r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 3d0727e32cd103ddd4b73f28c81758aa
197a7bf43d63723fc532c23c6dced68d5cc36652
d3f75d03561d6a47d19370292e821a86e58381466f0c69386a21175de55882ff
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D3F75D03561D6A47D19370292E821A86E58381466F0C69386A21175DE55882FF"
Last-Modified: Fri, 11 Nov 2022 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3193
Expires: Sun, 13 Nov 2022 01:59:44 GMT
Date: Sun, 13 Nov 2022 01:06:31 GMT
Connection: keep-alive
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash de470c6bab46e7c4b7cc69f392900fe7
189e4dcc4c2b8bf1f050e06bd68bce8a99618918
86f57134ddebd23a25615dc4d59c4b1ca8919e3e0495e1f006cbe7c0f39aa27e
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6354
Cache-Control: max-age=126638
Content-Type: application/ocsp-response
Date: Sun, 13 Nov 2022 01:06:31 GMT
Etag: "636f75f3-1d7"
Expires: Mon, 14 Nov 2022 12:17:09 GMT
Last-Modified: Sat, 12 Nov 2022 10:31:15 GMT
Server: ECS (ska/F708)
X-Cache: HIT
Content-Length: 471
firefox.settings.services.mozilla.com/v1/
34.102.187.140200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP 34.102.187.140:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 4736bac84ca28f2b1e961159fb4ea098
1319612979f53896fcfeacd4215c2715d4951e4c
5e81213e111ddf68c7f884f72b4e06fc4dc95eb902c3cf0762236b2418840dba
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Length, Retry-After, Alert, Backoff, Content-Type
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Sun, 13 Nov 2022 00:44:05 GMT
cache-control: public,max-age=3600
content-type: application/json
age: 1346
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 5076aaa9f4ccd602540286ce0590cb9a
bbf7936a8413a564478971d9e19beb6338cbc869
00e3b967c579b0ccf709b78d497a43d95646b16eb50925fef1e2694c58f290b2
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "00E3B967C579B0CCF709B78D497A43D95646B16EB50925FEF1E2694C58F290B2"
Last-Modified: Fri, 11 Nov 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3590
Expires: Sun, 13 Nov 2022 02:06:21 GMT
Date: Sun, 13 Nov 2022 01:06:31 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash 67d5a988edcda47bc3b3b3f65d32b4b6
d4f0e0da8b3690cc7da925026d3414b68c7d954f
55e4848e3ec682e808ce7ee70950f86179c43af4f81926d826a95edfda395a78
GET /chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: CGSutnR2r8gx4gR15bXb0tMrWksZPmmVJChoxwZ1j0zBEvDm8cGECbXIejmv++am2Sv0KlSNjCfJqM48tZTmqA==
x-amz-request-id: MHHY07603RFEV9SB
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Sun, 13 Nov 2022 00:50:29 GMT
age: 962
last-modified: Fri, 30 Sep 2022 18:50:55 GMT
etag: "67d5a988edcda47bc3b3b3f65d32b4b6"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Sun, 13 Nov 2022 01:06:31 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash bc49d7a510846ce4c52fc2bcf19c591c
42189d9ddeba55c15da20ab02c8ccad4a8ad7ae2
86ce259086857d53f246aa21f8cb5dc2be85435601b687f727d3a5a2e38ec406
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 13 Nov 2022 01:06:32 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 4b46bbcd35c85c4678b0e3e409bba3bc
bb0705335e28414345ad5fcdd61104cf2fbbbbc4
6c3df7e6d0a8491fe24c03df2ccba059ba2f84155a680a4a22f217d3870cff95
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 13 Nov 2022 01:06:32 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
34.102.187.140200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 34.102.187.140:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Alert, Last-Modified, Cache-Control, Retry-After, Content-Length, Expires, ETag, Pragma, Backoff, Content-Type
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Sun, 13 Nov 2022 00:25:00 GMT
cache-control: public,max-age=3600
age: 2492
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
alt-svc: clear
X-Firefox-Spdy: h2
www.bradescosaudeempresariall.sousanogueira.com.br/assets/web/assets/mobirise-icons/mobirise-icons.css
200.219.229.6200 OK 7.6 kB URL HTTP/1.1 www.bradescosaudeempresariall.sousanogueira.com.br/assets/web/assets/mobirise-icons/mobirise-icons.css
IP 200.219.229.6:0
Hash b7f22b4c8cdf26f6c3528095d3917eed
b41b69a4033612ff3f58956e54d15e4d776f654d
b0cf918213747e59ed554a87d5e821487bc728f2cbb3460d4a2f08735391c44d
GET /assets/web/assets/mobirise-icons/mobirise-icons.css HTTP/1.1
Host: www.bradescosaudeempresariall.sousanogueira.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.bradescosaudeempresariall.sousanogueira.com.br/
HTTP/1.1 200 OK
Date: Sun, 13 Nov 2022 01:06:31 GMT
Server: Apache
Upgrade: h2,h2c
Connection: Upgrade, Keep-Alive
Last-Modified: Mon, 08 Nov 2021 19:24:46 GMT
Accept-Ranges: bytes
Content-Length: 7613
Keep-Alive: timeout=5, max=100
Content-Type: text/css
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash ae51f1958554de4457c22a7d5a9ba8b6
173e90a8c6ee36b7ec569dbea47436a90d7e7c76
dc43a04e1e26243f63a8e628f2ebcb23a9527fd4bc40dc6d1d61879b0f95bb21
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 781
Cache-Control: max-age=116001
Content-Type: application/ocsp-response
Date: Sun, 13 Nov 2022 01:06:32 GMT
Etag: "636f622c-1d7"
Expires: Mon, 14 Nov 2022 09:19:53 GMT
Last-Modified: Sat, 12 Nov 2022 09:06:52 GMT
Server: ECS (ska/F708)
X-Cache: HIT
Content-Length: 471
push.services.mozilla.com/
52.89.114.252101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 52.89.114.252:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: /w30tOdsYzfdNxcYPr1hRw==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: KSFdCn/ELeeih7OPS31aZDvHdx8=
www.bradescosaudeempresariall.sousanogueira.com.br/
200.219.229.6200 OK 26 kB URL HTTP/1.1 www.bradescosaudeempresariall.sousanogueira.com.br/
IP 200.219.229.6:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (2903)
Hash 3caeba9963f6513a45a7773f60e48bca
393ecfdf90e99cc504e5b08a69bb3749a06b6367
74820bb70cbb64b185f9d2b5a81a877daa7a6f3137988a17b10698ab8500e9f7
Analyzer Verdict Alert fortinet Phishing
GET / HTTP/1.1
Host: www.bradescosaudeempresariall.sousanogueira.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 200 OK
Date: Sun, 13 Nov 2022 01:06:31 GMT
Server: Apache
Upgrade: h2,h2c
Connection: Upgrade, Keep-Alive
Last-Modified: Mon, 30 May 2022 13:56:14 GMT
Accept-Ranges: bytes
Content-Length: 26235
Keep-Alive: timeout=5, max=100
Content-Type: text/html
www.bradescosaudeempresariall.sousanogueira.com.br/assets/icon54-v2/style.css
200.219.229.6200 OK 56 kB URL HTTP/1.1 www.bradescosaudeempresariall.sousanogueira.com.br/assets/icon54-v2/style.css
IP 200.219.229.6:0
Hash 522900970d29e8f7205d980497c5252f
29e02c993ad7e82e51f036e39dd92486aed63f16
51af5f8e08aeede032884e735a77fabd0a0dc34e4d31f17a7d58b8eec6437a80
GET /assets/icon54-v2/style.css HTTP/1.1
Host: www.bradescosaudeempresariall.sousanogueira.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.bradescosaudeempresariall.sousanogueira.com.br/
HTTP/1.1 200 OK
Date: Sun, 13 Nov 2022 01:06:31 GMT
Server: Apache
Upgrade: h2,h2c
Connection: Upgrade, Keep-Alive
Last-Modified: Mon, 08 Nov 2021 19:24:52 GMT
Accept-Ranges: bytes
Content-Length: 56111
Keep-Alive: timeout=5, max=100
Content-Type: text/css
www.bradescosaudeempresariall.sousanogueira.com.br/assets/linecons/style.css
200.219.229.6200 OK 2.8 kB URL HTTP/1.1 www.bradescosaudeempresariall.sousanogueira.com.br/assets/linecons/style.css
IP 200.219.229.6:0
Hash 13d0c25f1c84f75344ed5ca4e9eaad3a
d22349200d638cb356c9e9876de9cbcbf18279c4
2dbe0be83d816e6c3eab45af780e655373e816f12d451684931bd7ad65e8c3be
GET /assets/linecons/style.css HTTP/1.1
Host: www.bradescosaudeempresariall.sousanogueira.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.bradescosaudeempresariall.sousanogueira.com.br/
HTTP/1.1 200 OK
Date: Sun, 13 Nov 2022 01:06:32 GMT
Server: Apache
Last-Modified: Mon, 08 Nov 2021 19:24:52 GMT
Accept-Ranges: bytes
Content-Length: 2794
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: text/css
www.bradescosaudeempresariall.sousanogueira.com.br/assets/mobirise/css/mbr-additional.css
200.219.229.6200 OK 50 kB URL HTTP/1.1 www.bradescosaudeempresariall.sousanogueira.com.br/assets/mobirise/css/mbr-additional.css
IP 200.219.229.6:0
File type ASCII text, with very long lines (522)
Hash 0c27ff8763ad7d5f72471621b23c0abe
2873310ec3858f857e176d954b7a666c54cc6ed2
9e24f2a46c884497f1d402b895ef995eebf2ac5580e132884e8ba9101e76e1c3
GET /assets/mobirise/css/mbr-additional.css HTTP/1.1
Host: www.bradescosaudeempresariall.sousanogueira.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.bradescosaudeempresariall.sousanogueira.com.br/
HTTP/1.1 200 OK
Date: Sun, 13 Nov 2022 01:06:31 GMT
Server: Apache
Upgrade: h2,h2c
Connection: Upgrade, Keep-Alive
Last-Modified: Mon, 30 May 2022 13:56:14 GMT
Accept-Ranges: bytes
Content-Length: 50399
Keep-Alive: timeout=5, max=100
Content-Type: text/css
www.bradescosaudeempresariall.sousanogueira.com.br/assets/tether/tether.min.css
200.219.229.6200 OK 237 B URL HTTP/1.1 www.bradescosaudeempresariall.sousanogueira.com.br/assets/tether/tether.min.css
IP 200.219.229.6:0
File type ASCII text, with no line terminators
Hash 62155a3948cbf17b1bf4b407c90ab84f
4c02e993cdc345d428bfe41afa8a5676e7c717b8
cb84c37000f8fe3e68e24799be081febdf02afd39cec967e80631ac76dea9950
GET /assets/tether/tether.min.css HTTP/1.1
Host: www.bradescosaudeempresariall.sousanogueira.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.bradescosaudeempresariall.sousanogueira.com.br/
HTTP/1.1 200 OK
Date: Sun, 13 Nov 2022 01:06:32 GMT
Server: Apache
Last-Modified: Mon, 08 Nov 2021 19:24:48 GMT
Accept-Ranges: bytes
Content-Length: 237
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: text/css
www.bradescosaudeempresariall.sousanogueira.com.br/assets/web/assets/mobirise-icons2/mobirise2.css
200.219.229.6200 OK 8.7 kB URL HTTP/1.1 www.bradescosaudeempresariall.sousanogueira.com.br/assets/web/assets/mobirise-icons2/mobirise2.css
IP 200.219.229.6:0
Hash f913bb3b156d13516c0ff37b577fc00f
b7c73222d1eb5dcbfaac71b1ac625432ef051d83
cdcbe8357cc75719dbb1b931f7f8b7690b94480814ee062742b0243a714b80e5
GET /assets/web/assets/mobirise-icons2/mobirise2.css HTTP/1.1
Host: www.bradescosaudeempresariall.sousanogueira.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.bradescosaudeempresariall.sousanogueira.com.br/
HTTP/1.1 200 OK
Date: Sun, 13 Nov 2022 01:06:32 GMT
Server: Apache
Last-Modified: Mon, 08 Nov 2021 19:24:47 GMT
Accept-Ranges: bytes
Content-Length: 8709
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: text/css
www.bradescosaudeempresariall.sousanogueira.com.br/assets/Material-Design-Icons/css/material.css
200.219.229.6200 OK 49 kB URL HTTP/1.1 www.bradescosaudeempresariall.sousanogueira.com.br/assets/Material-Design-Icons/css/material.css
IP 200.219.229.6:0
File type ASCII text, with very long lines (311)
Hash f7320f0637353b5588292da65dd81fe8
8084ced9c1b76ff79d6d7732979215afe7bbee3e
4a509c45713bc19d7a456a49081a7b625167cdf1cbff02baf4c2d6606eda5c9a
GET /assets/Material-Design-Icons/css/material.css HTTP/1.1
Host: www.bradescosaudeempresariall.sousanogueira.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.bradescosaudeempresariall.sousanogueira.com.br/
HTTP/1.1 200 OK
Date: Sun, 13 Nov 2022 01:06:31 GMT
Server: Apache
Upgrade: h2,h2c
Connection: Upgrade, Keep-Alive
Last-Modified: Mon, 08 Nov 2021 19:24:51 GMT
Accept-Ranges: bytes
Content-Length: 48785
Keep-Alive: timeout=5, max=100
Content-Type: text/css
www.bradescosaudeempresariall.sousanogueira.com.br/assets/bootstrap/css/bootstrap-grid.min.css
200.219.229.6200 OK 14 kB URL HTTP/1.1 www.bradescosaudeempresariall.sousanogueira.com.br/assets/bootstrap/css/bootstrap-grid.min.css
IP 200.219.229.6:0
File type ASCII text, with very long lines (13791), with no line terminators
Hash afedf4d0fbebdc5a2674e034da4f55ee
48959c2b4371f0e7e9b9a0a56a3b68ec90aab3e4
d06a46a452f6bb8a44dddcf149ee801507274e10ae268262172a590ab48ad704
GET /assets/bootstrap/css/bootstrap-grid.min.css HTTP/1.1
Host: www.bradescosaudeempresariall.sousanogueira.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.bradescosaudeempresariall.sousanogueira.com.br/
HTTP/1.1 200 OK
Date: Sun, 13 Nov 2022 01:06:33 GMT
Server: Apache
Last-Modified: Mon, 08 Nov 2021 19:24:48 GMT
Accept-Ranges: bytes
Content-Length: 13791
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: text/css
www.bradescosaudeempresariall.sousanogueira.com.br/assets/bootstrap/css/bootstrap-reboot.min.css
200.219.229.6200 OK 1.4 kB URL HTTP/1.1 www.bradescosaudeempresariall.sousanogueira.com.br/assets/bootstrap/css/bootstrap-reboot.min.css
IP 200.219.229.6:0
File type ASCII text, with very long lines (1366), with no line terminators
Hash 598602c8ccd4b284ea888cfca25ee145
1022934a714d4da11d3218bed3a43bfc5cc602be
d8baa6d7fdfd74c8a763af51af27eeedecb6ccab88d0d5a60ef3aaa103875559
GET /assets/bootstrap/css/bootstrap-reboot.min.css HTTP/1.1
Host: www.bradescosaudeempresariall.sousanogueira.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.bradescosaudeempresariall.sousanogueira.com.br/
HTTP/1.1 200 OK
Date: Sun, 13 Nov 2022 01:06:33 GMT
Server: Apache
Last-Modified: Mon, 08 Nov 2021 19:24:48 GMT
Accept-Ranges: bytes
Content-Length: 1366
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: text/css
www.bradescosaudeempresariall.sousanogueira.com.br/assets/chatbutton/floating-wpp.css
200.219.229.6200 OK 3.0 kB URL HTTP/1.1 www.bradescosaudeempresariall.sousanogueira.com.br/assets/chatbutton/floating-wpp.css
IP 200.219.229.6:0
Hash 4532a0e45747915836863d8b9b2e0396
fd531e4b375fc17f844e6f6d5848865c8c0fdbbc
64652490b5b00204d1ea60b60c11f8c6228000e7b07b59387dd81a3ba05ef96b
GET /assets/chatbutton/floating-wpp.css HTTP/1.1
Host: www.bradescosaudeempresariall.sousanogueira.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.bradescosaudeempresariall.sousanogueira.com.br/
HTTP/1.1 200 OK
Date: Sun, 13 Nov 2022 01:06:33 GMT
Server: Apache
Last-Modified: Mon, 08 Nov 2021 19:24:49 GMT
Accept-Ranges: bytes
Content-Length: 2978
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: text/css
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 29b1503232a9cf0843bd9f0d01c0a9a5
620b3b98a58cd32175d40534dca81ef4a26d880f
1f54c0fa57ea62f131e173d4a365d6d2d4d10e0993eb69eaf9e27d3788a5daf8
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "1F54C0FA57EA62F131E173D4A365D6D2D4D10E0993EB69EAF9E27D3788A5DAF8"
Last-Modified: Sat, 12 Nov 2022 23:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=16464
Expires: Sun, 13 Nov 2022 05:40:57 GMT
Date: Sun, 13 Nov 2022 01:06:33 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 29b1503232a9cf0843bd9f0d01c0a9a5
620b3b98a58cd32175d40534dca81ef4a26d880f
1f54c0fa57ea62f131e173d4a365d6d2d4d10e0993eb69eaf9e27d3788a5daf8
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "1F54C0FA57EA62F131E173D4A365D6D2D4D10E0993EB69EAF9E27D3788A5DAF8"
Last-Modified: Sat, 12 Nov 2022 23:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=16464
Expires: Sun, 13 Nov 2022 05:40:57 GMT
Date: Sun, 13 Nov 2022 01:06:33 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 29b1503232a9cf0843bd9f0d01c0a9a5
620b3b98a58cd32175d40534dca81ef4a26d880f
1f54c0fa57ea62f131e173d4a365d6d2d4d10e0993eb69eaf9e27d3788a5daf8
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "1F54C0FA57EA62F131E173D4A365D6D2D4D10E0993EB69EAF9E27D3788A5DAF8"
Last-Modified: Sat, 12 Nov 2022 23:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=16464
Expires: Sun, 13 Nov 2022 05:40:57 GMT
Date: Sun, 13 Nov 2022 01:06:33 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 29b1503232a9cf0843bd9f0d01c0a9a5
620b3b98a58cd32175d40534dca81ef4a26d880f
1f54c0fa57ea62f131e173d4a365d6d2d4d10e0993eb69eaf9e27d3788a5daf8
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "1F54C0FA57EA62F131E173D4A365D6D2D4D10E0993EB69EAF9E27D3788A5DAF8"
Last-Modified: Sat, 12 Nov 2022 23:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=16464
Expires: Sun, 13 Nov 2022 05:40:57 GMT
Date: Sun, 13 Nov 2022 01:06:33 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8995ae3b-9ed6-4d82-aeda-bce16829dd81.jpeg
34.120.237.76200 OK 7.0 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8995ae3b-9ed6-4d82-aeda-bce16829dd81.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 8bb9138fde16b4052595c61c9aae69a1
eba0fcacc61aed15fe7c4aa11a951e1b681f08d2
11b98e67b1e869b2456ace0e07aa6f5019d15f43c8132f482c76e322282d8e63
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8995ae3b-9ed6-4d82-aeda-bce16829dd81.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7018
x-amzn-requestid: 35b9ea76-0024-42a6-9561-f2f87fa09f70
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: bHcAoGLUIAMFkVA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63660d37-29eb6d7d6379fff612a6a593;Sampled=0
x-amzn-remapped-date: Sat, 05 Nov 2022 07:13:59 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: _Lgx5YJ1SaHAGB2vH0VIXW7Hu6ZIjdvyLjo3XFasEXqUNqCeKzLqJQ==
via: 1.1 470e3fe246a660ba6ace67a79f78d246.cloudfront.net (CloudFront), 1.1 707e733794d52100fde0ab21bf0b1462.cloudfront.net (CloudFront), 1.1 google
date: Sat, 12 Nov 2022 04:07:30 GMT
age: 75543
etag: "eba0fcacc61aed15fe7c4aa11a951e1b681f08d2"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F25a71d85-6d34-4bb8-8293-97875c72aa74.jpeg
34.120.237.76200 OK 9.5 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F25a71d85-6d34-4bb8-8293-97875c72aa74.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 221170365ec0ab6bb773472933bccb4e
2f8d80c36b9d52bbca60ddc946176b8bca2f05f5
c1fedf00b8a0defa4fada242cf3e28c90937bf5f1c10145aebb3494c5a0b5066
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F25a71d85-6d34-4bb8-8293-97875c72aa74.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9540
x-amzn-requestid: 69c339ec-ac3c-49a4-8029-01d21a7f50b2
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: be3itHj1oAMFhgw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-636f6c77-79d478af722a4ecf50a381a9;Sampled=0
x-amzn-remapped-date: Sat, 12 Nov 2022 09:50:47 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: uxbx0xudJDX6_72_MTyyW6R2FXmdfV_5APgpZhqG-6QIeE_yPdGxSg==
via: 1.1 0aebf3fe433ff96e68d785fad4ea4c0e.cloudfront.net (CloudFront), 1.1 57a21088b36c69a83578b5a5579df58e.cloudfront.net (CloudFront), 1.1 google
date: Sat, 12 Nov 2022 22:05:19 GMT
age: 10874
etag: "2f8d80c36b9d52bbca60ddc946176b8bca2f05f5"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F80441337-327d-4d34-9fe8-53269c39ac18.jpeg
34.120.237.76200 OK 7.9 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F80441337-327d-4d34-9fe8-53269c39ac18.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 26249508ef18eac51cf62cf6e90339a4
a9922959c532dd26f21bda4f74ee1fa8496e862e
25075ef6337bae8e60412cdca98afbae6aca61d889aadce4cbad4a8522f4c4b1
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F80441337-327d-4d34-9fe8-53269c39ac18.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7867
x-amzn-requestid: e05d4978-6f46-4395-8121-4d969a222328
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: bgfLqFWIoAMF01A=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6370124a-4033150d0180e56e2965e26e;Sampled=0
x-amzn-remapped-date: Sat, 12 Nov 2022 21:38:18 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: YDkJ7OIcS3FiDPufRTj5VtL5CMxbNN2o2Zq50QQ9UNeDw4uE4j3jrw==
via: 1.1 95b0ac620fa3a80ee590ecf1cda1c698.cloudfront.net (CloudFront), 1.1 b13f158bdf9805ca47e07c0c35870c12.cloudfront.net (CloudFront), 1.1 google
date: Sat, 12 Nov 2022 21:54:29 GMT
age: 11524
etag: "a9922959c532dd26f21bda4f74ee1fa8496e862e"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb74e86a9-6c63-4a82-8e8b-64abdadca859.jpeg
34.120.237.76200 OK 6.7 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb74e86a9-6c63-4a82-8e8b-64abdadca859.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 2e9320a4be9c69eeda4a855b5a9535a5
a91bbc712fc0194b44d33fb7e04e49724ddfe14a
7aa0049111b04d0514dd3378ebe62bf3207b8725a6c1facf3d07ab465c6a6095
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb74e86a9-6c63-4a82-8e8b-64abdadca859.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6729
x-amzn-requestid: 6ceabd9e-4ac5-4835-b112-4aaeb81c9576
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: bgfNIEZkoAMFgGg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63701253-0e9112ee682f0895683d80cb;Sampled=0
x-amzn-remapped-date: Sat, 12 Nov 2022 21:38:27 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: rgqstxXN7Y3hwQpctyn9jtlAnmhkC9zHQttCLjLJmjWKT09m1whn4A==
via: 1.1 9c60d6224ac0b44e908b5c9dcf70e9a4.cloudfront.net (CloudFront), 1.1 e80693c02cfdfd081110512210d57840.cloudfront.net (CloudFront), 1.1 google
date: Sat, 12 Nov 2022 22:04:44 GMT
age: 10909
etag: "a91bbc712fc0194b44d33fb7e04e49724ddfe14a"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa23e03e8-7a4b-473b-801f-39322d374478.jpeg
34.120.237.76200 OK 5.1 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa23e03e8-7a4b-473b-801f-39322d374478.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 31a009393081c25d9afbde558a278ebf
bf8de6c00f579baa320456bd0e79ab80978008bc
90e81f6a10d3dbc56a45e9cfd65dbcd6bddf9e3ab526b4cca270bc2f26404950
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa23e03e8-7a4b-473b-801f-39322d374478.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5149
x-amzn-requestid: f9b58134-4474-4ba5-bc90-368568c30eb4
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: bNaeqGAZoAMF9Ww=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6368712a-4f7bbb4743f15dc2471fba0c;Sampled=0
x-amzn-remapped-date: Mon, 07 Nov 2022 02:44:58 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: R-wKxHkN3mhPg5hGlsMSmENk1tERrZrO83Ohro0OmuKUQ5bC2tgTiw==
via: 1.1 efe54e8b68e074d39b2ecd249f85100a.cloudfront.net (CloudFront), 1.1 476c2ba6d9f6cd69dbcedbd65688cbc0.cloudfront.net (CloudFront), 1.1 google
date: Sat, 12 Nov 2022 04:57:39 GMT
age: 72534
etag: "bf8de6c00f579baa320456bd0e79ab80978008bc"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0a88ef61-5cb3-45de-81c6-9e5627c95213.jpeg
34.120.237.76200 OK 7.2 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0a88ef61-5cb3-45de-81c6-9e5627c95213.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash efa90e098f0535727c631d3099650c7c
77dd6b28a62b7058d599bd56a207f10f7b6e149b
a9ff915a87d5d0b212652946f78e7d5e0e1bd20cf721ea2b4b1db79163094aa4
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0a88ef61-5cb3-45de-81c6-9e5627c95213.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7180
x-amzn-requestid: 59aeee14-0e74-4457-84b3-ca67c1ebc9a5
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: bUWVKGwlIAMF48g=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-636b3754-19fe3bf61eae4fc43c09804d;Sampled=0
x-amzn-remapped-date: Wed, 09 Nov 2022 05:15:00 GMT
x-amz-cf-pop: SEA19-C3
x-cache: Miss from cloudfront
x-amz-cf-id: 6k6VT5D68lwHpI9s0e7emNYXaswayEDjhFOUA9dswIrY-VS0ihR3Fg==
via: 1.1 f313d3df80c4dab8f5399614116801cc.cloudfront.net (CloudFront), 1.1 abbf2df97f9d83839470842dc2e68cb6.cloudfront.net (CloudFront), 1.1 google
date: Sat, 12 Nov 2022 05:37:43 GMT
age: 70130
etag: "77dd6b28a62b7058d599bd56a207f10f7b6e149b"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
www.bradescosaudeempresariall.sousanogueira.com.br/assets/dropdown/css/style.css
200.219.229.6200 OK 8.0 kB URL HTTP/1.1 www.bradescosaudeempresariall.sousanogueira.com.br/assets/dropdown/css/style.css
IP 200.219.229.6:0
Hash b3e4bc9550bad8fd01585b601e968d14
d2aa0eb868183ae7daa24e4d5ae59c3b3218eb70
38892acc026f0badcbb38eb0b148470f4e57821ae04c892a2cee50b5e0968d35
GET /assets/dropdown/css/style.css HTTP/1.1
Host: www.bradescosaudeempresariall.sousanogueira.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.bradescosaudeempresariall.sousanogueira.com.br/
HTTP/1.1 200 OK
Date: Sun, 13 Nov 2022 01:06:33 GMT
Server: Apache
Last-Modified: Mon, 08 Nov 2021 19:24:50 GMT
Accept-Ranges: bytes
Content-Length: 7982
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: text/css
www.bradescosaudeempresariall.sousanogueira.com.br/assets/socicon/css/styles.css
200.219.229.6200 OK 16 kB URL HTTP/1.1 www.bradescosaudeempresariall.sousanogueira.com.br/assets/socicon/css/styles.css
IP 200.219.229.6:0
Hash abdd5a649d383b9af32359c93bd3d11f
6cf4b802d5b23536283aa7dac7e753bf924e6c44
ccaab61570b7a9ae5fc2c276de50162f84114354e44991aea54db17fcb04b5b8
GET /assets/socicon/css/styles.css HTTP/1.1
Host: www.bradescosaudeempresariall.sousanogueira.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.bradescosaudeempresariall.sousanogueira.com.br/
HTTP/1.1 200 OK
Date: Sun, 13 Nov 2022 01:06:33 GMT
Server: Apache
Last-Modified: Mon, 08 Nov 2021 19:24:50 GMT
Accept-Ranges: bytes
Content-Length: 15507
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: text/css
www.bradescosaudeempresariall.sousanogueira.com.br/sw-connect.js
200.219.229.6200 OK 1.9 kB URL HTTP/1.1 www.bradescosaudeempresariall.sousanogueira.com.br/sw-connect.js
IP 200.219.229.6:0
File type ASCII text, with very long lines (1296)
Hash 2c7748a7fa43de9da16a92f385f2af00
0f9dc398c4a67c8bf50ecafcaa9584b4798e6f12
77f5a45112fa30ffbfc7ff650d80387ce75f379611d19b6f23512fa929437218
Analyzer Verdict Alert fortinet Phishing
GET /sw-connect.js HTTP/1.1
Host: www.bradescosaudeempresariall.sousanogueira.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.bradescosaudeempresariall.sousanogueira.com.br/
HTTP/1.1 200 OK
Date: Sun, 13 Nov 2022 01:06:33 GMT
Server: Apache
Last-Modified: Mon, 08 Nov 2021 19:24:53 GMT
Accept-Ranges: bytes
Content-Length: 1932
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: application/javascript
www.bradescosaudeempresariall.sousanogueira.com.br/assets/popper/popper.min.js
200.219.229.6200 OK 19 kB URL HTTP/1.1 www.bradescosaudeempresariall.sousanogueira.com.br/assets/popper/popper.min.js
IP 200.219.229.6:0
File type ASCII text, with very long lines (18860)
Hash 3621381129597bf34d48a9e2623e05c9
edb00146d1636c247c7afaa61f11aad0c0fc5120
3675f226f985b64eea6ae8544d5496a32d19993aae1ac4a3fa101263ef3206f7
Analyzer Verdict Alert fortinet Phishing
GET /assets/popper/popper.min.js HTTP/1.1
Host: www.bradescosaudeempresariall.sousanogueira.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.bradescosaudeempresariall.sousanogueira.com.br/
HTTP/1.1 200 OK
Date: Sun, 13 Nov 2022 01:06:33 GMT
Server: Apache
Last-Modified: Mon, 08 Nov 2021 19:24:48 GMT
Accept-Ranges: bytes
Content-Length: 18994
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: application/javascript
www.bradescosaudeempresariall.sousanogueira.com.br/assets/tether/tether.min.js
200.219.229.6200 OK 23 kB URL HTTP/1.1 www.bradescosaudeempresariall.sousanogueira.com.br/assets/tether/tether.min.js
IP 200.219.229.6:0
File type ASCII text, with very long lines (23217), with no line terminators
Hash 3e50b6f75ff4128f2478b1d44f80fdfb
345421c0dfc6ca09aea15cec021617d701e4827f
0a0416e386e436583f5f49242104677e6b16b1aa693d86f32d76845e26081f96
Analyzer Verdict Alert fortinet Phishing
GET /assets/tether/tether.min.js HTTP/1.1
Host: www.bradescosaudeempresariall.sousanogueira.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.bradescosaudeempresariall.sousanogueira.com.br/
HTTP/1.1 200 OK
Date: Sun, 13 Nov 2022 01:06:33 GMT
Server: Apache
Last-Modified: Mon, 08 Nov 2021 19:24:49 GMT
Accept-Ranges: bytes
Content-Length: 23217
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: application/javascript
www.bradescosaudeempresariall.sousanogueira.com.br/assets/bootstrap/css/bootstrap.min.css
200.219.229.6200 OK 61 kB URL HTTP/1.1 www.bradescosaudeempresariall.sousanogueira.com.br/assets/bootstrap/css/bootstrap.min.css
IP 200.219.229.6:0
File type ASCII text, with very long lines (60885), with no line terminators
Hash 6a9b9707f7d1dff07e83bfbe8da8fee1
fce2184d2dcf20124e09dda737fe3af711916807
16cdcf1201ba63acf6951e3e65d2339d1e99375b26a751474ecd9e7033dfa199
GET /assets/bootstrap/css/bootstrap.min.css HTTP/1.1
Host: www.bradescosaudeempresariall.sousanogueira.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.bradescosaudeempresariall.sousanogueira.com.br/
HTTP/1.1 200 OK
Date: Sun, 13 Nov 2022 01:06:33 GMT
Server: Apache
Last-Modified: Mon, 08 Nov 2021 19:24:48 GMT
Accept-Ranges: bytes
Content-Length: 60885
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: text/css
www.bradescosaudeempresariall.sousanogueira.com.br/assets/icon54/style.css
200.219.229.6200 OK 118 kB URL HTTP/1.1 www.bradescosaudeempresariall.sousanogueira.com.br/assets/icon54/style.css
IP 200.219.229.6:0
Size 118 kB (118273 bytes)
Hash a2c1fb2541ac58a2d07ebed26eac6a5f
8e2f79fc576155ccf4cab520d130ee4f1f405fc4
276a93261e8842a852c30fb5a00bdf86881b25500a0a6eeb61137c6b98d22338
GET /assets/icon54/style.css HTTP/1.1
Host: www.bradescosaudeempresariall.sousanogueira.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.bradescosaudeempresariall.sousanogueira.com.br/
HTTP/1.1 200 OK
Date: Sun, 13 Nov 2022 01:06:31 GMT
Server: Apache
Upgrade: h2,h2c
Connection: Upgrade, Keep-Alive
Last-Modified: Mon, 08 Nov 2021 19:24:52 GMT
Accept-Ranges: bytes
Content-Length: 118273
Keep-Alive: timeout=5, max=100
Content-Type: text/css
www.bradescosaudeempresariall.sousanogueira.com.br/assets/animatecss/animate.min.css
200.219.229.6200 OK 53 kB URL HTTP/1.1 www.bradescosaudeempresariall.sousanogueira.com.br/assets/animatecss/animate.min.css
IP 200.219.229.6:0
File type ASCII text, with very long lines (52592)
Hash 178b651958ceff556cbc5f355e08bbf1
97afa151569f046b2e01f27c1871646e9cd87caf
8fe3fa119255adb5e0c12479331f9e092e85bcff56ab6ecc0510bfa2056b898d
GET /assets/animatecss/animate.min.css HTTP/1.1
Host: www.bradescosaudeempresariall.sousanogueira.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.bradescosaudeempresariall.sousanogueira.com.br/
HTTP/1.1 200 OK
Date: Sun, 13 Nov 2022 01:06:33 GMT
Server: Apache
Last-Modified: Mon, 08 Nov 2021 19:24:49 GMT
Accept-Ranges: bytes
Content-Length: 52789
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: text/css
www.bradescosaudeempresariall.sousanogueira.com.br/assets/smoothscroll/smooth-scroll.js
200.219.229.6200 OK 8.0 kB URL HTTP/1.1 www.bradescosaudeempresariall.sousanogueira.com.br/assets/smoothscroll/smooth-scroll.js
IP 200.219.229.6:0
File type ASCII text, with very long lines (525)
Hash d5f539491eb0fdd291502348cb02b54b
0ea448b125119d2f6b992235bed59b1141195a00
58c190b80bbaf388cd586a16e3c21876fdd0eca9d22554d2a3e027e3a6f43cd6
Analyzer Verdict Alert fortinet Phishing
GET /assets/smoothscroll/smooth-scroll.js HTTP/1.1
Host: www.bradescosaudeempresariall.sousanogueira.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.bradescosaudeempresariall.sousanogueira.com.br/
HTTP/1.1 200 OK
Date: Sun, 13 Nov 2022 01:06:33 GMT
Server: Apache
Last-Modified: Mon, 08 Nov 2021 19:24:49 GMT
Accept-Ranges: bytes
Content-Length: 7970
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: application/javascript
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash e3f9965225cba49c71506d7dee4c1647
d1d30248236cfe679fa182860d69634d30f5b0ca
8a2641a2fa1026f8893b4acf7f7c78c633a1408779f3063c87ad292729300d97
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 13 Nov 2022 01:06:34 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.bradescosaudeempresariall.sousanogueira.com.br/assets/viewportchecker/jquery.viewportchecker.js
200.219.229.6200 OK 3.1 kB URL HTTP/1.1 www.bradescosaudeempresariall.sousanogueira.com.br/assets/viewportchecker/jquery.viewportchecker.js
IP 200.219.229.6:0
File type ASCII text, with very long lines (515)
Hash 06d71e54ad7be78880e413f5be660ffd
9a294c8fefecf95c063ef15ef8102283fd6d5047
045f9a761f59fbf6c21f0233378d5eccc172c60855888cfaa8c3004058ba0990
Analyzer Verdict Alert fortinet Phishing
GET /assets/viewportchecker/jquery.viewportchecker.js HTTP/1.1
Host: www.bradescosaudeempresariall.sousanogueira.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.bradescosaudeempresariall.sousanogueira.com.br/
HTTP/1.1 200 OK
Date: Sun, 13 Nov 2022 01:06:33 GMT
Server: Apache
Last-Modified: Mon, 08 Nov 2021 19:24:49 GMT
Accept-Ranges: bytes
Content-Length: 3123
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: application/javascript
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash e3f9965225cba49c71506d7dee4c1647
d1d30248236cfe679fa182860d69634d30f5b0ca
8a2641a2fa1026f8893b4acf7f7c78c633a1408779f3063c87ad292729300d97
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 13 Nov 2022 01:06:34 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.gstatic.com/s/poppins/v20/pxiByp8kv8JHgFVrLCz7Z1xlFQ.woff2
216.58.207.195200 OK 7.8 kB URL HTTP/2 fonts.gstatic.com/s/poppins/v20/pxiByp8kv8JHgFVrLCz7Z1xlFQ.woff2
IP 216.58.207.195:0
File type Web Open Font Format (Version 2), TrueType, length 7816, version 1.0\012- data
Hash 25b0e113ca7cce3770d542736db26368
cb726212d5d525021752a1d8470a0fb593e0c49e
9338e65fc077355c7a87ae0d64cc101e23b9bf8ad78ae65f0f319c857311b526
GET /s/poppins/v20/pxiByp8kv8JHgFVrLCz7Z1xlFQ.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://www.bradescosaudeempresariall.sousanogueira.com.br
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 7816
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 09 Nov 2022 19:30:59 GMT
expires: Thu, 09 Nov 2023 19:30:59 GMT
cache-control: public, max-age=31536000
age: 279335
last-modified: Wed, 27 Apr 2022 16:11:40 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 3723d23fdcd3f3d34132d56faae4428b
4bf9c6e15b8de24fc7387ce145382f9b3e9cb1c8
4bc047ec725bd4d99c9dd4fa11edc91702f722d16e53b5eef0920cb5dc7e7ca8
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 13 Nov 2022 01:06:34 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.gstatic.com/s/poppins/v20/pxiByp8kv8JHgFVrLEj6Z1xlFQ.woff2
216.58.207.195200 OK 8.0 kB URL HTTP/2 fonts.gstatic.com/s/poppins/v20/pxiByp8kv8JHgFVrLEj6Z1xlFQ.woff2
IP 216.58.207.195:0
File type Web Open Font Format (Version 2), TrueType, length 8000, version 1.0\012- data
Hash 72993dddf88a63e8f226656f7de88e57
179f97ec0275f09603a8db94d4380eb584d81cd5
f4e80d9dfd374d02989b87a27b5ed4cb78fbb177c27f1478e9a8b0afb7513149
GET /s/poppins/v20/pxiByp8kv8JHgFVrLEj6Z1xlFQ.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://www.bradescosaudeempresariall.sousanogueira.com.br
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 8000
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 08 Nov 2022 14:43:52 GMT
expires: Wed, 08 Nov 2023 14:43:52 GMT
cache-control: public, max-age=31536000
age: 382962
last-modified: Wed, 27 Apr 2022 16:59:07 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash e3f9965225cba49c71506d7dee4c1647
d1d30248236cfe679fa182860d69634d30f5b0ca
8a2641a2fa1026f8893b4acf7f7c78c633a1408779f3063c87ad292729300d97
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 13 Nov 2022 01:06:34 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.bradescosaudeempresariall.sousanogueira.com.br/assets/chatbutton/floating-wpp.js
200.219.229.6200 OK 7.7 kB URL HTTP/1.1 www.bradescosaudeempresariall.sousanogueira.com.br/assets/chatbutton/floating-wpp.js
IP 200.219.229.6:0
File type ASCII text, with very long lines (2734)
Hash 9fe96bd657d9969c2259da8a26719aac
45ee6493a97a241429d6bf84b9744f32a854683e
96d33366c5da64266438bc0faaf5eb241434beb1ef21474a4b71be82db99d515
Analyzer Verdict Alert fortinet Phishing
GET /assets/chatbutton/floating-wpp.js HTTP/1.1
Host: www.bradescosaudeempresariall.sousanogueira.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.bradescosaudeempresariall.sousanogueira.com.br/
HTTP/1.1 200 OK
Date: Sun, 13 Nov 2022 01:06:34 GMT
Server: Apache
Last-Modified: Mon, 08 Nov 2021 19:24:49 GMT
Accept-Ranges: bytes
Content-Length: 7655
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: application/javascript
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 3723d23fdcd3f3d34132d56faae4428b
4bf9c6e15b8de24fc7387ce145382f9b3e9cb1c8
4bc047ec725bd4d99c9dd4fa11edc91702f722d16e53b5eef0920cb5dc7e7ca8
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 13 Nov 2022 01:06:34 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.gstatic.com/s/poppins/v20/pxiByp8kv8JHgFVrLGT9Z1xlFQ.woff2
216.58.207.195200 OK 7.7 kB URL HTTP/2 fonts.gstatic.com/s/poppins/v20/pxiByp8kv8JHgFVrLGT9Z1xlFQ.woff2
IP 216.58.207.195:0
File type Web Open Font Format (Version 2), TrueType, length 7748, version 1.0\012- data
Hash a09f2fccfee35b7247b08a1a266f0328
0da2d17e738f46d2a09e6fb7969da451719a9820
cd36de204aca2d5fa263a731f7c20009b5e3d754ba1f1e03c33e93a48f3e7446
GET /s/poppins/v20/pxiByp8kv8JHgFVrLGT9Z1xlFQ.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://www.bradescosaudeempresariall.sousanogueira.com.br
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 7748
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 09 Nov 2022 08:32:10 GMT
expires: Thu, 09 Nov 2023 08:32:10 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 27 Apr 2022 16:21:30 GMT
content-type: font/woff2
age: 318864
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/poppins/v20/pxiEyp8kv8JHgFVrJJfecg.woff2
216.58.207.195200 OK 7.9 kB URL HTTP/2 fonts.gstatic.com/s/poppins/v20/pxiEyp8kv8JHgFVrJJfecg.woff2
IP 216.58.207.195:0
File type Web Open Font Format (Version 2), TrueType, length 7884, version 1.0\012- data
Hash 9212f6f9860f9fc6c69b02fedf6db8c3
ac6d71b4d5fdd2b3dabc9a06ff6c001e4251da0b
7d93459d86585bfcdbb7e0376056226adb25821ee54b96236fe2123e9560929f
GET /s/poppins/v20/pxiEyp8kv8JHgFVrJJfecg.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://www.bradescosaudeempresariall.sousanogueira.com.br
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 7884
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 09 Nov 2022 21:48:50 GMT
expires: Thu, 09 Nov 2023 21:48:50 GMT
cache-control: public, max-age=31536000
age: 271064
last-modified: Wed, 27 Apr 2022 17:03:52 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/poppins/v20/pxiByp8kv8JHgFVrLDz8Z1xlFQ.woff2
216.58.207.195200 OK 7.8 kB URL HTTP/2 fonts.gstatic.com/s/poppins/v20/pxiByp8kv8JHgFVrLDz8Z1xlFQ.woff2
IP 216.58.207.195:0
File type Web Open Font Format (Version 2), TrueType, length 7840, version 1.0\012- data
Hash 8d91ec1ca2d8b56640a47117e313a3e9
a9e9bafe64666f4595051a0e895b47a5fa39e67e
78bc3aa78faec288bbb3bf26c9a0fa4eb67b1e69da94a17233c5cab60525efdb
GET /s/poppins/v20/pxiByp8kv8JHgFVrLDz8Z1xlFQ.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://www.bradescosaudeempresariall.sousanogueira.com.br
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 7840
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 09 Nov 2022 19:31:05 GMT
expires: Thu, 09 Nov 2023 19:31:05 GMT
cache-control: public, max-age=31536000
age: 279329
last-modified: Wed, 27 Apr 2022 16:51:55 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash e3f9965225cba49c71506d7dee4c1647
d1d30248236cfe679fa182860d69634d30f5b0ca
8a2641a2fa1026f8893b4acf7f7c78c633a1408779f3063c87ad292729300d97
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 13 Nov 2022 01:06:34 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.bradescosaudeempresariall.sousanogueira.com.br/assets/chatbutton/script.js
200.219.229.6200 OK 707 B URL HTTP/1.1 www.bradescosaudeempresariall.sousanogueira.com.br/assets/chatbutton/script.js
IP 200.219.229.6:0
File type ASCII text, with very long lines (516)
Hash 767b91828b734e39ca02a64a45503a79
9258d999ac4fc4739c5fd03aebf225593436e223
c04d2f503c92c836859357c155253e70af5f37cd723b947d84fecbdb98cdf662
Analyzer Verdict Alert fortinet Phishing
GET /assets/chatbutton/script.js HTTP/1.1
Host: www.bradescosaudeempresariall.sousanogueira.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.bradescosaudeempresariall.sousanogueira.com.br/
HTTP/1.1 200 OK
Date: Sun, 13 Nov 2022 01:06:34 GMT
Server: Apache
Last-Modified: Mon, 08 Nov 2021 19:24:49 GMT
Accept-Ranges: bytes
Content-Length: 707
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: application/javascript
www.bradescosaudeempresariall.sousanogueira.com.br/assets/parallax/jarallax.min.js
200.219.229.6200 OK 16 kB URL HTTP/1.1 www.bradescosaudeempresariall.sousanogueira.com.br/assets/parallax/jarallax.min.js
IP 200.219.229.6:0
File type ASCII text, with very long lines (15303)
Hash 6425d5dba9c473e5bec2f868bee1f140
9746cef123779de32d2466bdb5af5ada01e4de39
08235f00748a3720ee23183cbedb4ce09fc43b2229fb31179d9fdd5c059feb36
Analyzer Verdict Alert fortinet Phishing
GET /assets/parallax/jarallax.min.js HTTP/1.1
Host: www.bradescosaudeempresariall.sousanogueira.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.bradescosaudeempresariall.sousanogueira.com.br/
HTTP/1.1 200 OK
Date: Sun, 13 Nov 2022 01:06:34 GMT
Server: Apache
Last-Modified: Mon, 08 Nov 2021 19:24:49 GMT
Accept-Ranges: bytes
Content-Length: 15497
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive
Content-Type: application/javascript
www.bradescosaudeempresariall.sousanogueira.com.br/assets/dropdown/js/nav-dropdown.js
200.219.229.6200 OK 8.0 kB URL HTTP/1.1 www.bradescosaudeempresariall.sousanogueira.com.br/assets/dropdown/js/nav-dropdown.js
IP 200.219.229.6:0
File type ASCII text, with very long lines (526)
Hash 742feea70caeafd03890f845ad11f069
f683de7b7cd75ad8c8618a67175478f0b8123272
6871afa8d71086be001b5eb8eec028e7387d28f1fe3488f3b1ff150499bd159a
Analyzer Verdict Alert fortinet Phishing
GET /assets/dropdown/js/nav-dropdown.js HTTP/1.1
Host: www.bradescosaudeempresariall.sousanogueira.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.bradescosaudeempresariall.sousanogueira.com.br/
HTTP/1.1 200 OK
Date: Sun, 13 Nov 2022 01:06:34 GMT
Server: Apache
Last-Modified: Mon, 08 Nov 2021 19:24:49 GMT
Accept-Ranges: bytes
Content-Length: 7965
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: application/javascript
www.bradescosaudeempresariall.sousanogueira.com.br/assets/dropdown/js/navbar-dropdown.js
200.219.229.6200 OK 1.6 kB URL HTTP/1.1 www.bradescosaudeempresariall.sousanogueira.com.br/assets/dropdown/js/navbar-dropdown.js
IP 200.219.229.6:0
File type ASCII text, with very long lines (560)
Hash 65e3e702c100bf8639c094c3f792f8e2
631f2f781dcb3ef430b99ce55fd35222539e1670
1d3d0856dd768deb785b2c03611dcfe9cdb3e2557603c99465660fa57d04a008
Analyzer Verdict Alert fortinet Phishing
GET /assets/dropdown/js/navbar-dropdown.js HTTP/1.1
Host: www.bradescosaudeempresariall.sousanogueira.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.bradescosaudeempresariall.sousanogueira.com.br/
HTTP/1.1 200 OK
Date: Sun, 13 Nov 2022 01:06:34 GMT
Server: Apache
Last-Modified: Mon, 08 Nov 2021 19:24:50 GMT
Accept-Ranges: bytes
Content-Length: 1582
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: application/javascript
www.bradescosaudeempresariall.sousanogueira.com.br/assets/bootstrap/js/bootstrap.min.js
200.219.229.6200 OK 60 kB URL HTTP/1.1 www.bradescosaudeempresariall.sousanogueira.com.br/assets/bootstrap/js/bootstrap.min.js
IP 200.219.229.6:0
File type ASCII text, with very long lines (59893)
Hash 6bea60c34c5db6797150610dacdc6bce
544afefd148715da7dd52d368a414703390ca0e0
38544024da1a0fc2f706be6582557b5722d17f48ad9a8073594a0cf928e2e3ff
Analyzer Verdict Alert fortinet Phishing
GET /assets/bootstrap/js/bootstrap.min.js HTTP/1.1
Host: www.bradescosaudeempresariall.sousanogueira.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.bradescosaudeempresariall.sousanogueira.com.br/
HTTP/1.1 200 OK
Date: Sun, 13 Nov 2022 01:06:33 GMT
Server: Apache
Last-Modified: Mon, 08 Nov 2021 19:24:48 GMT
Accept-Ranges: bytes
Content-Length: 60174
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive
Content-Type: application/javascript
www.bradescosaudeempresariall.sousanogueira.com.br/assets/bootstrapcarouselswipe/bootstrap-carousel-swipe.js
200.219.229.6200 OK 3.7 kB URL HTTP/1.1 www.bradescosaudeempresariall.sousanogueira.com.br/assets/bootstrapcarouselswipe/bootstrap-carousel-swipe.js
IP 200.219.229.6:0
File type ASCII text, with very long lines (526)
Hash d4d22828ad067a12b2df3ecf8e3a6c8f
cb7c6e1d975e67d7640548f63ba4023b9ae93a4b
10509febd857ef5fdcdb226e25795d1d8e35f328e569e6fac370be3c96c4faf4
Analyzer Verdict Alert fortinet Phishing
GET /assets/bootstrapcarouselswipe/bootstrap-carousel-swipe.js HTTP/1.1
Host: www.bradescosaudeempresariall.sousanogueira.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.bradescosaudeempresariall.sousanogueira.com.br/
HTTP/1.1 200 OK
Date: Sun, 13 Nov 2022 01:06:34 GMT
Server: Apache
Last-Modified: Mon, 08 Nov 2021 19:24:50 GMT
Accept-Ranges: bytes
Content-Length: 3670
Keep-Alive: timeout=5, max=94
Connection: Keep-Alive
Content-Type: application/javascript
www.bradescosaudeempresariall.sousanogueira.com.br/assets/web/assets/jquery/jquery.min.js
200.219.229.6200 OK 90 kB URL HTTP/1.1 www.bradescosaudeempresariall.sousanogueira.com.br/assets/web/assets/jquery/jquery.min.js
IP 200.219.229.6:0
File type ASCII text, with very long lines (65451)
Hash dc5e7f18c8d36ac1d3d4753a87c98d0a
c8e1c8b386dc5b7a9184c763c88d19a346eb3342
f7f6a5894f1d19ddad6fa392b2ece2c5e578cbf7da4ea805b6885eb6985b6e3d
Analyzer Verdict Alert fortinet Phishing
GET /assets/web/assets/jquery/jquery.min.js HTTP/1.1
Host: www.bradescosaudeempresariall.sousanogueira.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.bradescosaudeempresariall.sousanogueira.com.br/
HTTP/1.1 200 OK
Date: Sun, 13 Nov 2022 01:06:33 GMT
Server: Apache
Last-Modified: Mon, 08 Nov 2021 19:24:46 GMT
Accept-Ranges: bytes
Content-Length: 89476
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: application/javascript
www.bradescosaudeempresariall.sousanogueira.com.br/assets/mbr-testimonials-slider/mbr-testimonials-slider.js
200.219.229.6200 OK 817 B URL HTTP/1.1 www.bradescosaudeempresariall.sousanogueira.com.br/assets/mbr-testimonials-slider/mbr-testimonials-slider.js
IP 200.219.229.6:0
File type ASCII text, with very long lines (437)
Hash 8480f05f86055773214dc6b1d309ee50
a0053445c82232863bc6df04a405093d88abf526
09dfe58f421e0741723d5a15770dda8418f31c520f200be54e491f0a795f5016
Analyzer Verdict Alert fortinet Phishing
GET /assets/mbr-testimonials-slider/mbr-testimonials-slider.js HTTP/1.1
Host: www.bradescosaudeempresariall.sousanogueira.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.bradescosaudeempresariall.sousanogueira.com.br/
HTTP/1.1 200 OK
Date: Sun, 13 Nov 2022 01:06:34 GMT
Server: Apache
Last-Modified: Mon, 08 Nov 2021 19:24:50 GMT
Accept-Ranges: bytes
Content-Length: 817
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive
Content-Type: application/javascript
www.bradescosaudeempresariall.sousanogueira.com.br/assets/theme/js/script.js
200.219.229.6200 OK 18 kB URL HTTP/1.1 www.bradescosaudeempresariall.sousanogueira.com.br/assets/theme/js/script.js
IP 200.219.229.6:0
File type ASCII text, with very long lines (654)
Hash 9270858e34c7b938249e7431106c347e
6e4622897a09a734a5831d7eeb333278a560eedf
43c575e933fabb1617df6bcc1f48ba01b561578e2297b6f08ce3d654480b76bc
Analyzer Verdict Alert fortinet Phishing
GET /assets/theme/js/script.js HTTP/1.1
Host: www.bradescosaudeempresariall.sousanogueira.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.bradescosaudeempresariall.sousanogueira.com.br/
HTTP/1.1 200 OK
Date: Sun, 13 Nov 2022 01:06:34 GMT
Server: Apache
Last-Modified: Mon, 08 Nov 2021 19:24:49 GMT
Accept-Ranges: bytes
Content-Length: 18504
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: application/javascript
www.bradescosaudeempresariall.sousanogueira.com.br/assets/socicon/fonts/socicon.woff2
200.219.229.6404 Not Found 315 B URL HTTP/1.1 www.bradescosaudeempresariall.sousanogueira.com.br/assets/socicon/fonts/socicon.woff2
IP 200.219.229.6:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash a34ac19f4afae63adc5d2f7bc970c07f
a82190fc530c265aa40a045c21770d967f4767b8
d5a89e26beae0bc03ad18a0b0d1d3d75f87c32047879d25da11970cb5c4662a3
Analyzer Verdict Alert fortinet Phishing
GET /assets/socicon/fonts/socicon.woff2 HTTP/1.1
Host: www.bradescosaudeempresariall.sousanogueira.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: http://www.bradescosaudeempresariall.sousanogueira.com.br/assets/socicon/css/styles.css
HTTP/1.1 404 Not Found
Date: Sun, 13 Nov 2022 01:06:34 GMT
Server: Apache
Content-Length: 315
Keep-Alive: timeout=5, max=94
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1
www.bradescosaudeempresariall.sousanogueira.com.br/assets/touchswipe/jquery.touch-swipe.min.js
200.219.229.6200 OK 20 kB URL HTTP/1.1 www.bradescosaudeempresariall.sousanogueira.com.br/assets/touchswipe/jquery.touch-swipe.min.js
IP 200.219.229.6:0
File type ASCII text, with very long lines (20000)
Hash f60ff05469d1757996d85f4172d4ff4d
69c8c9f0e0fbd9bd9fd1df6c1a18067256d46c73
a10d7edb8fd307f469beaaa75a725e4bdae24a1b867f5bc7960f01e25c99d8e1
Analyzer Verdict Alert fortinet Phishing
GET /assets/touchswipe/jquery.touch-swipe.min.js HTTP/1.1
Host: www.bradescosaudeempresariall.sousanogueira.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.bradescosaudeempresariall.sousanogueira.com.br/
HTTP/1.1 200 OK
Date: Sun, 13 Nov 2022 01:06:34 GMT
Server: Apache
Last-Modified: Mon, 08 Nov 2021 19:24:50 GMT
Accept-Ranges: bytes
Content-Length: 20412
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: application/javascript
www.bradescosaudeempresariall.sousanogueira.com.br/assets/linecons/fonts/linecons.woff
200.219.229.6200 OK 27 kB URL HTTP/1.1 www.bradescosaudeempresariall.sousanogueira.com.br/assets/linecons/fonts/linecons.woff
IP 200.219.229.6:0
File type Web Open Font Format, CFF, length 27308, version 1.0\012- data
Hash f7e1d7f91c602afedad1e575e5696e30
f1a9fd07996f24302f1410ec38faaaa741a53e10
0e1076ec01481ada6dcbe8d22736b9c56cdfbd078620b589a60f5a11eee9152d
Analyzer Verdict Alert fortinet Phishing
GET /assets/linecons/fonts/linecons.woff HTTP/1.1
Host: www.bradescosaudeempresariall.sousanogueira.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: http://www.bradescosaudeempresariall.sousanogueira.com.br/assets/linecons/style.css
HTTP/1.1 200 OK
Date: Sun, 13 Nov 2022 01:06:34 GMT
Server: Apache
Last-Modified: Mon, 08 Nov 2021 19:24:52 GMT
Accept-Ranges: bytes
Content-Length: 27308
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: font/woff
www.bradescosaudeempresariall.sousanogueira.com.br/assets/images/wepik-2021108-161543-2000x871.jpeg
200.219.229.6200 OK 115 kB URL HTTP/1.1 www.bradescosaudeempresariall.sousanogueira.com.br/assets/images/wepik-2021108-161543-2000x871.jpeg
IP 200.219.229.6:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 1655x871, components 3\012- data
Size 115 kB (115172 bytes)
Hash a3b55e2c721d9ad449f3e341bb88e972
e74cbced2f826ac4a8dda7f26d3bbb52fcba4134
5cfa0c9d0a9586c5eaaf31b5089b08ddcf26be855852b2e777da75f2cb5fc73f
Analyzer Verdict Alert fortinet Phishing
GET /assets/images/wepik-2021108-161543-2000x871.jpeg HTTP/1.1
Host: www.bradescosaudeempresariall.sousanogueira.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.bradescosaudeempresariall.sousanogueira.com.br/assets/mobirise/css/mbr-additional.css
HTTP/1.1 200 OK
Date: Sun, 13 Nov 2022 01:06:34 GMT
Server: Apache
Last-Modified: Mon, 08 Nov 2021 19:24:48 GMT
Accept-Ranges: bytes
Content-Length: 115172
Keep-Alive: timeout=5, max=93
Connection: Keep-Alive
Content-Type: image/jpeg
www.bradescosaudeempresariall.sousanogueira.com.br/assets/Material-Design-Icons/fonts/Material-Design-Icons.woff?3ocs8m
200.219.229.6200 OK 102 kB URL HTTP/1.1 www.bradescosaudeempresariall.sousanogueira.com.br/assets/Material-Design-Icons/fonts/Material-Design-Icons.woff?3ocs8m
IP 200.219.229.6:0
File type Web Open Font Format, TrueType, length 101968, version 1.5\012- data
Size 102 kB (101968 bytes)
Hash 4c874dce20349e350c4aefa6474221c1
ee77184556f7b66fcb8ee9496f81ac62f792d7dc
be00e19b662046cb8f2eb6eb86e4689edeefb0c003f6a215df9c22f0e15e16ad
Analyzer Verdict Alert fortinet Phishing
GET /assets/Material-Design-Icons/fonts/Material-Design-Icons.woff?3ocs8m HTTP/1.1
Host: www.bradescosaudeempresariall.sousanogueira.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: http://www.bradescosaudeempresariall.sousanogueira.com.br/assets/Material-Design-Icons/css/material.css
HTTP/1.1 200 OK
Date: Sun, 13 Nov 2022 01:06:34 GMT
Server: Apache
Last-Modified: Mon, 08 Nov 2021 19:24:51 GMT
Accept-Ranges: bytes
Content-Length: 101968
Keep-Alive: timeout=5, max=94
Connection: Keep-Alive
Content-Type: font/woff
www.bradescosaudeempresariall.sousanogueira.com.br/assets/images/bradesco-saude-logo-323x86.png
200.219.229.6200 OK 5.3 kB URL HTTP/1.1 www.bradescosaudeempresariall.sousanogueira.com.br/assets/images/bradesco-saude-logo-323x86.png
IP 200.219.229.6:0
File type PNG image data, 323 x 86, 8-bit colormap, non-interlaced\012- data
Hash b17a6bb8441a6147b6fc515aed2f86d4
e11851ae8542702d0c1ca9a9d684241b86c11290
170ad5824f58d6f6c53075673d7a88bf0ca8cbf71ac397966144554d17fbbf1e
GET /assets/images/bradesco-saude-logo-323x86.png HTTP/1.1
Host: www.bradescosaudeempresariall.sousanogueira.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.bradescosaudeempresariall.sousanogueira.com.br/
HTTP/1.1 200 OK
Date: Sun, 13 Nov 2022 01:06:35 GMT
Server: Apache
Last-Modified: Mon, 08 Nov 2021 19:24:47 GMT
Accept-Ranges: bytes
Content-Length: 5266
Keep-Alive: timeout=5, max=92
Connection: Keep-Alive
Content-Type: image/png
www.bradescosaudeempresariall.sousanogueira.com.br/assets/socicon/fonts/socicon.ttf
200.219.229.6200 OK 116 kB URL HTTP/1.1 www.bradescosaudeempresariall.sousanogueira.com.br/assets/socicon/fonts/socicon.ttf
IP 200.219.229.6:0
File type TrueType Font data, 11 tables, 1st "OS/2", 14 names, Macintosh, type 1 string, Socicon \012- data
Size 116 kB (116252 bytes)
Hash cae86afb495d307fa924859c12b9bc4f
6f015df7c2e1ad742966d0b038c732b9077c31c7
b7f28d4bf7afc19d05cffa78413e8987317416198473f7b67810c5683b39bddb
Analyzer Verdict Alert fortinet Phishing
GET /assets/socicon/fonts/socicon.ttf HTTP/1.1
Host: www.bradescosaudeempresariall.sousanogueira.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.bradescosaudeempresariall.sousanogueira.com.br/assets/socicon/css/styles.css
HTTP/1.1 200 OK
Date: Sun, 13 Nov 2022 01:06:35 GMT
Server: Apache
Last-Modified: Mon, 08 Nov 2021 19:24:50 GMT
Accept-Ranges: bytes
Content-Length: 116252
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive
Content-Type: font/ttf
www.bradescosaudeempresariall.sousanogueira.com.br/assets/images/networking-team-1080x720.jpeg
200.219.229.6200 OK 67 kB URL HTTP/1.1 www.bradescosaudeempresariall.sousanogueira.com.br/assets/images/networking-team-1080x720.jpeg
IP 200.219.229.6:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 530x720, components 3\012- data
Hash 2f1899f920cd1c608a83c5c7efba5bba
26766a399066328c92986c0501bb06eb414c0841
5bd8bc32c8df0eb2679d3807b2935d25fcbc31fb4c5c62ad6ece139075985448
Analyzer Verdict Alert fortinet Phishing
GET /assets/images/networking-team-1080x720.jpeg HTTP/1.1
Host: www.bradescosaudeempresariall.sousanogueira.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.bradescosaudeempresariall.sousanogueira.com.br/
HTTP/1.1 200 OK
Date: Sun, 13 Nov 2022 01:06:35 GMT
Server: Apache
Last-Modified: Mon, 08 Nov 2021 19:24:48 GMT
Accept-Ranges: bytes
Content-Length: 66948
Keep-Alive: timeout=5, max=93
Connection: Keep-Alive
Content-Type: image/jpeg
www.bradescosaudeempresariall.sousanogueira.com.br/assets/images/favicon-128x128.png
200.219.229.6200 OK 2.3 kB URL HTTP/1.1 www.bradescosaudeempresariall.sousanogueira.com.br/assets/images/favicon-128x128.png
IP 200.219.229.6:0
File type PNG image data, 128 x 128, 8-bit colormap, non-interlaced\012- data
Hash 0dcb5f89173f07dc76d776a59b6c5dbb
1aba6a8b8c8f6e517b40bcc883503465ef79db64
1de5f81abd055db833537be5b6c5ff18493cef999aa4c89698367306c0539482
GET /assets/images/favicon-128x128.png HTTP/1.1
Host: www.bradescosaudeempresariall.sousanogueira.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.bradescosaudeempresariall.sousanogueira.com.br/
HTTP/1.1 200 OK
Date: Sun, 13 Nov 2022 01:06:36 GMT
Server: Apache
Last-Modified: Mon, 08 Nov 2021 19:24:47 GMT
Accept-Ranges: bytes
Content-Length: 2250
Keep-Alive: timeout=5, max=91
Connection: Keep-Alive
Content-Type: image/png
www.bradescosaudeempresariall.sousanogueira.com.br/apple-touch-icon.png
200.219.229.6200 OK 5.3 kB URL HTTP/1.1 www.bradescosaudeempresariall.sousanogueira.com.br/apple-touch-icon.png
IP 200.219.229.6:0
File type PNG image data, 512 x 512, 8-bit colormap, non-interlaced\012- data
Hash 78bf35d1792b237536ec5b167f655f3e
2afe794eabd79e60fea3e7c406ded45e59325d9c
6d8e941f4f8c8734fbd6b6421667708f0f14b8ec171257528dbeea8079465819
GET /apple-touch-icon.png HTTP/1.1
Host: www.bradescosaudeempresariall.sousanogueira.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.bradescosaudeempresariall.sousanogueira.com.br/
HTTP/1.1 200 OK
Date: Sun, 13 Nov 2022 01:06:36 GMT
Server: Apache
Last-Modified: Mon, 08 Nov 2021 19:25:00 GMT
Accept-Ranges: bytes
Content-Length: 5288
Keep-Alive: timeout=5, max=94
Connection: Keep-Alive
Content-Type: image/png
www.bradescosaudeempresariall.sousanogueira.com.br/assets/images/wepik-2021108-16920-2000x1333.jpeg
200.219.229.6200 OK 179 kB URL HTTP/1.1 www.bradescosaudeempresariall.sousanogueira.com.br/assets/images/wepik-2021108-16920-2000x1333.jpeg
IP 200.219.229.6:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 2000x915, components 3\012- data
Size 179 kB (178619 bytes)
Hash 6699a29243ad48e6f82fa7e44d9d2bec
9b2c297dfd92eff61b28b64f0cfed8b0ebace2e3
ef2b3b264662b95d0c5bd20b9272c6588b33e797cfaafa4dc0ed862dbc1ee171
Analyzer Verdict Alert fortinet Phishing
GET /assets/images/wepik-2021108-16920-2000x1333.jpeg HTTP/1.1
Host: www.bradescosaudeempresariall.sousanogueira.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.bradescosaudeempresariall.sousanogueira.com.br/assets/mobirise/css/mbr-additional.css
HTTP/1.1 200 OK
Date: Sun, 13 Nov 2022 01:06:34 GMT
Server: Apache
Last-Modified: Mon, 08 Nov 2021 19:24:48 GMT
Accept-Ranges: bytes
Content-Length: 178619
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive
Content-Type: image/jpeg
www.bradescosaudeempresariall.sousanogueira.com.br/assets/icon54-v2/fonts/icon54-v2.ttf?3tvhdh
200.219.229.6200 OK 523 kB URL HTTP/1.1 www.bradescosaudeempresariall.sousanogueira.com.br/assets/icon54-v2/fonts/icon54-v2.ttf?3tvhdh
IP 200.219.229.6:0
File type TrueType Font data, 11 tables, 1st "OS/2", 14 names, Macintosh, type 1 string, Icon54 \012- data
Size 523 kB (523124 bytes)
Hash 3d73c20c13b7209264a257542a420ed9
e6d48d9b49a29350da51a172e3e151db7c41768d
97053dc9b45fddeee2a4acefa23e8d6ba8deb5fa08cac38f9d7733480d28551e
Analyzer Verdict Alert fortinet Phishing
GET /assets/icon54-v2/fonts/icon54-v2.ttf?3tvhdh HTTP/1.1
Host: www.bradescosaudeempresariall.sousanogueira.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.bradescosaudeempresariall.sousanogueira.com.br/assets/icon54-v2/style.css
HTTP/1.1 200 OK
Date: Sun, 13 Nov 2022 01:06:34 GMT
Server: Apache
Last-Modified: Mon, 08 Nov 2021 19:24:53 GMT
Accept-Ranges: bytes
Content-Length: 523124
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: font/ttf
www.bradescosaudeempresariall.sousanogueira.com.br/assets/icon54/fonts/icon54.ttf?uf6sbu
200.219.229.6200 OK 1.2 MB URL HTTP/1.1 www.bradescosaudeempresariall.sousanogueira.com.br/assets/icon54/fonts/icon54.ttf?uf6sbu
IP 200.219.229.6:0
File type TrueType Font data, 11 tables, 1st "OS/2", name offset 0x123eb0\012- data
Size 1.2 MB (1196144 bytes)
Hash cdc6abd5e504454f00a69dcbcafdf4e5
f5e7cd296745bfca81cf0a1dff8e8f5f291b6aae
a77337357f648f815210d4bd042932643e09443138fabbba811f453d0120ce43
Analyzer Verdict Alert fortinet Phishing
GET /assets/icon54/fonts/icon54.ttf?uf6sbu HTTP/1.1
Host: www.bradescosaudeempresariall.sousanogueira.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.bradescosaudeempresariall.sousanogueira.com.br/assets/icon54/style.css
HTTP/1.1 200 OK
Date: Sun, 13 Nov 2022 01:06:34 GMT
Server: Apache
Last-Modified: Mon, 08 Nov 2021 19:24:55 GMT
Accept-Ranges: bytes
Content-Length: 1196144
Keep-Alive: timeout=5, max=93
Connection: Keep-Alive
Content-Type: font/ttf
fonts.googleapis.com/css?family=Poppins:100,100i,200,200i,300,300i,400,400i,500,500i,600,600i,700,700i,800,800i,900,900i&display=swap
142.250.74.10200 OK 0 B URL HTTP/2 fonts.googleapis.com/css?family=Poppins:100,100i,200,200i,300,300i,400,400i,500,500i,600,600i,700,700i,800,800i,900,900i&display=swap
IP 142.250.74.10:0
GET /css?family=Poppins:100,100i,200,200i,300,300i,400,400i,500,500i,600,600i,700,700i,800,800i,900,900i&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.bradescosaudeempresariall.sousanogueira.com.br/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Sun, 13 Nov 2022 01:06:32 GMT
date: Sun, 13 Nov 2022 01:06:32 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2