Report - hbcsaude.com.br/

Report Overview

Submitted URL
hbcsaude.com.br/
IP
162.240.18.185
ASN
#46606 UNIFIEDLAYER-AS-1
Submitted
2022-10-06 19:15:17
Access
Website Title
Final URL
Tags
None
urlquery detections
No alerts detected

Detections

urlquery
0
Network Intrusion Detection
0
Threat Detection Systems
368

Domain Summary

Domain / FQDN	Rank	First Seen	Last Seen	Sent	Received	IP
hbcsaude.com.br	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	60 kB	4.9 MB	162.240.18.185
www.w3schools.com	17487	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	369 B	5.8 kB	192.229.133.221
ocsp.pki.goog	175	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	5.3 kB	11 kB	142.250.74.3
googleads.g.doubleclick.net	42	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	389 B	879 B	142.250.74.130
i.ytimg.com	109	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	390 B	21 kB	142.250.74.118
img-getpocket.cdn.mozilla.net	1631	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	3.2 kB	55 kB	34.120.237.76
fonts.googleapis.com	8877	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	845 B	4.5 kB	142.250.74.10
www.youtube.com	90	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	2.2 kB	155 kB	142.250.74.14
www.google.com	7	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	390 B	15 kB	142.250.74.164
secure.gravatar.com	1671	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	417 B	1.5 kB	192.0.73.2
ocsp.digicert.com	86	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	329 B	737 B	93.184.220.29
fonts.gstatic.com	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	1.5 kB	80 kB	216.58.207.195
static.doubleclick.net	333	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	367 B	886 B	142.250.74.166
jnn-pa.googleapis.com	2640	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	1.7 kB	2.2 kB	142.250.74.106
yt3.ggpht.com	203	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	432 B	3.0 kB	142.250.74.161
firefox.settings.services.mozilla.com	867	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	758 B	2.7 kB	54.230.111.35
r3.o.lencr.org	344	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	2.0 kB	5.3 kB	23.36.76.226
content-signature-2.cdn.mozilla.net	1152	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	401 B	5.8 kB	34.160.144.191
contile.services.mozilla.com	1114	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	321 B	229 B	34.117.237.239
push.services.mozilla.com	2140	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	594 B	127 B	35.161.136.21

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

OpenPhish

No alerts detected

PhishTank

No alerts detected

Fortinet's Web Filter

Scan Date	Severity	Indicator	Alert
2022-10-06	medium	hbcsaude.com.br/	Malware
2022-10-06	medium	hbcsaude.com.br/	Malware
2022-10-06	medium	hbcsaude.com.br/wp-content/plugins/themeone-shortcodes/shortcodes/css/shortcodes.css?ver=5.3.13	Malware
2022-10-06	medium	hbcsaude.com.br/wp-content/plugins/contact-form-7/includes/css/styles.css?ver=5.1.6	Malware
2022-10-06	medium	hbcsaude.com.br/wp-includes/css/dist/block-library/style.min.css?ver=5.3.13	Malware
2022-10-06	medium	hbcsaude.com.br/wp-content/plugins/themeone-shortcodes/shortcodes/css/pixelicons.css?ver=5.3.13	Malware
2022-10-06	medium	hbcsaude.com.br/wp-content/plugins/awesome-wp-image-gallery/css/prettyPhoto.css?ver=5.3.13	Malware
2022-10-06	medium	hbcsaude.com.br/wp-content/plugins/awesome-wp-image-gallery/css/image-gallery.css?ver=5.3.13	Malware
2022-10-06	medium	hbcsaude.com.br/wp-content/plugins/cookie-law-info/legacy/public/css/cookie-law-info-gdpr.css?ver=3.0.2	Malware
2022-10-06	medium	hbcsaude.com.br/wp-content/plugins/photo-gallery/css/bwg-fonts/fonts.css?ver=0.0.1	Malware
2022-10-06	medium	hbcsaude.com.br/wp-content/plugins/photo-gallery/css/jquery.mCustomScrollbar.min.css?ver=3.1.5	Malware
2022-10-06	medium	hbcsaude.com.br/wp-content/plugins/photo-gallery/css/styles.min.css?ver=1.7.6	Malware
2022-10-06	medium	hbcsaude.com.br/wp-content/plugins/themeone-shortcodes/shortcodes/css/linecons.css?ver=5.3.13	Malware
2022-10-06	medium	hbcsaude.com.br/wp-content/plugins/timetable/style/superfish.css?ver=5.3.13	Malware
2022-10-06	medium	hbcsaude.com.br/wp-content/plugins/timetable/style/style.css?ver=5.3.13	Malware
2022-10-06	medium	hbcsaude.com.br/wp-content/plugins/timetable/style/event_template.css?ver=5.3.13	Malware
2022-10-06	medium	hbcsaude.com.br/wp-content/plugins/wp-file-upload/css/wordpress_file_upload_style.css?ver=5.3.13	Malware
2022-10-06	medium	hbcsaude.com.br/wp-content/plugins/wp-file-upload/css/wordpress_file_upload_style_safe.css?ver=5.3.13	Malware
2022-10-06	medium	hbcsaude.com.br/wp-content/plugins/wp-file-upload/css/wordpress_file_upload_adminbarstyle.css?ver=5.3.13	Malware
2022-10-06	medium	hbcsaude.com.br/wp-content/plugins/wp-file-upload/vendor/jquery/jquery-ui.min.css?ver=5.3.13	Malware
2022-10-06	medium	hbcsaude.com.br/wp-includes/css/dashicons.min.css?ver=5.3.13	Malware
2022-10-06	medium	hbcsaude.com.br/wp-content/themes/mobius/css/mediaelementplayer.css?ver=5.3.13	Malware
2022-10-06	medium	hbcsaude.com.br/wp-content/themes/mobius/includes/post-like/post-like.css?ver=5.3.13	Malware
2022-10-06	medium	hbcsaude.com.br/wp-content/plugins/awesome-wp-image-gallery/js/jquery.prettyPhoto.js?ver=5.3.13	Malware
2022-10-06	medium	hbcsaude.com.br/wp-content/plugins/awesome-wp-image-gallery/js/pretiphoto.js?ver=5.3.13	Malware
2022-10-06	medium	hbcsaude.com.br/wp-content/plugins/cookie-law-info/legacy/public/js/cookie-law-info-public.js?ver=3.0.2	Malware
2022-10-06	medium	hbcsaude.com.br/wp-content/plugins/photo-gallery/js/jquery.sumoselect.min.js?ver=3.4.6	Malware
2022-10-06	medium	hbcsaude.com.br/wp-content/plugins/photo-gallery/js/jquery.mobile.min.js?ver=1.4.5	Malware
2022-10-06	medium	hbcsaude.com.br/wp-content/plugins/photo-gallery/js/jquery.fullscreen.min.js?ver=0.6.0	Malware
2022-10-06	medium	hbcsaude.com.br/wp-content/plugins/photo-gallery/js/circle-progress.js?ver=1.7.6	Malware
2022-10-06	medium	hbcsaude.com.br/wp-includes/js/jquery/ui/core.min.js?ver=1.11.4	Malware
2022-10-06	medium	hbcsaude.com.br/wp-content/plugins/wp-file-upload/js/wordpress_file_upload_functions.js?ver=5.3.13	Malware
2022-10-06	medium	hbcsaude.com.br/wp-includes/js/jquery/ui/datepicker.min.js?ver=1.11.4	Malware
2022-10-06	medium	hbcsaude.com.br/wp-content/plugins/wp-file-upload/vendor/jquery/jquery-ui-timepicker-addon.min.js?ver=5.3.13	Malware
2022-10-06	medium	hbcsaude.com.br/wp-content/plugins/photo-gallery/js/scripts.min.js?ver=1.7.6	Malware
2022-10-06	medium	hbcsaude.com.br/wp-content/plugins/slide-anything/owl-carousel/owl.carousel.css?ver=2.2.1.1	Malware
2022-10-06	medium	hbcsaude.com.br/wp-content/plugins/slide-anything/owl-carousel/sa-owl-theme.css?ver=2.0	Malware
2022-10-06	medium	hbcsaude.com.br/wp-content/plugins/slide-anything/owl-carousel/animate.min.css?ver=2.0	Malware
2022-10-06	medium	hbcsaude.com.br/wp-content/plugins/slide-anything/lightgallery/css/lightgallery-bundle.min.css?ver=2.5.0	Malware
2022-10-06	medium	hbcsaude.com.br/wp-content/plugins/cookie-law-info/legacy/public/css/cookie-law-info-table.css?ver=3.0.2	Malware
2022-10-06	medium	hbcsaude.com.br/wp-content/plugins/themeone-shortcodes/shortcodes/js/easypiechart.js?ver=2.1.3	Malware
2022-10-06	medium	hbcsaude.com.br/wp-content/plugins/themeone-shortcodes/shortcodes/js/jquery.appear.js?ver=1.0	Malware
2022-10-06	medium	hbcsaude.com.br/wp-content/plugins/themeone-shortcodes/shortcodes/js/themeone-shortcodes.js?ver=1.0	Malware
2022-10-06	medium	hbcsaude.com.br/wp-content/themes/mobius/includes/post-like/post-like.js?ver=1.0	Malware
2022-10-06	medium	hbcsaude.com.br/wp-content/plugins/contact-form-7/includes/js/scripts.js?ver=5.1.6	Malware
2022-10-06	medium	hbcsaude.com.br/wp-includes/js/jquery/ui/widget.min.js?ver=1.11.4	Malware
2022-10-06	medium	hbcsaude.com.br/wp-content/plugins/timetable/js/timetable.js?ver=5.3.13	Malware
2022-10-06	medium	hbcsaude.com.br/wp-includes/js/jquery/ui/slider.min.js?ver=1.11.4	Malware
2022-10-06	medium	hbcsaude.com.br/wp-content/themes/mobius/js/history.js?ver=1.0	Malware
2022-10-06	medium	hbcsaude.com.br/wp-content/themes/mobius/js/ajaxify.js?ver=1.0.1	Malware
2022-10-06	medium	hbcsaude.com.br/wp-content/themes/mobius/js/isotope.js?ver=1.5.25	Malware
2022-10-06	medium	hbcsaude.com.br/wp-content/themes/mobius/includes/mobius-grid/mobius-grid.js?ver=1.0	Malware
2022-10-06	medium	hbcsaude.com.br/wp-includes/js/comment-reply.min.js?ver=5.3.13	Malware
2022-10-06	medium	hbcsaude.com.br/wp-includes/js/hoverIntent.min.js?ver=1.8.1	Malware
2022-10-06	medium	hbcsaude.com.br/wp-content/plugins/megamenu/js/maxmegamenu.js?ver=2.9.8	Malware
2022-10-06	medium	hbcsaude.com.br/wp-includes/js/wp-embed.min.js?ver=5.3.13	Malware
2022-10-06	medium	hbcsaude.com.br/wp-content/plugins/slide-anything/owl-carousel/owl.carousel.min.js?ver=2.2.1	Malware
2022-10-06	medium	hbcsaude.com.br/wp-content/plugins/slide-anything/owl-carousel/owl.carousel2.thumbs.min.js?ver=0.1.8	Malware
2022-10-06	medium	hbcsaude.com.br/wp-content/plugins/slide-anything/lightgallery/lightgallery.min.js?ver=2.5.0	Malware
2022-10-06	medium	hbcsaude.com.br/wp-content/plugins/slide-anything/lightgallery/plugins/zoom/lg-zoom.min.js?ver=2.5.0	Malware
2022-10-06	medium	hbcsaude.com.br/wp-content/plugins/js_composer/assets/lib/waypoints/waypoints.min.js?ver=4.12.1	Malware
2022-10-06	medium	hbcsaude.com.br/wp-content/plugins/slide-anything/lightgallery/player.min.js?ver=2.17.1	Malware
2022-10-06	medium	hbcsaude.com.br/wp-includes/js/wp-emoji-release.min.js?ver=5.3.13	Malware
2022-10-06	medium	hbcsaude.com.br/wp-content/themes/mobius/css/icons/steadysets.ttf	Malware
2022-10-06	medium	hbcsaude.com.br/wp-content/themes/mobius/audio/blank.mp3	Malware
2022-10-06	medium	hbcsaude.com.br/wp-content/plugins/js_composer/assets/lib/bower/font-awesome/fonts/fontawesome-webfont.woff2?v=4.6.3	Malware
2022-10-06	medium	hbcsaude.com.br/wp-content/uploads/2017/10/H-Fachada-01-Final-500x350.jpeg	Malware
2022-10-06	medium	hbcsaude.com.br/wp-admin/admin-ajax.php	Malware

mnemonic secure dns

No alerts detected

Quad9 DNS

Scan Date	Severity	Indicator	Alert
2022-10-06	medium	hbcsaude.com.br	Sinkholed
2022-10-06	medium	hbcsaude.com.br	Sinkholed
2022-10-06	medium	hbcsaude.com.br	Sinkholed
2022-10-06	medium	hbcsaude.com.br	Sinkholed
2022-10-06	medium	hbcsaude.com.br	Sinkholed
2022-10-06	medium	hbcsaude.com.br	Sinkholed
2022-10-06	medium	hbcsaude.com.br	Sinkholed
2022-10-06	medium	hbcsaude.com.br	Sinkholed
2022-10-06	medium	hbcsaude.com.br	Sinkholed
2022-10-06	medium	hbcsaude.com.br	Sinkholed
2022-10-06	medium	hbcsaude.com.br	Sinkholed
2022-10-06	medium	hbcsaude.com.br	Sinkholed
2022-10-06	medium	hbcsaude.com.br	Sinkholed
2022-10-06	medium	hbcsaude.com.br	Sinkholed
2022-10-06	medium	hbcsaude.com.br	Sinkholed
2022-10-06	medium	hbcsaude.com.br	Sinkholed
2022-10-06	medium	hbcsaude.com.br	Sinkholed
2022-10-06	medium	hbcsaude.com.br	Sinkholed
2022-10-06	medium	hbcsaude.com.br	Sinkholed
2022-10-06	medium	hbcsaude.com.br	Sinkholed
2022-10-06	medium	hbcsaude.com.br	Sinkholed
2022-10-06	medium	hbcsaude.com.br	Sinkholed
2022-10-06	medium	hbcsaude.com.br	Sinkholed
2022-10-06	medium	hbcsaude.com.br	Sinkholed
2022-10-06	medium	hbcsaude.com.br	Sinkholed
2022-10-06	medium	hbcsaude.com.br	Sinkholed
2022-10-06	medium	hbcsaude.com.br	Sinkholed
2022-10-06	medium	hbcsaude.com.br	Sinkholed
2022-10-06	medium	hbcsaude.com.br	Sinkholed
2022-10-06	medium	hbcsaude.com.br	Sinkholed
2022-10-06	medium	hbcsaude.com.br	Sinkholed
2022-10-06	medium	hbcsaude.com.br	Sinkholed
2022-10-06	medium	hbcsaude.com.br	Sinkholed
2022-10-06	medium	hbcsaude.com.br	Sinkholed
2022-10-06	medium	hbcsaude.com.br	Sinkholed
2022-10-06	medium	hbcsaude.com.br	Sinkholed
2022-10-06	medium	hbcsaude.com.br	Sinkholed
2022-10-06	medium	hbcsaude.com.br	Sinkholed
2022-10-06	medium	hbcsaude.com.br	Sinkholed
2022-10-06	medium	hbcsaude.com.br	Sinkholed
2022-10-06	medium	hbcsaude.com.br	Sinkholed
2022-10-06	medium	hbcsaude.com.br	Sinkholed
2022-10-06	medium	hbcsaude.com.br	Sinkholed
2022-10-06	medium	hbcsaude.com.br	Sinkholed
2022-10-06	medium	hbcsaude.com.br	Sinkholed
2022-10-06	medium	hbcsaude.com.br	Sinkholed
2022-10-06	medium	hbcsaude.com.br	Sinkholed
2022-10-06	medium	hbcsaude.com.br	Sinkholed
2022-10-06	medium	hbcsaude.com.br	Sinkholed
2022-10-06	medium	hbcsaude.com.br	Sinkholed
2022-10-06	medium	hbcsaude.com.br	Sinkholed
2022-10-06	medium	hbcsaude.com.br	Sinkholed
2022-10-06	medium	hbcsaude.com.br	Sinkholed
2022-10-06	medium	hbcsaude.com.br	Sinkholed
2022-10-06	medium	hbcsaude.com.br	Sinkholed
2022-10-06	medium	hbcsaude.com.br	Sinkholed
2022-10-06	medium	hbcsaude.com.br	Sinkholed
2022-10-06	medium	hbcsaude.com.br	Sinkholed
2022-10-06	medium	hbcsaude.com.br	Sinkholed
2022-10-06	medium	hbcsaude.com.br	Sinkholed
2022-10-06	medium	hbcsaude.com.br	Sinkholed
2022-10-06	medium	hbcsaude.com.br	Sinkholed
2022-10-06	medium	hbcsaude.com.br	Sinkholed
2022-10-06	medium	hbcsaude.com.br	Sinkholed
2022-10-06	medium	hbcsaude.com.br	Sinkholed
2022-10-06	medium	hbcsaude.com.br	Sinkholed
2022-10-06	medium	hbcsaude.com.br	Sinkholed
2022-10-06	medium	hbcsaude.com.br	Sinkholed
2022-10-06	medium	hbcsaude.com.br	Sinkholed
2022-10-06	medium	hbcsaude.com.br	Sinkholed
2022-10-06	medium	hbcsaude.com.br	Sinkholed
2022-10-06	medium	hbcsaude.com.br	Sinkholed
2022-10-06	medium	hbcsaude.com.br	Sinkholed
2022-10-06	medium	hbcsaude.com.br	Sinkholed
2022-10-06	medium	hbcsaude.com.br	Sinkholed
2022-10-06	medium	hbcsaude.com.br	Sinkholed
2022-10-06	medium	hbcsaude.com.br	Sinkholed
2022-10-06	medium	hbcsaude.com.br	Sinkholed
2022-10-06	medium	hbcsaude.com.br	Sinkholed
2022-10-06	medium	hbcsaude.com.br	Sinkholed
2022-10-06	medium	hbcsaude.com.br	Sinkholed
2022-10-06	medium	hbcsaude.com.br	Sinkholed
2022-10-06	medium	hbcsaude.com.br	Sinkholed
2022-10-06	medium	hbcsaude.com.br	Sinkholed
2022-10-06	medium	hbcsaude.com.br	Sinkholed
2022-10-06	medium	hbcsaude.com.br	Sinkholed
2022-10-06	medium	hbcsaude.com.br	Sinkholed
2022-10-06	medium	hbcsaude.com.br	Sinkholed
2022-10-06	medium	hbcsaude.com.br	Sinkholed
2022-10-06	medium	hbcsaude.com.br	Sinkholed
2022-10-06	medium	hbcsaude.com.br	Sinkholed
2022-10-06	medium	hbcsaude.com.br	Sinkholed
2022-10-06	medium	hbcsaude.com.br	Sinkholed
2022-10-06	medium	hbcsaude.com.br	Sinkholed
2022-10-06	medium	hbcsaude.com.br	Sinkholed
2022-10-06	medium	hbcsaude.com.br	Sinkholed
2022-10-06	medium	hbcsaude.com.br	Sinkholed
2022-10-06	medium	hbcsaude.com.br	Sinkholed
2022-10-06	medium	hbcsaude.com.br	Sinkholed
2022-10-06	medium	hbcsaude.com.br	Sinkholed
2022-10-06	medium	hbcsaude.com.br	Sinkholed
2022-10-06	medium	hbcsaude.com.br	Sinkholed
2022-10-06	medium	hbcsaude.com.br	Sinkholed
2022-10-06	medium	hbcsaude.com.br	Sinkholed
2022-10-06	medium	hbcsaude.com.br	Sinkholed
2022-10-06	medium	hbcsaude.com.br	Sinkholed
2022-10-06	medium	hbcsaude.com.br	Sinkholed
2022-10-06	medium	hbcsaude.com.br	Sinkholed
2022-10-06	medium	hbcsaude.com.br	Sinkholed
2022-10-06	medium	hbcsaude.com.br	Sinkholed
2022-10-06	medium	hbcsaude.com.br	Sinkholed
2022-10-06	medium	hbcsaude.com.br	Sinkholed
2022-10-06	medium	hbcsaude.com.br	Sinkholed
2022-10-06	medium	hbcsaude.com.br	Sinkholed
2022-10-06	medium	hbcsaude.com.br	Sinkholed
2022-10-06	medium	hbcsaude.com.br	Sinkholed

JavaScript (198)

	URL	Size	First Seen	Last Seen
	hbcsaude.com.br/wp-content/plugins/contact-form-7/includes/js/scripts.js?ver=5.1.6	14 kB	2023-03-07	2024-04-18
Pretty URL hbcsaude.com.br/wp-content/plugins/contact-form-7/includes/js/scripts.js?ver=5.1.6 IP 162.240.18.185 ASN #46606 UNIFIEDLAYER-AS-1 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:37 Last Seen2024-04-18 05:49:36 Times Seen6653 Hash 1534f06aa2b1b721a45372f8238e2461 86f7e7b926e1a88209d171b56dadbccc2c96f578 b7e17926b30342edecee8b3a93029ac51462e2b479277d8e077ba57173eb1900 Loading...

	hbcsaude.com.br/wp-includes/js/jquery/ui/tabs.min.js?ver=1.11.4	12 kB	2023-03-07	2024-04-14
Pretty URL hbcsaude.com.br/wp-includes/js/jquery/ui/tabs.min.js?ver=1.11.4 IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:07:28 Last Seen2024-04-14 23:43:23 Times Seen947 Hash f2c8bed453ea6a55cad903c5e367bc4f 96323cb37f985657f8133dfbc452c189e277c2f1 b91aab00697781a1fb184945cd6e7602db0d45458fa58a53156110945f2b71be Loading...

	hbcsaude.com.br/wp-content/themes/mobius/js/modernizr.js?ver=2.7.1	9.5 kB	2023-03-08	2023-04-01
Pretty URL hbcsaude.com.br/wp-content/themes/mobius/js/modernizr.js?ver=2.7.1 IP 162.240.18.185 ASN #46606 UNIFIEDLAYER-AS-1 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 07:41:32 Last Seen2023-04-01 11:02:25 Times Seen2 Hash 23e4427d1a5f8618f4a8dcec86f80137 dc5f2b5d071cc8dbff36726d1f519e256d00c3c6 f8ead6f1fe249e00ab6812a8630c0eb4757a070d1b43be87de55613fa29825a4 Loading...

	hbcsaude.com.br/wp-content/plugins/photo-gallery/js/jquery.fullscreen.min.js?ver=0.6.0	6.3 kB	2023-03-07	2024-04-19
Pretty URL hbcsaude.com.br/wp-content/plugins/photo-gallery/js/jquery.fullscreen.min.js?ver=0.6.0 IP 162.240.18.185 ASN #46606 UNIFIEDLAYER-AS-1 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:36:38 Last Seen2024-04-19 10:30:00 Times Seen1127 Hash 9365b9e965c8e638a21745217e5f2d5c 2a1964476db3f43551f24c1754e272b2917a934b e959dd8ec932148a2df2bc3f2d63d9fe02104910a31ed6dab421e96c03692088 Loading...

	hbcsaude.com.br/	3.1 kB	2023-03-07	2023-12-26
Pretty URL hbcsaude.com.br/ IP 162.240.18.185 ASN #46606 UNIFIEDLAYER-AS-1 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:03:26 Last Seen2023-12-26 08:33:16 Times Seen12 Hash 5ad2d9651190ed8a936595809286c3f3 67795a34be68e0320efbc3d45c5d6211a63ce3b2 14cc75444b16abf1785b4ae2e3dc9961c5b8cb2131a2c2ee7b5754ad01f37316 Loading...

	hbcsaude.com.br/wp-content/themes/mobius/js/easing.js?ver=1.3	3.8 kB	2023-03-08	2023-04-01
Pretty URL hbcsaude.com.br/wp-content/themes/mobius/js/easing.js?ver=1.3 IP 162.240.18.185 ASN #46606 UNIFIEDLAYER-AS-1 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 07:41:32 Last Seen2023-04-01 11:02:25 Times Seen2 Hash 4e0b4337fab25ad7d06c5da22e00058c f9f280e24036507042fe17dbdc3d68b0408650f4 4483f34d4a7d1499dc9a018044ed75f0f94ee25d9799c27ef88f9618955ff120 Loading...

	www.google.com/js/th/qs_eGd-h9f3_frMeplByuCjrJjGTr5iyl3j-JE2Mo0s.js	37 kB	2023-03-08	2023-03-08
Pretty URL www.google.com/js/th/qs_eGd-h9f3_frMeplByuCjrJjGTr5iyl3j-JE2Mo0s.js IP 142.250.74.164 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 05:59:06 Last Seen2023-03-08 08:06:41 Times Seen1 Hash f9566cabdecd8fb34fb05b88ae081a7f b4dfc0a73e8b062f066d1cb69c29c4ddada0af1f aacfde19dfa1f5fdff7eb31ea65072b828eb263193af98b29778fe244d8ca34b Loading...

	hbcsaude.com.br/wp-includes/js/wp-embed.min.js?ver=5.3.13	1.4 kB	2023-03-07	2024-04-23
Pretty URL hbcsaude.com.br/wp-includes/js/wp-embed.min.js?ver=5.3.13 IP 162.240.18.185 ASN #46606 UNIFIEDLAYER-AS-1 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:19 Last Seen2024-04-23 05:14:55 Times Seen2986 Hash 570ae0f3c201604926ea599d3d1f6c04 2c29243a73660964d4712b969d2a15e27777bc14 5138d39633dc69fcd0ed7f33a5e38dc339123f682fa7f5242066879c2bbc8c9b Loading...

	hbcsaude.com.br/wp-content/plugins/slide-anything/lightgallery/player.min.js?ver=2.17.1	21 kB	2023-03-07	2024-04-21
Pretty URL hbcsaude.com.br/wp-content/plugins/slide-anything/lightgallery/player.min.js?ver=2.17.1 IP 162.240.18.185 ASN #46606 UNIFIEDLAYER-AS-1 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 16:43:53 Last Seen2024-04-21 06:06:13 Times Seen353 Hash 62f1606f96c799e47654690db0c05209 81981bc649f012b89ed626f07e67bb94c9425cd2 2e5f6d540d1065ced97dfbaf7b524dbfcad734bd7fdf831562dc761ed61b99af Loading...

	hbcsaude.com.br/wp-content/plugins/cookie-law-info/legacy/public/js/cookie-law-info-public.js?ver=3.0.2	34 kB	2023-03-07	2024-04-22
Pretty URL hbcsaude.com.br/wp-content/plugins/cookie-law-info/legacy/public/js/cookie-law-info-public.js?ver=3.0.2 IP 162.240.18.185 ASN #46606 UNIFIEDLAYER-AS-1 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:03:28 Last Seen2024-04-22 11:49:07 Times Seen7228 Hash dffa195b546cf1dfd52f2206955eb892 a3d48e8f126eb96d12191d76ed71ad2bc8651d59 6c52384c7b0641dd1ead85d079c22d39bcc6dc5f2537afb1e6396bb619771a3f Loading...

	hbcsaude.com.br/wp-includes/js/jquery/ui/datepicker.min.js?ver=1.11.4	36 kB	2023-03-07	2024-03-27
Pretty URL hbcsaude.com.br/wp-includes/js/jquery/ui/datepicker.min.js?ver=1.11.4 IP 162.240.18.185 ASN #46606 UNIFIEDLAYER-AS-1 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:40:50 Last Seen2024-03-27 18:44:49 Times Seen801 Hash a236bd4097fcbfb009f64238dc4443a1 ddbeeaa10749e4a74fe624ced0531b9243235dd2 2c3f3b95a692312d9b75815ecb949a40c2a701ff148fe865fde55556c810a22c Loading...

	hbcsaude.com.br/wp-includes/js/jquery/ui/core.min.js?ver=1.11.4	3.9 kB	2023-03-07	2024-04-15
Pretty URL hbcsaude.com.br/wp-includes/js/jquery/ui/core.min.js?ver=1.11.4 IP 162.240.18.185 ASN #46606 UNIFIEDLAYER-AS-1 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:07:28 Last Seen2024-04-15 15:38:28 Times Seen3887 Hash e6784d91bf2c668bc4093063c5b15113 687e1d2e957a821280dbd205ae66182f16dfdc30 194ebae85ff853319e8668f23a4c5bf371a7d9f5d550a40980ab53026ddaaa17 Loading...

	www.youtube.com/embed/ZhZq4vPVxUA	60 kB	2023-03-08	2023-03-08
Pretty URL www.youtube.com/embed/ZhZq4vPVxUA IP 142.250.74.14 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 07:41:32 Last Seen2023-03-08 07:41:32 Times Seen1 Hash caeaa52d12024d341813bff10f42721d 78126443afe0db8d274dfda5dde60a069e33b5a1 20f4afa76e78a5a160f9b2f07fb5b640009f5e1a347b8811cabb6db6882d5bb7 Loading...

	hbcsaude.com.br/wp-includes/js/jquery/ui/mouse.min.js?ver=1.11.4	3.1 kB	2023-03-07	2024-04-15
Pretty URL hbcsaude.com.br/wp-includes/js/jquery/ui/mouse.min.js?ver=1.11.4 IP 162.240.18.185 ASN #46606 UNIFIEDLAYER-AS-1 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:07:28 Last Seen2024-04-15 15:38:28 Times Seen1874 Hash 412416b5df69805b1e084e50d4283c2f b8c47463c0793854638a8981cfad35503f393297 7e8d54d6c6a4ebd0237786d41ff5d205096eda696f2a5b591e074fe94ba3b3af Loading...

	www.youtube.com/s/player/55fdc514/player_ias.vflset/en_US/embed.js	26 kB	2023-03-08	2023-03-08
Pretty URL www.youtube.com/s/player/55fdc514/player_ias.vflset/en_US/embed.js IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 06:41:51 Last Seen2023-03-08 07:56:22 Times Seen1 Hash e9da8d9d7801231515f83d0aa24dd97d c0b7fb839abbe4d81a5de880bfd4922e50860757 cc99093ffca6101fdb58f944db8d0c81c625287db6883c6ae17e94d0e2ea4d5e Loading...

	hbcsaude.com.br/wp-content/plugins/slide-anything/owl-carousel/owl.carousel.min.js?ver=2.2.1	44 kB	2023-03-07	2024-04-23
Pretty URL hbcsaude.com.br/wp-content/plugins/slide-anything/owl-carousel/owl.carousel.min.js?ver=2.2.1 IP 162.240.18.185 ASN #46606 UNIFIEDLAYER-AS-1 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:37 Last Seen2024-04-23 08:12:20 Times Seen19877 Hash f416f9031fef25ae25ba9756e3eb6978 e2a600e433df72b4cfde93d7880e3114917a3cbe a53c43f834b32309b084ea9314df8307e9c78cee2202c6e07f216ae4ae5b704d Loading...

	www.youtube.com/iframe_api	992 B	2023-03-08	2023-03-08
Pretty URL www.youtube.com/iframe_api IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 06:41:42 Last Seen2023-03-08 07:54:20 Times Seen1 Hash f5e933f63b468743c38b5342a1d8d80a da4c4e9a573d00e353f77bf70e0d2712e81e023f 30f9f4e300b9d4035f06a39f498e6331d077b476e20ba22a57be18a358f6b6e1 Loading...

	hbcsaude.com.br/wp-content/plugins/photo-gallery/js/jquery.sumoselect.min.js?ver=3.4.6	22 kB	2023-03-07	2024-04-19
Pretty URL hbcsaude.com.br/wp-content/plugins/photo-gallery/js/jquery.sumoselect.min.js?ver=3.4.6 IP 162.240.18.185 ASN #46606 UNIFIEDLAYER-AS-1 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:36:38 Last Seen2024-04-19 10:30:00 Times Seen983 Hash 2ed97891e0a448815edd04a37a5d5da3 d79a3b0fff5930bf1a7838836157b35f94eb378c 5555617065279e031d5d4f93dfd8ce37aab481221c6c1d38eda5d90798cc4ea5 Loading...

	www.youtube.com/s/player/55fdc514/www-widgetapi.vflset/www-widgetapi.js	162 kB	2023-03-08	2023-03-08
Pretty URL www.youtube.com/s/player/55fdc514/www-widgetapi.vflset/www-widgetapi.js IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 06:41:42 Last Seen2023-03-08 12:35:24 Times Seen1 Hash 35430cfc9fb8f5ff3640ac3130b8f932 275337c9cadcbaf6e3a4b16f6f44ec4b72bf3008 b3c6274fe89262c873db64636d4606793d94d6cba08645e8d9a78377d9f10cf6 Loading...

	hbcsaude.com.br/wp-includes/js/jquery/ui/widget.min.js?ver=1.11.4	6.8 kB	2023-03-07	2024-04-15
Pretty URL hbcsaude.com.br/wp-includes/js/jquery/ui/widget.min.js?ver=1.11.4 IP 162.240.18.185 ASN #46606 UNIFIEDLAYER-AS-1 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:07:28 Last Seen2024-04-15 15:38:28 Times Seen2032 Hash 2fb11e1fba920ce6191aaf65473894ff 858e35ea212ce2c331f6f2b4980b55fa5bac29f5 1b4f1024fa4887b47765e2ad4db9bc1f6ea96335f77fd44c62b8538d75e7190c Loading...

	www.youtube.com/embed/ZhZq4vPVxUA	26 B	2023-03-07	2024-04-22
Pretty URL www.youtube.com/embed/ZhZq4vPVxUA IP 142.250.74.14 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:14 Last Seen2024-04-22 20:51:43 Times Seen34083 Hash 173a08c5d6adc5c93611a599bcb2c717 735a7301e66ae2c3584357f7bf0bf09eefb62df0 271e6368679a21c3416e2a0325db33d6bc445d601c72a49914081b5efd0cdf3f Loading...

	hbcsaude.com.br/	149 B	2023-03-07	2024-04-22
Pretty URL hbcsaude.com.br/ IP 162.240.18.185 ASN #46606 UNIFIEDLAYER-AS-1 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:03:22 Last Seen2024-04-22 14:32:39 Times Seen2858 Hash 931deb2e7bef82d78d1c1b0a3fe4fe32 2a468d77a19124c4bcd1745b7f51eff01b269ade afb2b21f29cd5d7fc5b63a8ea02ece9649603b9e63a2afa55927c508345e1ee7 Loading...

	hbcsaude.com.br/wp-content/plugins/slide-anything/lightgallery/plugins/video/lg-video.min.js?ver=2.5.0	8.1 kB	2023-03-07	2024-04-21
Pretty URL hbcsaude.com.br/wp-content/plugins/slide-anything/lightgallery/plugins/video/lg-video.min.js?ver=2.5.0 IP 162.240.18.185 ASN #46606 UNIFIEDLAYER-AS-1 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 16:43:53 Last Seen2024-04-21 06:06:13 Times Seen348 Hash ca7e6c3f90d8150f56a2c45ebd64bbf7 bb08fa10e33b51bdfca494327a9209e431fd89aa 168215843acd002f4e7f445df56a71c35c847f52091f25818de37afa6646fa5e Loading...

	hbcsaude.com.br/	84 B	2023-03-08	2023-06-21
Pretty URL hbcsaude.com.br/ IP 162.240.18.185 ASN #46606 UNIFIEDLAYER-AS-1 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 07:41:32 Last Seen2023-06-21 12:35:21 Times Seen3 Hash 91382d208c09ab1e68f430164a3be2bd 7d36ac6fa5f5258842a399fa02af76c3b8152c44 766db30a857879f213e847faa71b1f5f006cd627f51c788381b099002cb9f4c0 Loading...

	hbcsaude.com.br/wp-content/plugins/photo-gallery/js/jquery.mCustomScrollbar.concat.min.js?ver=3.1.5	46 kB	2023-03-07	2024-04-19
Pretty URL hbcsaude.com.br/wp-content/plugins/photo-gallery/js/jquery.mCustomScrollbar.concat.min.js?ver=3.1.5 IP 162.240.18.185 ASN #46606 UNIFIEDLAYER-AS-1 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:36:38 Last Seen2024-04-19 10:30:00 Times Seen1249 Hash 47caf35a29f15dd5c20a41298b3586ea c4ee5f891da78820029f9974a65e01a07d88f7eb d281c3057af206c0a210770246ef115057cd21081778be6229fd85f4a99d18bb Loading...

	hbcsaude.com.br/wp-content/plugins/themeone-shortcodes/shortcodes/js/themeone-shortcodes.js?ver=1.0	40 kB	2023-03-08	2023-04-01
Pretty URL hbcsaude.com.br/wp-content/plugins/themeone-shortcodes/shortcodes/js/themeone-shortcodes.js?ver=1.0 IP 162.240.18.185 ASN #46606 UNIFIEDLAYER-AS-1 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 07:41:32 Last Seen2023-04-01 11:02:25 Times Seen2 Hash feec7723cbfd8ee8561d38afa5d05688 830e97499564a6d7624644ec740f191c58173ebf f1f8a1a964fab82a7efff9570486caefcac0b027b31020ad125e24dd344654cd Loading...

	hbcsaude.com.br/wp-content/plugins/timetable/js/jquery.ba-bbq.min.js?ver=5.3.13	4.1 kB	2023-03-07	2024-04-12
Pretty URL hbcsaude.com.br/wp-content/plugins/timetable/js/jquery.ba-bbq.min.js?ver=5.3.13 IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:09:41 Last Seen2024-04-12 17:25:37 Times Seen418 Hash 07c72646c76932834219ef6827451df3 42a48a21f1cfe2e38c2d7983c3120fa3c4fbad04 4390c59a398ab1d124b5daa588728b1f05dede144555b4b29706363eaa000bef Loading...

	hbcsaude.com.br/wp-content/themes/mobius/js/smoothscroll.js?ver=1.2.1	5.2 kB	2023-03-08	2023-04-01
Pretty URL hbcsaude.com.br/wp-content/themes/mobius/js/smoothscroll.js?ver=1.2.1 IP 162.240.18.185 ASN #46606 UNIFIEDLAYER-AS-1 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 07:41:32 Last Seen2023-04-01 11:02:25 Times Seen2 Hash 812d9b530337876e7878066f9ceaac54 3a5a681b358c46c3627ffe28ed1b0e421c9d05ad 9f40b4641b3ac43abf9a3a1db426ea9de3646d62ce0abc436dd58eb62510d992 Loading...

	hbcsaude.com.br/wp-content/themes/mobius/js/history.js?ver=1.0	16 kB	2023-03-07	2024-04-17
Pretty URL hbcsaude.com.br/wp-content/themes/mobius/js/history.js?ver=1.0 IP 162.240.18.185 ASN #46606 UNIFIEDLAYER-AS-1 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 22:06:33 Last Seen2024-04-17 23:19:22 Times Seen85 Hash bc11e3a60761a44c474e121e75a19f2a 8c62710a50c385d30b711e6da0724c7d86a61ba4 153302ccd34df160b9a5c101e8abdfb45f802882ae11ba76b51f7a59f4071e8c Loading...

	hbcsaude.com.br/wp-content/themes/mobius/includes/mobius-grid/mobius-grid.js?ver=1.0	38 kB	2023-03-08	2023-04-01
Pretty URL hbcsaude.com.br/wp-content/themes/mobius/includes/mobius-grid/mobius-grid.js?ver=1.0 IP 162.240.18.185 ASN #46606 UNIFIEDLAYER-AS-1 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 07:41:32 Last Seen2023-04-01 11:02:25 Times Seen2 Hash 2b3cd34c8c27f4266ecea4b2fbc095b5 1f6771b94aec6c1f2629c85edf9a68786fbde64d 954916cc9221e6cc13ffe866273e122151fff1c9f7877499499f01d0fea76153 Loading...

	hbcsaude.com.br/wp-includes/js/comment-reply.min.js?ver=5.3.13	2.3 kB	2023-03-07	2024-04-18
Pretty URL hbcsaude.com.br/wp-includes/js/comment-reply.min.js?ver=5.3.13 IP 162.240.18.185 ASN #46606 UNIFIEDLAYER-AS-1 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:17:46 Last Seen2024-04-18 11:14:37 Times Seen379 Hash 3cd8856198e0175189f2c27d2e9b630f ecbb3c0e398b3d652d3f1ce73633083459a71445 3d5ae546163be6946a8ae9f9040891688b6ef62d1852a0d5d72f8e04ddbe7af5 Loading...

	hbcsaude.com.br/	78 B	2023-03-07	2024-04-22
Pretty URL hbcsaude.com.br/ IP 162.240.18.185 ASN #46606 UNIFIEDLAYER-AS-1 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:24:09 Last Seen2024-04-22 08:45:30 Times Seen2739 Hash 01e23790be4ce2b3aba2dc09884a374c 23e94090b7c158bea7e8a9c732423a1c7ec29e85 3b42ad7bcd4a7cd47666bd0d1b0d2daff953e15314f1b0577f51d90a192e0a12 Loading...

	hbcsaude.com.br/wp-content/plugins/wp-file-upload/vendor/jquery/jquery-ui-timepicker-addon.min.js?ver=5.3.13	41 kB	2023-03-07	2024-04-06
Pretty URL hbcsaude.com.br/wp-content/plugins/wp-file-upload/vendor/jquery/jquery-ui-timepicker-addon.min.js?ver=5.3.13 IP 162.240.18.185 ASN #46606 UNIFIEDLAYER-AS-1 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:02:09 Last Seen2024-04-06 16:51:58 Times Seen111 Hash 302bea5eea22ed7977174b013cfc307a 9e48e6bef8f7512bb853d2c7098985232ce4d1cb cdf6e101693261003024f15e62d081789a1ae71b9ba7ebfa9bf7a451275a9769 Loading...

	hbcsaude.com.br/wp-content/plugins/slide-anything/lightgallery/lightgallery.min.js?ver=2.5.0	48 kB	2023-03-07	2024-04-21
Pretty URL hbcsaude.com.br/wp-content/plugins/slide-anything/lightgallery/lightgallery.min.js?ver=2.5.0 IP 162.240.18.185 ASN #46606 UNIFIEDLAYER-AS-1 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 16:43:53 Last Seen2024-04-21 06:06:13 Times Seen381 Hash c3a7f09071a3192bb240ac65fca4652c aab0ec17c12a686113d98b9cb84fd555baed0bc8 36a645d3794b6b842cfb7334ea05262cc0133e62e02ff472d2b991719598e28a Loading...

	hbcsaude.com.br/	1.9 kB	2023-03-08	2023-03-10
Pretty URL hbcsaude.com.br/ IP 162.240.18.185 ASN #46606 UNIFIEDLAYER-AS-1 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 07:41:32 Last Seen2023-03-10 09:28:34 Times Seen1 Hash 5dfecb7240e588480199d53420bf48b7 db40ed0bd80c38239605e073a4011b8d286a4860 118d337a2d43d8f9c043a8953b980eb53f574d302f80ffc09d48b749f487e8ee Loading...

	hbcsaude.com.br/wp-includes/js/jquery/ui/slider.min.js?ver=1.11.4	11 kB	2023-03-07	2024-03-27
Pretty URL hbcsaude.com.br/wp-includes/js/jquery/ui/slider.min.js?ver=1.11.4 IP 162.240.18.185 ASN #46606 UNIFIEDLAYER-AS-1 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:42:12 Last Seen2024-03-27 18:44:49 Times Seen571 Hash aa205fbfb232b9cb5f104142e7183b36 d73fef1ae7c9fc260dba69e57658793f01590eea bf9d214a2ec4f01d57a72fa4417e1cd8f895800b277b6040eb98c77e4b49e668 Loading...

	hbcsaude.com.br/	99 B	2023-03-08	2023-03-10
Pretty URL hbcsaude.com.br/ IP 162.240.18.185 ASN #46606 UNIFIEDLAYER-AS-1 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 07:41:32 Last Seen2023-03-10 09:28:34 Times Seen1 Hash c419a83ab8b93ce469e0a6ce9f5b82b0 fc08fafeeca1966098a19f97832f5609dc3d58f6 817bc5238bc623ce7bea342e30a50ac18938fecb3687fb34882fc2317bfbdeba Loading...

	hbcsaude.com.br/wp-includes/js/hoverIntent.min.js?ver=1.8.1	1.1 kB	2023-03-07	2024-04-18
Pretty URL hbcsaude.com.br/wp-includes/js/hoverIntent.min.js?ver=1.8.1 IP 162.240.18.185 ASN #46606 UNIFIEDLAYER-AS-1 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:10:31 Last Seen2024-04-18 21:08:33 Times Seen1401 Hash 3dc5811cb7bb6e67b9054c8c39f9f4c9 ced11144eb84a14db2b3b0ab92998128c5e88204 124f0860b7201dc2fa46889b30ac0e4269e84ac2e71c33dc025ed14ed15bd8f0 Loading...

	hbcsaude.com.br/wp-content/plugins/slide-anything/js/jquery.mousewheel.min.js?ver=3.1.13	2.7 kB	2023-03-07	2024-04-21
Pretty URL hbcsaude.com.br/wp-content/plugins/slide-anything/js/jquery.mousewheel.min.js?ver=3.1.13 IP 162.240.18.185 ASN #46606 UNIFIEDLAYER-AS-1 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:38:48 Last Seen2024-04-21 06:06:13 Times Seen421 Hash 3b68c00ec27ba83225551c18b3fbacb3 06f3abfab3f7c299ab3ef31d87efeb6ca31ebf93 b5c01ed37bcc9042d489740e6ea718fd958bfb6a3cb3fc1252168c76e835e826 Loading...

	hbcsaude.com.br/wp-content/plugins/js_composer/assets/lib/waypoints/waypoints.min.js?ver=4.12.1	8.0 kB	2023-03-07	2024-04-22
Pretty URL hbcsaude.com.br/wp-content/plugins/js_composer/assets/lib/waypoints/waypoints.min.js?ver=4.12.1 IP 162.240.18.185 ASN #46606 UNIFIEDLAYER-AS-1 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:11:35 Last Seen2024-04-22 08:45:31 Times Seen2094 Hash ac5840cf0870ecc0833ec7f0b46abdac b01f657a7b0d93cfd47fa06bd07dd6c9e6605629 8d73392f1f569c51f57b7f9a30278358484f1795584aa2cd540e5b8ea650593e Loading...

	hbcsaude.com.br/wp-content/plugins/awesome-wp-image-gallery/js/jquery.prettyPhoto.js?ver=5.3.13	22 kB	2023-03-07	2024-04-12
Pretty URL hbcsaude.com.br/wp-content/plugins/awesome-wp-image-gallery/js/jquery.prettyPhoto.js?ver=5.3.13 IP 162.240.18.185 ASN #46606 UNIFIEDLAYER-AS-1 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:35:07 Last Seen2024-04-12 21:50:09 Times Seen989 Hash f81c3c778084503cad39095830c6b3f1 bc381d45657dbc8d47ed45dca67320f421966f04 47ec7ea65620c8be7945819dd593916a9c7c892e727e645c2990819c414ff31c Loading...

	www.youtube.com/embed/ZhZq4vPVxUA	13 B	2023-03-07	2024-04-22
Pretty URL www.youtube.com/embed/ZhZq4vPVxUA IP 142.250.74.14 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:14 Last Seen2024-04-22 20:51:44 Times Seen34042 Hash d8fb965e7ead2924508e97e5326bd3b1 fae376d0cb54d4433b7bdc9aba04690cd6cb5d27 57bb660c2fdf4369ff8e37f99b26963dba87c120b80c443ff3d31e030ab3a0f5 Loading...

	hbcsaude.com.br/wp-content/themes/mobius/js/hammer.js?ver=1.0.7	13 kB	2023-03-08	2023-04-01
Pretty URL hbcsaude.com.br/wp-content/themes/mobius/js/hammer.js?ver=1.0.7 IP 162.240.18.185 ASN #46606 UNIFIEDLAYER-AS-1 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 07:41:32 Last Seen2023-04-01 11:02:24 Times Seen2 Hash dde4d99f1779ce7dfc412c22486e37a8 3e504b4f9ff3553e9b831627ecabf3da9eea8145 8dc38187f8adcdf7858a3f324205d26f06a94f3531f17981c078ee009a60ca02 Loading...

	hbcsaude.com.br/	1.2 kB	2023-03-08	2023-03-10
Pretty URL hbcsaude.com.br/ IP 162.240.18.185 ASN #46606 UNIFIEDLAYER-AS-1 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 07:41:32 Last Seen2023-03-10 09:28:34 Times Seen1 Hash 22a3637b031b6dc5ed1f2072507f7c4a b1a9a608c6ea06c4dd23f764277e1fc14994c3ec 979636c6cb85c6768f9b9463ff5b4ca30bedc00422d81007bb05fda48fa44fb1 Loading...

	hbcsaude.com.br/wp-includes/js/jquery/jquery-migrate.min.js?ver=1.4.1	10 kB	2023-03-07	2024-04-23
Pretty URL hbcsaude.com.br/wp-includes/js/jquery/jquery-migrate.min.js?ver=1.4.1 IP 162.240.18.185 ASN #46606 UNIFIEDLAYER-AS-1 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:37 Last Seen2024-04-23 05:14:55 Times Seen37149 Hash 7121994eec5320fbe6586463bf9651c2 90532aff6d4121954254cdf04994d834f7ec169b 48eb8b500ae6a38617b5738d2b3faec481922a7782246e31d2755c034a45cd5d Loading...

	hbcsaude.com.br/wp-content/themes/mobius/js/preloader.js?ver=1.0	2.8 kB	2023-03-08	2023-03-10
Pretty URL hbcsaude.com.br/wp-content/themes/mobius/js/preloader.js?ver=1.0 IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 07:41:32 Last Seen2023-03-10 09:28:34 Times Seen1 Hash b2a21a3845c1d254093ff3329f19a3b2 82f6b1da121598b4566512a784ca70013a7eff79 63416709e04e3c262e86a8dec4607caaafed5f660d583aa2b6515140d0d12aac Loading...

	hbcsaude.com.br/wp-content/plugins/timetable/js/jquery.carouFredSel-6.2.1-packed.js?ver=5.3.13	36 kB	2023-03-07	2024-04-12
Pretty URL hbcsaude.com.br/wp-content/plugins/timetable/js/jquery.carouFredSel-6.2.1-packed.js?ver=5.3.13 IP 162.240.18.185 ASN #46606 UNIFIEDLAYER-AS-1 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:39:40 Last Seen2024-04-12 17:25:37 Times Seen529 Hash bfe456dc33fd691cb0b1a8e769a7bb76 f6a27038d4f75bf4859d4ff5f21b0e4fc25abac1 eaa462465ec59b2258510c9a99e2deb5fe375f3c8f779f08476270c9c1e4bad2 Loading...

	hbcsaude.com.br/wp-content/plugins/slide-anything/lightgallery/plugins/zoom/lg-zoom.min.js?ver=2.5.0	16 kB	2023-03-07	2024-04-21
Pretty URL hbcsaude.com.br/wp-content/plugins/slide-anything/lightgallery/plugins/zoom/lg-zoom.min.js?ver=2.5.0 IP 162.240.18.185 ASN #46606 UNIFIEDLAYER-AS-1 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 16:43:53 Last Seen2024-04-21 06:06:13 Times Seen382 Hash b06dedf148c166808a0d2444eb6d01b0 013b6b2b35798f167bdc0f48a1cba23afc29e54c dfc19e96951a799a2b467f1877ecdfc98e6ac1f5fb4517f318dffd3da774e29d Loading...

	hbcsaude.com.br/	2.2 kB	2023-03-08	2023-03-10
Pretty URL hbcsaude.com.br/ IP 162.240.18.185 ASN #46606 UNIFIEDLAYER-AS-1 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 07:41:32 Last Seen2023-03-10 09:28:34 Times Seen1 Hash 1f1d42db7166e2f125a503771757b4a2 4a287956e38d48c7c62b40e801cf8f2f60f4954f c6ba242b6c89700a9a0cda1dc994042c25a3ae53ccabdeb7967b6ba322a8cf47 Loading...

	static.doubleclick.net/instream/ad_status.js	29 B	2023-03-07	2024-04-18
Pretty URL static.doubleclick.net/instream/ad_status.js IP 142.250.74.166 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:17 Last Seen2024-04-18 07:35:29 Times Seen2735 Hash 1fa71744db23d0f8df9cce6719defcb7 e4be9b7136697942a036f97cf26ebaf703ad2067 eed0dc1fdb5d97ed188ae16fd5e1024a5bb744af47340346be2146300a6c54b9 Loading...

	hbcsaude.com.br/wp-content/plugins/slide-anything/owl-carousel/owl.carousel2.thumbs.min.js?ver=0.1.8	3.5 kB	2023-03-07	2024-04-21
Pretty URL hbcsaude.com.br/wp-content/plugins/slide-anything/owl-carousel/owl.carousel2.thumbs.min.js?ver=0.1.8 IP 162.240.18.185 ASN #46606 UNIFIEDLAYER-AS-1 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 16:43:53 Last Seen2024-04-21 06:06:13 Times Seen397 Hash d8845f2c0f57c8b8d974ec26d41b22a6 ff5f0e6368879137c9e000c0b47ba55fbf014a27 d46cd78a7e537377d68ca1c48fcca27c96388ecf83ead8f0b54745d66d15df12 Loading...

	hbcsaude.com.br/wp-content/plugins/slide-anything/lightgallery/plugins/autoplay/lg-autoplay.min.js?ver=2.5.0	4.1 kB	2023-03-07	2024-04-21
Pretty URL hbcsaude.com.br/wp-content/plugins/slide-anything/lightgallery/plugins/autoplay/lg-autoplay.min.js?ver=2.5.0 IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 16:43:53 Last Seen2024-04-21 06:06:13 Times Seen349 Hash c82880c22052df30538cdc9cf343ad0e b780cd567fd14122f80814cbce257a05a0edbca4 77fa7ca7b560e02d4cbd93e2d9f45fd4e146798c397ee02798b82372668f5de7 Loading...

	hbcsaude.com.br/wp-includes/js/wp-emoji-release.min.js?ver=5.3.13	14 kB	2023-03-07	2024-04-16
Pretty URL hbcsaude.com.br/wp-includes/js/wp-emoji-release.min.js?ver=5.3.13 IP 162.240.18.185 ASN #46606 UNIFIEDLAYER-AS-1 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:03:20 Last Seen2024-04-16 23:57:42 Times Seen2294 Hash d6aeffd9e0126160ff89d369c05a5fbe 8480b15ad38e8e1d67960e72b513fa4f463e2cc1 95309410230b1d3148e52211dcee018bfa011a2d69e9d7d6f81164035e8518a0 Loading...

	hbcsaude.com.br/wp-content/themes/mobius/js/sly.js?ver=1.2.2	17 kB	2023-03-08	2023-04-01
Pretty URL hbcsaude.com.br/wp-content/themes/mobius/js/sly.js?ver=1.2.2 IP 162.240.18.185 ASN #46606 UNIFIEDLAYER-AS-1 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 07:41:32 Last Seen2023-04-01 11:02:25 Times Seen2 Hash 6b0cefe97e681999eee6279b06adab62 a6489c65976cf8c5ecafcf9048b1f2eed05373b6 20ced79cafe9ccaf8e151642046c5a756091d9a3589aaeabcd8fb5cb8d0d2c2c Loading...

	hbcsaude.com.br/wp-content/plugins/wp-file-upload/js/wordpress_file_upload_functions.js?ver=5.3.13	69 kB	2023-03-07	2024-02-26
Pretty URL hbcsaude.com.br/wp-content/plugins/wp-file-upload/js/wordpress_file_upload_functions.js?ver=5.3.13 IP 162.240.18.185 ASN #46606 UNIFIEDLAYER-AS-1 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:02:09 Last Seen2024-02-26 23:30:42 Times Seen56 Hash 3d2264d455cd23d176e6502fbe4b4974 7ab934144e8dc7520633c42706472a10c333e4e1 12c7a8f3cdf64c45d3e6b744a89f27a3544b3563f02909e9270d20ee9a978bd9 Loading...

	hbcsaude.com.br/	681 B	2023-03-08	2023-07-28
Pretty URL hbcsaude.com.br/ IP 162.240.18.185 ASN #46606 UNIFIEDLAYER-AS-1 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 07:41:32 Last Seen2023-07-28 04:24:09 Times Seen3 Hash b1ef143b7ca9598ecb0e10a393b22cf5 1e55f5141170b62dbf9041a5c87daa1a32f4e52b 5e3bfc1136194266119650e9950952befb9a870f3332ed1cda165b40df826a8b Loading...

	www.youtube.com/embed/ZhZq4vPVxUA	134 B	2023-03-07	2024-04-22
Pretty URL www.youtube.com/embed/ZhZq4vPVxUA IP 142.250.74.14 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:14 Last Seen2024-04-22 20:51:43 Times Seen34150 Hash e18eb9d0972d240f1a5456179bb6523b 65255f106adcff2907a98e295a8e7a38fe2884c4 3d68db2b85d5a2915743399f09dc438963f0c50f68b02df05d47a372661603e8 Loading...

	hbcsaude.com.br/wp-content/plugins/js_composer/assets/js/dist/js_composer_front.min.js?ver=4.12.1	19 kB	2023-03-07	2024-04-22
Pretty URL hbcsaude.com.br/wp-content/plugins/js_composer/assets/js/dist/js_composer_front.min.js?ver=4.12.1 IP 162.240.18.185 ASN #46606 UNIFIEDLAYER-AS-1 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:06:36 Last Seen2024-04-22 08:45:31 Times Seen629 Hash a00f8abf944c1d8240000c76b1e64519 96514c7c3c641e66a13f002e8a6fb12579d88dc6 c2fb563f9697348ee8c1891fe28776a167efacc75f9549f51b38c69a35ca0460 Loading...

	hbcsaude.com.br/wp-includes/js/jquery/jquery.js?ver=1.12.4-wp	97 kB	2023-03-07	2024-04-20
Pretty URL hbcsaude.com.br/wp-includes/js/jquery/jquery.js?ver=1.12.4-wp IP 162.240.18.185 ASN #46606 UNIFIEDLAYER-AS-1 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:38 Last Seen2024-04-20 09:49:39 Times Seen17722 Hash 49edccea2e7ba985cadc9ba0531cbed1 f8747f8ee704d9af31d0950015e01d3f9635b070 1db21d816296e6939ba1f42962496e4134ae2b0081e26970864c40c6d02bb1df Loading...

	hbcsaude.com.br/wp-content/themes/mobius/includes/post-like/post-like.js?ver=1.0	1.3 kB	2023-03-08	2023-04-01
Pretty URL hbcsaude.com.br/wp-content/themes/mobius/includes/post-like/post-like.js?ver=1.0 IP 162.240.18.185 ASN #46606 UNIFIEDLAYER-AS-1 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 07:41:32 Last Seen2023-04-01 11:02:25 Times Seen2 Hash 4fa94342a9a77e490370242076bb1a95 810bea9aa23958e470ab34b71f2a19d5379539de 970cc09e55d504b0d3d29d1aa612f2f8ea5e9a92e9b2bff496211bc2003ce583 Loading...

	hbcsaude.com.br/wp-includes/js/mediaelement/mediaelement-migrate.min.js?ver=5.3.13	1.2 kB	2023-03-07	2024-04-20
Pretty URL hbcsaude.com.br/wp-includes/js/mediaelement/mediaelement-migrate.min.js?ver=5.3.13 IP 162.240.18.185 ASN #46606 UNIFIEDLAYER-AS-1 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:03:23 Last Seen2024-04-20 20:44:41 Times Seen2509 Hash f34f415aa56ed900eecf3f212adb57e2 352dfeec21817198c07ab11705b53d813420cea3 7f34b768792b90cf0b04fced2470e43d8fab7644f6565d5178fbfb49c4859cee Loading...

	hbcsaude.com.br/wp-content/plugins/megamenu/js/maxmegamenu.js?ver=2.9.8	30 kB	2023-03-07	2024-04-21
Pretty URL hbcsaude.com.br/wp-content/plugins/megamenu/js/maxmegamenu.js?ver=2.9.8 IP 162.240.18.185 ASN #46606 UNIFIEDLAYER-AS-1 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:24:09 Last Seen2024-04-21 09:59:12 Times Seen370 Hash 0917c0e91b5f98ba8a8f2bebc21ebd0a 37cbe8f856453a8d8fc88e7da81bbae6734a2961 d205d2093a3411531f600e78e152f0c86aca40ba64edf7d7d1c995215c23fab8 Loading...

	unknown	0 B	2023-03-07	2024-04-23
Pretty Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:01:59 Last Seen2024-04-23 10:40:51 Times Seen37018658 Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 Loading...

	hbcsaude.com.br/wp-content/plugins/photo-gallery/js/jquery.mobile.min.js?ver=1.4.5	25 kB	2023-03-07	2024-03-19
Pretty URL hbcsaude.com.br/wp-content/plugins/photo-gallery/js/jquery.mobile.min.js?ver=1.4.5 IP 162.240.18.185 ASN #46606 UNIFIEDLAYER-AS-1 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:36:38 Last Seen2024-03-19 10:03:54 Times Seen506 Hash 35dba86729f7328d9d79eb1d13792393 860560994a5717d9e3df391bb5f51f03f2e61a5f cfa956b9f39aec424ed6f9411c71da1f9fbd0c77e4cdccd9089d394a1877d866 Loading...

	hbcsaude.com.br/wp-content/themes/mobius/js/ajaxify.js?ver=1.0.1	7.7 kB	2023-03-08	2023-03-10
Pretty URL hbcsaude.com.br/wp-content/themes/mobius/js/ajaxify.js?ver=1.0.1 IP 162.240.18.185 ASN #46606 UNIFIEDLAYER-AS-1 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 07:41:32 Last Seen2023-03-10 09:28:34 Times Seen1 Hash 6576df06a894c61fc8531bac3158bf25 5b998ff0f1a42b6dfd39bf4a2ef1d14290ae47ff 103ad68dd24cf32cbff88ba7250ac31ea0081542940737c458e2708840f2ddaf Loading...

	hbcsaude.com.br/wp-content/themes/mobius/js/owl.carousel.js?ver=1.3.2	15 kB	2023-03-07	2024-04-21
Pretty URL hbcsaude.com.br/wp-content/themes/mobius/js/owl.carousel.js?ver=1.3.2 IP 162.240.18.185 ASN #46606 UNIFIEDLAYER-AS-1 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:34:34 Last Seen2024-04-21 16:07:42 Times Seen1413 Hash 2fec2de7cc7d2d9a66130311f52b5db8 5cfc389925bd8200ee1e0fb224434ded9cae3f15 4b18105a346260a3e8359cd02633fd5f8bb244f2d5f43e4375a1efd10e5c865a Loading...

	hbcsaude.com.br/wp-content/themes/mobius/js/custom.js?ver=1.0	103 kB	2023-03-08	2023-04-01
Pretty URL hbcsaude.com.br/wp-content/themes/mobius/js/custom.js?ver=1.0 IP 162.240.18.185 ASN #46606 UNIFIEDLAYER-AS-1 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 07:41:32 Last Seen2023-04-01 11:02:25 Times Seen2 Hash cb907e9b530d95eb1026e851889f89a5 be4fd0e358c95c8ba326e0f178edf9e40d7a056b f97b1d14f1728770d2f62186d84eaec9777387f071474c53660a13b0eff7696a Loading...

	hbcsaude.com.br/	125 B	2023-03-08	2023-03-08
Pretty URL hbcsaude.com.br/ IP 162.240.18.185 ASN #46606 UNIFIEDLAYER-AS-1 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 07:41:32 Last Seen2023-03-08 07:41:32 Times Seen1 Hash 060ab9d060842769dc731044ccaca7f5 45d013ba25cf331dcf2162e8ab6f45cbd0e68afc 2dd24f0db1e4bc3f5e3800ee665a8640145ff861d5eaa0afb1188d34276cc391 Loading...

	hbcsaude.com.br/wp-content/plugins/awesome-wp-image-gallery/js/pretiphoto.js?ver=5.3.13	99 B	2023-03-07	2023-12-04
Pretty URL hbcsaude.com.br/wp-content/plugins/awesome-wp-image-gallery/js/pretiphoto.js?ver=5.3.13 IP 162.240.18.185 ASN #46606 UNIFIEDLAYER-AS-1 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 15:25:54 Last Seen2023-12-04 09:40:22 Times Seen21 Hash d0f508811c485df13bebb41c70e18b53 c1afcd991dd03e9849d73e808f32e6a534c005ac a06bd7cc20bb9f3f39f5abca3eb8f513c4fb382ab303c09db97592de92860098 Loading...

	www.youtube.com/embed/ZhZq4vPVxUA	25 B	2023-03-07	2023-11-29
Pretty URL www.youtube.com/embed/ZhZq4vPVxUA IP 142.250.74.14 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:15:01 Last Seen2023-11-29 17:40:25 Times Seen679 Hash c848a39bf92e75b37d5a7610362c5021 ed9a4848a04421a1af5417b72af36c2eae3b7d69 5faac1dbc445ac07d67108441673255a12b82aacc24d87fe6f12eb9823d5b6de Loading...

	hbcsaude.com.br/wp-content/themes/mobius/js/isotope.js?ver=1.5.25	60 kB	2023-03-08	2023-04-01
Pretty URL hbcsaude.com.br/wp-content/themes/mobius/js/isotope.js?ver=1.5.25 IP 162.240.18.185 ASN #46606 UNIFIEDLAYER-AS-1 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 07:41:32 Last Seen2023-04-01 11:02:25 Times Seen2 Hash b38c58c73ad3bad0fb621ffce478f1c4 431d2c6636c20bf434f977054422c85c1d133474 ae1b7e6a11563413daa756819a3a9d4d317cfb2ca4ad0fe1b0da8e2bd6063950 Loading...

	hbcsaude.com.br/wp-content/plugins/themeone-shortcodes/shortcodes/js/jquery.appear.js?ver=1.0	4.4 kB	2023-03-08	2023-04-01
Pretty URL hbcsaude.com.br/wp-content/plugins/themeone-shortcodes/shortcodes/js/jquery.appear.js?ver=1.0 IP 162.240.18.185 ASN #46606 UNIFIEDLAYER-AS-1 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 07:41:32 Last Seen2023-04-01 11:02:25 Times Seen2 Hash 5e7e6fa9c482755fad9d52fdbfe8fec7 566d0f0eefa1eebded33081783d72ed0a77ccb13 8470c5fb241c370f1b6106193a4123ff17878ffdca155cb3eab2fb69f2f34a88 Loading...

	hbcsaude.com.br/wp-content/plugins/timetable/js/timetable.js?ver=5.3.13	8.5 kB	2023-03-07	2024-04-12
Pretty URL hbcsaude.com.br/wp-content/plugins/timetable/js/timetable.js?ver=5.3.13 IP 162.240.18.185 ASN #46606 UNIFIEDLAYER-AS-1 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 23:48:08 Last Seen2024-04-12 17:25:37 Times Seen174 Hash afa69fbc5fbb86f89e2f72858b34849f fe972413bbe3220e9229a6bb6b28deb3674c82f0 3370abd2c35d4b9642afde0bde31b63d5ffda30e3b3b78ff3f9ddb92a5cec595 Loading...

	hbcsaude.com.br/wp-includes/js/mediaelement/mediaelement-and-player.min.js?ver=4.2.13-9993131	160 kB	2023-03-07	2024-04-09
Pretty URL hbcsaude.com.br/wp-includes/js/mediaelement/mediaelement-and-player.min.js?ver=4.2.13-9993131 IP 162.240.18.185 ASN #46606 UNIFIEDLAYER-AS-1 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:03:22 Last Seen2024-04-09 13:49:50 Times Seen596 Hash c6d1f8e334ded732e83231a64de3fd3f 05f7e36a68b6c5595a5e1c1908c5beede4ee12be 282c86db3fc6cedcc79b172069ba09831ce0e6ba235d13bff382f57f0d3977ff Loading...

	hbcsaude.com.br/wp-content/plugins/photo-gallery/js/circle-progress.js?ver=1.7.6	15 kB	2023-03-07	2024-04-18
Pretty URL hbcsaude.com.br/wp-content/plugins/photo-gallery/js/circle-progress.js?ver=1.7.6 IP 162.240.18.185 ASN #46606 UNIFIEDLAYER-AS-1 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:36:38 Last Seen2024-04-18 15:56:49 Times Seen1280 Hash 3fb461c1b082f494c9e0eaaafcf8bd72 55ff6230e8ec9d8c5b38657707d2f0bf5605ba0f 3e6e949591faad693c28eed80090b54c666ddb12dbb20af284acedb9f3b70834 Loading...

	hbcsaude.com.br/wp-content/plugins/themeone-shortcodes/shortcodes/js/easypiechart.js?ver=2.1.3	3.7 kB	2023-03-08	2024-01-05
Pretty URL hbcsaude.com.br/wp-content/plugins/themeone-shortcodes/shortcodes/js/easypiechart.js?ver=2.1.3 IP 162.240.18.185 ASN #46606 UNIFIEDLAYER-AS-1 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 07:41:32 Last Seen2024-01-05 08:59:47 Times Seen16 Hash 5f5c64185989e59ae175151c05fc4618 2c79281c165d7ff6bf7e945b337dc388731550b7 a5ba7c163adef73f9e695f456b4119d2061a170532734ff25fd45d5e49927e7e Loading...

	hbcsaude.com.br/	126 B	2023-03-08	2023-03-08
Pretty URL hbcsaude.com.br/ IP 162.240.18.185 ASN #46606 UNIFIEDLAYER-AS-1 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 07:41:32 Last Seen2023-03-08 07:41:32 Times Seen1 Hash 64bbf350f9f492c8a7bbdf9c824c7ae4 9886da258985249814174f86c68eb959679e7c36 ef0fd8cc668c475c9a33a45e56f0b625b91c02540bf1d9947967917bc2ba0f9b Loading...

	hbcsaude.com.br/	168 B	2023-03-08	2023-03-08
Pretty URL hbcsaude.com.br/ IP 162.240.18.185 ASN #46606 UNIFIEDLAYER-AS-1 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 07:41:32 Last Seen2023-03-08 07:41:32 Times Seen1 Hash d4c4b38e4179917d19008981b3603c37 1ee875d3108400eaed2451a0ac0e4dfc0de7799a b5617e5e5c297a3223ea53506cc4b7ee4ae2a32936f872996a1258230417b7c3 Loading...

	www.youtube.com/embed/ZhZq4vPVxUA	2.0 kB	2023-03-07	2024-01-05
Pretty URL www.youtube.com/embed/ZhZq4vPVxUA IP 142.250.74.14 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:14 Last Seen2024-01-05 16:27:33 Times Seen7664 Hash 6a73bc1d6d65579cd4d0e4ac0f0bbc4a 81de5599ae45f49e93a23f53833d3dc9c27c7a1e bf473ebe5e6ccb16d5b1df9579ac0666659badd85ee14dbb4669531ca0e226b1 Loading...

	hbcsaude.com.br/	1.3 kB	2023-03-08	2023-03-10
Pretty URL hbcsaude.com.br/ IP 162.240.18.185 ASN #46606 UNIFIEDLAYER-AS-1 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 07:41:32 Last Seen2023-03-10 09:28:34 Times Seen1 Hash 1246293b5314dc1ae39e1c659f41bd6b 3549ce6f90ac6ff5b8d044fa4c39f9cb407dcda9 782aab3683bedb367b37a668e3e8c7325351f1ee7f92b0482feb8867568c3ca9 Loading...

		Size	First Seen	Last Seen
	#1 Eval - f48849db8d3e5ed089de9545274277a6	575 B	2023-03-08	2024-01-03
Pretty Observations First Seen2023-03-08 05:59:06 Last Seen2024-01-03 02:22:22 Times Seen2 Hash f48849db8d3e5ed089de9545274277a6 b77bb20d70d3347092545b78cdda393c50b344f9 06b4ede569872d3aed4714c1019687bffd54aa6881c68749408fadce8bb453f8 Loading...

	#2 Eval - ea12b26751118d7bfc4957ea72a129bd	47 B	2023-03-08	2024-01-03
Pretty Observations First Seen2023-03-08 05:59:06 Last Seen2024-01-03 02:22:21 Times Seen2 Hash ea12b26751118d7bfc4957ea72a129bd 2d0b97e315c1c186be24e1324579bc03b1b50b97 4ac01d7618d612efe97c75987c6160936152e5a8de76aaf012b2db65cd45abfd Loading...

	#3 Eval - 09bf20a0dd72fffd45ae27477a0d602d	59 B	2023-03-08	2024-01-03
Pretty Observations First Seen2023-03-08 05:59:06 Last Seen2024-01-03 02:22:21 Times Seen2 Hash 09bf20a0dd72fffd45ae27477a0d602d 01b7b20d4c12cfca3f54eb758a79e4bfbcb07b19 cdc7ebe75d5966902dcff203e3acf80640461c32e507a5357fbe1ca9bc04e564 Loading...

	#4 Eval - 9d0137bffa0f20d5e8e9f54f2c84cf0a	10 B	2023-03-07	2024-04-22
Pretty Observations First Seen2023-03-07 01:02:15 Last Seen2024-04-22 20:51:44 Times Seen33160 Hash 9d0137bffa0f20d5e8e9f54f2c84cf0a 39edf6d919f82b9692a2edfecc78427a82567c42 269d4d56785ffc82f3ed05d8ee3b84fc18d7474663ddd06c6fd285165190bb19 Loading...

	#5 Eval - 1ae317c33bd344440157e85303d49d82	2 B	2023-03-08	2024-04-07
Pretty Observations First Seen2023-03-08 05:59:06 Last Seen2024-04-07 04:44:59 Times Seen688 Hash 1ae317c33bd344440157e85303d49d82 5037717f120cf25bbeea6a42e62676bc5c911b12 235246ced61d92b7b7327fa64c014f906d62ba54c98d2c810309747e3eee1c67 Loading...

	#6 Eval - 32981a13284db7a021131df49e6cd203	2 B	2023-03-08	2024-03-04
Pretty Observations First Seen2023-03-08 05:59:06 Last Seen2024-03-04 13:09:42 Times Seen10 Hash 32981a13284db7a021131df49e6cd203 93f8bb0eb2c659b85694486c41717eaf0fe23cd4 16cedf80ade01c62bdd1ae931d0492330c0b62bf294c08c095ce2fab21a9298d Loading...

	#7 Eval - 05c098a906af6582d1d75a22bb6cc4f9	218 B	2023-03-08	2024-01-03
Pretty Observations First Seen2023-03-08 05:59:06 Last Seen2024-01-03 02:22:21 Times Seen2 Hash 05c098a906af6582d1d75a22bb6cc4f9 857b5d542788d2590868e472667db351585162a7 33a5e8018983fb982da62d884af3a8d9260877c3894345ba8e740bf4f6eb9ce0 Loading...

	#8 Eval - c56d04b9160c29c6fbec6026861b1989	175 B	2023-03-08	2024-01-03
Pretty Observations First Seen2023-03-08 05:59:06 Last Seen2024-01-03 02:22:21 Times Seen2 Hash c56d04b9160c29c6fbec6026861b1989 ade930a87cd9bbb68cf35c05dcd4d7c0d1fc9cfb 989bb3d05a2624177459e4af045380e33a96913a057cc84e8b093e927b94912c Loading...

	#9 Eval - a87a7ee7044ce943d6a7e7c68d19007f	53 B	2023-03-08	2024-01-03
Pretty Observations First Seen2023-03-08 05:59:06 Last Seen2024-01-03 02:22:20 Times Seen2 Hash a87a7ee7044ce943d6a7e7c68d19007f e361cd0bb0522474fa0e82871aec884786d13ca9 78c0d02ca01f655b0c1a19a27a2814274903d1902b6e5f4541223fd7a097e246 Loading...

	#10 Eval - 6a645404fc42290b1f2019cb5c7326d2	78 B	2023-03-08	2024-01-03
Pretty Observations First Seen2023-03-08 05:59:06 Last Seen2024-01-03 02:22:21 Times Seen2 Hash 6a645404fc42290b1f2019cb5c7326d2 198a57529f7fbeeeb6876185e6f3fa3c2e7d00f3 c70128ffdd73aa726fd8c671e33b2220c18c1ed4066efa732bcb28550fb00b4e Loading...

	#11 Eval - fa6421d9f5d6e6be66a276c03abf506b	882 B	2023-03-08	2024-01-03
Pretty Observations First Seen2023-03-08 05:59:06 Last Seen2024-01-03 02:22:21 Times Seen2 Hash fa6421d9f5d6e6be66a276c03abf506b 3527748ae0e745629131e50f040aa4db1e517bd3 36cd376df0096bdcef6def5bf1205387810a4835afaff2fad22ed0a805978fd3 Loading...

	#12 Eval - dd7536794b63bf90eccfd37f9b147d7f	1 B	2023-03-07	2024-04-21
Pretty Observations First Seen2023-03-07 01:02:15 Last Seen2024-04-21 01:51:10 Times Seen11777 Hash dd7536794b63bf90eccfd37f9b147d7f ca73ab65568cd125c2d27a22bbd9e863c10b675d a83dd0ccbffe39d071cc317ddf6e97f5c6b1c87af91919271f9fa140b0508c6c Loading...

	#13 Eval - f1290186a5d0b1ceab27f4e77c0c5d68	1 B	2023-03-07	2024-04-23
Pretty Observations First Seen2023-03-07 01:15:11 Last Seen2024-04-23 07:45:39 Times Seen8269 Hash f1290186a5d0b1ceab27f4e77c0c5d68 aff024fe4ab0fece4091de044c58c9ae4233383a 50e721e49c013f00c62cf59f2163542a9d8df02464efeb615d31051b0fddc326 Loading...

	#14 Eval - cf5f2b615205ccb1f07e4b7589f99120	351 B	2023-03-08	2024-01-03
Pretty Observations First Seen2023-03-08 05:59:06 Last Seen2024-01-03 02:22:22 Times Seen2 Hash cf5f2b615205ccb1f07e4b7589f99120 39dfa76a115b0781d04ee6dd252ce97bf815ad0c 47ff9a36583d0720cea99a4e080927a5c8acf9f50bc60105cdc8c68ede67f804 Loading...

	#15 Eval - fe6e007fbabd2b0b9b619abfc9d983d6	26 B	2023-03-08	2024-01-03
Pretty Observations First Seen2023-03-08 05:59:06 Last Seen2024-01-03 02:22:21 Times Seen2 Hash fe6e007fbabd2b0b9b619abfc9d983d6 43d91b2a6b7af8d866122a717540fd7c76d293a1 4b4e54241f6354f6f33c44acf7502c17a84bcd2cef921dc3c93072546876decf Loading...

	#16 Eval - 9536d8f6cc04bae3378c31cbabbeb782	51 B	2023-03-08	2024-01-03
Pretty Observations First Seen2023-03-08 05:59:06 Last Seen2024-01-03 02:22:21 Times Seen2 Hash 9536d8f6cc04bae3378c31cbabbeb782 9cf4e96714e6aeac0c62baa57e288cb60e79cbfe a279e3df5b9fb65e322472c46ed5e2c3617283a26693ad2e26f75e69da6a44e9 Loading...

	#17 Eval - c01cbc40c7eca86cde2d02424851f4c1	160 B	2023-03-08	2024-01-03
Pretty Observations First Seen2023-03-08 05:59:06 Last Seen2024-01-03 02:22:21 Times Seen2 Hash c01cbc40c7eca86cde2d02424851f4c1 4b2c524946e20b617e10b511acc849de04a1bb89 af3fdfcc142d548b2d77592426aa92cbfb7eab26ca74f7f1b75e261150f4bc39 Loading...

	#18 Eval - 7fc56270e7a70fa81a5935b72eacbe29	1 B	2023-03-07	2024-04-22
Pretty Observations First Seen2023-03-07 01:15:06 Last Seen2024-04-22 08:45:31 Times Seen7855 Hash 7fc56270e7a70fa81a5935b72eacbe29 6dcd4ce23d88e2ee9568ba546c007c63d9131c1b 559aead08264d5795d3909718cdd05abd49572e84fe55590eef31a88a08fdffd Loading...

	#19 Eval - e68a110e82a4f4bea551484148c57bba	44 kB	2023-03-08	2023-03-08
Pretty Observations First Seen2023-03-08 07:41:32 Last Seen2023-03-08 07:41:32 Times Seen1 Hash e68a110e82a4f4bea551484148c57bba 5a23ccde74c54746f8b1a35400ba891abfc3c0ac c6b2fb9639ba1b867d135c02715fbe05cc2da5f708bfaf69ae200cfdf1228ba1 Loading...

	#20 Eval - 82b0ecb145a11d4cefd09244741c0db5	70 B	2023-03-08	2024-01-03
Pretty Observations First Seen2023-03-08 05:59:06 Last Seen2024-01-03 02:22:21 Times Seen2 Hash 82b0ecb145a11d4cefd09244741c0db5 540809d4c6cfe5bb9e225f9f853c43c46d776659 73aeb81e0b54d6624674ed199961fbbc1cd543c383a5b51c54ac0f43151a6e87 Loading...

	#21 Eval - 954e6c2552884a17e6b103227e71d361	79 B	2023-03-08	2024-01-03
Pretty Observations First Seen2023-03-08 05:59:06 Last Seen2024-01-03 02:22:21 Times Seen2 Hash 954e6c2552884a17e6b103227e71d361 c63fdf0c4231ece2e01e39c88c6a862a0d806533 0ac46cfd418777d375b5421ee4b8b3543c8bcea6fde3876de5ddedd504519f28 Loading...

	#22 Eval - b709febbce2dfbb4193f37e6553ce97c	134 B	2023-03-08	2024-01-03
Pretty Observations First Seen2023-03-08 05:59:06 Last Seen2024-01-03 02:22:21 Times Seen2 Hash b709febbce2dfbb4193f37e6553ce97c f339e2d79a92eb310a02af6b2775fcf5adff70cb 05f75a1704035af66f37f35a6ea9ad0596b655fb5f3d106d130f0a2811ac9859 Loading...

	#23 Eval - b9ece18c950afbfa6b0fdbfa4ff731d3	1 B	2023-03-07	2024-04-22
Pretty Observations First Seen2023-03-07 01:02:18 Last Seen2024-04-22 14:59:14 Times Seen9268 Hash b9ece18c950afbfa6b0fdbfa4ff731d3 c2c53d66948214258a26ca9ca845d7ac0c17f8e7 e632b7095b0bf32c260fa4c539e9fd7b852d0de454e9be26f24d0d6f91d069d3 Loading...

	#24 Eval - 129f5fd162665cd0abc0f39fea8c9e8f	24 kB	2023-03-07	2024-04-22
Pretty Observations First Seen2023-03-07 01:33:09 Last Seen2024-04-22 12:32:09 Times Seen1066 Hash 129f5fd162665cd0abc0f39fea8c9e8f 253c21387dc8055cee42777276f455c7794de3cf a6336811b695da7dff581c054bbcb90502e899d034ec0f26005f91236c3817b1 Loading...

	#25 Eval - 5b9ad47b60efa2ff5bdbc16964e7488f	136 B	2023-03-08	2024-01-03
Pretty Observations First Seen2023-03-08 05:59:06 Last Seen2024-01-03 02:22:21 Times Seen2 Hash 5b9ad47b60efa2ff5bdbc16964e7488f 4442a02d2714ef8a6874d875efa4dbbefabdba25 26ace2f7ebeef854fe975a7c8fb20e3b105658fd2710a6500cf5cceda60e7862 Loading...

	#26 Eval - 6614e1469faba5459a616522cd1126aa	2 B	2023-03-08	2024-01-03
Pretty Observations First Seen2023-03-08 05:59:06 Last Seen2024-01-03 02:22:22 Times Seen10 Hash 6614e1469faba5459a616522cd1126aa e8a09ac066ff41ced96798408a60c5ec80995f92 d402e00bd58e4abf1042508cb47ce06b65cf05c6cd9b55149ba3ab94080683da Loading...

	#27 Eval - 600e51d3873a5ddce7de930f57aeb516	2 B	2023-03-08	2024-01-03
Pretty Observations First Seen2023-03-08 05:59:06 Last Seen2024-01-03 02:22:21 Times Seen11 Hash 600e51d3873a5ddce7de930f57aeb516 76e9df4c39a2147110914a8b7fd0c57fc584ce0b 156f4eec58353534f1333e4124d3221b12dce20f873307d3ed18c2ab9d2e88be Loading...

	#28 Eval - a7b748850f3b84d2ee80b7d251309799	2 B	2023-03-07	2024-01-03
Pretty Observations First Seen2023-03-07 01:15:06 Last Seen2024-01-03 02:22:22 Times Seen2 Hash a7b748850f3b84d2ee80b7d251309799 b40cd2ac8148c37f55a770a3d9278953b994e3f1 cae1efc6256f7e371297970428768c6ef84dae99b697d295afae12bfdbe1ce2a Loading...

	#29 Eval - 3c6b22ea0a166fba95e8a9a7efa76b5e	77 B	2023-03-08	2024-01-03
Pretty Observations First Seen2023-03-08 05:59:06 Last Seen2024-01-03 02:22:20 Times Seen2 Hash 3c6b22ea0a166fba95e8a9a7efa76b5e 579d1baecf5c2a686bdfa9f36ad8541213e7ab82 f1651697aad1dbcd2176d5c7454b1f0ea3714118813ce46021efcbfa8b562fcd Loading...

	#30 Eval - 110dc760dd5e6b256d5cb17c638fbf0e	66 B	2023-03-08	2024-01-03
Pretty Observations First Seen2023-03-08 05:59:06 Last Seen2024-01-03 02:22:22 Times Seen2 Hash 110dc760dd5e6b256d5cb17c638fbf0e a59b852a32b614fd12cd5d2d4f69777a909585c3 ac798377046eebb150d0bb6da414750e1932e968c35c9b2ee64930634ef5053c Loading...

	#31 Eval - 1151f24be3c63db056f10938a42ab0ea	27 B	2023-03-07	2024-02-29
Pretty Observations First Seen2023-03-07 01:02:14 Last Seen2024-02-29 10:56:20 Times Seen35314 Hash 1151f24be3c63db056f10938a42ab0ea 5284a27f38597741e877ab31328cc8178b005676 0bc774ed3674af6aae8dd2c83bf89261e13ee293742afeda5161156a54bfc8ee Loading...

	#32 Eval - 5a918c31e0ecf112d746cf3d2f1a39af	134 B	2023-03-08	2024-01-03
Pretty Observations First Seen2023-03-08 05:59:06 Last Seen2024-01-03 02:22:21 Times Seen2 Hash 5a918c31e0ecf112d746cf3d2f1a39af ce0dde289a8b3fce4737eb5ce770f4add147946d 9dfb40cdec4d6c47e1bbcceae6a7422e27cf5e670e3d6fdaea65c48be01b7886 Loading...

	#33 Eval - b6fedf4d8b41bcd6fdd00dc73afebbf0	186 B	2023-03-07	2023-06-20
Pretty Observations First Seen2023-03-07 01:02:15 Last Seen2023-06-20 22:42:19 Times Seen10985 Hash b6fedf4d8b41bcd6fdd00dc73afebbf0 cc79d9f18327c590bfbf582db80c8771dbfda9a8 b98b82c364cf0a1c34b8ecf1aa18a6bf51bbd21631dd3794dad96c8ad3082a5f Loading...

	#34 Eval - 05da3436056962a3a70b3a6c03ddd290	143 B	2023-03-08	2024-01-03
Pretty Observations First Seen2023-03-08 05:59:06 Last Seen2024-01-03 02:22:21 Times Seen2 Hash 05da3436056962a3a70b3a6c03ddd290 ff8d9d79ee783dc39a754e1b6556d1033eb3da14 6a85dff1bd926b59caa53817c5064efb298b0ca3b43dd61c2167a7b06ad41fc0 Loading...

	#35 Eval - bd4496eb0285aba06273987971f6063a	35 B	2023-03-07	2024-04-23
Pretty Observations First Seen2023-03-07 01:02:06 Last Seen2024-04-23 07:45:39 Times Seen38549 Hash bd4496eb0285aba06273987971f6063a 8c7d085c9d54b41debd437430b6852de7f898857 f2a353ed5469812b863c5fbeb58b4d46b864ba4e20a49f57f9c44c7cda45f46b Loading...

	#36 Eval - b7f41b572ec7b594e20bbfa479856b38	194 B	2023-03-07	2023-03-18
Pretty Observations First Seen2023-03-07 01:02:15 Last Seen2023-03-18 04:22:56 Times Seen1 Hash b7f41b572ec7b594e20bbfa479856b38 fa479c73e85fd5cb563bdf256eea6204c1ffa5b8 23f010e071f4759be28de8b76acc566788f4c15db1fe7f6e4c020a63f139cfa3 Loading...

	#37 Eval - 7292af26ceae5221df168021f993fa74	146 B	2023-03-08	2024-01-03
Pretty Observations First Seen2023-03-08 05:59:06 Last Seen2024-01-03 02:22:21 Times Seen2 Hash 7292af26ceae5221df168021f993fa74 f6e7e3b7a522a31b9d2ff8c94cc56347a38b26cf b2a08e6995df7108b49b7296616a7208acca849075923a55edc69fc2d6a1c39a Loading...

	#38 Eval - 738a656e8e8ec272ca17cd51e12f558b	2 B	2023-03-07	2024-04-03
Pretty Observations First Seen2023-03-07 12:24:13 Last Seen2024-04-03 06:16:49 Times Seen1045 Hash 738a656e8e8ec272ca17cd51e12f558b 8bf89849bbeb4131b41a5872336b71cde62a4106 51db253425817abff5f9d6cb749a42d8cbb7cd4dc95128efb59d788fcc570593 Loading...

	#39 Eval - 110d6d3e80c06e9a6e36fb7c3b2f673f	2 B	2023-03-08	2024-04-14
Pretty Observations First Seen2023-03-08 05:59:06 Last Seen2024-04-14 19:24:42 Times Seen14 Hash 110d6d3e80c06e9a6e36fb7c3b2f673f d8f04c634fbdcac074baccf0c134817422498e85 d2f24645e9117bdd05728a5109491c03a2165877c3f8aabd8f434812fea9ad80 Loading...

	#40 Eval - 7ffdaa8c8658e0f5754549eda7acee63	22 B	2023-03-08	2024-01-03
Pretty Observations First Seen2023-03-08 05:59:06 Last Seen2024-01-03 02:22:21 Times Seen2 Hash 7ffdaa8c8658e0f5754549eda7acee63 cf9e9720cecfaa7a6e073614169a60c659cff6b8 ec8f148100d32049ef2da7c4b848694af21ec740d42c51f10fc42ac3007ffa98 Loading...

	#41 Eval - ec9acf96899d162ac91e89238bb9f460	59 kB	2023-03-07	2024-04-12
Pretty Observations First Seen2023-03-07 01:39:40 Last Seen2024-04-12 17:25:36 Times Seen286 Hash ec9acf96899d162ac91e89238bb9f460 cbf34fb74447073bcad0db06b3776365f71c3c15 2e59ecf5c001333d77af228b4e9d229749e69d246e5b2b31d4fef0b7d67f75d3 Loading...

	#42 Eval - bae3f90cb000352645e35fad60da411c	35 B	2023-03-07	2024-04-23
Pretty Observations First Seen2023-03-07 01:02:06 Last Seen2024-04-23 07:45:39 Times Seen53135 Hash bae3f90cb000352645e35fad60da411c 00023f94c170125b979cb1914925d06ab1abfbce 1e3606d95ce27d593157594820335681a9380f51a96147303cd8000e60a95e12 Loading...

	#43 Eval - e7642d79dc3878c281a251bec2e0a1cc	39 kB	2023-03-08	2023-03-08
Pretty Observations First Seen2023-03-08 07:41:32 Last Seen2023-03-08 07:41:32 Times Seen1 Hash e7642d79dc3878c281a251bec2e0a1cc 217c14f1a3d58fe49a4983542f696487459352f4 f85135e62133fb5569f37c60de6cef299263de93baabea6b53e1dc04b0131fac Loading...

	#44 Eval - b65285d228d73dad8a09142bf8f2cdb2	546 B	2023-03-08	2024-01-03
Pretty Observations First Seen2023-03-08 05:59:06 Last Seen2024-01-03 02:22:21 Times Seen2 Hash b65285d228d73dad8a09142bf8f2cdb2 439cda6554ce19fb8ecba4374f2994b09649778d 30e98a150f8c1b44bb61599247580a283bbdf376b6e65e97f7a93f19f0b0c578 Loading...

	#45 Eval - 7b28d0dabed02126bba8900f170feb3b	604 B	2023-03-08	2024-01-03
Pretty Observations First Seen2023-03-08 05:59:06 Last Seen2024-01-03 02:22:21 Times Seen2 Hash 7b28d0dabed02126bba8900f170feb3b d5fac452f32058343b9a7a5e68d178eda8a11f1d e220b6ae6397c7f94132e8d81a2a33278c43e017e93414e36d8ba21496703059 Loading...

	#46 Eval - 82a61a54bd76b03e3049392316f8e9db	270 B	2023-03-08	2024-01-03
Pretty Observations First Seen2023-03-08 05:59:06 Last Seen2024-01-03 02:22:21 Times Seen2 Hash 82a61a54bd76b03e3049392316f8e9db 37e80294e2b8f2212cc1b29dccf02f6d1e3fc372 70b1a694785741ac53140812a20c42744537afce54290242d2d16f9e30694847 Loading...

	#47 Eval - 3945bca78ff2105fc20650a6d4df66fe	22 B	2023-03-08	2024-01-03
Pretty Observations First Seen2023-03-08 05:59:06 Last Seen2024-01-03 02:22:21 Times Seen2 Hash 3945bca78ff2105fc20650a6d4df66fe 924ef1a1e8571e7f024cff5464fc1d0490e60076 e3ed4c7d4638f54859cdf36245d55382fc4175d54096a784ac397cdc13b5b69a Loading...

	#48 Eval - 4df292ff93239e40f9e747739c216010	118 B	2023-03-08	2024-01-03
Pretty Observations First Seen2023-03-08 05:59:06 Last Seen2024-01-03 02:22:21 Times Seen2 Hash 4df292ff93239e40f9e747739c216010 5d968504c8381341fe3a3557510362eda6a24c13 729aa5b63042c8453bbbc0e58aac1c28044c926cb57973178b8801cb9bb2ecc1 Loading...

	#49 Eval - e1671797c52e15f763380b45e841ec32	1 B	2023-03-07	2024-04-21
Pretty Observations First Seen2023-03-07 01:15:05 Last Seen2024-04-21 01:51:10 Times Seen7628 Hash e1671797c52e15f763380b45e841ec32 58e6b3a414a1e090dfc6029add0f3555ccba127f 3f79bb7b435b05321651daefd374cdc681dc06faa65e374e38337b88ca046dea Loading...

	#50 Eval - 0563fcd3c81eef58e50b984c70677036	159 B	2023-03-07	2024-02-29
Pretty Observations First Seen2023-03-07 01:02:14 Last Seen2024-02-29 10:56:21 Times Seen35304 Hash 0563fcd3c81eef58e50b984c70677036 297f56d56ec1918a65a72c146da33d3ffb468684 ed2b7d8395578b6813022e5d55ce8066479d2def9c664882260f1516472c1838 Loading...

	#51 Eval - 11c99a0cdba2118c4e9d4bd24cba55dd	79 B	2023-03-08	2024-01-03
Pretty Observations First Seen2023-03-08 05:59:06 Last Seen2024-01-03 02:22:21 Times Seen2 Hash 11c99a0cdba2118c4e9d4bd24cba55dd 9e9e384d64528d7c280f666cf110eef2a7778244 7fcb7758dc08fd7f045464b9fa6bee887fc93fe88295973cd6c7566ef31c9f99 Loading...

	#52 Eval - d9c92d500320be31b5f93680d792fb66	233 B	2023-03-08	2024-01-03
Pretty Observations First Seen2023-03-08 05:59:06 Last Seen2024-01-03 02:22:21 Times Seen2 Hash d9c92d500320be31b5f93680d792fb66 c1141c745ecf9e6c644b18bcaff3959d408d7809 42293187b62d8f1d422134556471e96ca00df4dfe1fb411e0c5bada7a4ee48fd Loading...

	#53 Eval - 3088b969424164b3df65005234973405	79 B	2023-03-08	2024-01-03
Pretty Observations First Seen2023-03-08 05:59:06 Last Seen2024-01-03 02:22:22 Times Seen2 Hash 3088b969424164b3df65005234973405 ce685d02f8080e0b323e1a0f439109140ba64285 8aa6fa709bdf81515e64b55d950a4775d3944f7037d66ee3b423b257cdeea0de Loading...

	#54 Eval - 23e5cedde73e9318758a4c9f4315737a	79 B	2023-03-08	2024-01-03
Pretty Observations First Seen2023-03-08 05:59:06 Last Seen2024-01-03 02:22:21 Times Seen2 Hash 23e5cedde73e9318758a4c9f4315737a 276405fd604ba8fb65386cde23a41a470d422d9d 5920c34f6bfef65be360f2f11a9a8b1604aa10b245c426a4f89baa5b9a1f2de7 Loading...

	#55 Eval - b63e60a04282b45086482b19a24e351c	2 B	2023-03-07	2024-03-20
Pretty Observations First Seen2023-03-07 23:04:47 Last Seen2024-03-20 01:26:08 Times Seen326 Hash b63e60a04282b45086482b19a24e351c 629545a8e770e695a660c04b7ed2adb9c4544dc5 8bd1476cb91134183ef376356d1812867279d88ba6dc9d40fb4a51b5ca013a0d Loading...

	#56 Eval - 8e87e7043e0357111ac13d76656c1016	96 B	2023-03-08	2024-01-03
Pretty Observations First Seen2023-03-08 05:59:06 Last Seen2024-01-03 02:22:21 Times Seen2 Hash 8e87e7043e0357111ac13d76656c1016 1733ac93998614f2426a6f1d2efcd45e7ba4dc12 513064e3cf9cd73ce899713541956c3df2caac80ebc40368b78de9bcd7dbb7a4 Loading...

	#57 Eval - d0d0e09a78ebfefbfd45e120cfe53faf	353 B	2023-03-08	2024-01-03
Pretty Observations First Seen2023-03-08 05:59:06 Last Seen2024-01-03 02:22:20 Times Seen2 Hash d0d0e09a78ebfefbfd45e120cfe53faf 37211b21b2ca56d13c32bb767af4b713ab376364 b55f73847632ff00a986829c91c0f44448b5a557b570e0aae850b7f41f846b89 Loading...

	#58 Eval - d87d65b3793fb948090dc1c9d17d8b41	449 B	2023-03-08	2024-01-03
Pretty Observations First Seen2023-03-08 05:59:06 Last Seen2024-01-03 02:22:21 Times Seen2 Hash d87d65b3793fb948090dc1c9d17d8b41 9c965a5d7958f525f6a091ae07a34589b73c2dd7 c7931db4e2ebe02edcc370ca4e50342ea93892801576c4fda4c2ffe26a045849 Loading...

	#59 Eval - f465da03521180d47c811a98c793a2d6	9 B	2023-03-07	2024-04-22
Pretty Observations First Seen2023-03-07 01:02:14 Last Seen2024-04-22 20:51:44 Times Seen33153 Hash f465da03521180d47c811a98c793a2d6 9b76105ff4c8bb84cd630914d772f4cc73df0155 e8183224e440eb4578fd87c4c47735f9ede4c43b1c6ebbdcd7033e98aba6a009 Loading...

	#60 Eval - 039c60502492c917e79c9cff364db75f	231 B	2023-03-08	2024-01-03
Pretty Observations First Seen2023-03-08 05:59:06 Last Seen2024-01-03 02:22:22 Times Seen2 Hash 039c60502492c917e79c9cff364db75f a3e63fa5bd210889a6f988c49ead7407b84851d1 7705b7a9d2cf218d9cbe8510a0d9d00b561f4b410291234ac5aa5df968f0bca0 Loading...

	#61 Eval - 58e45b87a255f00667705f76ec350456	134 B	2023-03-08	2024-01-03
Pretty Observations First Seen2023-03-08 05:59:06 Last Seen2024-01-03 02:22:21 Times Seen2 Hash 58e45b87a255f00667705f76ec350456 09e2f266e2671d3ccfc841b07ee6465e08895d40 e16e4e742e52534c90e31d72f363d86ff0d6a68169c1e275aa5a53bca2a2887e Loading...

	#62 Eval - 42d21fa26a6e99d60729b98a842ae574	22 B	2023-03-08	2024-01-03
Pretty Observations First Seen2023-03-08 05:59:06 Last Seen2024-01-03 02:22:21 Times Seen2 Hash 42d21fa26a6e99d60729b98a842ae574 96175e82b9fd7bfada7c28c22d46a7a2a07421ca 66bb0a5159740789f78562dce9f36b033ea19ac26752eb5dcdb6d12d3db87081 Loading...

	#63 Eval - 81008e39f1c9e250489d1e44b32a856f	71 B	2023-03-08	2024-01-03
Pretty Observations First Seen2023-03-08 05:59:06 Last Seen2024-01-03 02:22:21 Times Seen2 Hash 81008e39f1c9e250489d1e44b32a856f 5094b3dbf92dcbe85eda19808606847925ce1c5a 09aa24481a5fbc1d4d03c00149b802913d4b86c4101233502ac91f123be5375a Loading...

	#64 Eval - 6b06e7f86309cff74652f666b9669c90	303 B	2023-03-08	2024-01-03
Pretty Observations First Seen2023-03-08 05:59:06 Last Seen2024-01-03 02:22:21 Times Seen2 Hash 6b06e7f86309cff74652f666b9669c90 6200e1b5067f461be617113cc6e02c6c7b7780cc efafcc732916db42cc05176af7b0371b8c8bc84e59ab087ffd39bbe9d600d006 Loading...

	#65 Eval - a931635074a5017da74948b67e16c76f	206 B	2023-03-07	2024-04-23
Pretty Observations First Seen2023-03-07 01:02:15 Last Seen2024-04-23 07:45:39 Times Seen39327 Hash a931635074a5017da74948b67e16c76f a6799582ad16a7c1ab8221c166268130df6691d2 1fb437ac78114eda813a7c4d5771b6d3aa34908a5ca3b743d5eb5c79088cf82c Loading...

	#66 Eval - 836b06cebf5472204a7c53fbb2dd17c1	56 B	2023-03-08	2023-03-08
Pretty Observations First Seen2023-03-08 07:41:32 Last Seen2023-03-08 07:41:32 Times Seen1 Hash 836b06cebf5472204a7c53fbb2dd17c1 7e3dd581b59e9f1de167b6f21105bf1b3e22e23e c0bacba5b652027b0e80297c4615464fe1d83b129c8dbe6cce7d473ebbfe21d5 Loading...

	#67 Eval - 8a5c9dd512d6910b0905a46d4b141e0a	26 B	2023-03-08	2024-01-03
Pretty Observations First Seen2023-03-08 05:59:06 Last Seen2024-01-03 02:22:21 Times Seen2 Hash 8a5c9dd512d6910b0905a46d4b141e0a cc483074e388944ae40fb5a6a35c52daf8fbf58a 468bd400ede53661adda6bacc6be9d09150c540d3c23c60e66446409439bef6f Loading...

	#68 Eval - 3e3b8c57803531363b0019bcfaaece92	94 B	2023-03-08	2024-01-03
Pretty Observations First Seen2023-03-08 05:59:06 Last Seen2024-01-03 02:22:21 Times Seen2 Hash 3e3b8c57803531363b0019bcfaaece92 771235e74803ed8e0df0a0bd80ca2cdd5f097fcc bdca936a50023766eb9d17f79b64dd19edcc9954d53b2176c205d0e3b15a9240 Loading...

	#69 Eval - d625728b9712e76f72dca79cb27f0922	132 B	2023-03-08	2024-01-03
Pretty Observations First Seen2023-03-08 05:59:06 Last Seen2024-01-03 02:22:21 Times Seen2 Hash d625728b9712e76f72dca79cb27f0922 7b650df839aee2f73039a6b0f604f1771053e02d b7a81054759616f4aaab2c5416c90d42569c32ae4138b723b19ea0221d5d7500 Loading...

	#70 Eval - 1bd2e34e9c980b72b48ae5f1c9c64190	249 B	2023-03-08	2024-01-03
Pretty Observations First Seen2023-03-08 05:59:06 Last Seen2024-01-03 02:22:21 Times Seen2 Hash 1bd2e34e9c980b72b48ae5f1c9c64190 50b943be81715623a4500d458dd664b0c038be42 48f6cbd1bce5281f723dfca3cee32e77cf3877c3256851f01a341514cc77a510 Loading...

	#71 Eval - 9d5ed678fe57bcca610140957afab571	1 B	2023-03-07	2024-04-23
Pretty Observations First Seen2023-03-07 01:15:05 Last Seen2024-04-23 07:45:39 Times Seen11230 Hash 9d5ed678fe57bcca610140957afab571 ae4f281df5a5d0ff3cad6371f76d5c29b6d953ec df7e70e5021544f4834bbee64a9e3789febc4be81470df629cad6ddb03320a5c Loading...

	#72 Eval - 8e781936e4b7a29fcff5aab28630813b	173 B	2023-03-08	2024-01-03
Pretty Observations First Seen2023-03-08 05:59:06 Last Seen2024-01-03 02:22:21 Times Seen2 Hash 8e781936e4b7a29fcff5aab28630813b 23fb9b7bdf28088551e818b34f6e5c2fc4fc7c19 4d25055f79b1ec0a154ec8fa8b1a0bf1425cb459b5f5fb3bb4f780dedb96864f Loading...

	#73 Eval - 64058cd46e85f6d208a8b84a72a043f9	141 B	2023-03-08	2024-01-03
Pretty Observations First Seen2023-03-08 05:59:06 Last Seen2024-01-03 02:22:21 Times Seen2 Hash 64058cd46e85f6d208a8b84a72a043f9 649fc94716c89394e817e7ec7868c341ee65a758 4b1f05af38c99d4b6cf3f6835e6d28aa0d509d5cc173ed023075a80637781c04 Loading...

	#74 Eval - 82f0fbe5ce84b25d64ebf9b2af5040d5	143 B	2023-03-08	2024-01-03
Pretty Observations First Seen2023-03-08 05:59:06 Last Seen2024-01-03 02:22:21 Times Seen2 Hash 82f0fbe5ce84b25d64ebf9b2af5040d5 fc30e0420d279c235dd22b5eea63a0b69aa5527b d7091079bb0449e7a9ab135de9f094420bbe99f89cd26ecc0d8a282b2a55efe2 Loading...

	#75 Eval - cc69b4b599ff32bd9cb500e781d99bbf	258 B	2023-03-08	2024-01-03
Pretty Observations First Seen2023-03-08 05:59:06 Last Seen2024-01-03 02:22:21 Times Seen2 Hash cc69b4b599ff32bd9cb500e781d99bbf ebd3abbea162e93fc7ec9dc9b0273002beff747c 95eff87d8190ff6fb996381d5f0681292f55c2e2482c53e1c4734634d434ef05 Loading...

	#76 Eval - ada4f6c0877c057abb8264e44b8ff3c7	72 B	2023-03-08	2024-01-03
Pretty Observations First Seen2023-03-08 05:59:06 Last Seen2024-01-03 02:22:21 Times Seen2 Hash ada4f6c0877c057abb8264e44b8ff3c7 7cb8a6682cf3f8b874153d5ddb18e1cd3f1376f7 6ff77fcc6b7f6256a3e33007d50365e7a2127fba79e96f878d01a058557a6ef0 Loading...

	#77 Eval - 928624f97f51a19d376549395ecca08b	77 B	2023-03-08	2024-01-03
Pretty Observations First Seen2023-03-08 05:59:06 Last Seen2024-01-03 02:22:22 Times Seen2 Hash 928624f97f51a19d376549395ecca08b e9b944c3371f99309e719446f5f8c12a3924b7e8 2b70f16c3a481e5a0c785a517506e1ae14611f229826f8ca19f5ca882eafb67e Loading...

	#78 Eval - 800618943025315f869e4e1f09471012	1 B	2023-03-07	2024-04-22
Pretty Observations First Seen2023-03-07 01:15:05 Last Seen2024-04-22 14:59:15 Times Seen7838 Hash 800618943025315f869e4e1f09471012 e69f20e9f683920d3fb4329abd951e878b1f9372 f67ab10ad4e4c53121b6a5fe4da9c10ddee905b978d3788d2723d7bfacbe28a9 Loading...

	#79 Eval - 9c6652a5ec08bfd6bdc2c476093c67c5	94 B	2023-03-08	2024-01-03
Pretty Observations First Seen2023-03-08 05:59:06 Last Seen2024-01-03 02:22:22 Times Seen2 Hash 9c6652a5ec08bfd6bdc2c476093c67c5 5ec1fcd3542fbfafa0b8dea06537d0473b7849de e4592713df53c57dcca52b4aa750ed7f85fdaea24a9a005f1ebd0677e351f58c Loading...

	#80 Eval - d48281ba557699523aa8f05e70501529	132 B	2023-03-08	2024-01-03
Pretty Observations First Seen2023-03-08 05:59:06 Last Seen2024-01-03 02:22:22 Times Seen2 Hash d48281ba557699523aa8f05e70501529 c50ce9b92dd6da212f8ccf874525ec2718b2179f b6df598f30e14d070109678fea2679c9079ba1f17f6ad200d901ac360129e342 Loading...

	#81 Eval - 9af3fe1b3a24dc1716cd01b611cd2ddb	130 B	2023-03-08	2024-01-03
Pretty Observations First Seen2023-03-08 05:59:06 Last Seen2024-01-03 02:22:21 Times Seen2 Hash 9af3fe1b3a24dc1716cd01b611cd2ddb 06bf8fbb0d3591e5011588de8ed88b48681cdd94 32065b4ea3d6320cd6c639ed8428094d55da69d1f36f35982815a589b7dcd6bc Loading...

	#82 Eval - fa2002f391536a71524e34cc9501f02d	419 B	2023-03-08	2024-01-03
Pretty Observations First Seen2023-03-08 05:59:06 Last Seen2024-01-03 02:22:21 Times Seen2 Hash fa2002f391536a71524e34cc9501f02d fb7354171c4b5c044bdb27b972ec9a0293823608 c3f9630bc4523307cfbd248a1fd88a96ab0c316f136c40aa8c37de3ea8cd5a6f Loading...

	#83 Eval - 9884a98cc47a41efd6ae273ed230a628	450 B	2023-03-08	2024-01-03
Pretty Observations First Seen2023-03-08 05:59:06 Last Seen2024-01-03 02:22:21 Times Seen2 Hash 9884a98cc47a41efd6ae273ed230a628 5f5ac64276db2b3b522b1008d167471b736aee5b b30323198bcf43591c54083b85aceb24fcd4016689c95f5151cfe5b6cce07a7a Loading...

	#84 Eval - 05b8c74cbd96fbf2de4c1a352702fbf4	6 B	2023-03-07	2024-04-23
Pretty Observations First Seen2023-03-07 01:02:06 Last Seen2024-04-23 07:45:39 Times Seen54493 Hash 05b8c74cbd96fbf2de4c1a352702fbf4 320ad267d8d969f285eda5c184f5455bd29c8c95 44ff7b02c80d38b26dd6aa31d9470aed81b32e10331a3c994fb1a9945fd847ba Loading...

	#85 Eval - b6037391598a5d7fcf0ce42cf3b57267	120 B	2023-03-08	2024-01-03
Pretty Observations First Seen2023-03-08 05:59:06 Last Seen2024-01-03 02:22:20 Times Seen2 Hash b6037391598a5d7fcf0ce42cf3b57267 26d573d26931446e882cf3a4f3964895b179aadf 1889a75b97fddfbfb59adf5ec41485f4f8607af1c646bfd5d1c6bfcad4e4082f Loading...

	#86 Eval - 905ad4f16a809a8f8408ed499e75be09	2 B	2023-03-08	2024-04-13
Pretty Observations First Seen2023-03-08 05:59:06 Last Seen2024-04-13 18:29:57 Times Seen509 Hash 905ad4f16a809a8f8408ed499e75be09 8e5c07eecb7b6add46432a5201c04be915f8821e e05184c1f58012abeecc03933a7cc6b1e9f87b0d23de1f96993b154064ad8dca Loading...

	#87 Eval - aaa917350069150f0c763e2854ae00be	216 B	2023-03-08	2024-01-03
Pretty Observations First Seen2023-03-08 05:59:06 Last Seen2024-01-03 02:22:21 Times Seen2 Hash aaa917350069150f0c763e2854ae00be ba5bde008d56474f378dc555ffaa263df1c0a84b 9a6c073596f7c1a099243d8b60b23b8b7b5f5c3040ac96d3876fb81cf5598b7e Loading...

	#88 Eval - f5fcdf367e65c33235b016187fc65079	78 B	2023-03-08	2024-01-03
Pretty Observations First Seen2023-03-08 05:59:06 Last Seen2024-01-03 02:22:21 Times Seen2 Hash f5fcdf367e65c33235b016187fc65079 385bf10ee3663365aaadab6146195d17e07156ab b5860f1121492c51f9e4890115081e751d8804f3e43d120abe96abe95012dece Loading...

	#89 Eval - ec65d38a61ecd955a56e13e5eb2c7518	78 B	2023-03-08	2024-01-03
Pretty Observations First Seen2023-03-08 05:59:06 Last Seen2024-01-03 02:22:21 Times Seen2 Hash ec65d38a61ecd955a56e13e5eb2c7518 89b90620d2130d9ffeffc80611a9c1fe0b15cffe 193b29df0017d1479f2b8d49c546a21a31a09586197a9bf7a61b135b4784e0fa Loading...

	#90 Eval - 757cea9f0458b58232354df90fa6c2dc	22 B	2023-03-08	2024-01-03
Pretty Observations First Seen2023-03-08 05:59:06 Last Seen2024-01-03 02:22:21 Times Seen2 Hash 757cea9f0458b58232354df90fa6c2dc 2101b09d956b00973dd93f1f88af8c5b62b45ae6 e48e7bec97ece5a7596be778a38c3e3223b91ddfb159368a0d7cd2aabc7aab3d Loading...

	#91 Eval - 163bbd1c601f034d57bac4b903275f35	92 B	2023-03-08	2024-01-03
Pretty Observations First Seen2023-03-08 05:59:06 Last Seen2024-01-03 02:22:21 Times Seen2 Hash 163bbd1c601f034d57bac4b903275f35 afb62bf679a1f6091d5531dc0268d04f9610988b ec868dc4cec11727d42192003f4081793c035988bd244033df8795cd4b52b05f Loading...

	#92 Eval - 0d80d99d7f209071a284c9ab6d14accf	83 B	2023-03-07	2024-04-23
Pretty Observations First Seen2023-03-07 01:02:06 Last Seen2024-04-23 07:45:39 Times Seen53391 Hash 0d80d99d7f209071a284c9ab6d14accf c91e7389c28a7b35eeb114484808a20cddb8c20e 0cb21d1de060008bab472c15c63e6f15828de601f85deff00d701d26c0f6819a Loading...

	#93 Eval - b014bdbe0fb273133ec1da6671302879	208 B	2023-03-08	2024-01-03
Pretty Observations First Seen2023-03-08 05:59:06 Last Seen2024-01-03 02:22:21 Times Seen2 Hash b014bdbe0fb273133ec1da6671302879 4bc32b2a520d1c45ed77fd776350a97a216751b8 56a525c5c728b53c935091fe1c17044400a6fdd50e59dcf97679e55f72829452 Loading...

	#94 Eval - 8d8b85adc4d2474a84fbca1381afb3c7	83 B	2023-03-07	2024-04-23
Pretty Observations First Seen2023-03-07 01:02:15 Last Seen2024-04-23 07:45:39 Times Seen39292 Hash 8d8b85adc4d2474a84fbca1381afb3c7 3815645d5a8680fd3ed4ce5a3b82f8d432448698 3eb8abc484d33a620c974de75babdd2caae4fff7dc8daad7d860dd41c93ee611 Loading...

	#95 Eval - f0e976b756b6afe7f40bca206a2d7150	29 B	2023-03-07	2024-04-23
Pretty Observations First Seen2023-03-07 01:02:14 Last Seen2024-04-23 05:08:37 Times Seen34099 Hash f0e976b756b6afe7f40bca206a2d7150 db9bee9a7bba93a60330ec5ef1334d9c164fcd56 029b84af88c5d6ced58173997a15fa47011e198e5449027d87e2f7b871f332c2 Loading...

	#96 Eval - 96ee28a2f6eebc5727a0d4b42ab6d29b	602 B	2023-03-08	2024-01-03
Pretty Observations First Seen2023-03-08 05:59:06 Last Seen2024-01-03 02:22:21 Times Seen2 Hash 96ee28a2f6eebc5727a0d4b42ab6d29b 27c67b56a59c1cb88f71a40b39848a140af9fc75 ee2fdfd2ff383d5901a2ddc7506dd5565b4579fb0794925f631da56661d2b3d3 Loading...

	#97 Eval - 56f6e26e2412cb3245ddbda4b0dac6e2	26 B	2023-03-08	2024-01-03
Pretty Observations First Seen2023-03-08 05:59:06 Last Seen2024-01-03 02:22:21 Times Seen2 Hash 56f6e26e2412cb3245ddbda4b0dac6e2 3b38799165c526cc42a486bca44dd11ebc5aee4c 2852743fb686f024b9f57210e7aa931ad31d845955999c06dbc39467a741f981 Loading...

	#98 Eval - a5fbc15b1b084c8e7ae6a4312650e79f	22 B	2023-03-08	2024-01-03
Pretty Observations First Seen2023-03-08 05:59:06 Last Seen2024-01-03 02:22:21 Times Seen2 Hash a5fbc15b1b084c8e7ae6a4312650e79f cf67ed965d9002918ff06bc633f14b0e55fa9c0d 45ff959edc32fc28efecc674ba2b245694df5f1e5b386482ccd4741db354c4cd Loading...

	#99 Eval - 7567b7f3b221540128a5302bfa30938e	22 B	2023-03-08	2024-01-03
Pretty Observations First Seen2023-03-08 05:59:06 Last Seen2024-01-03 02:22:21 Times Seen2 Hash 7567b7f3b221540128a5302bfa30938e 2eeb46b60ba802e474db7ef77b2e83e70e5380ee 654477ea913317b0fb1ec3172385b0c488980a3f1798382509c535a7f2b74521 Loading...

	#100 Eval - d48a24ae9672ee573050e4d3aeeebe4d	29 B	2023-03-07	2024-04-23
Pretty Observations First Seen2023-03-07 01:02:06 Last Seen2024-04-23 07:45:39 Times Seen53098 Hash d48a24ae9672ee573050e4d3aeeebe4d 8f8c4d27852980a1ec5a8b1aba30769001314ec8 53e5b7d706a350fe98d52499058624e15cddc1541f17370f94a899a386c50255 Loading...

	#101 Eval - 4305cc5abcab20dd6295838c24f7e4a4	322 B	2023-03-08	2024-01-03
Pretty Observations First Seen2023-03-08 05:59:06 Last Seen2024-01-03 02:22:21 Times Seen2 Hash 4305cc5abcab20dd6295838c24f7e4a4 26028f9a382e0925dc7076e1cbaf225973ae3a23 3c9489ff6eea92da6a7cbcb3d2ab7d50f5ded9ed70275a845ca4b71b5c939295 Loading...

	#102 Eval - 417c4fa3b4135a6c64e05f8d35f71648	2 B	2023-03-07	2024-01-03
Pretty Observations First Seen2023-03-07 13:20:55 Last Seen2024-01-03 02:22:22 Times Seen479 Hash 417c4fa3b4135a6c64e05f8d35f71648 d099916d553b31fdbfa04885af9355bce9757722 de2d91dc0a2580414e9a70f7dfc76af727b69cac0838f2cbe0a88d12642efcbf Loading...

	#103 Eval - 93f28e8e3df48c53dd54748efcb8f820	247 B	2023-03-08	2024-01-03
Pretty Observations First Seen2023-03-08 05:59:06 Last Seen2024-01-03 02:22:21 Times Seen2 Hash 93f28e8e3df48c53dd54748efcb8f820 8ffcc03cb8ec2e27ac48493bdada9561bcbab199 e1ca5755432b299c0ac1147a28809f9778e5e7462e907ad3ab4dca2c63c36542 Loading...

	#104 Eval - 0b7eedfc81415c1a034b79b5a12ab9a8	2 B	2023-03-08	2024-01-03
Pretty Observations First Seen2023-03-08 05:59:06 Last Seen2024-01-03 02:22:21 Times Seen298 Hash 0b7eedfc81415c1a034b79b5a12ab9a8 8b2655197e8addac8ffd1250db681408e124d9f4 f63ddcfd6fd537d3b4df2be48a16165f6da67aa128ef02e9cbd653df6fde4289 Loading...

	#105 Eval - dc4d76d21d9a62226a8c9cbf23068222	22 B	2023-03-08	2024-01-03
Pretty Observations First Seen2023-03-08 05:59:06 Last Seen2024-01-03 02:22:21 Times Seen2 Hash dc4d76d21d9a62226a8c9cbf23068222 26b3144fa6bc564d6ee74d5d95b88f40752fd114 317ab894540f214a0fb594653967af34bf46656b521ff16354b26b73263a2e6e Loading...

	#106 Eval - 77124b4927c9bf22207edee585a2cf91	2 B	2023-03-08	2024-03-29
Pretty Observations First Seen2023-03-08 05:59:06 Last Seen2024-03-29 14:29:59 Times Seen56 Hash 77124b4927c9bf22207edee585a2cf91 0110fc23431044aeda27a689cc456a0fa47e5464 8f1dd2a02fb52701fb0b4e3a6266aa7554ff5285b880e47d33d8f462f03353ea Loading...

	#107 Eval - 3a0436f52fbd533dce3c712084698aa2	2 B	2023-03-07	2024-03-19
Pretty Observations First Seen2023-03-07 23:10:38 Last Seen2024-03-19 04:07:42 Times Seen738 Hash 3a0436f52fbd533dce3c712084698aa2 423a22dfc3d55465bf830e1c92ec19c07ad8c582 c4767e886ccf68c7c98547cb9c3278f9468f508a5f790d82c566fc6f01ffe4f7 Loading...

	#108 Eval - f4a3f9ad212c5f18078484d1b535ea95	2 B	2023-03-08	2024-01-03
Pretty Observations First Seen2023-03-08 05:59:06 Last Seen2024-01-03 02:22:21 Times Seen55 Hash f4a3f9ad212c5f18078484d1b535ea95 5cd0a3cf169aa914b41cbeeec65c01f4c8c95433 09ab280b762f8ad1647f698dadd79f41b40ff9ba28b699d0ce7054fe025a2828 Loading...

	#109 Eval - 7b8b965ad4bca0e41ab51de7b31363a1	1 B	2023-03-07	2024-04-22
Pretty Observations First Seen2023-03-07 01:02:06 Last Seen2024-04-22 16:59:43 Times Seen10301 Hash 7b8b965ad4bca0e41ab51de7b31363a1 d1854cae891ec7b29161ccaf79a24b00c274bdaa 1b16b1df538ba12dc3f97edbb85caa7050d46c148134290feba80f8236c83db9 Loading...

	#110 Eval - cd00bb0be2299e8e563294a4bf61b5a6	206 B	2023-03-08	2024-01-03
Pretty Observations First Seen2023-03-08 05:59:06 Last Seen2024-01-03 02:22:21 Times Seen2 Hash cd00bb0be2299e8e563294a4bf61b5a6 30d21b99d9dea449a9ceb498699a0e2205cde068 6c60b69cba069464d27b0dd1a8b726da3dcf5946617f71213df32dc11e5195a0 Loading...

	#111 Eval - 81bd4cdc67ef19aedb063b0a37e6c6c4	97 B	2023-03-08	2024-01-03
Pretty Observations First Seen2023-03-08 05:59:06 Last Seen2024-01-03 02:22:21 Times Seen2 Hash 81bd4cdc67ef19aedb063b0a37e6c6c4 c5561f450b925038bb03e038572de352692ad376 84c0c9f95b19fd2858604a6579d4431cd3e3b7e37883ebaeb82421a702a1d318 Loading...

	#112 Eval - 24cc3dc813f384fde380df619f1525cb	19 B	2023-03-07	2024-04-23
Pretty Observations First Seen2023-03-07 01:02:05 Last Seen2024-04-23 07:45:39 Times Seen48715 Hash 24cc3dc813f384fde380df619f1525cb 56399e3ce57ff98d68c7de98a563e572230dff6b 5421715bbdaf2550e31d10fc28d444310a8fe7147bbddecf0abb490358a1553b Loading...

	#113 Eval - 874aaf5972f38ffea2a72ac604754bdd	2 B	2023-03-08	2024-04-03
Pretty Observations First Seen2023-03-08 05:59:06 Last Seen2024-04-03 06:16:49 Times Seen657 Hash 874aaf5972f38ffea2a72ac604754bdd 0c22c7050992ea0201f7badfb3d5f86a9c11aedc 54a89517822b1c17c72474bf747539712133db61fcf3e62a47c0661750906ba1 Loading...

	#114 Eval - f8e2c46b1a9d0d0cb08cfb92fc5dda94	75 B	2023-03-08	2024-01-03
Pretty Observations First Seen2023-03-08 05:59:06 Last Seen2024-01-03 02:22:21 Times Seen2 Hash f8e2c46b1a9d0d0cb08cfb92fc5dda94 8a9dd91d05b29b6c1289866d968d01df9ce64aeb 2192915a19ead8e4627f792d4bd3722e82f50379b627b0d78bc6f6f9186f12f6 Loading...

	#115 Eval - 59f5b7b74ee151091720b6918b48d135	884 B	2023-03-08	2024-01-03
Pretty Observations First Seen2023-03-08 05:59:06 Last Seen2024-01-03 02:22:21 Times Seen2 Hash 59f5b7b74ee151091720b6918b48d135 fd82499d253cef84dd2cd8014001fe435bb675cc 102ab9b927cd62759cdc387d3c4afd4092084b6f941b78d10bc0fd518dc5adf9 Loading...

	#116 Eval - 8cff5423006469332e8ae5e3a8c8559c	2 B	2023-03-08	2024-01-19
Pretty Observations First Seen2023-03-08 05:59:06 Last Seen2024-01-19 08:52:39 Times Seen571 Hash 8cff5423006469332e8ae5e3a8c8559c 45ed871fb007374f36dcbbfef703b2bb539ee75f 79df3742da86cfd49d39e6cd1d7bff35bfdc7ad2898852552dc336f8b9663ae2 Loading...

	#117 Eval - 37a6259cc0c1dae299a7866489dff0bd	4 B	2023-03-07	2024-04-23
Pretty Observations First Seen2023-03-07 01:02:14 Last Seen2024-04-23 07:45:39 Times Seen50014 Hash 37a6259cc0c1dae299a7866489dff0bd 2be88ca4242c76e8253ac62474851065032d6833 74234e98afe7498fb5daf1f36ac2d78acc339464f950703b8c019892f982b90b Loading...

	#118 Eval - 5a04d50d2ec0dc8913bd9c1d02f3feb2	95 B	2023-03-08	2024-01-03
Pretty Observations First Seen2023-03-08 05:59:06 Last Seen2024-01-03 02:22:21 Times Seen2 Hash 5a04d50d2ec0dc8913bd9c1d02f3feb2 dbc40e69b0655388b54f8889960a52029aa7322f b27cd9e76b0aa6736fcd635bb17619d92834280d65d2ca512488fc4588a4b643 Loading...

HTTP Transactions (170)

URL IP Response Size

firefox.settings.services.mozilla.com/v1/

54.230.111.35

200 OK

939 B

URL HTTP/1.1
firefox.settings.services.mozilla.com/v1/
IP
54.230.111.35:0
ASN
#16509 AMAZON-02

File type
JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Size
939 B (939 bytes)
Hash
2d12f67fe57a87e7366b662d153a5582
d7b02d81cc74f24a251d9363e0f4b0a149264ec1
73c273c0b5a2de3cb970b8e8c187999d3b55e760dc7766dab4bb76428d19b551

HTTP Headers

GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 939
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Content-Length, Backoff, Content-Type, Retry-After, Alert
Cache-Control: max-age=259200
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Date: Wed, 05 Oct 2022 15:47:18 GMT
X-Content-Type-Options: nosniff
X-Cache: Hit from cloudfront
Via: 1.1 c2b101e67ac25a2f0013450d56ecac38.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: ABbijVqlYAvwFJrutCOcxw0pjmI6DjySS1X3-e7qYMewFTXxlE342g==
Age: 98868

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
282f6e1328452c1cb41f6a6272fff757
20b9ff1b5f4f81b645769bd4b4cf7bf7dfc16262
6a8070ebe51259cb11db68cca2c81f3c7408fad481d8c14cc1c38912442c63f4

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "6A8070EBE51259CB11DB68CCA2C81F3C7408FAD481D8C14CC1C38912442C63F4"
Last-Modified: Wed, 05 Oct 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3596
Expires: Thu, 06 Oct 2022 20:15:02 GMT
Date: Thu, 06 Oct 2022 19:15:06 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
94a09d62ab3057cda67a091c8d7478f5
b1c9d223a951d0bc9f17c9f3b84501266a552b58
582364f9f6014520c269f1f794e7c34027bd2697b53e5d02fad43e74a735e471

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "582364F9F6014520C269F1F794E7C34027BD2697B53E5D02FAD43E74A735E471"
Last-Modified: Thu, 06 Oct 2022 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4018
Expires: Thu, 06 Oct 2022 20:22:04 GMT
Date: Thu, 06 Oct 2022 19:15:06 GMT
Connection: keep-alive

content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain

34.160.144.191

200 OK

5.3 kB

URL HTTP/2
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain
IP
34.160.144.191:0
ASN
#15169 GOOGLE

File type
PEM certificate\012- , ASCII text
Size
5.3 kB (5348 bytes)
Hash
67d5a988edcda47bc3b3b3f65d32b4b6
d4f0e0da8b3690cc7da925026d3414b68c7d954f
55e4848e3ec682e808ce7ee70950f86179c43af4f81926d826a95edfda395a78

HTTP Headers

GET /chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
x-amz-id-2: qW+tRNZkvJ4YNzkKJf9e7KaRu37G1mvCKxhWIrBfG8vvE/UdNY5ld25F75ReUMzmWEWa2XQq+hc=
x-amz-request-id: SMYMYXR62ZHES6GS
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Thu, 06 Oct 2022 18:58:51 GMT
age: 975
last-modified: Fri, 30 Sep 2022 18:50:55 GMT
etag: "67d5a988edcda47bc3b3b3f65d32b4b6"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2

contile.services.mozilla.com/v1/tiles

34.117.237.239

200 OK

12 B

URL HTTP/2
contile.services.mozilla.com/v1/tiles
IP
34.117.237.239:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with no line terminators
Size
12 B (12 bytes)
Hash
23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3

HTTP Headers

GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
date: Thu, 06 Oct 2022 19:15:06 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2

hbcsaude.com.br/

162.240.18.185

301 Moved Permanently

232 B

URL HTTP/1.1
hbcsaude.com.br/
IP
162.240.18.185:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Size
232 B (232 bytes)
Hash
4569750a0ea87b01c55144731084f7a2
0b31b9410023417ebf71e338eceed00ecfff487a
64003fdd1a16dbb093e5869c6794fcdf9a4eece18eba791bfe4bc4368fd72e17

Detections

Analyzer	Verdict	Alert
fortinet	Malware
quad9	Sinkholed

HTTP Headers

GET / HTTP/1.1
Host: hbcsaude.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1

HTTP/1.1 301 Moved Permanently
Date: Thu, 06 Oct 2022 19:15:06 GMT
Server: Apache
Location: https://hbcsaude.com.br/
Content-Length: 232
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1

firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US

54.230.111.35

200 OK

329 B

URL HTTP/1.1
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP
54.230.111.35:0
ASN
#16509 AMAZON-02

File type
JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Size
329 B (329 bytes)
Hash
0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300

HTTP Headers

GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 329
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Pragma, Content-Length, Backoff, Last-Modified, Cache-Control, Content-Type, Retry-After, ETag, Expires, Alert
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Last-Modified: Fri, 25 Mar 2022 17:45:46 GMT
X-Content-Type-Options: nosniff
Cache-Control: max-age=3600, max-age=3600
Date: Thu, 06 Oct 2022 18:29:41 GMT
Expires: Thu, 06 Oct 2022 19:07:03 GMT
ETag: "1648230346554"
X-Cache: Hit from cloudfront
Via: 1.1 92c4bb210eab82a152000047d3609a02.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: U9kFq2xe53Zrfs_vAr4trbhhzHMCcsEb4LXKjl4F_hG0ZcFlKYN8Fw==
Age: 2726

ocsp.digicert.com/

93.184.220.29

200 OK

471 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
471 B (471 bytes)
Hash
8be5570b9a5ca76c580da007a824b029
38840f2ac6476bdd5608121c5653e338c7ad9715
0b94e05080ef85432b1815eb3c6c7594c9613cfde1b51eeabee46d0d9fde64b2

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6580
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Thu, 06 Oct 2022 19:15:07 GMT
Last-Modified: Thu, 06 Oct 2022 17:25:27 GMT
Server: ECS (ska/F704)
X-Cache: HIT
Content-Length: 471

push.services.mozilla.com/

35.161.136.21

101 Switching Protocols

0 B

URL HTTP/1.1
push.services.mozilla.com/
IP
35.161.136.21:0
ASN
#16509 AMAZON-02

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: 3OvMYABKd710qoNch+AvuA==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket

HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: Y7WoY7pnrtkTd6X3KPUsFRpDnls=

hbcsaude.com.br/

162.240.18.185

200 OK

23 kB

URL HTTP/1.1
hbcsaude.com.br/
IP
162.240.18.185:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (4892), with CRLF, LF line terminators
Size
23 kB (23025 bytes)
Hash
6648b5e11422a30d3124ee1999ad26e5
dd2ae0955d6f52f78d864ac8922fcfd859440e1b
d7cfb254698a348ba4a50a1336152dfc6cda00e4a1f0086d84ed09d87de06b1f

Detections

Analyzer	Verdict	Alert
fortinet	Malware
quad9	Sinkholed

HTTP Headers

GET / HTTP/1.1
Host: hbcsaude.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1

HTTP/1.1 200 OK
Date: Thu, 06 Oct 2022 19:15:07 GMT
Server: Apache
X-Pingback: https://hbcsaude.com.br/xmlrpc.php
Link: <https://hbcsaude.com.br/wp-json/>; rel="https://api.w.org/", <https://hbcsaude.com.br/>; rel=shortlink
Set-Cookie: wp_wpfileupload_adb5dcf7967adb2dbe37208297a0082d=CmRsETtKLHTw5jshLP9OaanqqbQxkeQx; expires=Sat, 08-Oct-2022 19:15:07 GMT; Max-Age=172800; path=/
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 23025
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/html; charset=UTF-8

www.w3schools.com/w3css/4/w3.css

192.229.133.221

200 OK

5.3 kB

URL HTTP/2
www.w3schools.com/w3css/4/w3.css
IP
192.229.133.221:0
ASN
#15133 EDGECAST

File type
Unicode text, UTF-8 (with BOM) text
Size
5.3 kB (5250 bytes)
Hash
cfa5fd76f66a5f917b87ddd80b75b3fa
c0d7265855205d77acc0f1154172070a8680ab19
38ae41c45eedd4f190a8ddbda2a2dc69e2a4d75a6ff8cb0bb35d4a521724ee98

HTTP Headers

GET /w3css/4/w3.css HTTP/1.1
Host: www.w3schools.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://hbcsaude.com.br/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-encoding: gzip
accept-ranges: bytes
age: 10749
cache-control: public,max-age=14400,public
content-security-policy: frame-ancestors 'self' https://mycourses.w3schools.com;
content-type: text/css
date: Thu, 06 Oct 2022 19:15:08 GMT
etag: "0207fb781d9d81:0"
last-modified: Thu, 06 Oct 2022 12:46:56 GMT
server: ECS (ska/F716)
vary: Accept-Encoding
x-cache: HIT
x-content-security-policy: frame-ancestors 'self' https://mycourses.w3schools.com;
x-powered-by: ASP.NET
content-length: 5250
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
b0e8a79f3e381ab34a44278947ac7c7e
70d01e6fdc8565c661b6ae8c5a043ddf2da16530
885a8c234fca85e6f6bb3e8fcab6672b9a9742b5d3f74681b17a330fa295d549

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 06 Oct 2022 19:15:08 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

hbcsaude.com.br/wp-content/plugins/themeone-shortcodes/shortcodes/css/shortcodes.css?ver=5.3.13

162.240.18.185

200 OK

12 kB

URL HTTP/1.1
hbcsaude.com.br/wp-content/plugins/themeone-shortcodes/shortcodes/css/shortcodes.css?ver=5.3.13
IP
162.240.18.185:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
ASCII text, with CRLF line terminators
Size
12 kB (12546 bytes)
Hash
ab856bb1de4cc0684553a2823efe812b
3e747af46187a5c9759630bd8669888becd13892
b18a0269d02445e82d71b7993b6e395d354b6265f0143ba7e1a624c03138f842

Detections

Analyzer	Verdict	Alert
fortinet	Malware
quad9	Sinkholed

HTTP Headers

GET /wp-content/plugins/themeone-shortcodes/shortcodes/css/shortcodes.css?ver=5.3.13 HTTP/1.1
Host: hbcsaude.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://hbcsaude.com.br/
Cookie: wp_wpfileupload_adb5dcf7967adb2dbe37208297a0082d=CmRsETtKLHTw5jshLP9OaanqqbQxkeQx
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Thu, 06 Oct 2022 19:15:08 GMT
Server: Apache
Last-Modified: Thu, 21 Sep 2017 02:17:34 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 12546
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: text/css

hbcsaude.com.br/wp-content/plugins/contact-form-7/includes/css/styles.css?ver=5.1.6

162.240.18.185

200 OK

649 B

URL HTTP/1.1
hbcsaude.com.br/wp-content/plugins/contact-form-7/includes/css/styles.css?ver=5.1.6
IP
162.240.18.185:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
ASCII text
Size
649 B (649 bytes)
Hash
76aba5da6a0d822d5b7ed296888c8758
9bd4319bc86fb62d04a7593569084a978fed2793
220aff2fb7a928001bdc0e30d89b683c92c5f41f259759ca04c198a678eab56e

Detections

Analyzer	Verdict	Alert
fortinet	Malware
quad9	Sinkholed

HTTP Headers

GET /wp-content/plugins/contact-form-7/includes/css/styles.css?ver=5.1.6 HTTP/1.1
Host: hbcsaude.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://hbcsaude.com.br/
Cookie: wp_wpfileupload_adb5dcf7967adb2dbe37208297a0082d=CmRsETtKLHTw5jshLP9OaanqqbQxkeQx
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Thu, 06 Oct 2022 19:15:08 GMT
Server: Apache
Last-Modified: Thu, 27 Feb 2020 15:17:48 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 649
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: text/css

hbcsaude.com.br/wp-includes/css/dist/block-library/style.min.css?ver=5.3.13

162.240.18.185

200 OK

6.1 kB

URL HTTP/1.1
hbcsaude.com.br/wp-includes/css/dist/block-library/style.min.css?ver=5.3.13
IP
162.240.18.185:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
ASCII text, with very long lines (41045), with no line terminators
Size
6.1 kB (6132 bytes)
Hash
e249e51bc3661ceb614f1ad31574c939
ca981ab391193e11e93775f3c25abc452b0e3908
950b57fc13a5c515fffe9c67a69da06e9e833430253210d0cd9fe4aff93d667f

Detections

Analyzer	Verdict	Alert
fortinet	Malware
quad9	Sinkholed

HTTP Headers

GET /wp-includes/css/dist/block-library/style.min.css?ver=5.3.13 HTTP/1.1
Host: hbcsaude.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://hbcsaude.com.br/
Cookie: wp_wpfileupload_adb5dcf7967adb2dbe37208297a0082d=CmRsETtKLHTw5jshLP9OaanqqbQxkeQx
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Thu, 06 Oct 2022 19:15:08 GMT
Server: Apache
Last-Modified: Thu, 11 Jun 2020 01:28:34 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 6132
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/css

hbcsaude.com.br/wp-content/plugins/themeone-shortcodes/shortcodes/css/pixelicons.css?ver=5.3.13

162.240.18.185

200 OK

3.8 kB

URL HTTP/1.1
hbcsaude.com.br/wp-content/plugins/themeone-shortcodes/shortcodes/css/pixelicons.css?ver=5.3.13
IP
162.240.18.185:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
ASCII text, with very long lines (1812), with CRLF line terminators
Size
3.8 kB (3802 bytes)
Hash
ff1feae70f25394cf758d536894128d7
6ef720f3a54d6ca2dd70b398f5217a4fba28ccf8
99f28b535f61675f3fa258499612e7f8490a67ee64592e55a330ebc21274aeef

Detections

Analyzer	Verdict	Alert
fortinet	Malware
quad9	Sinkholed

HTTP Headers

GET /wp-content/plugins/themeone-shortcodes/shortcodes/css/pixelicons.css?ver=5.3.13 HTTP/1.1
Host: hbcsaude.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://hbcsaude.com.br/
Cookie: wp_wpfileupload_adb5dcf7967adb2dbe37208297a0082d=CmRsETtKLHTw5jshLP9OaanqqbQxkeQx
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Thu, 06 Oct 2022 19:15:08 GMT
Server: Apache
Last-Modified: Thu, 21 Sep 2017 02:17:34 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 3802
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/css

hbcsaude.com.br/wp-content/plugins/awesome-wp-image-gallery/css/prettyPhoto.css?ver=5.3.13

162.240.18.185

200 OK

2.8 kB

URL HTTP/1.1
hbcsaude.com.br/wp-content/plugins/awesome-wp-image-gallery/css/prettyPhoto.css?ver=5.3.13
IP
162.240.18.185:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
ASCII text, with very long lines (402)
Size
2.8 kB (2769 bytes)
Hash
4f21ec76906e28e1c2194ea84546ed6b
85eacc0202364a6682bd58ee3f6680efc1420c7f
86534570cd150f56233dd6fb56369c299e76d93a751dc233c66d35d512a37179

Detections

Analyzer	Verdict	Alert
fortinet	Malware
quad9	Sinkholed

HTTP Headers

GET /wp-content/plugins/awesome-wp-image-gallery/css/prettyPhoto.css?ver=5.3.13 HTTP/1.1
Host: hbcsaude.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://hbcsaude.com.br/
Cookie: wp_wpfileupload_adb5dcf7967adb2dbe37208297a0082d=CmRsETtKLHTw5jshLP9OaanqqbQxkeQx
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Thu, 06 Oct 2022 19:15:08 GMT
Server: Apache
Last-Modified: Fri, 24 Nov 2017 16:58:27 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 2769
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/css

hbcsaude.com.br/wp-content/plugins/awesome-wp-image-gallery/css/image-gallery.css?ver=5.3.13

162.240.18.185

200 OK

253 B

URL HTTP/1.1
hbcsaude.com.br/wp-content/plugins/awesome-wp-image-gallery/css/image-gallery.css?ver=5.3.13
IP
162.240.18.185:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
ASCII text, with CRLF line terminators
Size
253 B (253 bytes)
Hash
0c7e172f276420ddb07e110f972815e0
777fa4a5bbb01d16ff89edaa028c054ae31c477e
cd497c9d6133926ec59782b2d92513c4f2e58f7cffec24a4db2c8401ab86ca7c

Detections

Analyzer	Verdict	Alert
fortinet	Malware
quad9	Sinkholed

HTTP Headers

GET /wp-content/plugins/awesome-wp-image-gallery/css/image-gallery.css?ver=5.3.13 HTTP/1.1
Host: hbcsaude.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://hbcsaude.com.br/
Cookie: wp_wpfileupload_adb5dcf7967adb2dbe37208297a0082d=CmRsETtKLHTw5jshLP9OaanqqbQxkeQx
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Thu, 06 Oct 2022 19:15:08 GMT
Server: Apache
Last-Modified: Fri, 24 Nov 2017 16:58:27 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 253
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/css

hbcsaude.com.br/wp-content/plugins/cookie-law-info/legacy/public/css/cookie-law-info-public.css?ver=3.0.2

162.240.18.185

200 OK

953 B

URL HTTP/1.1
hbcsaude.com.br/wp-content/plugins/cookie-law-info/legacy/public/css/cookie-law-info-public.css?ver=3.0.2
IP
162.240.18.185:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
ASCII text
Size
953 B (953 bytes)
Hash
c503abd9f9fe09d22b59cb1fb0a292a8
a75f1bde1d2da3a4696a8e027eeaae4e96d21fec
56ea4b514650d10a9c4756a2eb1e4d292d138725164eec8c8ef004ceda2fece7

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /wp-content/plugins/cookie-law-info/legacy/public/css/cookie-law-info-public.css?ver=3.0.2 HTTP/1.1
Host: hbcsaude.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://hbcsaude.com.br/
Cookie: wp_wpfileupload_adb5dcf7967adb2dbe37208297a0082d=CmRsETtKLHTw5jshLP9OaanqqbQxkeQx
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Thu, 06 Oct 2022 19:15:08 GMT
Server: Apache
Last-Modified: Mon, 03 Oct 2022 17:33:18 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 953
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: text/css

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
18e0e019cd697bb16806d8f00408a319
60ceb13c31595e6cf9bb6800657e4593a1fbd670
7cb0778c80be637b67a5d198ca180a76bbfa4c32e502a0fa472a4c6946ffb56e

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 06 Oct 2022 19:15:08 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

hbcsaude.com.br/wp-content/plugins/cookie-law-info/legacy/public/css/cookie-law-info-gdpr.css?ver=3.0.2

162.240.18.185

200 OK

4.4 kB

URL HTTP/1.1
hbcsaude.com.br/wp-content/plugins/cookie-law-info/legacy/public/css/cookie-law-info-gdpr.css?ver=3.0.2
IP
162.240.18.185:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
ASCII text
Size
4.4 kB (4395 bytes)
Hash
6ccc50d8058f37c03eea10782430638c
f9aced9bc0c8286be877fc48a10ae37fdcc2269c
534cd08c1ea0eaeebe1ba35b004f2a17d329a1d20c0b398785c4714458834b15

Detections

Analyzer	Verdict	Alert
fortinet	Malware
quad9	Sinkholed

HTTP Headers

GET /wp-content/plugins/cookie-law-info/legacy/public/css/cookie-law-info-gdpr.css?ver=3.0.2 HTTP/1.1
Host: hbcsaude.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://hbcsaude.com.br/
Cookie: wp_wpfileupload_adb5dcf7967adb2dbe37208297a0082d=CmRsETtKLHTw5jshLP9OaanqqbQxkeQx
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Thu, 06 Oct 2022 19:15:08 GMT
Server: Apache
Last-Modified: Mon, 03 Oct 2022 17:33:18 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 4395
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: text/css

hbcsaude.com.br/wp-content/plugins/photo-gallery/css/bwg-fonts/fonts.css?ver=0.0.1

162.240.18.185

200 OK

890 B

URL HTTP/1.1
hbcsaude.com.br/wp-content/plugins/photo-gallery/css/bwg-fonts/fonts.css?ver=0.0.1
IP
162.240.18.185:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
ASCII text
Size
890 B (890 bytes)
Hash
77844a96d72d03c84c5e6970c1fe631b
5f02982c93cf4bf4f70d77ea6dfe04d2efcd9b81
0b5162518ddfdb56914db022a95c1a5eca3271ae2f062cfaa939cc5b7094d63c

Detections

Analyzer	Verdict	Alert
fortinet	Malware
quad9	Sinkholed

HTTP Headers

GET /wp-content/plugins/photo-gallery/css/bwg-fonts/fonts.css?ver=0.0.1 HTTP/1.1
Host: hbcsaude.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://hbcsaude.com.br/
Cookie: wp_wpfileupload_adb5dcf7967adb2dbe37208297a0082d=CmRsETtKLHTw5jshLP9OaanqqbQxkeQx
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Thu, 06 Oct 2022 19:15:08 GMT
Server: Apache
Last-Modified: Mon, 03 Oct 2022 16:52:46 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 890
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: text/css

hbcsaude.com.br/wp-content/plugins/photo-gallery/css/sumoselect.min.css?ver=3.4.6

162.240.18.185

200 OK

2.1 kB

URL HTTP/1.1
hbcsaude.com.br/wp-content/plugins/photo-gallery/css/sumoselect.min.css?ver=3.4.6
IP
162.240.18.185:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
ASCII text, with very long lines (7609)
Size
2.1 kB (2081 bytes)
Hash
b7c2fd201680d0fdae258d6e7c0b0e16
d6b0c3c069b8c33115b8e33c5ce1eff64ef33139
3457dbccf9f39fb5588b077fbe22d0059bdb686e7298ff7b3c4b8154fe550580

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /wp-content/plugins/photo-gallery/css/sumoselect.min.css?ver=3.4.6 HTTP/1.1
Host: hbcsaude.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://hbcsaude.com.br/
Cookie: wp_wpfileupload_adb5dcf7967adb2dbe37208297a0082d=CmRsETtKLHTw5jshLP9OaanqqbQxkeQx
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Thu, 06 Oct 2022 19:15:08 GMT
Server: Apache
Last-Modified: Mon, 03 Oct 2022 16:52:46 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 2081
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: text/css

hbcsaude.com.br/wp-content/plugins/photo-gallery/css/jquery.mCustomScrollbar.min.css?ver=3.1.5

162.240.18.185

200 OK

4.0 kB

URL HTTP/1.1
hbcsaude.com.br/wp-content/plugins/photo-gallery/css/jquery.mCustomScrollbar.min.css?ver=3.1.5
IP
162.240.18.185:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
ASCII text, with very long lines (42839), with no line terminators
Size
4.0 kB (3984 bytes)
Hash
e7d460fe41c87ad9e87c0695426d2f92
f16685ccaa6474b82a282f394ef673b27f07fcc9
b92e0e744425caad084ada130f27b25b00c07eecbca8de743686ab33d3cf100f

Detections

Analyzer	Verdict	Alert
fortinet	Malware
quad9	Sinkholed

HTTP Headers

GET /wp-content/plugins/photo-gallery/css/jquery.mCustomScrollbar.min.css?ver=3.1.5 HTTP/1.1
Host: hbcsaude.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://hbcsaude.com.br/
Cookie: wp_wpfileupload_adb5dcf7967adb2dbe37208297a0082d=CmRsETtKLHTw5jshLP9OaanqqbQxkeQx
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Thu, 06 Oct 2022 19:15:08 GMT
Server: Apache
Last-Modified: Mon, 03 Oct 2022 16:52:46 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 3984
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: text/css

hbcsaude.com.br/wp-content/plugins/photo-gallery/css/styles.min.css?ver=1.7.6

162.240.18.185

200 OK

7.3 kB

URL HTTP/1.1
hbcsaude.com.br/wp-content/plugins/photo-gallery/css/styles.min.css?ver=1.7.6
IP
162.240.18.185:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
ASCII text, with very long lines (45857), with no line terminators
Size
7.3 kB (7260 bytes)
Hash
5b7f76b9021caeed57532323bd9ac803
9102ac2f9cc75ac35c7f05f2f086615d99183502
a9e164289a6bcc2f3ec0917b351510c460a1b0de40d02f51563c110c7dbd9c3f

Detections

Analyzer	Verdict	Alert
fortinet	Malware
quad9	Sinkholed

HTTP Headers

GET /wp-content/plugins/photo-gallery/css/styles.min.css?ver=1.7.6 HTTP/1.1
Host: hbcsaude.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://hbcsaude.com.br/
Cookie: wp_wpfileupload_adb5dcf7967adb2dbe37208297a0082d=CmRsETtKLHTw5jshLP9OaanqqbQxkeQx
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Thu, 06 Oct 2022 19:15:08 GMT
Server: Apache
Last-Modified: Mon, 03 Oct 2022 16:52:46 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 7260
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: text/css

hbcsaude.com.br/wp-content/plugins/themeone-shortcodes/shortcodes/css/linecons.css?ver=5.3.13

162.240.18.185

200 OK

56 kB

URL HTTP/1.1
hbcsaude.com.br/wp-content/plugins/themeone-shortcodes/shortcodes/css/linecons.css?ver=5.3.13
IP
162.240.18.185:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
ASCII text, with very long lines (65416), with CRLF line terminators
Size
56 kB (56012 bytes)
Hash
672db525535954b3caa51bd531148cd8
a191f9da9c2d663c69c0574a5ce5769969e6c3af
52a1789a336e6a793ea82e34de0287e532fe65660a002cc5069d08e94f60d35f

Detections

Analyzer	Verdict	Alert
fortinet	Malware
quad9	Sinkholed

HTTP Headers

GET /wp-content/plugins/themeone-shortcodes/shortcodes/css/linecons.css?ver=5.3.13 HTTP/1.1
Host: hbcsaude.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://hbcsaude.com.br/
Cookie: wp_wpfileupload_adb5dcf7967adb2dbe37208297a0082d=CmRsETtKLHTw5jshLP9OaanqqbQxkeQx
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Thu, 06 Oct 2022 19:15:08 GMT
Server: Apache
Last-Modified: Thu, 21 Sep 2017 02:17:34 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 56012
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/css

hbcsaude.com.br/wp-content/plugins/timetable/style/superfish.css?ver=5.3.13

162.240.18.185

200 OK

1.2 kB

URL HTTP/1.1
hbcsaude.com.br/wp-content/plugins/timetable/style/superfish.css?ver=5.3.13
IP
162.240.18.185:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
ASCII text
Size
1.2 kB (1160 bytes)
Hash
a1156bbec0f95460394afd5729ce3ab0
02b192dd971385bc8e4b22b85ecab8ec7469b6ab
08dece3727a82a7e8404ddb0cb686243db42f17ecf71b333277cc3729b9e7255

Detections

Analyzer	Verdict	Alert
fortinet	Malware
quad9	Sinkholed

HTTP Headers

GET /wp-content/plugins/timetable/style/superfish.css?ver=5.3.13 HTTP/1.1
Host: hbcsaude.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://hbcsaude.com.br/
Cookie: wp_wpfileupload_adb5dcf7967adb2dbe37208297a0082d=CmRsETtKLHTw5jshLP9OaanqqbQxkeQx
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Thu, 06 Oct 2022 19:15:09 GMT
Server: Apache
Last-Modified: Wed, 20 Sep 2017 23:25:56 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 1160
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: text/css

hbcsaude.com.br/wp-content/plugins/timetable/style/style.css?ver=5.3.13

162.240.18.185

200 OK

2.5 kB

URL HTTP/1.1
hbcsaude.com.br/wp-content/plugins/timetable/style/style.css?ver=5.3.13
IP
162.240.18.185:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
assembler source, ASCII text
Size
2.5 kB (2450 bytes)
Hash
8ee762e3b3d8299f2fc5ab2ba02c3876
be88e8119f4c578c10a1bae43fd4e61a42e036fe
038672c6333868f710dda85fccd6cc53bb102530ec28c09261a44c3afad828a2

Detections

Analyzer	Verdict	Alert
fortinet	Malware
quad9	Sinkholed

HTTP Headers

GET /wp-content/plugins/timetable/style/style.css?ver=5.3.13 HTTP/1.1
Host: hbcsaude.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://hbcsaude.com.br/
Cookie: wp_wpfileupload_adb5dcf7967adb2dbe37208297a0082d=CmRsETtKLHTw5jshLP9OaanqqbQxkeQx
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Thu, 06 Oct 2022 19:15:09 GMT
Server: Apache
Last-Modified: Wed, 20 Sep 2017 23:25:56 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 2450
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: text/css

hbcsaude.com.br/wp-content/plugins/timetable/style/event_template.css?ver=5.3.13

162.240.18.185

200 OK

1.6 kB

URL HTTP/1.1
hbcsaude.com.br/wp-content/plugins/timetable/style/event_template.css?ver=5.3.13
IP
162.240.18.185:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
ASCII text, with CRLF line terminators
Size
1.6 kB (1588 bytes)
Hash
64a394a7265288281292b5258413f03b
668035621a970eb1ff2ab78ce7fba376f4d40271
dd7ec17d4696dd36d5c646ae4ceb345530307c0e33199fc9e180e1612f071f6c

Detections

Analyzer	Verdict	Alert
fortinet	Malware
quad9	Sinkholed

HTTP Headers

GET /wp-content/plugins/timetable/style/event_template.css?ver=5.3.13 HTTP/1.1
Host: hbcsaude.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://hbcsaude.com.br/
Cookie: wp_wpfileupload_adb5dcf7967adb2dbe37208297a0082d=CmRsETtKLHTw5jshLP9OaanqqbQxkeQx
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Thu, 06 Oct 2022 19:15:09 GMT
Server: Apache
Last-Modified: Wed, 20 Sep 2017 23:25:56 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 1588
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: text/css

hbcsaude.com.br/wp-content/plugins/timetable/style/responsive.css?ver=5.3.13

162.240.18.185

200 OK

1.1 kB

URL HTTP/1.1
hbcsaude.com.br/wp-content/plugins/timetable/style/responsive.css?ver=5.3.13
IP
162.240.18.185:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
ASCII text, with CRLF line terminators
Size
1.1 kB (1123 bytes)
Hash
d534fb8ac80db9878d2afd89e4edd3c0
0459c3ba30f1e41e2f94c9c7ddf0ea20b2f1fecf
02b44694085142bc110581cb9f04788801768afbdd6d1c3c5b275668076e1944

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /wp-content/plugins/timetable/style/responsive.css?ver=5.3.13 HTTP/1.1
Host: hbcsaude.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://hbcsaude.com.br/
Cookie: wp_wpfileupload_adb5dcf7967adb2dbe37208297a0082d=CmRsETtKLHTw5jshLP9OaanqqbQxkeQx
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Thu, 06 Oct 2022 19:15:09 GMT
Server: Apache
Last-Modified: Wed, 20 Sep 2017 23:25:56 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 1123
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive
Content-Type: text/css

hbcsaude.com.br/wp-content/plugins/wp-file-upload/css/wordpress_file_upload_style.css?ver=5.3.13

162.240.18.185

200 OK

307 B

URL HTTP/1.1
hbcsaude.com.br/wp-content/plugins/wp-file-upload/css/wordpress_file_upload_style.css?ver=5.3.13
IP
162.240.18.185:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
ASCII text, with very long lines (1020), with no line terminators
Size
307 B (307 bytes)
Hash
2de46532fda413fac62ce96cd3a465cb
3b6367bdf6b722106c0663b0ccb5c6d53b3199d4
c5a09b8a5c8e35ccfc16f220f731e364f45008a96994c00f32e68576935c0524

Detections

Analyzer	Verdict	Alert
fortinet	Malware
quad9	Sinkholed

HTTP Headers

GET /wp-content/plugins/wp-file-upload/css/wordpress_file_upload_style.css?ver=5.3.13 HTTP/1.1
Host: hbcsaude.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://hbcsaude.com.br/
Cookie: wp_wpfileupload_adb5dcf7967adb2dbe37208297a0082d=CmRsETtKLHTw5jshLP9OaanqqbQxkeQx
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Thu, 06 Oct 2022 19:15:09 GMT
Server: Apache
Last-Modified: Mon, 01 Aug 2022 20:40:24 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 307
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: text/css

hbcsaude.com.br/wp-content/plugins/wp-file-upload/css/wordpress_file_upload_style_safe.css?ver=5.3.13

162.240.18.185

200 OK

427 B

URL HTTP/1.1
hbcsaude.com.br/wp-content/plugins/wp-file-upload/css/wordpress_file_upload_style_safe.css?ver=5.3.13
IP
162.240.18.185:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
ASCII text, with very long lines (2988), with no line terminators
Size
427 B (427 bytes)
Hash
c5e890a8ab89a30447bf164eb94b2e62
f04cd8774c37e7e2f085e3e19b0e664d7b423fda
86662124403fcdb08e831fd334c156a3775fb82e8122a433ea4cc716ff980c1d

Detections

Analyzer	Verdict	Alert
fortinet	Malware
quad9	Sinkholed

HTTP Headers

GET /wp-content/plugins/wp-file-upload/css/wordpress_file_upload_style_safe.css?ver=5.3.13 HTTP/1.1
Host: hbcsaude.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://hbcsaude.com.br/
Cookie: wp_wpfileupload_adb5dcf7967adb2dbe37208297a0082d=CmRsETtKLHTw5jshLP9OaanqqbQxkeQx
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Thu, 06 Oct 2022 19:15:09 GMT
Server: Apache
Last-Modified: Mon, 01 Aug 2022 20:40:24 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 427
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: text/css

hbcsaude.com.br/wp-content/plugins/wp-file-upload/css/wordpress_file_upload_adminbarstyle.css?ver=5.3.13

162.240.18.185

200 OK

92 B

URL HTTP/1.1
hbcsaude.com.br/wp-content/plugins/wp-file-upload/css/wordpress_file_upload_adminbarstyle.css?ver=5.3.13
IP
162.240.18.185:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
ASCII text, with no line terminators
Size
92 B (92 bytes)
Hash
5cb0f5038b643528a681b20178921ce0
b40b77eb4eb72e3b00fee493d406f984480d0199
1f16fd9fb42392922c2af8bec71a6b302d32d179b0bfdc20eab8f71e073cb1ec

Detections

Analyzer	Verdict	Alert
fortinet	Malware
quad9	Sinkholed

HTTP Headers

GET /wp-content/plugins/wp-file-upload/css/wordpress_file_upload_adminbarstyle.css?ver=5.3.13 HTTP/1.1
Host: hbcsaude.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://hbcsaude.com.br/
Cookie: wp_wpfileupload_adb5dcf7967adb2dbe37208297a0082d=CmRsETtKLHTw5jshLP9OaanqqbQxkeQx
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Thu, 06 Oct 2022 19:15:09 GMT
Server: Apache
Last-Modified: Mon, 01 Aug 2022 20:40:24 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 92
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: text/css

hbcsaude.com.br/wp-content/plugins/wp-file-upload/vendor/jquery/jquery-ui.min.css?ver=5.3.13

162.240.18.185

200 OK

7.9 kB

URL HTTP/1.1
hbcsaude.com.br/wp-content/plugins/wp-file-upload/vendor/jquery/jquery-ui.min.css?ver=5.3.13
IP
162.240.18.185:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
ASCII text, with very long lines (29137), with CRLF line terminators
Size
7.9 kB (7901 bytes)
Hash
b53b98699cbf0eb738426482c4398c90
9f77ad7742617f2c81effbf000f1a331c4e050f9
fa829b71142dc44e5ed29bf9f9265ec0dfb60f0c128480b71898954ca38804d4

Detections

Analyzer	Verdict	Alert
fortinet	Malware
quad9	Sinkholed

HTTP Headers

GET /wp-content/plugins/wp-file-upload/vendor/jquery/jquery-ui.min.css?ver=5.3.13 HTTP/1.1
Host: hbcsaude.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://hbcsaude.com.br/
Cookie: wp_wpfileupload_adb5dcf7967adb2dbe37208297a0082d=CmRsETtKLHTw5jshLP9OaanqqbQxkeQx
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Thu, 06 Oct 2022 19:15:09 GMT
Server: Apache
Last-Modified: Mon, 01 Aug 2022 20:40:24 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 7901
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: text/css

hbcsaude.com.br/wp-content/plugins/wp-file-upload/vendor/jquery/jquery-ui-timepicker-addon.min.css?ver=5.3.13

162.240.18.185

200 OK

573 B

URL HTTP/1.1
hbcsaude.com.br/wp-content/plugins/wp-file-upload/vendor/jquery/jquery-ui-timepicker-addon.min.css?ver=5.3.13
IP
162.240.18.185:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
ASCII text, with very long lines (1746), with CRLF line terminators
Size
573 B (573 bytes)
Hash
db41739276ee4767bcb8fe99d02983ed
a3a2740a14eeffbc11d2bfe44afffc42a702533e
fb0a86ad52cfe9e17faf3caee8075d035ef331da9eee7defb23fc426bfb12e57

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /wp-content/plugins/wp-file-upload/vendor/jquery/jquery-ui-timepicker-addon.min.css?ver=5.3.13 HTTP/1.1
Host: hbcsaude.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://hbcsaude.com.br/
Cookie: wp_wpfileupload_adb5dcf7967adb2dbe37208297a0082d=CmRsETtKLHTw5jshLP9OaanqqbQxkeQx
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Thu, 06 Oct 2022 19:15:09 GMT
Server: Apache
Last-Modified: Mon, 01 Aug 2022 20:40:24 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 573
Keep-Alive: timeout=5, max=94
Connection: Keep-Alive
Content-Type: text/css

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
b0e8a79f3e381ab34a44278947ac7c7e
70d01e6fdc8565c661b6ae8c5a043ddf2da16530
885a8c234fca85e6f6bb3e8fcab6672b9a9742b5d3f74681b17a330fa295d549

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 06 Oct 2022 19:15:09 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

hbcsaude.com.br/wp-includes/css/dashicons.min.css?ver=5.3.13

162.240.18.185

200 OK

28 kB

URL HTTP/1.1
hbcsaude.com.br/wp-includes/css/dashicons.min.css?ver=5.3.13
IP
162.240.18.185:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
ASCII text, with very long lines (47529)
Size
28 kB (28487 bytes)
Hash
a90a88620f0674bd9f3513bc08163837
51fbb6809692541a3b2022048f0f509ff26d1b6b
87389a63f1fa87832527f41bc873850d689b9c1da632b18315483100f654ed68

Detections

Analyzer	Verdict	Alert
fortinet	Malware
quad9	Sinkholed

HTTP Headers

GET /wp-includes/css/dashicons.min.css?ver=5.3.13 HTTP/1.1
Host: hbcsaude.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://hbcsaude.com.br/
Cookie: wp_wpfileupload_adb5dcf7967adb2dbe37208297a0082d=CmRsETtKLHTw5jshLP9OaanqqbQxkeQx
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Thu, 06 Oct 2022 19:15:09 GMT
Server: Apache
Last-Modified: Thu, 15 Apr 2021 03:21:06 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 28487
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: text/css

hbcsaude.com.br/wp-content/plugins/js_composer/assets/css/js_composer.min.css?ver=4.12.1

162.240.18.185

200 OK

44 kB

URL HTTP/1.1
hbcsaude.com.br/wp-content/plugins/js_composer/assets/css/js_composer.min.css?ver=4.12.1
IP
162.240.18.185:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
ASCII text, with very long lines (65536), with no line terminators
Size
44 kB (43844 bytes)
Hash
8642ba13aa690384cbbe0b22790def1b
fcc63ec24d9c15e56a19921d7aa7776498b31a2c
c0d0b8ca26f8a0f9a99c893223cb87ffbea59ba0b3af9212bc66593e341e8792

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /wp-content/plugins/js_composer/assets/css/js_composer.min.css?ver=4.12.1 HTTP/1.1
Host: hbcsaude.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://hbcsaude.com.br/
Cookie: wp_wpfileupload_adb5dcf7967adb2dbe37208297a0082d=CmRsETtKLHTw5jshLP9OaanqqbQxkeQx
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Thu, 06 Oct 2022 19:15:09 GMT
Server: Apache
Last-Modified: Wed, 20 Sep 2017 23:20:20 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 43844
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: text/css

hbcsaude.com.br/wp-content/plugins/js_composer/assets/lib/bower/font-awesome/css/font-awesome.min.css?ver=4.12.1

162.240.18.185

200 OK

6.7 kB

URL HTTP/1.1
hbcsaude.com.br/wp-content/plugins/js_composer/assets/lib/bower/font-awesome/css/font-awesome.min.css?ver=4.12.1
IP
162.240.18.185:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
ASCII text, with very long lines (28824)
Size
6.7 kB (6684 bytes)
Hash
493398c5b021c6f1679b5faa7c9d33ae
1bd77a073f3d85adcf06856da80009a1cc4a11d3
31f324dd068c29c50c9af1334d7f461686d51c12435895e5e87e83d387917fb9

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /wp-content/plugins/js_composer/assets/lib/bower/font-awesome/css/font-awesome.min.css?ver=4.12.1 HTTP/1.1
Host: hbcsaude.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://hbcsaude.com.br/
Cookie: wp_wpfileupload_adb5dcf7967adb2dbe37208297a0082d=CmRsETtKLHTw5jshLP9OaanqqbQxkeQx
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Thu, 06 Oct 2022 19:15:09 GMT
Server: Apache
Last-Modified: Wed, 20 Sep 2017 23:20:20 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 6684
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: text/css

hbcsaude.com.br/wp-content/themes/mobius/css/icomoon.css?ver=5.3.13

162.240.18.185

200 OK

551 B

URL HTTP/1.1
hbcsaude.com.br/wp-content/themes/mobius/css/icomoon.css?ver=5.3.13
IP
162.240.18.185:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
ASCII text, with CRLF line terminators
Size
551 B (551 bytes)
Hash
dff69797ef206ced388116426ced87dd
c3c394789d3a0b686a09168800574bcce04da88d
004981cd430c4829b55e71ba77f1c5d9fa72aa575eeed7963dab38479f1c2276

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /wp-content/themes/mobius/css/icomoon.css?ver=5.3.13 HTTP/1.1
Host: hbcsaude.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://hbcsaude.com.br/
Cookie: wp_wpfileupload_adb5dcf7967adb2dbe37208297a0082d=CmRsETtKLHTw5jshLP9OaanqqbQxkeQx
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Thu, 06 Oct 2022 19:15:09 GMT
Server: Apache
Last-Modified: Sat, 05 Mar 2016 04:00:00 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 551
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: text/css

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
31e440ccd993c4ee793f50511c2ac7c4
4380327d50b7001d158aee05a57c6078e57c94e4
65d8a97f6df1e110333a01d1f6dcb4982db7bb4b1c5f3f1498fafa716e250c0f

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "65D8A97F6DF1E110333A01D1F6DCB4982DB7BB4B1C5F3F1498FAFA716E250C0F"
Last-Modified: Thu, 06 Oct 2022 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2813
Expires: Thu, 06 Oct 2022 20:02:02 GMT
Date: Thu, 06 Oct 2022 19:15:09 GMT
Connection: keep-alive

img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd38ec9d6-fb69-4c6e-aae2-136fd254ae50.jpeg

34.120.237.76

200 OK

7.3 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd38ec9d6-fb69-4c6e-aae2-136fd254ae50.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
7.3 kB (7270 bytes)
Hash
e238ccaa3b9fa88476a8514855e8232f
447cbf348ef10d0136a1811e843c46937defbba1
43dce3c1eb388dfaddca4176acb6eb32f76fc4c03fca18e7a315c9ddb43d2b02

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd38ec9d6-fb69-4c6e-aae2-136fd254ae50.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 7270
x-amzn-requestid: f2f15f43-6054-40f5-943a-530671e772dd
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZjOZjF3aIAMFW9Q=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-633df770-5e2253791a927c8c40a0ff0d;Sampled=0
x-amzn-remapped-date: Wed, 05 Oct 2022 21:30:24 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P2
x-cache: Miss from cloudfront
x-amz-cf-id: xRuMce_9OkP3R2DqHjZI34GwkDezdfGKsgntCMTZG2c6SJUcyv0Ckg==
via: 1.1 cd48ffda04934d18865e47e99ea080bc.cloudfront.net (CloudFront), 1.1 583992e175976bd59a21b4416890271e.cloudfront.net (CloudFront), 1.1 google
date: Wed, 05 Oct 2022 21:56:40 GMT
etag: "447cbf348ef10d0136a1811e843c46937defbba1"
content-type: image/jpeg
age: 76709
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
31e440ccd993c4ee793f50511c2ac7c4
4380327d50b7001d158aee05a57c6078e57c94e4
65d8a97f6df1e110333a01d1f6dcb4982db7bb4b1c5f3f1498fafa716e250c0f

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "65D8A97F6DF1E110333A01D1F6DCB4982DB7BB4B1C5F3F1498FAFA716E250C0F"
Last-Modified: Thu, 06 Oct 2022 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2813
Expires: Thu, 06 Oct 2022 20:02:02 GMT
Date: Thu, 06 Oct 2022 19:15:09 GMT
Connection: keep-alive

34.120.237.76

200 OK

11 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7fac259b-7a22-4aa2-ba3f-682cb749091c.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
11 kB (11080 bytes)
Hash
2277f8f2d93b4bc3b05d348343177892
531d9e4ec9078cd2d7376a19fcb287084af36c82
62907648de4a2ed390232a71ab7dce49f1e9c3363cde6a2f30ecae10ab67f93a

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7fac259b-7a22-4aa2-ba3f-682cb749091c.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
server: nginx
content-length: 11080
x-amzn-requestid: 8fa4d19d-87a5-46c5-96c5-4aec793daad9
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZjO7xE5eoAMFQLw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-633df84b-5c422c7a168c014f57559037;Sampled=0
x-amzn-remapped-date: Wed, 05 Oct 2022 21:34:03 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P2
x-cache: Miss from cloudfront
x-amz-cf-id: TlEKsCdhNhlKmA2Yhz8FarEUG18gQZMKGRD6SnzCnUMiKyGS9-UeOQ==
via: 1.1 41e349e25dc4bc856d0e5d2c162428a0.cloudfront.net (CloudFront), 1.1 73b60e9a9fd08eae9e034cedba707280.cloudfront.net (CloudFront), 1.1 google
date: Wed, 05 Oct 2022 21:38:04 GMT
etag: "531d9e4ec9078cd2d7376a19fcb287084af36c82"
content-type: image/jpeg
age: 77825
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

10 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1ca20164-9b52-49c5-9e63-1fc0ae719f45.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
10 kB (10158 bytes)
Hash
4fc2ddd86450d64d3fb659ab4e78be58
bbe71936b78a8c34d03ab87948dc840b35c6948f
84a760397a5912bd05f61bc8a953c13a88a677e2d17fbbf74bdf7d7ff4d3942f

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1ca20164-9b52-49c5-9e63-1fc0ae719f45.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
server: nginx
content-length: 10158
x-amzn-requestid: def1fc7e-8008-466f-9271-20fa1ab0fa5a
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZaqZCH7doAMFcPQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-633a8aa0-7fd2fb1249366f2277d719d6;Sampled=0
x-amzn-remapped-date: Mon, 03 Oct 2022 07:09:20 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: szhtD9f4RuQaDKXe7LElSR0yOKo9cYa1i2YMeG3eSpBXP8ePcdzQig==
via: 1.1 00f0a41f749793b9dd653153037c957e.cloudfront.net (CloudFront), 1.1 68fadeb91f97256bb67b03bfca74d830.cloudfront.net (CloudFront), 1.1 google
date: Thu, 06 Oct 2022 03:56:07 GMT
age: 55142
etag: "bbe71936b78a8c34d03ab87948dc840b35c6948f"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

7.5 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F2ecef3b6-b278-4a22-86dd-6a19875e1cc1.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
7.5 kB (7511 bytes)
Hash
9e520f87cae411cfc2ed1c8a14184385
69ad212cb7ae309d4f02019552887135bfae67da
723b10bfbcde201b5811e3bd0560f02f90775e4d18b28d19e6c814899f2da71a

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F2ecef3b6-b278-4a22-86dd-6a19875e1cc1.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
server: nginx
content-length: 7511
x-amzn-requestid: 995b51dd-5484-4b4c-ad40-550f7fd85930
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZjO6uG70IAMFjBw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-633df844-70f17f6f24dce0003d03902a;Sampled=0
x-amzn-remapped-date: Wed, 05 Oct 2022 21:33:56 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P2
x-cache: Hit from cloudfront
x-amz-cf-id: 3lKuGlFCBN2wEsp9-Oa3ysQg62py090H30jy6_bR02Ufs0KGPrVC4w==
via: 1.1 d83ae0e1ba84e92e58bc1efc23a0c652.cloudfront.net (CloudFront), 1.1 d8d9c12d1a621129f4bc739038e7c72e.cloudfront.net (CloudFront), 1.1 google
date: Wed, 05 Oct 2022 21:36:41 GMT
age: 77908
etag: "69ad212cb7ae309d4f02019552887135bfae67da"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

9.0 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fccecc8c9-b6da-4470-b2be-fa8d46df1cc2.webp
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
9.0 kB (9044 bytes)
Hash
70ea26af79226e9ff06d6198e2c019dc
ae2c476667f63c7f642f0d9f4d0bc0d846b0ef57
f9393e7b8cbaedc8e1ef87fd89c617cf102f58813d84d866ff68e3124f94d44c

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fccecc8c9-b6da-4470-b2be-fa8d46df1cc2.webp HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
server: nginx
content-length: 9044
x-amzn-requestid: 127bce04-9f75-4bb1-bbe7-33bf1694d96c
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZdZPmHG5oAMFehw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-633ba263-3896085b3b73ff5403237206;Sampled=0
x-amzn-remapped-date: Tue, 04 Oct 2022 03:02:59 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: E4yZTPRLFdK717YfwjOIFOJDi0wYpyA736dQELeM5iPLvGDXBosEWg==
via: 1.1 86b676273517904f44af31586adb06ae.cloudfront.net (CloudFront), 1.1 5fe5f2a3903f1378941d92eceaf3fa16.cloudfront.net (CloudFront), 1.1 google
date: Thu, 06 Oct 2022 04:27:43 GMT
age: 53246
etag: "ae2c476667f63c7f642f0d9f4d0bc0d846b0ef57"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

3.8 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6476b35e-8b14-44b0-a85a-4793280f25c1.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
3.8 kB (3777 bytes)
Hash
1a1a279f8386262762dcf70621e06ed5
0e1d6cefe5ffe1994f26322962df8b0a13743339
a4146e8a0561009b63c55d0c13673958546b96f684a9c5a43a1f3200782798e9

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6476b35e-8b14-44b0-a85a-4793280f25c1.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
server: nginx
content-length: 3777
x-amzn-requestid: 093c576f-e1f7-4d45-9f8c-7ca3e7539313
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZjPtDEpSIAMF_Nw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-633df986-3cbcc83c1db24bbf193c3047;Sampled=0
x-amzn-remapped-date: Wed, 05 Oct 2022 21:39:18 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P2
x-cache: Miss from cloudfront
x-amz-cf-id: GXneoYCI_hqJxLyI-RAxkJJf08pBsc6usoQlztb3HHPQSd1PDh7kgQ==
via: 1.1 86b676273517904f44af31586adb06ae.cloudfront.net (CloudFront), 1.1 c21a0d27ceec21e266c9f962d0349438.cloudfront.net (CloudFront), 1.1 google
date: Wed, 05 Oct 2022 21:52:47 GMT
age: 76942
etag: "0e1d6cefe5ffe1994f26322962df8b0a13743339"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

fonts.googleapis.com/css?family=Open+Sans%3A400%2C700%2C600%7CAdvent+Pro%3A600%2C400&subset=latin&ver=1635816155

142.250.74.10

200 OK

1.3 kB

URL HTTP/2
fonts.googleapis.com/css?family=Open+Sans%3A400%2C700%2C600%7CAdvent+Pro%3A600%2C400&subset=latin&ver=1635816155
IP
142.250.74.10:0
ASN
#15169 GOOGLE

File type
data
Size
1.3 kB (1300 bytes)
Hash
61c73f4859008a8c8c1670f67725938e
250154407e9ce09e8fad1208e06b034fba069e9e
138ff8247ece53a717dcf4fe9be788ef5332fd115643a3a5b1739a0253c97390

HTTP Headers

GET /css?family=Open+Sans%3A400%2C700%2C600%7CAdvent+Pro%3A600%2C400&subset=latin&ver=1635816155 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://hbcsaude.com.br/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Thu, 06 Oct 2022 19:15:08 GMT
date: Thu, 06 Oct 2022 19:15:08 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

hbcsaude.com.br/wp-content/themes/mobius/css/steadysets.css?ver=5.3.13

162.240.18.185

200 OK

1.4 kB

URL HTTP/1.1
hbcsaude.com.br/wp-content/themes/mobius/css/steadysets.css?ver=5.3.13
IP
162.240.18.185:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
ASCII text, with very long lines (7358), with no line terminators
Size
1.4 kB (1370 bytes)
Hash
bc7db97fa832fe05ef6eaaa8503dec65
c0903f6a83bf62f5203b3ab13f9eaa715535179d
9a56dd519c3bcef6bf94150be10135c30754069a20ed5a93384b0de1374caf02

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /wp-content/themes/mobius/css/steadysets.css?ver=5.3.13 HTTP/1.1
Host: hbcsaude.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://hbcsaude.com.br/
Cookie: wp_wpfileupload_adb5dcf7967adb2dbe37208297a0082d=CmRsETtKLHTw5jshLP9OaanqqbQxkeQx
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Thu, 06 Oct 2022 19:15:09 GMT
Server: Apache
Last-Modified: Sat, 05 Mar 2016 04:00:00 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 1370
Keep-Alive: timeout=5, max=93
Connection: Keep-Alive
Content-Type: text/css

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
31e440ccd993c4ee793f50511c2ac7c4
4380327d50b7001d158aee05a57c6078e57c94e4
65d8a97f6df1e110333a01d1f6dcb4982db7bb4b1c5f3f1498fafa716e250c0f

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "65D8A97F6DF1E110333A01D1F6DCB4982DB7BB4B1C5F3F1498FAFA716E250C0F"
Last-Modified: Thu, 06 Oct 2022 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2813
Expires: Thu, 06 Oct 2022 20:02:02 GMT
Date: Thu, 06 Oct 2022 19:15:09 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
31e440ccd993c4ee793f50511c2ac7c4
4380327d50b7001d158aee05a57c6078e57c94e4
65d8a97f6df1e110333a01d1f6dcb4982db7bb4b1c5f3f1498fafa716e250c0f

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "65D8A97F6DF1E110333A01D1F6DCB4982DB7BB4B1C5F3F1498FAFA716E250C0F"
Last-Modified: Thu, 06 Oct 2022 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2813
Expires: Thu, 06 Oct 2022 20:02:02 GMT
Date: Thu, 06 Oct 2022 19:15:09 GMT
Connection: keep-alive

hbcsaude.com.br/wp-content/themes/mobius/css/mediaelementplayer.css?ver=5.3.13

162.240.18.185

200 OK

1.8 kB

URL HTTP/1.1
hbcsaude.com.br/wp-content/themes/mobius/css/mediaelementplayer.css?ver=5.3.13
IP
162.240.18.185:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
ASCII text, with CRLF line terminators
Size
1.8 kB (1792 bytes)
Hash
1a4e1893aa17ee6ac90467489e9acbb3
31d0441c03763b6fb109a472c2a1c2bd28032d28
7a781bf58773cdc540d27c3ab624279a1a36c8f93b032ffb8b30d00b2cb6920b

Detections

Analyzer	Verdict	Alert
fortinet	Malware
quad9	Sinkholed

HTTP Headers

GET /wp-content/themes/mobius/css/mediaelementplayer.css?ver=5.3.13 HTTP/1.1
Host: hbcsaude.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://hbcsaude.com.br/
Cookie: wp_wpfileupload_adb5dcf7967adb2dbe37208297a0082d=CmRsETtKLHTw5jshLP9OaanqqbQxkeQx
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Thu, 06 Oct 2022 19:15:09 GMT
Server: Apache
Last-Modified: Sat, 05 Mar 2016 04:00:00 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 1792
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: text/css

hbcsaude.com.br/wp-content/themes/mobius/includes/mobius-grid/mobius-grid.css?ver=5.3.13

162.240.18.185

200 OK

6.5 kB

URL HTTP/1.1
hbcsaude.com.br/wp-content/themes/mobius/includes/mobius-grid/mobius-grid.css?ver=5.3.13
IP
162.240.18.185:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
ASCII text, with CRLF line terminators
Size
6.5 kB (6521 bytes)
Hash
3310b2f42a2b8ab466f425f40684a4f8
a7a9f9a17573977d64def83c35366ed9148d2b07
5c1d16cc27be7af8189ada206a6781066ea04175547b422c6ae5b8c0f5228dd3

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /wp-content/themes/mobius/includes/mobius-grid/mobius-grid.css?ver=5.3.13 HTTP/1.1
Host: hbcsaude.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://hbcsaude.com.br/
Cookie: wp_wpfileupload_adb5dcf7967adb2dbe37208297a0082d=CmRsETtKLHTw5jshLP9OaanqqbQxkeQx
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Thu, 06 Oct 2022 19:15:09 GMT
Server: Apache
Last-Modified: Fri, 18 May 2018 06:25:23 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 6521
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: text/css

hbcsaude.com.br/wp-content/themes/mobius/style.css?ver=5.3.13

162.240.18.185

200 OK

21 kB

URL HTTP/1.1
hbcsaude.com.br/wp-content/themes/mobius/style.css?ver=5.3.13
IP
162.240.18.185:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
ASCII text, with CRLF, CR line terminators
Size
21 kB (21210 bytes)
Hash
0db392e2f3ab0fb2717791ebcf8a632d
3c2fd23af793456d77ef286113ae7c09358132de
62628f9c6bf37e62332046ffe9f689a9bf29fe214ff6bdde7dbeb6672870db2c

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /wp-content/themes/mobius/style.css?ver=5.3.13 HTTP/1.1
Host: hbcsaude.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://hbcsaude.com.br/
Cookie: wp_wpfileupload_adb5dcf7967adb2dbe37208297a0082d=CmRsETtKLHTw5jshLP9OaanqqbQxkeQx
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Thu, 06 Oct 2022 19:15:09 GMT
Server: Apache
Last-Modified: Mon, 12 Nov 2018 15:10:25 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 21210
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: text/css

hbcsaude.com.br/wp-content/plugins/tablepress/css/default.min.css?ver=1.10

162.240.18.185

200 OK

2.7 kB

URL HTTP/1.1
hbcsaude.com.br/wp-content/plugins/tablepress/css/default.min.css?ver=1.10
IP
162.240.18.185:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
ASCII text, with very long lines (5871), with no line terminators
Size
2.7 kB (2732 bytes)
Hash
ca013ee2b16a18142247bfe45d963a47
1905128a86f03622279c24470658540f54e39fdb
30df8af172f457d5468b1a2c19f4f25443c6ebc254299a58deb19f197a1cf5cb

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /wp-content/plugins/tablepress/css/default.min.css?ver=1.10 HTTP/1.1
Host: hbcsaude.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://hbcsaude.com.br/
Cookie: wp_wpfileupload_adb5dcf7967adb2dbe37208297a0082d=CmRsETtKLHTw5jshLP9OaanqqbQxkeQx
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Thu, 06 Oct 2022 19:15:09 GMT
Server: Apache
Last-Modified: Thu, 27 Feb 2020 15:18:32 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 2732
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive
Content-Type: text/css

hbcsaude.com.br/wp-content/themes/mobius/includes/post-like/post-like.css?ver=5.3.13

162.240.18.185

200 OK

524 B

URL HTTP/1.1
hbcsaude.com.br/wp-content/themes/mobius/includes/post-like/post-like.css?ver=5.3.13
IP
162.240.18.185:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
ASCII text, with CRLF line terminators
Size
524 B (524 bytes)
Hash
4558804fb1dc32c7f10f6c0a9f0749b5
eb57952f4fe815305e9dc3cc231bf429d1840938
48438465b94dbf23e059ebba61f991fbd5f889d8de6b749c271d996c51c0d9a6

Detections

Analyzer	Verdict	Alert
fortinet	Malware
quad9	Sinkholed

HTTP Headers

GET /wp-content/themes/mobius/includes/post-like/post-like.css?ver=5.3.13 HTTP/1.1
Host: hbcsaude.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://hbcsaude.com.br/
Cookie: wp_wpfileupload_adb5dcf7967adb2dbe37208297a0082d=CmRsETtKLHTw5jshLP9OaanqqbQxkeQx
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Thu, 06 Oct 2022 19:15:09 GMT
Server: Apache
Last-Modified: Sat, 05 Mar 2016 04:00:00 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 524
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive
Content-Type: text/css

hbcsaude.com.br/wp-includes/js/jquery/jquery.js?ver=1.12.4-wp

162.240.18.185

200 OK

34 kB

URL HTTP/1.1
hbcsaude.com.br/wp-includes/js/jquery/jquery.js?ver=1.12.4-wp
IP
162.240.18.185:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
ASCII text, with very long lines (31997)
Size
34 kB (33776 bytes)
Hash
acf54950dfb2d6981e941d733b377591
340de686aecd9e6246a32c71e7de63ed69229ceb
d97f66caea5260bc71609f0da43ac0d937ecc09253910e5dda4c9fe4dbde20fc

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /wp-includes/js/jquery/jquery.js?ver=1.12.4-wp HTTP/1.1
Host: hbcsaude.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://hbcsaude.com.br/
Cookie: wp_wpfileupload_adb5dcf7967adb2dbe37208297a0082d=CmRsETtKLHTw5jshLP9OaanqqbQxkeQx
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Thu, 06 Oct 2022 19:15:09 GMT
Server: Apache
Last-Modified: Fri, 17 May 2019 04:25:54 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 33776
Keep-Alive: timeout=5, max=92
Connection: Keep-Alive
Content-Type: application/javascript

hbcsaude.com.br/wp-includes/js/jquery/jquery-migrate.min.js?ver=1.4.1

162.240.18.185

200 OK

4.0 kB

URL HTTP/1.1
hbcsaude.com.br/wp-includes/js/jquery/jquery-migrate.min.js?ver=1.4.1
IP
162.240.18.185:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
ASCII text, with very long lines (9959)
Size
4.0 kB (4014 bytes)
Hash
a6c81e2f02bd04160d2de88c4e8f3559
e3f3c91427d785820ca97dabe738f01faf041f36
b734d83af5da0eb627e04d3e62ce652b9eb7de19667a1b91da6b93f0ea5d7ffe

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /wp-includes/js/jquery/jquery-migrate.min.js?ver=1.4.1 HTTP/1.1
Host: hbcsaude.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://hbcsaude.com.br/
Cookie: wp_wpfileupload_adb5dcf7967adb2dbe37208297a0082d=CmRsETtKLHTw5jshLP9OaanqqbQxkeQx
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Thu, 06 Oct 2022 19:15:09 GMT
Server: Apache
Last-Modified: Fri, 20 May 2016 06:11:28 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 4014
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: application/javascript

hbcsaude.com.br/wp-content/plugins/awesome-wp-image-gallery/js/jquery.prettyPhoto.js?ver=5.3.13

162.240.18.185

200 OK

5.9 kB

URL HTTP/1.1
hbcsaude.com.br/wp-content/plugins/awesome-wp-image-gallery/js/jquery.prettyPhoto.js?ver=5.3.13
IP
162.240.18.185:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
ASCII text, with very long lines (21223)
Size
5.9 kB (5940 bytes)
Hash
36a63e6de17d5c8017f6c8f097476873
1852cf0981812ae8956b13cae078dafe9b98237e
caa878fea8b22fe29f474148a377117a1e82abb647b7426ee53a345a2f831ee3

Detections

Analyzer	Verdict	Alert
fortinet	Malware
quad9	Sinkholed

HTTP Headers

GET /wp-content/plugins/awesome-wp-image-gallery/js/jquery.prettyPhoto.js?ver=5.3.13 HTTP/1.1
Host: hbcsaude.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://hbcsaude.com.br/
Cookie: wp_wpfileupload_adb5dcf7967adb2dbe37208297a0082d=CmRsETtKLHTw5jshLP9OaanqqbQxkeQx
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Thu, 06 Oct 2022 19:15:09 GMT
Server: Apache
Last-Modified: Fri, 24 Nov 2017 16:58:27 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 5940
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: application/javascript

hbcsaude.com.br/wp-content/plugins/awesome-wp-image-gallery/js/pretiphoto.js?ver=5.3.13

162.240.18.185

200 OK

97 B

URL HTTP/1.1
hbcsaude.com.br/wp-content/plugins/awesome-wp-image-gallery/js/pretiphoto.js?ver=5.3.13
IP
162.240.18.185:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
ASCII text, with CRLF line terminators
Size
97 B (97 bytes)
Hash
bb2d2b610fa520b92ce5e5febd010a24
d6aa0a316830228e9155c4a858b830b677d56774
991b3f60ccff1da51599e7db87017d4702fb788de9510c23a4be9d53926cebe1

Detections

Analyzer	Verdict	Alert
fortinet	Malware
quad9	Sinkholed

HTTP Headers

GET /wp-content/plugins/awesome-wp-image-gallery/js/pretiphoto.js?ver=5.3.13 HTTP/1.1
Host: hbcsaude.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://hbcsaude.com.br/
Cookie: wp_wpfileupload_adb5dcf7967adb2dbe37208297a0082d=CmRsETtKLHTw5jshLP9OaanqqbQxkeQx
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Thu, 06 Oct 2022 19:15:09 GMT
Server: Apache
Last-Modified: Fri, 24 Nov 2017 16:58:27 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 97
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive
Content-Type: application/javascript

hbcsaude.com.br/wp-content/plugins/cookie-law-info/legacy/public/js/cookie-law-info-public.js?ver=3.0.2

162.240.18.185

200 OK

7.5 kB

URL HTTP/1.1
hbcsaude.com.br/wp-content/plugins/cookie-law-info/legacy/public/js/cookie-law-info-public.js?ver=3.0.2
IP
162.240.18.185:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
ASCII text
Size
7.5 kB (7526 bytes)
Hash
99b4ce14b33b03419e3809847af3fda7
aa0f15bb8b70726fd61c06e61faab08a6c758929
7994c287f4a7d3dfaa71f5eafdec1bd8341955b53b1ae2489772ac36e5f6a825

Detections

Analyzer	Verdict	Alert
fortinet	Malware
quad9	Sinkholed

HTTP Headers

GET /wp-content/plugins/cookie-law-info/legacy/public/js/cookie-law-info-public.js?ver=3.0.2 HTTP/1.1
Host: hbcsaude.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://hbcsaude.com.br/
Cookie: wp_wpfileupload_adb5dcf7967adb2dbe37208297a0082d=CmRsETtKLHTw5jshLP9OaanqqbQxkeQx
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Thu, 06 Oct 2022 19:15:09 GMT
Server: Apache
Last-Modified: Mon, 03 Oct 2022 17:33:18 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 7526
Keep-Alive: timeout=5, max=94
Connection: Keep-Alive
Content-Type: application/javascript

hbcsaude.com.br/wp-content/plugins/photo-gallery/js/jquery.sumoselect.min.js?ver=3.4.6

162.240.18.185

200 OK

7.9 kB

URL HTTP/1.1
hbcsaude.com.br/wp-content/plugins/photo-gallery/js/jquery.sumoselect.min.js?ver=3.4.6
IP
162.240.18.185:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
ASCII text, with very long lines (1518)
Size
7.9 kB (7883 bytes)
Hash
af7b8363167c766fc5c415c5831609de
2fe2c8d1f1c7e256c3b9cd97b50098c60bd50d3e
1371f4af47e8ab2d5de2d86f16942e0d89acd924c9065c823c6e22295d384b8d

Detections

Analyzer	Verdict	Alert
fortinet	Malware
quad9	Sinkholed

HTTP Headers

GET /wp-content/plugins/photo-gallery/js/jquery.sumoselect.min.js?ver=3.4.6 HTTP/1.1
Host: hbcsaude.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://hbcsaude.com.br/
Cookie: wp_wpfileupload_adb5dcf7967adb2dbe37208297a0082d=CmRsETtKLHTw5jshLP9OaanqqbQxkeQx
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Thu, 06 Oct 2022 19:15:09 GMT
Server: Apache
Last-Modified: Mon, 03 Oct 2022 16:52:46 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 7883
Keep-Alive: timeout=5, max=94
Connection: Keep-Alive
Content-Type: application/javascript

hbcsaude.com.br/wp-content/plugins/photo-gallery/js/jquery.mobile.min.js?ver=1.4.5

162.240.18.185

200 OK

9.2 kB

URL HTTP/1.1
hbcsaude.com.br/wp-content/plugins/photo-gallery/js/jquery.mobile.min.js?ver=1.4.5
IP
162.240.18.185:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
HTML document, ASCII text, with very long lines (25075)
Size
9.2 kB (9160 bytes)
Hash
0bfe7b8b35f14ed782c6cc66ff0e59e4
8ea52ad5ea35d338ab6cf085e11daf8caf6c3d17
3ee8c1b963cd1bec48cc7158d94b786bace54840e90bd6c5560fc16c97e11a58

Detections

Analyzer	Verdict	Alert
fortinet	Malware
quad9	Sinkholed

HTTP Headers

GET /wp-content/plugins/photo-gallery/js/jquery.mobile.min.js?ver=1.4.5 HTTP/1.1
Host: hbcsaude.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://hbcsaude.com.br/
Cookie: wp_wpfileupload_adb5dcf7967adb2dbe37208297a0082d=CmRsETtKLHTw5jshLP9OaanqqbQxkeQx
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Thu, 06 Oct 2022 19:15:09 GMT
Server: Apache
Last-Modified: Mon, 03 Oct 2022 16:52:46 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 9160
Keep-Alive: timeout=5, max=91
Connection: Keep-Alive
Content-Type: application/javascript

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
ff5f22aafa6751c60631736c305a4c7c
278b89e5c1a978e070be4b66bb780862894b8504
b501664d7591e6dfe95c8641e0020e04b76f16f5cb80a7fc0ee0b36af60a6382

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 06 Oct 2022 19:15:09 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

hbcsaude.com.br/wp-content/plugins/photo-gallery/js/jquery.mCustomScrollbar.concat.min.js?ver=3.1.5

162.240.18.185

200 OK

13 kB

URL HTTP/1.1
hbcsaude.com.br/wp-content/plugins/photo-gallery/js/jquery.mCustomScrollbar.concat.min.js?ver=3.1.5
IP
162.240.18.185:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
ASCII text, with very long lines (32001)
Size
13 kB (12940 bytes)
Hash
e24f931251f056652e0b8ba2a0d3e6ee
161dc1e62ac932d0072b3f31e1c7374fc7798864
b550aebced99bdaf156b11639171d479c1e705df85e33cea2e958a3465b44350

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /wp-content/plugins/photo-gallery/js/jquery.mCustomScrollbar.concat.min.js?ver=3.1.5 HTTP/1.1
Host: hbcsaude.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://hbcsaude.com.br/
Cookie: wp_wpfileupload_adb5dcf7967adb2dbe37208297a0082d=CmRsETtKLHTw5jshLP9OaanqqbQxkeQx
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Thu, 06 Oct 2022 19:15:09 GMT
Server: Apache
Last-Modified: Mon, 03 Oct 2022 16:52:46 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 12940
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive
Content-Type: application/javascript

fonts.gstatic.com/s/opensans/v34/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2

216.58.207.195

200 OK

45 kB

URL HTTP/2
fonts.gstatic.com/s/opensans/v34/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2
IP
216.58.207.195:0
ASN
#15169 GOOGLE

File type
Web Open Font Format (Version 2), TrueType, length 44856, version 1.0\012- data
Size
45 kB (44856 bytes)
Hash
565ce506190ad3af920b40baf1794cec
ad3cba5d06100e09449a864d3b5e58403b478b3d
8778e9af2422858d7052ff9a0f3c12c08ae976bdd6e0316db144cd5579cd97db

HTTP Headers

GET /s/opensans/v34/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://hbcsaude.com.br
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 44856
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 06 Oct 2022 05:42:51 GMT
expires: Fri, 06 Oct 2023 05:42:51 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 15 Aug 2022 18:20:18 GMT
content-type: font/woff2
age: 48739
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

hbcsaude.com.br/wp-content/plugins/photo-gallery/js/jquery.fullscreen.min.js?ver=0.6.0

162.240.18.185

200 OK

2.2 kB

URL HTTP/1.1
hbcsaude.com.br/wp-content/plugins/photo-gallery/js/jquery.fullscreen.min.js?ver=0.6.0
IP
162.240.18.185:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
Unicode text, UTF-8 text, with very long lines (5661)
Size
2.2 kB (2171 bytes)
Hash
3db40b3f7c407d30d76f440e241f5ad5
f9af12bf4d63638552de17e006c6e2b67fb5fa97
6deec47a77d780ae266a29dfcdcb0caec7f130886c6cf9789a956e868f8a0dc4

Detections

Analyzer	Verdict	Alert
fortinet	Malware
quad9	Sinkholed

HTTP Headers

GET /wp-content/plugins/photo-gallery/js/jquery.fullscreen.min.js?ver=0.6.0 HTTP/1.1
Host: hbcsaude.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://hbcsaude.com.br/
Cookie: wp_wpfileupload_adb5dcf7967adb2dbe37208297a0082d=CmRsETtKLHTw5jshLP9OaanqqbQxkeQx
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Thu, 06 Oct 2022 19:15:09 GMT
Server: Apache
Last-Modified: Mon, 03 Oct 2022 16:52:46 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 2171
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive
Content-Type: application/javascript

hbcsaude.com.br/wp-content/plugins/photo-gallery/js/circle-progress.js?ver=1.7.6

162.240.18.185

200 OK

4.5 kB

URL HTTP/1.1
hbcsaude.com.br/wp-content/plugins/photo-gallery/js/circle-progress.js?ver=1.7.6
IP
162.240.18.185:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
ASCII text
Size
4.5 kB (4528 bytes)
Hash
0943a0de5840e9168a804e914a5a09f6
ec0adbe60f690ff1138aca466c7ad2f50789033c
cac0563d56df8fe2f8d1fe93013d95fd8de6a7e70ef373d26ca6394a77ba1d5a

Detections

Analyzer	Verdict	Alert
fortinet	Malware
quad9	Sinkholed

HTTP Headers

GET /wp-content/plugins/photo-gallery/js/circle-progress.js?ver=1.7.6 HTTP/1.1
Host: hbcsaude.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://hbcsaude.com.br/
Cookie: wp_wpfileupload_adb5dcf7967adb2dbe37208297a0082d=CmRsETtKLHTw5jshLP9OaanqqbQxkeQx
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Thu, 06 Oct 2022 19:15:09 GMT
Server: Apache
Last-Modified: Mon, 03 Oct 2022 16:52:46 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 4528
Keep-Alive: timeout=5, max=93
Connection: Keep-Alive
Content-Type: application/javascript

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
ff5f22aafa6751c60631736c305a4c7c
278b89e5c1a978e070be4b66bb780862894b8504
b501664d7591e6dfe95c8641e0020e04b76f16f5cb80a7fc0ee0b36af60a6382

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 06 Oct 2022 19:15:10 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

hbcsaude.com.br/wp-includes/js/jquery/ui/core.min.js?ver=1.11.4

162.240.18.185

200 OK

1.8 kB

URL HTTP/1.1
hbcsaude.com.br/wp-includes/js/jquery/ui/core.min.js?ver=1.11.4
IP
162.240.18.185:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
ASCII text, with very long lines (3704)
Size
1.8 kB (1811 bytes)
Hash
8681c8c59fe450daeacc2f499e351dfe
1bedefb4c8fa62628816eaeea85677d637a6e4e0
d2160a6f66510d16512fd1fd387aee7d3763f0b4799273125faa777128dc5430

Detections

Analyzer	Verdict	Alert
fortinet	Malware
quad9	Sinkholed

HTTP Headers

GET /wp-includes/js/jquery/ui/core.min.js?ver=1.11.4 HTTP/1.1
Host: hbcsaude.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://hbcsaude.com.br/
Cookie: wp_wpfileupload_adb5dcf7967adb2dbe37208297a0082d=CmRsETtKLHTw5jshLP9OaanqqbQxkeQx
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Thu, 06 Oct 2022 19:15:09 GMT
Server: Apache
Last-Modified: Thu, 15 Apr 2021 03:21:06 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 1811
Keep-Alive: timeout=5, max=93
Connection: Keep-Alive
Content-Type: application/javascript

hbcsaude.com.br/wp-content/plugins/wp-file-upload/js/wordpress_file_upload_functions.js?ver=5.3.13

162.240.18.185

200 OK

14 kB

URL HTTP/1.1
hbcsaude.com.br/wp-content/plugins/wp-file-upload/js/wordpress_file_upload_functions.js?ver=5.3.13
IP
162.240.18.185:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
ASCII text, with very long lines (571)
Size
14 kB (13908 bytes)
Hash
1fce2fa86a415f596626f6ea091d2771
09d73c24b3bf677fdf2ae2ae78e3ae65fb6b873c
a8ed8eb860a46ab74fda5b581a8224c870b9a2a692e82976a79c0077dae82079

Detections

Analyzer	Verdict	Alert
fortinet	Malware
quad9	Sinkholed

HTTP Headers

GET /wp-content/plugins/wp-file-upload/js/wordpress_file_upload_functions.js?ver=5.3.13 HTTP/1.1
Host: hbcsaude.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://hbcsaude.com.br/
Cookie: wp_wpfileupload_adb5dcf7967adb2dbe37208297a0082d=CmRsETtKLHTw5jshLP9OaanqqbQxkeQx
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Thu, 06 Oct 2022 19:15:10 GMT
Server: Apache
Last-Modified: Mon, 01 Aug 2022 20:40:24 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 13908
Keep-Alive: timeout=5, max=90
Connection: Keep-Alive
Content-Type: application/javascript

hbcsaude.com.br/wp-includes/js/jquery/ui/datepicker.min.js?ver=1.11.4

162.240.18.185

200 OK

11 kB

URL HTTP/1.1
hbcsaude.com.br/wp-includes/js/jquery/ui/datepicker.min.js?ver=1.11.4
IP
162.240.18.185:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
ASCII text, with very long lines (35947)
Size
11 kB (10780 bytes)
Hash
332953c3e5405e332cc838d10252ced1
c4e59576143d3291b4ddf617c123f149d129f0a0
3bbd6c2af89139cebc63770892c34906c701f8c6ee1ba7980f129c3f43aa8ce1

Detections

Analyzer	Verdict	Alert
fortinet	Malware
quad9	Sinkholed

HTTP Headers

GET /wp-includes/js/jquery/ui/datepicker.min.js?ver=1.11.4 HTTP/1.1
Host: hbcsaude.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://hbcsaude.com.br/
Cookie: wp_wpfileupload_adb5dcf7967adb2dbe37208297a0082d=CmRsETtKLHTw5jshLP9OaanqqbQxkeQx
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Thu, 06 Oct 2022 19:15:10 GMT
Server: Apache
Last-Modified: Thu, 15 Apr 2021 03:21:06 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 10780
Keep-Alive: timeout=5, max=94
Connection: Keep-Alive
Content-Type: application/javascript

hbcsaude.com.br/wp-content/plugins/wp-file-upload/vendor/jquery/jquery-ui-timepicker-addon.min.js?ver=5.3.13

162.240.18.185

200 OK

11 kB

URL HTTP/1.1
hbcsaude.com.br/wp-content/plugins/wp-file-upload/vendor/jquery/jquery-ui-timepicker-addon.min.js?ver=5.3.13
IP
162.240.18.185:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
ASCII text, with very long lines (32048), with CRLF line terminators
Size
11 kB (10926 bytes)
Hash
f6f083ff1a14530a6c001c552bafc475
54b92482d0f1e66e6f4aa256c8c50d53a23cc56c
b662e688db2be834b41770c5ad917065f65048daed07de24804a9462be87d66f

Detections

Analyzer	Verdict	Alert
fortinet	Malware
quad9	Sinkholed

HTTP Headers

GET /wp-content/plugins/wp-file-upload/vendor/jquery/jquery-ui-timepicker-addon.min.js?ver=5.3.13 HTTP/1.1
Host: hbcsaude.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://hbcsaude.com.br/
Cookie: wp_wpfileupload_adb5dcf7967adb2dbe37208297a0082d=CmRsETtKLHTw5jshLP9OaanqqbQxkeQx
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Thu, 06 Oct 2022 19:15:10 GMT
Server: Apache
Last-Modified: Mon, 01 Aug 2022 20:40:24 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 10926
Keep-Alive: timeout=5, max=94
Connection: Keep-Alive
Content-Type: application/javascript

hbcsaude.com.br/wp-content/themes/mobius/js/modernizr.js?ver=2.7.1

162.240.18.185

200 OK

4.2 kB

URL HTTP/1.1
hbcsaude.com.br/wp-content/themes/mobius/js/modernizr.js?ver=2.7.1
IP
162.240.18.185:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
HTML document text\012- HTML document, ASCII text, with very long lines (9247), with CRLF line terminators
Size
4.2 kB (4178 bytes)
Hash
466f050df32f03210d5e903b9ad68fc1
5dbb450fdc0a8b8126b5a9811b4f71f52409cffb
110d2261a3916b786142e4c0f2c5c6bef094b7613f9d14cd9616d7160291deb5

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /wp-content/themes/mobius/js/modernizr.js?ver=2.7.1 HTTP/1.1
Host: hbcsaude.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://hbcsaude.com.br/
Cookie: wp_wpfileupload_adb5dcf7967adb2dbe37208297a0082d=CmRsETtKLHTw5jshLP9OaanqqbQxkeQx
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Thu, 06 Oct 2022 19:15:10 GMT
Server: Apache
Last-Modified: Sat, 05 Mar 2016 04:00:00 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 4178
Keep-Alive: timeout=5, max=92
Connection: Keep-Alive
Content-Type: application/javascript

hbcsaude.com.br/wp-content/plugins/photo-gallery/js/scripts.min.js?ver=1.7.6

162.240.18.185

200 OK

34 kB

URL HTTP/1.1
hbcsaude.com.br/wp-content/plugins/photo-gallery/js/scripts.min.js?ver=1.7.6
IP
162.240.18.185:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
ASCII text, with very long lines (65536), with no line terminators
Size
34 kB (34288 bytes)
Hash
dcd9dcf17421a7d3a46439769a4798ac
799bd5aacd5bdcfb2d08aeeabe23df7ab7c0a5a1
11f058597cd6d623c203445223e43e26dbb1c3480ad47bbe29bee5806605e181

Detections

Analyzer	Verdict	Alert
fortinet	Malware
quad9	Sinkholed

HTTP Headers

GET /wp-content/plugins/photo-gallery/js/scripts.min.js?ver=1.7.6 HTTP/1.1
Host: hbcsaude.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://hbcsaude.com.br/
Cookie: wp_wpfileupload_adb5dcf7967adb2dbe37208297a0082d=CmRsETtKLHTw5jshLP9OaanqqbQxkeQx
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Thu, 06 Oct 2022 19:15:09 GMT
Server: Apache
Last-Modified: Mon, 03 Oct 2022 16:52:46 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 34288
Keep-Alive: timeout=5, max=94
Connection: Keep-Alive
Content-Type: application/javascript

hbcsaude.com.br/wp-content/plugins/slide-anything/owl-carousel/owl.carousel.css?ver=2.2.1.1

162.240.18.185

200 OK

1.5 kB

URL HTTP/1.1
hbcsaude.com.br/wp-content/plugins/slide-anything/owl-carousel/owl.carousel.css?ver=2.2.1.1
IP
162.240.18.185:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
ASCII text, with CRLF line terminators
Size
1.5 kB (1501 bytes)
Hash
d8a8a661c9fdcf83c1eda7c40ea933c1
73cf026e6704db8fa2d2b0536e2b40f620f952f3
09c650dd876b5ff5fa666e92f65fb473c124cc66abe68834cfc22a4c57e1da9e

Detections

Analyzer	Verdict	Alert
fortinet	Malware
quad9	Sinkholed

HTTP Headers

GET /wp-content/plugins/slide-anything/owl-carousel/owl.carousel.css?ver=2.2.1.1 HTTP/1.1
Host: hbcsaude.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://hbcsaude.com.br/
Cookie: wp_wpfileupload_adb5dcf7967adb2dbe37208297a0082d=CmRsETtKLHTw5jshLP9OaanqqbQxkeQx
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Thu, 06 Oct 2022 19:15:10 GMT
Server: Apache
Last-Modified: Mon, 03 Oct 2022 17:33:51 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 1501
Keep-Alive: timeout=5, max=89
Connection: Keep-Alive
Content-Type: text/css

hbcsaude.com.br/wp-content/plugins/slide-anything/owl-carousel/sa-owl-theme.css?ver=2.0

162.240.18.185

200 OK

2.3 kB

URL HTTP/1.1
hbcsaude.com.br/wp-content/plugins/slide-anything/owl-carousel/sa-owl-theme.css?ver=2.0
IP
162.240.18.185:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
ASCII text, with CRLF line terminators
Size
2.3 kB (2324 bytes)
Hash
3195c29b43ca12a3e6d3f4d92aed9c1e
c559662da6404940919b9431e4d4d8da3730c8d5
0bddfd975641da3019dba7cf6a928f70a988500c9152311841231e5eb9041671

Detections

Analyzer	Verdict	Alert
fortinet	Malware
quad9	Sinkholed

HTTP Headers

GET /wp-content/plugins/slide-anything/owl-carousel/sa-owl-theme.css?ver=2.0 HTTP/1.1
Host: hbcsaude.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://hbcsaude.com.br/
Cookie: wp_wpfileupload_adb5dcf7967adb2dbe37208297a0082d=CmRsETtKLHTw5jshLP9OaanqqbQxkeQx
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Thu, 06 Oct 2022 19:15:10 GMT
Server: Apache
Last-Modified: Mon, 03 Oct 2022 17:33:51 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 2324
Keep-Alive: timeout=5, max=93
Connection: Keep-Alive
Content-Type: text/css

hbcsaude.com.br/wp-content/plugins/slide-anything/owl-carousel/animate.min.css?ver=2.0

162.240.18.185

200 OK

4.0 kB

URL HTTP/1.1
hbcsaude.com.br/wp-content/plugins/slide-anything/owl-carousel/animate.min.css?ver=2.0
IP
162.240.18.185:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
ASCII text, with very long lines (55728), with CRLF, CR line terminators
Size
4.0 kB (3984 bytes)
Hash
bfb510cdc7e8aa51d99af8de6a78447c
04893453fb4327a74f61c970aca67faebd5e2c7e
710ee739d298bf26168626c24ea059180ccad7df28eac7a79944566914dabfaf

Detections

Analyzer	Verdict	Alert
fortinet	Malware
quad9	Sinkholed

HTTP Headers

GET /wp-content/plugins/slide-anything/owl-carousel/animate.min.css?ver=2.0 HTTP/1.1
Host: hbcsaude.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://hbcsaude.com.br/
Cookie: wp_wpfileupload_adb5dcf7967adb2dbe37208297a0082d=CmRsETtKLHTw5jshLP9OaanqqbQxkeQx
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Thu, 06 Oct 2022 19:15:10 GMT
Server: Apache
Last-Modified: Mon, 03 Oct 2022 17:33:51 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 3984
Keep-Alive: timeout=5, max=93
Connection: Keep-Alive
Content-Type: text/css

hbcsaude.com.br/wp-content/plugins/slide-anything/lightgallery/css/lightgallery.css?ver=2.5.0

162.240.18.185

200 OK

2.9 kB

URL HTTP/1.1
hbcsaude.com.br/wp-content/plugins/slide-anything/lightgallery/css/lightgallery.css?ver=2.5.0
IP
162.240.18.185:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
ASCII text, with CRLF line terminators
Size
2.9 kB (2931 bytes)
Hash
0f64552fa61962245a0b757fb2075e4d
5fc30145507e86423307d9b2dbd9e546c7062734
7ff4cc6b6b863ba18cb8f9ce00c99ef8dd1a8f2719f3418c28d1d9ed9c367995

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /wp-content/plugins/slide-anything/lightgallery/css/lightgallery.css?ver=2.5.0 HTTP/1.1
Host: hbcsaude.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://hbcsaude.com.br/
Cookie: wp_wpfileupload_adb5dcf7967adb2dbe37208297a0082d=CmRsETtKLHTw5jshLP9OaanqqbQxkeQx
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Thu, 06 Oct 2022 19:15:10 GMT
Server: Apache
Last-Modified: Mon, 03 Oct 2022 17:33:51 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 2931
Keep-Alive: timeout=5, max=91
Connection: Keep-Alive
Content-Type: text/css

hbcsaude.com.br/wp-content/plugins/slide-anything/lightgallery/css/lightgallery-bundle.min.css?ver=2.5.0

162.240.18.185

200 OK

5.2 kB

URL HTTP/1.1
hbcsaude.com.br/wp-content/plugins/slide-anything/lightgallery/css/lightgallery-bundle.min.css?ver=2.5.0
IP
162.240.18.185:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
ASCII text, with very long lines (29527), with no line terminators
Size
5.2 kB (5229 bytes)
Hash
1ced39653ab97c113042f90839d50690
1258b8614fc2cc5079c98e7aeda89ec4700df80d
233315b7e7b2da034920644506523d39184aad360c31885f0ea0af2bdcac3001

Detections

Analyzer	Verdict	Alert
fortinet	Malware
quad9	Sinkholed

HTTP Headers

GET /wp-content/plugins/slide-anything/lightgallery/css/lightgallery-bundle.min.css?ver=2.5.0 HTTP/1.1
Host: hbcsaude.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://hbcsaude.com.br/
Cookie: wp_wpfileupload_adb5dcf7967adb2dbe37208297a0082d=CmRsETtKLHTw5jshLP9OaanqqbQxkeQx
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Thu, 06 Oct 2022 19:15:10 GMT
Server: Apache
Last-Modified: Mon, 03 Oct 2022 17:33:51 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 5229
Keep-Alive: timeout=5, max=93
Connection: Keep-Alive
Content-Type: text/css

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
f9371f81e2eeeead7fe351a49f3b1c40
ae23d6c6c57dd7cf568c3a74594c377b7bb7df43
03c4ba0faa3199d061d1bb37df5d48ba6d81f77a83e243922075efc4d4acf456

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 06 Oct 2022 19:15:10 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

hbcsaude.com.br/wp-content/plugins/js_composer/assets/css/lib/vc-open-iconic/vc_openiconic.min.css?ver=4.12.1

162.240.18.185

200 OK

1.4 kB

URL HTTP/1.1
hbcsaude.com.br/wp-content/plugins/js_composer/assets/css/lib/vc-open-iconic/vc_openiconic.min.css?ver=4.12.1
IP
162.240.18.185:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
ASCII text, with very long lines (6483), with no line terminators
Size
1.4 kB (1373 bytes)
Hash
f00ab073c760d2b94ab134bf3f08b801
73dd44cc179e51bfd70af60bcd7baa103611d081
0949d757d4cf64a7ef177355cf94c39d33afd034dfeffa281a9fa06f70db1b39

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /wp-content/plugins/js_composer/assets/css/lib/vc-open-iconic/vc_openiconic.min.css?ver=4.12.1 HTTP/1.1
Host: hbcsaude.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://hbcsaude.com.br/
Cookie: wp_wpfileupload_adb5dcf7967adb2dbe37208297a0082d=CmRsETtKLHTw5jshLP9OaanqqbQxkeQx
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Thu, 06 Oct 2022 19:15:10 GMT
Server: Apache
Last-Modified: Wed, 20 Sep 2017 23:20:20 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 1373
Keep-Alive: timeout=5, max=91
Connection: Keep-Alive
Content-Type: text/css

fonts.gstatic.com/s/adventpro/v18/V8mAoQfxVT4Dvddr_yOwhTqtKA.woff2

216.58.207.195

200 OK

16 kB

URL HTTP/2
fonts.gstatic.com/s/adventpro/v18/V8mAoQfxVT4Dvddr_yOwhTqtKA.woff2
IP
216.58.207.195:0
ASN
#15169 GOOGLE

File type
Web Open Font Format (Version 2), TrueType, length 15884, version 1.0\012- data
Size
16 kB (15884 bytes)
Hash
73f61f92b42d79d54cae586e759114b9
6f3e856e5c820affd0dfe729f27bb4767e1a09bc
466a53d5e0126d5f20daf160381a6e638d161d7761e19e1c80052a420f469d6c

HTTP Headers

GET /s/adventpro/v18/V8mAoQfxVT4Dvddr_yOwhTqtKA.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://hbcsaude.com.br
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15884
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 05 Oct 2022 11:29:31 GMT
expires: Thu, 05 Oct 2023 11:29:31 GMT
cache-control: public, max-age=31536000
age: 114339
last-modified: Tue, 19 Apr 2022 19:49:09 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

fonts.gstatic.com/s/adventpro/v18/V8mDoQfxVT4Dvddr_yOwjeWJPbF4Cw.woff2

216.58.207.195

200 OK

17 kB

URL HTTP/2
fonts.gstatic.com/s/adventpro/v18/V8mDoQfxVT4Dvddr_yOwjeWJPbF4Cw.woff2
IP
216.58.207.195:0
ASN
#15169 GOOGLE

File type
Web Open Font Format (Version 2), TrueType, length 16916, version 1.0\012- data
Size
17 kB (16916 bytes)
Hash
82f06293ddba365ab5d6742e043e7acf
7d3c598246927b7bc7084564c89211425043c0c3
3782e2d90109515df4f0a45b1e0682978b7acd62e776ad5e5fb2ee8297dcc89f

HTTP Headers

GET /s/adventpro/v18/V8mDoQfxVT4Dvddr_yOwjeWJPbF4Cw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://hbcsaude.com.br
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 16916
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 05 Oct 2022 13:19:07 GMT
expires: Thu, 05 Oct 2023 13:19:07 GMT
cache-control: public, max-age=31536000
age: 107763
last-modified: Tue, 19 Apr 2022 19:36:33 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

hbcsaude.com.br/wp-content/plugins/cookie-law-info/legacy/public/css/cookie-law-info-table.css?ver=3.0.2

162.240.18.185

200 OK

1.7 kB

URL HTTP/1.1
hbcsaude.com.br/wp-content/plugins/cookie-law-info/legacy/public/css/cookie-law-info-table.css?ver=3.0.2
IP
162.240.18.185:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
ASCII text, with very long lines (401)
Size
1.7 kB (1731 bytes)
Hash
8d9b2928b6874e8da430585524784319
e3d99309ac812763f77759e258840f348357b607
adfab777821109a22e899673a3688fa30f9cfd2f8bc18aad62bd9fddb5c93a02

Detections

Analyzer	Verdict	Alert
fortinet	Malware
quad9	Sinkholed

HTTP Headers

GET /wp-content/plugins/cookie-law-info/legacy/public/css/cookie-law-info-table.css?ver=3.0.2 HTTP/1.1
Host: hbcsaude.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://hbcsaude.com.br/
Cookie: wp_wpfileupload_adb5dcf7967adb2dbe37208297a0082d=CmRsETtKLHTw5jshLP9OaanqqbQxkeQx
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Thu, 06 Oct 2022 19:15:10 GMT
Server: Apache
Last-Modified: Mon, 03 Oct 2022 17:33:18 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 1731
Keep-Alive: timeout=5, max=88
Connection: Keep-Alive
Content-Type: text/css

hbcsaude.com.br/wp-content/plugins/themeone-shortcodes/shortcodes/js/easypiechart.js?ver=2.1.3

162.240.18.185

200 OK

1.6 kB

URL HTTP/1.1
hbcsaude.com.br/wp-content/plugins/themeone-shortcodes/shortcodes/js/easypiechart.js?ver=2.1.3
IP
162.240.18.185:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
ASCII text, with very long lines (3299), with CRLF line terminators
Size
1.6 kB (1627 bytes)
Hash
1b2cc2963eb466121e84e07f2478c5b6
c15c8d84ac8e087a09750f91e7b95d60463afbec
8d8e2b96fcc02e966f19adf5a03a5bc3999d84be7fb7944595958a2a5043e11c

Detections

Analyzer	Verdict	Alert
fortinet	Malware
quad9	Sinkholed

HTTP Headers

GET /wp-content/plugins/themeone-shortcodes/shortcodes/js/easypiechart.js?ver=2.1.3 HTTP/1.1
Host: hbcsaude.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://hbcsaude.com.br/
Cookie: wp_wpfileupload_adb5dcf7967adb2dbe37208297a0082d=CmRsETtKLHTw5jshLP9OaanqqbQxkeQx
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Thu, 06 Oct 2022 19:15:10 GMT
Server: Apache
Last-Modified: Thu, 21 Sep 2017 02:17:34 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 1627
Keep-Alive: timeout=5, max=92
Connection: Keep-Alive
Content-Type: application/javascript

hbcsaude.com.br/wp-content/plugins/themeone-shortcodes/shortcodes/js/jquery.appear.js?ver=1.0

162.240.18.185

200 OK

1.4 kB

URL HTTP/1.1
hbcsaude.com.br/wp-content/plugins/themeone-shortcodes/shortcodes/js/jquery.appear.js?ver=1.0
IP
162.240.18.185:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
ASCII text, with CRLF line terminators
Size
1.4 kB (1362 bytes)
Hash
532bd82d047961b6b288eec0bc2cfa4c
41e7df948ec555537e2a7a8a1419b5fd9daf5beb
7dff26317bef1541be1ac4c5baec3d6e81acaccca3844cc7df8bd3f1a99455e2

Detections

Analyzer	Verdict	Alert
fortinet	Malware
quad9	Sinkholed

HTTP Headers

GET /wp-content/plugins/themeone-shortcodes/shortcodes/js/jquery.appear.js?ver=1.0 HTTP/1.1
Host: hbcsaude.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://hbcsaude.com.br/
Cookie: wp_wpfileupload_adb5dcf7967adb2dbe37208297a0082d=CmRsETtKLHTw5jshLP9OaanqqbQxkeQx
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Thu, 06 Oct 2022 19:15:10 GMT
Server: Apache
Last-Modified: Thu, 21 Sep 2017 02:17:34 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 1362
Keep-Alive: timeout=5, max=92
Connection: Keep-Alive
Content-Type: application/javascript

hbcsaude.com.br/wp-content/plugins/themeone-shortcodes/shortcodes/js/themeone-shortcodes.js?ver=1.0

162.240.18.185

200 OK

9.1 kB

URL HTTP/1.1
hbcsaude.com.br/wp-content/plugins/themeone-shortcodes/shortcodes/js/themeone-shortcodes.js?ver=1.0
IP
162.240.18.185:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
exported SGML document, ASCII text, with CRLF line terminators
Size
9.1 kB (9110 bytes)
Hash
8335de6889fe70e0b84b5bfe9fac34aa
c900206e1361fb23dd981a83208bd5c68884da49
c05810ae51d217fb11b6789447d7dc0a732e796a76fa1f4acfd84321e9380bf4

Detections

Analyzer	Verdict	Alert
fortinet	Malware
quad9	Sinkholed

HTTP Headers

GET /wp-content/plugins/themeone-shortcodes/shortcodes/js/themeone-shortcodes.js?ver=1.0 HTTP/1.1
Host: hbcsaude.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://hbcsaude.com.br/
Cookie: wp_wpfileupload_adb5dcf7967adb2dbe37208297a0082d=CmRsETtKLHTw5jshLP9OaanqqbQxkeQx
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Thu, 06 Oct 2022 19:15:10 GMT
Server: Apache
Last-Modified: Thu, 21 Sep 2017 02:17:34 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 9110
Keep-Alive: timeout=5, max=90
Connection: Keep-Alive
Content-Type: application/javascript

hbcsaude.com.br/wp-content/themes/mobius/includes/post-like/post-like.js?ver=1.0

162.240.18.185

200 OK

528 B

URL HTTP/1.1
hbcsaude.com.br/wp-content/themes/mobius/includes/post-like/post-like.js?ver=1.0
IP
162.240.18.185:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
ASCII text, with CRLF line terminators
Size
528 B (528 bytes)
Hash
475dfc465e6e1cea39f840b8a4ddd82a
a7d84fd844c2d7892d8c1146c5675f65cfa0891f
e7392b94a8aa8c8f9ddf0973c597518f2449e7c9ab2fe182a6a1de854ab5d24e

Detections

Analyzer	Verdict	Alert
fortinet	Malware
quad9	Sinkholed

HTTP Headers

GET /wp-content/themes/mobius/includes/post-like/post-like.js?ver=1.0 HTTP/1.1
Host: hbcsaude.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://hbcsaude.com.br/
Cookie: wp_wpfileupload_adb5dcf7967adb2dbe37208297a0082d=CmRsETtKLHTw5jshLP9OaanqqbQxkeQx
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Thu, 06 Oct 2022 19:15:10 GMT
Server: Apache
Last-Modified: Sat, 05 Mar 2016 04:00:00 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 528
Keep-Alive: timeout=5, max=92
Connection: Keep-Alive
Content-Type: application/javascript

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
87465c15992fe10c24c62a185f8c171d
fa938b624d06d1e2927c8eda6a44b2a32d930f59
239ef7fe5df8c396d96a928c20d66c842a5ec3e9ff71a3cd7c0068906fc3e537

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 06 Oct 2022 19:15:10 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

hbcsaude.com.br/wp-content/plugins/contact-form-7/includes/js/scripts.js?ver=5.1.6

162.240.18.185

200 OK

4.0 kB

URL HTTP/1.1
hbcsaude.com.br/wp-content/plugins/contact-form-7/includes/js/scripts.js?ver=5.1.6
IP
162.240.18.185:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
ASCII text
Size
4.0 kB (3993 bytes)
Hash
179ff7e7ba061cb009f29849fc15f071
f824ebc474c27b208137b68aa51d5d0d2b3a89e9
b889c73e9da05e33847d3ab6f1f98c172204c3e4cb2e4832863695f34e2270de

Detections

Analyzer	Verdict	Alert
fortinet	Malware
quad9	Sinkholed

HTTP Headers

GET /wp-content/plugins/contact-form-7/includes/js/scripts.js?ver=5.1.6 HTTP/1.1
Host: hbcsaude.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://hbcsaude.com.br/
Cookie: wp_wpfileupload_adb5dcf7967adb2dbe37208297a0082d=CmRsETtKLHTw5jshLP9OaanqqbQxkeQx
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Thu, 06 Oct 2022 19:15:10 GMT
Server: Apache
Last-Modified: Thu, 27 Feb 2020 15:17:48 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 3993
Keep-Alive: timeout=5, max=90
Connection: Keep-Alive
Content-Type: application/javascript

www.youtube.com/s/player/55fdc514/www-player.css

142.250.74.14

200 OK

50 kB

URL HTTP/2
www.youtube.com/s/player/55fdc514/www-player.css
IP
142.250.74.14:0
ASN
#15169 GOOGLE

File type
ASCII text, with very long lines (65536), with no line terminators
Size
50 kB (50095 bytes)
Hash
ce9b3268e83e864464ee0b1c1bcbd395
aec0d122b7a1674fd2c903e350d7c1e345bdda9a
eccc42a16e7cb2c976a2f247265ef435954d636410182b6e8d6443457252d0e6

HTTP Headers

GET /s/player/55fdc514/www-player.css HTTP/1.1
Host: www.youtube.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.youtube.com/embed/ZhZq4vPVxUA
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding, Origin
content-encoding: br
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="youtube"
report-to: {"group":"youtube","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/youtube"}]}
content-length: 50095
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 05 Oct 2022 14:56:36 GMT
expires: Thu, 05 Oct 2023 14:56:36 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 05 Oct 2022 00:20:53 GMT
content-type: text/css
age: 101914
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

www.youtube.com/s/player/55fdc514/www-embed-player.vflset/www-embed-player.js

142.250.74.14

200 OK

97 kB

URL HTTP/2
www.youtube.com/s/player/55fdc514/www-embed-player.vflset/www-embed-player.js
IP
142.250.74.14:0
ASN
#15169 GOOGLE

File type
ASCII text, with very long lines (572)
Size
97 kB (97396 bytes)
Hash
25913148e87059714551dcf4917e9cda
77186ee8b563a941961829ca4df183e6c0b63660
2c1f6b675637c3df7fce30c177b7a16047d026aca38b4f2e562b8328d775acf0

HTTP Headers

GET /s/player/55fdc514/www-embed-player.vflset/www-embed-player.js HTTP/1.1
Host: www.youtube.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.youtube.com/embed/ZhZq4vPVxUA
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding, Origin
content-encoding: br
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="youtube"
report-to: {"group":"youtube","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/youtube"}]}
content-length: 97396
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 05 Oct 2022 14:56:36 GMT
expires: Thu, 05 Oct 2023 14:56:36 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 05 Oct 2022 00:20:53 GMT
content-type: text/javascript
age: 101914
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

www.youtube.com/s/player/55fdc514/fetch-polyfill.vflset/fetch-polyfill.js

142.250.74.14

200 OK

2.8 kB

URL HTTP/2
www.youtube.com/s/player/55fdc514/fetch-polyfill.vflset/fetch-polyfill.js
IP
142.250.74.14:0
ASN
#15169 GOOGLE

File type
Algol 68 source text\012- Pascal source, ASCII text, with very long lines (555)
Size
2.8 kB (2786 bytes)
Hash
80fe2d229007996c8397073b00755dc7
121f82c77bcf2a297a1085e3b092415c463fcafe
033dfa8941482c82d4f1aaa4a9172fb379b9e46a02d5b36297c5476bbbfdea2c

HTTP Headers

GET /s/player/55fdc514/fetch-polyfill.vflset/fetch-polyfill.js HTTP/1.1
Host: www.youtube.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.youtube.com/embed/ZhZq4vPVxUA
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding, Origin
content-encoding: br
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="youtube"
report-to: {"group":"youtube","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/youtube"}]}
content-length: 2786
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 05 Oct 2022 14:56:36 GMT
expires: Thu, 05 Oct 2023 14:56:36 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 05 Oct 2022 00:20:53 GMT
content-type: text/javascript
age: 101914
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

hbcsaude.com.br/wp-content/plugins/js_composer/assets/js/dist/js_composer_front.min.js?ver=4.12.1

162.240.18.185

200 OK

5.6 kB

URL HTTP/1.1
hbcsaude.com.br/wp-content/plugins/js_composer/assets/js/dist/js_composer_front.min.js?ver=4.12.1
IP
162.240.18.185:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
ASCII text, with very long lines (19095), with no line terminators
Size
5.6 kB (5584 bytes)
Hash
f3f34288e89a6c8d684c027ebf689426
392248789363f33d21d5239d645b17ad77938f17
d8711f4e60808c312bacc85811debc24b5fbdc522bdd808ca442c9fa0cb64b2b

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /wp-content/plugins/js_composer/assets/js/dist/js_composer_front.min.js?ver=4.12.1 HTTP/1.1
Host: hbcsaude.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://hbcsaude.com.br/
Cookie: wp_wpfileupload_adb5dcf7967adb2dbe37208297a0082d=CmRsETtKLHTw5jshLP9OaanqqbQxkeQx
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Thu, 06 Oct 2022 19:15:10 GMT
Server: Apache
Last-Modified: Wed, 20 Sep 2017 23:20:20 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 5584
Keep-Alive: timeout=5, max=87
Connection: Keep-Alive
Content-Type: application/javascript

hbcsaude.com.br/wp-includes/js/jquery/ui/widget.min.js?ver=1.11.4

162.240.18.185

200 OK

2.5 kB

URL HTTP/1.1
hbcsaude.com.br/wp-includes/js/jquery/ui/widget.min.js?ver=1.11.4
IP
162.240.18.185:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
ASCII text, with very long lines (6603)
Size
2.5 kB (2543 bytes)
Hash
ec6dcd00af82068551b3a60045c86824
140ac89dc8ae6ffebecb269e0ebd88bfbc0c2686
1a9a7a2329ce40bd74814e4f6acaddce722e9b53187fb109f39e793ffe50c46e

Detections

Analyzer	Verdict	Alert
fortinet	Malware
quad9	Sinkholed

HTTP Headers

GET /wp-includes/js/jquery/ui/widget.min.js?ver=1.11.4 HTTP/1.1
Host: hbcsaude.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://hbcsaude.com.br/
Cookie: wp_wpfileupload_adb5dcf7967adb2dbe37208297a0082d=CmRsETtKLHTw5jshLP9OaanqqbQxkeQx
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Thu, 06 Oct 2022 19:15:10 GMT
Server: Apache
Last-Modified: Thu, 15 Apr 2021 03:21:06 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 2543
Keep-Alive: timeout=5, max=91
Connection: Keep-Alive
Content-Type: application/javascript

hbcsaude.com.br/wp-content/plugins/timetable/js/jquery.carouFredSel-6.2.1-packed.js?ver=5.3.13

162.240.18.185

200 OK

14 kB

URL HTTP/1.1
hbcsaude.com.br/wp-content/plugins/timetable/js/jquery.carouFredSel-6.2.1-packed.js?ver=5.3.13
IP
162.240.18.185:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
ASCII text, with very long lines (35720)
Size
14 kB (14158 bytes)
Hash
f48438b9b3cd22e933b6408a2fe86397
e95fcf6a726c30b263d3b32e3de897c5165f699b
b53af328914d83d51645d96277131c01bb09eff1b6040bb9d6a9be3feef98685

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /wp-content/plugins/timetable/js/jquery.carouFredSel-6.2.1-packed.js?ver=5.3.13 HTTP/1.1
Host: hbcsaude.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://hbcsaude.com.br/
Cookie: wp_wpfileupload_adb5dcf7967adb2dbe37208297a0082d=CmRsETtKLHTw5jshLP9OaanqqbQxkeQx
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Thu, 06 Oct 2022 19:15:10 GMT
Server: Apache
Last-Modified: Wed, 20 Sep 2017 23:25:56 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 14158
Keep-Alive: timeout=5, max=91
Connection: Keep-Alive
Content-Type: application/javascript

hbcsaude.com.br/wp-content/plugins/timetable/js/timetable.js?ver=5.3.13

162.240.18.185

200 OK

2.3 kB

URL HTTP/1.1
hbcsaude.com.br/wp-content/plugins/timetable/js/timetable.js?ver=5.3.13
IP
162.240.18.185:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
ASCII text, with very long lines (301)
Size
2.3 kB (2284 bytes)
Hash
c792ad70c640a72e0a01d3f2aa203ac4
8ef36ba33cefdbb2c63823ca3ba907544bc3fd17
8a48a3b3235611ce2e63354446d6ec440df658a267e3be28d14e2e646d044a66

Detections

Analyzer	Verdict	Alert
fortinet	Malware
quad9	Sinkholed

HTTP Headers

GET /wp-content/plugins/timetable/js/timetable.js?ver=5.3.13 HTTP/1.1
Host: hbcsaude.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://hbcsaude.com.br/
Cookie: wp_wpfileupload_adb5dcf7967adb2dbe37208297a0082d=CmRsETtKLHTw5jshLP9OaanqqbQxkeQx
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Thu, 06 Oct 2022 19:15:10 GMT
Server: Apache
Last-Modified: Wed, 20 Sep 2017 23:25:56 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 2284
Keep-Alive: timeout=5, max=89
Connection: Keep-Alive
Content-Type: application/javascript

hbcsaude.com.br/wp-includes/js/jquery/ui/mouse.min.js?ver=1.11.4

162.240.18.185

200 OK

991 B

URL HTTP/1.1
hbcsaude.com.br/wp-includes/js/jquery/ui/mouse.min.js?ver=1.11.4
IP
162.240.18.185:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
ASCII text, with very long lines (2927)
Size
991 B (991 bytes)
Hash
0a9656f23585bbaa3376e904fa025a7f
37b57e7fa8a0ab85bc257573847acc1b4fa94dcc
4c9c329df2e0b3306dd4838ce24ae58eb441bcf4c6067899a97323c8d688c59d

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /wp-includes/js/jquery/ui/mouse.min.js?ver=1.11.4 HTTP/1.1
Host: hbcsaude.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://hbcsaude.com.br/
Cookie: wp_wpfileupload_adb5dcf7967adb2dbe37208297a0082d=CmRsETtKLHTw5jshLP9OaanqqbQxkeQx
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Thu, 06 Oct 2022 19:15:10 GMT
Server: Apache
Last-Modified: Thu, 15 Apr 2021 03:21:06 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 991
Keep-Alive: timeout=5, max=86
Connection: Keep-Alive
Content-Type: application/javascript

hbcsaude.com.br/wp-includes/js/jquery/ui/slider.min.js?ver=1.11.4

162.240.18.185

200 OK

3.1 kB

URL HTTP/1.1
hbcsaude.com.br/wp-includes/js/jquery/ui/slider.min.js?ver=1.11.4
IP
162.240.18.185:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
ASCII text, with very long lines (10694)
Size
3.1 kB (3053 bytes)
Hash
10aa8ebc5880a6468df6f5fc1e6e6382
26c55c30b7ab074ba81a638125fd256108df0591
4c64c3fa0a59f218045cc60a960df7e37c7e0157cc886fb0758c200bbe02ac95

Detections

Analyzer	Verdict	Alert
fortinet	Malware
quad9	Sinkholed

HTTP Headers

GET /wp-includes/js/jquery/ui/slider.min.js?ver=1.11.4 HTTP/1.1
Host: hbcsaude.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://hbcsaude.com.br/
Cookie: wp_wpfileupload_adb5dcf7967adb2dbe37208297a0082d=CmRsETtKLHTw5jshLP9OaanqqbQxkeQx
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Thu, 06 Oct 2022 19:15:10 GMT
Server: Apache
Last-Modified: Thu, 15 Apr 2021 03:21:06 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 3053
Keep-Alive: timeout=5, max=90
Connection: Keep-Alive
Content-Type: application/javascript

hbcsaude.com.br/wp-content/themes/mobius/js/smoothscroll.js?ver=1.2.1

162.240.18.185

200 OK

2.3 kB

URL HTTP/1.1
hbcsaude.com.br/wp-content/themes/mobius/js/smoothscroll.js?ver=1.2.1
IP
162.240.18.185:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
exported SGML document, ASCII text, with very long lines (4664), with CRLF line terminators
Size
2.3 kB (2335 bytes)
Hash
d040a04237efc7612502ec65b3d544fd
cda4746b34259099d891b4c7a5ab0b2e4d4e8a10
c66ec563e047c1efa5213f2fc50e7b7c0ce07fc9065f43d4aa22c5128ce5df92

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /wp-content/themes/mobius/js/smoothscroll.js?ver=1.2.1 HTTP/1.1
Host: hbcsaude.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://hbcsaude.com.br/
Cookie: wp_wpfileupload_adb5dcf7967adb2dbe37208297a0082d=CmRsETtKLHTw5jshLP9OaanqqbQxkeQx
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Thu, 06 Oct 2022 19:15:10 GMT
Server: Apache
Last-Modified: Sat, 05 Mar 2016 04:00:00 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 2335
Keep-Alive: timeout=5, max=90
Connection: Keep-Alive
Content-Type: application/javascript

hbcsaude.com.br/wp-content/themes/mobius/js/history.js?ver=1.0

162.240.18.185

200 OK

4.6 kB

URL HTTP/1.1
hbcsaude.com.br/wp-content/themes/mobius/js/history.js?ver=1.0
IP
162.240.18.185:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
exported SGML document, ASCII text, with very long lines (15523), with no line terminators
Size
4.6 kB (4621 bytes)
Hash
c0493c092e44bc6248bcae343954c33b
26c627c65bb0f5721064b2b85768a230b52dd032
425bc1902d2866b871558354b5735f9e2df2d0ab72b3f686ce7ef1da83f75670

Detections

Analyzer	Verdict	Alert
fortinet	Malware
quad9	Sinkholed

HTTP Headers

GET /wp-content/themes/mobius/js/history.js?ver=1.0 HTTP/1.1
Host: hbcsaude.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://hbcsaude.com.br/
Cookie: wp_wpfileupload_adb5dcf7967adb2dbe37208297a0082d=CmRsETtKLHTw5jshLP9OaanqqbQxkeQx
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Thu, 06 Oct 2022 19:15:10 GMT
Server: Apache
Last-Modified: Sat, 05 Mar 2016 04:00:00 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 4621
Keep-Alive: timeout=5, max=88
Connection: Keep-Alive
Content-Type: application/javascript

hbcsaude.com.br/wp-content/themes/mobius/js/ajaxify.js?ver=1.0.1

162.240.18.185

200 OK

2.7 kB

URL HTTP/1.1
hbcsaude.com.br/wp-content/themes/mobius/js/ajaxify.js?ver=1.0.1
IP
162.240.18.185:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
ASCII text, with very long lines (560), with CRLF line terminators
Size
2.7 kB (2682 bytes)
Hash
af615c070cd08509b6640b9c7787d129
a370e70aa9399df9ec19c7ac76251cef31b35a7b
61c1ff92f19547158f1351b3eb45d84ae3661404a1faafa0b6e177fb5a7f1ca2

Detections

Analyzer	Verdict	Alert
fortinet	Malware
quad9	Sinkholed

HTTP Headers

GET /wp-content/themes/mobius/js/ajaxify.js?ver=1.0.1 HTTP/1.1
Host: hbcsaude.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://hbcsaude.com.br/
Cookie: wp_wpfileupload_adb5dcf7967adb2dbe37208297a0082d=CmRsETtKLHTw5jshLP9OaanqqbQxkeQx
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Thu, 06 Oct 2022 19:15:10 GMT
Server: Apache
Last-Modified: Sat, 05 Mar 2016 04:00:00 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 2682
Keep-Alive: timeout=5, max=90
Connection: Keep-Alive
Content-Type: application/javascript

hbcsaude.com.br/wp-includes/js/mediaelement/mediaelement-migrate.min.js?ver=5.3.13

162.240.18.185

200 OK

544 B

URL HTTP/1.1
hbcsaude.com.br/wp-includes/js/mediaelement/mediaelement-migrate.min.js?ver=5.3.13
IP
162.240.18.185:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
ASCII text, with very long lines (1193), with no line terminators
Size
544 B (544 bytes)
Hash
870e62eb8921f70bcf00a1733c08f781
5748aa9c058425ddabb84c54f40e7a99a91a84df
5ba400fa8fd07b476630daba4694f437a3665b1491538224b530090ec16d6c8e

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /wp-includes/js/mediaelement/mediaelement-migrate.min.js?ver=5.3.13 HTTP/1.1
Host: hbcsaude.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://hbcsaude.com.br/
Cookie: wp_wpfileupload_adb5dcf7967adb2dbe37208297a0082d=CmRsETtKLHTw5jshLP9OaanqqbQxkeQx
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Thu, 06 Oct 2022 19:15:10 GMT
Server: Apache
Last-Modified: Thu, 15 Apr 2021 03:21:06 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 544
Keep-Alive: timeout=5, max=85
Connection: Keep-Alive
Content-Type: application/javascript

hbcsaude.com.br/wp-content/themes/mobius/js/owl.carousel.js?ver=1.3.2

162.240.18.185

200 OK

6.7 kB

URL HTTP/1.1
hbcsaude.com.br/wp-content/themes/mobius/js/owl.carousel.js?ver=1.3.2
IP
162.240.18.185:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
ASCII text, with very long lines (14916), with no line terminators
Size
6.7 kB (6677 bytes)
Hash
fb2a176c9b9a134a2ef06ec24b2a6a94
d39a07e91936a60493aa17833179c3546dd917cc
3c7b0b46f2b4ec3784e5fc4e57d39ff7f787ab948c98bb76269ed65791d1c2e1

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /wp-content/themes/mobius/js/owl.carousel.js?ver=1.3.2 HTTP/1.1
Host: hbcsaude.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://hbcsaude.com.br/
Cookie: wp_wpfileupload_adb5dcf7967adb2dbe37208297a0082d=CmRsETtKLHTw5jshLP9OaanqqbQxkeQx
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Thu, 06 Oct 2022 19:15:10 GMT
Server: Apache
Last-Modified: Sat, 05 Mar 2016 04:00:00 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 6677
Keep-Alive: timeout=5, max=89
Connection: Keep-Alive
Content-Type: application/javascript

hbcsaude.com.br/wp-content/themes/mobius/js/hammer.js?ver=1.0.7

162.240.18.185

200 OK

4.2 kB

URL HTTP/1.1
hbcsaude.com.br/wp-content/themes/mobius/js/hammer.js?ver=1.0.7
IP
162.240.18.185:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
ASCII text, with very long lines (12844), with CRLF line terminators
Size
4.2 kB (4158 bytes)
Hash
fbac9ac5f1fc15369d96337ff81df1d4
3735b9ece8b644e183d11b1cdd51681844203b89
7cfdbb789915626e71fde1c4e78c2ed4a026b3796a047c0f7fd2e6676b44303f

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /wp-content/themes/mobius/js/hammer.js?ver=1.0.7 HTTP/1.1
Host: hbcsaude.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://hbcsaude.com.br/
Cookie: wp_wpfileupload_adb5dcf7967adb2dbe37208297a0082d=CmRsETtKLHTw5jshLP9OaanqqbQxkeQx
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Thu, 06 Oct 2022 19:15:10 GMT
Server: Apache
Last-Modified: Sat, 05 Mar 2016 04:00:00 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 4158
Keep-Alive: timeout=5, max=87
Connection: Keep-Alive
Content-Type: application/javascript

hbcsaude.com.br/wp-content/themes/mobius/js/easing.js?ver=1.3

162.240.18.185

200 OK

982 B

URL HTTP/1.1
hbcsaude.com.br/wp-content/themes/mobius/js/easing.js?ver=1.3
IP
162.240.18.185:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
Unicode text, UTF-8 text, with very long lines (3524), with CRLF line terminators
Size
982 B (982 bytes)
Hash
b98437c0d02408e7cee44fc9ce02f9d6
412a27994e77ef65187e9045b694c5d8889f6922
4001560e365b23bc596a446f76fa17bc8cbb6a49a5e1baff1b57597e217d55c4

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /wp-content/themes/mobius/js/easing.js?ver=1.3 HTTP/1.1
Host: hbcsaude.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://hbcsaude.com.br/
Cookie: wp_wpfileupload_adb5dcf7967adb2dbe37208297a0082d=CmRsETtKLHTw5jshLP9OaanqqbQxkeQx
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Thu, 06 Oct 2022 19:15:10 GMT
Server: Apache
Last-Modified: Sat, 05 Mar 2016 04:00:00 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 982
Keep-Alive: timeout=5, max=89
Connection: Keep-Alive
Content-Type: application/javascript

hbcsaude.com.br/wp-content/themes/mobius/js/isotope.js?ver=1.5.25

162.240.18.185

200 OK

16 kB

URL HTTP/1.1
hbcsaude.com.br/wp-content/themes/mobius/js/isotope.js?ver=1.5.25
IP
162.240.18.185:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
ASCII text, with very long lines (32031), with CRLF line terminators
Size
16 kB (16010 bytes)
Hash
03555f0dca70735109922ef8ff5754a4
63bbdb7202bfcac199871a441026a70660874363
425f590a3310b3e6fc37c5462f7a3db31816be7fd79eb617d751303d4b30d8b0

Detections

Analyzer	Verdict	Alert
fortinet	Malware
quad9	Sinkholed

HTTP Headers

GET /wp-content/themes/mobius/js/isotope.js?ver=1.5.25 HTTP/1.1
Host: hbcsaude.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://hbcsaude.com.br/
Cookie: wp_wpfileupload_adb5dcf7967adb2dbe37208297a0082d=CmRsETtKLHTw5jshLP9OaanqqbQxkeQx
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Thu, 06 Oct 2022 19:15:10 GMT
Server: Apache
Last-Modified: Sat, 05 Mar 2016 04:00:00 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 16010
Keep-Alive: timeout=5, max=89
Connection: Keep-Alive
Content-Type: application/javascript

hbcsaude.com.br/wp-includes/js/mediaelement/mediaelement-and-player.min.js?ver=4.2.13-9993131

162.240.18.185

200 OK

40 kB

URL HTTP/1.1
hbcsaude.com.br/wp-includes/js/mediaelement/mediaelement-and-player.min.js?ver=4.2.13-9993131
IP
162.240.18.185:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
ASCII text, with very long lines (65266)
Size
40 kB (39664 bytes)
Hash
61ff6655f5299578163cd725afd1d6cf
521dded8de0e20ab68cfffb57cba7f5a8162ef2f
afe837713fc108b4965860651da3f4da1fd1c39eece21b2c21855de0d08d901a

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /wp-includes/js/mediaelement/mediaelement-and-player.min.js?ver=4.2.13-9993131 HTTP/1.1
Host: hbcsaude.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://hbcsaude.com.br/
Cookie: wp_wpfileupload_adb5dcf7967adb2dbe37208297a0082d=CmRsETtKLHTw5jshLP9OaanqqbQxkeQx
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Thu, 06 Oct 2022 19:15:10 GMT
Server: Apache
Last-Modified: Tue, 08 Oct 2019 16:06:02 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 39664
Keep-Alive: timeout=5, max=88
Connection: Keep-Alive
Content-Type: application/javascript

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
f24f49dce99bf22d6f1834c2f702f1f4
5c683d0f6be8cd1a60d95a0cb892007f4363005a
3b3e804ba36f52b1aaad872cd62a8b1f67d59a41c62a68c96d13605103329ff1

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 06 Oct 2022 19:15:11 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

hbcsaude.com.br/wp-content/themes/mobius/js/sly.js?ver=1.2.2

162.240.18.185

200 OK

6.9 kB

URL HTTP/1.1
hbcsaude.com.br/wp-content/themes/mobius/js/sly.js?ver=1.2.2
IP
162.240.18.185:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
ASCII text, with very long lines (548), with CRLF line terminators
Size
6.9 kB (6928 bytes)
Hash
5dd92adefaa849e387903876fd22ced7
ff410bbeae31ab45ea77abc3935e166c57981634
e35e30823e1d2b48d1024dd4e97ca9aff07ab8f94376a289eb3312e1149a1804

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /wp-content/themes/mobius/js/sly.js?ver=1.2.2 HTTP/1.1
Host: hbcsaude.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://hbcsaude.com.br/
Cookie: wp_wpfileupload_adb5dcf7967adb2dbe37208297a0082d=CmRsETtKLHTw5jshLP9OaanqqbQxkeQx
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Thu, 06 Oct 2022 19:15:11 GMT
Server: Apache
Last-Modified: Sat, 05 Mar 2016 04:00:00 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 6928
Keep-Alive: timeout=5, max=84
Connection: Keep-Alive
Content-Type: application/javascript

static.doubleclick.net/instream/ad_status.js

142.250.74.166

200 OK

29 B

URL HTTP/2
static.doubleclick.net/instream/ad_status.js
IP
142.250.74.166:0
ASN
#15169 GOOGLE

File type
ASCII text
Size
29 B (29 bytes)
Hash
1fa71744db23d0f8df9cce6719defcb7
e4be9b7136697942a036f97cf26ebaf703ad2067
eed0dc1fdb5d97ed188ae16fd5e1024a5bb744af47340346be2146300a6c54b9

HTTP Headers

GET /instream/ad_status.js HTTP/1.1
Host: static.doubleclick.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="ads-doubleclick-media"
report-to: {"group":"ads-doubleclick-media","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/ads-doubleclick-media"}]}
timing-allow-origin: *
content-length: 29
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 06 Oct 2022 19:12:37 GMT
expires: Thu, 06 Oct 2022 19:27:37 GMT
cache-control: public, max-age=900
age: 154
last-modified: Thu, 12 Dec 2013 23:40:16 GMT
content-type: text/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
eac86f868b3967f1946c7f5fc712b25f
e2ae8eb09715a0af0791c085eb35bf66e0548e30
bceb14e7a478c0e34a0f1d8286eb954566c62051e996bc36189de922a76a6e06

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 06 Oct 2022 19:15:11 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

hbcsaude.com.br/wp-content/themes/mobius/js/custom.js?ver=1.0

162.240.18.185

200 OK

24 kB

URL HTTP/1.1
hbcsaude.com.br/wp-content/themes/mobius/js/custom.js?ver=1.0
IP
162.240.18.185:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
exported SGML document, ASCII text, with CRLF line terminators
Size
24 kB (23577 bytes)
Hash
3431c26500083ddce78fbae9f9950f0a
936f3a4da33b1c4bad1c9b11ce8224ada456711a
5f9339e80e163d8277de15b569ed7ed7055deb39aba6576c6a3f8862b0b17c98

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /wp-content/themes/mobius/js/custom.js?ver=1.0 HTTP/1.1
Host: hbcsaude.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://hbcsaude.com.br/
Cookie: wp_wpfileupload_adb5dcf7967adb2dbe37208297a0082d=CmRsETtKLHTw5jshLP9OaanqqbQxkeQx
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Thu, 06 Oct 2022 19:15:11 GMT
Server: Apache
Last-Modified: Sat, 05 Mar 2016 04:00:00 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 23577
Keep-Alive: timeout=5, max=88
Connection: Keep-Alive
Content-Type: application/javascript

googleads.g.doubleclick.net/pagead/id

142.250.74.130

302 Found

0 B

URL HTTP/2
googleads.g.doubleclick.net/pagead/id
IP
142.250.74.130:0
ASN
#15169 GOOGLE

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /pagead/id HTTP/1.1
Host: googleads.g.doubleclick.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.youtube.com
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 302 Found
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
location: https://googleads.g.doubleclick.net/pagead/id?slf_rd=1
access-control-allow-credentials: true
access-control-allow-origin: https://www.youtube.com
date: Thu, 06 Oct 2022 19:15:11 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: text/html; charset=UTF-8
x-content-type-options: nosniff
server: cafe
content-length: 0
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
f24f49dce99bf22d6f1834c2f702f1f4
5c683d0f6be8cd1a60d95a0cb892007f4363005a
3b3e804ba36f52b1aaad872cd62a8b1f67d59a41c62a68c96d13605103329ff1

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 06 Oct 2022 19:15:11 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

hbcsaude.com.br/wp-content/themes/mobius/includes/mobius-grid/mobius-grid.js?ver=1.0

162.240.18.185

200 OK

8.6 kB

URL HTTP/1.1
hbcsaude.com.br/wp-content/themes/mobius/includes/mobius-grid/mobius-grid.js?ver=1.0
IP
162.240.18.185:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
exported SGML document, ASCII text, with CRLF line terminators
Size
8.6 kB (8636 bytes)
Hash
81546b14db6916a132a759086284b173
0f4a84d3eb6114c63deaa40c17df6c3152e2ac73
5d48013a0ea18d50769f60c78b0501d936d2f2493b044ead57da80aa358e17e6

Detections

Analyzer	Verdict	Alert
fortinet	Malware
quad9	Sinkholed

HTTP Headers

GET /wp-content/themes/mobius/includes/mobius-grid/mobius-grid.js?ver=1.0 HTTP/1.1
Host: hbcsaude.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://hbcsaude.com.br/
Cookie: wp_wpfileupload_adb5dcf7967adb2dbe37208297a0082d=CmRsETtKLHTw5jshLP9OaanqqbQxkeQx
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Thu, 06 Oct 2022 19:15:11 GMT
Server: Apache
Last-Modified: Sat, 05 Mar 2016 04:00:00 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 8636
Keep-Alive: timeout=5, max=88
Connection: Keep-Alive
Content-Type: application/javascript

hbcsaude.com.br/wp-includes/js/comment-reply.min.js?ver=5.3.13

162.240.18.185

200 OK

1.1 kB

URL HTTP/1.1
hbcsaude.com.br/wp-includes/js/comment-reply.min.js?ver=5.3.13
IP
162.240.18.185:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
ASCII text, with very long lines (2337), with no line terminators
Size
1.1 kB (1115 bytes)
Hash
7735003b7e944da3b7243ff1b7154ea2
49b2bcc84b13060be0104b5fa2b605ce549f735b
0a9b6c4d112f01e0fce026b91567f4cb562d8019dff557aaafe7fad2b4328e0d

Detections

Analyzer	Verdict	Alert
fortinet	Malware
quad9	Sinkholed

HTTP Headers

GET /wp-includes/js/comment-reply.min.js?ver=5.3.13 HTTP/1.1
Host: hbcsaude.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://hbcsaude.com.br/
Cookie: wp_wpfileupload_adb5dcf7967adb2dbe37208297a0082d=CmRsETtKLHTw5jshLP9OaanqqbQxkeQx
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Thu, 06 Oct 2022 19:15:11 GMT
Server: Apache
Last-Modified: Thu, 15 Apr 2021 03:21:06 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 1115
Keep-Alive: timeout=5, max=86
Connection: Keep-Alive
Content-Type: application/javascript

hbcsaude.com.br/wp-includes/js/hoverIntent.min.js?ver=1.8.1

162.240.18.185

200 OK

464 B

URL HTTP/1.1
hbcsaude.com.br/wp-includes/js/hoverIntent.min.js?ver=1.8.1
IP
162.240.18.185:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
ASCII text, with very long lines (1087), with no line terminators
Size
464 B (464 bytes)
Hash
8f4371b1904703da700396e57cc2851a
f54f9c7e30117a26c096246800ad37684c3bb0f1
a90b06b6d4dc6446fd5e62dda1ae66d75edac1358c6abf8fadd1729d6e35f3ae

Detections

Analyzer	Verdict	Alert
fortinet	Malware
quad9	Sinkholed

HTTP Headers

GET /wp-includes/js/hoverIntent.min.js?ver=1.8.1 HTTP/1.1
Host: hbcsaude.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://hbcsaude.com.br/
Cookie: wp_wpfileupload_adb5dcf7967adb2dbe37208297a0082d=CmRsETtKLHTw5jshLP9OaanqqbQxkeQx
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Thu, 06 Oct 2022 19:15:11 GMT
Server: Apache
Last-Modified: Thu, 15 Apr 2021 03:21:06 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 464
Keep-Alive: timeout=5, max=88
Connection: Keep-Alive
Content-Type: application/javascript

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
eac86f868b3967f1946c7f5fc712b25f
e2ae8eb09715a0af0791c085eb35bf66e0548e30
bceb14e7a478c0e34a0f1d8286eb954566c62051e996bc36189de922a76a6e06

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 06 Oct 2022 19:15:11 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/Create

142.250.74.106

200 OK

0 B

URL HTTP/2
jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/Create
IP
142.250.74.106:0
ASN
#15169 GOOGLE

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

OPTIONS /$rpc/google.internal.waa.v1.Waa/Create HTTP/1.1
Host: jnn-pa.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type,x-goog-api-key,x-user-agent
Referer: https://www.youtube.com/
Origin: https://www.youtube.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
access-control-allow-origin: https://www.youtube.com
vary: origin, referer, x-origin
access-control-allow-credentials: true
access-control-allow-methods: DELETE,GET,HEAD,OPTIONS,PATCH,POST,PUT
access-control-allow-headers: content-type,x-goog-api-key,x-user-agent
access-control-max-age: 3600
date: Thu, 06 Oct 2022 19:15:11 GMT
content-type: text/html
server: ESF
content-length: 0
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

hbcsaude.com.br/wp-content/plugins/megamenu/js/maxmegamenu.js?ver=2.9.8

162.240.18.185

200 OK

4.9 kB

URL HTTP/1.1
hbcsaude.com.br/wp-content/plugins/megamenu/js/maxmegamenu.js?ver=2.9.8
IP
162.240.18.185:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
ASCII text, with very long lines (315)
Size
4.9 kB (4877 bytes)
Hash
6d71775bb4f2598951d84e6060cdd6bb
fe7bdba159ad64f11a43a49440ecd79c6a30d623
48cd1ae0e8af4770be4566a7346e95aa9ca49a6f830f6110e7ad30f7a2aff2ef

Detections

Analyzer	Verdict	Alert
fortinet	Malware
quad9	Sinkholed

HTTP Headers

GET /wp-content/plugins/megamenu/js/maxmegamenu.js?ver=2.9.8 HTTP/1.1
Host: hbcsaude.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://hbcsaude.com.br/
Cookie: wp_wpfileupload_adb5dcf7967adb2dbe37208297a0082d=CmRsETtKLHTw5jshLP9OaanqqbQxkeQx
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Thu, 06 Oct 2022 19:15:11 GMT
Server: Apache
Last-Modified: Mon, 03 Oct 2022 16:53:04 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 4877
Keep-Alive: timeout=5, max=87
Connection: Keep-Alive
Content-Type: application/javascript

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
38c8ed81c69d2af0003394c9fb9274c5
a71c6fb6d685275f8a8c7d9d87860df08a450038
fdff30d374603ecd62c6d244a1175731787725dba48777122802055969be28f4

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 06 Oct 2022 19:15:11 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

www.google.com/js/th/qs_eGd-h9f3_frMeplByuCjrJjGTr5iyl3j-JE2Mo0s.js

142.250.74.164

200 OK

14 kB

URL HTTP/2
www.google.com/js/th/qs_eGd-h9f3_frMeplByuCjrJjGTr5iyl3j-JE2Mo0s.js
IP
142.250.74.164:0
ASN
#15169 GOOGLE

File type
ASCII text, with very long lines (36351)
Size
14 kB (14350 bytes)
Hash
fca4c84446cae474dbf63fcf44f061ca
399275019a515b324eb48ac6f2042f30dd15cd18
86a4021c55d56c050bc7e8de79f895d7555279bccbc8777f975f0945a5a2a4f2

HTTP Headers

GET /js/th/qs_eGd-h9f3_frMeplByuCjrJjGTr5iyl3j-JE2Mo0s.js HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: br
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/botguard-scs
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="botguard-scs"
report-to: {"group":"botguard-scs","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/botguard-scs"}]}
content-length: 14350
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 05 Oct 2022 16:28:36 GMT
expires: Thu, 05 Oct 2023 16:28:36 GMT
cache-control: public, max-age=31536000
last-modified: Tue, 27 Sep 2022 17:00:00 GMT
content-type: text/javascript
age: 96395
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

hbcsaude.com.br/wp-includes/js/wp-embed.min.js?ver=5.3.13

162.240.18.185

200 OK

739 B

URL HTTP/1.1
hbcsaude.com.br/wp-includes/js/wp-embed.min.js?ver=5.3.13
IP
162.240.18.185:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
ASCII text, with very long lines (1391), with no line terminators
Size
739 B (739 bytes)
Hash
60d8829560031a011771efa2f39708af
a4689c3b70f773deb896eec78028e0902ef15097
a0176bd4cc53bd2e920b0dfd10f56d2a4a3820d671539414ef4b3e2b3e50b9b7

Detections

Analyzer	Verdict	Alert
fortinet	Malware
quad9	Sinkholed

HTTP Headers

GET /wp-includes/js/wp-embed.min.js?ver=5.3.13 HTTP/1.1
Host: hbcsaude.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://hbcsaude.com.br/
Cookie: wp_wpfileupload_adb5dcf7967adb2dbe37208297a0082d=CmRsETtKLHTw5jshLP9OaanqqbQxkeQx
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Thu, 06 Oct 2022 19:15:11 GMT
Server: Apache
Last-Modified: Thu, 15 Apr 2021 03:21:06 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 739
Keep-Alive: timeout=5, max=83
Connection: Keep-Alive
Content-Type: application/javascript

hbcsaude.com.br/wp-content/plugins/slide-anything/owl-carousel/owl.carousel.min.js?ver=2.2.1

162.240.18.185

200 OK

11 kB

URL HTTP/1.1
hbcsaude.com.br/wp-content/plugins/slide-anything/owl-carousel/owl.carousel.min.js?ver=2.2.1
IP
162.240.18.185:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
ASCII text, with very long lines (31997)
Size
11 kB (11412 bytes)
Hash
147ac1c530c19c721f2f08015355831f
36666c04ebfd91eb34a2bccfd77d5921f149719e
ad388396f2600caf304c74c3255d0cb91ec3eb6979eece045c096b4b8f0e0f3c

Detections

Analyzer	Verdict	Alert
fortinet	Malware
quad9	Sinkholed

HTTP Headers

GET /wp-content/plugins/slide-anything/owl-carousel/owl.carousel.min.js?ver=2.2.1 HTTP/1.1
Host: hbcsaude.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://hbcsaude.com.br/
Cookie: wp_wpfileupload_adb5dcf7967adb2dbe37208297a0082d=CmRsETtKLHTw5jshLP9OaanqqbQxkeQx
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Thu, 06 Oct 2022 19:15:11 GMT
Server: Apache
Last-Modified: Mon, 03 Oct 2022 17:33:51 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 11412
Keep-Alive: timeout=5, max=87
Connection: Keep-Alive
Content-Type: application/javascript

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
130ee302a2d581b152c8beccdc64866e
41fba8278d61fd6638376868fbe50c752f858b44
5345486b353cd67707512700d28f5937d9ad53f23b590e82cb624f1e509c1943

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 06 Oct 2022 19:15:11 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

hbcsaude.com.br/wp-content/plugins/slide-anything/js/jquery.mousewheel.min.js?ver=3.1.13

162.240.18.185

200 OK

1.2 kB

URL HTTP/1.1
hbcsaude.com.br/wp-content/plugins/slide-anything/js/jquery.mousewheel.min.js?ver=3.1.13
IP
162.240.18.185:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
ASCII text, with very long lines (2584)
Size
1.2 kB (1169 bytes)
Hash
baa502474e995cb5ba0a43384a27f0d1
7febb2289457a9af12730eaaed84c9e02e324255
685feab12164cec640fd0a2fb698d5ca4eaf891c189848d93de93b101ad6dc9b

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /wp-content/plugins/slide-anything/js/jquery.mousewheel.min.js?ver=3.1.13 HTTP/1.1
Host: hbcsaude.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://hbcsaude.com.br/
Cookie: wp_wpfileupload_adb5dcf7967adb2dbe37208297a0082d=CmRsETtKLHTw5jshLP9OaanqqbQxkeQx
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Thu, 06 Oct 2022 19:15:11 GMT
Server: Apache
Last-Modified: Mon, 03 Oct 2022 17:33:51 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 1169
Keep-Alive: timeout=5, max=87
Connection: Keep-Alive
Content-Type: application/javascript

hbcsaude.com.br/wp-content/plugins/slide-anything/owl-carousel/owl.carousel2.thumbs.min.js?ver=0.1.8

162.240.18.185

200 OK

1.1 kB

URL HTTP/1.1
hbcsaude.com.br/wp-content/plugins/slide-anything/owl-carousel/owl.carousel2.thumbs.min.js?ver=0.1.8
IP
162.240.18.185:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
ASCII text, with very long lines (3342), with CRLF line terminators
Size
1.1 kB (1123 bytes)
Hash
b73b5add629a56b75f0c98a429ae5ade
6138f6ff859182b709cb773b0e641f92a6f8bc9d
e8aa170ef38d96f64e7bad146918fe21601d37396f46eeede1d74977160f5a54

Detections

Analyzer	Verdict	Alert
fortinet	Malware
quad9	Sinkholed

HTTP Headers

GET /wp-content/plugins/slide-anything/owl-carousel/owl.carousel2.thumbs.min.js?ver=0.1.8 HTTP/1.1
Host: hbcsaude.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://hbcsaude.com.br/
Cookie: wp_wpfileupload_adb5dcf7967adb2dbe37208297a0082d=CmRsETtKLHTw5jshLP9OaanqqbQxkeQx
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Thu, 06 Oct 2022 19:15:11 GMT
Server: Apache
Last-Modified: Mon, 03 Oct 2022 17:33:51 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 1123
Keep-Alive: timeout=5, max=85
Connection: Keep-Alive
Content-Type: application/javascript

i.ytimg.com/vi_webp/ZhZq4vPVxUA/sddefault.webp

142.250.74.118

200 OK

20 kB

URL HTTP/2
i.ytimg.com/vi_webp/ZhZq4vPVxUA/sddefault.webp
IP
142.250.74.118:0
ASN
#15169 GOOGLE

File type
RIFF (little-endian) data, Web/P image, VP8 encoding, 640x480, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Size
20 kB (20392 bytes)
Hash
52af072208f08fa7d2554cc6f8f2dbff
61352d905c5c7e28b303db7d375d5c7a5d1775ef
d4ed09e9e08071f092db0cafdbc352ccbdce273ceb8b4f66b5ad6ba2b6a15c7f

HTTP Headers

GET /vi_webp/ZhZq4vPVxUA/sddefault.webp HTTP/1.1
Host: i.ytimg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
accept-ranges: bytes
content-type: image/webp
vary: Origin
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="youtube"
report-to: {"group":"youtube","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/youtube"}]}
content-length: 20392
date: Thu, 06 Oct 2022 19:15:11 GMT
expires: Thu, 06 Oct 2022 21:15:11 GMT
cache-control: public, max-age=7200
etag: "1658872534"
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

hbcsaude.com.br/wp-content/plugins/slide-anything/lightgallery/lightgallery.min.js?ver=2.5.0

162.240.18.185

200 OK

13 kB

URL HTTP/1.1
hbcsaude.com.br/wp-content/plugins/slide-anything/lightgallery/lightgallery.min.js?ver=2.5.0
IP
162.240.18.185:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
ASCII text, with very long lines (46692), with CRLF line terminators
Size
13 kB (13419 bytes)
Hash
581527fde8136e7b343c54e9f040b5e7
a1fe6dd6918fee76022000b54aa236758467353f
14246648459fdc0c6d83280369b4ccb0a31c5655f328f4fa9dc4e3d5852a155a

Detections

Analyzer	Verdict	Alert
fortinet	Malware
quad9	Sinkholed

HTTP Headers

GET /wp-content/plugins/slide-anything/lightgallery/lightgallery.min.js?ver=2.5.0 HTTP/1.1
Host: hbcsaude.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://hbcsaude.com.br/
Cookie: wp_wpfileupload_adb5dcf7967adb2dbe37208297a0082d=CmRsETtKLHTw5jshLP9OaanqqbQxkeQx
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Thu, 06 Oct 2022 19:15:11 GMT
Server: Apache
Last-Modified: Mon, 03 Oct 2022 17:33:51 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 13419
Keep-Alive: timeout=5, max=87
Connection: Keep-Alive
Content-Type: application/javascript

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
130ee302a2d581b152c8beccdc64866e
41fba8278d61fd6638376868fbe50c752f858b44
5345486b353cd67707512700d28f5937d9ad53f23b590e82cb624f1e509c1943

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 06 Oct 2022 19:15:11 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

hbcsaude.com.br/wp-content/plugins/slide-anything/lightgallery/plugins/video/lg-video.min.js?ver=2.5.0

162.240.18.185

200 OK

2.7 kB

URL HTTP/1.1
hbcsaude.com.br/wp-content/plugins/slide-anything/lightgallery/plugins/video/lg-video.min.js?ver=2.5.0
IP
162.240.18.185:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
ASCII text, with very long lines (7930), with CRLF line terminators
Size
2.7 kB (2661 bytes)
Hash
9747bb69664d17900c0baa4083a3e3e7
7b6a5a3cc7adf45d9553665b36d970d8521a6bfd
9f874a1ca7c9cb2c8afccb7b1f8d65163de2dfdc2cce0554bd517d5546cdc3ad

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /wp-content/plugins/slide-anything/lightgallery/plugins/video/lg-video.min.js?ver=2.5.0 HTTP/1.1
Host: hbcsaude.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://hbcsaude.com.br/
Cookie: wp_wpfileupload_adb5dcf7967adb2dbe37208297a0082d=CmRsETtKLHTw5jshLP9OaanqqbQxkeQx
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Thu, 06 Oct 2022 19:15:11 GMT
Server: Apache
Last-Modified: Mon, 03 Oct 2022 17:33:51 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 2661
Keep-Alive: timeout=5, max=86
Connection: Keep-Alive
Content-Type: application/javascript

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
e706a7ca51cd91bb00f8e3d31b6e0005
92b4ca2e474ecc44c455bb853a3078bf5bd3ae1d
1b10c86665080657cb3711f81ea96a414aee8abff99883c23987940fe93fd73a

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 06 Oct 2022 19:15:11 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

hbcsaude.com.br/wp-content/plugins/slide-anything/lightgallery/plugins/zoom/lg-zoom.min.js?ver=2.5.0

162.240.18.185

200 OK

4.6 kB

URL HTTP/1.1
hbcsaude.com.br/wp-content/plugins/slide-anything/lightgallery/plugins/zoom/lg-zoom.min.js?ver=2.5.0
IP
162.240.18.185:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
ASCII text, with very long lines (16206), with CRLF line terminators
Size
4.6 kB (4553 bytes)
Hash
9ead6b7b1e6d73adc95d85f22c8aa076
3d82ad0d592b25e33b90c6cac9d10bdc79d85cf0
031cf2c4cc77db9df7a8d28b34d9a9c7c6380638923a29e59fcb2fde53f7d1cf

Detections

Analyzer	Verdict	Alert
fortinet	Malware
quad9	Sinkholed

HTTP Headers

GET /wp-content/plugins/slide-anything/lightgallery/plugins/zoom/lg-zoom.min.js?ver=2.5.0 HTTP/1.1
Host: hbcsaude.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://hbcsaude.com.br/
Cookie: wp_wpfileupload_adb5dcf7967adb2dbe37208297a0082d=CmRsETtKLHTw5jshLP9OaanqqbQxkeQx
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Thu, 06 Oct 2022 19:15:11 GMT
Server: Apache
Last-Modified: Mon, 03 Oct 2022 17:33:51 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 4553
Keep-Alive: timeout=5, max=82
Connection: Keep-Alive
Content-Type: application/javascript

fonts.googleapis.com/css?family=Lato%3A400%2C700&ver=5.3.13

142.250.74.10

200 OK

1.7 kB

URL HTTP/2
fonts.googleapis.com/css?family=Lato%3A400%2C700&ver=5.3.13
IP
142.250.74.10:0
ASN
#15169 GOOGLE

File type
ASCII text, with very long lines (3955), with CRLF, LF line terminators
Size
1.7 kB (1700 bytes)
Hash
658f6ceb96d83b4293f9933faaff2535
a49f6f08a01182c6ae710d4b174c1c95b4f396b7
04c5ba5e1c8581ea1326c879dd23a771da28cb41c5f53fba559cb92aa817dab1

HTTP Headers

GET /css?family=Lato%3A400%2C700&ver=5.3.13 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://hbcsaude.com.br/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Thu, 06 Oct 2022 19:15:08 GMT
date: Thu, 06 Oct 2022 19:15:08 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

hbcsaude.com.br/wp-content/plugins/js_composer/assets/lib/waypoints/waypoints.min.js?ver=4.12.1

162.240.18.185

200 OK

2.6 kB

URL HTTP/1.1
hbcsaude.com.br/wp-content/plugins/js_composer/assets/lib/waypoints/waypoints.min.js?ver=4.12.1
IP
162.240.18.185:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
ASCII text, with very long lines (7808)
Size
2.6 kB (2615 bytes)
Hash
ce37923565b26522f8e8cbd5070f03a1
139bdb311e96f326a2a7040e012a32bfa5331251
2c3ab394646b898c62e876a367ca8ac8dd9a81ff46559d3e4765487b7125b0d3

Detections

Analyzer	Verdict	Alert
fortinet	Malware
quad9	Sinkholed

HTTP Headers

GET /wp-content/plugins/js_composer/assets/lib/waypoints/waypoints.min.js?ver=4.12.1 HTTP/1.1
Host: hbcsaude.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://hbcsaude.com.br/
Cookie: wp_wpfileupload_adb5dcf7967adb2dbe37208297a0082d=CmRsETtKLHTw5jshLP9OaanqqbQxkeQx
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Thu, 06 Oct 2022 19:15:11 GMT
Server: Apache
Last-Modified: Wed, 20 Sep 2017 23:20:20 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 2615
Keep-Alive: timeout=5, max=84
Connection: Keep-Alive
Content-Type: application/javascript

hbcsaude.com.br/wp-content/plugins/slide-anything/lightgallery/player.min.js?ver=2.17.1

162.240.18.185

200 OK

6.4 kB

URL HTTP/1.1
hbcsaude.com.br/wp-content/plugins/slide-anything/lightgallery/player.min.js?ver=2.17.1
IP
162.240.18.185:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
Unicode text, UTF-8 text, with very long lines (17563), with CRLF line terminators
Size
6.4 kB (6367 bytes)
Hash
08688da66180907984b68cfee42e035b
b1d5f7fe7238a21d4624bec58c8dd7088ae84ba8
17ff02dfc275cc8d4336853b86bbed9cc1ee378def437ed5ba4a6a96dc3deb77

Detections

Analyzer	Verdict	Alert
fortinet	Malware
quad9	Sinkholed

HTTP Headers

GET /wp-content/plugins/slide-anything/lightgallery/player.min.js?ver=2.17.1 HTTP/1.1
Host: hbcsaude.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://hbcsaude.com.br/
Cookie: wp_wpfileupload_adb5dcf7967adb2dbe37208297a0082d=CmRsETtKLHTw5jshLP9OaanqqbQxkeQx
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Thu, 06 Oct 2022 19:15:11 GMT
Server: Apache
Last-Modified: Mon, 03 Oct 2022 17:33:51 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 6367
Keep-Alive: timeout=5, max=86
Connection: Keep-Alive
Content-Type: application/javascript

hbcsaude.com.br/wp-includes/js/wp-emoji-release.min.js?ver=5.3.13

162.240.18.185

200 OK

4.6 kB

URL HTTP/1.1
hbcsaude.com.br/wp-includes/js/wp-emoji-release.min.js?ver=5.3.13
IP
162.240.18.185:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
ASCII text, with very long lines (10927)
Size
4.6 kB (4619 bytes)
Hash
cecddf5ddbcefd9b5e6e2c9ccf2b0f88
47af5b49999884a7baa802269b58844df86adda3
17273e8bdfa2d374b963fda5ed3fff219ee4d53031356c6181430f92aea473e7

Detections

Analyzer	Verdict	Alert
fortinet	Malware
quad9	Sinkholed

HTTP Headers

GET /wp-includes/js/wp-emoji-release.min.js?ver=5.3.13 HTTP/1.1
Host: hbcsaude.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://hbcsaude.com.br/
Cookie: wp_wpfileupload_adb5dcf7967adb2dbe37208297a0082d=CmRsETtKLHTw5jshLP9OaanqqbQxkeQx
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Thu, 06 Oct 2022 19:15:11 GMT
Server: Apache
Last-Modified: Thu, 15 Apr 2021 03:21:06 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 4619
Keep-Alive: timeout=5, max=86
Connection: Keep-Alive
Content-Type: application/javascript

hbcsaude.com.br/wp-content/themes/mobius/css/icons/steadysets.ttf

162.240.18.185

200 OK

18 kB

URL HTTP/1.1
hbcsaude.com.br/wp-content/themes/mobius/css/icons/steadysets.ttf
IP
162.240.18.185:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
TrueType Font data, 11 tables, 1st "OS/2", 14 names, Macintosh, type 1 string, icomoonVersion 0.0icomooncmo \012- data
Size
18 kB (17775 bytes)
Hash
42f96ff6fdaa4fbf084aa78d2aeb58da
56af19f531cf93090d02c385fad87d89a5efc319
3b8883d87636bb722118841b45ada3d635a19e87df3d6cdf51ddd7acb922bcbb

Detections

Analyzer	Verdict	Alert
fortinet	Malware
quad9	Sinkholed

HTTP Headers

GET /wp-content/themes/mobius/css/icons/steadysets.ttf HTTP/1.1
Host: hbcsaude.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://hbcsaude.com.br/wp-content/themes/mobius/css/steadysets.css?ver=5.3.13
Cookie: wp_wpfileupload_adb5dcf7967adb2dbe37208297a0082d=CmRsETtKLHTw5jshLP9OaanqqbQxkeQx
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Thu, 06 Oct 2022 19:15:11 GMT
Server: Apache
Last-Modified: Sat, 05 Mar 2016 04:00:00 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 17775
Keep-Alive: timeout=5, max=81
Connection: Keep-Alive
Content-Type: font/ttf

hbcsaude.com.br/wp-content/plugins/js_composer/assets/css/lib/vc-open-iconic/fonts/vc_openiconic.woff?54101537

162.240.18.185

200 OK

14 kB

URL HTTP/1.1
hbcsaude.com.br/wp-content/plugins/js_composer/assets/css/lib/vc-open-iconic/fonts/vc_openiconic.woff?54101537
IP
162.240.18.185:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
Web Open Font Format, TrueType, length 13824, version 1.0\012- data
Size
14 kB (13824 bytes)
Hash
2e3659f9fd0120142d7f9c83a931a9ac
4a363ad9713b437d24ea439440a305d513a203fa
9481a3c25a8288bb2e83b3338fb221c550fa6c7956452a1642dcc5e0038e245c

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /wp-content/plugins/js_composer/assets/css/lib/vc-open-iconic/fonts/vc_openiconic.woff?54101537 HTTP/1.1
Host: hbcsaude.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://hbcsaude.com.br/wp-content/plugins/js_composer/assets/css/lib/vc-open-iconic/vc_openiconic.min.css?ver=4.12.1
Cookie: wp_wpfileupload_adb5dcf7967adb2dbe37208297a0082d=CmRsETtKLHTw5jshLP9OaanqqbQxkeQx
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Thu, 06 Oct 2022 19:15:11 GMT
Server: Apache
Last-Modified: Wed, 20 Sep 2017 23:20:20 GMT
Accept-Ranges: bytes
Content-Length: 13824
Vary: Accept-Encoding,User-Agent
Keep-Alive: timeout=5, max=85
Connection: Keep-Alive
Content-Type: font/woff

hbcsaude.com.br/wp-content/themes/mobius/audio/blank.mp3

162.240.18.185

206 Partial Content

2.6 kB

URL HTTP/1.1
hbcsaude.com.br/wp-content/themes/mobius/audio/blank.mp3
IP
162.240.18.185:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
Audio file with ID3 version 2.3.0, contains: MPEG ADTS, layer III, v1, 128 kbps, 44.1 kHz, Monaural\012- data
Size
2.6 kB (2649 bytes)
Hash
6038184291591b93ba94fcd8420c9ab4
bba823ab3850426685381b51b02090ac035b8b76
d4456afe44accf096ab49198ff57823eeb34ce5f51c904f18771645a8ec897f5

Detections

Analyzer	Verdict	Alert
fortinet	Malware
quad9	Sinkholed

HTTP Headers

GET /wp-content/themes/mobius/audio/blank.mp3 HTTP/1.1
Host: hbcsaude.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: audio/webm,audio/ogg,audio/wav,audio/*;q=0.9,application/ogg;q=0.7,video/*;q=0.6,*/*;q=0.5
Accept-Language: en-US,en;q=0.5
Range: bytes=0-
Connection: keep-alive
Referer: https://hbcsaude.com.br/
Cookie: wp_wpfileupload_adb5dcf7967adb2dbe37208297a0082d=CmRsETtKLHTw5jshLP9OaanqqbQxkeQx
Sec-Fetch-Dest: audio
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 206 Partial Content
Date: Thu, 06 Oct 2022 19:15:11 GMT
Server: Apache
Last-Modified: Sat, 05 Mar 2016 04:00:00 GMT
Accept-Ranges: bytes
Content-Length: 2649
Vary: Accept-Encoding,User-Agent
Content-Range: bytes 0-2648/2649
Keep-Alive: timeout=5, max=85
Connection: Keep-Alive
Content-Type: audio/mpeg

hbcsaude.com.br/wp-content/uploads/2017/09/logo.png

162.240.18.185

200 OK

16 kB

URL HTTP/1.1
hbcsaude.com.br/wp-content/uploads/2017/09/logo.png
IP
162.240.18.185:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
PNG image data, 720 x 527, 8-bit/color RGBA, non-interlaced\012- data
Size
16 kB (15464 bytes)
Hash
a0d207dafbb1d93da595234ed3906a08
f01a959c00e4ed41e6bb8c87fb549615ec7bc560
e1c529d68e5d79b0ce269142e4052117e18798baabc559a3eae53ed6587796e4

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /wp-content/uploads/2017/09/logo.png HTTP/1.1
Host: hbcsaude.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://hbcsaude.com.br/
Cookie: wp_wpfileupload_adb5dcf7967adb2dbe37208297a0082d=CmRsETtKLHTw5jshLP9OaanqqbQxkeQx
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Thu, 06 Oct 2022 19:15:11 GMT
Server: Apache
Last-Modified: Mon, 25 Sep 2017 22:39:01 GMT
Accept-Ranges: bytes
Content-Length: 15464
Keep-Alive: timeout=5, max=85
Connection: Keep-Alive
Content-Type: image/png

hbcsaude.com.br/wp-content/plugins/js_composer/assets/lib/bower/font-awesome/fonts/fontawesome-webfont.woff2?v=4.6.3

162.240.18.185

200 OK

72 kB

URL HTTP/1.1
hbcsaude.com.br/wp-content/plugins/js_composer/assets/lib/bower/font-awesome/fonts/fontawesome-webfont.woff2?v=4.6.3
IP
162.240.18.185:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
Web Open Font Format (Version 2), TrueType, length 71896, version 4.393\012- data
Size
72 kB (71896 bytes)
Hash
e6cf7c6ec7c2d6f670ae9d762604cb0b
97e438cc545714309882fbceadbf344fcaddcec5
7dacf83f51179de8d7980a513e67ab3a08f2c6272bb5946df8fd77c0d1763b73

Detections

Analyzer	Verdict	Alert
fortinet	Malware
quad9	Sinkholed

HTTP Headers

GET /wp-content/plugins/js_composer/assets/lib/bower/font-awesome/fonts/fontawesome-webfont.woff2?v=4.6.3 HTTP/1.1
Host: hbcsaude.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://hbcsaude.com.br/wp-content/plugins/js_composer/assets/lib/bower/font-awesome/css/font-awesome.min.css?ver=4.12.1
Cookie: wp_wpfileupload_adb5dcf7967adb2dbe37208297a0082d=CmRsETtKLHTw5jshLP9OaanqqbQxkeQx
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Thu, 06 Oct 2022 19:15:11 GMT
Server: Apache
Last-Modified: Wed, 20 Sep 2017 23:20:20 GMT
Accept-Ranges: bytes
Content-Length: 71896
Vary: Accept-Encoding,User-Agent
Keep-Alive: timeout=5, max=85
Connection: Keep-Alive
Content-Type: font/woff2

hbcsaude.com.br/wp-content/uploads/2017/11/ans.png

162.240.18.185

200 OK

6.0 kB

URL HTTP/1.1
hbcsaude.com.br/wp-content/uploads/2017/11/ans.png
IP
162.240.18.185:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
PNG image data, 200 x 40, 8-bit/color RGBA, non-interlaced\012- data
Size
6.0 kB (5995 bytes)
Hash
56783b3549ad7188c02d11ad40250bd5
945eee9c35413aa647114e8775fedfc49160cf01
1facd0b1731f3a84e1310cb9727923cebc3d1761353cee1277fe50f1ab9e1b6b

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /wp-content/uploads/2017/11/ans.png HTTP/1.1
Host: hbcsaude.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://hbcsaude.com.br/
Cookie: wp_wpfileupload_adb5dcf7967adb2dbe37208297a0082d=CmRsETtKLHTw5jshLP9OaanqqbQxkeQx
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Thu, 06 Oct 2022 19:15:11 GMT
Server: Apache
Last-Modified: Mon, 27 Nov 2017 22:35:39 GMT
Accept-Ranges: bytes
Content-Length: 5995
Keep-Alive: timeout=5, max=84
Connection: Keep-Alive
Content-Type: image/png

yt3.ggpht.com/ytc/AMLnZu9TRQT3RBR1frfmhVCA9ukDpcHJIMnl_vSXWK2e=s68-c-k-c0x00ffffff-no-rj

142.250.74.161

200 OK

2.3 kB

URL HTTP/2
yt3.ggpht.com/ytc/AMLnZu9TRQT3RBR1frfmhVCA9ukDpcHJIMnl_vSXWK2e=s68-c-k-c0x00ffffff-no-rj
IP
142.250.74.161:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=1, software=Google], baseline, precision 8, 68x68, components 3\012- data
Size
2.3 kB (2320 bytes)
Hash
ded8e4fd0c24f8472eb17cc287c41ca9
bc1cc67c11b71cc3a1e5c0798f2c51c35a66bd19
49af80aac47c50f8392fef2927e7ae3f014b67fb8a11548112a60fa62e96f942

HTTP Headers

GET /ytc/AMLnZu9TRQT3RBR1frfmhVCA9ukDpcHJIMnl_vSXWK2e=s68-c-k-c0x00ffffff-no-rj HTTP/1.1
Host: yt3.ggpht.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
access-control-expose-headers: Content-Length
etag: "v6"
expires: Fri, 07 Oct 2022 19:15:11 GMT
cache-control: public, max-age=86400, no-transform
content-disposition: inline;filename="unnamed.jpg"
content-type: image/jpeg
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
x-content-type-options: nosniff
date: Thu, 06 Oct 2022 19:15:11 GMT
server: fife
content-length: 2320
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

hbcsaude.com.br/wp-content/uploads/2014/06/ans.jpg

162.240.18.185

200 OK

9.9 kB

URL HTTP/1.1
hbcsaude.com.br/wp-content/uploads/2014/06/ans.jpg
IP
162.240.18.185:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
JPEG image data, JFIF standard 1.02, aspect ratio, density 100x100, segment length 16, baseline, precision 8, 405x59, components 3\012- data
Size
9.9 kB (9857 bytes)
Hash
98281a3760727d9f671a18c296487d90
9f2a7c874b1b91e081f2c4d1a5404674f5512f7e
8be54e8b0db72fde5fdb0117e5103d2f1db55ad596250175d71f253353cc3c0f

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /wp-content/uploads/2014/06/ans.jpg HTTP/1.1
Host: hbcsaude.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://hbcsaude.com.br/
Cookie: wp_wpfileupload_adb5dcf7967adb2dbe37208297a0082d=CmRsETtKLHTw5jshLP9OaanqqbQxkeQx
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Thu, 06 Oct 2022 19:15:11 GMT
Server: Apache
Last-Modified: Sun, 05 Nov 2017 23:48:41 GMT
Accept-Ranges: bytes
Content-Length: 9857
Keep-Alive: timeout=5, max=84
Connection: Keep-Alive
Content-Type: image/jpeg

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
58ac1b886710ef98c8b70a37dcc2b855
ed76f180385d65285525c3426857e1880e2817c8
7fd9a97b66875a6c87413705781a8800ab15e8faaeb821364914ca2d0dd9c890

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 06 Oct 2022 19:15:11 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

hbcsaude.com.br/wp-content/uploads/2017/10/HBC-Fachada-01A-500x350.jpg

162.240.18.185

200 OK

49 kB

URL HTTP/1.1
hbcsaude.com.br/wp-content/uploads/2017/10/HBC-Fachada-01A-500x350.jpg
IP
162.240.18.185:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 82", baseline, precision 8, 500x350, components 3\012- data
Size
49 kB (49242 bytes)
Hash
46f52f9c487b8637395bad5d288c6e65
729279e5be88bbeab1d35720c62dc6f847421e72
eb5613992d563a695ddaacbd5508feb96f38a7b521e40fcffc8d78b2d7cb869c

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /wp-content/uploads/2017/10/HBC-Fachada-01A-500x350.jpg HTTP/1.1
Host: hbcsaude.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://hbcsaude.com.br/
Cookie: wp_wpfileupload_adb5dcf7967adb2dbe37208297a0082d=CmRsETtKLHTw5jshLP9OaanqqbQxkeQx
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Thu, 06 Oct 2022 19:15:11 GMT
Server: Apache
Last-Modified: Thu, 17 May 2018 15:19:45 GMT
Accept-Ranges: bytes
Content-Length: 49242
Keep-Alive: timeout=5, max=84
Connection: Keep-Alive
Content-Type: image/jpeg

hbcsaude.com.br/wp-content/uploads/2017/10/2-500x350.jpg

162.240.18.185

200 OK

47 kB

URL HTTP/1.1
hbcsaude.com.br/wp-content/uploads/2017/10/2-500x350.jpg
IP
162.240.18.185:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 82", baseline, precision 8, 500x350, components 3\012- data
Size
47 kB (46792 bytes)
Hash
5f75c7c1bdc29cdbda925b71cf3b2ecb
51b0458194790c29f387770df9973ced7f174d69
df1ce41ff62aeebf53a4e09a0e2197cf3abd9009df0bd82852de956cb2a82730

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /wp-content/uploads/2017/10/2-500x350.jpg HTTP/1.1
Host: hbcsaude.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://hbcsaude.com.br/
Cookie: wp_wpfileupload_adb5dcf7967adb2dbe37208297a0082d=CmRsETtKLHTw5jshLP9OaanqqbQxkeQx
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Thu, 06 Oct 2022 19:15:11 GMT
Server: Apache
Last-Modified: Tue, 17 May 2022 22:58:57 GMT
Accept-Ranges: bytes
Content-Length: 46792
Keep-Alive: timeout=5, max=84
Connection: Keep-Alive
Content-Type: image/jpeg

hbcsaude.com.br/wp-content/uploads/2017/10/1-500x350.jpg

162.240.18.185

200 OK

54 kB

URL HTTP/1.1
hbcsaude.com.br/wp-content/uploads/2017/10/1-500x350.jpg
IP
162.240.18.185:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 82", baseline, precision 8, 500x350, components 3\012- data
Size
54 kB (54396 bytes)
Hash
4a7b9deee4431d9d481adf4abff314b6
4fcc740ba6b506050b8eda0eb433e9e15e02bce3
e40fe73200d5f78412d091b901fb06b70009ef9086c9473faff45b7ee23e871f

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /wp-content/uploads/2017/10/1-500x350.jpg HTTP/1.1
Host: hbcsaude.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://hbcsaude.com.br/
Cookie: wp_wpfileupload_adb5dcf7967adb2dbe37208297a0082d=CmRsETtKLHTw5jshLP9OaanqqbQxkeQx
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Thu, 06 Oct 2022 19:15:12 GMT
Server: Apache
Last-Modified: Tue, 17 May 2022 23:06:38 GMT
Accept-Ranges: bytes
Content-Length: 54396
Keep-Alive: timeout=5, max=83
Connection: Keep-Alive
Content-Type: image/jpeg

hbcsaude.com.br/wp-content/uploads/2017/10/H-Fachada-01-Final-500x350.jpeg

162.240.18.185

200 OK

42 kB

URL HTTP/1.1
hbcsaude.com.br/wp-content/uploads/2017/10/H-Fachada-01-Final-500x350.jpeg
IP
162.240.18.185:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 82", baseline, precision 8, 500x350, components 3\012- data
Size
42 kB (42173 bytes)
Hash
183bf72e4cb9b8c4747423e56a61946e
57227118c4b76967f2c26fe4a1de816347cafde8
000a186558ba22ec1394ab5cd85e3a1a816cdfda6143da0fc05948f38d53aae2

Detections

Analyzer	Verdict	Alert
fortinet	Malware
quad9	Sinkholed

HTTP Headers

GET /wp-content/uploads/2017/10/H-Fachada-01-Final-500x350.jpeg HTTP/1.1
Host: hbcsaude.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://hbcsaude.com.br/
Cookie: wp_wpfileupload_adb5dcf7967adb2dbe37208297a0082d=CmRsETtKLHTw5jshLP9OaanqqbQxkeQx
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Thu, 06 Oct 2022 19:15:12 GMT
Server: Apache
Last-Modified: Mon, 16 Dec 2019 22:34:35 GMT
Accept-Ranges: bytes
Content-Length: 42173
Keep-Alive: timeout=5, max=83
Connection: Keep-Alive
Content-Type: image/jpeg

jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/GenerateIT

142.250.74.106

200 OK

0 B

URL HTTP/2
jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/GenerateIT
IP
142.250.74.106:0
ASN
#15169 GOOGLE

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

OPTIONS /$rpc/google.internal.waa.v1.Waa/GenerateIT HTTP/1.1
Host: jnn-pa.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type,x-goog-api-key,x-user-agent
Referer: https://www.youtube.com/
Origin: https://www.youtube.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
access-control-allow-origin: https://www.youtube.com
vary: origin, referer, x-origin
access-control-allow-credentials: true
access-control-allow-methods: DELETE,GET,HEAD,OPTIONS,PATCH,POST,PUT
access-control-allow-headers: content-type,x-goog-api-key,x-user-agent
access-control-max-age: 3600
date: Thu, 06 Oct 2022 19:15:12 GMT
content-type: text/html
server: ESF
content-length: 0
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/GenerateIT

142.250.74.106

200 OK

110 B

URL HTTP/2
jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/GenerateIT
IP
142.250.74.106:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with no line terminators
Size
110 B (110 bytes)
Hash
4819ea3e325b2ef7116e1e67098037c7
cb2afa2a02942204a54b7a07d48c048164f52e73
b4d54719238f284c93427868dcb2e8686e0cd15dbcb7513c0e8959234e89130d

HTTP Headers

POST /$rpc/google.internal.waa.v1.Waa/GenerateIT HTTP/1.1
Host: jnn-pa.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Goog-Api-Key: AIzaSyDyT5W0Jh49F30Pqqtyfdf7pDLFKLJoAnw
Content-Type: application/json+protobuf
X-User-Agent: grpc-web-javascript/0.1
Content-Length: 1070
Origin: https://www.youtube.com
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
content-type: application/json+protobuf; charset=UTF-8
vary: Origin, X-Origin, Referer
content-encoding: gzip
date: Thu, 06 Oct 2022 19:15:12 GMT
server: ESF
cache-control: private
content-length: 110
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
access-control-allow-origin: https://www.youtube.com
access-control-allow-credentials: true
access-control-expose-headers: vary,vary,vary,content-encoding,date,server,content-length
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

hbcsaude.com.br/wp-content/uploads/2014/06/fundo-site-verde-2.jpg

162.240.18.185

200 OK

191 kB

URL HTTP/1.1
hbcsaude.com.br/wp-content/uploads/2014/06/fundo-site-verde-2.jpg
IP
162.240.18.185:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
JPEG image data, JFIF standard 1.02, aspect ratio, density 100x100, segment length 16, baseline, precision 8, 1920x1080, components 3\012- data
Size
191 kB (190803 bytes)
Hash
af1d9808bcaf7900297980e524e0782b
2c651f1c4f4334fc03ed7ac7974f93feed3be1b2
42e8ff447daf3f5a4e8624d6cb4d86d9c16265a55d3b050e42be98d1c4e312da

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /wp-content/uploads/2014/06/fundo-site-verde-2.jpg HTTP/1.1
Host: hbcsaude.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://hbcsaude.com.br/
Cookie: wp_wpfileupload_adb5dcf7967adb2dbe37208297a0082d=CmRsETtKLHTw5jshLP9OaanqqbQxkeQx
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Thu, 06 Oct 2022 19:15:11 GMT
Server: Apache
Last-Modified: Tue, 17 Oct 2017 22:22:01 GMT
Accept-Ranges: bytes
Content-Length: 190803
Keep-Alive: timeout=5, max=83
Connection: Keep-Alive
Content-Type: image/jpeg

hbcsaude.com.br/wp-content/uploads/2020/03/bannerpost-500x350.jpg

162.240.18.185

200 OK

30 kB

URL HTTP/1.1
hbcsaude.com.br/wp-content/uploads/2020/03/bannerpost-500x350.jpg
IP
162.240.18.185:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 500x350, components 3\012- data
Size
30 kB (29613 bytes)
Hash
19f612b19ceba6b9493d541cea3759de
dc61e0517f69802bbd15a6acfebe900451bbf254
e580b6fe5141bfd8d08faf9c139c1bdd4545d217a42983d9e365e438c15e5f9f

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /wp-content/uploads/2020/03/bannerpost-500x350.jpg HTTP/1.1
Host: hbcsaude.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://hbcsaude.com.br/
Cookie: wp_wpfileupload_adb5dcf7967adb2dbe37208297a0082d=CmRsETtKLHTw5jshLP9OaanqqbQxkeQx
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Thu, 06 Oct 2022 19:15:12 GMT
Server: Apache
Last-Modified: Fri, 20 Mar 2020 00:18:44 GMT
Accept-Ranges: bytes
Content-Length: 29613
Keep-Alive: timeout=5, max=82
Connection: Keep-Alive
Content-Type: image/jpeg

hbcsaude.com.br/wp-content/uploads/2017/09/cigarro-500x350.jpg

162.240.18.185

200 OK

18 kB

URL HTTP/1.1
hbcsaude.com.br/wp-content/uploads/2017/09/cigarro-500x350.jpg
IP
162.240.18.185:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 82", baseline, precision 8, 500x350, components 3\012- data
Size
18 kB (18155 bytes)
Hash
aa82f66c42ffc987b04514525dcc072e
27e58fd97fa9b050f05f4712c17efd63edbe7591
b6b49ac9d390695e929ed78b8e1fd11baa26327b20108246e0dca96f6484158a

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /wp-content/uploads/2017/09/cigarro-500x350.jpg HTTP/1.1
Host: hbcsaude.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://hbcsaude.com.br/
Cookie: wp_wpfileupload_adb5dcf7967adb2dbe37208297a0082d=CmRsETtKLHTw5jshLP9OaanqqbQxkeQx
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Thu, 06 Oct 2022 19:15:12 GMT
Server: Apache
Last-Modified: Fri, 18 May 2018 15:17:14 GMT
Accept-Ranges: bytes
Content-Length: 18155
Keep-Alive: timeout=5, max=82
Connection: Keep-Alive
Content-Type: image/jpeg

hbcsaude.com.br/wp-content/uploads/2022/08/Slide03HBC.jpg

162.240.18.185

200 OK

146 kB

URL HTTP/1.1
hbcsaude.com.br/wp-content/uploads/2022/08/Slide03HBC.jpg
IP
162.240.18.185:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 1280x720, components 3\012- data
Size
146 kB (146007 bytes)
Hash
6ef8dead5d4add1f802954027df60751
f37a3dbac507c2ed8b48d1a83e9e6a7e97c70afe
e8fe72b002e5d32300acb52af25a234e64dd19573ba5f16ca0e3f54709d5554e

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /wp-content/uploads/2022/08/Slide03HBC.jpg HTTP/1.1
Host: hbcsaude.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://hbcsaude.com.br/
Cookie: wp_wpfileupload_adb5dcf7967adb2dbe37208297a0082d=CmRsETtKLHTw5jshLP9OaanqqbQxkeQx
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Thu, 06 Oct 2022 19:15:12 GMT
Server: Apache
Last-Modified: Tue, 09 Aug 2022 22:58:42 GMT
Accept-Ranges: bytes
Content-Length: 146007
Keep-Alive: timeout=5, max=82
Connection: Keep-Alive
Content-Type: image/jpeg

hbcsaude.com.br/wp-content/uploads/2017/10/HBC7546-500x350.jpg

162.240.18.185

200 OK

27 kB

URL HTTP/1.1
hbcsaude.com.br/wp-content/uploads/2017/10/HBC7546-500x350.jpg
IP
162.240.18.185:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 82", baseline, precision 8, 500x350, components 3\012- data
Size
27 kB (27279 bytes)
Hash
ccce9d9ec5fccca2d24d71bedb9806e0
18324bde2096f2013df9b1bcbb29cc840faf67b5
45a5160ea6b95f6df9ca9e135338e80d5d221a795aa15d2695cef4b8fd906d7b

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /wp-content/uploads/2017/10/HBC7546-500x350.jpg HTTP/1.1
Host: hbcsaude.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://hbcsaude.com.br/
Cookie: wp_wpfileupload_adb5dcf7967adb2dbe37208297a0082d=CmRsETtKLHTw5jshLP9OaanqqbQxkeQx
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Thu, 06 Oct 2022 19:15:12 GMT
Server: Apache
Last-Modified: Thu, 17 May 2018 15:44:50 GMT
Accept-Ranges: bytes
Content-Length: 27279
Keep-Alive: timeout=5, max=81
Connection: Keep-Alive
Content-Type: image/jpeg

hbcsaude.com.br/wp-content/uploads/2021/10/bigstock-Medical-physician-doctor-hands-84721406.png

162.240.18.185

200 OK

715 kB

URL HTTP/1.1
hbcsaude.com.br/wp-content/uploads/2021/10/bigstock-Medical-physician-doctor-hands-84721406.png
IP
162.240.18.185:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
PNG image data, 1422 x 701, 8-bit/color RGBA, non-interlaced\012- data
Size
715 kB (714760 bytes)
Hash
e594699e0f1e23a360647ee9b9858027
6a6dd8658f7168a039ae67f216b5b587e4006123
4078254808ff9b2fbc7b8350dd45301494792cc477a13e7703847475a210afcc

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /wp-content/uploads/2021/10/bigstock-Medical-physician-doctor-hands-84721406.png HTTP/1.1
Host: hbcsaude.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://hbcsaude.com.br/
Cookie: wp_wpfileupload_adb5dcf7967adb2dbe37208297a0082d=CmRsETtKLHTw5jshLP9OaanqqbQxkeQx
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Thu, 06 Oct 2022 19:15:11 GMT
Server: Apache
Last-Modified: Thu, 28 Oct 2021 02:51:00 GMT
Accept-Ranges: bytes
Content-Length: 714760
Keep-Alive: timeout=5, max=80
Connection: Keep-Alive
Content-Type: image/png

hbcsaude.com.br/wp-content/plugins/cookie-law-info/legacy/images/td_back.gif

162.240.18.185

200 OK

141 B

URL HTTP/1.1
hbcsaude.com.br/wp-content/plugins/cookie-law-info/legacy/images/td_back.gif
IP
162.240.18.185:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
GIF image data, version 89a, 2000 x 2\012- data
Size
141 B (141 bytes)
Hash
a551360d5d4066c870b637984eb1354d
14d0f2ee77bca90917ba734488748eda355bb857
1aee2fa9788e4730635a08157f32cfddd85c159e7452dedc8019d05ac05ce3a4

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /wp-content/plugins/cookie-law-info/legacy/images/td_back.gif HTTP/1.1
Host: hbcsaude.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://hbcsaude.com.br/
Cookie: wp_wpfileupload_adb5dcf7967adb2dbe37208297a0082d=CmRsETtKLHTw5jshLP9OaanqqbQxkeQx; cookielawinfo-checkbox-necessary=yes; cookielawinfo-checkbox-functional=no; cookielawinfo-checkbox-performance=no; cookielawinfo-checkbox-analytics=no; cookielawinfo-checkbox-advertisement=no; cookielawinfo-checkbox-others=no
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Thu, 06 Oct 2022 19:15:12 GMT
Server: Apache
Last-Modified: Mon, 03 Oct 2022 17:33:18 GMT
Accept-Ranges: bytes
Content-Length: 141
Keep-Alive: timeout=5, max=81
Connection: Keep-Alive
Content-Type: image/gif

hbcsaude.com.br/wp-admin/admin-ajax.php

162.240.18.185

400 Bad Request

21 B

URL HTTP/1.1
hbcsaude.com.br/wp-admin/admin-ajax.php
IP
162.240.18.185:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
very short file (no magic)
Size
21 B (21 bytes)
Hash
7ac8c27439ed6e2a30373651a2898777
1249bc89db36deb369d6388319453f015bd83e04
e240a7a561e7c84b32d4695ddc4c0d6c38a8e0c3f2581711c1971680f033437e

Detections

Analyzer	Verdict	Alert
fortinet	Malware
quad9	Sinkholed

HTTP Headers

POST /wp-admin/admin-ajax.php HTTP/1.1
Host: hbcsaude.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-www-form-urlencoded; charset=UTF-8
X-Requested-With: XMLHttpRequest
Content-Length: 23
Origin: https://hbcsaude.com.br
Connection: keep-alive
Referer: https://hbcsaude.com.br/
Cookie: wp_wpfileupload_adb5dcf7967adb2dbe37208297a0082d=CmRsETtKLHTw5jshLP9OaanqqbQxkeQx; cookielawinfo-checkbox-necessary=yes; cookielawinfo-checkbox-functional=no; cookielawinfo-checkbox-performance=no; cookielawinfo-checkbox-analytics=no; cookielawinfo-checkbox-advertisement=no; cookielawinfo-checkbox-others=no
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin

HTTP/1.1 400 Bad Request
Date: Thu, 06 Oct 2022 19:15:11 GMT
Server: Apache
Access-Control-Allow-Origin: https://hbcsaude.com.br
Access-Control-Allow-Credentials: true
X-Robots-Tag: noindex
X-Content-Type-Options: nosniff
X-Frame-Options: SAMEORIGIN
Referrer-Policy: strict-origin-when-cross-origin
Expires: Wed, 11 Jan 1984 05:00:00 GMT
Cache-Control: no-cache, must-revalidate, max-age=0
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 21
Connection: close
Content-Type: text/html; charset=UTF-8

hbcsaude.com.br/wp-content/uploads/2021/10/bigstock-Medical-physician-doctor-hands-84721406-mobile.jpg

162.240.18.185

200 OK

610 kB

URL HTTP/1.1
hbcsaude.com.br/wp-content/uploads/2021/10/bigstock-Medical-physician-doctor-hands-84721406-mobile.jpg
IP
162.240.18.185:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 300x300, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=4], baseline, precision 8, 361x398, components 4\012- data
Size
610 kB (610290 bytes)
Hash
71b41f7a18493923a187cb775234639c
acd8ac2890ae5013e14a3476f56e42d7024864c7
75e5e554c078aeec37d17064b45d6ff8d58e55046595e9bb1662ca42b0791aac

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /wp-content/uploads/2021/10/bigstock-Medical-physician-doctor-hands-84721406-mobile.jpg HTTP/1.1
Host: hbcsaude.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://hbcsaude.com.br/
Cookie: wp_wpfileupload_adb5dcf7967adb2dbe37208297a0082d=CmRsETtKLHTw5jshLP9OaanqqbQxkeQx; cookielawinfo-checkbox-necessary=yes; cookielawinfo-checkbox-functional=no; cookielawinfo-checkbox-performance=no; cookielawinfo-checkbox-analytics=no; cookielawinfo-checkbox-advertisement=no; cookielawinfo-checkbox-others=no
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Thu, 06 Oct 2022 19:15:12 GMT
Server: Apache
Last-Modified: Thu, 28 Oct 2021 02:50:46 GMT
Accept-Ranges: bytes
Content-Length: 610290
Keep-Alive: timeout=5, max=81
Connection: Keep-Alive
Content-Type: image/jpeg

hbcsaude.com.br/wp-content/uploads/2021/10/5.Banner_Hbc-1.png

162.240.18.185

200 OK

2.1 MB

URL HTTP/1.1
hbcsaude.com.br/wp-content/uploads/2021/10/5.Banner_Hbc-1.png
IP
162.240.18.185:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
PNG image data, 2960 x 1458, 8-bit/color RGB, non-interlaced\012- data
Size
2.1 MB (2085477 bytes)
Hash
f6f328f2e69ea05126e9cf8210e3c6dd
877e07eb9038af3311754e0e6741cdb770c433bd
991e91dd868e27f9fa3cbde17bdbb163a13a50bb5910b69fb5ef555df5e34224

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /wp-content/uploads/2021/10/5.Banner_Hbc-1.png HTTP/1.1
Host: hbcsaude.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://hbcsaude.com.br/
Cookie: wp_wpfileupload_adb5dcf7967adb2dbe37208297a0082d=CmRsETtKLHTw5jshLP9OaanqqbQxkeQx
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Thu, 06 Oct 2022 19:15:11 GMT
Server: Apache
Last-Modified: Tue, 19 Oct 2021 20:29:11 GMT
Accept-Ranges: bytes
Content-Length: 2085477
Keep-Alive: timeout=5, max=83
Connection: Keep-Alive
Content-Type: image/png

hbcsaude.com.br/wp-content/uploads/2017/09/cropped-c2-32x32.png

162.240.18.185

200 OK

1.2 kB

URL HTTP/1.1
hbcsaude.com.br/wp-content/uploads/2017/09/cropped-c2-32x32.png
IP
162.240.18.185:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
PNG image data, 32 x 32, 8-bit/color RGBA, non-interlaced\012- data
Size
1.2 kB (1213 bytes)
Hash
9e61de4229eb5ad5abbf2d7b81faa186
e6a4fc35b3a0f150cca490c7e72edff995197270
f6dc1b955ff355dfb2ff7db3834650a2555d888f3b844fa1cddb2c55086ab580

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /wp-content/uploads/2017/09/cropped-c2-32x32.png HTTP/1.1
Host: hbcsaude.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://hbcsaude.com.br/
Cookie: wp_wpfileupload_adb5dcf7967adb2dbe37208297a0082d=CmRsETtKLHTw5jshLP9OaanqqbQxkeQx; cookielawinfo-checkbox-necessary=yes; cookielawinfo-checkbox-functional=no; cookielawinfo-checkbox-performance=no; cookielawinfo-checkbox-analytics=no; cookielawinfo-checkbox-advertisement=no; cookielawinfo-checkbox-others=no
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Thu, 06 Oct 2022 19:15:13 GMT
Server: Apache
Last-Modified: Mon, 25 Sep 2017 23:16:41 GMT
Accept-Ranges: bytes
Content-Length: 1213
Keep-Alive: timeout=5, max=80
Connection: Keep-Alive
Content-Type: image/png

hbcsaude.com.br/wp-content/uploads/2017/09/cropped-c2-192x192.png

162.240.18.185

200 OK

16 kB

URL HTTP/1.1
hbcsaude.com.br/wp-content/uploads/2017/09/cropped-c2-192x192.png
IP
162.240.18.185:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
PNG image data, 192 x 192, 8-bit/color RGBA, non-interlaced\012- data
Size
16 kB (16147 bytes)
Hash
dc0e8d7a17be0afb4d2748171fb2e989
f785bb2efb19a7918d4b1518c8e094ff42ec4c65
9ecae9a84fbf63a9e48ea3d15f0a78199fd759880bf064e39bdb2420208f3a15

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /wp-content/uploads/2017/09/cropped-c2-192x192.png HTTP/1.1
Host: hbcsaude.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://hbcsaude.com.br/
Cookie: wp_wpfileupload_adb5dcf7967adb2dbe37208297a0082d=CmRsETtKLHTw5jshLP9OaanqqbQxkeQx; cookielawinfo-checkbox-necessary=yes; cookielawinfo-checkbox-functional=no; cookielawinfo-checkbox-performance=no; cookielawinfo-checkbox-analytics=no; cookielawinfo-checkbox-advertisement=no; cookielawinfo-checkbox-others=no
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Thu, 06 Oct 2022 19:15:13 GMT
Server: Apache
Last-Modified: Mon, 25 Sep 2017 23:16:41 GMT
Accept-Ranges: bytes
Content-Length: 16147
Keep-Alive: timeout=5, max=79
Connection: Keep-Alive
Content-Type: image/png

secure.gravatar.com/avatar/91bc53eadcee8cc2e015cc845a3c5e67?s=40&d=mm&r=g

192.0.73.2

200 OK

983 B

URL HTTP/2
secure.gravatar.com/avatar/91bc53eadcee8cc2e015cc845a3c5e67?s=40&d=mm&r=g
IP
192.0.73.2:0
ASN
#2635 AUTOMATTIC

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 90", baseline, precision 8, 40x40, components 3\012- data
Size
983 B (983 bytes)
Hash
75dfb23da6e6730d066e698773b3fd45
3b45961e6fcf7708b89f59d28b18edc96a641016
ca775cd8ab837239f9497e8afe90403d78cb37581c0adfe4003012d24bea020e

HTTP Headers

GET /avatar/91bc53eadcee8cc2e015cc845a3c5e67?s=40&d=mm&r=g HTTP/1.1
Host: secure.gravatar.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://hbcsaude.com.br/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
date: Thu, 06 Oct 2022 19:15:13 GMT
content-type: image/jpeg
content-length: 983
last-modified: Wed, 11 Jan 1984 08:00:00 GMT
link: <https://www.gravatar.com/avatar/91bc53eadcee8cc2e015cc845a3c5e67?s=40&d=mm&r=g>; rel="canonical"
access-control-allow-origin: *
content-disposition: inline; filename="91bc53eadcee8cc2e015cc845a3c5e67.png"
expires: Thu, 06 Oct 2022 19:20:13 GMT
cache-control: max-age=300
x-nc: MISS arn 4
accept-ranges: bytes
X-Firefox-Spdy: h2

www.youtube.com/embed/ZhZq4vPVxUA

142.250.74.14

200 OK

0 B

URL HTTP/2
www.youtube.com/embed/ZhZq4vPVxUA
IP
142.250.74.14:0
ASN
#15169 GOOGLE

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /embed/ZhZq4vPVxUA HTTP/1.1
Host: www.youtube.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://hbcsaude.com.br/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: text/html; charset=utf-8
x-content-type-options: nosniff
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Thu, 06 Oct 2022 19:15:10 GMT
strict-transport-security: max-age=31536000
cross-origin-opener-policy-report-only: same-origin; report-to="youtube_main"
report-to: {"group":"youtube_main","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/youtube_main"}]}
permissions-policy: ch-ua-arch=*, ch-ua-bitness=*, ch-ua-full-version=*, ch-ua-full-version-list=*, ch-ua-model=*, ch-ua-wow64=*, ch-ua-platform=*, ch-ua-platform-version=*
p3p: CP="This is not a P3P policy! See http://support.google.com/accounts/answer/151657?hl=en for more info."
content-encoding: br
server: ESF
x-xss-protection: 0
set-cookie: YSC=8_ciFtCsWz8; Domain=.youtube.com; Path=/; Secure; HttpOnly; SameSite=none
VISITOR_INFO1_LIVE=osFPuxiACLw; Domain=.youtube.com; Expires=Tue, 04-Apr-2023 19:15:10 GMT; Path=/; Secure; HttpOnly; SameSite=none
CONSENT=PENDING+992; expires=Sat, 05-Oct-2024 19:15:10 GMT; path=/; domain=.youtube.com; Secure
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

www.youtube.com/s/player/55fdc514/player_ias.vflset/en_US/base.js

142.250.74.14

200 OK

0 B

URL HTTP/2
www.youtube.com/s/player/55fdc514/player_ias.vflset/en_US/base.js
IP
142.250.74.14:0
ASN
#15169 GOOGLE

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /s/player/55fdc514/player_ias.vflset/en_US/base.js HTTP/1.1
Host: www.youtube.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.youtube.com/embed/ZhZq4vPVxUA
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
vary: Accept-Encoding, Origin
content-encoding: br
accept-ranges: bytes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="youtube"
report-to: {"group":"youtube","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/youtube"}]}
content-length: 592045
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 05 Oct 2022 14:57:40 GMT
expires: Thu, 05 Oct 2023 14:57:40 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 05 Oct 2022 00:20:53 GMT
content-type: text/javascript
age: 101850
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

OpenPhish

PhishTank

Fortinet's Web Filter

mnemonic secure dns

Quad9 DNS

JavaScript (198)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations