Report - oftalmed.com.br/

Report Overview

Submitted URL
oftalmed.com.br/
IP
50.116.113.64
ASN
#46606 UNIFIEDLAYER-AS-1
Submitted
2022-10-04 09:59:14
Access
Website Title
Final URL
Tags
None
urlquery detections
No alerts detected

Detections

urlquery
0
Network Intrusion Detection
0
Threat Detection Systems
30

Domain Summary

Domain / FQDN	Rank	First Seen	Last Seen	Sent	Received	IP
www.oftalmed.com.br	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	24 kB	1.9 MB	108.179.252.178
ocsp.pki.goog	175	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	3.0 kB	6.3 kB	142.250.74.3
firefox.settings.services.mozilla.com	867	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	758 B	2.7 kB	143.204.55.27
r3.o.lencr.org	344	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	978 B	2.7 kB	23.36.77.32
contile.services.mozilla.com	1114	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	321 B	229 B	34.117.237.239
fonts.googleapis.com	8877	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	394 B	746 B	142.250.74.10
www.google.com	7	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	723 B	2.3 kB	142.250.74.164
img-getpocket.cdn.mozilla.net	1631	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	3.2 kB	46 kB	34.120.237.76
www.gstatic.com	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	873 B	162 kB	142.250.74.163
colorlib.com	103984	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	820 B	21 kB	104.22.20.226
oftalmed.com.br	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	335 B	480 B	50.116.113.64
ocsp.digicert.com	86	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	329 B	737 B	93.184.220.29
fonts.gstatic.com	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	1.4 kB	50 kB	216.58.207.195
content-signature-2.cdn.mozilla.net	1152	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	401 B	5.8 kB	143.204.55.110
push.services.mozilla.com	2140	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	594 B	127 B	34.213.140.56

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

OpenPhish

No alerts detected

PhishTank

No alerts detected

Fortinet's Web Filter

Scan Date	Severity	Indicator	Alert
2022-10-04	medium	oftalmed.com.br/	Phishing
2022-10-04	medium	www.oftalmed.com.br/	Phishing
2022-10-04	medium	www.oftalmed.com.br/files/assets/js/owl.carousel.min.js	Phishing
2022-10-04	medium	www.oftalmed.com.br/files/assets/js/jPushMenu.js	Phishing
2022-10-04	medium	www.oftalmed.com.br/files/assets/js/headroom.min.js	Phishing
2022-10-04	medium	www.oftalmed.com.br/files/assets/js/jQuery.headroom.js	Phishing
2022-10-04	medium	www.oftalmed.com.br/files/js/jquery.maskedinput.js	Phishing
2022-10-04	medium	www.oftalmed.com.br/files/assets/sass/biblioteca/bootstrap/javascripts/bootstrap.min.js	Phishing
2022-10-04	medium	www.oftalmed.com.br/files/assets/js/script.js	Phishing
2022-10-04	medium	www.oftalmed.com.br/files/assets/js/shadowbox.js	Phishing
2022-10-04	medium	www.oftalmed.com.br/files/assets/js/jquery-1.10.2.min.js	Phishing
2022-10-04	medium	www.oftalmed.com.br/files/assets/fonts/fontawesome-webfont.woff2?v=4.7.0	Phishing
2022-10-04	medium	www.oftalmed.com.br/erro/page_404	Phishing
2022-10-04	medium	www.oftalmed.com.br/video.mp4	Phishing
2022-10-04	medium	www.oftalmed.com.br/video2.mp4	Phishing

mnemonic secure dns

No alerts detected

Quad9 DNS

No alerts detected

JavaScript (33)

	URL	Size	First Seen	Last Seen
	www.oftalmed.com.br/files/assets/js/jquery-1.10.2.min.js	93 kB	2023-03-07	2024-04-07
Pretty URL www.oftalmed.com.br/files/assets/js/jquery-1.10.2.min.js IP 108.179.252.178 ASN #46606 UNIFIEDLAYER-AS-1 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:20:48 Last Seen2024-04-07 12:04:02 Times Seen598 Hash 11468602df014a21b203dc9bcd84d369 2cf8733fe01e2d149140cb840595fa5d21769f93 29c9e8752f25b17961e3c6ff72de34b1f1a157dfc5fabb68bd148b8ec9002b17 Loading...

	www.oftalmed.com.br/	354 B	2023-03-08	2023-03-08
Pretty URL www.oftalmed.com.br/ IP 108.179.252.178 ASN #46606 UNIFIEDLAYER-AS-1 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 05:41:32 Last Seen2023-03-08 05:41:32 Times Seen1 Hash dc69243db88c1ec35f9ad601a121ea1b 217745cee2450d77653ed67928e04a8fbc4060a1 58643c8c5560c76703cf6bf5784245560e7382666b13ab0ec86932b189d6ae0c Loading...

	www.oftalmed.com.br/files/assets/js/owl.carousel.min.js	43 kB	2023-03-07	2024-04-17
Pretty URL www.oftalmed.com.br/files/assets/js/owl.carousel.min.js IP 108.179.252.178 ASN #46606 UNIFIEDLAYER-AS-1 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:03:24 Last Seen2024-04-17 17:21:14 Times Seen1684 Hash 56b28ad35f1816c6894b14190a0a006d 967ceaa9e6f67e636d818f42b4d5d15c7a4a254e b5757aa153f991c82c949e638c56b4913042196240f3a41cec5a40c3366d1bdd Loading...

	www.google.com/recaptcha/api.js	850 B	2023-03-08	2023-03-11
Pretty URL www.google.com/recaptcha/api.js IP 142.250.74.164 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 03:40:09 Last Seen2023-03-11 13:30:42 Times Seen1 Hash 671d51c8f7b6f6920c23e7092f2e07f4 f9c0ccad26b1524c2f0438657c0ce4b82960cdd3 91b729f00e7b893e0b8158d9d786315ed01b763e6b1053d72e2d6abbb906f70e Loading...

	www.oftalmed.com.br/files/assets/js/jPushMenu.js	3.0 kB	2023-03-08	2023-11-27
Pretty URL www.oftalmed.com.br/files/assets/js/jPushMenu.js IP 108.179.252.178 ASN #46606 UNIFIEDLAYER-AS-1 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 05:41:32 Last Seen2023-11-27 15:29:15 Times Seen3 Hash 469c316da39fd4313840bccbc3004a5b fcf4fb0f042a802791eaccfe928f21262068038d 3c6bb930b3bc4bfae78519c1de6b0ead4c5e428d97c7262efe21876f686a99ed Loading...

	maps.googleapis.com/maps-api-v3/api/js/50/7a/common.js	252 kB	2023-03-08	2023-03-08
Pretty URL maps.googleapis.com/maps-api-v3/api/js/50/7a/common.js IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 03:18:12 Last Seen2023-03-08 06:23:44 Times Seen1 Hash 4d95b1068735a925cbcb752af3bdeafa 35164b1562ec3afa97197ba44b6b13fe7e3ed866 9213d9ffb010f00df9cd989986a3068e7b8de96cbee7e00f249e06d59e81e6ef Loading...

	www.oftalmed.com.br/files/assets/js/script.js	3.2 kB	2023-03-08	2023-03-08
Pretty URL www.oftalmed.com.br/files/assets/js/script.js IP 108.179.252.178 ASN #46606 UNIFIEDLAYER-AS-1 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 05:41:32 Last Seen2023-03-08 05:41:32 Times Seen1 Hash 100502a977929e082cb6057a9105eac1 a081e6d3ce333ace9ff5c1544e74af9a17d94673 f193026b6f2332f76d02ad6429db09c15fa8feeac2b06834619475e46329dacd Loading...

	maps.googleapis.com/maps/vt?pb=!1m4!1m3!1i12!2i1499!3i2229!1m4!1m3!1i12!2i1499!3i2230!1m4!1m3!1i12!2i1499!3i2231!1m4!1m3!1i12!2i1500!3i2229!1m4!1m3!1i12!2i1501!3i2229!1m4!1m3!1i12!2i1500!3i2230!1m4!1m3!1i12!2i1500!3i2231!1m4!1m3!1i12!2i1501!3i2230!1m4!1m3!1i12!2i1501!3i2231!1m4!1m3!1i12!2i1502!3i2229!1m4!1m3!1i12!2i1503!3i2229!1m4!1m3!1i12!2i1502!3i2230!1m4!1m3!1i12!2i1502!3i2231!1m4!1m3!1i12!2i1503!3i2230!1m4!1m3!1i12!2i1503!3i2231!1m4!1m3!1i12!2i1504!3i2229!1m4!1m3!1i12!2i1504!3i2230!1m4!1m3!1i12!2i1504!3i2231!2m3!1e0!2sm!3i621353444!3m12!2sen-US!3sUS!5e18!12m4!1e68!2m2!1sset!2sRoadmap!12m3!1e37!2m1!1ssmartmaps!4e3!12m1!5b1!23i1379903&callback=_xdc_._dw2w4f&key=AIzaSyBiQWwlHNDcOnxVATwJX2zs9XgNcg22qK4&token=89985	13 kB	2023-03-08	2023-03-08
Pretty URL maps.googleapis.com/maps/vt?pb=!1m4!1m3!1i12!2i1499!3i2229!1m4!1m3!1i12!2i1499!3i2230!1m4!1m3!1i12!2i1499!3i2231!1m4!1m3!1i12!2i1500!3i2229!1m4!1m3!1i12!2i1501!3i2229!1m4!1m3!1i12!2i1500!3i2230!1m4!1m3!1i12!2i1500!3i2231!1m4!1m3!1i12!2i1501!3i2230!1m4!1m3!1i12!2i1501!3i2231!1m4!1m3!1i12!2i1502!3i2229!1m4!1m3!1i12!2i1503!3i2229!1m4!1m3!1i12!2i1502!3i2230!1m4!1m3!1i12!2i1502!3i2231!1m4!1m3!1i12!2i1503!3i2230!1m4!1m3!1i12!2i1503!3i2231!1m4!1m3!1i12!2i1504!3i2229!1m4!1m3!1i12!2i1504!3i2230!1m4!1m3!1i12!2i1504!3i2231!2m3!1e0!2sm!3i621353444!3m12!2sen-US!3sUS!5e18!12m4!1e68!2m2!1sset!2sRoadmap!12m3!1e37!2m1!1ssmartmaps!4e3!12m1!5b1!23i1379903&callback=_xdc_._dw2w4f&key=AIzaSyBiQWwlHNDcOnxVATwJX2zs9XgNcg22qK4&token=89985 IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 05:41:32 Last Seen2023-03-08 05:41:32 Times Seen1 Hash 4db0d5b1c64b518fe73fa4d430c52fdb 507708449d4a9428dbf108b8d9ad2294834ab975 50150810529ffa10e1de1d7942ade4bdf5e46cbc538b4b9b4819a7a9a6a94429 Loading...

	www.oftalmed.com.br/	111 B	2023-03-08	2023-03-08
Pretty URL www.oftalmed.com.br/ IP 108.179.252.178 ASN #46606 UNIFIEDLAYER-AS-1 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 05:41:32 Last Seen2023-03-08 05:41:32 Times Seen1 Hash c9b5d4dfe2565f781f516eebcbcb37da 1a650ac59fd3ae0594a5cb5b8bcd48ddaceab27f 90bb2725b1376ef7d805b8ac8e53fcece3b29ca6b36a0d97de2f791eae82a144 Loading...

	maps.googleapis.com/maps/api/js?key=AIzaSyBiQWwlHNDcOnxVATwJX2zs9XgNcg22qK4&callback=initMap	165 kB	2023-03-08	2023-03-08
Pretty URL maps.googleapis.com/maps/api/js?key=AIzaSyBiQWwlHNDcOnxVATwJX2zs9XgNcg22qK4&callback=initMap IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 05:41:32 Last Seen2023-03-08 05:41:32 Times Seen1 Hash 4aa3649bbb58396aa503ed6356f481f9 535907df3bfe798c45f9fc92ab2505e0214914dd 7bd1d6343187d6ee8533f14cdff5b8c6d924793dc9e10e6c7f6c151669293b31 Loading...

	unknown	0 B	2023-03-07	2024-04-18
Pretty Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:01:59 Last Seen2024-04-18 06:23:57 Times Seen36928720 Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 Loading...

	maps.googleapis.com/maps-api-v3/api/js/50/7a/map.js	72 kB	2023-03-08	2023-03-08
Pretty URL maps.googleapis.com/maps-api-v3/api/js/50/7a/map.js IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 03:18:59 Last Seen2023-03-08 06:23:44 Times Seen1 Hash de83532914d0698b3eb4e83df1f84cb9 2bff96335e0d8153482d9298fc69aa401dfa1edb dc7a79a23172d7b2eaab9ee9bee5e70bc70b637a2137d68d86370daff4f3138e Loading...

	maps.googleapis.com/maps-api-v3/api/js/50/7a/marker.js	37 kB	2023-03-08	2023-03-08
Pretty URL maps.googleapis.com/maps-api-v3/api/js/50/7a/marker.js IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 03:18:59 Last Seen2023-03-08 06:23:44 Times Seen1 Hash cadf6494cf686de6abc30c47e1b1d6f5 10134f994f73acb1013bfa304eab30ffab928f2d a9675101c5d7714db4ea8a7eef0c1eb2044a04e6f18cc85678553e3bd52632a9 Loading...

	www.oftalmed.com.br/files/assets/js/shadowbox.js	66 kB	2023-03-08	2023-03-08
Pretty URL www.oftalmed.com.br/files/assets/js/shadowbox.js IP 108.179.252.178 ASN #46606 UNIFIEDLAYER-AS-1 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 05:41:32 Last Seen2023-03-08 05:41:32 Times Seen1 Hash 3bb87f7ad494df684ac10fea97e945ec 57020da1af4361ae3f2ad84c23e91e5895aaf44e 7dfade3c6eee892274290167b27d3ec9661cc3de6cfddf5fa2f10de54efb86b9 Loading...

	www.google.com/recaptcha/api.js?hl=pt-BR	853 B	2023-03-08	2023-03-08
Pretty URL www.google.com/recaptcha/api.js?hl=pt-BR IP 142.250.74.164 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 05:40:56 Last Seen2023-03-08 05:41:32 Times Seen1 Hash bc0e9fe028783dbca81a0e9f275bfe35 4e8051fb82b30ce0ec5cb69c9eeb7bc9fa9c17fa c2b6de60e1d20ce4664155740aed7999a2114074cc85ef5d92815a88df32e4e7 Loading...

	www.oftalmed.com.br/files/js/jquery.maskedinput.js	7.5 kB	2023-03-08	2023-03-10
Pretty URL www.oftalmed.com.br/files/js/jquery.maskedinput.js IP 108.179.252.178 ASN #46606 UNIFIEDLAYER-AS-1 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 05:41:32 Last Seen2023-03-10 04:57:25 Times Seen1 Hash 828447362ec7982514b47c68d318b89a 290a9b90152bce2e46cc5c77d20a02c3d3245867 4b6e077b50cc48cb64242893f64a82e9763aa736b6d4518a44377c94f2cb9aed Loading...

	www.oftalmed.com.br/files/assets/sass/biblioteca/bootstrap/javascripts/bootstrap.min.js	37 kB	2023-03-07	2024-04-17
Pretty URL www.oftalmed.com.br/files/assets/sass/biblioteca/bootstrap/javascripts/bootstrap.min.js IP 108.179.252.178 ASN #46606 UNIFIEDLAYER-AS-1 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:03:32 Last Seen2024-04-17 11:26:19 Times Seen2821 Hash 04c84852e9937b142ac73c285b895b85 8fb8a9319055253d085edfc3bb72d20f614ec709 36460e494e4c628443afded40b2743b5ede9a4a76fb4f7b9ef2345cc7e59fd64 Loading...

	www.oftalmed.com.br/	50 B	2023-03-08	2023-03-08
Pretty URL www.oftalmed.com.br/ IP 108.179.252.178 ASN #46606 UNIFIEDLAYER-AS-1 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 05:41:32 Last Seen2023-03-08 05:41:32 Times Seen1 Hash 86c057111aba8bf2ac1ff3e97b3e2beb f33516323c1897cd2a1e5f01d8a9582f97882c89 39728b751f35a98bf4414de1387736ca9af50da0316c23c84c2a6454ab59536e Loading...

	maps.googleapis.com/maps/api/js/AuthenticationService.Authenticate?1shttp%3A%2F%2Fwww.oftalmed.com.br%2F&4sAIzaSyBiQWwlHNDcOnxVATwJX2zs9XgNcg22qK4&7m1&1e69&callback=_xdc_._235s7p&key=AIzaSyBiQWwlHNDcOnxVATwJX2zs9XgNcg22qK4&token=71179	62 B	2023-03-08	2023-03-08
Pretty URL maps.googleapis.com/maps/api/js/AuthenticationService.Authenticate?1shttp%3A%2F%2Fwww.oftalmed.com.br%2F&4sAIzaSyBiQWwlHNDcOnxVATwJX2zs9XgNcg22qK4&7m1&1e69&callback=_xdc_._235s7p&key=AIzaSyBiQWwlHNDcOnxVATwJX2zs9XgNcg22qK4&token=71179 IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 05:41:32 Last Seen2023-03-08 05:41:32 Times Seen1 Hash 221e02ca9e5cce1d2d1321af35eea25d e60ed4816326082c4217562836c94b59f981486d fe6f505aaf16f51784b4592f4057978afad770570898bf8e8e14ab33753ed095 Loading...

	colorlib.com/polygon/vendors/bootstrap-daterangepicker/daterangepicker.js	38 kB	2023-03-08	2023-03-08
Pretty URL colorlib.com/polygon/vendors/bootstrap-daterangepicker/daterangepicker.js IP 104.22.20.226 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 05:41:32 Last Seen2023-03-08 05:41:32 Times Seen1 Hash 18c983331918a9900a5bb6e199e7b7dc 952b2dd8123b30a8d0fd8560e71bac333ac507dc ae6203a3857e73d798014a0c6312916b8f141eafc2e6977758d72c83a27e1892 Loading...

	www.oftalmed.com.br/files/assets/js/headroom.min.js	5.4 kB	2023-03-08	2024-02-15
Pretty URL www.oftalmed.com.br/files/assets/js/headroom.min.js IP 108.179.252.178 ASN #46606 UNIFIEDLAYER-AS-1 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 05:41:32 Last Seen2024-02-15 14:34:15 Times Seen20 Hash e382c264d208a0c0306df4b3956cf9bd e004f200750ac7f2e42db4e26df7325a754aff7e 5f5ae8328be69df46d4b16961c7ab5d2d852c681a9ca87eaa72cc6699518e90b Loading...

	maps.googleapis.com/maps-api-v3/api/js/50/7a/infowindow.js	8.2 kB	2023-03-08	2023-03-08
Pretty URL maps.googleapis.com/maps-api-v3/api/js/50/7a/infowindow.js IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 03:18:59 Last Seen2023-03-08 06:23:44 Times Seen1 Hash 1de4bb08606994db97cf8321c9e125ad ff6efb51a6d462939e75fa23f6aca94e81ac927d 2e6677a0fa3b1b086b6e13789d5dabd782046f74a9948d9f1f8e58941310000a Loading...

	maps.googleapis.com/maps-api-v3/api/js/50/7a/controls.js	90 kB	2023-03-08	2023-03-08
Pretty URL maps.googleapis.com/maps-api-v3/api/js/50/7a/controls.js IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 03:18:59 Last Seen2023-03-08 06:23:44 Times Seen1 Hash 09129113c1e3269ee07736bc7c0f5731 495bdb9556730aec0e755b321f9d33aac68d976a bd21a2d8b6036fc37005a3fa46262e8087be7096560c5f554adca60db7721c2e Loading...

	www.oftalmed.com.br/	550 B	2023-03-08	2023-03-08
Pretty URL www.oftalmed.com.br/ IP 108.179.252.178 ASN #46606 UNIFIEDLAYER-AS-1 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 05:41:32 Last Seen2023-03-08 05:41:32 Times Seen1 Hash f1b4ef22f9248525eba0bc4c0c5dda12 9fd8cb3819730b88f886afa6c28c510ee5cf16a0 e26ebbfe989745436936b5547bfe173b5cf156382b7443422b853ca5189f92cc Loading...

	maps.googleapis.com/maps-api-v3/api/js/50/7a/onion.js	28 kB	2023-03-08	2023-03-08
Pretty URL maps.googleapis.com/maps-api-v3/api/js/50/7a/onion.js IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 03:18:59 Last Seen2023-03-08 06:23:44 Times Seen1 Hash 8459af57ddac126147eda645f11c2e51 3cf84f5b4fbeb347f8f0ffb7760703ba11322510 b985aa977fc231110b06edb3a27ba721ddd1bc612dc46ccacafd9d9b221acebf Loading...

	www.oftalmed.com.br/	2.7 kB	2023-03-08	2023-03-08
Pretty URL www.oftalmed.com.br/ IP 108.179.252.178 ASN #46606 UNIFIEDLAYER-AS-1 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 05:41:32 Last Seen2023-03-08 05:41:32 Times Seen1 Hash a0d55147e0e523f2b613463e0235f67d cbfd4c0f7342c30bc31db3d34a4e8c7ade5ac8fc 7b0e25b633f6e3a4cf3fdcb88d6ab04da919ab5a3516b7d0a003830d912c10f3 Loading...

	maps.googleapis.com/maps/api/js/ViewportInfoService.GetViewportInfo?1m6&1m2&1d-16.07689432758418&2d-48.62197247432338&2m2&1d-15.549504143293062&2d-47.29499072030056&2u12&4sen-US&5e0&6sm%40621000000&7b0&8e0&12e1&13shttp%3A%2F%2Fwww.oftalmed.com.br%2F&14b1&callback=_xdc_._9wxbof&key=AIzaSyBiQWwlHNDcOnxVATwJX2zs9XgNcg22qK4&token=79987	43 kB	2023-03-08	2023-03-08
Pretty URL maps.googleapis.com/maps/api/js/ViewportInfoService.GetViewportInfo?1m6&1m2&1d-16.07689432758418&2d-48.62197247432338&2m2&1d-15.549504143293062&2d-47.29499072030056&2u12&4sen-US&5e0&6sm%40621000000&7b0&8e0&12e1&13shttp%3A%2F%2Fwww.oftalmed.com.br%2F&14b1&callback=_xdc_._9wxbof&key=AIzaSyBiQWwlHNDcOnxVATwJX2zs9XgNcg22qK4&token=79987 IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 05:41:32 Last Seen2023-03-08 05:41:32 Times Seen1 Hash baf6b509abdb25073c53ab832003f946 1637b49bd2365046b429b4f196cc6bfaab97e1e1 c8f94b33182c568325fd941ef79444a307fd021b9e38a23cec514793f09b0b7d Loading...

	maps.googleapis.com/maps/vt?pb=!1m4!1m3!1i12!2i1499!3i2229!1m4!1m3!1i12!2i1499!3i2230!1m4!1m3!1i12!2i1499!3i2231!1m4!1m3!1i12!2i1500!3i2229!1m4!1m3!1i12!2i1501!3i2229!1m4!1m3!1i12!2i1500!3i2230!1m4!1m3!1i12!2i1500!3i2231!1m4!1m3!1i12!2i1501!3i2230!1m4!1m3!1i12!2i1501!3i2231!1m4!1m3!1i12!2i1502!3i2229!1m4!1m3!1i12!2i1503!3i2229!1m4!1m3!1i12!2i1502!3i2230!1m4!1m3!1i12!2i1502!3i2231!1m4!1m3!1i12!2i1503!3i2230!1m4!1m3!1i12!2i1503!3i2231!1m4!1m3!1i12!2i1504!3i2229!1m4!1m3!1i12!2i1504!3i2230!1m4!1m3!1i12!2i1504!3i2231!2m3!1e0!2sm!3i621353444!3m17!2sen-US!3sUS!5e18!12m4!1e68!2m2!1sset!2sRoadmap!12m3!1e37!2m1!1ssmartmaps!12m4!1e26!2m2!1sstyles!2zcC5zOi02MHxwLmw6LTYw!4e3!12m1!5b1!23i1379903&callback=_xdc_._60du9d&key=AIzaSyBiQWwlHNDcOnxVATwJX2zs9XgNcg22qK4&token=48366	13 kB	2023-03-08	2023-03-08
Pretty URL maps.googleapis.com/maps/vt?pb=!1m4!1m3!1i12!2i1499!3i2229!1m4!1m3!1i12!2i1499!3i2230!1m4!1m3!1i12!2i1499!3i2231!1m4!1m3!1i12!2i1500!3i2229!1m4!1m3!1i12!2i1501!3i2229!1m4!1m3!1i12!2i1500!3i2230!1m4!1m3!1i12!2i1500!3i2231!1m4!1m3!1i12!2i1501!3i2230!1m4!1m3!1i12!2i1501!3i2231!1m4!1m3!1i12!2i1502!3i2229!1m4!1m3!1i12!2i1503!3i2229!1m4!1m3!1i12!2i1502!3i2230!1m4!1m3!1i12!2i1502!3i2231!1m4!1m3!1i12!2i1503!3i2230!1m4!1m3!1i12!2i1503!3i2231!1m4!1m3!1i12!2i1504!3i2229!1m4!1m3!1i12!2i1504!3i2230!1m4!1m3!1i12!2i1504!3i2231!2m3!1e0!2sm!3i621353444!3m17!2sen-US!3sUS!5e18!12m4!1e68!2m2!1sset!2sRoadmap!12m3!1e37!2m1!1ssmartmaps!12m4!1e26!2m2!1sstyles!2zcC5zOi02MHxwLmw6LTYw!4e3!12m1!5b1!23i1379903&callback=_xdc_._60du9d&key=AIzaSyBiQWwlHNDcOnxVATwJX2zs9XgNcg22qK4&token=48366 IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 05:41:32 Last Seen2023-03-08 05:41:32 Times Seen1 Hash 88a1be35c5791248f703c1296f14f9b8 3541aa6550e4ec270e554bf2fbd405f5a1bf7881 f0b5f8f5e3f0c52c844a0a1af76ed83ed2b3070ea746326a8c1251dbd849c674 Loading...

	colorlib.com/polygon/vendors/mjolnic-bootstrap-colorpicker/dist/js/bootstrap-colorpicker.min.js	19 kB	2023-03-08	2024-02-25
Pretty URL colorlib.com/polygon/vendors/mjolnic-bootstrap-colorpicker/dist/js/bootstrap-colorpicker.min.js IP 104.22.20.226 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 05:41:32 Last Seen2024-02-25 17:58:56 Times Seen28 Hash 280611a47d34145f688739c2cf0aa29b 535b694eb8b5c4ffebf34d7875b27c1495254eb8 8edde04e56846763909a80d35845689194062514e04f7ae90b85b46757287ea8 Loading...

	www.oftalmed.com.br/	413 B	2023-03-08	2023-03-08
Pretty URL www.oftalmed.com.br/ IP 108.179.252.178 ASN #46606 UNIFIEDLAYER-AS-1 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 05:41:32 Last Seen2023-03-08 05:41:32 Times Seen1 Hash 067933fb73e08ab245376aef83a74d1a 76f1716e2ec1dc1bddbe3b721099dc8fec4335cc c46e425706026492f98eea7f69962f02f28453f0116d6a2bf485077a8df91944 Loading...

	maps.googleapis.com/maps/api/js/QuotaService.RecordEvent?1shttp%3A%2F%2Fwww.oftalmed.com.br%2F&3sAIzaSyBiQWwlHNDcOnxVATwJX2zs9XgNcg22qK4&7su13sn5&10e1&callback=_xdc_._1opwod&key=AIzaSyBiQWwlHNDcOnxVATwJX2zs9XgNcg22qK4&token=23539	416 B	2023-03-08	2023-03-08
Pretty URL maps.googleapis.com/maps/api/js/QuotaService.RecordEvent?1shttp%3A%2F%2Fwww.oftalmed.com.br%2F&3sAIzaSyBiQWwlHNDcOnxVATwJX2zs9XgNcg22qK4&7su13sn5&10e1&callback=_xdc_._1opwod&key=AIzaSyBiQWwlHNDcOnxVATwJX2zs9XgNcg22qK4&token=23539 IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 05:41:32 Last Seen2023-03-08 05:41:32 Times Seen1 Hash cbb81e33f517fa829b9a4121ad83b17f cb207c7126ceb3e4bf6b2662c861b4f8d11222d4 dc40c662268c5e85640854dc1f9540fc275ca630fbae57c61fc79da8dd97a69d Loading...

	www.oftalmed.com.br/files/assets/js/jQuery.headroom.js	804 B	2023-03-08	2023-03-08
Pretty URL www.oftalmed.com.br/files/assets/js/jQuery.headroom.js IP 108.179.252.178 ASN #46606 UNIFIEDLAYER-AS-1 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 05:41:32 Last Seen2023-03-08 05:41:32 Times Seen1 Hash 00da3bba1b6ad532c6a3188fb705adc5 c5fea3a847fafa5f61c7f380f3d57f071142ea13 f4846ea7ce08a85e8bd8875281458f8f0430df677eefcd034d17515a11a0eb63 Loading...

	maps.googleapis.com/maps-api-v3/api/js/50/7a/util.js	165 kB	2023-03-08	2023-03-08
Pretty URL maps.googleapis.com/maps-api-v3/api/js/50/7a/util.js IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 03:18:12 Last Seen2023-03-08 06:23:44 Times Seen1 Hash 94034edc34444b65988a5480f1f7ab4a 5f96091d8d0fb1677c12be16574da775586b8532 4bba58a24d973f3780362a09eac2d0f72e205e9d186cbe471bfea2fb4a5719cd Loading...

HTTP Transactions (94)

URL IP Response Size

firefox.settings.services.mozilla.com/v1/

143.204.55.27

200 OK

939 B

URL HTTP/1.1
firefox.settings.services.mozilla.com/v1/
IP
143.204.55.27:0
ASN
#16509 AMAZON-02

File type
JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Size
939 B (939 bytes)
Hash
2d12f67fe57a87e7366b662d153a5582
d7b02d81cc74f24a251d9363e0f4b0a149264ec1
73c273c0b5a2de3cb970b8e8c187999d3b55e760dc7766dab4bb76428d19b551

HTTP Headers

GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 939
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Content-Type, Alert, Backoff, Retry-After, Content-Length
Cache-Control: max-age=3600
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Date: Tue, 04 Oct 2022 09:47:04 GMT
X-Content-Type-Options: nosniff
X-Cache: Hit from cloudfront
Via: 1.1 bb1da7862c4968b28920b91b324095c0.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: E8ts3CsxpzjRtbjzKcFXNkD0xRT1jBCViKuLczCwEmPg8JgEGEq3bw==
Age: 719

oftalmed.com.br/

50.116.113.64

301 Moved Permanently

235 B

URL HTTP/1.1
oftalmed.com.br/
IP
50.116.113.64:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Size
235 B (235 bytes)
Hash
5825887b0f377bc644daf3ef80685b2c
014989092257bc3086e187f456e66e9da0796c06
e54fbf75b64e7ba95f9162ab4743fdd1e54947aea49c5324a19cc55e0a12cd6a

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET / HTTP/1.1
Host: oftalmed.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1

HTTP/1.1 301 Moved Permanently
Date: Tue, 04 Oct 2022 09:59:03 GMT
Server: Apache
Location: http://www.oftalmed.com.br/
Content-Length: 235
Keep-Alive: timeout=5, max=75
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
9955bda9c9ef64bc5700a14af0bae25e
8de7b7469e905af0374bdfcc3006bbb844f13e94
1f611155394fac39439b8ec8217d8cd493d6b588d372d264e0d66c03129c50c6

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "1F611155394FAC39439B8EC8217D8CD493D6B588D372D264E0D66C03129C50C6"
Last-Modified: Sun, 02 Oct 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7451
Expires: Tue, 04 Oct 2022 12:03:14 GMT
Date: Tue, 04 Oct 2022 09:59:03 GMT
Connection: keep-alive

content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-30-18-47-44.chain

143.204.55.110

200 OK

5.3 kB

URL HTTP/2
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-30-18-47-44.chain
IP
143.204.55.110:0
ASN
#16509 AMAZON-02

File type
PEM certificate\012- , ASCII text
Size
5.3 kB (5348 bytes)
Hash
6113f8408c59aebe188d6af273b90743
7398873bf00f99944eaa77ad3ebc0d43c23dba6b
b6e0cc9ad68306208a160f3835fb8da76acc5a82d8fde1da5a98e1de1c11a770

HTTP Headers

GET /chains/remote-settings.content-signature.mozilla.org-2022-10-30-18-47-44.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: binary/octet-stream
content-length: 5348
last-modified: Sat, 10 Sep 2022 18:47:45 GMT
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
date: Tue, 04 Oct 2022 05:28:28 GMT
etag: "6113f8408c59aebe188d6af273b90743"
x-cache: Hit from cloudfront
via: 1.1 057fdebf738f5915bf38a78949190758.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: dVzVNmHiGBlzY98CkVGrXMZ966PNiuf1-4a6PF86khCJGCy-iNIW2A==
age: 16236
X-Firefox-Spdy: h2

contile.services.mozilla.com/v1/tiles

34.117.237.239

200 OK

12 B

URL HTTP/2
contile.services.mozilla.com/v1/tiles
IP
34.117.237.239:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with no line terminators
Size
12 B (12 bytes)
Hash
23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3

HTTP Headers

GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
date: Tue, 04 Oct 2022 09:59:04 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2

www.oftalmed.com.br/

108.179.252.178

200 OK

11 kB

URL HTTP/1.1
www.oftalmed.com.br/
IP
108.179.252.178:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (415), with CRLF line terminators
Size
11 kB (11251 bytes)
Hash
c94835045482c3e75da39209d22d07c8
990a75bfc7217577c351efba6d889874e9a9cdb1
c77a0e69ded3f786add730e663ce945e741c3e669f6eb9ca20d202c63c30341b

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET / HTTP/1.1
Host: www.oftalmed.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1

HTTP/1.1 200 OK
Date: Tue, 04 Oct 2022 09:59:04 GMT
Server: Apache
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate
Pragma: no-cache
Set-Cookie: PHPSESSID=cfdfe4632ba0e4856e835cca033a3972; path=/
Upgrade: h2,h2c
Connection: Upgrade, Keep-Alive
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 11251
Keep-Alive: timeout=5, max=75
Content-Type: text/html; charset=UTF-8

firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US

143.204.55.27

200 OK

329 B

URL HTTP/1.1
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP
143.204.55.27:0
ASN
#16509 AMAZON-02

File type
JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Size
329 B (329 bytes)
Hash
0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300

HTTP Headers

GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 329
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: ETag, Expires, Content-Length, Cache-Control, Pragma, Content-Type, Alert, Backoff, Last-Modified, Retry-After
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Last-Modified: Fri, 25 Mar 2022 17:45:46 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
Date: Tue, 04 Oct 2022 09:29:33 GMT
Cache-Control: max-age=3600, max-age=3600
Expires: Tue, 04 Oct 2022 10:27:25 GMT
ETag: "1648230346554"
X-Cache: Hit from cloudfront
Via: 1.1 9ede9483eb891e14681c7c693b47c862.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: J0-aImpi515b4FzPKhR21w2DMO2iafPH7TJPLP-mcNUZDCSD6aZ0TA==
Age: 1771

www.oftalmed.com.br/files/assets/css/animate.css

108.179.252.178

200 OK

7.6 kB

URL HTTP/1.1
www.oftalmed.com.br/files/assets/css/animate.css
IP
108.179.252.178:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
ASCII text, with CRLF line terminators
Size
7.6 kB (7590 bytes)
Hash
cfaa5955c96cde0207d339653004c582
a9a454277b07d543073ca33aa906b817a2b18b97
8eb5627d6f4c0bc576f13b0be3cced03927815fb4393af578d7d6a942a12d778

HTTP Headers

GET /files/assets/css/animate.css HTTP/1.1
Host: www.oftalmed.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.oftalmed.com.br/
Cookie: PHPSESSID=cfdfe4632ba0e4856e835cca033a3972

HTTP/1.1 200 OK
Date: Tue, 04 Oct 2022 09:59:04 GMT
Server: Apache
Last-Modified: Mon, 30 Sep 2019 10:44:29 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 7590
Keep-Alive: timeout=5, max=74
Connection: Keep-Alive
Content-Type: text/css

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
b45b15bb651cc185ea82d91a51f06b5a
44987727be72bb12b4e4fc4fac50145835512750
f0b61426de169cf2efde87ac98d5123ea785004ad05c05932a099b644b2fdf64

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 04 Oct 2022 09:59:04 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
9e40b2c69615f45f2bc898334ab3e343
6a569648ed10564e126d3bbf3f91352e6b3f6d4f
4f1d0982c58b9bbeaa266b99292baa1a00c9e39280f73d5a525722c851e15981

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 04 Oct 2022 09:59:04 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
b45b15bb651cc185ea82d91a51f06b5a
44987727be72bb12b4e4fc4fac50145835512750
f0b61426de169cf2efde87ac98d5123ea785004ad05c05932a099b644b2fdf64

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 04 Oct 2022 09:59:04 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.digicert.com/

93.184.220.29

200 OK

471 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
471 B (471 bytes)
Hash
16ebfb2aa621547ecf581e26fc828a7d
f78993331f6f5b8af6409a9ad2fc50b77070f68a
0f81fd1d6be9ccc04b74f0348aafe642c7b9ab7dffb7e8a679b5d67cc2e5fac3

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4636
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Tue, 04 Oct 2022 09:59:04 GMT
Last-Modified: Tue, 04 Oct 2022 08:41:48 GMT
Server: ECS (ska/F718)
X-Cache: HIT
Content-Length: 471

www.oftalmed.com.br/files/assets/css/jPushMenu.css

108.179.252.178

200 OK

808 B

URL HTTP/1.1
www.oftalmed.com.br/files/assets/css/jPushMenu.css
IP
108.179.252.178:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
ASCII text, with CRLF line terminators
Size
808 B (808 bytes)
Hash
186ae7d616174d57161a1f9c042e1a7c
9725abece46338da6d58ac79f066fe165e3e1841
0f9a464a4ea9dac65f8c23cd55a045ac0aa857a254c99063dba21ced863aa099

HTTP Headers

GET /files/assets/css/jPushMenu.css HTTP/1.1
Host: www.oftalmed.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.oftalmed.com.br/
Cookie: PHPSESSID=cfdfe4632ba0e4856e835cca033a3972

HTTP/1.1 200 OK
Date: Tue, 04 Oct 2022 09:59:04 GMT
Server: Apache
Upgrade: h2,h2c
Connection: Upgrade, Keep-Alive
Last-Modified: Mon, 30 Sep 2019 10:44:29 GMT
Accept-Ranges: none
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 808
Keep-Alive: timeout=5, max=75
Content-Type: text/css

www.oftalmed.com.br/files/assets/css/shadowbox.css

108.179.252.178

200 OK

732 B

URL HTTP/1.1
www.oftalmed.com.br/files/assets/css/shadowbox.css
IP
108.179.252.178:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
ASCII text, with CRLF line terminators
Size
732 B (732 bytes)
Hash
7e43f74f7c3a258933b27c78d168f20c
6ec75f8af7179b2c7d389217f699e0edc3103927
7dd41de04245795375aa3194cc535ba686c87e4883844a333d42d8b356945cd4

HTTP Headers

GET /files/assets/css/shadowbox.css HTTP/1.1
Host: www.oftalmed.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.oftalmed.com.br/
Cookie: PHPSESSID=cfdfe4632ba0e4856e835cca033a3972

HTTP/1.1 200 OK
Date: Tue, 04 Oct 2022 09:59:04 GMT
Server: Apache
Upgrade: h2,h2c
Connection: Upgrade, Keep-Alive
Last-Modified: Mon, 30 Sep 2019 10:44:29 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 732
Keep-Alive: timeout=5, max=75
Content-Type: text/css

www.oftalmed.com.br/files/assets/css/owl.carousel.min.css

108.179.252.178

200 OK

975 B

URL HTTP/1.1
www.oftalmed.com.br/files/assets/css/owl.carousel.min.css
IP
108.179.252.178:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
ASCII text, with very long lines (2846), with CRLF line terminators
Size
975 B (975 bytes)
Hash
cc538c4fefe8317e2f39312f7faad7d8
c6e4a125ed897e47f69a711e0eaae4162e8cd870
f29cd9f3a2aa9b22f2c84e5ab5a2aa66bd7a58d0e30c20fbf9cef7e77666296d

HTTP Headers

GET /files/assets/css/owl.carousel.min.css HTTP/1.1
Host: www.oftalmed.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.oftalmed.com.br/
Cookie: PHPSESSID=cfdfe4632ba0e4856e835cca033a3972

HTTP/1.1 200 OK
Date: Tue, 04 Oct 2022 09:59:04 GMT
Server: Apache
Upgrade: h2,h2c
Connection: Upgrade, Keep-Alive
Last-Modified: Mon, 30 Sep 2019 10:44:29 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 975
Keep-Alive: timeout=5, max=75
Content-Type: text/css

www.google.com/recaptcha/api.js?hl=pt-BR

142.250.74.164

200 OK

555 B

URL HTTP/2
www.google.com/recaptcha/api.js?hl=pt-BR
IP
142.250.74.164:0
ASN
#15169 GOOGLE

File type
ASCII text, with very long lines (853), with no line terminators
Size
555 B (555 bytes)
Hash
23d7aa80a7b7d85b0cf5988d8911d96b
be0711492f46e78d37b0fa9fafeefc4738847541
c08b0c0bf0928e9685128be278fea7d560f090c48bff8f472a87944b40f34d34

HTTP Headers

GET /recaptcha/api.js?hl=pt-BR HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.oftalmed.com.br/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
expires: Tue, 04 Oct 2022 09:59:04 GMT
date: Tue, 04 Oct 2022 09:59:04 GMT
cache-control: private, max-age=300
content-type: text/javascript; charset=UTF-8
cross-origin-resource-policy: cross-origin
content-encoding: gzip
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
content-security-policy: frame-ancestors 'self'
x-xss-protection: 1; mode=block
content-length: 555
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

www.oftalmed.com.br/files/assets/js/owl.carousel.min.js

108.179.252.178

200 OK

15 kB

URL HTTP/1.1
www.oftalmed.com.br/files/assets/js/owl.carousel.min.js
IP
108.179.252.178:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
ASCII text, with very long lines (32000), with CRLF line terminators
Size
15 kB (15332 bytes)
Hash
4abcf4ed418c59f48188925991bfb1cf
5adc48c03dfdfe91367b8eed76fbd7cdf9166a30
8911847696e35f16ee9057f65da5c3882ec9268b8b243bc7441a13a2fefb2fed

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /files/assets/js/owl.carousel.min.js HTTP/1.1
Host: www.oftalmed.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.oftalmed.com.br/
Cookie: PHPSESSID=cfdfe4632ba0e4856e835cca033a3972

HTTP/1.1 200 OK
Date: Tue, 04 Oct 2022 09:59:04 GMT
Server: Apache
Last-Modified: Mon, 30 Sep 2019 10:44:29 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 15332
Keep-Alive: timeout=5, max=73
Connection: Keep-Alive
Content-Type: application/javascript

www.google.com/recaptcha/api.js

142.250.74.164

200 OK

555 B

URL HTTP/2
www.google.com/recaptcha/api.js
IP
142.250.74.164:0
ASN
#15169 GOOGLE

File type
ASCII text, with very long lines (850), with no line terminators
Size
555 B (555 bytes)
Hash
e75e7b4c9bf71c4a14d5e1d1946b161a
36148f31ea702a23a3f0dafd907a9069234021e7
e43b40968f165ec7b121020103aa40529d891aa2d03ead26ed47adefc4d6ab6d

HTTP Headers

GET /recaptcha/api.js HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.oftalmed.com.br/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
expires: Tue, 04 Oct 2022 09:59:04 GMT
date: Tue, 04 Oct 2022 09:59:04 GMT
cache-control: private, max-age=300
content-type: text/javascript; charset=UTF-8
cross-origin-resource-policy: cross-origin
content-encoding: gzip
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
content-security-policy: frame-ancestors 'self'
x-xss-protection: 1; mode=block
content-length: 555
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

www.oftalmed.com.br/files/assets/js/jPushMenu.js

108.179.252.178

200 OK

954 B

URL HTTP/1.1
www.oftalmed.com.br/files/assets/js/jPushMenu.js
IP
108.179.252.178:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
ASCII text, with CRLF line terminators
Size
954 B (954 bytes)
Hash
0436bb97dae877100cc6d45bacd70bce
94413a570519a771bb9a485024e36e6667978ae5
994a3f12802837ff75fb8b338def92ad5bab705313971b4f52f41043142ac8e7

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /files/assets/js/jPushMenu.js HTTP/1.1
Host: www.oftalmed.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.oftalmed.com.br/
Cookie: PHPSESSID=cfdfe4632ba0e4856e835cca033a3972

HTTP/1.1 200 OK
Date: Tue, 04 Oct 2022 09:59:04 GMT
Server: Apache
Upgrade: h2,h2c
Connection: Upgrade, Keep-Alive
Last-Modified: Mon, 30 Sep 2019 10:44:29 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 954
Keep-Alive: timeout=5, max=75
Content-Type: application/javascript

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
9e40b2c69615f45f2bc898334ab3e343
6a569648ed10564e126d3bbf3f91352e6b3f6d4f
4f1d0982c58b9bbeaa266b99292baa1a00c9e39280f73d5a525722c851e15981

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 04 Oct 2022 09:59:04 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
129fe858bf2aa7291fd2c6dd4cf9d226
e3e048b964b851ebbdcfb5bd80ebdbad13720cf6
addc7e4ddab73c8c7ee50f6d33fc1e4ff73b71cc014e481049a393c3b87b0924

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 04 Oct 2022 09:59:04 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

www.oftalmed.com.br/files/assets/js/headroom.min.js

108.179.252.178

200 OK

1.8 kB

URL HTTP/1.1
www.oftalmed.com.br/files/assets/js/headroom.min.js
IP
108.179.252.178:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
ASCII text, with very long lines (5182), with CRLF line terminators
Size
1.8 kB (1795 bytes)
Hash
f87f7e4cfa1d48715101f7e7a7dddd9e
4102ca0a01e881fa3af3c766059e8fbbad1c50d6
fc46cb7fac339002332c058b795c746b18e55402ca05c3557e7fef63f937be39

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /files/assets/js/headroom.min.js HTTP/1.1
Host: www.oftalmed.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.oftalmed.com.br/
Cookie: PHPSESSID=cfdfe4632ba0e4856e835cca033a3972

HTTP/1.1 200 OK
Date: Tue, 04 Oct 2022 09:59:04 GMT
Server: Apache
Last-Modified: Mon, 30 Sep 2019 10:44:29 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 1795
Keep-Alive: timeout=5, max=74
Connection: Keep-Alive
Content-Type: application/javascript

www.oftalmed.com.br/files/assets/js/jQuery.headroom.js

108.179.252.178

200 OK

337 B

URL HTTP/1.1
www.oftalmed.com.br/files/assets/js/jQuery.headroom.js
IP
108.179.252.178:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
ASCII text, with CRLF line terminators
Size
337 B (337 bytes)
Hash
1c30d6b265d5f510054e34f0cce4ddbb
704584fe6b46f44e59495b8309f8555ff49e57b2
08c6e2dfca7abf6c0d5a5acebaa1de6e1017451d2cb018c467af3d93a6e2254f

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /files/assets/js/jQuery.headroom.js HTTP/1.1
Host: www.oftalmed.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.oftalmed.com.br/
Cookie: PHPSESSID=cfdfe4632ba0e4856e835cca033a3972

HTTP/1.1 200 OK
Date: Tue, 04 Oct 2022 09:59:04 GMT
Server: Apache
Last-Modified: Mon, 30 Sep 2019 10:44:29 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 337
Keep-Alive: timeout=5, max=74
Connection: Keep-Alive
Content-Type: application/javascript

www.oftalmed.com.br/files/js/jquery.maskedinput.js

108.179.252.178

200 OK

2.7 kB

URL HTTP/1.1
www.oftalmed.com.br/files/js/jquery.maskedinput.js
IP
108.179.252.178:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
ASCII text, with CRLF line terminators
Size
2.7 kB (2678 bytes)
Hash
0124c06300084171eb6c96cac595f06a
9241895c27e5de32477eff0b106689600a3ebccd
2228f62adb5293ead3c70deee4d06a47c3f0305b7f3d91f1b1c7c9bdb724aa62

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /files/js/jquery.maskedinput.js HTTP/1.1
Host: www.oftalmed.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.oftalmed.com.br/
Cookie: PHPSESSID=cfdfe4632ba0e4856e835cca033a3972

HTTP/1.1 200 OK
Date: Tue, 04 Oct 2022 09:59:04 GMT
Server: Apache
Last-Modified: Mon, 30 Sep 2019 10:44:31 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 2678
Keep-Alive: timeout=5, max=72
Connection: Keep-Alive
Content-Type: application/javascript

www.oftalmed.com.br/files/assets/css/geral.css

108.179.252.178

200 OK

47 kB

URL HTTP/1.1
www.oftalmed.com.br/files/assets/css/geral.css
IP
108.179.252.178:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
ASCII text, with very long lines (65367), with CRLF line terminators
Size
47 kB (47221 bytes)
Hash
43599c4eeb46abc109e9061f8c2f94e0
56532cfb61c8fc70dc6eb07873983d10e1c94281
6c2a8ef759f8616da44f6f4c7bcef79e87de4198a80d6d463c79cc7dc9e2249e

HTTP Headers

GET /files/assets/css/geral.css HTTP/1.1
Host: www.oftalmed.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.oftalmed.com.br/
Cookie: PHPSESSID=cfdfe4632ba0e4856e835cca033a3972

HTTP/1.1 200 OK
Date: Tue, 04 Oct 2022 09:59:04 GMT
Server: Apache
Upgrade: h2,h2c
Connection: Upgrade, Keep-Alive
Last-Modified: Mon, 30 Sep 2019 10:44:29 GMT
Accept-Ranges: none
Vary: Accept-Encoding
Content-Encoding: gzip
Keep-Alive: timeout=5, max=75
Transfer-Encoding: chunked
Content-Type: text/css

www.oftalmed.com.br/files/assets/sass/biblioteca/bootstrap/javascripts/bootstrap.min.js

108.179.252.178

200 OK

14 kB

URL HTTP/1.1
www.oftalmed.com.br/files/assets/sass/biblioteca/bootstrap/javascripts/bootstrap.min.js
IP
108.179.252.178:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
ASCII text, with very long lines (32033), with CRLF line terminators
Size
14 kB (14401 bytes)
Hash
0a2bb695c4a9fb8f5e7576fe605472fa
2a477afdd17236fe149ff6f8a8c774cc2f76f469
1a85ee685c43e7366a304e478240c7dfda27e29d9081fdb45d1bfa2060e46b8f

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /files/assets/sass/biblioteca/bootstrap/javascripts/bootstrap.min.js HTTP/1.1
Host: www.oftalmed.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.oftalmed.com.br/
Cookie: PHPSESSID=cfdfe4632ba0e4856e835cca033a3972

HTTP/1.1 200 OK
Date: Tue, 04 Oct 2022 09:59:04 GMT
Server: Apache
Last-Modified: Mon, 30 Sep 2019 10:44:29 GMT
Accept-Ranges: none
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 14401
Keep-Alive: timeout=5, max=74
Connection: Keep-Alive
Content-Type: application/javascript

push.services.mozilla.com/

34.213.140.56

101 Switching Protocols

0 B

URL HTTP/1.1
push.services.mozilla.com/
IP
34.213.140.56:0
ASN
#16509 AMAZON-02

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: VspCPOXJhp7NniuhdXwlvw==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket

HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: Mzhvg9ThTofrgnmG6UmwzUo4vaQ=

www.oftalmed.com.br/files/assets/js/script.js

108.179.252.178

200 OK

887 B

URL HTTP/1.1
www.oftalmed.com.br/files/assets/js/script.js
IP
108.179.252.178:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
Unicode text, UTF-8 text, with CRLF line terminators
Size
887 B (887 bytes)
Hash
4cd7b6f7eed0244411a61764a98b1d6a
105ea5960efd1ae31af0f96108c80898ae8ed99f
9704ddeff80caed0c7c4089728f87ecb969597cf4c3b75d48ebc1a0313bf55db

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /files/assets/js/script.js HTTP/1.1
Host: www.oftalmed.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.oftalmed.com.br/
Cookie: PHPSESSID=cfdfe4632ba0e4856e835cca033a3972

HTTP/1.1 200 OK
Date: Tue, 04 Oct 2022 09:59:04 GMT
Server: Apache
Last-Modified: Mon, 30 Sep 2019 10:44:29 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 887
Keep-Alive: timeout=5, max=73
Connection: Keep-Alive
Content-Type: application/javascript

www.oftalmed.com.br/files/assets/js/shadowbox.js

108.179.252.178

200 OK

25 kB

URL HTTP/1.1
www.oftalmed.com.br/files/assets/js/shadowbox.js
IP
108.179.252.178:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
Unicode text, UTF-8 text, with very long lines (28608), with CRLF line terminators
Size
25 kB (25361 bytes)
Hash
51367a0a8e7994dd027a4293a7cbc575
112c9b77fac62ecf16257a365b70daae07f82ad6
fcacbb46653e82229755bb8e05bb5c96c9768a34a3f48651ecf3d00341168973

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /files/assets/js/shadowbox.js HTTP/1.1
Host: www.oftalmed.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.oftalmed.com.br/
Cookie: PHPSESSID=cfdfe4632ba0e4856e835cca033a3972

HTTP/1.1 200 OK
Date: Tue, 04 Oct 2022 09:59:04 GMT
Server: Apache
Last-Modified: Mon, 30 Sep 2019 10:44:29 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Keep-Alive: timeout=5, max=74
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: application/javascript

www.oftalmed.com.br/files/assets/js/jquery-1.10.2.min.js

108.179.252.178

200 OK

41 kB

URL HTTP/1.1
www.oftalmed.com.br/files/assets/js/jquery-1.10.2.min.js
IP
108.179.252.178:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
ASCII text, with very long lines (32072), with CRLF line terminators
Size
41 kB (40982 bytes)
Hash
1218be55d7b35660213a5f941293947e
44a269abad69d3636c1a9290032b070b92f0df8a
76ca92e90d3e7d85118fd58c0e12ed447c1163cb3cd2a91586e8a763280a5e9c

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /files/assets/js/jquery-1.10.2.min.js HTTP/1.1
Host: www.oftalmed.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.oftalmed.com.br/
Cookie: PHPSESSID=cfdfe4632ba0e4856e835cca033a3972

HTTP/1.1 200 OK
Date: Tue, 04 Oct 2022 09:59:04 GMT
Server: Apache
Last-Modified: Mon, 30 Sep 2019 10:44:29 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Keep-Alive: timeout=5, max=73
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: application/javascript

www.oftalmed.com.br/files/assets/img/icon-escurece-layout.png

108.179.252.178

200 OK

1.4 kB

URL HTTP/1.1
www.oftalmed.com.br/files/assets/img/icon-escurece-layout.png
IP
108.179.252.178:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
PNG image data, 26 x 26, 8-bit/color RGBA, non-interlaced\012- data
Size
1.4 kB (1352 bytes)
Hash
e4276946080b0626e763ec16252be843
a885ad2eaa6e6a9976c5c70c5af4139437275d07
72faa9f5cc38bbd1c081599731a82f252a9805486bfa182926798fce8c0151f3

HTTP Headers

GET /files/assets/img/icon-escurece-layout.png HTTP/1.1
Host: www.oftalmed.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.oftalmed.com.br/
Cookie: PHPSESSID=cfdfe4632ba0e4856e835cca033a3972

HTTP/1.1 200 OK
Date: Tue, 04 Oct 2022 09:59:05 GMT
Server: Apache
Last-Modified: Mon, 30 Sep 2019 10:44:29 GMT
Accept-Ranges: bytes
Content-Length: 1352
Keep-Alive: timeout=5, max=72
Connection: Keep-Alive
Content-Type: image/png

www.oftalmed.com.br/timthumb.php?src=/http://www.oftalmed.com.br/files/images/home/timthumb2.jpg&w=520&h=488

108.179.252.178

200 OK

34 kB

URL HTTP/1.1
www.oftalmed.com.br/timthumb.php?src=/http://www.oftalmed.com.br/files/images/home/timthumb2.jpg&w=520&h=488
IP
108.179.252.178:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 90", baseline, precision 8, 520x488, components 3\012- data
Size
34 kB (33621 bytes)
Hash
f4ea48717bbfc738a245b7529ea88da5
3fcf9e670c5b3a186ff2a75cc0d8e5592cf0d848
77de496ee1305e48d09747904392309bac20e5c4f1354d7dcb4d2312f3976ab0

HTTP Headers

GET /timthumb.php?src=/http://www.oftalmed.com.br/files/images/home/timthumb2.jpg&w=520&h=488 HTTP/1.1
Host: www.oftalmed.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.oftalmed.com.br/
Cookie: PHPSESSID=cfdfe4632ba0e4856e835cca033a3972

HTTP/1.1 200 OK
Date: Tue, 04 Oct 2022 09:59:05 GMT
Server: Apache
Accept-Ranges: none
Cache-Control: max-age=864000, must-revalidate
Expires: Fri, 14 Oct 2022 09:59:05 GMT
Last-Modified: Tue, 04 Oct 2022 09:59:05 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
Keep-Alive: timeout=5, max=71
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: image/jpeg

www.oftalmed.com.br/timthumb.php?src=/http://www.oftalmed.com.br/files/images/home/oftalmed3.jpg&w=520&h=488

108.179.252.178

200 OK

77 kB

URL HTTP/1.1
www.oftalmed.com.br/timthumb.php?src=/http://www.oftalmed.com.br/files/images/home/oftalmed3.jpg&w=520&h=488
IP
108.179.252.178:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 90", baseline, precision 8, 520x488, components 3\012- data
Size
77 kB (76979 bytes)
Hash
b270beb83e30b12cf1925791f36c1757
4c66ee783fcdafa924e58adc3e45dd73face3b22
f7d79da31b1c15b0ef5fde101d955eb7b7f0a4b9dc02ebaa0be6b0462ac0662d

HTTP Headers

GET /timthumb.php?src=/http://www.oftalmed.com.br/files/images/home/oftalmed3.jpg&w=520&h=488 HTTP/1.1
Host: www.oftalmed.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.oftalmed.com.br/
Cookie: PHPSESSID=cfdfe4632ba0e4856e835cca033a3972

HTTP/1.1 200 OK
Date: Tue, 04 Oct 2022 09:59:05 GMT
Server: Apache
Accept-Ranges: none
Cache-Control: max-age=864000, must-revalidate
Expires: Fri, 14 Oct 2022 09:59:05 GMT
Last-Modified: Tue, 04 Oct 2022 09:59:05 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
Keep-Alive: timeout=5, max=74
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: image/jpeg

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
0ac04f7c449093fff4f846a7ae56cd4f
50aeb5664545a0dec4173920a274e906bcbcdf6f
18eff2566317aba7b70ee558e8cba42231eb4eae31e903501dc122c751d6993b

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 04 Oct 2022 09:59:05 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

www.oftalmed.com.br/timthumb.php?src=/http://www.oftalmed.com.br/files/images/home/macro-blue-eye-with-lots-of-details-PGBM3SC.jpg&w=520&h=488

108.179.252.178

200 OK

65 kB

URL HTTP/1.1
www.oftalmed.com.br/timthumb.php?src=/http://www.oftalmed.com.br/files/images/home/macro-blue-eye-with-lots-of-details-PGBM3SC.jpg&w=520&h=488
IP
108.179.252.178:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 90", baseline, precision 8, 520x488, components 3\012- data
Size
65 kB (65406 bytes)
Hash
61ca1d2c0ad71347a41e8d57e22e0604
1b90f8559aa43767dd87ecfe8add11e10e96ff77
d2446ee4d52cbfbce4143ac70514bcb153122def3000254c480785b1d51bcb51

HTTP Headers

GET /timthumb.php?src=/http://www.oftalmed.com.br/files/images/home/macro-blue-eye-with-lots-of-details-PGBM3SC.jpg&w=520&h=488 HTTP/1.1
Host: www.oftalmed.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.oftalmed.com.br/
Cookie: PHPSESSID=cfdfe4632ba0e4856e835cca033a3972

HTTP/1.1 200 OK
Date: Tue, 04 Oct 2022 09:59:05 GMT
Server: Apache
Accept-Ranges: none
Cache-Control: max-age=864000, must-revalidate
Expires: Fri, 14 Oct 2022 09:59:05 GMT
Last-Modified: Tue, 04 Oct 2022 09:59:05 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
Keep-Alive: timeout=5, max=73
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: image/jpeg

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
0ac04f7c449093fff4f846a7ae56cd4f
50aeb5664545a0dec4173920a274e906bcbcdf6f
18eff2566317aba7b70ee558e8cba42231eb4eae31e903501dc122c751d6993b

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 04 Oct 2022 09:59:05 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

www.oftalmed.com.br/timthumb.php?src=/http://www.oftalmed.com.br/files/images/home/businesswoman-rubbing-tired-eyes-at-office-P7C5XSY.jpg&w=520&h=488

108.179.252.178

200 OK

40 kB

URL HTTP/1.1
www.oftalmed.com.br/timthumb.php?src=/http://www.oftalmed.com.br/files/images/home/businesswoman-rubbing-tired-eyes-at-office-P7C5XSY.jpg&w=520&h=488
IP
108.179.252.178:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 90", baseline, precision 8, 520x488, components 3\012- data
Size
40 kB (40523 bytes)
Hash
0c1a983f66f12ce173bdb91181acd2cf
1120074bc77cb7d3d3e7207cb8ad8199e8edcae0
f9c228e68275a2d5e2d4cca646fd29ac56a65a1b09badb5154b471a05f7a1c44

HTTP Headers

GET /timthumb.php?src=/http://www.oftalmed.com.br/files/images/home/businesswoman-rubbing-tired-eyes-at-office-P7C5XSY.jpg&w=520&h=488 HTTP/1.1
Host: www.oftalmed.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.oftalmed.com.br/
Cookie: PHPSESSID=cfdfe4632ba0e4856e835cca033a3972

HTTP/1.1 200 OK
Date: Tue, 04 Oct 2022 09:59:05 GMT
Server: Apache
Accept-Ranges: none
Cache-Control: max-age=864000, must-revalidate
Expires: Fri, 14 Oct 2022 09:59:05 GMT
Last-Modified: Tue, 04 Oct 2022 09:59:05 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
Keep-Alive: timeout=5, max=72
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: image/jpeg

www.oftalmed.com.br/timthumb.php?src=/http://www.oftalmed.com.br/files/images/home/IMG_7723.JPG&w=520&h=488

108.179.252.178

200 OK

66 kB

URL HTTP/1.1
www.oftalmed.com.br/timthumb.php?src=/http://www.oftalmed.com.br/files/images/home/IMG_7723.JPG&w=520&h=488
IP
108.179.252.178:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 90", baseline, precision 8, 520x488, components 3\012- data
Size
66 kB (66134 bytes)
Hash
f9f67555564f5c9fa6c6f23df31e10a3
0360d83d1ff7db67cba953c20c49487ef8c868af
8fb3d1b08d8fc92e403fa13ce14f10949302226e29e4e67c14b9ce654d267285

HTTP Headers

GET /timthumb.php?src=/http://www.oftalmed.com.br/files/images/home/IMG_7723.JPG&w=520&h=488 HTTP/1.1
Host: www.oftalmed.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.oftalmed.com.br/
Cookie: PHPSESSID=cfdfe4632ba0e4856e835cca033a3972

HTTP/1.1 200 OK
Date: Tue, 04 Oct 2022 09:59:05 GMT
Server: Apache
Accept-Ranges: none
Cache-Control: max-age=864000, must-revalidate
Expires: Fri, 14 Oct 2022 09:59:05 GMT
Last-Modified: Tue, 04 Oct 2022 09:59:05 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
Keep-Alive: timeout=5, max=73
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: image/jpeg

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
0ac04f7c449093fff4f846a7ae56cd4f
50aeb5664545a0dec4173920a274e906bcbcdf6f
18eff2566317aba7b70ee558e8cba42231eb4eae31e903501dc122c751d6993b

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 04 Oct 2022 09:59:05 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2

216.58.207.195

200 OK

16 kB

URL HTTP/2
fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2
IP
216.58.207.195:0
ASN
#15169 GOOGLE

File type
Web Open Font Format (Version 2), TrueType, length 15744, version 1.0\012- data
Size
16 kB (15744 bytes)
Hash
15d9f621c3bd1599f0169dcf0bd5e63e
7ca9c5967f3bb8bffeab24b639b49c1e7d03fa52
f6734f8177112c0839b961f96d813fcb189d81b60e96c33278c1983b6f419615

HTTP Headers

GET /s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://www.oftalmed.com.br
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15744
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 28 Sep 2022 19:34:08 GMT
expires: Thu, 28 Sep 2023 19:34:08 GMT
cache-control: public, max-age=31536000
age: 483897
last-modified: Wed, 11 May 2022 19:24:48 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmSU5fBBc4.woff2

216.58.207.195

200 OK

16 kB

URL HTTP/2
fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmSU5fBBc4.woff2
IP
216.58.207.195:0
ASN
#15169 GOOGLE

File type
Web Open Font Format (Version 2), TrueType, length 15740, version 1.0\012- data
Size
16 kB (15740 bytes)
Hash
b9c29351c46f3e8c8631c4002457f48a
e57e59c5780995ff2937ab2b511a769212974a87
f75911313e1c7802c23345ab57e754d87801581706780c993fb23ff4e0fe62ef

HTTP Headers

GET /s/roboto/v30/KFOlCnqEu92Fr1MmSU5fBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://www.oftalmed.com.br
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15740
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 28 Sep 2022 19:34:21 GMT
expires: Thu, 28 Sep 2023 19:34:21 GMT
cache-control: public, max-age=31536000
age: 483884
last-modified: Wed, 11 May 2022 19:24:56 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmEU9fBBc4.woff2

216.58.207.195

200 OK

16 kB

URL HTTP/2
fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmEU9fBBc4.woff2
IP
216.58.207.195:0
ASN
#15169 GOOGLE

File type
Web Open Font Format (Version 2), TrueType, length 15920, version 1.0\012- data
Size
16 kB (15920 bytes)
Hash
3a44e06eb954b96aa043227f3534189d
23cef6993ddb2b2979e8e7647fc3763694e2ba7d
b019538234514166ec7665359d097403358f8a4c991901983922fb4d56989f1e

HTTP Headers

GET /s/roboto/v30/KFOlCnqEu92Fr1MmEU9fBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://www.oftalmed.com.br
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15920
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sun, 02 Oct 2022 01:31:40 GMT
expires: Mon, 02 Oct 2023 01:31:40 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 11 May 2022 19:24:45 GMT
content-type: font/woff2
age: 203245
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
0ac04f7c449093fff4f846a7ae56cd4f
50aeb5664545a0dec4173920a274e906bcbcdf6f
18eff2566317aba7b70ee558e8cba42231eb4eae31e903501dc122c751d6993b

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 04 Oct 2022 09:59:05 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

www.oftalmed.com.br/files/assets/img/img-agende.png

108.179.252.178

200 OK

49 kB

URL HTTP/1.1
www.oftalmed.com.br/files/assets/img/img-agende.png
IP
108.179.252.178:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
PNG image data, 326 x 203, 8-bit/color RGB, non-interlaced\012- data
Size
49 kB (49111 bytes)
Hash
82d3b852beb43b4310402da3e626ef6f
a81e0bc7445c872fd2c94a566e8566b51304678e
018822d30258ec503ff2f6a2744623ae47000e2d3341f1969342247678d3a247

HTTP Headers

GET /files/assets/img/img-agende.png HTTP/1.1
Host: www.oftalmed.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.oftalmed.com.br/files/assets/css/geral.css
Cookie: PHPSESSID=cfdfe4632ba0e4856e835cca033a3972

HTTP/1.1 200 OK
Date: Tue, 04 Oct 2022 09:59:05 GMT
Server: Apache
Last-Modified: Mon, 30 Sep 2019 10:44:29 GMT
Accept-Ranges: bytes
Content-Length: 49111
Keep-Alive: timeout=5, max=70
Connection: Keep-Alive
Content-Type: image/png

www.oftalmed.com.br/files/assets/img/img-conheca-medico.png

108.179.252.178

200 OK

50 kB

URL HTTP/1.1
www.oftalmed.com.br/files/assets/img/img-conheca-medico.png
IP
108.179.252.178:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
PNG image data, 326 x 203, 8-bit/color RGB, non-interlaced\012- data
Size
50 kB (49984 bytes)
Hash
605414e140e6336e0f6b05a14676c2ed
eb9b8d995fdad8e785223dcb5b95803d662a920f
19cd9a32d53d7d3d97d745292c0a32ba7e838e45089a2a14d539c8c9a342da32

HTTP Headers

GET /files/assets/img/img-conheca-medico.png HTTP/1.1
Host: www.oftalmed.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.oftalmed.com.br/files/assets/css/geral.css
Cookie: PHPSESSID=cfdfe4632ba0e4856e835cca033a3972

HTTP/1.1 200 OK
Date: Tue, 04 Oct 2022 09:59:05 GMT
Server: Apache
Last-Modified: Mon, 30 Sep 2019 10:44:29 GMT
Accept-Ranges: bytes
Content-Length: 49984
Keep-Alive: timeout=5, max=73
Connection: Keep-Alive
Content-Type: image/png

www.oftalmed.com.br/files/assets/img/onda-localizacao.png

108.179.252.178

200 OK

8.6 kB

URL HTTP/1.1
www.oftalmed.com.br/files/assets/img/onda-localizacao.png
IP
108.179.252.178:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
PNG image data, 297 x 220, 8-bit/color RGBA, non-interlaced\012- data
Size
8.6 kB (8557 bytes)
Hash
f4a5b45b514497144f64c2e6f86ea94b
dc9450f5e1602a9f52acac67a7b561664ed69bdd
3e270663430c32355b27e7bfc01d0a371372e77d98f130e0fa74be0fa49aa6f2

HTTP Headers

GET /files/assets/img/onda-localizacao.png HTTP/1.1
Host: www.oftalmed.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.oftalmed.com.br/files/assets/css/geral.css
Cookie: PHPSESSID=cfdfe4632ba0e4856e835cca033a3972

HTTP/1.1 200 OK
Date: Tue, 04 Oct 2022 09:59:05 GMT
Server: Apache
Last-Modified: Mon, 30 Sep 2019 10:44:29 GMT
Accept-Ranges: bytes
Content-Length: 8557
Keep-Alive: timeout=5, max=71
Connection: Keep-Alive
Content-Type: image/png

www.oftalmed.com.br/video.jpg

108.179.252.178

302 Moved Temporarily

0 B

URL HTTP/1.1
www.oftalmed.com.br/video.jpg
IP
108.179.252.178:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /video.jpg HTTP/1.1
Host: www.oftalmed.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.oftalmed.com.br/
Cookie: PHPSESSID=cfdfe4632ba0e4856e835cca033a3972

HTTP/1.1 302 Moved Temporarily
Date: Tue, 04 Oct 2022 09:59:05 GMT
Server: Apache
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate
Pragma: no-cache
Location: http://www.oftalmed.com.br/erro/page_404
Content-Length: 0
Keep-Alive: timeout=5, max=72
Connection: Keep-Alive
Content-Type: text/html; charset=UTF-8

www.oftalmed.com.br/files/assets/fonts/fontawesome-webfont.woff2?v=4.7.0

108.179.252.178

200 OK

77 kB

URL HTTP/1.1
www.oftalmed.com.br/files/assets/fonts/fontawesome-webfont.woff2?v=4.7.0
IP
108.179.252.178:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
Web Open Font Format (Version 2), TrueType, length 77160, version 4.459\012- data
Size
77 kB (77160 bytes)
Hash
af7ae505a9eed503f8b8e6982036873e
d6f48cba7d076fb6f2fd6ba993a75b9dc1ecbf0c
2adefcbc041e7d18fcf2d417879dc5a09997aa64d675b7a3c4b6ce33da13f3fe

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /files/assets/fonts/fontawesome-webfont.woff2?v=4.7.0 HTTP/1.1
Host: www.oftalmed.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: http://www.oftalmed.com.br/files/assets/css/geral.css
Cookie: PHPSESSID=cfdfe4632ba0e4856e835cca033a3972

HTTP/1.1 200 OK
Date: Tue, 04 Oct 2022 09:59:05 GMT
Server: Apache
Last-Modified: Mon, 30 Sep 2019 10:44:29 GMT
Accept-Ranges: bytes
Content-Length: 77160
Keep-Alive: timeout=5, max=71
Connection: Keep-Alive
Content-Type: font/woff2

www.oftalmed.com.br/files/assets/img/img-convenios-atendidos.png

108.179.252.178

200 OK

71 kB

URL HTTP/1.1
www.oftalmed.com.br/files/assets/img/img-convenios-atendidos.png
IP
108.179.252.178:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
PNG image data, 326 x 203, 8-bit/color RGB, non-interlaced\012- data
Size
71 kB (71414 bytes)
Hash
6650d09310265770cf343a95b8e649ed
1698a04041ee1186a76c9e667a47b7691c7a8d3b
b00a7659e035193b8250f456f36d26561eeb9d839ea09899347b831f94c4237b

HTTP Headers

GET /files/assets/img/img-convenios-atendidos.png HTTP/1.1
Host: www.oftalmed.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.oftalmed.com.br/files/assets/css/geral.css
Cookie: PHPSESSID=cfdfe4632ba0e4856e835cca033a3972

HTTP/1.1 200 OK
Date: Tue, 04 Oct 2022 09:59:05 GMT
Server: Apache
Last-Modified: Mon, 30 Sep 2019 10:44:29 GMT
Accept-Ranges: bytes
Content-Length: 71414
Keep-Alive: timeout=5, max=72
Connection: Keep-Alive
Content-Type: image/png

www.oftalmed.com.br/files/assets/img/logo-oftalmed.jpg

108.179.252.178

200 OK

23 kB

URL HTTP/1.1
www.oftalmed.com.br/files/assets/img/logo-oftalmed.jpg
IP
108.179.252.178:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=12, height=53, bps=158, PhotometricIntepretation=RGB, orientation=upper-left, width=210], progressive, precision 8, 210x53, components 3\012- data
Size
23 kB (23206 bytes)
Hash
4dc92ad6a68cdd6fe1e8bd9bce7c3a1b
15d2b6d54b11ebbf5cec91ce92582da340da96c9
ad214ef6357628f9d03eea65185712a48f6130bd70fb3c12395b6701e4134f36

HTTP Headers

GET /files/assets/img/logo-oftalmed.jpg HTTP/1.1
Host: www.oftalmed.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.oftalmed.com.br/
Cookie: PHPSESSID=cfdfe4632ba0e4856e835cca033a3972

HTTP/1.1 200 OK
Date: Tue, 04 Oct 2022 09:59:05 GMT
Server: Apache
Last-Modified: Mon, 30 Sep 2019 10:44:29 GMT
Accept-Ranges: bytes
Content-Length: 23206
Keep-Alive: timeout=5, max=70
Connection: Keep-Alive
Content-Type: image/jpeg

www.oftalmed.com.br/files/assets/img/img-servicos.jpg

108.179.252.178

200 OK

12 kB

URL HTTP/1.1
www.oftalmed.com.br/files/assets/img/img-servicos.jpg
IP
108.179.252.178:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 204x180, components 3\012- data
Size
12 kB (11470 bytes)
Hash
fc9653f7776c54b47190c6111ecda1e5
aba09f5dbbf91dc7216eb51631c9dff833c6817e
b13d909663f0f4222fe65a412f260ea49f58a838ac76fda2f3c163a0d58d4f7e

HTTP Headers

GET /files/assets/img/img-servicos.jpg HTTP/1.1
Host: www.oftalmed.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.oftalmed.com.br/
Cookie: PHPSESSID=cfdfe4632ba0e4856e835cca033a3972

HTTP/1.1 200 OK
Date: Tue, 04 Oct 2022 09:59:05 GMT
Server: Apache
Last-Modified: Mon, 30 Sep 2019 10:44:29 GMT
Accept-Ranges: bytes
Content-Length: 11470
Keep-Alive: timeout=5, max=71
Connection: Keep-Alive
Content-Type: image/jpeg

www.oftalmed.com.br/timthumb.php?src=/http://www.oftalmed.com.br/files/images/especiais/infografico_setembro_2018_menor.png&w=204&h=180

108.179.252.178

200 OK

60 kB

URL HTTP/1.1
www.oftalmed.com.br/timthumb.php?src=/http://www.oftalmed.com.br/files/images/especiais/infografico_setembro_2018_menor.png&w=204&h=180
IP
108.179.252.178:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
PNG image data, 204 x 180, 8-bit/color RGBA, non-interlaced\012- data
Size
60 kB (59555 bytes)
Hash
7561274cf6902e59946ab142e0886080
bd15d74e6976e61499f9da6f30ffb7926f16eca9
6b9bb5e1f2b996bb26f64b4583d1108b544f95f45f969a3dc90a23b0e7c855b4

HTTP Headers

GET /timthumb.php?src=/http://www.oftalmed.com.br/files/images/especiais/infografico_setembro_2018_menor.png&w=204&h=180 HTTP/1.1
Host: www.oftalmed.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.oftalmed.com.br/
Cookie: PHPSESSID=cfdfe4632ba0e4856e835cca033a3972

HTTP/1.1 200 OK
Date: Tue, 04 Oct 2022 09:59:05 GMT
Server: Apache
Accept-Ranges: none
Cache-Control: max-age=864000, must-revalidate
Expires: Fri, 14 Oct 2022 09:59:05 GMT
Last-Modified: Tue, 04 Oct 2022 09:59:05 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
Keep-Alive: timeout=5, max=70
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: image/png

www.oftalmed.com.br/timthumb.php?src=/http://www.oftalmed.com.br/files/images/quem-somos/Consultorio_1andar_FotoKZ_9.jpg&w=518&h=454

108.179.252.178

200 OK

38 kB

URL HTTP/1.1
www.oftalmed.com.br/timthumb.php?src=/http://www.oftalmed.com.br/files/images/quem-somos/Consultorio_1andar_FotoKZ_9.jpg&w=518&h=454
IP
108.179.252.178:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 90", baseline, precision 8, 518x454, components 3\012- data
Size
38 kB (37729 bytes)
Hash
7c7a77e6b28d3e572fc2acbfd9e459d5
51c7836bd58613da5af2a6de6ffafc3f8293ca96
69a79b1ccb14328f74e5d22d314dd6e0eaf4059f08e762e9265287e2a0424ebe

HTTP Headers

GET /timthumb.php?src=/http://www.oftalmed.com.br/files/images/quem-somos/Consultorio_1andar_FotoKZ_9.jpg&w=518&h=454 HTTP/1.1
Host: www.oftalmed.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.oftalmed.com.br/
Cookie: PHPSESSID=cfdfe4632ba0e4856e835cca033a3972

HTTP/1.1 200 OK
Date: Tue, 04 Oct 2022 09:59:05 GMT
Server: Apache
Accept-Ranges: none
Cache-Control: max-age=864000, must-revalidate
Expires: Fri, 14 Oct 2022 09:59:05 GMT
Last-Modified: Tue, 04 Oct 2022 09:59:05 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
Keep-Alive: timeout=5, max=71
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: image/jpeg

www.oftalmed.com.br/erro/page_404

108.179.252.178

200 OK

951 B

URL HTTP/1.1
www.oftalmed.com.br/erro/page_404
IP
108.179.252.178:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with CRLF line terminators
Size
951 B (951 bytes)
Hash
896917c709cfe52729410323a5c0cf25
9978685c0cc02543c0c19abc4504b00fddc9172d
9fe53ecdf56a91d70c8b084948ee529f57a8e87e336d76fc7f8801fbe2cdd7c2

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /erro/page_404 HTTP/1.1
Host: www.oftalmed.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://www.oftalmed.com.br/
Connection: keep-alive
Cookie: PHPSESSID=cfdfe4632ba0e4856e835cca033a3972

HTTP/1.1 200 OK
Date: Tue, 04 Oct 2022 09:59:05 GMT
Server: Apache
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate
Pragma: no-cache
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 951
Keep-Alive: timeout=5, max=69
Connection: Keep-Alive
Content-Type: text/html; charset=UTF-8

www.oftalmed.com.br/timthumb.php?src=/http://www.oftalmed.com.br/files/images/quem-somos/Recepcao_1andar_FotoKZ_3.jpg&w=518&h=454

108.179.252.178

200 OK

59 kB

URL HTTP/1.1
www.oftalmed.com.br/timthumb.php?src=/http://www.oftalmed.com.br/files/images/quem-somos/Recepcao_1andar_FotoKZ_3.jpg&w=518&h=454
IP
108.179.252.178:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 90", baseline, precision 8, 518x454, components 3\012- data
Size
59 kB (58590 bytes)
Hash
6947b4ab32010182ee896e86646352a5
4d81afeb27642838a5a9ee822e4ca97aac6fc2ba
1c7edf5faeaa17bd1b9eae93e52633cd4b03a6d61e86031076f94ab9e4ebc6d5

HTTP Headers

GET /timthumb.php?src=/http://www.oftalmed.com.br/files/images/quem-somos/Recepcao_1andar_FotoKZ_3.jpg&w=518&h=454 HTTP/1.1
Host: www.oftalmed.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.oftalmed.com.br/
Cookie: PHPSESSID=cfdfe4632ba0e4856e835cca033a3972

HTTP/1.1 200 OK
Date: Tue, 04 Oct 2022 09:59:05 GMT
Server: Apache
Accept-Ranges: none
Cache-Control: max-age=864000, must-revalidate
Expires: Fri, 14 Oct 2022 09:59:05 GMT
Last-Modified: Tue, 04 Oct 2022 09:59:05 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
Keep-Alive: timeout=5, max=70
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: image/jpeg

www.oftalmed.com.br/timthumb.php?src=/http://www.oftalmed.com.br/files/images/quem-somos/Consultorio_1andar_FotoKZ_11.jpg&w=518&h=454

108.179.252.178

200 OK

37 kB

URL HTTP/1.1
www.oftalmed.com.br/timthumb.php?src=/http://www.oftalmed.com.br/files/images/quem-somos/Consultorio_1andar_FotoKZ_11.jpg&w=518&h=454
IP
108.179.252.178:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 90", baseline, precision 8, 518x454, components 3\012- data
Size
37 kB (36819 bytes)
Hash
35b8643a2cee4e96ed7a1443207f6fda
8b3d776fd17e147898fe82c253b695dcfca41106
9a1c74bf026dfee5f40b33490ed96d37045c8db4fb446803f5a84c7eac316876

HTTP Headers

GET /timthumb.php?src=/http://www.oftalmed.com.br/files/images/quem-somos/Consultorio_1andar_FotoKZ_11.jpg&w=518&h=454 HTTP/1.1
Host: www.oftalmed.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.oftalmed.com.br/
Cookie: PHPSESSID=cfdfe4632ba0e4856e835cca033a3972

HTTP/1.1 200 OK
Date: Tue, 04 Oct 2022 09:59:05 GMT
Server: Apache
Accept-Ranges: none
Cache-Control: max-age=864000, must-revalidate
Expires: Fri, 14 Oct 2022 09:59:05 GMT
Last-Modified: Tue, 04 Oct 2022 09:59:05 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
Keep-Alive: timeout=5, max=69
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: image/jpeg

www.oftalmed.com.br/timthumb.php?src=/http://www.oftalmed.com.br/files/images/quem-somos/SalaIOLmaster_CDO_FotoKZ_3.jpg&w=518&h=454

108.179.252.178

200 OK

53 kB

URL HTTP/1.1
www.oftalmed.com.br/timthumb.php?src=/http://www.oftalmed.com.br/files/images/quem-somos/SalaIOLmaster_CDO_FotoKZ_3.jpg&w=518&h=454
IP
108.179.252.178:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 90", baseline, precision 8, 518x454, components 3\012- data
Size
53 kB (53224 bytes)
Hash
f732a1bd6486e227b4ceb70c4a6d0541
6cd4244c25cc751febc3d0c885075bae82288a03
0e66cf7cb816d2da7fbd0ec89baa6387e45020bfe62e737920f070567465f951

HTTP Headers

GET /timthumb.php?src=/http://www.oftalmed.com.br/files/images/quem-somos/SalaIOLmaster_CDO_FotoKZ_3.jpg&w=518&h=454 HTTP/1.1
Host: www.oftalmed.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.oftalmed.com.br/
Cookie: PHPSESSID=cfdfe4632ba0e4856e835cca033a3972

HTTP/1.1 200 OK
Date: Tue, 04 Oct 2022 09:59:05 GMT
Server: Apache
Accept-Ranges: none
Cache-Control: max-age=864000, must-revalidate
Expires: Fri, 14 Oct 2022 09:59:05 GMT
Last-Modified: Tue, 04 Oct 2022 09:59:05 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
Keep-Alive: timeout=5, max=70
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: image/jpeg

www.oftalmed.com.br/timthumb.php?src=/http://www.oftalmed.com.br/files/images/quem-somos/SalaIOLmaster_CDO_FotoKZ_5.jpg&w=518&h=454

108.179.252.178

200 OK

50 kB

URL HTTP/1.1
www.oftalmed.com.br/timthumb.php?src=/http://www.oftalmed.com.br/files/images/quem-somos/SalaIOLmaster_CDO_FotoKZ_5.jpg&w=518&h=454
IP
108.179.252.178:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 90", baseline, precision 8, 518x454, components 3\012- data
Size
50 kB (49460 bytes)
Hash
81019e53a73028eaf232ed738888cc38
18ef677340c7e0c518aa0efd51d1bdbb80b9b17d
0c0753fe81842963a11015609007efbe18f28180fc8b20aa1f3cca06033eb406

HTTP Headers

GET /timthumb.php?src=/http://www.oftalmed.com.br/files/images/quem-somos/SalaIOLmaster_CDO_FotoKZ_5.jpg&w=518&h=454 HTTP/1.1
Host: www.oftalmed.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.oftalmed.com.br/
Cookie: PHPSESSID=cfdfe4632ba0e4856e835cca033a3972

HTTP/1.1 200 OK
Date: Tue, 04 Oct 2022 09:59:05 GMT
Server: Apache
Accept-Ranges: none
Cache-Control: max-age=864000, must-revalidate
Expires: Fri, 14 Oct 2022 09:59:05 GMT
Last-Modified: Tue, 04 Oct 2022 09:59:05 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
Keep-Alive: timeout=5, max=68
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: image/jpeg

www.oftalmed.com.br/timthumb.php?src=/http://www.oftalmed.com.br/files/images/quem-somos/Fachada_CDO_FotoKZ_2.jpg&w=518&h=454

108.179.252.178

200 OK

43 kB

URL HTTP/1.1
www.oftalmed.com.br/timthumb.php?src=/http://www.oftalmed.com.br/files/images/quem-somos/Fachada_CDO_FotoKZ_2.jpg&w=518&h=454
IP
108.179.252.178:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 90", baseline, precision 8, 518x454, components 3\012- data
Size
43 kB (42558 bytes)
Hash
88c77c7dd640e1276c4908dbe07ae372
10e8b306dc117447e7845f619c51bd4282737c20
b52ea2861addbdd553e58c124fd045b7bd2754545502ac38b4743896295ee659

HTTP Headers

GET /timthumb.php?src=/http://www.oftalmed.com.br/files/images/quem-somos/Fachada_CDO_FotoKZ_2.jpg&w=518&h=454 HTTP/1.1
Host: www.oftalmed.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.oftalmed.com.br/
Cookie: PHPSESSID=cfdfe4632ba0e4856e835cca033a3972

HTTP/1.1 200 OK
Date: Tue, 04 Oct 2022 09:59:05 GMT
Server: Apache
Accept-Ranges: none
Cache-Control: max-age=864000, must-revalidate
Expires: Fri, 14 Oct 2022 09:59:05 GMT
Last-Modified: Tue, 04 Oct 2022 09:59:05 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
Keep-Alive: timeout=5, max=69
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: image/jpeg

www.oftalmed.com.br/timthumb.php?src=/http://www.oftalmed.com.br/files/images/quem-somos/Consult%C3%B3rios_Taguatinga_FotoKZ_8.jpg&w=518&h=454

108.179.252.178

400 Bad Request

258 B

URL HTTP/1.1
www.oftalmed.com.br/timthumb.php?src=/http://www.oftalmed.com.br/files/images/quem-somos/Consult%C3%B3rios_Taguatinga_FotoKZ_8.jpg&w=518&h=454
IP
108.179.252.178:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
ASCII text, with very long lines (321), with no line terminators
Size
258 B (258 bytes)
Hash
c028a8e4b905537523ead15f6ab87566
ad98607e6a4185e4928ee11e9037a34207f85c4a
1ec5dba905bcdb87d869eab34f8bf6bb64ea6a75c45d0809dcdd0402f2bdf510

HTTP Headers

GET /timthumb.php?src=/http://www.oftalmed.com.br/files/images/quem-somos/Consult%C3%B3rios_Taguatinga_FotoKZ_8.jpg&w=518&h=454 HTTP/1.1
Host: www.oftalmed.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.oftalmed.com.br/
Cookie: PHPSESSID=cfdfe4632ba0e4856e835cca033a3972

HTTP/1.1 400 Bad Request
Date: Tue, 04 Oct 2022 09:59:05 GMT
Server: Apache
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 258
Connection: close
Content-Type: text/html; charset=UTF-8

www.oftalmed.com.br/timthumb.php?src=/http://www.oftalmed.com.br/files/images/quem-somos/Consult%C3%B3rios_Taguatinga_FotoKZ_3.jpg&w=518&h=454

108.179.252.178

400 Bad Request

258 B

URL HTTP/1.1
www.oftalmed.com.br/timthumb.php?src=/http://www.oftalmed.com.br/files/images/quem-somos/Consult%C3%B3rios_Taguatinga_FotoKZ_3.jpg&w=518&h=454
IP
108.179.252.178:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
ASCII text, with very long lines (321), with no line terminators
Size
258 B (258 bytes)
Hash
95642aa29843c64960e6d30d4b256e7b
7297c0ba3a5bac14347a49b6d961479339ae992e
0b246dfb69b9294959268cb7af4bc433c0e02749c10b8cbd2a39422892c24e85

HTTP Headers

GET /timthumb.php?src=/http://www.oftalmed.com.br/files/images/quem-somos/Consult%C3%B3rios_Taguatinga_FotoKZ_3.jpg&w=518&h=454 HTTP/1.1
Host: www.oftalmed.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.oftalmed.com.br/
Cookie: PHPSESSID=cfdfe4632ba0e4856e835cca033a3972

HTTP/1.1 400 Bad Request
Date: Tue, 04 Oct 2022 09:59:05 GMT
Server: Apache
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 258
Connection: close
Content-Type: text/html; charset=UTF-8

www.oftalmed.com.br/timthumb.php?src=/http://www.oftalmed.com.br/files/images/quem-somos/PreExame_Taguatinga_FotoKZ_1.jpg&w=518&h=454

108.179.252.178

200 OK

57 kB

URL HTTP/1.1
www.oftalmed.com.br/timthumb.php?src=/http://www.oftalmed.com.br/files/images/quem-somos/PreExame_Taguatinga_FotoKZ_1.jpg&w=518&h=454
IP
108.179.252.178:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 90", baseline, precision 8, 518x454, components 3\012- data
Size
57 kB (56856 bytes)
Hash
6b3e5f44aec7fb198617a5afe6e6eed0
f735d7f0610cb284bceff1b65d97ab21e5b59996
94efb8ceb83414823c17c6eda771ded3723f5b6522e2221a4ef21c79658da12f

HTTP Headers

GET /timthumb.php?src=/http://www.oftalmed.com.br/files/images/quem-somos/PreExame_Taguatinga_FotoKZ_1.jpg&w=518&h=454 HTTP/1.1
Host: www.oftalmed.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.oftalmed.com.br/
Cookie: PHPSESSID=cfdfe4632ba0e4856e835cca033a3972

HTTP/1.1 200 OK
Date: Tue, 04 Oct 2022 09:59:05 GMT
Server: Apache
Accept-Ranges: none
Cache-Control: max-age=864000, must-revalidate
Expires: Fri, 14 Oct 2022 09:59:05 GMT
Last-Modified: Tue, 04 Oct 2022 09:59:05 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
Keep-Alive: timeout=5, max=67
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: image/jpeg

www.oftalmed.com.br/timthumb.php?src=/http://www.oftalmed.com.br/files/images/quem-somos/Recepcao_Taguatinga_FotoKZ_4.jpg&w=518&h=454

108.179.252.178

200 OK

64 kB

URL HTTP/1.1
www.oftalmed.com.br/timthumb.php?src=/http://www.oftalmed.com.br/files/images/quem-somos/Recepcao_Taguatinga_FotoKZ_4.jpg&w=518&h=454
IP
108.179.252.178:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 90", baseline, precision 8, 518x454, components 3\012- data
Size
64 kB (64182 bytes)
Hash
f4bc4fb04152868bd96c44e657123c95
67c2c4165b77279ca8f57d7989eb334bc1e409db
947f661e71f7c13daeeebd69b36545f44945e1e9bdce191dbd481941fbd2dfe3

HTTP Headers

GET /timthumb.php?src=/http://www.oftalmed.com.br/files/images/quem-somos/Recepcao_Taguatinga_FotoKZ_4.jpg&w=518&h=454 HTTP/1.1
Host: www.oftalmed.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.oftalmed.com.br/
Cookie: PHPSESSID=cfdfe4632ba0e4856e835cca033a3972

HTTP/1.1 200 OK
Date: Tue, 04 Oct 2022 09:59:05 GMT
Server: Apache
Accept-Ranges: none
Cache-Control: max-age=864000, must-revalidate
Expires: Fri, 14 Oct 2022 09:59:05 GMT
Last-Modified: Tue, 04 Oct 2022 09:59:05 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
Keep-Alive: timeout=5, max=68
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: image/jpeg

www.oftalmed.com.br/timthumb.php?src=/http://www.oftalmed.com.br/files/images/quem-somos/Consultorio_1andar_FotoKZ_3.jpg&w=518&h=454

108.179.252.178

200 OK

62 kB

URL HTTP/1.1
www.oftalmed.com.br/timthumb.php?src=/http://www.oftalmed.com.br/files/images/quem-somos/Consultorio_1andar_FotoKZ_3.jpg&w=518&h=454
IP
108.179.252.178:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 90", baseline, precision 8, 518x454, components 3\012- data
Size
62 kB (62301 bytes)
Hash
60ba200ccb336ddb14071d310df2289b
aaacb962375b0ace047f8cab50d37506c9b24b82
810eed25486792d646dd47d6adea41a938b0e50d969a9fe052265096e11feb32

HTTP Headers

GET /timthumb.php?src=/http://www.oftalmed.com.br/files/images/quem-somos/Consultorio_1andar_FotoKZ_3.jpg&w=518&h=454 HTTP/1.1
Host: www.oftalmed.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.oftalmed.com.br/
Cookie: PHPSESSID=cfdfe4632ba0e4856e835cca033a3972

HTTP/1.1 200 OK
Date: Tue, 04 Oct 2022 09:59:05 GMT
Server: Apache
Accept-Ranges: none
Cache-Control: max-age=864000, must-revalidate
Expires: Fri, 14 Oct 2022 09:59:05 GMT
Upgrade: h2,h2c
Connection: Upgrade, Keep-Alive
Last-Modified: Tue, 04 Oct 2022 09:59:05 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
Keep-Alive: timeout=5, max=75
Transfer-Encoding: chunked
Content-Type: image/jpeg

www.oftalmed.com.br/timthumb.php?src=/http://www.oftalmed.com.br/files/images/quem-somos/CentroCirurgico_FotoKarinaZambrana_37.jpg&w=518&h=454

108.179.252.178

200 OK

37 kB

URL HTTP/1.1
www.oftalmed.com.br/timthumb.php?src=/http://www.oftalmed.com.br/files/images/quem-somos/CentroCirurgico_FotoKarinaZambrana_37.jpg&w=518&h=454
IP
108.179.252.178:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 90", baseline, precision 8, 518x454, components 3\012- data
Size
37 kB (36829 bytes)
Hash
3b0f01520beacd2b114ecfdd8860b990
a280973d57f09431f1a2035231fe5e67ffec59f0
cb448288b5485d5b4e31edce030bc3cb84529dde3b4a5367eaa0eddb7c2689f1

HTTP Headers

GET /timthumb.php?src=/http://www.oftalmed.com.br/files/images/quem-somos/CentroCirurgico_FotoKarinaZambrana_37.jpg&w=518&h=454 HTTP/1.1
Host: www.oftalmed.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.oftalmed.com.br/
Cookie: PHPSESSID=cfdfe4632ba0e4856e835cca033a3972

HTTP/1.1 200 OK
Date: Tue, 04 Oct 2022 09:59:06 GMT
Server: Apache
Accept-Ranges: none
Cache-Control: max-age=864000, must-revalidate
Expires: Fri, 14 Oct 2022 09:59:06 GMT
Last-Modified: Tue, 04 Oct 2022 09:59:06 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
Keep-Alive: timeout=5, max=66
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: image/jpeg

www.oftalmed.com.br/timthumb.php?src=/http://www.oftalmed.com.br/files/images/quem-somos/CentroCirurgico_FotoKarinaZambrana_31.jpg&w=518&h=454

108.179.252.178

200 OK

56 kB

URL HTTP/1.1
www.oftalmed.com.br/timthumb.php?src=/http://www.oftalmed.com.br/files/images/quem-somos/CentroCirurgico_FotoKarinaZambrana_31.jpg&w=518&h=454
IP
108.179.252.178:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 90", baseline, precision 8, 518x454, components 3\012- data
Size
56 kB (55912 bytes)
Hash
4b82120f7730ecb0c4646aa1d5c0d369
4d054f5e23ac0bef0d01fb4ae4d697d001386ac9
3132c2404b4db38404d99b7a252e1c0d634ebb6cf4a908e9a636260cc09b60c3

HTTP Headers

GET /timthumb.php?src=/http://www.oftalmed.com.br/files/images/quem-somos/CentroCirurgico_FotoKarinaZambrana_31.jpg&w=518&h=454 HTTP/1.1
Host: www.oftalmed.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.oftalmed.com.br/
Cookie: PHPSESSID=cfdfe4632ba0e4856e835cca033a3972

HTTP/1.1 200 OK
Date: Tue, 04 Oct 2022 09:59:06 GMT
Server: Apache
Accept-Ranges: none
Cache-Control: max-age=864000, must-revalidate
Expires: Fri, 14 Oct 2022 09:59:06 GMT
Last-Modified: Tue, 04 Oct 2022 09:59:06 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
Keep-Alive: timeout=5, max=67
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: image/jpeg

www.oftalmed.com.br/timthumb.php?src=/http://www.oftalmed.com.br/files/images/quem-somos/Sala4_CDO_FotoKZ_1.jpg&w=518&h=454

108.179.252.178

200 OK

51 kB

URL HTTP/1.1
www.oftalmed.com.br/timthumb.php?src=/http://www.oftalmed.com.br/files/images/quem-somos/Sala4_CDO_FotoKZ_1.jpg&w=518&h=454
IP
108.179.252.178:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 90", baseline, precision 8, 518x454, components 3\012- data
Size
51 kB (50629 bytes)
Hash
e69dbb4b053c708c096bc96c9fa5ce29
21d090aefb5327fbd7c13314868dfbf93db85c48
0d12e387147f95472682cadd9500e1394fd2e5fa0159f9aa1b24997124c4be3b

HTTP Headers

GET /timthumb.php?src=/http://www.oftalmed.com.br/files/images/quem-somos/Sala4_CDO_FotoKZ_1.jpg&w=518&h=454 HTTP/1.1
Host: www.oftalmed.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.oftalmed.com.br/
Cookie: PHPSESSID=cfdfe4632ba0e4856e835cca033a3972

HTTP/1.1 200 OK
Date: Tue, 04 Oct 2022 09:59:05 GMT
Server: Apache
Accept-Ranges: none
Cache-Control: max-age=864000, must-revalidate
Expires: Fri, 14 Oct 2022 09:59:05 GMT
Upgrade: h2,h2c
Connection: Upgrade, Keep-Alive
Last-Modified: Tue, 04 Oct 2022 09:59:05 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
Keep-Alive: timeout=5, max=75
Transfer-Encoding: chunked
Content-Type: image/jpeg

www.oftalmed.com.br/timthumb.php?src=/http://www.oftalmed.com.br/files/images/quem-somos/CallCenterTagua_FotoKarinaZambrana_12.jpg&w=518&h=454

108.179.252.178

200 OK

45 kB

URL HTTP/1.1
www.oftalmed.com.br/timthumb.php?src=/http://www.oftalmed.com.br/files/images/quem-somos/CallCenterTagua_FotoKarinaZambrana_12.jpg&w=518&h=454
IP
108.179.252.178:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 90", baseline, precision 8, 518x454, components 3\012- data
Size
45 kB (44909 bytes)
Hash
c45c8bd9e37422f7347525cc1bef6265
0e646d6773e59ca5e68b88b80bcc408f6cb1898f
011957281d6bacd0fb5a295a0416a04fec99b5bdb15fc290832a91946c699581

HTTP Headers

GET /timthumb.php?src=/http://www.oftalmed.com.br/files/images/quem-somos/CallCenterTagua_FotoKarinaZambrana_12.jpg&w=518&h=454 HTTP/1.1
Host: www.oftalmed.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.oftalmed.com.br/
Cookie: PHPSESSID=cfdfe4632ba0e4856e835cca033a3972

HTTP/1.1 200 OK
Date: Tue, 04 Oct 2022 09:59:06 GMT
Server: Apache
Accept-Ranges: none
Cache-Control: max-age=864000, must-revalidate
Expires: Fri, 14 Oct 2022 09:59:06 GMT
Last-Modified: Tue, 04 Oct 2022 09:59:06 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
Keep-Alive: timeout=5, max=74
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: image/jpeg

www.oftalmed.com.br/timthumb.php?src=/http://www.oftalmed.com.br/files/images/quem-somos/CallCenterTagua_FotoKarinaZambrana_26.jpg&w=518&h=454

108.179.252.178

200 OK

52 kB

URL HTTP/1.1
www.oftalmed.com.br/timthumb.php?src=/http://www.oftalmed.com.br/files/images/quem-somos/CallCenterTagua_FotoKarinaZambrana_26.jpg&w=518&h=454
IP
108.179.252.178:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 90", baseline, precision 8, 518x454, components 3\012- data
Size
52 kB (51597 bytes)
Hash
20e5f44332b45f590c753fc1fb413e82
c576ff346a17f900235bba77c5c31b9ac2abfb9b
0d8056396d5252e28d2f99ee73ba309ec4ed8c1c13b0b6f65949fb9573cf6570

HTTP Headers

GET /timthumb.php?src=/http://www.oftalmed.com.br/files/images/quem-somos/CallCenterTagua_FotoKarinaZambrana_26.jpg&w=518&h=454 HTTP/1.1
Host: www.oftalmed.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.oftalmed.com.br/
Cookie: PHPSESSID=cfdfe4632ba0e4856e835cca033a3972

HTTP/1.1 200 OK
Date: Tue, 04 Oct 2022 09:59:06 GMT
Server: Apache
Accept-Ranges: none
Cache-Control: max-age=864000, must-revalidate
Expires: Fri, 14 Oct 2022 09:59:06 GMT
Last-Modified: Tue, 04 Oct 2022 09:59:06 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
Keep-Alive: timeout=5, max=65
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: image/jpeg

www.oftalmed.com.br/files/assets/img/icon-download.png

108.179.252.178

200 OK

1.1 kB

URL HTTP/1.1
www.oftalmed.com.br/files/assets/img/icon-download.png
IP
108.179.252.178:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
PNG image data, 17 x 19, 8-bit/color RGBA, non-interlaced\012- data
Size
1.1 kB (1080 bytes)
Hash
9a857ac822ae2a8d99320d0187a94f3b
30e283b58243dbc91714e265825223ebb37b737a
88eef0b999f2e5ec1788fab86582bdf59f4f0b670e2b0fb74319382d6bb26c02

HTTP Headers

GET /files/assets/img/icon-download.png HTTP/1.1
Host: www.oftalmed.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.oftalmed.com.br/
Cookie: PHPSESSID=cfdfe4632ba0e4856e835cca033a3972

HTTP/1.1 200 OK
Date: Tue, 04 Oct 2022 09:59:06 GMT
Server: Apache
Last-Modified: Mon, 30 Sep 2019 10:44:29 GMT
Accept-Ranges: bytes
Content-Length: 1080
Keep-Alive: timeout=5, max=73
Connection: Keep-Alive
Content-Type: image/png

www.oftalmed.com.br/timthumb.php?src=/http://www.oftalmed.com.br/files/images/quem-somos/CentroCirurgico_FotoKarinaZambrana_19.jpg&w=518&h=454

108.179.252.178

200 OK

36 kB

URL HTTP/1.1
www.oftalmed.com.br/timthumb.php?src=/http://www.oftalmed.com.br/files/images/quem-somos/CentroCirurgico_FotoKarinaZambrana_19.jpg&w=518&h=454
IP
108.179.252.178:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 90", baseline, precision 8, 518x454, components 3\012- data
Size
36 kB (36328 bytes)
Hash
54ee3091d1b784b770ed2405086f3ce0
661c76167799dceff559dc15d264e476cfee3f19
f7ca89822661b08b2dad589b6f1a6fce6cafa2cbf50e8886cc4abea7e812d802

HTTP Headers

GET /timthumb.php?src=/http://www.oftalmed.com.br/files/images/quem-somos/CentroCirurgico_FotoKarinaZambrana_19.jpg&w=518&h=454 HTTP/1.1
Host: www.oftalmed.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.oftalmed.com.br/
Cookie: PHPSESSID=cfdfe4632ba0e4856e835cca033a3972

HTTP/1.1 200 OK
Date: Tue, 04 Oct 2022 09:59:06 GMT
Server: Apache
Accept-Ranges: none
Cache-Control: max-age=864000, must-revalidate
Expires: Fri, 14 Oct 2022 09:59:06 GMT
Upgrade: h2,h2c
Connection: Upgrade, Keep-Alive
Last-Modified: Tue, 04 Oct 2022 09:59:06 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
Keep-Alive: timeout=5, max=75
Transfer-Encoding: chunked
Content-Type: image/jpeg

www.oftalmed.com.br/files/assets/img/icon-contato-rodape.png

108.179.252.178

200 OK

1.1 kB

URL HTTP/1.1
www.oftalmed.com.br/files/assets/img/icon-contato-rodape.png
IP
108.179.252.178:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
PNG image data, 31 x 32, 8-bit/color RGBA, non-interlaced\012- data
Size
1.1 kB (1112 bytes)
Hash
bb1eb80136ed0b47b0ab2230a9b15261
75286c75f0ec34a91f3628ad68ddaa78141ef274
cabae650dee22c5f752f29b437e7e2d6ab34f3b771ed2e1c4b7fa4b7aa904d04

HTTP Headers

GET /files/assets/img/icon-contato-rodape.png HTTP/1.1
Host: www.oftalmed.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.oftalmed.com.br/
Cookie: PHPSESSID=cfdfe4632ba0e4856e835cca033a3972

HTTP/1.1 200 OK
Date: Tue, 04 Oct 2022 09:59:06 GMT
Server: Apache
Last-Modified: Mon, 30 Sep 2019 10:44:29 GMT
Accept-Ranges: bytes
Content-Length: 1112
Keep-Alive: timeout=5, max=64
Connection: Keep-Alive
Content-Type: image/png

www.oftalmed.com.br/timthumb.php?src=/http://www.oftalmed.com.br/files/images/revistas/revista%20oftalmed%20capa%203.png&w=324&h=458

108.179.252.178

200 OK

141 kB

URL HTTP/1.1
www.oftalmed.com.br/timthumb.php?src=/http://www.oftalmed.com.br/files/images/revistas/revista%20oftalmed%20capa%203.png&w=324&h=458
IP
108.179.252.178:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
PNG image data, 324 x 458, 8-bit/color RGBA, non-interlaced\012- data
Size
141 kB (140784 bytes)
Hash
c6df7321fac53f6242c83b9a4a380797
17a8ff7d5ff2205a3d1a72a9b4c53d1df97729ad
f3255219277fe9812d5f000f1ed508343e2fc233e2383f262382c40904630821

HTTP Headers

GET /timthumb.php?src=/http://www.oftalmed.com.br/files/images/revistas/revista%20oftalmed%20capa%203.png&w=324&h=458 HTTP/1.1
Host: www.oftalmed.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.oftalmed.com.br/
Cookie: PHPSESSID=cfdfe4632ba0e4856e835cca033a3972

HTTP/1.1 200 OK
Date: Tue, 04 Oct 2022 09:59:06 GMT
Server: Apache
Accept-Ranges: none
Cache-Control: max-age=864000, must-revalidate
Expires: Fri, 14 Oct 2022 09:59:06 GMT
Last-Modified: Tue, 04 Oct 2022 09:59:06 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
Keep-Alive: timeout=5, max=74
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: image/png

www.oftalmed.com.br/timthumb.php?src=/http://www.oftalmed.com.br/files/images/imprensa/29.08.18_Correio%20Braziliense.png&w=324&h=298

108.179.252.178

200 OK

140 kB

URL HTTP/1.1
www.oftalmed.com.br/timthumb.php?src=/http://www.oftalmed.com.br/files/images/imprensa/29.08.18_Correio%20Braziliense.png&w=324&h=298
IP
108.179.252.178:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
PNG image data, 324 x 298, 8-bit/color RGBA, non-interlaced\012- data
Size
140 kB (140476 bytes)
Hash
ef2e3ff4c6dd40d3dbb6b369a6b0c6d5
03eccf9fca269fdd2b3541d07915a7ba265885d5
7c9a45b7eba97eb881ea6c592519a28cd3d4ad82c5b41dac741b522a3ae14881

HTTP Headers

GET /timthumb.php?src=/http://www.oftalmed.com.br/files/images/imprensa/29.08.18_Correio%20Braziliense.png&w=324&h=298 HTTP/1.1
Host: www.oftalmed.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.oftalmed.com.br/
Cookie: PHPSESSID=cfdfe4632ba0e4856e835cca033a3972

HTTP/1.1 200 OK
Date: Tue, 04 Oct 2022 09:59:06 GMT
Server: Apache
Accept-Ranges: none
Cache-Control: max-age=864000, must-revalidate
Expires: Fri, 14 Oct 2022 09:59:06 GMT
Last-Modified: Tue, 04 Oct 2022 09:59:06 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
Keep-Alive: timeout=5, max=66
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: image/png

www.oftalmed.com.br/files/assets/img/icon-email-rodape.png

108.179.252.178

200 OK

722 B

URL HTTP/1.1
www.oftalmed.com.br/files/assets/img/icon-email-rodape.png
IP
108.179.252.178:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
PNG image data, 31 x 32, 8-bit/color RGBA, non-interlaced\012- data
Size
722 B (722 bytes)
Hash
2e75f979ca484e67d16c18e76214adbe
56911b320806e7809b01b5bdccfdacca6d37a6f0
2ce8845dd1ac03374a4ef616507b3e1424b97a183afa54bab725b72721997600

HTTP Headers

GET /files/assets/img/icon-email-rodape.png HTTP/1.1
Host: www.oftalmed.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.oftalmed.com.br/
Cookie: PHPSESSID=cfdfe4632ba0e4856e835cca033a3972

HTTP/1.1 200 OK
Date: Tue, 04 Oct 2022 09:59:06 GMT
Server: Apache
Last-Modified: Mon, 30 Sep 2019 10:44:29 GMT
Accept-Ranges: bytes
Content-Length: 722
Keep-Alive: timeout=5, max=72
Connection: Keep-Alive
Content-Type: image/png

www.oftalmed.com.br/files/assets/img/btn-prev.jpg

108.179.252.178

200 OK

1.3 kB

URL HTTP/1.1
www.oftalmed.com.br/files/assets/img/btn-prev.jpg
IP
108.179.252.178:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 37x38, components 3\012- data
Size
1.3 kB (1314 bytes)
Hash
cfa22ffff4015acef454d8bbc24aca48
9492760d6c97a59bb0174d4b2da6d5ff4a8d440b
7874712d8b3da814fe42f3fb28b39d018d270579237d76c377c98e70e2fcfefe

HTTP Headers

GET /files/assets/img/btn-prev.jpg HTTP/1.1
Host: www.oftalmed.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.oftalmed.com.br/
Cookie: PHPSESSID=cfdfe4632ba0e4856e835cca033a3972

HTTP/1.1 200 OK
Date: Tue, 04 Oct 2022 09:59:06 GMT
Server: Apache
Last-Modified: Mon, 30 Sep 2019 10:44:29 GMT
Accept-Ranges: bytes
Content-Length: 1314
Keep-Alive: timeout=5, max=74
Connection: Keep-Alive
Content-Type: image/jpeg

www.oftalmed.com.br/timthumb.php?src=/http://www.oftalmed.com.br/files/images/quem-somos/CentroCirurgico_FotoKarinaZambrana_25.jpg&w=518&h=454

108.179.252.178

200 OK

49 kB

URL HTTP/1.1
www.oftalmed.com.br/timthumb.php?src=/http://www.oftalmed.com.br/files/images/quem-somos/CentroCirurgico_FotoKarinaZambrana_25.jpg&w=518&h=454
IP
108.179.252.178:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 90", baseline, precision 8, 518x454, components 3\012- data
Size
49 kB (49329 bytes)
Hash
86c23ba983d4fd69e1e251f86a6160d2
7092f5debd6593b18403798ce2ba93c3b4b8b112
47a6ae97f860235939dbd3a35ac0d96865ff10c1f0af0edafe4adff37b521e29

HTTP Headers

GET /timthumb.php?src=/http://www.oftalmed.com.br/files/images/quem-somos/CentroCirurgico_FotoKarinaZambrana_25.jpg&w=518&h=454 HTTP/1.1
Host: www.oftalmed.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.oftalmed.com.br/
Cookie: PHPSESSID=cfdfe4632ba0e4856e835cca033a3972

HTTP/1.1 200 OK
Date: Tue, 04 Oct 2022 09:59:06 GMT
Server: Apache
Accept-Ranges: none
Cache-Control: max-age=864000, must-revalidate
Expires: Fri, 14 Oct 2022 09:59:06 GMT
Upgrade: h2,h2c
Connection: Upgrade, Keep-Alive
Last-Modified: Tue, 04 Oct 2022 09:59:06 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
Keep-Alive: timeout=5, max=75
Transfer-Encoding: chunked
Content-Type: image/jpeg

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
ff433c9569a3557d806b1480aeafece9
20bbd46383b85326837f45290ff87df708b3b310
e8e5212b8d90257f23bdb0d1d643b5e7d7528d964056c3a4a269b5e09f409f2d

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "E8E5212B8D90257F23BDB0D1D643B5E7D7528D964056C3A4A269B5E09F409F2D"
Last-Modified: Sun, 02 Oct 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=13820
Expires: Tue, 04 Oct 2022 13:49:26 GMT
Date: Tue, 04 Oct 2022 09:59:06 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
ff433c9569a3557d806b1480aeafece9
20bbd46383b85326837f45290ff87df708b3b310
e8e5212b8d90257f23bdb0d1d643b5e7d7528d964056c3a4a269b5e09f409f2d

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "E8E5212B8D90257F23BDB0D1D643B5E7D7528D964056C3A4A269B5E09F409F2D"
Last-Modified: Sun, 02 Oct 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=13820
Expires: Tue, 04 Oct 2022 13:49:26 GMT
Date: Tue, 04 Oct 2022 09:59:06 GMT
Connection: keep-alive

www.oftalmed.com.br/files/assets/img/btn-next.jpg

108.179.252.178

200 OK

1.3 kB

URL HTTP/1.1
www.oftalmed.com.br/files/assets/img/btn-next.jpg
IP
108.179.252.178:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 37x38, components 3\012- data
Size
1.3 kB (1342 bytes)
Hash
1fc2efc0fb90b4c37ff6ced931f00feb
c8ae9429073c9dd90890a179ec70fa6bb483f067
0d4689f1e0d497fe439599952a6f6d3bd1127891d21723af363814a7ab956fc6

HTTP Headers

GET /files/assets/img/btn-next.jpg HTTP/1.1
Host: www.oftalmed.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.oftalmed.com.br/
Cookie: PHPSESSID=cfdfe4632ba0e4856e835cca033a3972

HTTP/1.1 200 OK
Date: Tue, 04 Oct 2022 09:59:06 GMT
Server: Apache
Last-Modified: Mon, 30 Sep 2019 10:44:29 GMT
Accept-Ranges: bytes
Content-Length: 1342
Keep-Alive: timeout=5, max=63
Connection: Keep-Alive
Content-Type: image/jpeg

img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0c459c91-b5cc-492c-9573-3101e5df6b51.jpeg

34.120.237.76

200 OK

5.1 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0c459c91-b5cc-492c-9573-3101e5df6b51.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
5.1 kB (5083 bytes)
Hash
34f2dfb2faff276db1d4a57739db2450
f5ce815082043a4efce28fc790ae7d8b3a8531f8
e02ea92f0be524ccfe26eee61a77e39a13d852d1ba3696f729e0f61812028667

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0c459c91-b5cc-492c-9573-3101e5df6b51.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 5083
x-amzn-requestid: ed99df03-5d15-4e09-9aea-bbf77a705323
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZcpI0HT0IAMFxvQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-633b556b-422197147d76caac6e910664;Sampled=0
x-amzn-remapped-date: Mon, 03 Oct 2022 21:34:35 GMT
x-amz-cf-pop: SFO5-P2, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: pddStyEpwVdYKSAUVcpupnWVPw6ALoYCouHQzixF_vTgXdpVF60ElA==
via: 1.1 946b9edb2009c5508a0fbbd636f95014.cloudfront.net (CloudFront), 1.1 28390a4d24ed4fdccd685d99cd06cf4e.cloudfront.net (CloudFront), 1.1 google
date: Mon, 03 Oct 2022 22:10:59 GMT
age: 42487
etag: "f5ce815082043a4efce28fc790ae7d8b3a8531f8"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

6.3 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F180dee10-1cde-4fbe-8a74-62b7b3bdb1e2.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
6.3 kB (6315 bytes)
Hash
206fb65e75dbadf119512f71e0b78402
58ff0bf8ce7528b303d28bab01a80ad721705569
56c8d5f3b3060ee54bf81995269b86c070855d8c33bf437161339a45b309703f

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F180dee10-1cde-4fbe-8a74-62b7b3bdb1e2.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 6315
x-amzn-requestid: 6aa75b16-32e4-48a7-9fb0-9e3d5528c2d5
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZWSdsHUnIAMFXtw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6338cabd-742d8a436403683e0cd9368f;Sampled=0
x-amzn-remapped-date: Sat, 01 Oct 2022 23:18:21 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: 5sAzc5Ewv4g6Wqq6JJiLylG3Jyy_nlWrr5Oteeo6ebEgq7Rvss4XaQ==
via: 1.1 f13aef0c4b52f6f681401f232d03eb68.cloudfront.net (CloudFront), 1.1 09331f0822fc98eebaf04130a83dbd44.cloudfront.net (CloudFront), 1.1 google
date: Tue, 04 Oct 2022 04:42:53 GMT
age: 18973
etag: "58ff0bf8ce7528b303d28bab01a80ad721705569"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

5.5 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8641c47a-9aff-4f73-bb07-6770cbbcc8d6.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
5.5 kB (5504 bytes)
Hash
6c6882c60d7ca6f918c77104e3ad1d52
20ef861be49c652a938e0145e4ca3a60159367e2
861f5870990fbd2939d151ae18384cf311e87067ca9a50818efe0c2d51b83088

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8641c47a-9aff-4f73-bb07-6770cbbcc8d6.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 5504
x-amzn-requestid: 37405eb0-5c75-46a9-84c0-e8ed726995d8
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZcpHvHPvoAMF3mg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-633b5564-77fd550b58af612525e74761;Sampled=0
x-amzn-remapped-date: Mon, 03 Oct 2022 21:34:28 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: Ovm2wuk28PygH4EZNEUoPchoHQggWCyXbYHOjMV1tZmfyDrL6PjPZA==
via: 1.1 01c28b52813cd0e82f810c492808b142.cloudfront.net (CloudFront), 1.1 5fe5f2a3903f1378941d92eceaf3fa16.cloudfront.net (CloudFront), 1.1 google
date: Mon, 03 Oct 2022 22:29:19 GMT
age: 41387
etag: "20ef861be49c652a938e0145e4ca3a60159367e2"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

4.9 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9a61745f-0c9b-404a-ba22-0a69cf2f0383.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
4.9 kB (4858 bytes)
Hash
6779181f9c06975f2a662da743893939
585e7146fd24cdc2496b05baafea04091dc541e2
8e9a9f92fd89b7cdce77884ccd76b83ab82d28f125ebfc1cb0d371d4046b7985

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9a61745f-0c9b-404a-ba22-0a69cf2f0383.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 4858
x-amzn-requestid: fb21c414-2994-444a-a838-e643fd05b171
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZcpvTEfPoAMFfeQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-633b5661-593dd8043b0490e7301cac0d;Sampled=0
x-amzn-remapped-date: Mon, 03 Oct 2022 21:38:41 GMT
x-amz-cf-pop: SFO5-P2, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: MiSh_FjAciKCaOakY2mM_EHBN1Z6GIDYIP8mwS4ikkrToQN3Ktsv2g==
via: 1.1 773ca14e6bd4bf9244988cb69fc9dca8.cloudfront.net (CloudFront), 1.1 b36bf2c460ac693ce304817aed073112.cloudfront.net (CloudFront), 1.1 google
date: Mon, 03 Oct 2022 21:56:46 GMT
age: 43340
etag: "585e7146fd24cdc2496b05baafea04091dc541e2"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

8.3 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0bec66cf-b911-4eb8-95d6-27e5f2afb6c7.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
8.3 kB (8308 bytes)
Hash
de29d0d95d22e4e246a90feed644baf0
4ac6c5691df804078d5da54233cf4d8e7012f9ca
8e34ad07e098df14f7001d1ee538479de11afa4c255006cb6e8e2207c0e50a47

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0bec66cf-b911-4eb8-95d6-27e5f2afb6c7.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 8308
x-amzn-requestid: 3348b2e8-915a-492b-8241-89c13a21232c
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZcqFlFyyoAMFz_A=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-633b56f0-2baf7ac2213c31fc384e8317;Sampled=0
x-amzn-remapped-date: Mon, 03 Oct 2022 21:41:04 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: Y1H21zphqs9mIGVYHojfc-nvW35BS3nq4hunM_JmyT9mC100bXlgWw==
via: 1.1 0c96ded7ff282d2dbcf47c918b6bb500.cloudfront.net (CloudFront), 1.1 ee330666adf9f04c8c30094f8ddcd004.cloudfront.net (CloudFront), 1.1 google
date: Mon, 03 Oct 2022 21:55:46 GMT
age: 43400
etag: "4ac6c5691df804078d5da54233cf4d8e7012f9ca"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

www.oftalmed.com.br/files/assets/img/onda-rodape.png

108.179.252.178

200 OK

12 kB

URL HTTP/1.1
www.oftalmed.com.br/files/assets/img/onda-rodape.png
IP
108.179.252.178:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
PNG image data, 569 x 255, 8-bit/color RGBA, non-interlaced\012- data
Size
12 kB (12014 bytes)
Hash
19e1209c971d99c8994707c63e407f66
c570e5daf90bcdb62ee11f7c0c5b2e23e174636b
1d77b3c4041e9ed44be045e7f23ecee1996ad57b5a560f69b74a9b89b9b5d1bb

HTTP Headers

GET /files/assets/img/onda-rodape.png HTTP/1.1
Host: www.oftalmed.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.oftalmed.com.br/files/assets/css/geral.css
Cookie: PHPSESSID=cfdfe4632ba0e4856e835cca033a3972

HTTP/1.1 200 OK
Date: Tue, 04 Oct 2022 09:59:06 GMT
Server: Apache
Last-Modified: Mon, 30 Sep 2019 10:44:29 GMT
Accept-Ranges: bytes
Content-Length: 12014
Keep-Alive: timeout=5, max=73
Connection: Keep-Alive
Content-Type: image/png

34.120.237.76

200 OK

9.9 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F545190f2-96f3-40f8-bd46-cebe7171aee7.webp
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
9.9 kB (9917 bytes)
Hash
d8c08f8066cc732de8befd6ccd629a95
22aab05208a01ae5def4d63dc145085630f57bcb
f8a560a0563518d992d0bd2655d2b5c406435a18e874ca00b51374d2ff901770

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F545190f2-96f3-40f8-bd46-cebe7171aee7.webp HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 9917
x-amzn-requestid: 2dff93d9-795d-4885-9b82-610b0d235a82
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZcpvTGEnIAMF1zg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-633b5661-117afa703663ada75627792c;Sampled=0
x-amzn-remapped-date: Mon, 03 Oct 2022 21:38:41 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: p5nOqBojKO6S-c_DxIu8B3p-NK0pzRHkz0DOPeyv7PQt9h0x1jdtoQ==
via: 1.1 da5952aa802df39905ceb16592e9698a.cloudfront.net (CloudFront), 1.1 1508efc4152aa1778ed4adecb328b374.cloudfront.net (CloudFront), 1.1 google
date: Mon, 03 Oct 2022 21:55:54 GMT
age: 43392
etag: "22aab05208a01ae5def4d63dc145085630f57bcb"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

www.gstatic.com/recaptcha/releases/a9s0j4pCVT6gaTEkLiFbtZPH/recaptcha__pt_br.js

142.250.74.163

200 OK

160 kB

URL HTTP/2
www.gstatic.com/recaptcha/releases/a9s0j4pCVT6gaTEkLiFbtZPH/recaptcha__pt_br.js
IP
142.250.74.163:0
ASN
#15169 GOOGLE

File type
ASCII text, with very long lines (840)
Size
160 kB (159932 bytes)
Hash
4185917f875d64355626e0fcf4125531
30f915d6f310500e85aa119a5f18fe12c8347387
0744060d1787acae295ecbfd56497604d46e67f56897cb94934b4616af9334f7

HTTP Headers

GET /recaptcha/releases/a9s0j4pCVT6gaTEkLiFbtZPH/recaptcha__pt_br.js HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://www.oftalmed.com.br
Connection: keep-alive
Referer: http://www.oftalmed.com.br/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/recaptcha
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups; report-to="recaptcha"
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
content-length: 159932
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sat, 01 Oct 2022 04:17:30 GMT
expires: Sun, 01 Oct 2023 04:17:30 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 26 Sep 2022 04:02:34 GMT
content-type: text/javascript
age: 279696
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

colorlib.com/polygon/vendors/mjolnic-bootstrap-colorpicker/dist/js/bootstrap-colorpicker.min.js

104.22.20.226

200 OK

19 kB

URL HTTP/2
colorlib.com/polygon/vendors/mjolnic-bootstrap-colorpicker/dist/js/bootstrap-colorpicker.min.js
IP
104.22.20.226:0
ASN
#13335 CLOUDFLARENET

File type
ASCII text, with very long lines (18598)
Size
19 kB (19322 bytes)
Hash
0f306b45e5ead911fe15c1855de24534
348c797ce616d40fe336c73b167cec711e7404a2
389295904134a9041e68c1145b772820d7c5f3bf79c0b3ddbdf586f36d42c9d6

HTTP Headers

GET /polygon/vendors/mjolnic-bootstrap-colorpicker/dist/js/bootstrap-colorpicker.min.js HTTP/1.1
Host: colorlib.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.oftalmed.com.br/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Tue, 04 Oct 2022 09:59:04 GMT
content-type: application/javascript
strict-transport-security: max-age=15552000; preload
last-modified: Fri, 30 Sep 2022 20:18:42 GMT
vary: Accept-Encoding
etag: W/"63374f22-4901"
expires: Mon, 10 Oct 2022 09:51:31 GMT
cache-control: max-age=604800
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD
x-ac: 2.yyz _atomic_dca BYPASS
cf-cache-status: HIT
x-content-type-options: nosniff
server: cloudflare
cf-ray: 754d100dbcd1b518-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

colorlib.com/polygon/vendors/bootstrap-daterangepicker/daterangepicker.js

104.22.20.226

200 OK

0 B

URL HTTP/2
colorlib.com/polygon/vendors/bootstrap-daterangepicker/daterangepicker.js
IP
104.22.20.226:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /polygon/vendors/bootstrap-daterangepicker/daterangepicker.js HTTP/1.1
Host: colorlib.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.oftalmed.com.br/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Tue, 04 Oct 2022 09:59:04 GMT
content-type: application/javascript
cache-control: max-age=604800
cf-bgj: minify
cf-polished: origSize=63906
access-control-allow-methods: GET, HEAD
access-control-allow-origin: *
etag: W/"63374e01-f9a2"
expires: Mon, 10 Oct 2022 09:45:17 GMT
last-modified: Fri, 30 Sep 2022 20:13:53 GMT
strict-transport-security: max-age=15552000; preload
vary: Accept-Encoding
x-ac: 1.yyz _atomic_dca BYPASS
cf-cache-status: HIT
x-content-type-options: nosniff
server: cloudflare
cf-ray: 754d100dbcc1b518-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

www.gstatic.com/recaptcha/releases/a9s0j4pCVT6gaTEkLiFbtZPH/recaptcha__en.js

142.250.74.163

200 OK

0 B

URL HTTP/2
www.gstatic.com/recaptcha/releases/a9s0j4pCVT6gaTEkLiFbtZPH/recaptcha__en.js
IP
142.250.74.163:0
ASN
#15169 GOOGLE

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /recaptcha/releases/a9s0j4pCVT6gaTEkLiFbtZPH/recaptcha__en.js HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://www.oftalmed.com.br
Connection: keep-alive
Referer: http://www.oftalmed.com.br/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/recaptcha
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups; report-to="recaptcha"
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
content-length: 158844
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sat, 01 Oct 2022 01:05:31 GMT
expires: Sun, 01 Oct 2023 01:05:31 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 26 Sep 2022 04:02:34 GMT
content-type: text/javascript
age: 291215
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

fonts.googleapis.com/css?family=Roboto:300,400,500,700

142.250.74.10

200 OK

0 B

URL HTTP/2
fonts.googleapis.com/css?family=Roboto:300,400,500,700
IP
142.250.74.10:0
ASN
#15169 GOOGLE

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /css?family=Roboto:300,400,500,700 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.oftalmed.com.br/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Tue, 04 Oct 2022 09:59:04 GMT
date: Tue, 04 Oct 2022 09:59:04 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

www.oftalmed.com.br/video.mp4

108.179.252.178

206 Partial Content

0 B

URL HTTP/1.1
www.oftalmed.com.br/video.mp4
IP
108.179.252.178:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type

Size
0 B (0 bytes)
Hash

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /video.mp4 HTTP/1.1
Host: www.oftalmed.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: video/webm,video/ogg,video/*;q=0.9,application/ogg;q=0.7,audio/*;q=0.6,*/*;q=0.5
Accept-Language: en-US,en;q=0.5
Range: bytes=0-
Connection: keep-alive
Referer: http://www.oftalmed.com.br/
Cookie: PHPSESSID=cfdfe4632ba0e4856e835cca033a3972

HTTP/1.1 206 Partial Content
Date: Tue, 04 Oct 2022 09:59:05 GMT
Server: Apache
Last-Modified: Mon, 30 Sep 2019 10:44:26 GMT
Accept-Ranges: bytes
Content-Length: 7692780
Content-Range: bytes 0-7692779/7692780
Keep-Alive: timeout=5, max=69
Connection: Keep-Alive
Content-Type: video/mp4

www.oftalmed.com.br/video2.mp4

108.179.252.178

206 Partial Content

0 B

URL HTTP/1.1
www.oftalmed.com.br/video2.mp4
IP
108.179.252.178:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type

Size
0 B (0 bytes)
Hash

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /video2.mp4 HTTP/1.1
Host: www.oftalmed.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: video/webm,video/ogg,video/*;q=0.9,application/ogg;q=0.7,audio/*;q=0.6,*/*;q=0.5
Accept-Language: en-US,en;q=0.5
Range: bytes=0-
Connection: keep-alive
Referer: http://www.oftalmed.com.br/
Cookie: PHPSESSID=cfdfe4632ba0e4856e835cca033a3972

HTTP/1.1 206 Partial Content
Date: Tue, 04 Oct 2022 09:59:05 GMT
Server: Apache
Last-Modified: Mon, 30 Sep 2019 10:44:26 GMT
Accept-Ranges: bytes
Content-Length: 10507567
Content-Range: bytes 0-10507566/10507567
Keep-Alive: timeout=5, max=72
Connection: Keep-Alive
Content-Type: video/mp4

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

OpenPhish

PhishTank

Fortinet's Web Filter

mnemonic secure dns

Quad9 DNS

JavaScript (33)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations