www.portaldedoacao.com.br/Ede34/well-fargo/card.php
192.99.250.118301 Moved Permanently 267 B URL HTTP/1.1 www.portaldedoacao.com.br/Ede34/well-fargo/card.php
IP 192.99.250.118:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash eebe3b97aafcc5c39875778b1b0c94e0
8e9af1c6a3bc8fbc358eff5723b24fd4614b197f
ca3521c6e53c2d5300f336cd14c232c2c15d41e258cedd6f79fbedcb3473cf7a
Analyzer Verdict Alert fortinet Phishing
GET /Ede34/well-fargo/card.php HTTP/1.1
Host: www.portaldedoacao.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Date: Sun, 29 Jan 2023 12:27:12 GMT
Server: Apache
Location: https://www.portaldedoacao.com.br/Ede34/well-fargo/card.php
Content-Length: 267
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash a2104f935c638b4767ca5ae0d738ef23
85c6af15af749be0ceeae6de17c36925b750f166
5d4789a3696bd7faa9916768cb627bbc89bf70a756d80e53860cbac13c2bc8b1
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "5D4789A3696BD7FAA9916768CB627BBC89BF70A756D80E53860CBAC13C2BC8B1"
Last-Modified: Fri, 27 Jan 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9793
Expires: Sun, 29 Jan 2023 15:10:26 GMT
Date: Sun, 29 Jan 2023 12:27:13 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 3eb88dea4fe00db1182370e72683c3ab
ca520abf1e91bfd2aef40c6a1270a911071e8922
d8083ee567c7b3023111dc30f32c94237df7db30d4d2daaea0a569e8a3069ad7
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D8083EE567C7B3023111DC30F32C94237DF7DB30D4D2DAAEA0A569E8A3069AD7"
Last-Modified: Sat, 28 Jan 2023 16:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9781
Expires: Sun, 29 Jan 2023 15:10:14 GMT
Date: Sun, 29 Jan 2023 12:27:13 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 03092d1a1bc7ac91ee342a1a7ab2a562
52db06ce1fd2c74ddd36b6a0a7aee1b5c891600a
03b8ff2629abac9fc30ebec059c2e2018fcbc41646ad5f71c965ff630fbf1ffd
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "03B8FF2629ABAC9FC30EBEC059C2E2018FCBC41646AD5F71C965FF630FBF1FFD"
Last-Modified: Fri, 27 Jan 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11314
Expires: Sun, 29 Jan 2023 15:35:47 GMT
Date: Sun, 29 Jan 2023 12:27:13 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
35.241.9.150200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash dcd75ca6daca51c5e39d431468511793
07f76d3bf23d65c9110d810fa71a994e39e085d3
73672a816da4450fe2c938b08d7ae002d9ca29fdcbd3e29cc97084d826f8b459
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Type, Backoff, Content-Length, Alert, Retry-After
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Sun, 29 Jan 2023 11:43:08 GMT
content-type: application/json
age: 2645
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash 7b922915ebf1fa3639b333f994c74f24
144a3f80b98fd0652d4614f24cf6cbbee40f8938
adbb3e06df0e870f5c7a9cb81e8979d4e92735853d75c9b779c06470d4db5d9c
GET /chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: WHS9SMSHO7yNwLY7heiivdWvjgq8tDrY3Byyb0rf49zsLsZeWpvvc0BSqFwDgdr3avZ2IHP1bQI=
x-amz-request-id: 81ES7R46PS4MRZ8A
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Sun, 29 Jan 2023 11:50:18 GMT
age: 2215
last-modified: Mon, 09 Jan 2023 18:04:21 GMT
etag: "7b922915ebf1fa3639b333f994c74f24"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Sun, 29 Jan 2023 12:27:13 GMT
content-type: application/json
content-length: 12
access-control-expose-headers: content-type
access-control-allow-credentials: true
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
35.241.9.150200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Backoff, Pragma, Last-Modified, ETag, Content-Length, Expires, Cache-Control, Retry-After, Content-Type, Alert
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Sun, 29 Jan 2023 11:49:04 GMT
age: 2289
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 16a7b6a7128312e2f985d30df18c4487
6017bff79ffb525d9c7f9f32b999b74b5dc69602
663fd12209627f08e759c2ed1c76278a5da79dae1e0b46082dd1bb44775f7a16
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "663FD12209627F08E759C2ED1C76278A5DA79DAE1E0B46082DD1BB44775F7A16"
Last-Modified: Fri, 27 Jan 2023 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8137
Expires: Sun, 29 Jan 2023 14:42:50 GMT
Date: Sun, 29 Jan 2023 12:27:13 GMT
Connection: keep-alive
www.portaldedoacao.com.br/Ede34/well-fargo/card.php
192.99.250.118404 Not Found 12 kB URL HTTP/1.1 www.portaldedoacao.com.br/Ede34/well-fargo/card.php
IP 192.99.250.118:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (8047), with CRLF, LF line terminators
Hash 7f774044b444ee8740233efec73e1876
fba0fa9569250459bb134f76988d769e2099bc82
414900a0a82dec125a127573da4f6a12700fbd9c76bd35d381a82f435e545f55
Analyzer Verdict Alert fortinet Phishing
GET /Ede34/well-fargo/card.php HTTP/1.1
Host: www.portaldedoacao.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/1.1 404 Not Found
Date: Sun, 29 Jan 2023 12:27:13 GMT
Server: Apache
Pragma: no-cache
X-LiteSpeed-Tag: 3f6_HTTP.404
Expires: Wed, 11 Jan 1984 05:00:00 GMT
Cache-Control: no-cache, must-revalidate, max-age=0
Link: <https://www.portaldedoacao.com.br/wp-json/>; rel="https://api.w.org/"
Content-Encoding: gzip
Vary: Accept-Encoding
Set-Cookie: PHPSESSID=aa4abb33b25572e3f2dda7049ab92124; path=/; secure; HttpOnly
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: text/html; charset=UTF-8
www.portaldedoacao.com.br/wp-content/themes/shopdodentista/fancy/fancybox/jquery.fancybox-1.3.4.css
192.99.250.118200 OK 1.6 kB URL HTTP/1.1 www.portaldedoacao.com.br/wp-content/themes/shopdodentista/fancy/fancybox/jquery.fancybox-1.3.4.css
IP 192.99.250.118:0
Hash b0cd6a94dbb4fed7017579908797e11b
b7ebaf624dfd219452b6d2b88c9c924b89befcfb
4878af13d69664669c91c0fafe6bebf24a67192d58dc3b16811d28ba86743f6a
GET /wp-content/themes/shopdodentista/fancy/fancybox/jquery.fancybox-1.3.4.css HTTP/1.1
Host: www.portaldedoacao.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.portaldedoacao.com.br/Ede34/well-fargo/card.php
Cookie: PHPSESSID=aa4abb33b25572e3f2dda7049ab92124
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sun, 29 Jan 2023 12:27:14 GMT
Server: Apache
Last-Modified: Fri, 17 Apr 2020 18:18:21 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: br
Content-Length: 1584
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: text/css
push.services.mozilla.com/
34.216.86.11101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 34.216.86.11:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: kpKFod0dfZCkkCuD3bk6Gg==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: jujKUL7hODLD1jPaaGzJd369iNg=
www.portaldedoacao.com.br/wp-includes/css/dist/block-library/style.min.css?ver=f5d11b7ff646edd0ba81e6528225b278
192.99.250.118200 OK 11 kB URL HTTP/1.1 www.portaldedoacao.com.br/wp-includes/css/dist/block-library/style.min.css?ver=f5d11b7ff646edd0ba81e6528225b278
IP 192.99.250.118:0
File type ASCII text, with very long lines (43771)
Hash 069a79d16ded6a02071f286cd2025c44
dd5970e01b8a10dadcf074f72a1c8095f25e947a
78261bccee805c6913bf7e23e2e25314f05f690300a77a40ca36e1e516b20203
GET /wp-includes/css/dist/block-library/style.min.css?ver=f5d11b7ff646edd0ba81e6528225b278 HTTP/1.1
Host: www.portaldedoacao.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.portaldedoacao.com.br/Ede34/well-fargo/card.php
Cookie: PHPSESSID=aa4abb33b25572e3f2dda7049ab92124
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sun, 29 Jan 2023 12:27:14 GMT
Server: Apache
Last-Modified: Tue, 02 Aug 2022 00:26:41 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: br
Content-Length: 10912
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: text/css
www.portaldedoacao.com.br/wp-content/themes/shopdodentista/css/jquery.bxslider.css
192.99.250.118200 OK 1.0 kB URL HTTP/1.1 www.portaldedoacao.com.br/wp-content/themes/shopdodentista/css/jquery.bxslider.css
IP 192.99.250.118:0
Hash bcbdebf26083caca3dc4ab4b1a2034b8
9113406076d2b59aad4ac1b3e2225519ec7f2267
a29d603f74aad7f149e8091ae2cb7f420290d8d539ca17c0c84b9e07fc1f853e
GET /wp-content/themes/shopdodentista/css/jquery.bxslider.css HTTP/1.1
Host: www.portaldedoacao.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.portaldedoacao.com.br/Ede34/well-fargo/card.php
Cookie: PHPSESSID=aa4abb33b25572e3f2dda7049ab92124
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sun, 29 Jan 2023 12:27:14 GMT
Server: Apache
Last-Modified: Fri, 17 Apr 2020 17:38:46 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: br
Content-Length: 1011
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/css
www.portaldedoacao.com.br/wp-content/plugins/woocommerce/assets/css/woocommerce.css?ver=6.7.0
192.99.250.118200 OK 8.4 kB URL HTTP/1.1 www.portaldedoacao.com.br/wp-content/plugins/woocommerce/assets/css/woocommerce.css?ver=6.7.0
IP 192.99.250.118:0
File type Unicode text, UTF-8 text, with very long lines (62753), with no line terminators
Hash d47469328b2f9b4c3541ba29d9993cd4
3eb3a267d481f7de256996eb3143e06943b1926d
053a4aa72d5b4a69354da9d55fda953226ed3765c66f550559765111dcc04cd9
GET /wp-content/plugins/woocommerce/assets/css/woocommerce.css?ver=6.7.0 HTTP/1.1
Host: www.portaldedoacao.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.portaldedoacao.com.br/Ede34/well-fargo/card.php
Cookie: PHPSESSID=aa4abb33b25572e3f2dda7049ab92124
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sun, 29 Jan 2023 12:27:14 GMT
Server: Apache
Last-Modified: Tue, 02 Aug 2022 00:05:38 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: br
Content-Length: 8443
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: text/css
www.portaldedoacao.com.br/wp-content/plugins/woocommerce/packages/woocommerce-blocks/build/wc-blocks-vendors-style.css?ver=7.8.3
192.99.250.118200 OK 1.1 kB URL HTTP/1.1 www.portaldedoacao.com.br/wp-content/plugins/woocommerce/packages/woocommerce-blocks/build/wc-blocks-vendors-style.css?ver=7.8.3
IP 192.99.250.118:0
File type ASCII text, with very long lines (4933), with no line terminators
Hash 3029e2a6d3b1a6a511dbde8b5a0d85fc
1d1269cf17ca8cbbef9a7e13a877529a82099689
747fbbc0f2cff079a6fe042d2562b9961464422e037f1d8ba3d1f67da6aa9c05
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/woocommerce/packages/woocommerce-blocks/build/wc-blocks-vendors-style.css?ver=7.8.3 HTTP/1.1
Host: www.portaldedoacao.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.portaldedoacao.com.br/Ede34/well-fargo/card.php
Cookie: PHPSESSID=aa4abb33b25572e3f2dda7049ab92124
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sun, 29 Jan 2023 12:27:14 GMT
Server: Apache
Last-Modified: Tue, 02 Aug 2022 00:05:17 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: br
Content-Length: 1111
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/css
www.portaldedoacao.com.br/wp-content/plugins/contact-form-7/includes/css/styles.css?ver=5.6.3
192.99.250.118200 OK 849 B URL HTTP/1.1 www.portaldedoacao.com.br/wp-content/plugins/contact-form-7/includes/css/styles.css?ver=5.6.3
IP 192.99.250.118:0
Hash 206db6362f8b7f33b19b3cdbd3a9d057
8985a296fa427906875c57f2725c5b44488a7ab3
649ae4ae461fd7aadfc63f0cb914cb996e2559778721f82dc40daacc06c595d2
GET /wp-content/plugins/contact-form-7/includes/css/styles.css?ver=5.6.3 HTTP/1.1
Host: www.portaldedoacao.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.portaldedoacao.com.br/Ede34/well-fargo/card.php
Cookie: PHPSESSID=aa4abb33b25572e3f2dda7049ab92124
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sun, 29 Jan 2023 12:27:14 GMT
Server: Apache
Last-Modified: Tue, 13 Sep 2022 21:16:32 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: br
Content-Length: 849
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/css
www.portaldedoacao.com.br/wp-content/plugins/woocommerce/assets/css/woocommerce-layout.css?ver=6.7.0
192.99.250.118200 OK 2.3 kB URL HTTP/1.1 www.portaldedoacao.com.br/wp-content/plugins/woocommerce/assets/css/woocommerce-layout.css?ver=6.7.0
IP 192.99.250.118:0
File type ASCII text, with very long lines (17809), with no line terminators
Hash 728b3627ff8d1e1e31f8c48d8f114dd3
cba1c0a73141da181b90e3c82f0f4353277aeda9
8de326a758d4afb800629c072b13c32d377aa8b3487a5cec9d3bf14d3f973fbc
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/woocommerce/assets/css/woocommerce-layout.css?ver=6.7.0 HTTP/1.1
Host: www.portaldedoacao.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.portaldedoacao.com.br/Ede34/well-fargo/card.php
Cookie: PHPSESSID=aa4abb33b25572e3f2dda7049ab92124
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sun, 29 Jan 2023 12:27:14 GMT
Server: Apache
Last-Modified: Tue, 02 Aug 2022 00:05:37 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: br
Content-Length: 2330
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/css
www.portaldedoacao.com.br/wp-content/themes/shopdodentista/style.css
192.99.250.118200 OK 978 B URL HTTP/1.1 www.portaldedoacao.com.br/wp-content/themes/shopdodentista/style.css
IP 192.99.250.118:0
File type ASCII text, with very long lines (716)
Hash 4a2bcd5e2ec5bbc9f34a5b3443ca0c79
59888e6ff7ce318c48856b66bb2843bd8be04aaa
4aa67ba79c6890d69458e4fddca7502cd844071be7af42cc3fc0f0c0ec0c5d5a
GET /wp-content/themes/shopdodentista/style.css HTTP/1.1
Host: www.portaldedoacao.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.portaldedoacao.com.br/Ede34/well-fargo/card.php
Cookie: PHPSESSID=aa4abb33b25572e3f2dda7049ab92124
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sun, 29 Jan 2023 12:27:14 GMT
Server: Apache
Last-Modified: Thu, 30 Dec 2021 16:22:29 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: br
Content-Length: 978
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: text/css
www.portaldedoacao.com.br/wp-content/themes/shopdodentista/css/responsive.css
192.99.250.118200 OK 3.8 kB URL HTTP/1.1 www.portaldedoacao.com.br/wp-content/themes/shopdodentista/css/responsive.css
IP 192.99.250.118:0
Hash 093356a63bc385c9138ab4f5f7b39e45
584927295166d18638d169e6c85420a9dd3dd69f
0f885511910b9f5db2f84feb93ed08c2fc28472f56cff1899cbaad05ca6de135
GET /wp-content/themes/shopdodentista/css/responsive.css HTTP/1.1
Host: www.portaldedoacao.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.portaldedoacao.com.br/Ede34/well-fargo/card.php
Cookie: PHPSESSID=aa4abb33b25572e3f2dda7049ab92124
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sun, 29 Jan 2023 12:27:14 GMT
Server: Apache
Last-Modified: Fri, 17 Apr 2020 17:38:52 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: br
Content-Length: 3780
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: text/css
www.portaldedoacao.com.br/wp-content/plugins/contact-form-7/includes/swv/js/index.js?ver=5.6.3
192.99.250.118200 OK 2.8 kB URL HTTP/1.1 www.portaldedoacao.com.br/wp-content/plugins/contact-form-7/includes/swv/js/index.js?ver=5.6.3
IP 192.99.250.118:0
File type ASCII text, with very long lines (9680), with no line terminators
Hash 7645c326acd4c17501ecf4a6057b8676
81c59d61795c5c52394866f826ea111407e521fe
e780028e160e689527fe0040bfb6b7cbb3665ac56fe2464e965678dd0c12becd
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/contact-form-7/includes/swv/js/index.js?ver=5.6.3 HTTP/1.1
Host: www.portaldedoacao.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.portaldedoacao.com.br/Ede34/well-fargo/card.php
Cookie: PHPSESSID=aa4abb33b25572e3f2dda7049ab92124
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sun, 29 Jan 2023 12:27:14 GMT
Server: Apache
Last-Modified: Tue, 13 Sep 2022 21:16:33 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: br
Content-Length: 2798
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: application/javascript
www.portaldedoacao.com.br/wp-content/plugins/woocommerce/packages/woocommerce-blocks/build/wc-blocks-style.css?ver=7.8.3
192.99.250.118200 OK 20 kB URL HTTP/1.1 www.portaldedoacao.com.br/wp-content/plugins/woocommerce/packages/woocommerce-blocks/build/wc-blocks-style.css?ver=7.8.3
IP 192.99.250.118:0
File type Unicode text, UTF-8 text, with very long lines (65527), with no line terminators
Hash eb1088ccf959538da14b59187dafec4f
7483fff71b9970d452424a245652c79d2d57dee1
251da1eda90b0502ca3a651f4147101dd9ea4562a0ce73cfbf53f494c37f054b
GET /wp-content/plugins/woocommerce/packages/woocommerce-blocks/build/wc-blocks-style.css?ver=7.8.3 HTTP/1.1
Host: www.portaldedoacao.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.portaldedoacao.com.br/Ede34/well-fargo/card.php
Cookie: PHPSESSID=aa4abb33b25572e3f2dda7049ab92124
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sun, 29 Jan 2023 12:27:14 GMT
Server: Apache
Last-Modified: Tue, 02 Aug 2022 00:05:17 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: br
Content-Length: 20267
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/css
www.portaldedoacao.com.br/wp-content/plugins/contact-form-7/includes/js/index.js?ver=5.6.3
192.99.250.118200 OK 3.7 kB URL HTTP/1.1 www.portaldedoacao.com.br/wp-content/plugins/contact-form-7/includes/js/index.js?ver=5.6.3
IP 192.99.250.118:0
File type HTML document, ASCII text, with very long lines (12211), with no line terminators
Hash c08a16213ed1832b05b8110d7b1a7a9c
24e2988f443274c1c88e6215e47206b785297a33
1344f4ec6912a35edd4bfe2c9a2ae0021f1a8bb4f4c8cb1fdda2a116c52512d3
GET /wp-content/plugins/contact-form-7/includes/js/index.js?ver=5.6.3 HTTP/1.1
Host: www.portaldedoacao.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.portaldedoacao.com.br/Ede34/well-fargo/card.php
Cookie: PHPSESSID=aa4abb33b25572e3f2dda7049ab92124
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sun, 29 Jan 2023 12:27:14 GMT
Server: Apache
Last-Modified: Tue, 13 Sep 2022 21:16:32 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: br
Content-Length: 3691
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: application/javascript
www.portaldedoacao.com.br/wp-content/themes/shopdodentista/css/style.css
192.99.250.118200 OK 24 kB URL HTTP/1.1 www.portaldedoacao.com.br/wp-content/themes/shopdodentista/css/style.css
IP 192.99.250.118:0
Hash e7cd60ee706130dc5ccb3962567a30b6
be9671fcfe47ead576f7d8d2f2793b15f0d74c8d
02bdabc9f61779bfded648d842e1ee769dd1de5351228923757681cb688afe9f
GET /wp-content/themes/shopdodentista/css/style.css HTTP/1.1
Host: www.portaldedoacao.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.portaldedoacao.com.br/Ede34/well-fargo/card.php
Cookie: PHPSESSID=aa4abb33b25572e3f2dda7049ab92124
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sun, 29 Jan 2023 12:27:14 GMT
Server: Apache
Last-Modified: Sun, 21 Nov 2021 12:15:04 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: br
Content-Length: 23637
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: text/css
ocsp.digicert.com/
93.184.220.29200 OK 278 B IP 93.184.220.29:0
Hash a10c6e58c3b2d93009af0bbf0c1b9876
e1770e14d56bf4f92719aeaf44dc21933230a7d2
ed84c78a7315e66162a609a32a50ebb016243e8f8516248e09531eeef0c3b5ab
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5795
Cache-Control: max-age=90972
Content-Type: application/ocsp-response
Date: Sun, 29 Jan 2023 12:27:14 GMT
Etag: "63d50fdb-116"
Expires: Mon, 30 Jan 2023 13:43:26 GMT
Last-Modified: Sat, 28 Jan 2023 12:06:51 GMT
Server: ECS (ska/F71E)
X-Cache: HIT
Content-Length: 278
www.portaldedoacao.com.br/wp-content/plugins/woocommerce/assets/js/jquery-blockui/jquery.blockUI.min.js?ver=2.7.0-wc.6.7.0
192.99.250.118200 OK 3.2 kB URL HTTP/1.1 www.portaldedoacao.com.br/wp-content/plugins/woocommerce/assets/js/jquery-blockui/jquery.blockUI.min.js?ver=2.7.0-wc.6.7.0
IP 192.99.250.118:0
File type ASCII text, with very long lines (9139)
Hash 75d317bc33d2b7fbc8dda9610accdfc1
311b1c62b413f83a53efeb1390ee66187d395a61
b51002d703891c20cfd8d4ee7313f85012d81a32db13519f31a96d73f3027642
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/woocommerce/assets/js/jquery-blockui/jquery.blockUI.min.js?ver=2.7.0-wc.6.7.0 HTTP/1.1
Host: www.portaldedoacao.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.portaldedoacao.com.br/Ede34/well-fargo/card.php
Cookie: PHPSESSID=aa4abb33b25572e3f2dda7049ab92124
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sun, 29 Jan 2023 12:27:14 GMT
Server: Apache
Last-Modified: Tue, 02 Aug 2022 00:05:40 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: br
Content-Length: 3248
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive
Content-Type: application/javascript
www.portaldedoacao.com.br/wp-content/plugins/woocommerce/assets/js/frontend/add-to-cart.min.js?ver=6.7.0
192.99.250.118200 OK 974 B URL HTTP/1.1 www.portaldedoacao.com.br/wp-content/plugins/woocommerce/assets/js/frontend/add-to-cart.min.js?ver=6.7.0
IP 192.99.250.118:0
File type HTML document, ASCII text, with very long lines (3037), with no line terminators
Hash 40218fb136bda5c2cfee8516536bd958
de56391d1959fd40b8eab579be5d167c98355464
892f2ca3e12014023dc9f975d7a8a06b37bac9e37df85a15a2e958a3f5dc2c06
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/woocommerce/assets/js/frontend/add-to-cart.min.js?ver=6.7.0 HTTP/1.1
Host: www.portaldedoacao.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.portaldedoacao.com.br/Ede34/well-fargo/card.php
Cookie: PHPSESSID=aa4abb33b25572e3f2dda7049ab92124
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sun, 29 Jan 2023 12:27:14 GMT
Server: Apache
Last-Modified: Tue, 02 Aug 2022 00:05:39 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: br
Content-Length: 974
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: application/javascript
www.portaldedoacao.com.br/wp-content/plugins/woocommerce/assets/js/js-cookie/js.cookie.min.js?ver=2.1.4-wc.6.7.0
192.99.250.118200 OK 900 B URL HTTP/1.1 www.portaldedoacao.com.br/wp-content/plugins/woocommerce/assets/js/js-cookie/js.cookie.min.js?ver=2.1.4-wc.6.7.0
IP 192.99.250.118:0
File type ASCII text, with very long lines (1668)
Hash bae8297b8ca8146040b803dc6f000cc6
b4f1e509a6b5145c72a5915d8a1ed16ca78fe88d
f5190f093f79861ec3bb71ed1a5846e2a29f5340ea21ae3147ee93ced34846ad
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/woocommerce/assets/js/js-cookie/js.cookie.min.js?ver=2.1.4-wc.6.7.0 HTTP/1.1
Host: www.portaldedoacao.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.portaldedoacao.com.br/Ede34/well-fargo/card.php
Cookie: PHPSESSID=aa4abb33b25572e3f2dda7049ab92124
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sun, 29 Jan 2023 12:27:14 GMT
Server: Apache
Last-Modified: Tue, 02 Aug 2022 00:05:39 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: br
Content-Length: 900
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: application/javascript
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 8c630e9bbc930d1c367efa81b67be3f7
ec536695531d40a813d99a06271c7c2d698d51d3
39ca0a60c3e2e85712757ead0830d0da82beac1e4f44b6e90243e5ca9326bf4b
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 29 Jan 2023 12:27:14 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.portaldedoacao.com.br/wp-content/plugins/woocommerce/assets/js/frontend/woocommerce.min.js?ver=6.7.0
192.99.250.118200 OK 679 B URL HTTP/1.1 www.portaldedoacao.com.br/wp-content/plugins/woocommerce/assets/js/frontend/woocommerce.min.js?ver=6.7.0
IP 192.99.250.118:0
File type ASCII text, with very long lines (2139), with no line terminators
Hash 5e1de0f81a6d91def6c7c83565a063f7
68c09e81c28067e11f86678389df2e548e5fcaaf
3e366ca3b7bf9e91bd95d83f05d47552d46501d6c9b1fdd908e732ea38ede24d
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/woocommerce/assets/js/frontend/woocommerce.min.js?ver=6.7.0 HTTP/1.1
Host: www.portaldedoacao.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.portaldedoacao.com.br/Ede34/well-fargo/card.php
Cookie: PHPSESSID=aa4abb33b25572e3f2dda7049ab92124
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sun, 29 Jan 2023 12:27:14 GMT
Server: Apache
Last-Modified: Tue, 02 Aug 2022 00:05:39 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: br
Content-Length: 679
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: application/javascript
www.portaldedoacao.com.br/wp-content/plugins/woocommerce/assets/js/frontend/cart-fragments.min.js?ver=6.7.0
192.99.250.118200 OK 935 B URL HTTP/1.1 www.portaldedoacao.com.br/wp-content/plugins/woocommerce/assets/js/frontend/cart-fragments.min.js?ver=6.7.0
IP 192.99.250.118:0
File type ASCII text, with very long lines (2938), with no line terminators
Hash 8808678d7771c96dfe8184d45afcf631
45ccea61b128e2e3d4898e90aee81f2ff2c0e021
117013c483418a69683244390c6b355ca9d764aaec7cd336adc3e0f3e7f00a54
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/woocommerce/assets/js/frontend/cart-fragments.min.js?ver=6.7.0 HTTP/1.1
Host: www.portaldedoacao.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.portaldedoacao.com.br/Ede34/well-fargo/card.php
Cookie: PHPSESSID=aa4abb33b25572e3f2dda7049ab92124
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sun, 29 Jan 2023 12:27:14 GMT
Server: Apache
Last-Modified: Tue, 02 Aug 2022 00:05:39 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: br
Content-Length: 935
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: application/javascript
maps.googleapis.com/maps/api/js?key=AIzaSyCRvBPo3-t31YFk588DpMYS6EqKf-oGBSI&ver=f5d11b7ff646edd0ba81e6528225b278
142.250.74.138200 OK 53 kB URL HTTP/2 maps.googleapis.com/maps/api/js?key=AIzaSyCRvBPo3-t31YFk588DpMYS6EqKf-oGBSI&ver=f5d11b7ff646edd0ba81e6528225b278
IP 142.250.74.138:0
File type ASCII text, with very long lines (2453)
Hash a6b5e1cedb8218525e7370c0f9717fdb
aa01e54f97cbd911d85ac3eab760745108aa3010
e5d0e7177b6c2cb9c3d27ba3676c50d353a3861e8553da30e4a5e71a7e59d7d8
GET /maps/api/js?key=AIzaSyCRvBPo3-t31YFk588DpMYS6EqKf-oGBSI&ver=f5d11b7ff646edd0ba81e6528225b278 HTTP/1.1
Host: maps.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.portaldedoacao.com.br/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/javascript; charset=UTF-8
date: Sun, 29 Jan 2023 12:27:14 GMT
expires: Sun, 29 Jan 2023 12:57:14 GMT
cache-control: public, max-age=1800
vary: Accept-Language
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
content-encoding: gzip
server: mafe
content-length: 52799
x-xss-protection: 0
x-frame-options: SAMEORIGIN
server-timing: gfet4t7; dur=39
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
www.portaldedoacao.com.br/wp-content/themes/shopdodentista/js/gmap.js?ver=f5d11b7ff646edd0ba81e6528225b278
192.99.250.118200 OK 8.7 kB URL HTTP/1.1 www.portaldedoacao.com.br/wp-content/themes/shopdodentista/js/gmap.js?ver=f5d11b7ff646edd0ba81e6528225b278
IP 192.99.250.118:0
File type ASCII text, with very long lines (30508)
Hash 112eb9462817492f3b42d6cbcb3e64fe
aabcc6f790baef0f33c05f8c71ec2b63a81829e7
7254c97bee5ac8c0440f210f5b1785ec4b50d86051ee353e0c7a4c6eccb6de48
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/shopdodentista/js/gmap.js?ver=f5d11b7ff646edd0ba81e6528225b278 HTTP/1.1
Host: www.portaldedoacao.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.portaldedoacao.com.br/Ede34/well-fargo/card.php
Cookie: PHPSESSID=aa4abb33b25572e3f2dda7049ab92124
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sun, 29 Jan 2023 12:27:14 GMT
Server: Apache
Last-Modified: Mon, 22 Nov 2021 23:20:04 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: br
Content-Length: 8733
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: application/javascript
www.portaldedoacao.com.br/wp-content/themes/shopdodentista/js/bootstrap.min.js?ver=f5d11b7ff646edd0ba81e6528225b278
192.99.250.118200 OK 9.4 kB URL HTTP/1.1 www.portaldedoacao.com.br/wp-content/themes/shopdodentista/js/bootstrap.min.js?ver=f5d11b7ff646edd0ba81e6528225b278
IP 192.99.250.118:0
File type ASCII text, with very long lines (32034)
Hash f6d0451c85eea39066e8da63fc7d3bd7
8a6dcc5122629bda3419ff430639afd072ee3abc
78b444e65f19c20452ddb9e133cc440c8e24a097ccfc6644ce04faf7e14b3f27
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/shopdodentista/js/bootstrap.min.js?ver=f5d11b7ff646edd0ba81e6528225b278 HTTP/1.1
Host: www.portaldedoacao.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.portaldedoacao.com.br/Ede34/well-fargo/card.php
Cookie: PHPSESSID=aa4abb33b25572e3f2dda7049ab92124
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sun, 29 Jan 2023 12:27:14 GMT
Server: Apache
Last-Modified: Mon, 22 Nov 2021 23:20:04 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: br
Content-Length: 9430
Keep-Alive: timeout=5, max=94
Connection: Keep-Alive
Content-Type: application/javascript
www.portaldedoacao.com.br/wp-content/themes/shopdodentista/js/owl.carousel.min.js?ver=f5d11b7ff646edd0ba81e6528225b278
192.99.250.118200 OK 10 kB URL HTTP/1.1 www.portaldedoacao.com.br/wp-content/themes/shopdodentista/js/owl.carousel.min.js?ver=f5d11b7ff646edd0ba81e6528225b278
IP 192.99.250.118:0
File type ASCII text, with very long lines (32068)
Hash 4245e427db040181bcf1c3d6e54c01a7
c04c24889f020e77a92959dd51c2e45ae1e0d20f
5253628b6e685f56edb635cbee54c4055f44da1c5f7057494fe1ace8153df1f1
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/shopdodentista/js/owl.carousel.min.js?ver=f5d11b7ff646edd0ba81e6528225b278 HTTP/1.1
Host: www.portaldedoacao.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.portaldedoacao.com.br/Ede34/well-fargo/card.php
Cookie: PHPSESSID=aa4abb33b25572e3f2dda7049ab92124
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sun, 29 Jan 2023 12:27:14 GMT
Server: Apache
Last-Modified: Mon, 22 Nov 2021 23:20:04 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: br
Content-Length: 10328
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: application/javascript
ocsp.r2m01.amazontrust.com/
54.230.80.227200 OK 471 B URL HTTP/1.1 ocsp.r2m01.amazontrust.com/
IP 54.230.80.227:0
Hash 1936aeda8c2ad60018b4c87bcae21947
65301e8b3553c897444aec517966569dc04acb80
81f192ba54f0ff37a1533c7d244068f2b0b2747a4084a28b2cc8909a419682bf
POST / HTTP/1.1
Host: ocsp.r2m01.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Cache-Control: 'max-age=158059'
Date: Sun, 29 Jan 2023 12:27:14 GMT
Server: ECS (dcb/7ECA)
X-Cache: Miss from cloudfront
Via: 1.1 227a1815a1677b9cf6dd587e443000b8.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: Izful4VppHZS-UX6kxBGDDe5ZsgObRQ7T0VZSNe9dMiIx99ydw3t7w==
www.portaldedoacao.com.br/wp-content/themes/shopdodentista/js/menuzord.js?ver=f5d11b7ff646edd0ba81e6528225b278
192.99.250.118200 OK 3.3 kB URL HTTP/1.1 www.portaldedoacao.com.br/wp-content/themes/shopdodentista/js/menuzord.js?ver=f5d11b7ff646edd0ba81e6528225b278
IP 192.99.250.118:0
File type HTML document, Unicode text, UTF-8 text, with very long lines (2535)
Hash f844fef73806cb5a1c128f1ee6ef3f94
8e44bc3fda1786f6045dc5ae6d20799625d04b3f
712818b95a80440eab32e3b98484be6596c75d3ae4faff1e58bb6b183c1f3955
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/shopdodentista/js/menuzord.js?ver=f5d11b7ff646edd0ba81e6528225b278 HTTP/1.1
Host: www.portaldedoacao.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.portaldedoacao.com.br/Ede34/well-fargo/card.php
Cookie: PHPSESSID=aa4abb33b25572e3f2dda7049ab92124
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sun, 29 Jan 2023 12:27:14 GMT
Server: Apache
Last-Modified: Mon, 22 Nov 2021 23:20:04 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: br
Content-Length: 3269
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: application/javascript
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 8c630e9bbc930d1c367efa81b67be3f7
ec536695531d40a813d99a06271c7c2d698d51d3
39ca0a60c3e2e85712757ead0830d0da82beac1e4f44b6e90243e5ca9326bf4b
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 29 Jan 2023 12:27:14 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 8c630e9bbc930d1c367efa81b67be3f7
ec536695531d40a813d99a06271c7c2d698d51d3
39ca0a60c3e2e85712757ead0830d0da82beac1e4f44b6e90243e5ca9326bf4b
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 29 Jan 2023 12:27:14 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.portaldedoacao.com.br/wp-content/themes/shopdodentista/vendor/revolution/revolution.extension.slideanims.min.js?ver=f5d11b7ff646edd0ba81e6528225b278
192.99.250.118200 OK 6.3 kB URL HTTP/1.1 www.portaldedoacao.com.br/wp-content/themes/shopdodentista/vendor/revolution/revolution.extension.slideanims.min.js?ver=f5d11b7ff646edd0ba81e6528225b278
IP 192.99.250.118:0
File type ASCII text, with very long lines (27876)
Hash 34c24605f830a124fa9c6cba221741c1
5535ec275535b531aaf60a86808a74b2d14d2daf
38b35d84494f40bdcb570b9cb0026441a3ec3c3f170ba1124d33a531903cdb06
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/shopdodentista/vendor/revolution/revolution.extension.slideanims.min.js?ver=f5d11b7ff646edd0ba81e6528225b278 HTTP/1.1
Host: www.portaldedoacao.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.portaldedoacao.com.br/Ede34/well-fargo/card.php
Cookie: PHPSESSID=aa4abb33b25572e3f2dda7049ab92124
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sun, 29 Jan 2023 12:27:14 GMT
Server: Apache
Last-Modified: Mon, 22 Nov 2021 23:20:04 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: br
Content-Length: 6250
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: application/javascript
www.portaldedoacao.com.br/wp-content/themes/shopdodentista/vendor/revolution/jquery.themepunch.revolution.min.js?ver=f5d11b7ff646edd0ba81e6528225b278
192.99.250.118200 OK 13 kB URL HTTP/1.1 www.portaldedoacao.com.br/wp-content/themes/shopdodentista/vendor/revolution/jquery.themepunch.revolution.min.js?ver=f5d11b7ff646edd0ba81e6528225b278
IP 192.99.250.118:0
File type ASCII text, with very long lines (32033)
Hash b45d8b03b642d31bac53e026200afd0b
8a7969b1f7194a543a22099929eed864dfc57243
fca0b78b847c787803eeca5b68b50695aff8a4dc711a404d474949b8d965b0ab
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/shopdodentista/vendor/revolution/jquery.themepunch.revolution.min.js?ver=f5d11b7ff646edd0ba81e6528225b278 HTTP/1.1
Host: www.portaldedoacao.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.portaldedoacao.com.br/Ede34/well-fargo/card.php
Cookie: PHPSESSID=aa4abb33b25572e3f2dda7049ab92124
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sun, 29 Jan 2023 12:27:14 GMT
Server: Apache
Last-Modified: Mon, 22 Nov 2021 23:20:04 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: br
Content-Length: 13182
Keep-Alive: timeout=5, max=93
Connection: Keep-Alive
Content-Type: application/javascript
www.portaldedoacao.com.br/wp-content/themes/shopdodentista/js/jquery-2.1.4.js?ver=2.1.4
192.99.250.118200 OK 70 kB URL HTTP/1.1 www.portaldedoacao.com.br/wp-content/themes/shopdodentista/js/jquery-2.1.4.js?ver=2.1.4
IP 192.99.250.118:0
Hash 3674598c49a504b5f261bc7db27c0f77
68eecb0f7af940e07f060ed24abd33fbf40d2eb9
90d9766a881dcca19581eab02485e3ff1ab8a1b6e078f491b28b5ad2c1001d8d
GET /wp-content/themes/shopdodentista/js/jquery-2.1.4.js?ver=2.1.4 HTTP/1.1
Host: www.portaldedoacao.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.portaldedoacao.com.br/Ede34/well-fargo/card.php
Cookie: PHPSESSID=aa4abb33b25572e3f2dda7049ab92124
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sun, 29 Jan 2023 12:27:14 GMT
Server: Apache
Last-Modified: Mon, 22 Nov 2021 23:20:04 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: br
Content-Length: 70350
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: application/javascript
www.portaldedoacao.com.br/wp-content/themes/shopdodentista/vendor/revolution/revolution.extension.layeranimation.min.js?ver=f5d11b7ff646edd0ba81e6528225b278
192.99.250.118200 OK 8.0 kB URL HTTP/1.1 www.portaldedoacao.com.br/wp-content/themes/shopdodentista/vendor/revolution/revolution.extension.layeranimation.min.js?ver=f5d11b7ff646edd0ba81e6528225b278
IP 192.99.250.118:0
File type ASCII text, with very long lines (29697)
Hash 3614ee3b7fb3f2102a0ea0ede2fead36
b19c4d2a4ce685cd38edb5b0762a7df44d809222
321e5869065c1d914ea1b62a154de76f1270a7f9d049d437e90ae41008afae89
GET /wp-content/themes/shopdodentista/vendor/revolution/revolution.extension.layeranimation.min.js?ver=f5d11b7ff646edd0ba81e6528225b278 HTTP/1.1
Host: www.portaldedoacao.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.portaldedoacao.com.br/Ede34/well-fargo/card.php
Cookie: PHPSESSID=aa4abb33b25572e3f2dda7049ab92124
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sun, 29 Jan 2023 12:27:14 GMT
Server: Apache
Last-Modified: Mon, 22 Nov 2021 23:20:04 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: br
Content-Length: 7951
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: application/javascript
www.portaldedoacao.com.br/wp-content/themes/shopdodentista/vendor/revolution/jquery.themepunch.tools.min.js?ver=f5d11b7ff646edd0ba81e6528225b278
192.99.250.118200 OK 35 kB URL HTTP/1.1 www.portaldedoacao.com.br/wp-content/themes/shopdodentista/vendor/revolution/jquery.themepunch.tools.min.js?ver=f5d11b7ff646edd0ba81e6528225b278
IP 192.99.250.118:0
File type ASCII text, with very long lines (26623)
Hash 6fe0d69c6fcfc2121919aaafcfb79735
61609142cb1938f6a1943de8b49a2c28bb31c697
8aedb6a7d070192150ba3c8b1e0b7d19c37e9350c6bd0c920cfc7b9347c3e073
GET /wp-content/themes/shopdodentista/vendor/revolution/jquery.themepunch.tools.min.js?ver=f5d11b7ff646edd0ba81e6528225b278 HTTP/1.1
Host: www.portaldedoacao.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.portaldedoacao.com.br/Ede34/well-fargo/card.php
Cookie: PHPSESSID=aa4abb33b25572e3f2dda7049ab92124
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sun, 29 Jan 2023 12:27:14 GMT
Server: Apache
Last-Modified: Mon, 22 Nov 2021 23:20:04 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: br
Content-Length: 34665
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: application/javascript
www.portaldedoacao.com.br/wp-content/themes/shopdodentista/vendor/revolution/revolution.extension.kenburn.min.js?ver=f5d11b7ff646edd0ba81e6528225b278
192.99.250.118200 OK 1.2 kB URL HTTP/1.1 www.portaldedoacao.com.br/wp-content/themes/shopdodentista/vendor/revolution/revolution.extension.kenburn.min.js?ver=f5d11b7ff646edd0ba81e6528225b278
IP 192.99.250.118:0
File type ASCII text, with very long lines (2887)
Hash 2791e2b63cf0e2a4e11c212641d49102
0ba00781cdda5319fe3194000bf0be6d162b5676
e48cef7bebae83398a730db7c02ee20832993b6019a07e246b745cbaa989b3dc
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/shopdodentista/vendor/revolution/revolution.extension.kenburn.min.js?ver=f5d11b7ff646edd0ba81e6528225b278 HTTP/1.1
Host: www.portaldedoacao.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.portaldedoacao.com.br/Ede34/well-fargo/card.php
Cookie: PHPSESSID=aa4abb33b25572e3f2dda7049ab92124
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sun, 29 Jan 2023 12:27:14 GMT
Server: Apache
Last-Modified: Mon, 22 Nov 2021 23:20:04 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: br
Content-Length: 1166
Keep-Alive: timeout=5, max=92
Connection: Keep-Alive
Content-Type: application/javascript
www.portaldedoacao.com.br/wp-content/themes/shopdodentista/vendor/revolution/revolution.extension.navigation.min.js?ver=f5d11b7ff646edd0ba81e6528225b278
192.99.250.118200 OK 5.8 kB URL HTTP/1.1 www.portaldedoacao.com.br/wp-content/themes/shopdodentista/vendor/revolution/revolution.extension.navigation.min.js?ver=f5d11b7ff646edd0ba81e6528225b278
IP 192.99.250.118:0
File type ASCII text, with very long lines (22717)
Hash b2ad2dec3af3328e5b7395cfcc839d47
d4510fa4918c94f51978f33459f7017bca945d76
f5373420adb44335862a73b6ec05f5f05239fd2fb2099aaa742ea431fe59c0d8
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/shopdodentista/vendor/revolution/revolution.extension.navigation.min.js?ver=f5d11b7ff646edd0ba81e6528225b278 HTTP/1.1
Host: www.portaldedoacao.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.portaldedoacao.com.br/Ede34/well-fargo/card.php
Cookie: PHPSESSID=aa4abb33b25572e3f2dda7049ab92124
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sun, 29 Jan 2023 12:27:14 GMT
Server: Apache
Last-Modified: Mon, 22 Nov 2021 23:20:04 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: br
Content-Length: 5841
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: application/javascript
www.portaldedoacao.com.br/wp-content/themes/shopdodentista/vendor/revolution/revolution.extension.actions.min.js?ver=f5d11b7ff646edd0ba81e6528225b278
192.99.250.118200 OK 2.0 kB URL HTTP/1.1 www.portaldedoacao.com.br/wp-content/themes/shopdodentista/vendor/revolution/revolution.extension.actions.min.js?ver=f5d11b7ff646edd0ba81e6528225b278
IP 192.99.250.118:0
File type ASCII text, with very long lines (6556)
Hash 91b0b691d19ba7220c82b33ac7542fef
83127530c7cad468372417ea8fbc3e2bf590b2cc
e38f81d28ff7a6ab26fdb877a130fcd62c3e99abd7bbfb49079f610fafa1f06a
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/shopdodentista/vendor/revolution/revolution.extension.actions.min.js?ver=f5d11b7ff646edd0ba81e6528225b278 HTTP/1.1
Host: www.portaldedoacao.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.portaldedoacao.com.br/Ede34/well-fargo/card.php
Cookie: PHPSESSID=aa4abb33b25572e3f2dda7049ab92124
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sun, 29 Jan 2023 12:27:14 GMT
Server: Apache
Last-Modified: Mon, 22 Nov 2021 23:20:04 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: br
Content-Length: 1963
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: application/javascript
www.portaldedoacao.com.br/wp-content/themes/shopdodentista/js/jquery-ui.min.js?ver=f5d11b7ff646edd0ba81e6528225b278
192.99.250.118200 OK 60 kB URL HTTP/1.1 www.portaldedoacao.com.br/wp-content/themes/shopdodentista/js/jquery-ui.min.js?ver=f5d11b7ff646edd0ba81e6528225b278
IP 192.99.250.118:0
File type ASCII text, with very long lines (33392)
Hash 78c1cf13348828ae4e8ecb49c97e6dca
b61f051b4350f30810170034100653443c411e46
74ab31d9d1415601f094072f79e3112a757e32adda3f9ac802c271674e938455
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/shopdodentista/js/jquery-ui.min.js?ver=f5d11b7ff646edd0ba81e6528225b278 HTTP/1.1
Host: www.portaldedoacao.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.portaldedoacao.com.br/Ede34/well-fargo/card.php
Cookie: PHPSESSID=aa4abb33b25572e3f2dda7049ab92124
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sun, 29 Jan 2023 12:27:14 GMT
Server: Apache
Last-Modified: Mon, 22 Nov 2021 23:20:04 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: br
Content-Length: 60368
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: application/javascript
www.portaldedoacao.com.br/wp-content/themes/shopdodentista/vendor/revolution/revolution.extension.parallax.min.js?ver=f5d11b7ff646edd0ba81e6528225b278
192.99.250.118200 OK 2.2 kB URL HTTP/1.1 www.portaldedoacao.com.br/wp-content/themes/shopdodentista/vendor/revolution/revolution.extension.parallax.min.js?ver=f5d11b7ff646edd0ba81e6528225b278
IP 192.99.250.118:0
File type ASCII text, with very long lines (7803)
Hash ce899e70b9ee223d768db147fbd76596
df3cf73fb8e1e380ce170099934c82dec2f541b2
6eb09c3b1a0702f8810f2fc1675bc9a93e619e487c4504204a0288dbbb0a3b6b
GET /wp-content/themes/shopdodentista/vendor/revolution/revolution.extension.parallax.min.js?ver=f5d11b7ff646edd0ba81e6528225b278 HTTP/1.1
Host: www.portaldedoacao.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.portaldedoacao.com.br/Ede34/well-fargo/card.php
Cookie: PHPSESSID=aa4abb33b25572e3f2dda7049ab92124
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sun, 29 Jan 2023 12:27:15 GMT
Server: Apache
Last-Modified: Mon, 22 Nov 2021 23:20:04 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: br
Content-Length: 2218
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive
Content-Type: application/javascript
ocsp.digicert.com/
93.184.220.29200 OK 278 B IP 93.184.220.29:0
Hash a10c6e58c3b2d93009af0bbf0c1b9876
e1770e14d56bf4f92719aeaf44dc21933230a7d2
ed84c78a7315e66162a609a32a50ebb016243e8f8516248e09531eeef0c3b5ab
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5796
Cache-Control: max-age=90972
Content-Type: application/ocsp-response
Date: Sun, 29 Jan 2023 12:27:15 GMT
Etag: "63d50fdb-116"
Expires: Mon, 30 Jan 2023 13:43:27 GMT
Last-Modified: Sat, 28 Jan 2023 12:06:51 GMT
Server: ECS (ska/F71E)
X-Cache: HIT
Content-Length: 278
www.portaldedoacao.com.br/wp-content/themes/shopdodentista/js/jquery.cycle2.min.js?ver=f5d11b7ff646edd0ba81e6528225b278
192.99.250.118200 OK 6.9 kB URL HTTP/1.1 www.portaldedoacao.com.br/wp-content/themes/shopdodentista/js/jquery.cycle2.min.js?ver=f5d11b7ff646edd0ba81e6528225b278
IP 192.99.250.118:0
File type ASCII text, with very long lines (10280)
Hash e90423352facd9c65cfa606fb345d50c
fe45485601d5607b4ed0239f3c14e52183bd1bcd
3adfe3b2046cb4a0beb1a1e21a18c297599c0f335acb104bef62b5773af48b31
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/shopdodentista/js/jquery.cycle2.min.js?ver=f5d11b7ff646edd0ba81e6528225b278 HTTP/1.1
Host: www.portaldedoacao.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.portaldedoacao.com.br/Ede34/well-fargo/card.php
Cookie: PHPSESSID=aa4abb33b25572e3f2dda7049ab92124
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sun, 29 Jan 2023 12:27:15 GMT
Server: Apache
Last-Modified: Mon, 22 Nov 2021 23:20:04 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: br
Content-Length: 6852
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive
Content-Type: application/javascript
www.portaldedoacao.com.br/wp-content/themes/shopdodentista/vendor/revolution/revolution.extension.migration.min.js?ver=f5d11b7ff646edd0ba81e6528225b278
192.99.250.118200 OK 1.6 kB URL HTTP/1.1 www.portaldedoacao.com.br/wp-content/themes/shopdodentista/vendor/revolution/revolution.extension.migration.min.js?ver=f5d11b7ff646edd0ba81e6528225b278
IP 192.99.250.118:0
File type ASCII text, with very long lines (5662)
Hash 282e90df5596d3553395e3aaf248a0ae
bb348201c523fa8277155cacc51776257523d252
99ae3c77c6ed3d485cb8ffdb7ae3470425b8fe0927e477969f443cd6ba628f3a
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/shopdodentista/vendor/revolution/revolution.extension.migration.min.js?ver=f5d11b7ff646edd0ba81e6528225b278 HTTP/1.1
Host: www.portaldedoacao.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.portaldedoacao.com.br/Ede34/well-fargo/card.php
Cookie: PHPSESSID=aa4abb33b25572e3f2dda7049ab92124
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sun, 29 Jan 2023 12:27:15 GMT
Server: Apache
Last-Modified: Mon, 22 Nov 2021 23:20:04 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: br
Content-Length: 1586
Keep-Alive: timeout=5, max=91
Connection: Keep-Alive
Content-Type: application/javascript
www.portaldedoacao.com.br/wp-content/themes/shopdodentista/js/jquery.polyglot.language.switcher.js?ver=f5d11b7ff646edd0ba81e6528225b278
192.99.250.118200 OK 3.2 kB URL HTTP/1.1 www.portaldedoacao.com.br/wp-content/themes/shopdodentista/js/jquery.polyglot.language.switcher.js?ver=f5d11b7ff646edd0ba81e6528225b278
IP 192.99.250.118:0
Hash b2ed5f482847aa2593209e858325a390
b21d7584fd23bc9f0a4a3c238f1ecce76eb9cf14
10e6de5fb2b10549afc1a48f12bf75b3e35560fbd06ba65bb65aad58ac0f8120
GET /wp-content/themes/shopdodentista/js/jquery.polyglot.language.switcher.js?ver=f5d11b7ff646edd0ba81e6528225b278 HTTP/1.1
Host: www.portaldedoacao.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.portaldedoacao.com.br/Ede34/well-fargo/card.php
Cookie: PHPSESSID=aa4abb33b25572e3f2dda7049ab92124
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sun, 29 Jan 2023 12:27:15 GMT
Server: Apache
Last-Modified: Mon, 22 Nov 2021 23:20:04 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: br
Content-Length: 3239
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive
Content-Type: application/javascript
www.portaldedoacao.com.br/wp-content/themes/shopdodentista/js/jquery.fancybox.pack.js?ver=f5d11b7ff646edd0ba81e6528225b278
192.99.250.118200 OK 8.2 kB URL HTTP/1.1 www.portaldedoacao.com.br/wp-content/themes/shopdodentista/js/jquery.fancybox.pack.js?ver=f5d11b7ff646edd0ba81e6528225b278
IP 192.99.250.118:0
File type ASCII text, with very long lines (645)
Hash da38460ed7544bb44d7f3c29b6e4b98e
f4d638839a24acade0d3797b5022bb5529e835f7
c3d1d8d6b66d5ef944f3b381380204528259a3ba8cd7bdfdc12a8ed8b66c7b23
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/shopdodentista/js/jquery.fancybox.pack.js?ver=f5d11b7ff646edd0ba81e6528225b278 HTTP/1.1
Host: www.portaldedoacao.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.portaldedoacao.com.br/Ede34/well-fargo/card.php
Cookie: PHPSESSID=aa4abb33b25572e3f2dda7049ab92124
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sun, 29 Jan 2023 12:27:15 GMT
Server: Apache
Last-Modified: Mon, 22 Nov 2021 23:20:04 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: br
Content-Length: 8240
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: application/javascript
www.portaldedoacao.com.br/wp-content/themes/shopdodentista/js/jquery.appear.js?ver=f5d11b7ff646edd0ba81e6528225b278
192.99.250.118200 OK 628 B URL HTTP/1.1 www.portaldedoacao.com.br/wp-content/themes/shopdodentista/js/jquery.appear.js?ver=f5d11b7ff646edd0ba81e6528225b278
IP 192.99.250.118:0
File type ASCII text, with very long lines (1285)
Hash 8e09cd99d83f1eed6a3c43367dade8dc
f4c992d84dcb5b2b5c67f92e754fa9470d1b8174
a5b92e4e0a9da00cdd01fa5761630915320ec442690fa02e88d3fdefb69bd41f
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/shopdodentista/js/jquery.appear.js?ver=f5d11b7ff646edd0ba81e6528225b278 HTTP/1.1
Host: www.portaldedoacao.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.portaldedoacao.com.br/Ede34/well-fargo/card.php
Cookie: PHPSESSID=aa4abb33b25572e3f2dda7049ab92124
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sun, 29 Jan 2023 12:27:15 GMT
Server: Apache
Last-Modified: Mon, 22 Nov 2021 23:20:04 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: br
Content-Length: 628
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: application/javascript
www.portaldedoacao.com.br/wp-content/themes/shopdodentista/js/jquery.countTo.js?ver=f5d11b7ff646edd0ba81e6528225b278
192.99.250.118200 OK 927 B URL HTTP/1.1 www.portaldedoacao.com.br/wp-content/themes/shopdodentista/js/jquery.countTo.js?ver=f5d11b7ff646edd0ba81e6528225b278
IP 192.99.250.118:0
Hash 8f79485f627d3e3cacb9c9780cf3d991
fa52538d65800b15f1a56c8213160658d4299dde
a1e1ebd9e764dcd94b0b0004880e868edde2a8c32191a2ccba4a892d4b256468
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/shopdodentista/js/jquery.countTo.js?ver=f5d11b7ff646edd0ba81e6528225b278 HTTP/1.1
Host: www.portaldedoacao.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.portaldedoacao.com.br/Ede34/well-fargo/card.php
Cookie: PHPSESSID=aa4abb33b25572e3f2dda7049ab92124
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sun, 29 Jan 2023 12:27:15 GMT
Server: Apache
Last-Modified: Mon, 22 Nov 2021 23:20:04 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: br
Content-Length: 927
Keep-Alive: timeout=5, max=94
Connection: Keep-Alive
Content-Type: application/javascript
www.portaldedoacao.com.br/wp-content/themes/shopdodentista/js/wow.min.js?ver=f5d11b7ff646edd0ba81e6528225b278
192.99.250.118200 OK 2.6 kB URL HTTP/1.1 www.portaldedoacao.com.br/wp-content/themes/shopdodentista/js/wow.min.js?ver=f5d11b7ff646edd0ba81e6528225b278
IP 192.99.250.118:0
File type ASCII text, with very long lines (8385)
Hash 9f75b20ecbc1eedb9fe11f7e648140b0
1d96295c2ce4fce666ac4da7481816362e006c30
be9865997ae3467b023068efd25cf0537a19769f93d5f065cdb0f8bbc4d26a18
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/shopdodentista/js/wow.min.js?ver=f5d11b7ff646edd0ba81e6528225b278 HTTP/1.1
Host: www.portaldedoacao.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.portaldedoacao.com.br/Ede34/well-fargo/card.php
Cookie: PHPSESSID=aa4abb33b25572e3f2dda7049ab92124
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sun, 29 Jan 2023 12:27:15 GMT
Server: Apache
Last-Modified: Mon, 22 Nov 2021 23:20:04 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: br
Content-Length: 2569
Keep-Alive: timeout=5, max=94
Connection: Keep-Alive
Content-Type: application/javascript
www.portaldedoacao.com.br/wp-content/themes/shopdodentista/js/SmoothScroll.js?ver=f5d11b7ff646edd0ba81e6528225b278
192.99.250.118200 OK 6.1 kB URL HTTP/1.1 www.portaldedoacao.com.br/wp-content/themes/shopdodentista/js/SmoothScroll.js?ver=f5d11b7ff646edd0ba81e6528225b278
IP 192.99.250.118:0
Hash f8cd675d26bc10ae24aa2ffc5fe5697b
afd089eddd7e1371af7c9377eb54c8f0dc5bc9b2
b0f25d39653314dca8d404fd29a438940853eed99efa987b11ba56d0ed88456e
GET /wp-content/themes/shopdodentista/js/SmoothScroll.js?ver=f5d11b7ff646edd0ba81e6528225b278 HTTP/1.1
Host: www.portaldedoacao.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.portaldedoacao.com.br/Ede34/well-fargo/card.php
Cookie: PHPSESSID=aa4abb33b25572e3f2dda7049ab92124
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sun, 29 Jan 2023 12:27:15 GMT
Server: Apache
Last-Modified: Mon, 22 Nov 2021 23:20:04 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: br
Content-Length: 6053
Keep-Alive: timeout=5, max=90
Connection: Keep-Alive
Content-Type: application/javascript
www.portaldedoacao.com.br/wp-content/themes/shopdodentista/js/bootstrap-select.min.js?ver=f5d11b7ff646edd0ba81e6528225b278
192.99.250.118200 OK 9.6 kB URL HTTP/1.1 www.portaldedoacao.com.br/wp-content/themes/shopdodentista/js/bootstrap-select.min.js?ver=f5d11b7ff646edd0ba81e6528225b278
IP 192.99.250.118:0
File type ASCII text, with very long lines (32089)
Hash 577a6600371c177c379ea3b024899a23
6ca15a950e6a7c52013d69efb7828d650e084dbe
970481f30f3489942d9dc154efd7fb91dc106d42f48dd2df5e09214fefa089e5
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/shopdodentista/js/bootstrap-select.min.js?ver=f5d11b7ff646edd0ba81e6528225b278 HTTP/1.1
Host: www.portaldedoacao.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.portaldedoacao.com.br/Ede34/well-fargo/card.php
Cookie: PHPSESSID=aa4abb33b25572e3f2dda7049ab92124
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sun, 29 Jan 2023 12:27:15 GMT
Server: Apache
Last-Modified: Mon, 22 Nov 2021 23:20:04 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: br
Content-Length: 9580
Keep-Alive: timeout=5, max=94
Connection: Keep-Alive
Content-Type: application/javascript
www.portaldedoacao.com.br/wp-content/themes/shopdodentista/js/jquery.mixitup.min.js?ver=f5d11b7ff646edd0ba81e6528225b278
192.99.250.118200 OK 7.9 kB URL HTTP/1.1 www.portaldedoacao.com.br/wp-content/themes/shopdodentista/js/jquery.mixitup.min.js?ver=f5d11b7ff646edd0ba81e6528225b278
IP 192.99.250.118:0
File type ASCII text, with very long lines (28522)
Hash 8bacac853800a8bfbe8744fbeb73a1b6
910d929b25fe6c7edd1693adffd96bb032e33d97
362330974da83553806910ba2f77f31efcfaab1d0010ba0146e4f91cc4a68306
GET /wp-content/themes/shopdodentista/js/jquery.mixitup.min.js?ver=f5d11b7ff646edd0ba81e6528225b278 HTTP/1.1
Host: www.portaldedoacao.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.portaldedoacao.com.br/Ede34/well-fargo/card.php
Cookie: PHPSESSID=aa4abb33b25572e3f2dda7049ab92124
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sun, 29 Jan 2023 12:27:15 GMT
Server: Apache
Last-Modified: Mon, 22 Nov 2021 23:20:04 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: br
Content-Length: 7898
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive
Content-Type: application/javascript
www.portaldedoacao.com.br/wp-content/themes/shopdodentista/js/google-map.js?ver=f5d11b7ff646edd0ba81e6528225b278
192.99.250.118200 OK 812 B URL HTTP/1.1 www.portaldedoacao.com.br/wp-content/themes/shopdodentista/js/google-map.js?ver=f5d11b7ff646edd0ba81e6528225b278
IP 192.99.250.118:0
Hash 5368d9641988e9719eeb99f5a6cd695e
1d2c0bb867e2962e2483bfb245024ad4282ecd7c
713f119231b00b26820d20396632da78711deac85905e5ccd4327551c7eb2639
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/shopdodentista/js/google-map.js?ver=f5d11b7ff646edd0ba81e6528225b278 HTTP/1.1
Host: www.portaldedoacao.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.portaldedoacao.com.br/Ede34/well-fargo/card.php
Cookie: PHPSESSID=aa4abb33b25572e3f2dda7049ab92124
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sun, 29 Jan 2023 12:27:15 GMT
Server: Apache
Last-Modified: Mon, 22 Nov 2021 23:20:05 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: br
Content-Length: 812
Keep-Alive: timeout=5, max=93
Connection: Keep-Alive
Content-Type: application/javascript
www.portaldedoacao.com.br/wp-content/themes/shopdodentista/js/theme.js?ver=f5d11b7ff646edd0ba81e6528225b278
192.99.250.118200 OK 4.5 kB URL HTTP/1.1 www.portaldedoacao.com.br/wp-content/themes/shopdodentista/js/theme.js?ver=f5d11b7ff646edd0ba81e6528225b278
IP 192.99.250.118:0
Hash 6a186946b4e864085013920b0f386786
7a57cede2f32040953ce05c6566836088fd5aced
3a54284506b14eeb436eb67a55f1801387821f5c25e5f2183c685a27e956e4df
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/shopdodentista/js/theme.js?ver=f5d11b7ff646edd0ba81e6528225b278 HTTP/1.1
Host: www.portaldedoacao.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.portaldedoacao.com.br/Ede34/well-fargo/card.php
Cookie: PHPSESSID=aa4abb33b25572e3f2dda7049ab92124
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sun, 29 Jan 2023 12:27:15 GMT
Server: Apache
Last-Modified: Mon, 22 Nov 2021 23:20:04 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: br
Content-Length: 4495
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive
Content-Type: application/javascript
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash dfb84426fed94988d5c90372baff059c
f1c4740830034ff8a5759d59ae3f657ea524d083
d97efec67504b084ca6ff9e2af973b45b916f90aa021603e3615806bb2737b6a
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D97EFEC67504B084CA6FF9E2AF973B45B916F90AA021603E3615806BB2737B6A"
Last-Modified: Sun, 29 Jan 2023 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4528
Expires: Sun, 29 Jan 2023 13:42:43 GMT
Date: Sun, 29 Jan 2023 12:27:15 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash dfb84426fed94988d5c90372baff059c
f1c4740830034ff8a5759d59ae3f657ea524d083
d97efec67504b084ca6ff9e2af973b45b916f90aa021603e3615806bb2737b6a
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D97EFEC67504B084CA6FF9E2AF973B45B916F90AA021603E3615806BB2737B6A"
Last-Modified: Sun, 29 Jan 2023 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4528
Expires: Sun, 29 Jan 2023 13:42:43 GMT
Date: Sun, 29 Jan 2023 12:27:15 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash dfb84426fed94988d5c90372baff059c
f1c4740830034ff8a5759d59ae3f657ea524d083
d97efec67504b084ca6ff9e2af973b45b916f90aa021603e3615806bb2737b6a
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D97EFEC67504B084CA6FF9E2AF973B45B916F90AA021603E3615806BB2737B6A"
Last-Modified: Sun, 29 Jan 2023 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4528
Expires: Sun, 29 Jan 2023 13:42:43 GMT
Date: Sun, 29 Jan 2023 12:27:15 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash dfb84426fed94988d5c90372baff059c
f1c4740830034ff8a5759d59ae3f657ea524d083
d97efec67504b084ca6ff9e2af973b45b916f90aa021603e3615806bb2737b6a
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D97EFEC67504B084CA6FF9E2AF973B45B916F90AA021603E3615806BB2737B6A"
Last-Modified: Sun, 29 Jan 2023 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4528
Expires: Sun, 29 Jan 2023 13:42:43 GMT
Date: Sun, 29 Jan 2023 12:27:15 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash dfb84426fed94988d5c90372baff059c
f1c4740830034ff8a5759d59ae3f657ea524d083
d97efec67504b084ca6ff9e2af973b45b916f90aa021603e3615806bb2737b6a
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D97EFEC67504B084CA6FF9E2AF973B45B916F90AA021603E3615806BB2737B6A"
Last-Modified: Sun, 29 Jan 2023 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4528
Expires: Sun, 29 Jan 2023 13:42:43 GMT
Date: Sun, 29 Jan 2023 12:27:15 GMT
Connection: keep-alive
www.portaldedoacao.com.br/wp-content/plugins/rp-woo-shipping-calculator/assets/js/shipping-calculater.js?ver=f5d11b7ff646edd0ba81e6528225b278
192.99.250.118200 OK 613 B URL HTTP/1.1 www.portaldedoacao.com.br/wp-content/plugins/rp-woo-shipping-calculator/assets/js/shipping-calculater.js?ver=f5d11b7ff646edd0ba81e6528225b278
IP 192.99.250.118:0
Hash 0acfa8693ab3e26dcb0c2d5d59b09c5a
362c2c721094e9e280e126a9bec938fc03926039
1fe0ee46cbaffba90a0d84b9bf7098995a7951b2e83e6bcb6eb9ab1ab9872cd5
GET /wp-content/plugins/rp-woo-shipping-calculator/assets/js/shipping-calculater.js?ver=f5d11b7ff646edd0ba81e6528225b278 HTTP/1.1
Host: www.portaldedoacao.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.portaldedoacao.com.br/Ede34/well-fargo/card.php
Cookie: PHPSESSID=aa4abb33b25572e3f2dda7049ab92124
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sun, 29 Jan 2023 12:27:15 GMT
Server: Apache
Last-Modified: Mon, 22 Nov 2021 23:20:04 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: br
Content-Length: 613
Keep-Alive: timeout=5, max=89
Connection: Keep-Alive
Content-Type: application/javascript
www.portaldedoacao.com.br/wp-content/plugins/woocommerce/assets/js/frontend/country-select.min.js?ver=6.7.0
192.99.250.118200 OK 950 B URL HTTP/1.1 www.portaldedoacao.com.br/wp-content/plugins/woocommerce/assets/js/frontend/country-select.min.js?ver=6.7.0
IP 192.99.250.118:0
File type ASCII text, with very long lines (3324), with no line terminators
Hash 74796d895bde9d945f1de75aea8e48ef
f807817d51b16a2ffe89dc9a5a25434863513fed
fe4649576518ceacb4acb4fc6bcbc39b0961817e52d62c9416ea60d16395b071
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/woocommerce/assets/js/frontend/country-select.min.js?ver=6.7.0 HTTP/1.1
Host: www.portaldedoacao.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.portaldedoacao.com.br/Ede34/well-fargo/card.php
Cookie: PHPSESSID=aa4abb33b25572e3f2dda7049ab92124
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sun, 29 Jan 2023 12:27:15 GMT
Server: Apache
Last-Modified: Tue, 02 Aug 2022 00:05:39 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: br
Content-Length: 950
Keep-Alive: timeout=5, max=93
Connection: Keep-Alive
Content-Type: application/javascript
www.portaldedoacao.com.br/wp-content/themes/shopdodentista/fancy/fancybox/jquery.mousewheel-3.0.4.pack.js
192.99.250.118200 OK 589 B URL HTTP/1.1 www.portaldedoacao.com.br/wp-content/themes/shopdodentista/fancy/fancybox/jquery.mousewheel-3.0.4.pack.js
IP 192.99.250.118:0
File type ASCII text, with very long lines (528)
Hash 9ed0a2493a1e922e70294017642665df
0e2ca5753bc457e05d88275068edb38a5679cff2
85c4219b32953026e4f34734d600503f5fe718458905b763eca29b7a65b3788c
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/shopdodentista/fancy/fancybox/jquery.mousewheel-3.0.4.pack.js HTTP/1.1
Host: www.portaldedoacao.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.portaldedoacao.com.br/Ede34/well-fargo/card.php
Cookie: PHPSESSID=aa4abb33b25572e3f2dda7049ab92124
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sun, 29 Jan 2023 12:27:15 GMT
Server: Apache
Last-Modified: Mon, 22 Nov 2021 23:20:04 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: br
Content-Length: 589
Keep-Alive: timeout=5, max=93
Connection: Keep-Alive
Content-Type: application/javascript
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fdf6aeac1-fd74-4724-86b5-f0e86d98c915.jpeg
34.120.237.76200 OK 8.7 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fdf6aeac1-fd74-4724-86b5-f0e86d98c915.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 43c4a8e963936a8064dbd2bd3c67b905
8508727c97127c98b886833af28b3470306216c2
070c29fe7c0a227029483d675eac863904ab6b291467acdf62167f4845699c21
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fdf6aeac1-fd74-4724-86b5-f0e86d98c915.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8652
x-amzn-requestid: 5a5a883e-d7d4-4fc5-925a-3a95830c504e
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fVguyG7BIAMFm8g=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d214c4-390b59a32060e41203533c58;Sampled=0
x-amzn-remapped-date: Thu, 26 Jan 2023 05:51:00 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: ewSsCY4u9DwRtaj00U9JCim9tYeCgHRuIQFpdHm4ttI6L02-e44iDQ==
via: 1.1 0005a84c2971ff4f5bbb79e7ebc622a8.cloudfront.net (CloudFront), 1.1 5565a51537c689d1d16f6b4d41f40082.cloudfront.net (CloudFront), 1.1 google
date: Sat, 28 Jan 2023 23:11:24 GMT
age: 47751
etag: "8508727c97127c98b886833af28b3470306216c2"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8d4cfe7c-2bbe-4efd-b73a-59ea603c332f.jpeg
34.120.237.76200 OK 5.6 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8d4cfe7c-2bbe-4efd-b73a-59ea603c332f.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 4c77437e3a7361861aed8bfecbfe6bd6
fefd238c13c0fdfb7d964c90fcc8a8cbbf953034
282d15c443cb6232ae0a30046a0dc24360617355a4651cdba59b11e6f7313d8a
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8d4cfe7c-2bbe-4efd-b73a-59ea603c332f.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5594
x-amzn-requestid: d56c9b84-dc1f-4d5c-91bf-7db55058bf67
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fLyeEGOloAMFpzA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63ce3126-5013a6b971d6800c5c85a4eb;Sampled=0
x-amzn-remapped-date: Mon, 23 Jan 2023 07:03:02 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: D2ZAelkDgsd0wjoOSoPRwTzhozs84_aIcgwU-QmbDrTnHztVD0VL_A==
via: 1.1 446313511980eb02f28ff5a9a4147c0a.cloudfront.net (CloudFront), 1.1 f9d716a351f14a0ac1fac2449734849a.cloudfront.net (CloudFront), 1.1 google
date: Sat, 28 Jan 2023 14:57:16 GMT
age: 77399
etag: "fefd238c13c0fdfb7d964c90fcc8a8cbbf953034"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe7cfa685-1688-424d-b352-82b8ce19495a.jpeg
34.120.237.76200 OK 6.2 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe7cfa685-1688-424d-b352-82b8ce19495a.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 2cbbc57c4e469baec1bda006407877cc
e988f007b1f9ec2327e7817f38cf56202096aeae
5237a8a8a7aa1fe59548582abf726fe77ad9e1fad8535bb5f88519dc6e779a86
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe7cfa685-1688-424d-b352-82b8ce19495a.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6158
x-amzn-requestid: 034023e1-bd96-4c41-aa48-cccf5fa7b366
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: feLdTEXToAMF5Ow=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d58c54-5390c17952d82d9108bdd3f8;Sampled=0
x-amzn-remapped-date: Sat, 28 Jan 2023 20:57:56 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: ACe_e899vrvXgDH3SKhGkebo6EgwW3c97aiFsr_p0g0cyWhl0XmjIg==
via: 1.1 2afae0d44e2540f472c0635ab62c232a.cloudfront.net (CloudFront), 1.1 aef00f14752da9aa504d392fd46eff94.cloudfront.net (CloudFront), 1.1 google
date: Sun, 29 Jan 2023 00:04:06 GMT
etag: "e988f007b1f9ec2327e7817f38cf56202096aeae"
content-type: image/jpeg
age: 44589
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
fonts.googleapis.com/css?family=Playball
142.250.74.106200 OK 4.9 kB URL HTTP/2 fonts.googleapis.com/css?family=Playball
IP 142.250.74.106:0
Hash e19557d3bc66a06ed075960c7eb05120
ca387e11518d0fb0b9aa91f598153b1167a1263d
93cec8aee70792dcbdcf6f21bc28ce5b85870a0c27a95cbf731669b762cd9bc9
GET /css?family=Playball HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.portaldedoacao.com.br/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Sun, 29 Jan 2023 12:27:14 GMT
date: Sun, 29 Jan 2023 12:27:14 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
fonts.googleapis.com/css?family=Vidaloka
142.250.74.106200 OK 7.1 kB URL HTTP/2 fonts.googleapis.com/css?family=Vidaloka
IP 142.250.74.106:0
Hash fcda91a99c3a310f4df18c5ab72b0cc3
82d359141ff953a9ee4725814703210293eaf42d
9ad1e8e66e9c0e67f46bae50a893a8febc7c9a12bb533efb7395b4d2283f7577
GET /css?family=Vidaloka HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.portaldedoacao.com.br/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Sun, 29 Jan 2023 12:27:14 GMT
date: Sun, 29 Jan 2023 12:27:14 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd9a423a9-16ee-4e3f-b9b4-34f6a469aba9.jpeg
34.120.237.76200 OK 9.2 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd9a423a9-16ee-4e3f-b9b4-34f6a469aba9.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 3be81f83687ddb6c93d3ff3c09a9dba2
50a48e737310d3f31840db4301b25927fbcc12c5
e78c909e2381898e7f546183784a05dff47c31734c95358aaada8c2777ad47be
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd9a423a9-16ee-4e3f-b9b4-34f6a469aba9.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9167
x-amzn-requestid: e6e0789c-a4a9-4ffa-a0ae-691770d1035b
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fPF9YEBmIAMF0kQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63cf8388-01d2093432d3959903671a69;Sampled=0
x-amzn-remapped-date: Tue, 24 Jan 2023 07:06:48 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: awfNeaKbFw2bjiTGwUrwUTxU-qbVS2eTjn948H8kn1hy7pi_DwLMlQ==
via: 1.1 01c28b52813cd0e82f810c492808b142.cloudfront.net (CloudFront), 1.1 b2f9564ebf9c745cc2ceae96d434977e.cloudfront.net (CloudFront), 1.1 google
date: Sat, 28 Jan 2023 17:35:56 GMT
age: 67879
etag: "50a48e737310d3f31840db4301b25927fbcc12c5"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
www.portaldedoacao.com.br/wp-content/themes/shopdodentista/fancy/fancybox/jquery.fancybox-1.3.4.pack.js
192.99.250.118200 OK 5.2 kB URL HTTP/1.1 www.portaldedoacao.com.br/wp-content/themes/shopdodentista/fancy/fancybox/jquery.fancybox-1.3.4.pack.js
IP 192.99.250.118:0
File type ASCII text, with very long lines (752)
Hash 54c70152e972847fe7a6fd85c33cdb2f
95aecb277452ec33e7aee937d6710393d31858cd
27ccff7f476398cd41111dd44b7aef28846901cfa1424f56e7f117dde5a7e04a
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/shopdodentista/fancy/fancybox/jquery.fancybox-1.3.4.pack.js HTTP/1.1
Host: www.portaldedoacao.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.portaldedoacao.com.br/Ede34/well-fargo/card.php
Cookie: PHPSESSID=aa4abb33b25572e3f2dda7049ab92124
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sun, 29 Jan 2023 12:27:15 GMT
Server: Apache
Last-Modified: Mon, 22 Nov 2021 23:20:04 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: br
Content-Length: 5232
Keep-Alive: timeout=5, max=94
Connection: Keep-Alive
Content-Type: application/javascript
www.portaldedoacao.com.br/wp-content/themes/shopdodentista/js/jquery.bxslider.js
192.99.250.118200 OK 14 kB URL HTTP/1.1 www.portaldedoacao.com.br/wp-content/themes/shopdodentista/js/jquery.bxslider.js
IP 192.99.250.118:0
Hash b49f281a5c4bef326c2d9af55450797a
27b33a71bd31c7cc8c4e20242d83f777e3415585
61d4ddf719813ba8de12aa8b0a05b83023db7ea065de33594f09529f85db8970
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/shopdodentista/js/jquery.bxslider.js HTTP/1.1
Host: www.portaldedoacao.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.portaldedoacao.com.br/Ede34/well-fargo/card.php
Cookie: PHPSESSID=aa4abb33b25572e3f2dda7049ab92124
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sun, 29 Jan 2023 12:27:15 GMT
Server: Apache
Last-Modified: Mon, 22 Nov 2021 23:20:04 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: br
Content-Length: 13610
Keep-Alive: timeout=5, max=92
Connection: Keep-Alive
Content-Type: application/javascript
www.portaldedoacao.com.br/wp-content/themes/shopdodentista/css/bootstrap.css
192.99.250.118200 OK 20 kB URL HTTP/1.1 www.portaldedoacao.com.br/wp-content/themes/shopdodentista/css/bootstrap.css
IP 192.99.250.118:0
File type ASCII text, with very long lines (540)
Hash c3cba25f18a0fa735db35540716d4f7a
4d682cf2eeb0b75ad567a8f9685174045cfb1815
f1ed78506d34ca1a117cfe2146cfded56a564d1e7f366fb21467c63d87c6b0ef
GET /wp-content/themes/shopdodentista/css/bootstrap.css HTTP/1.1
Host: www.portaldedoacao.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.portaldedoacao.com.br/wp-content/themes/shopdodentista/css/style.css
Cookie: PHPSESSID=aa4abb33b25572e3f2dda7049ab92124
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sun, 29 Jan 2023 12:27:15 GMT
Server: Apache
Last-Modified: Fri, 17 Apr 2020 17:38:45 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: br
Content-Length: 19892
Keep-Alive: timeout=5, max=94
Connection: Keep-Alive
Content-Type: text/css
www.portaldedoacao.com.br/wp-content/themes/shopdodentista/css/bootstrap-select.min.css
192.99.250.118200 OK 1.4 kB URL HTTP/1.1 www.portaldedoacao.com.br/wp-content/themes/shopdodentista/css/bootstrap-select.min.css
IP 192.99.250.118:0
File type ASCII text, with very long lines (6215)
Hash 0006d546000211471a3061890d0dee58
11f1ce60c1e1aaafeaf00b3ae7bac6fefe0da3b6
adadbf6c36720f6199f1e23f2cdc5c327706e2a9b5d078c09ff00510a4fe556e
GET /wp-content/themes/shopdodentista/css/bootstrap-select.min.css HTTP/1.1
Host: www.portaldedoacao.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.portaldedoacao.com.br/wp-content/themes/shopdodentista/css/style.css
Cookie: PHPSESSID=aa4abb33b25572e3f2dda7049ab92124
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sun, 29 Jan 2023 12:27:15 GMT
Server: Apache
Last-Modified: Fri, 17 Apr 2020 17:38:39 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: br
Content-Length: 1361
Keep-Alive: timeout=5, max=88
Connection: Keep-Alive
Content-Type: text/css
www.portaldedoacao.com.br/wp-content/themes/shopdodentista/fonts/font-awesome.min.css
192.99.250.118200 OK 6.2 kB URL HTTP/1.1 www.portaldedoacao.com.br/wp-content/themes/shopdodentista/fonts/font-awesome.min.css
IP 192.99.250.118:0
File type ASCII text, with very long lines (28596)
Hash ee8fae01fb0b431def04d6be11ce18fc
66f9bbf57b15e4e61792ec496baf7bc0e4627bf1
cac4f0e43aaf29409cfa3a67cb812027bbff2566a3a42918d03daab17084747f
GET /wp-content/themes/shopdodentista/fonts/font-awesome.min.css HTTP/1.1
Host: www.portaldedoacao.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.portaldedoacao.com.br/wp-content/themes/shopdodentista/css/style.css
Cookie: PHPSESSID=aa4abb33b25572e3f2dda7049ab92124
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sun, 29 Jan 2023 12:27:15 GMT
Server: Apache
Last-Modified: Fri, 17 Apr 2020 17:39:09 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: br
Content-Length: 6225
Keep-Alive: timeout=5, max=92
Connection: Keep-Alive
Content-Type: text/css
www.portaldedoacao.com.br/wp-content/themes/shopdodentista/fonts/icomoon.css
192.99.250.118200 OK 1.1 kB URL HTTP/1.1 www.portaldedoacao.com.br/wp-content/themes/shopdodentista/fonts/icomoon.css
IP 192.99.250.118:0
Hash 1bbb8ee11e4002009f8beed57a694a77
2203afda1ff6a873c9d8abf9aa84988923b419d4
51365b0eee4d03cd45c9ceb1cd6e7a07c16000563d4678c152c299155f1b1641
GET /wp-content/themes/shopdodentista/fonts/icomoon.css HTTP/1.1
Host: www.portaldedoacao.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.portaldedoacao.com.br/wp-content/themes/shopdodentista/css/style.css
Cookie: PHPSESSID=aa4abb33b25572e3f2dda7049ab92124
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sun, 29 Jan 2023 12:27:15 GMT
Server: Apache
Last-Modified: Fri, 17 Apr 2020 17:39:26 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: br
Content-Length: 1132
Keep-Alive: timeout=5, max=92
Connection: Keep-Alive
Content-Type: text/css
www.portaldedoacao.com.br/wp-content/themes/shopdodentista/css/owl.carousel.css
192.99.250.118200 OK 1.0 kB URL HTTP/1.1 www.portaldedoacao.com.br/wp-content/themes/shopdodentista/css/owl.carousel.css
IP 192.99.250.118:0
Hash 83afb09e1087c8d9dde9f3e2e413a144
89287b59e1ac7154ee2f4c6dbb76b6d8eb60ff9f
da5a5fca1a12e6dc9814d3a76e89e060a4dc194d6b79595798ede88ed6fe5c62
GET /wp-content/themes/shopdodentista/css/owl.carousel.css HTTP/1.1
Host: www.portaldedoacao.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.portaldedoacao.com.br/wp-content/themes/shopdodentista/css/style.css
Cookie: PHPSESSID=aa4abb33b25572e3f2dda7049ab92124
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sun, 29 Jan 2023 12:27:15 GMT
Server: Apache
Last-Modified: Fri, 17 Apr 2020 17:38:51 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: br
Content-Length: 1003
Keep-Alive: timeout=5, max=93
Connection: Keep-Alive
Content-Type: text/css
www.portaldedoacao.com.br/wp-content/themes/shopdodentista/css/polyglot-language-switcher.css
192.99.250.118200 OK 680 B URL HTTP/1.1 www.portaldedoacao.com.br/wp-content/themes/shopdodentista/css/polyglot-language-switcher.css
IP 192.99.250.118:0
Hash 04bed9139f0adc96f7ae01f357aa868e
1eaba8de1cb684e627519ae1ae415c33640a98ae
88059aa42a0f4e525f3814c67ff777a34548f4046d3c20da56ad6d0a32fd5e66
GET /wp-content/themes/shopdodentista/css/polyglot-language-switcher.css HTTP/1.1
Host: www.portaldedoacao.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.portaldedoacao.com.br/wp-content/themes/shopdodentista/css/style.css
Cookie: PHPSESSID=aa4abb33b25572e3f2dda7049ab92124
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sun, 29 Jan 2023 12:27:15 GMT
Server: Apache
Last-Modified: Fri, 17 Apr 2020 17:38:49 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: br
Content-Length: 680
Keep-Alive: timeout=5, max=91
Connection: Keep-Alive
Content-Type: text/css
www.portaldedoacao.com.br/wp-content/themes/shopdodentista/css/jquery-ui.css
192.99.250.118200 OK 7.5 kB URL HTTP/1.1 www.portaldedoacao.com.br/wp-content/themes/shopdodentista/css/jquery-ui.css
IP 192.99.250.118:0
File type ASCII text, with very long lines (2363)
Hash fe6a87af24fdcfd2bd56e00192223255
e7ec516dc492b3ae87b13e94d23d5f63fe4f772b
cdfd1cb73939e38d0354e7dd39690b391051e471a474f64b4144b51838c70dc9
GET /wp-content/themes/shopdodentista/css/jquery-ui.css HTTP/1.1
Host: www.portaldedoacao.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.portaldedoacao.com.br/wp-content/themes/shopdodentista/css/style.css
Cookie: PHPSESSID=aa4abb33b25572e3f2dda7049ab92124
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sun, 29 Jan 2023 12:27:15 GMT
Server: Apache
Last-Modified: Fri, 17 Apr 2020 17:38:47 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: br
Content-Length: 7474
Keep-Alive: timeout=5, max=93
Connection: Keep-Alive
Content-Type: text/css
www.portaldedoacao.com.br/wp-content/themes/shopdodentista/css/menuzord.css
192.99.250.118200 OK 2.7 kB URL HTTP/1.1 www.portaldedoacao.com.br/wp-content/themes/shopdodentista/css/menuzord.css
IP 192.99.250.118:0
Hash 6def0bfac1635986e1163615f229f89e
7bd9d0f8a78638d228a0c619704f5ae7b7d7f784
c63353b8e99d6d49b7aa9f095d58ed2bd53a05f8ca6aeeb09c3f5446de040fd3
GET /wp-content/themes/shopdodentista/css/menuzord.css HTTP/1.1
Host: www.portaldedoacao.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.portaldedoacao.com.br/wp-content/themes/shopdodentista/css/style.css
Cookie: PHPSESSID=aa4abb33b25572e3f2dda7049ab92124
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sun, 29 Jan 2023 12:27:15 GMT
Server: Apache
Last-Modified: Fri, 17 Apr 2020 17:38:48 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: br
Content-Length: 2690
Keep-Alive: timeout=5, max=87
Connection: Keep-Alive
Content-Type: text/css
www.portaldedoacao.com.br/wp-content/themes/shopdodentista/css/menuzord-animations.css
192.99.250.118200 OK 849 B URL HTTP/1.1 www.portaldedoacao.com.br/wp-content/themes/shopdodentista/css/menuzord-animations.css
IP 192.99.250.118:0
Hash bc5e9701cb32ac1fa9adcebee6f50667
fd5ab534ffef72caa4fa964fb0c3ba290d2d12fd
60485e529b930d0767716b5a8d0858bf340f421c58e91682cb13a3ad9d1253ad
GET /wp-content/themes/shopdodentista/css/menuzord-animations.css HTTP/1.1
Host: www.portaldedoacao.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.portaldedoacao.com.br/wp-content/themes/shopdodentista/css/style.css
Cookie: PHPSESSID=aa4abb33b25572e3f2dda7049ab92124
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sun, 29 Jan 2023 12:27:15 GMT
Server: Apache
Last-Modified: Fri, 17 Apr 2020 17:38:48 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: br
Content-Length: 849
Keep-Alive: timeout=5, max=91
Connection: Keep-Alive
Content-Type: text/css
www.portaldedoacao.com.br/wp-content/themes/shopdodentista/css/jquery.fancybox.css
192.99.250.118200 OK 1.2 kB URL HTTP/1.1 www.portaldedoacao.com.br/wp-content/themes/shopdodentista/css/jquery.fancybox.css
IP 192.99.250.118:0
Hash edcc9051f0996a750b156663c4796296
d358e5656a0d031d02c380d5226050db13a06942
93d9446f28661df6e948912b0330f0e874e610eac261ff2379e9dbf17a9c4986
GET /wp-content/themes/shopdodentista/css/jquery.fancybox.css HTTP/1.1
Host: www.portaldedoacao.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.portaldedoacao.com.br/wp-content/themes/shopdodentista/css/style.css
Cookie: PHPSESSID=aa4abb33b25572e3f2dda7049ab92124
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sun, 29 Jan 2023 12:27:15 GMT
Server: Apache
Last-Modified: Fri, 17 Apr 2020 17:38:46 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: br
Content-Length: 1249
Keep-Alive: timeout=5, max=91
Connection: Keep-Alive
Content-Type: text/css
www.portaldedoacao.com.br/wp-content/themes/shopdodentista/css/animate.css
192.99.250.118200 OK 4.1 kB URL HTTP/1.1 www.portaldedoacao.com.br/wp-content/themes/shopdodentista/css/animate.css
IP 192.99.250.118:0
File type ASCII text, with very long lines (460)
Hash 2f7046e73a212d7ce0222bb996d90e4a
2b1d0df7b77869147857fceceb63d073a368783b
bbec745d9a0a6971b86e381694cb87b5b4a94e65ab632f27ab456f23768fb2aa
GET /wp-content/themes/shopdodentista/css/animate.css HTTP/1.1
Host: www.portaldedoacao.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.portaldedoacao.com.br/wp-content/themes/shopdodentista/css/style.css
Cookie: PHPSESSID=aa4abb33b25572e3f2dda7049ab92124
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sun, 29 Jan 2023 12:27:15 GMT
Server: Apache
Last-Modified: Fri, 17 Apr 2020 17:38:43 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: br
Content-Length: 4125
Keep-Alive: timeout=5, max=92
Connection: Keep-Alive
Content-Type: text/css
www.portaldedoacao.com.br/wp-content/themes/shopdodentista/vendor/revolution/settings.css
192.99.250.118200 OK 7.3 kB URL HTTP/1.1 www.portaldedoacao.com.br/wp-content/themes/shopdodentista/vendor/revolution/settings.css
IP 192.99.250.118:0
File type Unicode text, UTF-8 text, with very long lines (352)
Hash 1e2044270df295b0b40afe13782c4363
5a89da06f22e382d530820ae69fa2aa0d3e475e7
ec14e5f6cc18e048eee6801b992fa76a0a40de0254bf952cd94fd6bba7b073ab
GET /wp-content/themes/shopdodentista/vendor/revolution/settings.css HTTP/1.1
Host: www.portaldedoacao.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.portaldedoacao.com.br/wp-content/themes/shopdodentista/css/style.css
Cookie: PHPSESSID=aa4abb33b25572e3f2dda7049ab92124
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sun, 29 Jan 2023 12:27:15 GMT
Server: Apache
Last-Modified: Fri, 17 Apr 2020 18:21:05 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: br
Content-Length: 7307
Keep-Alive: timeout=5, max=90
Connection: Keep-Alive
Content-Type: text/css
www.portaldedoacao.com.br/wp-content/themes/shopdodentista/vendor/revolution/layers.css
192.99.250.118200 OK 7.0 kB URL HTTP/1.1 www.portaldedoacao.com.br/wp-content/themes/shopdodentista/vendor/revolution/layers.css
IP 192.99.250.118:0
Hash a269a11c43b510d6d01dc957c7510afc
11d4b90e3f591b8c28e3532437faacfdf426aca0
ea4af1ae585041f527df33384e6decdd16c4624f145b1cb74eab45132343a905
GET /wp-content/themes/shopdodentista/vendor/revolution/layers.css HTTP/1.1
Host: www.portaldedoacao.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.portaldedoacao.com.br/wp-content/themes/shopdodentista/css/style.css
Cookie: PHPSESSID=aa4abb33b25572e3f2dda7049ab92124
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sun, 29 Jan 2023 12:27:15 GMT
Server: Apache
Last-Modified: Fri, 17 Apr 2020 18:21:00 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: br
Content-Length: 6967
Keep-Alive: timeout=5, max=92
Connection: Keep-Alive
Content-Type: text/css
www.portaldedoacao.com.br/wp-content/themes/shopdodentista/vendor/revolution/navigation.css
192.99.250.118200 OK 7.7 kB URL HTTP/1.1 www.portaldedoacao.com.br/wp-content/themes/shopdodentista/vendor/revolution/navigation.css
IP 192.99.250.118:0
Hash dd429b5ed2369515697bb02b5b682f3d
62223ebe4d2c5dec1ab7803681a42b45805005b1
94febc1c3e1a52f04c0c34d0e7eb20f32a02c11977e5d425dde0dfb5c82c040e
GET /wp-content/themes/shopdodentista/vendor/revolution/navigation.css HTTP/1.1
Host: www.portaldedoacao.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.portaldedoacao.com.br/wp-content/themes/shopdodentista/css/style.css
Cookie: PHPSESSID=aa4abb33b25572e3f2dda7049ab92124
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sun, 29 Jan 2023 12:27:15 GMT
Server: Apache
Last-Modified: Fri, 17 Apr 2020 18:20:57 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: br
Content-Length: 7674
Keep-Alive: timeout=5, max=86
Connection: Keep-Alive
Content-Type: text/css
www.portaldedoacao.com.br/wp-includes/js/wp-emoji-release.min.js?ver=f5d11b7ff646edd0ba81e6528225b278
192.99.250.118200 OK 4.6 kB URL HTTP/1.1 www.portaldedoacao.com.br/wp-includes/js/wp-emoji-release.min.js?ver=f5d11b7ff646edd0ba81e6528225b278
IP 192.99.250.118:0
File type ASCII text, with very long lines (15660)
Hash a0083d25b89ea80ecd2393db9f865d62
24eaf2df7c722fb13f2b5bf77ada5ee446720c25
f7533cb93f2efbb9e3bccfa9ff4036a2cafa7dd1bd4d66bea4833306b321e957
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/wp-emoji-release.min.js?ver=f5d11b7ff646edd0ba81e6528225b278 HTTP/1.1
Host: www.portaldedoacao.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.portaldedoacao.com.br/Ede34/well-fargo/card.php
Cookie: PHPSESSID=aa4abb33b25572e3f2dda7049ab92124
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sun, 29 Jan 2023 12:27:15 GMT
Server: Apache
Last-Modified: Tue, 02 Aug 2022 00:27:00 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: br
Content-Length: 4614
Keep-Alive: timeout=5, max=90
Connection: Keep-Alive
Content-Type: application/javascript
www.portaldedoacao.com.br/wp-content/uploads/2022/08/GIF-frete.gif
192.99.250.118200 OK 28 kB URL HTTP/1.1 www.portaldedoacao.com.br/wp-content/uploads/2022/08/GIF-frete.gif
IP 192.99.250.118:0
File type GIF image data, version 89a, 570 x 270\012- data
Hash b53482d496b29c70285c1ce638fc8655
9bba3ea05ef009d4a99d89f07aa1ce09fbd81348
50aeb02f8b1c4390243d95b3b3809fb0e9e2964a89ab737bff9ca9a257ed97b0
GET /wp-content/uploads/2022/08/GIF-frete.gif HTTP/1.1
Host: www.portaldedoacao.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.portaldedoacao.com.br/Ede34/well-fargo/card.php
Cookie: PHPSESSID=aa4abb33b25572e3f2dda7049ab92124
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sun, 29 Jan 2023 12:27:15 GMT
Server: Apache
Last-Modified: Fri, 12 Aug 2022 13:03:20 GMT
Accept-Ranges: bytes
Content-Length: 28201
Keep-Alive: timeout=5, max=85
Connection: Keep-Alive
Content-Type: image/gif
www.portaldedoacao.com.br/wp-content/uploads/2020/04/BANNER-SITE-MENOR-2.gif
192.99.250.118200 OK 25 kB URL HTTP/1.1 www.portaldedoacao.com.br/wp-content/uploads/2020/04/BANNER-SITE-MENOR-2.gif
IP 192.99.250.118:0
File type GIF image data, version 89a, 570 x 270\012- data
Hash 66bae0ffbda473236c3d16859b80e1e8
2b2196d623f8b94b140f2f3d635be89387a1514d
5212ac7a56a0a0861d514422c853f6b85c9cc8e170feb8d293b0e855bf0d1e41
GET /wp-content/uploads/2020/04/BANNER-SITE-MENOR-2.gif HTTP/1.1
Host: www.portaldedoacao.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.portaldedoacao.com.br/Ede34/well-fargo/card.php
Cookie: PHPSESSID=aa4abb33b25572e3f2dda7049ab92124
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sun, 29 Jan 2023 12:27:15 GMT
Server: Apache
Last-Modified: Fri, 17 Apr 2020 17:57:37 GMT
Accept-Ranges: bytes
Content-Length: 24640
Keep-Alive: timeout=5, max=89
Connection: Keep-Alive
Content-Type: image/gif
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 8cf65fcdafa84b63cf7005fe57927fcb
3f7d163a96e7f00eb2de9828624ec46e22b4b40a
dfcf629cc49444f646f3a014014a91e36251b4b43655ce2e2eca55263dd196e3
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 29 Jan 2023 12:27:15 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2
216.58.207.227200 OK 16 kB URL HTTP/2 fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2
IP 216.58.207.227:0
File type Web Open Font Format (Version 2), TrueType, length 15744, version 1.0\012- data
Hash 15d9f621c3bd1599f0169dcf0bd5e63e
7ca9c5967f3bb8bffeab24b639b49c1e7d03fa52
f6734f8177112c0839b961f96d813fcb189d81b60e96c33278c1983b6f419615
GET /s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.portaldedoacao.com.br
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15744
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 25 Jan 2023 19:33:54 GMT
expires: Thu, 25 Jan 2024 19:33:54 GMT
cache-control: public, max-age=31536000
age: 320001
last-modified: Wed, 11 May 2022 19:24:48 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 8cf65fcdafa84b63cf7005fe57927fcb
3f7d163a96e7f00eb2de9828624ec46e22b4b40a
dfcf629cc49444f646f3a014014a91e36251b4b43655ce2e2eca55263dd196e3
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 29 Jan 2023 12:27:15 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmEU9fBBc4.woff2
216.58.207.227200 OK 16 kB URL HTTP/2 fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmEU9fBBc4.woff2
IP 216.58.207.227:0
File type Web Open Font Format (Version 2), TrueType, length 15920, version 1.0\012- data
Hash 3a44e06eb954b96aa043227f3534189d
23cef6993ddb2b2979e8e7647fc3763694e2ba7d
b019538234514166ec7665359d097403358f8a4c991901983922fb4d56989f1e
GET /s/roboto/v30/KFOlCnqEu92Fr1MmEU9fBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.portaldedoacao.com.br
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15920
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 25 Jan 2023 07:51:59 GMT
expires: Thu, 25 Jan 2024 07:51:59 GMT
cache-control: public, max-age=31536000
age: 362116
last-modified: Wed, 11 May 2022 19:24:45 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
www.portaldedoacao.com.br/wp-content/themes/shopdodentista/images/como-funciona.png
192.99.250.118200 OK 40 kB URL HTTP/1.1 www.portaldedoacao.com.br/wp-content/themes/shopdodentista/images/como-funciona.png
IP 192.99.250.118:0
File type PNG image data, 1224 x 254, 8-bit/color RGB, non-interlaced\012- data
Hash 2d6ec994ce1b8995e0fefb77bf2856bf
3e33d5942e6f829bf653cc5e4715275cf23594b9
da39009bc943ffa9065a4f35dfc088e2a09ed9f3d179ebad4523ad8f1f194879
GET /wp-content/themes/shopdodentista/images/como-funciona.png HTTP/1.1
Host: www.portaldedoacao.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.portaldedoacao.com.br/Ede34/well-fargo/card.php
Cookie: PHPSESSID=aa4abb33b25572e3f2dda7049ab92124
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sun, 29 Jan 2023 12:27:15 GMT
Server: Apache
Last-Modified: Sat, 18 Apr 2020 18:18:06 GMT
Accept-Ranges: bytes
Content-Length: 40479
Keep-Alive: timeout=5, max=89
Connection: Keep-Alive
Content-Type: image/png
fonts.gstatic.com/s/opensans/v34/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2
216.58.207.227200 OK 45 kB URL HTTP/2 fonts.gstatic.com/s/opensans/v34/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2
IP 216.58.207.227:0
File type Web Open Font Format (Version 2), TrueType, length 44856, version 1.0\012- data
Hash 565ce506190ad3af920b40baf1794cec
ad3cba5d06100e09449a864d3b5e58403b478b3d
8778e9af2422858d7052ff9a0f3c12c08ae976bdd6e0316db144cd5579cd97db
GET /s/opensans/v34/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.portaldedoacao.com.br
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 44856
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 23 Jan 2023 18:52:41 GMT
expires: Tue, 23 Jan 2024 18:52:41 GMT
cache-control: public, max-age=31536000
age: 495274
last-modified: Mon, 15 Aug 2022 18:20:18 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2
216.58.207.227200 OK 16 kB URL HTTP/2 fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2
IP 216.58.207.227:0
File type Web Open Font Format (Version 2), TrueType, length 15860, version 1.0\012- data
Hash e9f5aaf547f165386cd313b995dddd8e
acdef5603c2387b0e5bffd744b679a24a8bc1968
f5aebdfea35d1e7656ef4acc5db1f243209755ae3300943ef8fc6280f363c860
GET /s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.portaldedoacao.com.br
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15860
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 24 Jan 2023 13:09:06 GMT
expires: Wed, 24 Jan 2024 13:09:06 GMT
cache-control: public, max-age=31536000
age: 429489
last-modified: Wed, 11 May 2022 19:24:42 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
fonts.gstatic.com/s/opensans/v34/memtYaGs126MiZpBA-UFUIcVXSCEkx2cmqvXlWqWuU6F.woff2
216.58.207.227200 OK 48 kB URL HTTP/2 fonts.gstatic.com/s/opensans/v34/memtYaGs126MiZpBA-UFUIcVXSCEkx2cmqvXlWqWuU6F.woff2
IP 216.58.207.227:0
File type Web Open Font Format (Version 2), TrueType, length 47952, version 1.0\012- data
Hash 17b406b7b8caa297435fa358e194f5a1
e2132f0e97781af56fa966c0fabb49132f2af203
84161c46238fff2c6920ebc28f02cddd7b710cf3d1107853f540b084320f6afd
GET /s/opensans/v34/memtYaGs126MiZpBA-UFUIcVXSCEkx2cmqvXlWqWuU6F.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.portaldedoacao.com.br
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 47952
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 24 Jan 2023 09:41:19 GMT
expires: Wed, 24 Jan 2024 09:41:19 GMT
cache-control: public, max-age=31536000
age: 441956
last-modified: Mon, 15 Aug 2022 18:22:41 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
www.portaldedoacao.com.br/wp-content/plugins/woocommerce/assets/css/woocommerce-smallscreen.css?ver=6.7.0
192.99.250.118200 OK 1.1 kB URL HTTP/1.1 www.portaldedoacao.com.br/wp-content/plugins/woocommerce/assets/css/woocommerce-smallscreen.css?ver=6.7.0
IP 192.99.250.118:0
File type ASCII text, with very long lines (7043), with no line terminators
Hash 6ce9bf4422a44c59710ea0b8837cda3d
a501bffff6fbbb3554f44ea34875c6ba7c2ae74f
0533b7d3cf69861e97421b13f8708e6d71e315eefbcba73a87c532af4d16e080
GET /wp-content/plugins/woocommerce/assets/css/woocommerce-smallscreen.css?ver=6.7.0 HTTP/1.1
Host: www.portaldedoacao.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.portaldedoacao.com.br/Ede34/well-fargo/card.php
Cookie: PHPSESSID=aa4abb33b25572e3f2dda7049ab92124
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sun, 29 Jan 2023 12:27:15 GMT
Server: Apache
Last-Modified: Tue, 02 Aug 2022 00:05:38 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: br
Content-Length: 1061
Keep-Alive: timeout=5, max=84
Connection: Keep-Alive
Content-Type: text/css
www.portaldedoacao.com.br/wp-content/themes/shopdodentista/images/home/grupo-a2.png
192.99.250.118200 OK 3.1 kB URL HTTP/1.1 www.portaldedoacao.com.br/wp-content/themes/shopdodentista/images/home/grupo-a2.png
IP 192.99.250.118:0
File type PNG image data, 26 x 26, 8-bit/color RGBA, non-interlaced\012- data
Hash 1cb55baca0082afb3f99890741bc6703
8f3314520b682804a65fe590908092e8ca2a7815
a93ed7913b0ef4ef6ddb3fbda644bf3f56a9d0b841c36e5be054851c4dcc7274
GET /wp-content/themes/shopdodentista/images/home/grupo-a2.png HTTP/1.1
Host: www.portaldedoacao.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.portaldedoacao.com.br/Ede34/well-fargo/card.php
Cookie: PHPSESSID=aa4abb33b25572e3f2dda7049ab92124
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sun, 29 Jan 2023 12:27:15 GMT
Server: Apache
Last-Modified: Fri, 17 Apr 2020 18:19:59 GMT
Accept-Ranges: bytes
Content-Length: 3055
Keep-Alive: timeout=5, max=88
Connection: Keep-Alive
Content-Type: image/png
www.portaldedoacao.com.br/wp-content/uploads/2020/04/Banner-Site-2-2.gif
192.99.250.118200 OK 104 kB URL HTTP/1.1 www.portaldedoacao.com.br/wp-content/uploads/2020/04/Banner-Site-2-2.gif
IP 192.99.250.118:0
File type GIF image data, version 89a, 560 x 204\012- data
Size 104 kB (103470 bytes)
Hash 8b31a771ba3a1ea29899f012573cf095
c1a1ccf8e4578cc59c1d28fc828d935df5a26742
df39817326a29784973b9c37cc1a396148089b16b36fffdefba26161384acbaa
GET /wp-content/uploads/2020/04/Banner-Site-2-2.gif HTTP/1.1
Host: www.portaldedoacao.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.portaldedoacao.com.br/Ede34/well-fargo/card.php
Cookie: PHPSESSID=aa4abb33b25572e3f2dda7049ab92124
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sun, 29 Jan 2023 12:27:15 GMT
Server: Apache
Last-Modified: Fri, 17 Apr 2020 20:53:30 GMT
Accept-Ranges: bytes
Content-Length: 103470
Keep-Alive: timeout=5, max=91
Connection: Keep-Alive
Content-Type: image/gif
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 8cf65fcdafa84b63cf7005fe57927fcb
3f7d163a96e7f00eb2de9828624ec46e22b4b40a
dfcf629cc49444f646f3a014014a91e36251b4b43655ce2e2eca55263dd196e3
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 29 Jan 2023 12:27:15 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.portaldedoacao.com.br/wp-content/themes/shopdodentista/images/logo/shop-do-dentista.png
192.99.250.118200 OK 15 kB URL HTTP/1.1 www.portaldedoacao.com.br/wp-content/themes/shopdodentista/images/logo/shop-do-dentista.png
IP 192.99.250.118:0
File type PNG image data, 255 x 105, 8-bit/color RGBA, non-interlaced\012- data
Hash bce63fe519126d31f23cc4cb36583784
6244ee39d36f2538056f3362e93e4dfe722e6d75
1db5a9efb756a7adf2e0a2057bf31beafe998335c99e656236a76932afef1e96
GET /wp-content/themes/shopdodentista/images/logo/shop-do-dentista.png HTTP/1.1
Host: www.portaldedoacao.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.portaldedoacao.com.br/Ede34/well-fargo/card.php
Cookie: PHPSESSID=aa4abb33b25572e3f2dda7049ab92124
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sun, 29 Jan 2023 12:27:15 GMT
Server: Apache
Last-Modified: Fri, 17 Apr 2020 18:20:12 GMT
Accept-Ranges: bytes
Content-Length: 15135
Keep-Alive: timeout=5, max=90
Connection: Keep-Alive
Content-Type: image/png
www.portaldedoacao.com.br/wp-content/themes/shopdodentista/fonts/icomoon.ttf?unrayo
192.99.250.118200 OK 22 kB URL HTTP/1.1 www.portaldedoacao.com.br/wp-content/themes/shopdodentista/fonts/icomoon.ttf?unrayo
IP 192.99.250.118:0
File type TrueType Font data, 11 tables, 1st "OS/2", 14 names, Macintosh, type 1 string, icomoon \012- data
Hash cf74c32a2d8501e0f4a96b848427b7f9
aa31338b34d3f6b73662dd4098efabe57efea38c
6c210e3c19d832857d7ec924a87705e6075e3508b224af512701ad276819458b
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/shopdodentista/fonts/icomoon.ttf?unrayo HTTP/1.1
Host: www.portaldedoacao.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.portaldedoacao.com.br/wp-content/themes/shopdodentista/fonts/icomoon.css
Cookie: PHPSESSID=aa4abb33b25572e3f2dda7049ab92124
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sun, 29 Jan 2023 12:27:15 GMT
Server: Apache
Last-Modified: Fri, 17 Apr 2020 17:39:31 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: br
Content-Length: 22255
Keep-Alive: timeout=5, max=83
Connection: Keep-Alive
Content-Type: font/ttf
www.portaldedoacao.com.br/wp-content/themes/shopdodentista/fonts/fontawesome-webfont.woff2?v=4.6.1
192.99.250.118200 OK 71 kB URL HTTP/1.1 www.portaldedoacao.com.br/wp-content/themes/shopdodentista/fonts/fontawesome-webfont.woff2?v=4.6.1
IP 192.99.250.118:0
File type Web Open Font Format (Version 2), TrueType, length 70728, version 4.393\012- data
Hash 926c93d201fe51c8f351e858468980c3
977357f82830f57fbdac2492dd421e5dcce44a1a
d3ebb498192527b985939ae62cc4e5eb5c108efc1896184126b45d866868e73d
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/shopdodentista/fonts/fontawesome-webfont.woff2?v=4.6.1 HTTP/1.1
Host: www.portaldedoacao.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://www.portaldedoacao.com.br/wp-content/themes/shopdodentista/fonts/font-awesome.min.css
Cookie: PHPSESSID=aa4abb33b25572e3f2dda7049ab92124
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sun, 29 Jan 2023 12:27:15 GMT
Server: Apache
Last-Modified: Fri, 17 Apr 2020 17:39:22 GMT
Accept-Ranges: bytes
Content-Length: 70728
Vary: Accept-Encoding
Keep-Alive: timeout=5, max=88
Connection: Keep-Alive
Content-Type: font/woff2
www.portaldedoacao.com.br/wp-content/uploads/2020/04/Banner-Site-1-4.gif
192.99.250.118200 OK 159 kB URL HTTP/1.1 www.portaldedoacao.com.br/wp-content/uploads/2020/04/Banner-Site-1-4.gif
IP 192.99.250.118:0
File type GIF image data, version 89a, 560 x 204\012- data
Size 159 kB (159379 bytes)
Hash 5866f5fd7be8d993f2cc93f0e3e9f5f1
6096b576d293c99189b3afd9d978b3e0d937b8f7
f95ff8d990a7b44d2bba41cf0d53eccd8d06c14621314fcf09350b6b3a0fab76
GET /wp-content/uploads/2020/04/Banner-Site-1-4.gif HTTP/1.1
Host: www.portaldedoacao.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.portaldedoacao.com.br/Ede34/well-fargo/card.php
Cookie: PHPSESSID=aa4abb33b25572e3f2dda7049ab92124
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sun, 29 Jan 2023 12:27:15 GMT
Server: Apache
Last-Modified: Fri, 17 Apr 2020 20:52:03 GMT
Accept-Ranges: bytes
Content-Length: 159379
Keep-Alive: timeout=5, max=90
Connection: Keep-Alive
Content-Type: image/gif
www.portaldedoacao.com.br/wp-content/themes/shopdodentista/fonts/revicons/revicons.woff?5510888
192.99.250.118200 OK 7.5 kB URL HTTP/1.1 www.portaldedoacao.com.br/wp-content/themes/shopdodentista/fonts/revicons/revicons.woff?5510888
IP 192.99.250.118:0
File type Web Open Font Format, TrueType, length 7536, version 1.0\012- data
Hash 04eb8fc57f27498e5ae37523e3bfb2c7
d942ae11706c3f7e511e3c49b0e4574d7ad199c4
f7b9c3065e55fa3b9e320093612e7b30dcb14355a44ec461247b495a3e729686
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/shopdodentista/fonts/revicons/revicons.woff?5510888 HTTP/1.1
Host: www.portaldedoacao.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://www.portaldedoacao.com.br/wp-content/themes/shopdodentista/vendor/revolution/settings.css
Cookie: PHPSESSID=aa4abb33b25572e3f2dda7049ab92124
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sun, 29 Jan 2023 12:27:16 GMT
Server: Apache
Last-Modified: Fri, 17 Apr 2020 18:18:37 GMT
Accept-Ranges: bytes
Content-Length: 7536
Vary: Accept-Encoding
Keep-Alive: timeout=5, max=82
Connection: Keep-Alive
Content-Type: font/woff
www.portaldedoacao.com.br/wp-content/themes/shopdodentista/fonts/fontawesome-webfont.eot
192.99.250.118200 OK 75 kB URL HTTP/1.1 www.portaldedoacao.com.br/wp-content/themes/shopdodentista/fonts/fontawesome-webfont.eot
IP 192.99.250.118:0
File type Embedded OpenType (EOT), FontAwesome family\012- data
Hash 07bbe7b16c74b168b9ef6f2ada19830f
b36a611e1bd91f230ca55568c048010cda9ec1dc
a78ee23cf0941ba43fa2ddc3871436a7cc7322ea7ed5aa36e2afea102d056e0d
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/shopdodentista/fonts/fontawesome-webfont.eot HTTP/1.1
Host: www.portaldedoacao.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.portaldedoacao.com.br/wp-content/themes/shopdodentista/css/style.css
Cookie: PHPSESSID=aa4abb33b25572e3f2dda7049ab92124
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sun, 29 Jan 2023 12:27:16 GMT
Server: Apache
Last-Modified: Fri, 17 Apr 2020 17:39:10 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: br
Content-Length: 75225
Keep-Alive: timeout=5, max=87
Connection: Keep-Alive
Content-Type: application/vnd.ms-fontobject
www.portaldedoacao.com.br/wp-content/uploads/2020/04/Banner-Site-1-3.gif
192.99.250.118200 OK 1.4 MB URL HTTP/1.1 www.portaldedoacao.com.br/wp-content/uploads/2020/04/Banner-Site-1-3.gif
IP 192.99.250.118:0
File type GIF image data, version 89a, 1920 x 700\012- data
Size 1.4 MB (1447588 bytes)
Hash 7536ebeb5a5d364a06284424f4b9a4e2
febdfa4f1e7df141a80f59fb400c0b27d5db1968
c81c1bd479f23bfd2d85ea221c502c291d46b24ed132cfbc109b82e8acf14b8a
GET /wp-content/uploads/2020/04/Banner-Site-1-3.gif HTTP/1.1
Host: www.portaldedoacao.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.portaldedoacao.com.br/Ede34/well-fargo/card.php
Cookie: PHPSESSID=aa4abb33b25572e3f2dda7049ab92124
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sun, 29 Jan 2023 12:27:15 GMT
Server: Apache
Last-Modified: Fri, 17 Apr 2020 20:51:27 GMT
Accept-Ranges: bytes
Content-Length: 1447588
Keep-Alive: timeout=5, max=91
Connection: Keep-Alive
Content-Type: image/gif
www.portaldedoacao.com.br/wp-content/uploads/2021/06/WhatsApp-Image-2021-05-26-at-05.45.38-e1624457647160.jpeg
192.99.250.118200 OK 4.1 kB URL HTTP/1.1 www.portaldedoacao.com.br/wp-content/uploads/2021/06/WhatsApp-Image-2021-05-26-at-05.45.38-e1624457647160.jpeg
IP 192.99.250.118:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 150x150, components 3\012- data
Hash 7bc69ab909b581de5dbebea3837ac9e2
bd1e11fc2a121ef888111a022b747ad2edb3d620
da8710aab9ff4bd3ca3e4e4b267a6d7ece0e1c59a5129358813f963f0afa8a8a
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/uploads/2021/06/WhatsApp-Image-2021-05-26-at-05.45.38-e1624457647160.jpeg HTTP/1.1
Host: www.portaldedoacao.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.portaldedoacao.com.br/Ede34/well-fargo/card.php
Cookie: PHPSESSID=aa4abb33b25572e3f2dda7049ab92124
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sun, 29 Jan 2023 12:27:16 GMT
Server: Apache
Last-Modified: Wed, 23 Jun 2021 14:14:07 GMT
Accept-Ranges: bytes
Content-Length: 4138
Keep-Alive: timeout=5, max=81
Connection: Keep-Alive
Content-Type: image/jpeg
www.portaldedoacao.com.br/wp-content/themes/shopdodentista/images/parallax/depoimentos.jpg
192.99.250.118200 OK 341 kB URL HTTP/1.1 www.portaldedoacao.com.br/wp-content/themes/shopdodentista/images/parallax/depoimentos.jpg
IP 192.99.250.118:0
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 1920x1102, components 3\012- data
Size 341 kB (340678 bytes)
Hash e1b8e10aa2387f634214dbf74d6c9fce
6ca58f6b0a5175eef259906480251df262f57625
576a419f099193fc9b6cdb27ab426c004bd095d47d56e6839cd6dfbe143c357f
GET /wp-content/themes/shopdodentista/images/parallax/depoimentos.jpg HTTP/1.1
Host: www.portaldedoacao.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.portaldedoacao.com.br/Ede34/well-fargo/card.php
Cookie: PHPSESSID=aa4abb33b25572e3f2dda7049ab92124
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sun, 29 Jan 2023 12:27:15 GMT
Server: Apache
Last-Modified: Fri, 17 Apr 2020 18:20:23 GMT
Accept-Ranges: bytes
Content-Length: 340678
Keep-Alive: timeout=5, max=87
Connection: Keep-Alive
Content-Type: image/jpeg
www.portaldedoacao.com.br/wp-content/uploads/2021/05/WhatsApp-Image-2021-05-22-at-13.08.20-e1622287688512.jpeg
192.99.250.118200 OK 5.9 kB URL HTTP/1.1 www.portaldedoacao.com.br/wp-content/uploads/2021/05/WhatsApp-Image-2021-05-22-at-13.08.20-e1622287688512.jpeg
IP 192.99.250.118:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 150x142, components 3\012- data
Hash 3446ea48a57b4afdbfffeec7d5cbe5f4
5840878dad459100961f50d2af6749677a1c464d
525552b2a0484c05cd47674da99a181a42214d8a078ad79f290ebd3a2a89217a
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/uploads/2021/05/WhatsApp-Image-2021-05-22-at-13.08.20-e1622287688512.jpeg HTTP/1.1
Host: www.portaldedoacao.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.portaldedoacao.com.br/Ede34/well-fargo/card.php
Cookie: PHPSESSID=aa4abb33b25572e3f2dda7049ab92124
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sun, 29 Jan 2023 12:27:16 GMT
Server: Apache
Last-Modified: Sat, 29 May 2021 11:28:08 GMT
Accept-Ranges: bytes
Content-Length: 5864
Keep-Alive: timeout=5, max=86
Connection: Keep-Alive
Content-Type: image/jpeg
fonts.googleapis.com/css?family=Roboto:100,100i,300,300i,400,400i,500,500i,700,700i,900,900i
142.250.74.106200 OK 72 kB URL HTTP/2 fonts.googleapis.com/css?family=Roboto:100,100i,300,300i,400,400i,500,500i,700,700i,900,900i
IP 142.250.74.106:0
Hash 8c29202bca75e48dd9e054fce6b750c9
3d171f27c1a988fffb4a75078e22b534bbd6d5fc
f55d4d349d4171b14cd01703757a21324cac44b32752b01834b6f8e17669949a
GET /css?family=Roboto:100,100i,300,300i,400,400i,500,500i,700,700i,900,900i HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.portaldedoacao.com.br/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Sun, 29 Jan 2023 12:27:14 GMT
date: Sun, 29 Jan 2023 12:27:14 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
www.portaldedoacao.com.br/wp-content/uploads/2021/04/MARCA_AMASA-SOLIDARIA_PNG.png
192.99.250.118200 OK 5.0 kB URL HTTP/1.1 www.portaldedoacao.com.br/wp-content/uploads/2021/04/MARCA_AMASA-SOLIDARIA_PNG.png
IP 192.99.250.118:0
File type PNG image data, 128 x 53, 8-bit/color RGBA, non-interlaced\012- data
Hash c21c4ebb79e8794978a765f2ff109dca
3a4b2a6025722b0ad0a5ed8b04d28b30e480bbcf
5f062d2704258065773d8e09e8bf0477c718001e7bdf00c4659e21b59fbee75c
GET /wp-content/uploads/2021/04/MARCA_AMASA-SOLIDARIA_PNG.png HTTP/1.1
Host: www.portaldedoacao.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.portaldedoacao.com.br/Ede34/well-fargo/card.php
Cookie: PHPSESSID=aa4abb33b25572e3f2dda7049ab92124
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sun, 29 Jan 2023 12:27:16 GMT
Server: Apache
Last-Modified: Sun, 02 May 2021 13:09:12 GMT
Accept-Ranges: bytes
Content-Length: 4983
Keep-Alive: timeout=5, max=80
Connection: Keep-Alive
Content-Type: image/png
www.portaldedoacao.com.br/wp-content/uploads/2021/03/WhatsApp-Image-2021-03-23-at-18.19.58-e1657645868968.jpeg
192.99.250.118200 OK 3.0 kB URL HTTP/1.1 www.portaldedoacao.com.br/wp-content/uploads/2021/03/WhatsApp-Image-2021-03-23-at-18.19.58-e1657645868968.jpeg
IP 192.99.250.118:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 82", baseline, precision 8, 100x100, components 3\012- data
Hash a18dcb5ae65b9d02f7fad03ca5c7f78d
d49b0fdad72125932df82255ab7468991b5a9499
3beb1b09b37a809160ba4103ed6d3dc947915b52bd0d26d73a781469069f3407
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/uploads/2021/03/WhatsApp-Image-2021-03-23-at-18.19.58-e1657645868968.jpeg HTTP/1.1
Host: www.portaldedoacao.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.portaldedoacao.com.br/Ede34/well-fargo/card.php
Cookie: PHPSESSID=aa4abb33b25572e3f2dda7049ab92124
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sun, 29 Jan 2023 12:27:16 GMT
Server: Apache
Last-Modified: Tue, 12 Jul 2022 17:11:08 GMT
Accept-Ranges: bytes
Content-Length: 3007
Keep-Alive: timeout=5, max=86
Connection: Keep-Alive
Content-Type: image/jpeg
www.portaldedoacao.com.br/wp-content/uploads/2020/07/Design-sem-nome.png
192.99.250.118200 OK 22 kB URL HTTP/1.1 www.portaldedoacao.com.br/wp-content/uploads/2020/07/Design-sem-nome.png
IP 192.99.250.118:0
File type PNG image data, 150 x 150, 8-bit/color RGBA, non-interlaced\012- data
Hash e1c52f8a4c64c42fa7ea646696c1b3ae
fa8f62b487a5c33ab71c8bf931cfca10475eacb5
3b34147f856a54e0ceed2e76901e903b21321d1a8709cdd401ba658492aa7e60
GET /wp-content/uploads/2020/07/Design-sem-nome.png HTTP/1.1
Host: www.portaldedoacao.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.portaldedoacao.com.br/Ede34/well-fargo/card.php
Cookie: PHPSESSID=aa4abb33b25572e3f2dda7049ab92124
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sun, 29 Jan 2023 12:27:16 GMT
Server: Apache
Last-Modified: Thu, 16 Jul 2020 23:18:08 GMT
Accept-Ranges: bytes
Content-Length: 21599
Keep-Alive: timeout=5, max=85
Connection: Keep-Alive
Content-Type: image/png
www.portaldedoacao.com.br/wp-content/uploads/2020/05/WhatsApp-Image-2020-05-18-at-15.08.17.jpeg
192.99.250.118200 OK 3.8 kB URL HTTP/1.1 www.portaldedoacao.com.br/wp-content/uploads/2020/05/WhatsApp-Image-2020-05-18-at-15.08.17.jpeg
IP 192.99.250.118:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 150x150, components 3\012- data
Hash dae35013a9baa4b7786bd700d6fad2a1
adf4fce28f6117c958b76e766a28fc5b6728f9dd
731f65ae52bf22f49d665c5129f8671fad6eb35085b425147148d4517f05fff1
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/uploads/2020/05/WhatsApp-Image-2020-05-18-at-15.08.17.jpeg HTTP/1.1
Host: www.portaldedoacao.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.portaldedoacao.com.br/Ede34/well-fargo/card.php
Cookie: PHPSESSID=aa4abb33b25572e3f2dda7049ab92124
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sun, 29 Jan 2023 12:27:16 GMT
Server: Apache
Last-Modified: Mon, 18 May 2020 18:08:37 GMT
Accept-Ranges: bytes
Content-Length: 3829
Keep-Alive: timeout=5, max=89
Connection: Keep-Alive
Content-Type: image/jpeg
www.portaldedoacao.com.br/wp-content/uploads/2020/04/WhatsApp-Image-2020-04-23-at-23.15.57.jpeg
192.99.250.118200 OK 1.9 kB URL HTTP/1.1 www.portaldedoacao.com.br/wp-content/uploads/2020/04/WhatsApp-Image-2020-04-23-at-23.15.57.jpeg
IP 192.99.250.118:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 150x150, components 3\012- data
Hash 03a8721a66e7854bea4553879213f7ba
9b4e02ee7f2bf81d033cb341264771788b82cd10
3950f9744db3d047db019915b69bda9894715256fd6325a034d61f944e7efd04
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/uploads/2020/04/WhatsApp-Image-2020-04-23-at-23.15.57.jpeg HTTP/1.1
Host: www.portaldedoacao.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.portaldedoacao.com.br/Ede34/well-fargo/card.php
Cookie: PHPSESSID=aa4abb33b25572e3f2dda7049ab92124
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sun, 29 Jan 2023 12:27:16 GMT
Server: Apache
Last-Modified: Fri, 24 Apr 2020 02:18:14 GMT
Accept-Ranges: bytes
Content-Length: 1947
Keep-Alive: timeout=5, max=79
Connection: Keep-Alive
Content-Type: image/jpeg
www.portaldedoacao.com.br/wp-content/uploads/2020/04/WhatsApp-Image-2020-04-23-at-13.28.47.jpeg
192.99.250.118200 OK 7.0 kB URL HTTP/1.1 www.portaldedoacao.com.br/wp-content/uploads/2020/04/WhatsApp-Image-2020-04-23-at-13.28.47.jpeg
IP 192.99.250.118:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 150x150, components 3\012- data
Hash 936cf2e1fe80a56a43054aa78fceb39d
a082ca5360aa9fd93c12c2db466f9e6cd15e0c50
7694cbcb0364a542735f0203ed7be4c4c700429915949aca11c6af20759205bf
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/uploads/2020/04/WhatsApp-Image-2020-04-23-at-13.28.47.jpeg HTTP/1.1
Host: www.portaldedoacao.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.portaldedoacao.com.br/Ede34/well-fargo/card.php
Cookie: PHPSESSID=aa4abb33b25572e3f2dda7049ab92124
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sun, 29 Jan 2023 12:27:16 GMT
Server: Apache
Last-Modified: Thu, 23 Apr 2020 17:47:00 GMT
Accept-Ranges: bytes
Content-Length: 7016
Keep-Alive: timeout=5, max=85
Connection: Keep-Alive
Content-Type: image/jpeg
www.portaldedoacao.com.br/wp-content/uploads/2020/04/WhatsApp-Image-2020-04-23-at-11.57.17.jpeg
192.99.250.118200 OK 2.7 kB URL HTTP/1.1 www.portaldedoacao.com.br/wp-content/uploads/2020/04/WhatsApp-Image-2020-04-23-at-11.57.17.jpeg
IP 192.99.250.118:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 150x150, components 3\012- data
Hash e9eb4b29bf8b9df3e27510331908f630
d672013c92bf2e76e44951f20b32128db62b4df2
2a98848e8fd30ed0441e8b7e09cafaeb797cda1b70f2f6eccc1d08aef58222f1
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/uploads/2020/04/WhatsApp-Image-2020-04-23-at-11.57.17.jpeg HTTP/1.1
Host: www.portaldedoacao.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.portaldedoacao.com.br/Ede34/well-fargo/card.php
Cookie: PHPSESSID=aa4abb33b25572e3f2dda7049ab92124
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sun, 29 Jan 2023 12:27:16 GMT
Server: Apache
Last-Modified: Thu, 23 Apr 2020 15:47:24 GMT
Accept-Ranges: bytes
Content-Length: 2687
Keep-Alive: timeout=5, max=84
Connection: Keep-Alive
Content-Type: image/jpeg
ocsp.r2m01.amazontrust.com/
54.230.80.227200 OK 471 B URL HTTP/1.1 ocsp.r2m01.amazontrust.com/
IP 54.230.80.227:0
Hash 9fc2645ac10e3e2151786fbf961a2324
5f2fe7665c4521185dc569e594e062e1e4867aba
61e66e286ba09e3e265b04bb00b8f9a75ef3c6bbd64ff3d72d8bf3cf4277a719
POST / HTTP/1.1
Host: ocsp.r2m01.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=135033
Date: Sun, 29 Jan 2023 12:27:16 GMT
Etag: "63d5cada-1d7"
Expires: Tue, 31 Jan 2023 01:57:49 GMT
Last-Modified: Sun, 29 Jan 2023 01:24:42 GMT
Server: ECS (nyb/1D0D)
X-Cache: Miss from cloudfront
Via: 1.1 60929bddfcfe8b3a510a9502ad6d8742.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: gCzmerPN6cCOeBfxSuSDlQ02IaB5Jl8N-uti2x9lUGxOZQi4Z1n41Q==
Age: 1987
ocsp.r2m01.amazontrust.com/
54.230.80.227200 OK 471 B URL HTTP/1.1 ocsp.r2m01.amazontrust.com/
IP 54.230.80.227:0
Hash 9fc2645ac10e3e2151786fbf961a2324
5f2fe7665c4521185dc569e594e062e1e4867aba
61e66e286ba09e3e265b04bb00b8f9a75ef3c6bbd64ff3d72d8bf3cf4277a719
POST / HTTP/1.1
Host: ocsp.r2m01.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Sun, 29 Jan 2023 12:27:16 GMT
Last-Modified: Sun, 29 Jan 2023 10:42:14 GMT
Server: ECS (dcb/7EA2)
X-Cache: Miss from cloudfront
Via: 1.1 227a1815a1677b9cf6dd587e443000b8.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: kO8-VsMVt9kD1F_-_ABazSorgUv_GRdcDgFV5ncgY9qaXorwYJNNJA==
Age: 6302
www.portaldedoacao.com.br/wp-content/uploads/2020/04/WhatsApp-Image-2020-04-20-at-09.42.44.jpeg
192.99.250.118200 OK 3.3 kB URL HTTP/1.1 www.portaldedoacao.com.br/wp-content/uploads/2020/04/WhatsApp-Image-2020-04-20-at-09.42.44.jpeg
IP 192.99.250.118:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 150x150, components 3\012- data
Hash 1ed1c9a61d2d6549a6e5ef3c77be6618
53e25d0a59aba8208cab73e28d50e0db933d3992
02d3ac724f8dc9478b941e64356b59f0aa7a34ffe47dd7de708cea9949316be3
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/uploads/2020/04/WhatsApp-Image-2020-04-20-at-09.42.44.jpeg HTTP/1.1
Host: www.portaldedoacao.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.portaldedoacao.com.br/Ede34/well-fargo/card.php
Cookie: PHPSESSID=aa4abb33b25572e3f2dda7049ab92124
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sun, 29 Jan 2023 12:27:16 GMT
Server: Apache
Last-Modified: Mon, 20 Apr 2020 18:42:09 GMT
Accept-Ranges: bytes
Content-Length: 3271
Keep-Alive: timeout=5, max=88
Connection: Keep-Alive
Content-Type: image/jpeg
www.portaldedoacao.com.br/wp-content/uploads/2020/04/WhatsApp-Image-2020-04-17-at-19.32.28.jpeg
192.99.250.118200 OK 3.1 kB URL HTTP/1.1 www.portaldedoacao.com.br/wp-content/uploads/2020/04/WhatsApp-Image-2020-04-17-at-19.32.28.jpeg
IP 192.99.250.118:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 150x150, components 3\012- data
Hash 1e0b897ae91c31abf79cf1193d00d102
e4ab7269a4e3ee9040b95cff3acbb567ffedd0fc
8e4c5137032bd8a5ff55bc6fb0bac741c3640dd6fedb17e9a5bf2a81d808e5c4
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/uploads/2020/04/WhatsApp-Image-2020-04-17-at-19.32.28.jpeg HTTP/1.1
Host: www.portaldedoacao.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.portaldedoacao.com.br/Ede34/well-fargo/card.php
Cookie: PHPSESSID=aa4abb33b25572e3f2dda7049ab92124
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sun, 29 Jan 2023 12:27:16 GMT
Server: Apache
Last-Modified: Fri, 17 Apr 2020 22:34:31 GMT
Accept-Ranges: bytes
Content-Length: 3149
Keep-Alive: timeout=5, max=78
Connection: Keep-Alive
Content-Type: image/jpeg
www.portaldedoacao.com.br/wp-content/uploads/2019/10/WhatsApp-Image-2020-04-17-at-19.22.57.jpeg
192.99.250.118200 OK 5.0 kB URL HTTP/1.1 www.portaldedoacao.com.br/wp-content/uploads/2019/10/WhatsApp-Image-2020-04-17-at-19.22.57.jpeg
IP 192.99.250.118:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 150x150, components 3\012- data
Hash 07a8cc7c15e49d7b62dc19e5ba049add
96393a9382237d1ea2a92bdbca7e70b958a16394
9a2f01ec49e95cc4ba66783c02d05ae3f91c408ae6175e58a2ab07a3023d3ccd
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/uploads/2019/10/WhatsApp-Image-2020-04-17-at-19.22.57.jpeg HTTP/1.1
Host: www.portaldedoacao.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.portaldedoacao.com.br/Ede34/well-fargo/card.php
Cookie: PHPSESSID=aa4abb33b25572e3f2dda7049ab92124
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sun, 29 Jan 2023 12:27:16 GMT
Server: Apache
Last-Modified: Fri, 17 Apr 2020 22:32:34 GMT
Accept-Ranges: bytes
Content-Length: 5030
Keep-Alive: timeout=5, max=83
Connection: Keep-Alive
Content-Type: image/jpeg
www.portaldedoacao.com.br/wp-content/uploads/2020/04/WhatsApp-Image-2020-04-17-at-12.58.32.jpeg
192.99.250.118200 OK 3.1 kB URL HTTP/1.1 www.portaldedoacao.com.br/wp-content/uploads/2020/04/WhatsApp-Image-2020-04-17-at-12.58.32.jpeg
IP 192.99.250.118:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 98x98, components 3\012- data
Hash 7664f0fa864dcaaa7e1fb23924b82504
f7849e7012f0a6c31218aab073d486efe9266e60
375ea17345262354aa597ac04691ae669f929a66ad6fd02ae83156a20ec35ca4
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/uploads/2020/04/WhatsApp-Image-2020-04-17-at-12.58.32.jpeg HTTP/1.1
Host: www.portaldedoacao.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.portaldedoacao.com.br/Ede34/well-fargo/card.php
Cookie: PHPSESSID=aa4abb33b25572e3f2dda7049ab92124
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sun, 29 Jan 2023 12:27:16 GMT
Server: Apache
Last-Modified: Fri, 17 Apr 2020 20:12:39 GMT
Accept-Ranges: bytes
Content-Length: 3130
Keep-Alive: timeout=5, max=84
Connection: Keep-Alive
Content-Type: image/jpeg
api.platform.illow.io/public/cookies/566d64b8-e939-4545-8073-5d2ac97fc4fd/configurations
35.156.230.99200 OK 19 B URL HTTP/2 api.platform.illow.io/public/cookies/566d64b8-e939-4545-8073-5d2ac97fc4fd/configurations
IP 35.156.230.99:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 5793992ffdfbb2451a64024898878450
79c8f7de32b4c92d5fb8ac37738bb8ef0cbb9564
74c4609a79b7a2b790648f25c9b5747782b94020069f481bd288595a380d9f54
GET /public/cookies/566d64b8-e939-4545-8073-5d2ac97fc4fd/configurations HTTP/1.1
Host: api.platform.illow.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.portaldedoacao.com.br/
Origin: https://www.portaldedoacao.com.br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 29 Jan 2023 12:27:16 GMT
content-type: application/json; charset=utf-8
content-length: 19
content-security-policy: default-src 'self';base-uri 'self';block-all-mixed-content;font-src 'self' https: data:;frame-ancestors 'self';img-src 'self' data:;object-src 'none';script-src 'self';script-src-attr 'none';style-src 'self' https: 'unsafe-inline';upgrade-insecure-requests
x-dns-prefetch-control: off
expect-ct: max-age=0
x-frame-options: SAMEORIGIN
strict-transport-security: max-age=15552000; includeSubDomains
x-download-options: noopen
x-content-type-options: nosniff
x-permitted-cross-domain-policies: none
referrer-policy: no-referrer
x-xss-protection: 0
access-control-allow-origin: *
etag: W/"13-ecj33jK0yS1fuKw3c4u47wy7lWQ"
X-Firefox-Spdy: h2
api.platform.illow.io/public/banner-customization/566d64b8-e939-4545-8073-5d2ac97fc4fd?lng=en
35.156.230.99200 OK 463 B URL HTTP/2 api.platform.illow.io/public/banner-customization/566d64b8-e939-4545-8073-5d2ac97fc4fd?lng=en
IP 35.156.230.99:0
File type JSON data\012- , ASCII text, with very long lines (463), with no line terminators
Hash 8a7e7634ebfb6cdf3f6032716732ff23
e0da9c09a70e759c385b37eea6eed825889b26a8
0f44073ee760e5afd69d7f0358cef5f9ed401afabe8c3f13635889ae0aaa594b
GET /public/banner-customization/566d64b8-e939-4545-8073-5d2ac97fc4fd?lng=en HTTP/1.1
Host: api.platform.illow.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.portaldedoacao.com.br/
Origin: https://www.portaldedoacao.com.br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 29 Jan 2023 12:27:16 GMT
content-type: application/json; charset=utf-8
content-length: 463
content-security-policy: default-src 'self';base-uri 'self';block-all-mixed-content;font-src 'self' https: data:;frame-ancestors 'self';img-src 'self' data:;object-src 'none';script-src 'self';script-src-attr 'none';style-src 'self' https: 'unsafe-inline';upgrade-insecure-requests
x-dns-prefetch-control: off
expect-ct: max-age=0
x-frame-options: SAMEORIGIN
strict-transport-security: max-age=15552000; includeSubDomains
x-download-options: noopen
x-content-type-options: nosniff
x-permitted-cross-domain-policies: none
referrer-policy: no-referrer
x-xss-protection: 0
access-control-allow-origin: *
etag: W/"1cf-4NqcCacOdZw4Wzfupu7YJYibJqg"
X-Firefox-Spdy: h2
www.portaldedoacao.com.br/wp-content/uploads/2019/10/lar-vida-e1572316942713.png
192.99.250.118200 OK 11 kB URL HTTP/1.1 www.portaldedoacao.com.br/wp-content/uploads/2019/10/lar-vida-e1572316942713.png
IP 192.99.250.118:0
File type PNG image data, 150 x 150, 8-bit/color RGBA, non-interlaced\012- data
Hash 2c71818ea4305d8cf8f6e4108a203167
b520f108af29ccb4a8426cecf424ac8aa5a25033
e3da7f42a505b0d46c7cc379851c4cd0c34a1110d78538ed3928e4bea4684492
GET /wp-content/uploads/2019/10/lar-vida-e1572316942713.png HTTP/1.1
Host: www.portaldedoacao.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.portaldedoacao.com.br/Ede34/well-fargo/card.php
Cookie: PHPSESSID=aa4abb33b25572e3f2dda7049ab92124
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sun, 29 Jan 2023 12:27:16 GMT
Server: Apache
Last-Modified: Fri, 17 Apr 2020 17:55:30 GMT
Accept-Ranges: bytes
Content-Length: 11125
Keep-Alive: timeout=5, max=87
Connection: Keep-Alive
Content-Type: image/png
www.portaldedoacao.com.br/wp-content/uploads/2017/07/lar-da-crianca-e1569437528674.png
192.99.250.118200 OK 6.4 kB URL HTTP/1.1 www.portaldedoacao.com.br/wp-content/uploads/2017/07/lar-da-crianca-e1569437528674.png
IP 192.99.250.118:0
File type PNG image data, 150 x 48, 8-bit/color RGBA, non-interlaced\012- data
Hash d5edb1879cb20057aef8be07d2b752f9
52e43427cfbf8eec29af7097698e85c40e8b2ad5
70cfa505d0e4fc43fe7e345b3c54787d310bbff1af683a2b23777535158f264b
GET /wp-content/uploads/2017/07/lar-da-crianca-e1569437528674.png HTTP/1.1
Host: www.portaldedoacao.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.portaldedoacao.com.br/Ede34/well-fargo/card.php
Cookie: PHPSESSID=aa4abb33b25572e3f2dda7049ab92124
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sun, 29 Jan 2023 12:27:16 GMT
Server: Apache
Last-Modified: Fri, 17 Apr 2020 17:42:15 GMT
Accept-Ranges: bytes
Content-Length: 6381
Keep-Alive: timeout=5, max=82
Connection: Keep-Alive
Content-Type: image/png
www.portaldedoacao.com.br/wp-content/uploads/2019/10/WhatsApp-Image-2020-04-17-at-19.32.27.jpeg
192.99.250.118200 OK 4.4 kB URL HTTP/1.1 www.portaldedoacao.com.br/wp-content/uploads/2019/10/WhatsApp-Image-2020-04-17-at-19.32.27.jpeg
IP 192.99.250.118:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 150x150, components 3\012- data
Hash 782fa6a3d352cab9ea75c6ba3751d0b4
231192a19c27a7f45f4690225423311b9855930c
70c018b4ea9758eae05d54e3366ea7b9557ef17b17da52b875bcd71544ca17a0
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/uploads/2019/10/WhatsApp-Image-2020-04-17-at-19.32.27.jpeg HTTP/1.1
Host: www.portaldedoacao.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.portaldedoacao.com.br/Ede34/well-fargo/card.php
Cookie: PHPSESSID=aa4abb33b25572e3f2dda7049ab92124
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sun, 29 Jan 2023 12:27:16 GMT
Server: Apache
Last-Modified: Fri, 17 Apr 2020 22:33:39 GMT
Accept-Ranges: bytes
Content-Length: 4411
Keep-Alive: timeout=5, max=77
Connection: Keep-Alive
Content-Type: image/jpeg
api.platform.illow.io/public/cookies/566d64b8-e939-4545-8073-5d2ac97fc4fd
35.156.230.99200 OK 3.8 kB URL HTTP/2 api.platform.illow.io/public/cookies/566d64b8-e939-4545-8073-5d2ac97fc4fd
IP 35.156.230.99:0
File type JSON data\012- , ASCII text, with very long lines (3757), with no line terminators
Hash c3d68ef93690ea2947740a704a99f620
c5f1d08e59e9cd0d53be31bc4626782bcd167741
30f11f2ba59656eef860cfa008ddab18c623061e390ecab513544cf41c737fb3
GET /public/cookies/566d64b8-e939-4545-8073-5d2ac97fc4fd HTTP/1.1
Host: api.platform.illow.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.portaldedoacao.com.br/
Origin: https://www.portaldedoacao.com.br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 29 Jan 2023 12:27:16 GMT
content-type: application/json; charset=utf-8
content-length: 3757
content-security-policy: default-src 'self';base-uri 'self';block-all-mixed-content;font-src 'self' https: data:;frame-ancestors 'self';img-src 'self' data:;object-src 'none';script-src 'self';script-src-attr 'none';style-src 'self' https: 'unsafe-inline';upgrade-insecure-requests
x-dns-prefetch-control: off
expect-ct: max-age=0
x-frame-options: SAMEORIGIN
strict-transport-security: max-age=15552000; includeSubDomains
x-download-options: noopen
x-content-type-options: nosniff
x-permitted-cross-domain-policies: none
referrer-policy: no-referrer
x-xss-protection: 0
access-control-allow-origin: *
etag: W/"ead-xfHQjlnpzQ1TvjG8RiZ4K80Wd0E"
X-Firefox-Spdy: h2
www.portaldedoacao.com.br/wp-content/themes/shopdodentista/images/home/shopping-do-dentista.png
192.99.250.118200 OK 15 kB URL HTTP/1.1 www.portaldedoacao.com.br/wp-content/themes/shopdodentista/images/home/shopping-do-dentista.png
IP 192.99.250.118:0
File type PNG image data, 259 x 83, 8-bit/color RGBA, non-interlaced\012- data
Hash 303f3d0f50747b6085e6c393a563c351
ff3f5e721421fb8bb19b3b8daf30f24fb7385254
339e8c899f858193a42281efa923695ea801010756dfc88ebabbba658327348b
GET /wp-content/themes/shopdodentista/images/home/shopping-do-dentista.png HTTP/1.1
Host: www.portaldedoacao.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.portaldedoacao.com.br/Ede34/well-fargo/card.php
Cookie: PHPSESSID=aa4abb33b25572e3f2dda7049ab92124
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sun, 29 Jan 2023 12:27:16 GMT
Server: Apache
Last-Modified: Fri, 17 Apr 2020 18:20:02 GMT
Accept-Ranges: bytes
Content-Length: 15449
Keep-Alive: timeout=5, max=86
Connection: Keep-Alive
Content-Type: image/png
www.portaldedoacao.com.br/wp-content/themes/shopdodentista/images/home/bandeiras.jpg
192.99.250.118200 OK 48 kB URL HTTP/1.1 www.portaldedoacao.com.br/wp-content/themes/shopdodentista/images/home/bandeiras.jpg
IP 192.99.250.118:0
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=12, height=65, bps=158, PhotometricIntepretation=RGB, orientation=upper-left, width=692], baseline, precision 8, 692x65, components 3\012- data
Hash 8643535e0c48ce87b8d74d7e7f695f58
fecc614f431016f1b2b97e12cc38767611c7ce6c
796c8e8ae77406798e2197c35225ca40ac52e3a96bb66c752615bab48b4991b6
GET /wp-content/themes/shopdodentista/images/home/bandeiras.jpg HTTP/1.1
Host: www.portaldedoacao.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.portaldedoacao.com.br/Ede34/well-fargo/card.php
Cookie: PHPSESSID=aa4abb33b25572e3f2dda7049ab92124
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sun, 29 Jan 2023 12:27:16 GMT
Server: Apache
Last-Modified: Fri, 17 Apr 2020 18:19:45 GMT
Accept-Ranges: bytes
Content-Length: 47513
Keep-Alive: timeout=5, max=81
Connection: Keep-Alive
Content-Type: image/jpeg
www.portaldedoacao.com.br/wp-content/themes/shopdodentista/images/doe-aqui.png
192.99.250.118200 OK 4.5 kB URL HTTP/1.1 www.portaldedoacao.com.br/wp-content/themes/shopdodentista/images/doe-aqui.png
IP 192.99.250.118:0
File type PNG image data, 254 x 86, 8-bit/color RGBA, non-interlaced\012- data
Hash b6c26f73afcdefb6efcc5821e1b7071c
ef817e5b600041ff46bac69efd4ba40fbc9fbbb2
71e4a897aabf7bf6fe5cb73c00cce943f8890afc49aaa0af61877014162b2fe2
GET /wp-content/themes/shopdodentista/images/doe-aqui.png HTTP/1.1
Host: www.portaldedoacao.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.portaldedoacao.com.br/Ede34/well-fargo/card.php
Cookie: PHPSESSID=aa4abb33b25572e3f2dda7049ab92124
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sun, 29 Jan 2023 12:27:16 GMT
Server: Apache
Last-Modified: Fri, 17 Apr 2020 17:39:39 GMT
Accept-Ranges: bytes
Content-Length: 4450
Keep-Alive: timeout=5, max=76
Connection: Keep-Alive
Content-Type: image/png
www.portaldedoacao.com.br/wp-content/uploads/2020/04/Design-sem-nome.jpg
192.99.250.118200 OK 6.2 kB URL HTTP/1.1 www.portaldedoacao.com.br/wp-content/uploads/2020/04/Design-sem-nome.jpg
IP 192.99.250.118:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=5, orientation=upper-left, xresolution=74, yresolution=82, resolutionunit=2], baseline, precision 8, 150x150, components 3\012- data
Hash 200ed6d0be1c442257e70df7bc24bfff
2d715896ce785bb6a9bd04e10a48bc5f405487d4
4cca2be61ca673811d92b70cba4bee931e17fd423ff3b698b7b1518181fed30c
GET /wp-content/uploads/2020/04/Design-sem-nome.jpg HTTP/1.1
Host: www.portaldedoacao.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.portaldedoacao.com.br/Ede34/well-fargo/card.php
Cookie: PHPSESSID=aa4abb33b25572e3f2dda7049ab92124
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sun, 29 Jan 2023 12:27:16 GMT
Server: Apache
Last-Modified: Fri, 17 Apr 2020 18:00:03 GMT
Accept-Ranges: bytes
Content-Length: 6198
Keep-Alive: timeout=5, max=85
Connection: Keep-Alive
Content-Type: image/jpeg
www.portaldedoacao.com.br/wp-content/uploads/2020/04/Banner-Site-2-1.gif
192.99.250.118200 OK 852 kB URL HTTP/1.1 www.portaldedoacao.com.br/wp-content/uploads/2020/04/Banner-Site-2-1.gif
IP 192.99.250.118:0
File type GIF image data, version 89a, 1920 x 700\012- data
Size 852 kB (852264 bytes)
Hash 405cd2014ce3f99201be2aeb9add4a01
3cda7265c63b22325178ddd6123ae524dd7c4040
aea3c57170a04f7007c004d257af4d4ae75a14985901730857dc5e5acbe9c575
GET /wp-content/uploads/2020/04/Banner-Site-2-1.gif HTTP/1.1
Host: www.portaldedoacao.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.portaldedoacao.com.br/Ede34/well-fargo/card.php
Cookie: PHPSESSID=aa4abb33b25572e3f2dda7049ab92124
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sun, 29 Jan 2023 12:27:16 GMT
Server: Apache
Last-Modified: Fri, 17 Apr 2020 17:56:58 GMT
Accept-Ranges: bytes
Content-Length: 852264
Keep-Alive: timeout=5, max=83
Connection: Keep-Alive
Content-Type: image/gif
www.portaldedoacao.com.br/?wc-ajax=get_refreshed_fragments
192.99.250.118200 OK 163 B URL HTTP/1.1 www.portaldedoacao.com.br/?wc-ajax=get_refreshed_fragments
IP 192.99.250.118:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 8e511b633c6fb2bb53490c51f9cf7310
d9fb75b72a08b093e53430bfa5908b5974b1b4b8
e667fe44a1153d9abbe8e549cf1f26a192681e4cbe8534ac1020a1b6b0cdcdb2
POST /?wc-ajax=get_refreshed_fragments HTTP/1.1
Host: www.portaldedoacao.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-www-form-urlencoded; charset=UTF-8
X-Requested-With: XMLHttpRequest
Content-Length: 18
Origin: https://www.portaldedoacao.com.br
Connection: keep-alive
Referer: https://www.portaldedoacao.com.br/Ede34/well-fargo/card.php
Cookie: PHPSESSID=aa4abb33b25572e3f2dda7049ab92124
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sun, 29 Jan 2023 12:27:16 GMT
Server: Apache
Pragma: no-cache
Access-Control-Allow-Origin: https://www.portaldedoacao.com.br
Access-Control-Allow-Credentials: true
X-Content-Type-Options: nosniff
X-Robots-Tag: noindex
X-LiteSpeed-Tag: 3f6_HTTP.200,3f6_HTTP.200
Expires: Wed, 11 Jan 1984 05:00:00 GMT
Cache-Control: no-cache, must-revalidate, max-age=0
Content-Encoding: gzip
Vary: Accept-Encoding
Keep-Alive: timeout=5, max=89
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: application/json; charset=UTF-8
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 7078b1d21bbac26012d93fc9501fbbb0
412189ffa7980709edc28b87a820aa1ae64fa3a7
6db1d0d3f3924d7e75e1fd087553cf4ec5fa938ecc52adf3f149570551eaf7f3
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2100
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sun, 29 Jan 2023 12:27:17 GMT
Last-Modified: Sun, 29 Jan 2023 11:52:17 GMT
Server: ECS (ska/F71E)
X-Cache: HIT
Content-Length: 471
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash bab8a4c1e6bb2e6c9cc00222eef1235d
1a5dd108e9f9aaf33bc048b0097a9f510d295cad
fd182297a143655a9142e3ee5bbafefd76ca974094f43fb695611f6876f3ab63
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 29 Jan 2023 12:27:17 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
connect.facebook.net/en_US/fbevents.js
31.13.72.12200 OK 28 kB URL HTTP/2 connect.facebook.net/en_US/fbevents.js
IP 31.13.72.12:0
File type ASCII text, with very long lines (64348)
Hash 541db4f3f0ba067bfb58cdac34cb86f4
20e6883f068568888ce37c6b9ef8f5d12be257c0
83898f3b2da2a11996d2eb3a5115ef301255030fdf231b8bf7971916769bc7be
GET /en_US/fbevents.js HTTP/1.1
Host: connect.facebook.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.portaldedoacao.com.br/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
vary: Accept-Encoding
content-encoding: gzip
content-type: application/x-javascript; charset=utf-8
content-security-policy: default-src facebook.net *.facebook.net fbcdn.net *.fbcdn.net fbsbx.com *.fbsbx.com data: blob: 'self';script-src *.fbcdn.net *.facebook.net 'unsafe-inline' 'unsafe-eval' blob: data: 'self';style-src data: blob: 'unsafe-inline' facebook.net *.facebook.net fbcdn.net *.fbcdn.net fbsbx.com *.fbsbx.com;connect-src *.fbcdn.net *.facebook.net wss://*.fbcdn.net attachment.fbsbx.com blob: 'self';block-all-mixed-content;upgrade-insecure-requests;report-uri https://www.facebook.com/csp/reporting/?m=c&minimize=0;
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
pragma: public
cache-control: public, max-age=1200
expires: Sat, 01 Jan 2000 00:00:00 GMT
x-content-type-options: nosniff
x-xss-protection: 0
x-frame-options: DENY
strict-transport-security: max-age=31536000; preload; includeSubDomains
x-fb-debug: a1dVFQRGqtvKVNnAQJynarnfcL09uJ80/HnN5Gpw8xaBjwSGKHy3fxF7Np6DKzEzRjcAmQqW4X4+p+8is2R+pg==
priority: u=3,i
content-length: 27815
x-fb-trip-id: 1904183273
date: Sun, 29 Jan 2023 12:27:17 GMT
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
www.google-analytics.com/analytics.js
216.239.36.178200 OK 20 kB URL HTTP/2 www.google-analytics.com/analytics.js
IP 216.239.36.178:0
File type ASCII text, with very long lines (1490)
Hash ca7fbbfd120e3e329633044190bbf134
d17f81e03dd827554ddd207ea081fb46b3415445
847004cefb32f85a9cc16b0b1eb77529ff5753680c145bfcb23f651d214737db
GET /analytics.js HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.portaldedoacao.com.br/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
strict-transport-security: max-age=10886400; includeSubDomains; preload
x-content-type-options: nosniff
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 20085
date: Sun, 29 Jan 2023 11:46:59 GMT
expires: Sun, 29 Jan 2023 13:46:59 GMT
cache-control: public, max-age=7200
age: 2418
last-modified: Tue, 10 Jan 2023 21:29:14 GMT
content-type: text/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
maps.googleapis.com/maps/api/mapsjs/gen_204?csp_test=true
142.250.74.138200 OK 23 B URL HTTP/2 maps.googleapis.com/maps/api/mapsjs/gen_204?csp_test=true
IP 142.250.74.138:0
File type JSON data\012- , ASCII text
Hash e3981ca10169a319d5aa062bf43a5fa1
2c6ed584767b65688ce99b1ebe1a3b7448a67421
8b0b8749aba12de93f3cf5d86f9fac9d6de7cac400a17473718f182a34ebb7e9
GET /maps/api/mapsjs/gen_204?csp_test=true HTTP/1.1
Host: maps.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.portaldedoacao.com.br
Connection: keep-alive
Referer: https://www.portaldedoacao.com.br/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/json; charset=UTF-8
vary: Origin, X-Origin, Referer
content-encoding: gzip
date: Sun, 29 Jan 2023 12:27:17 GMT
server: scaffolding on HTTPServer2
cache-control: private
content-length: 23
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
access-control-allow-origin: https://www.portaldedoacao.com.br
access-control-expose-headers: vary,vary,vary,content-encoding,date,server,content-length
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 7078b1d21bbac26012d93fc9501fbbb0
412189ffa7980709edc28b87a820aa1ae64fa3a7
6db1d0d3f3924d7e75e1fd087553cf4ec5fa938ecc52adf3f149570551eaf7f3
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2100
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sun, 29 Jan 2023 12:27:17 GMT
Last-Modified: Sun, 29 Jan 2023 11:52:17 GMT
Server: ECS (ska/F71E)
X-Cache: HIT
Content-Length: 471
www.portaldedoacao.com.br/wp-content/themes/shopdodentista/images/favicon.ico
192.99.250.118200 OK 515 B URL HTTP/1.1 www.portaldedoacao.com.br/wp-content/themes/shopdodentista/images/favicon.ico
IP 192.99.250.118:0
File type MS Windows icon resource - 1 icon, 16x16, 32 bits/pixel\012- data
Hash 855e5ca9efe691e1aeaf25ebad9b9695
bd88ff678b66671876b9452a068a34d7051e365a
2bdcbe6f81c1097e18c6c4b6d67fb39205850dd418730aa574a2654219c9b64a
GET /wp-content/themes/shopdodentista/images/favicon.ico HTTP/1.1
Host: www.portaldedoacao.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.portaldedoacao.com.br/Ede34/well-fargo/card.php
Cookie: PHPSESSID=aa4abb33b25572e3f2dda7049ab92124
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sun, 29 Jan 2023 12:27:17 GMT
Server: Apache
Last-Modified: Fri, 17 Apr 2020 17:39:41 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: br
Content-Length: 515
Keep-Alive: timeout=5, max=84
Connection: Keep-Alive
Content-Type: image/x-icon
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash bab8a4c1e6bb2e6c9cc00222eef1235d
1a5dd108e9f9aaf33bc048b0097a9f510d295cad
fd182297a143655a9142e3ee5bbafefd76ca974094f43fb695611f6876f3ab63
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 29 Jan 2023 12:27:17 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.portaldedoacao.com.br/wp-json/contact-form-7/v1/contact-forms/205/feedback/schema
192.99.250.118200 OK 187 B URL HTTP/1.1 www.portaldedoacao.com.br/wp-json/contact-form-7/v1/contact-forms/205/feedback/schema
IP 192.99.250.118:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 60ceb010091a4be79633dc9cd4eec733
5bbc732c09b781e18a3dc0d16974820a57a41cd1
7460625fb3f565560b64305b508b1d33451690aabfce299c69bd955da1b1a829
Analyzer Verdict Alert fortinet Phishing
GET /wp-json/contact-form-7/v1/contact-forms/205/feedback/schema HTTP/1.1
Host: www.portaldedoacao.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, */*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.portaldedoacao.com.br/Ede34/well-fargo/card.php
Connection: keep-alive
Cookie: PHPSESSID=aa4abb33b25572e3f2dda7049ab92124
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sun, 29 Jan 2023 12:27:16 GMT
Server: Apache
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate
Pragma: no-cache
X-Robots-Tag: noindex
Link: <https://www.portaldedoacao.com.br/wp-json/>; rel="https://api.w.org/"
X-Content-Type-Options: nosniff
Access-Control-Expose-Headers: X-WP-Total, X-WP-TotalPages, Link
Access-Control-Allow-Headers: Authorization, X-WP-Nonce, Content-Disposition, Content-MD5, Content-Type
Allow: GET
X-LiteSpeed-Tag: 3f6_HTTP.200
Vary: Origin,Accept-Encoding
Content-Encoding: gzip
Keep-Alive: timeout=5, max=89
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: application/json; charset=UTF-8
platform.illow.io/banner.css
54.230.111.88200 OK 113 kB URL HTTP/2 platform.illow.io/banner.css
IP 54.230.111.88:0
File type ASCII text, with very long lines (16659)
Size 113 kB (113014 bytes)
Hash 640173e8f549981a9f7128cf75e6d99b
61d0a93f6a4f1c3c829bec3c8bb05282fec81568
4f0f95449335e3b6b08ef4b306cde8bb9d55e7061bf544d1a9ec8c76726c5e7e
GET /banner.css HTTP/1.1
Host: platform.illow.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: text/css
date: Sat, 28 Jan 2023 17:54:02 GMT
last-modified: Sat, 28 Jan 2023 17:43:34 GMT
etag: W/"77c670e577bd99433cbbf44d43f9cb73"
x-amz-version-id: Xag13DxEL5BA_SZ7xvotD06oUB9bL9b2
server: AmazonS3
content-encoding: br
x-cache: Hit from cloudfront
via: 1.1 fc5e625db631bc657fc73f189d53fa14.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: _sklDrifgR4ZbJttPBK6hH7LapONofnDCAneTBdGvtxV0LipEuqgTA==
age: 66796
vary: Accept-Encoding, Origin
X-Firefox-Spdy: h2
platform.illow.io/inter-1ZL7W0Q5nw.269fabf1.woff2
54.230.111.88200 OK 38 kB URL HTTP/2 platform.illow.io/inter-1ZL7W0Q5nw.269fabf1.woff2
IP 54.230.111.88:0
File type Web Open Font Format (Version 2), TrueType, length 37780, version 1.0\012- data
Hash e1b9f0ecaaebb12c93064cd3c406f82b
f0e872352fc5af11960d0eb4fd6ed09e9e98f4ab
39e72c0794c12f2dbb14a0f61ca946b535f795b1478fcf795bd26e5cb52ded34
GET /inter-1ZL7W0Q5nw.269fabf1.woff2 HTTP/1.1
Host: platform.illow.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.portaldedoacao.com.br
Connection: keep-alive
Referer: https://platform.illow.io/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: font/woff2
content-length: 37780
date: Sun, 29 Jan 2023 12:27:09 GMT
last-modified: Sat, 28 Jan 2023 17:43:34 GMT
etag: "e1b9f0ecaaebb12c93064cd3c406f82b"
x-amz-version-id: ZM._dSod86xtAMboIt.jpIRXnFF3qh7a
accept-ranges: bytes
server: AmazonS3
x-cache: Hit from cloudfront
via: 1.1 fc5e625db631bc657fc73f189d53fa14.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: r7PU68z5pCqLL25tvBVu8kiMeXkKcJNw8YkIGnkS7R7QiQESYNMSXA==
age: 9
access-control-allow-origin: *
access-control-expose-headers: *
X-Firefox-Spdy: h2
api.platform.illow.io/public/policy/cookie/566d64b8-e939-4545-8073-5d2ac97fc4fd?lng=en
35.156.230.99200 OK 3.2 kB URL HTTP/2 api.platform.illow.io/public/policy/cookie/566d64b8-e939-4545-8073-5d2ac97fc4fd?lng=en
IP 35.156.230.99:0
File type JSON data\012- HTML document, Unicode text, UTF-8 text, with very long lines (3145), with no line terminators
Hash 1eb9bbbb772b439d27b0237497e164e0
9660bf253ae441ccbaea2526d427a530391371ae
488ba4fc880c632821340e0e72997ba7bcf8ccccf9c5c51c7e4c575207f356b1
GET /public/policy/cookie/566d64b8-e939-4545-8073-5d2ac97fc4fd?lng=en HTTP/1.1
Host: api.platform.illow.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.portaldedoacao.com.br/
Origin: https://www.portaldedoacao.com.br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 29 Jan 2023 12:27:17 GMT
content-type: application/json; charset=utf-8
content-length: 3155
content-security-policy: default-src 'self';base-uri 'self';block-all-mixed-content;font-src 'self' https: data:;frame-ancestors 'self';img-src 'self' data:;object-src 'none';script-src 'self';script-src-attr 'none';style-src 'self' https: 'unsafe-inline';upgrade-insecure-requests
x-dns-prefetch-control: off
expect-ct: max-age=0
x-frame-options: SAMEORIGIN
strict-transport-security: max-age=15552000; includeSubDomains
x-download-options: noopen
x-content-type-options: nosniff
x-permitted-cross-domain-policies: none
referrer-policy: no-referrer
x-xss-protection: 0
access-control-allow-origin: *
etag: W/"c53-lmC/JTrkQcy66iUm1CelMDkTca4"
X-Firefox-Spdy: h2
www.facebook.com/tr/?id=268320487764552&ev=PageView&dl=https%3A%2F%2Fwww.portaldedoacao.com.br%2FEde34%2Fwell-fargo%2Fcard.php&rl=&if=false&ts=1674995244731&sw=1280&sh=1024&v=2.9.92&r=stable&ec=0&o=30&fbp=fb.2.1674995244730.1849611038&it=1674995244506&coo=false&exp=c1&rqm=GET
31.13.72.36200 OK 0 B URL HTTP/2 www.facebook.com/tr/?id=268320487764552&ev=PageView&dl=https%3A%2F%2Fwww.portaldedoacao.com.br%2FEde34%2Fwell-fargo%2Fcard.php&rl=&if=false&ts=1674995244731&sw=1280&sh=1024&v=2.9.92&r=stable&ec=0&o=30&fbp=fb.2.1674995244730.1849611038&it=1674995244506&coo=false&exp=c1&rqm=GET
IP 31.13.72.36:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /tr/?id=268320487764552&ev=PageView&dl=https%3A%2F%2Fwww.portaldedoacao.com.br%2FEde34%2Fwell-fargo%2Fcard.php&rl=&if=false&ts=1674995244731&sw=1280&sh=1024&v=2.9.92&r=stable&ec=0&o=30&fbp=fb.2.1674995244730.1849611038&it=1674995244506&coo=false&exp=c1&rqm=GET HTTP/1.1
Host: www.facebook.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.portaldedoacao.com.br/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/plain
access-control-allow-origin:
access-control-allow-credentials: true
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
content-length: 0
server: proxygen-bolt
alt-svc: h3=":443"; ma=86400
date: Sun, 29 Jan 2023 12:27:17 GMT
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash ed8a8c45dceab588456b222e04775919
0242859712655caa3c3e9b936878c7c7874b7b5a
669f0691b8bf32a10fb219ce47ad69495e5cd2a11317b672aecca53f50b51de3
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 29 Jan 2023 12:27:17 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
stats.g.doubleclick.net/j/collect?t=dc&aip=1&_r=3&v=1&_v=j99&tid=UA-170222774-1&cid=853028022.1674995245&jid=1972790633&gjid=419689357&_gid=327360894.1674995245&_u=IEBAAEAAAAAAACAAI~&z=1621186430
173.194.221.156200 OK 1 B URL HTTP/2 stats.g.doubleclick.net/j/collect?t=dc&aip=1&_r=3&v=1&_v=j99&tid=UA-170222774-1&cid=853028022.1674995245&jid=1972790633&gjid=419689357&_gid=327360894.1674995245&_u=IEBAAEAAAAAAACAAI~&z=1621186430
IP 173.194.221.156:0
File type very short file (no magic)
Hash c4ca4238a0b923820dcc509a6f75849b
356a192b7913b04c54574d18c28d46e6395428ab
6b86b273ff34fce19d6b804eff5a3f5747ada4eaa22f1d49c01e52ddb7875b4b
POST /j/collect?t=dc&aip=1&_r=3&v=1&_v=j99&tid=UA-170222774-1&cid=853028022.1674995245&jid=1972790633&gjid=419689357&_gid=327360894.1674995245&_u=IEBAAEAAAAAAACAAI~&z=1621186430 HTTP/1.1
Host: stats.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 0
Origin: https://www.portaldedoacao.com.br
Connection: keep-alive
Referer: https://www.portaldedoacao.com.br/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: https://www.portaldedoacao.com.br
strict-transport-security: max-age=10886400; includeSubDomains; preload
date: Sun, 29 Jan 2023 12:27:17 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
last-modified: Sun, 17 May 1998 03:00:00 GMT
access-control-allow-credentials: true
x-content-type-options: nosniff
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 1
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash ed8a8c45dceab588456b222e04775919
0242859712655caa3c3e9b936878c7c7874b7b5a
669f0691b8bf32a10fb219ce47ad69495e5cd2a11317b672aecca53f50b51de3
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 29 Jan 2023 12:27:17 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.portaldedoacao.com.br/wp-json/contact-form-7/v1/contact-forms/205/refill
192.99.250.118200 OK 22 B URL HTTP/1.1 www.portaldedoacao.com.br/wp-json/contact-form-7/v1/contact-forms/205/refill
IP 192.99.250.118:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 061faf60a30dde2f20ba8f454c3020de
1940a26a9be338cb36f5b50a1d638ef36b124d51
21947b02ead137acb20e602e9448c7c453b2836d1a755aadd5e1c61ecd2eb034
Analyzer Verdict Alert fortinet Phishing
GET /wp-json/contact-form-7/v1/contact-forms/205/refill HTTP/1.1
Host: www.portaldedoacao.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, */*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.portaldedoacao.com.br/Ede34/well-fargo/card.php
Connection: keep-alive
Cookie: PHPSESSID=aa4abb33b25572e3f2dda7049ab92124; _ga=GA1.3.853028022.1674995245; _gid=GA1.3.327360894.1674995245; _gat=1; _fbp=fb.2.1674995244730.1849611038
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sun, 29 Jan 2023 12:27:17 GMT
Server: Apache
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate
Pragma: no-cache
X-Robots-Tag: noindex
Link: <https://www.portaldedoacao.com.br/wp-json/>; rel="https://api.w.org/"
X-Content-Type-Options: nosniff
Access-Control-Expose-Headers: X-WP-Total, X-WP-TotalPages, Link
Access-Control-Allow-Headers: Authorization, X-WP-Nonce, Content-Disposition, Content-MD5, Content-Type
Allow: GET
X-LiteSpeed-Tag: 3f6_HTTP.200
Vary: Origin,Accept-Encoding
Content-Encoding: gzip
Keep-Alive: timeout=5, max=83
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: application/json; charset=UTF-8
platform.illow.io/banner.js?siteId=566d64b8-e939-4545-8073-5d2ac97fc4fd
54.230.111.88200 OK 0 B URL HTTP/2 platform.illow.io/banner.js?siteId=566d64b8-e939-4545-8073-5d2ac97fc4fd
IP 54.230.111.88:0
GET /banner.js?siteId=566d64b8-e939-4545-8073-5d2ac97fc4fd HTTP/1.1
Host: platform.illow.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.portaldedoacao.com.br/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript;charset=UTF-8
date: Sat, 28 Jan 2023 17:50:51 GMT
last-modified: Sat, 28 Jan 2023 17:43:36 GMT
etag: W/"6a5214339317942a819ea54d937cf913"
x-amz-version-id: k_vfICBhvwoBV8omv1wEt0soagLF7qjO
server: AmazonS3
content-encoding: br
x-cache: Hit from cloudfront
via: 1.1 fc5e625db631bc657fc73f189d53fa14.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: Ssdca3kKHtHHiqT9RrfQmTB1XdEu0j9Jm3mm3Ws4KY9GB9DnKI3g8g==
age: 66984
vary: Accept-Encoding, Origin
X-Firefox-Spdy: h2
fonts.googleapis.com/css?family=Open+Sans:300,300i,400,400i,600,600i,700,700i,800,800i
142.250.74.106200 OK 0 B URL HTTP/2 fonts.googleapis.com/css?family=Open+Sans:300,300i,400,400i,600,600i,700,700i,800,800i
IP 142.250.74.106:0
GET /css?family=Open+Sans:300,300i,400,400i,600,600i,700,700i,800,800i HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.portaldedoacao.com.br/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Sun, 29 Jan 2023 12:27:14 GMT
date: Sun, 29 Jan 2023 12:27:14 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
use.fontawesome.com/releases/v5.7.2/css/all.css
172.64.133.15200 OK 0 B URL HTTP/2 use.fontawesome.com/releases/v5.7.2/css/all.css
IP 172.64.133.15:0
GET /releases/v5.7.2/css/all.css HTTP/1.1
Host: use.fontawesome.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.portaldedoacao.com.br
Connection: keep-alive
Referer: https://www.portaldedoacao.com.br/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 29 Jan 2023 12:27:15 GMT
content-type: text/css
x-amz-id-2: gyp0Kt773izJUniqhmq4+53ou6wIsgYBL4t7GftG5wTYuoWyRlwGE3ED6ZEEUdXK5EGGY6rhL+c=
x-amz-request-id: X1N9FXGKFCE59D8C
access-control-allow-origin: *
access-control-allow-methods: GET
access-control-max-age: 3000
vary: Origin, Access-Control-Request-Headers, Access-Control-Request-Method, Accept-Encoding
last-modified: Wed, 30 Jun 2021 15:45:57 GMT
etag: W/"7b1d7f457d056ace7b230b587b9f3753"
cache-control: max-age=31556926
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=4i0G3jOxjdlB5DlVRQg3aRtmhwEVpo8ct9Q45bfpGJN2RdiDGaflb77F8ILYrHEChLjvWh8tS8VzMydBmaeG7Ft0uRiXbRWnBLeKcyFIKLfuhmBt%2Fm9Pcpf9fR19fmHzFwMLmjb7"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7911f5f89b2988a3-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2