Fingerprint45:15:BA:1C:E7:20:35:94:28:29:E9:6B:C6:B7:ED:FF:2E:F8:1C:46
ValidityThu, 02 May 2024 02:10:24 GMT - Wed, 31 Jul 2024 02:10:23 GMT

File type
gzip compressed data, from Unix
Size
441 kB (440705 bytes)
Hash
dba3fd47263dae5b48f792e70da959f9
f78ebc68af838bdcf8ad30260803b5b145d44356
a50f67bdf0c658212f8d50a0ba41755ed5df8395f60c958584246b69bf994ef4

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	WhatsApp

HTTP Headers

GET /funcoes/plugins/instagramLite.js HTTP/1.1
Host: www.policlinicariovermelho.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.policlinicariovermelho.com.br/home
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
content-encoding: gzip
vary: Accept-Encoding
content-type: text/html; charset=utf-8
date: Sat, 04 May 2024 16:01:02 GMT
server: Apache
X-Firefox-Spdy: h2

maps.googleapis.com/maps/api/js/StaticMapService.GetMapImage?1m2&1i824225&2i1124916&2e1&3u13&4m2&1u348&2u148&5m5&1e0&5sen-US&6sus&10b1&12b1&client=google-maps-embed&token=73763

142.250.74.74

200 OK

17 kB

URL GET HTTP/3
maps.googleapis.com/maps/api/js/StaticMapService.GetMapImage?1m2&1i824225&2i1124916&2e1&3u13&4m2&1u348&2u148&5m5&1e0&5sen-US&6sus&10b1&12b1&client=google-maps-embed&token=73763
IP
142.250.74.74:443
ASN
#15169 GOOGLE

Requested by
https://www.google.com/maps/embed?pb=!1m14!1m8!1m3!1d15549.969989192014!2d-38.4825777!3d-13.0042789!3m2!1i1024!2i768!4f13.1!3m3!1m2!1s0x0%3A0xbab06ccd3696a9f2!2sPoliclinica+Do+Rio+Vermelho!5e0!3m2!1spt-BR!2sbr!4v1547219693071
Certificate
IssuerGoogle Trust Services LLC
Subjectupload.video.google.com
Fingerprint36:49:20:36:0C:4D:DA:55:65:64:23:0F:49:3E:FA:78:87:35:A3:79
ValidityTue, 16 Apr 2024 04:17:12 GMT - Tue, 09 Jul 2024 04:17:11 GMT

File type
PNG image data, 348 x 148, 8-bit colormap, non-interlaced
Size
17 kB (16621 bytes)
Hash
1447d2592c233a32c0f0f61822e0c167
8b0abeda7d74a967542593c712dadc8c8092cb93
af857e645c20aa69a379976b9591781ac3b883dbeeb7958c3d7dd3444da104ef

HTTP Headers

GET /maps/api/js/StaticMapService.GetMapImage?1m2&1i824225&2i1124916&2e1&3u13&4m2&1u348&2u148&5m5&1e0&5sen-US&6sus&10b1&12b1&client=google-maps-embed&token=73763 HTTP/1.1
Host: maps.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.google.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
content-type: image/png
date: Sat, 04 May 2024 16:01:04 GMT
expires: Sun, 05 May 2024 16:01:04 GMT
cache-control: public, max-age=86400
server: scaffolding on HTTPServer2
content-length: 16621
x-xss-protection: 0
x-frame-options: SAMEORIGIN
server-timing: gfet4t7; dur=76
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

www.policlinicariovermelho.com.br/images/favicon.png

187.1.137.73

200 OK

1.4 kB

URL GET HTTP/2
www.policlinicariovermelho.com.br/images/favicon.png
IP
187.1.137.73:443
ASN
#28299 Cyberweb Networks Ltda

Requested by
https://www.policlinicariovermelho.com.br/home
Certificate
IssuerLet's Encrypt
Subjectpoliclinicariovermelho.com.br
Fingerprint45:15:BA:1C:E7:20:35:94:28:29:E9:6B:C6:B7:ED:FF:2E:F8:1C:46
ValidityThu, 02 May 2024 02:10:24 GMT - Wed, 31 Jul 2024 02:10:23 GMT

File type
PNG image data, 16 x 16, 8-bit/color RGBA, non-interlaced
Size
1.4 kB (1397 bytes)
Hash
de63d3f0ed5d5c904a006327b7230c1e
7c3dcc3175c61b60b61b099ce76fe8a9dc1129db
982e2634367e40c13afb3cb543c795b506b25e352b2ec5c5c46b789d9ee0979a

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	WhatsApp

HTTP Headers

GET /images/favicon.png HTTP/1.1
Host: www.policlinicariovermelho.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.policlinicariovermelho.com.br/home
Cookie: _ga_5NG9Q76KSH=GS1.1.1714838463.1.0.1714838463.0.0.0; _ga=GA1.1.217577694.1714838463
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
last-modified: Wed, 21 Sep 2022 20:35:18 GMT
etag: "575-5e935e20a85c7"
accept-ranges: bytes
content-length: 1397
cache-control: max-age=1800
content-type: image/png
date: Sat, 04 May 2024 16:01:04 GMT
server: Apache
X-Firefox-Spdy: h2

www.policlinicariovermelho.com.br/funcoes/main.js

187.1.137.73

200 OK

16 kB

URL GET HTTP/2
www.policlinicariovermelho.com.br/funcoes/main.js
IP
187.1.137.73:443
ASN
#28299 Cyberweb Networks Ltda

Requested by
https://www.policlinicariovermelho.com.br/home
Certificate
IssuerLet's Encrypt
Subjectpoliclinicariovermelho.com.br
Fingerprint45:15:BA:1C:E7:20:35:94:28:29:E9:6B:C6:B7:ED:FF:2E:F8:1C:46
ValidityThu, 02 May 2024 02:10:24 GMT - Wed, 31 Jul 2024 02:10:23 GMT

File type

Size
16 kB (15501 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	WhatsApp

HTTP Headers

GET /funcoes/main.js HTTP/1.1
Host: www.policlinicariovermelho.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.policlinicariovermelho.com.br/home
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-encoding: gzip
vary: Accept-Encoding
content-type: text/html; charset=utf-8
date: Sat, 04 May 2024 16:01:02 GMT
server: Apache
X-Firefox-Spdy: h2

www.policlinicariovermelho.com.br/funcoes/theme.js

187.1.137.73

200 OK

16 kB

URL GET HTTP/2
www.policlinicariovermelho.com.br/funcoes/theme.js
IP
187.1.137.73:443
ASN
#28299 Cyberweb Networks Ltda

Requested by
https://www.policlinicariovermelho.com.br/home
Certificate
IssuerLet's Encrypt
Subjectpoliclinicariovermelho.com.br
Fingerprint45:15:BA:1C:E7:20:35:94:28:29:E9:6B:C6:B7:ED:FF:2E:F8:1C:46
ValidityThu, 02 May 2024 02:10:24 GMT - Wed, 31 Jul 2024 02:10:23 GMT

File type

Size
16 kB (15501 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	WhatsApp

HTTP Headers

GET /funcoes/theme.js HTTP/1.1
Host: www.policlinicariovermelho.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.policlinicariovermelho.com.br/home
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-encoding: gzip
vary: Accept-Encoding
content-type: text/html; charset=utf-8
date: Sat, 04 May 2024 16:01:02 GMT
server: Apache
X-Firefox-Spdy: h2

www.policlinicariovermelho.com.br/painel/dados/fotos/-b-prevencao-b-ginecologia_38764274.jpg

187.1.137.73

200 OK

435 kB

URL GET HTTP/2
www.policlinicariovermelho.com.br/painel/dados/fotos/-b-prevencao-b-ginecologia_38764274.jpg
IP
187.1.137.73:443
ASN
#28299 Cyberweb Networks Ltda

Requested by
https://www.policlinicariovermelho.com.br/home
Certificate
IssuerLet's Encrypt
Subjectpoliclinicariovermelho.com.br
Fingerprint45:15:BA:1C:E7:20:35:94:28:29:E9:6B:C6:B7:ED:FF:2E:F8:1C:46
ValidityThu, 02 May 2024 02:10:24 GMT - Wed, 31 Jul 2024 02:10:23 GMT

File type
JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=12, height=600, bps=158, PhotometricInterpretation=RGB, orientation=upper-left, width=1858], baseline, precision 8, 1858x600, components 3
Size
435 kB (434561 bytes)
Hash
6350b16d04fc520ce9c8355e4f498b23
5c795171cb80bb759f8e3705543839e776acbfb3
3def44977e4e97023a9cb50bd48a8cdce85136ca49892acadae06e9754e0eac0

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	WhatsApp

HTTP Headers

GET /painel/dados/fotos/-b-prevencao-b-ginecologia_38764274.jpg HTTP/1.1
Host: www.policlinicariovermelho.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.policlinicariovermelho.com.br/home
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
last-modified: Wed, 21 Sep 2022 20:36:19 GMT
etag: "6a181-5e935e5af4c04"
accept-ranges: bytes
content-length: 434561
cache-control: max-age=1800
content-type: image/jpeg
date: Sat, 04 May 2024 16:01:02 GMT
server: Apache
X-Firefox-Spdy: h2

www.policlinicariovermelho.com.br/processa/envia_token/transparente.js

187.1.137.73

200 OK

16 kB

URL GET HTTP/2
www.policlinicariovermelho.com.br/processa/envia_token/transparente.js
IP
187.1.137.73:443
ASN
#28299 Cyberweb Networks Ltda

Requested by
https://www.policlinicariovermelho.com.br/home
Certificate
IssuerLet's Encrypt
Subjectpoliclinicariovermelho.com.br
Fingerprint45:15:BA:1C:E7:20:35:94:28:29:E9:6B:C6:B7:ED:FF:2E:F8:1C:46
ValidityThu, 02 May 2024 02:10:24 GMT - Wed, 31 Jul 2024 02:10:23 GMT

File type

Size
16 kB (15501 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	WhatsApp

HTTP Headers

GET /processa/envia_token/transparente.js HTTP/1.1
Host: www.policlinicariovermelho.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.policlinicariovermelho.com.br/home
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-encoding: gzip
vary: Accept-Encoding
content-type: text/html; charset=utf-8
date: Sat, 04 May 2024 16:01:02 GMT
server: Apache
X-Firefox-Spdy: h2

www.policlinicariovermelho.com.br/css/fontes/alleyn/AlleynW01-Light.woff2

187.1.137.73

200 OK

13 kB

URL GET HTTP/2
www.policlinicariovermelho.com.br/css/fontes/alleyn/AlleynW01-Light.woff2
IP
187.1.137.73:443
ASN
#28299 Cyberweb Networks Ltda

Requested by
https://www.policlinicariovermelho.com.br/home
Certificate
IssuerLet's Encrypt
Subjectpoliclinicariovermelho.com.br
Fingerprint45:15:BA:1C:E7:20:35:94:28:29:E9:6B:C6:B7:ED:FF:2E:F8:1C:46
ValidityThu, 02 May 2024 02:10:24 GMT - Wed, 31 Jul 2024 02:10:23 GMT

File type
Web Open Font Format (Version 2), TrueType, length 13316, version 1.0
Size
13 kB (13316 bytes)
Hash
1ca275e7052742e7a74bb17422b4d75b
5e0dd9f86fedc3b7485660f4c38170eab8c9620d
4c29f06bc168d48a0b94d898e21574382781e7451496643824ab076b7d1d16cf

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	WhatsApp

HTTP Headers

GET /css/fontes/alleyn/AlleynW01-Light.woff2 HTTP/1.1
Host: www.policlinicariovermelho.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
DNT: 1
Connection: keep-alive
Referer: https://www.policlinicariovermelho.com.br/css/padrao/linkFontes.css
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
last-modified: Wed, 21 Sep 2022 20:34:38 GMT
etag: "3404-5e935dfad810b"
accept-ranges: bytes
content-length: 13316
date: Sat, 04 May 2024 16:01:02 GMT
server: Apache
X-Firefox-Spdy: h2

maps.googleapis.com/maps/api/mapsjs/gen_204?csp_test=true

142.250.74.74

200 OK

3 B

URL GET HTTP/2
maps.googleapis.com/maps/api/mapsjs/gen_204?csp_test=true
IP
142.250.74.74:443
ASN
#15169 GOOGLE

Requested by
https://www.google.com/maps/embed?pb=!1m14!1m8!1m3!1d15549.969989192014!2d-38.4825777!3d-13.0042789!3m2!1i1024!2i768!4f13.1!3m3!1m2!1s0x0%3A0xbab06ccd3696a9f2!2sPoliclinica+Do+Rio+Vermelho!5e0!3m2!1spt-BR!2sbr!4v1547219693071
Certificate
IssuerGoogle Trust Services LLC
Subjectupload.video.google.com
Fingerprint36:49:20:36:0C:4D:DA:55:65:64:23:0F:49:3E:FA:78:87:35:A3:79
ValidityTue, 16 Apr 2024 04:17:12 GMT - Tue, 09 Jul 2024 04:17:11 GMT

File type
ASCII text, with no line terminators
Size
3 B (3 bytes)
Hash
fdf48e6b3239e0b378031fb47d5b202a
b1806f381758bc595c29988c05ef5e0ef580c90a
fcd393d2c13bad308661b62b34d9c3234a3ce840e22909b0a180e85f76b5d24d

HTTP Headers

GET /maps/api/mapsjs/gen_204?csp_test=true HTTP/1.1
Host: maps.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.google.com
DNT: 1
Connection: keep-alive
Referer: https://www.google.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: application/json; charset=UTF-8
vary: Origin, X-Origin, Referer
content-encoding: gzip
date: Sat, 04 May 2024 16:01:03 GMT
server: scaffolding on HTTPServer2
cache-control: private
content-length: 23
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
access-control-allow-origin: https://www.google.com
access-control-allow-credentials: true
access-control-expose-headers: vary,vary,vary,content-encoding,date,server,content-length
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

www.policlinicariovermelho.com.br/css/fontes/fontello/fontello.woff?7977416

187.1.137.73

200 OK

437 kB

URL GET HTTP/2
www.policlinicariovermelho.com.br/css/fontes/fontello/fontello.woff?7977416
IP
187.1.137.73:443
ASN
#28299 Cyberweb Networks Ltda

Requested by
https://www.policlinicariovermelho.com.br/home
Certificate
IssuerLet's Encrypt
Subjectpoliclinicariovermelho.com.br
Fingerprint45:15:BA:1C:E7:20:35:94:28:29:E9:6B:C6:B7:ED:FF:2E:F8:1C:46
ValidityThu, 02 May 2024 02:10:24 GMT - Wed, 31 Jul 2024 02:10:23 GMT

File type
Web Open Font Format, TrueType, length 436592, version 1.0
Size
437 kB (436592 bytes)
Hash
81376649163c582637eae0277415eab0
95cf4223e676d853746a55c52aad7a80cfb75888
35ed346bc151b9fa9c76de0cfe1caf96e9150fa68ead17a58b14231aec9b58a0

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	WhatsApp

HTTP Headers

GET /css/fontes/fontello/fontello.woff?7977416 HTTP/1.1
Host: www.policlinicariovermelho.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
DNT: 1
Connection: keep-alive
Referer: https://www.policlinicariovermelho.com.br/css/padrao/linkFontes.css
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
last-modified: Wed, 21 Sep 2022 20:34:43 GMT
etag: "6a970-5e935dff930c5"
accept-ranges: bytes
content-length: 436592
date: Sat, 04 May 2024 16:01:03 GMT
server: Apache
X-Firefox-Spdy: h2

www.policlinicariovermelho.com.br/funcoes/biblioteca/jquery-3.3.1.min.js

187.1.137.73

200 OK

16 kB

URL GET HTTP/2
www.policlinicariovermelho.com.br/funcoes/biblioteca/jquery-3.3.1.min.js
IP
187.1.137.73:443
ASN
#28299 Cyberweb Networks Ltda

Requested by
https://www.policlinicariovermelho.com.br/home
Certificate
IssuerLet's Encrypt
Subjectpoliclinicariovermelho.com.br
Fingerprint45:15:BA:1C:E7:20:35:94:28:29:E9:6B:C6:B7:ED:FF:2E:F8:1C:46
ValidityThu, 02 May 2024 02:10:24 GMT - Wed, 31 Jul 2024 02:10:23 GMT

File type

Size
16 kB (15501 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	WhatsApp

HTTP Headers

GET /funcoes/biblioteca/jquery-3.3.1.min.js HTTP/1.1
Host: www.policlinicariovermelho.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.policlinicariovermelho.com.br/home
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-encoding: gzip
vary: Accept-Encoding
content-type: text/html; charset=utf-8
date: Sat, 04 May 2024 16:01:02 GMT
server: Apache
X-Firefox-Spdy: h2

maps.googleapis.com/maps/api/js?client=google-maps-embed&paint_origin=&libraries=geometry,search&v=weekly&loading=async&language=en_US&callback=onApiLoad

142.250.74.74

200 OK

212 kB

URL GET HTTP/2
maps.googleapis.com/maps/api/js?client=google-maps-embed&paint_origin=&libraries=geometry,search&v=weekly&loading=async&language=en_US&callback=onApiLoad
IP
142.250.74.74:443
ASN
#15169 GOOGLE

Requested by
https://www.google.com/maps/embed?pb=!1m14!1m8!1m3!1d15549.969989192014!2d-38.4825777!3d-13.0042789!3m2!1i1024!2i768!4f13.1!3m3!1m2!1s0x0%3A0xbab06ccd3696a9f2!2sPoliclinica+Do+Rio+Vermelho!5e0!3m2!1spt-BR!2sbr!4v1547219693071
Certificate
IssuerGoogle Trust Services LLC
Subjectupload.video.google.com
Fingerprint36:49:20:36:0C:4D:DA:55:65:64:23:0F:49:3E:FA:78:87:35:A3:79
ValidityTue, 16 Apr 2024 04:17:12 GMT - Tue, 09 Jul 2024 04:17:11 GMT

File type
JavaScript source, ASCII text, with very long lines (10171)
Size
212 kB (212145 bytes)
Hash
e3ecdc499df19899d058ddd762d35d9c
72aab29aaffde6dc26fbb691ddca0da1db22f24a
acdc2be13973a04150a12bd049f3f52c92d6ad2750bd38c90b253454981bb286

HTTP Headers

GET /maps/api/js?client=google-maps-embed&paint_origin=&libraries=geometry,search&v=weekly&loading=async&language=en_US&callback=onApiLoad HTTP/1.1
Host: maps.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.google.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
cache-control: public, max-age=1800
content-type: text/javascript; charset=UTF-8
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
vary: Origin, X-Origin, Referer
content-encoding: gzip
date: Sat, 04 May 2024 16:01:03 GMT
server: scaffolding on HTTPServer2
content-length: 71443
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

www.policlinicariovermelho.com.br/css/responsivo.css

187.1.137.73

200 OK

14 kB

URL GET HTTP/2
www.policlinicariovermelho.com.br/css/responsivo.css
IP
187.1.137.73:443
ASN
#28299 Cyberweb Networks Ltda

Requested by
https://www.policlinicariovermelho.com.br/home
Certificate
IssuerLet's Encrypt
Subjectpoliclinicariovermelho.com.br
Fingerprint45:15:BA:1C:E7:20:35:94:28:29:E9:6B:C6:B7:ED:FF:2E:F8:1C:46
ValidityThu, 02 May 2024 02:10:24 GMT - Wed, 31 Jul 2024 02:10:23 GMT

File type
ASCII text
Size
14 kB (14034 bytes)
Hash
184ca05f6f8e8dfd2b49fba93dd7ba71
2f22d76f6e4ba90be3fb4b1f75ee7857da69fadf
3b73925d7382aa69e35c57eb90cf65543be42a0a7b514f2088a286b622620180

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	WhatsApp

HTTP Headers

GET /css/responsivo.css HTTP/1.1
Host: www.policlinicariovermelho.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.policlinicariovermelho.com.br/home
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
last-modified: Wed, 21 Sep 2022 20:34:27 GMT
etag: "36d2-5e935defba7fc"
accept-ranges: bytes
content-length: 14034
cache-control: max-age=1800
content-type: text/css
date: Sat, 04 May 2024 16:01:02 GMT
server: Apache
X-Firefox-Spdy: h2

www.policlinicariovermelho.com.br/js/jquerymenu.js

187.1.137.73

200 OK

16 kB

URL GET HTTP/2
www.policlinicariovermelho.com.br/js/jquerymenu.js
IP
187.1.137.73:443
ASN
#28299 Cyberweb Networks Ltda

Requested by
https://www.policlinicariovermelho.com.br/home
Certificate
IssuerLet's Encrypt
Subjectpoliclinicariovermelho.com.br
Fingerprint45:15:BA:1C:E7:20:35:94:28:29:E9:6B:C6:B7:ED:FF:2E:F8:1C:46
ValidityThu, 02 May 2024 02:10:24 GMT - Wed, 31 Jul 2024 02:10:23 GMT

File type

Size
16 kB (15501 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	WhatsApp

HTTP Headers

GET /js/jquerymenu.js HTTP/1.1
Host: www.policlinicariovermelho.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.policlinicariovermelho.com.br/home
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-encoding: gzip
vary: Accept-Encoding
content-type: text/html; charset=utf-8
date: Sat, 04 May 2024 16:01:02 GMT
server: Apache
X-Firefox-Spdy: h2

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

Public InfoSec YARA rules

OpenPhish

PhishTank

mnemonic secure dns

Quad9 DNS

ThreatFox

JavaScript (20)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML