firefox.settings.services.mozilla.com/v1/
143.204.55.27200 OK 939 B URL HTTP/1.1 firefox.settings.services.mozilla.com/v1/
IP 143.204.55.27:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 2d12f67fe57a87e7366b662d153a5582
d7b02d81cc74f24a251d9363e0f4b0a149264ec1
73c273c0b5a2de3cb970b8e8c187999d3b55e760dc7766dab4bb76428d19b551
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 939
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Content-Type, Alert, Backoff, Retry-After, Content-Length
Cache-Control: max-age=3600
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Date: Tue, 04 Oct 2022 09:47:04 GMT
X-Content-Type-Options: nosniff
X-Cache: Hit from cloudfront
Via: 1.1 bb1da7862c4968b28920b91b324095c0.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: E8ts3CsxpzjRtbjzKcFXNkD0xRT1jBCViKuLczCwEmPg8JgEGEq3bw==
Age: 719
oftalmed.com.br/
50.116.113.64301 Moved Permanently 235 B IP 50.116.113.64:0
ASN #46606 UNIFIEDLAYER-AS-1
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 5825887b0f377bc644daf3ef80685b2c
014989092257bc3086e187f456e66e9da0796c06
e54fbf75b64e7ba95f9162ab4743fdd1e54947aea49c5324a19cc55e0a12cd6a
Analyzer Verdict Alert fortinet Phishing
GET / HTTP/1.1
Host: oftalmed.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Date: Tue, 04 Oct 2022 09:59:03 GMT
Server: Apache
Location: http://www.oftalmed.com.br/
Content-Length: 235
Keep-Alive: timeout=5, max=75
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 9955bda9c9ef64bc5700a14af0bae25e
8de7b7469e905af0374bdfcc3006bbb844f13e94
1f611155394fac39439b8ec8217d8cd493d6b588d372d264e0d66c03129c50c6
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "1F611155394FAC39439B8EC8217D8CD493D6B588D372D264E0D66C03129C50C6"
Last-Modified: Sun, 02 Oct 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7451
Expires: Tue, 04 Oct 2022 12:03:14 GMT
Date: Tue, 04 Oct 2022 09:59:03 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-30-18-47-44.chain
143.204.55.110200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-30-18-47-44.chain
IP 143.204.55.110:0
File type PEM certificate\012- , ASCII text
Hash 6113f8408c59aebe188d6af273b90743
7398873bf00f99944eaa77ad3ebc0d43c23dba6b
b6e0cc9ad68306208a160f3835fb8da76acc5a82d8fde1da5a98e1de1c11a770
GET /chains/remote-settings.content-signature.mozilla.org-2022-10-30-18-47-44.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: binary/octet-stream
content-length: 5348
last-modified: Sat, 10 Sep 2022 18:47:45 GMT
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
date: Tue, 04 Oct 2022 05:28:28 GMT
etag: "6113f8408c59aebe188d6af273b90743"
x-cache: Hit from cloudfront
via: 1.1 057fdebf738f5915bf38a78949190758.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: dVzVNmHiGBlzY98CkVGrXMZ966PNiuf1-4a6PF86khCJGCy-iNIW2A==
age: 16236
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Tue, 04 Oct 2022 09:59:04 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
www.oftalmed.com.br/
108.179.252.178200 OK 11 kB IP 108.179.252.178:0
ASN #46606 UNIFIEDLAYER-AS-1
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (415), with CRLF line terminators
Hash c94835045482c3e75da39209d22d07c8
990a75bfc7217577c351efba6d889874e9a9cdb1
c77a0e69ded3f786add730e663ce945e741c3e669f6eb9ca20d202c63c30341b
Analyzer Verdict Alert fortinet Phishing
GET / HTTP/1.1
Host: www.oftalmed.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 200 OK
Date: Tue, 04 Oct 2022 09:59:04 GMT
Server: Apache
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate
Pragma: no-cache
Set-Cookie: PHPSESSID=cfdfe4632ba0e4856e835cca033a3972; path=/
Upgrade: h2,h2c
Connection: Upgrade, Keep-Alive
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 11251
Keep-Alive: timeout=5, max=75
Content-Type: text/html; charset=UTF-8
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
143.204.55.27200 OK 329 B URL HTTP/1.1 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 143.204.55.27:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 329
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: ETag, Expires, Content-Length, Cache-Control, Pragma, Content-Type, Alert, Backoff, Last-Modified, Retry-After
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Last-Modified: Fri, 25 Mar 2022 17:45:46 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
Date: Tue, 04 Oct 2022 09:29:33 GMT
Cache-Control: max-age=3600, max-age=3600
Expires: Tue, 04 Oct 2022 10:27:25 GMT
ETag: "1648230346554"
X-Cache: Hit from cloudfront
Via: 1.1 9ede9483eb891e14681c7c693b47c862.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: J0-aImpi515b4FzPKhR21w2DMO2iafPH7TJPLP-mcNUZDCSD6aZ0TA==
Age: 1771
www.oftalmed.com.br/files/assets/css/animate.css
108.179.252.178200 OK 7.6 kB URL HTTP/1.1 www.oftalmed.com.br/files/assets/css/animate.css
IP 108.179.252.178:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with CRLF line terminators
Hash cfaa5955c96cde0207d339653004c582
a9a454277b07d543073ca33aa906b817a2b18b97
8eb5627d6f4c0bc576f13b0be3cced03927815fb4393af578d7d6a942a12d778
GET /files/assets/css/animate.css HTTP/1.1
Host: www.oftalmed.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.oftalmed.com.br/
Cookie: PHPSESSID=cfdfe4632ba0e4856e835cca033a3972
HTTP/1.1 200 OK
Date: Tue, 04 Oct 2022 09:59:04 GMT
Server: Apache
Last-Modified: Mon, 30 Sep 2019 10:44:29 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 7590
Keep-Alive: timeout=5, max=74
Connection: Keep-Alive
Content-Type: text/css
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash b45b15bb651cc185ea82d91a51f06b5a
44987727be72bb12b4e4fc4fac50145835512750
f0b61426de169cf2efde87ac98d5123ea785004ad05c05932a099b644b2fdf64
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 04 Oct 2022 09:59:04 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash 9e40b2c69615f45f2bc898334ab3e343
6a569648ed10564e126d3bbf3f91352e6b3f6d4f
4f1d0982c58b9bbeaa266b99292baa1a00c9e39280f73d5a525722c851e15981
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 04 Oct 2022 09:59:04 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash b45b15bb651cc185ea82d91a51f06b5a
44987727be72bb12b4e4fc4fac50145835512750
f0b61426de169cf2efde87ac98d5123ea785004ad05c05932a099b644b2fdf64
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 04 Oct 2022 09:59:04 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 16ebfb2aa621547ecf581e26fc828a7d
f78993331f6f5b8af6409a9ad2fc50b77070f68a
0f81fd1d6be9ccc04b74f0348aafe642c7b9ab7dffb7e8a679b5d67cc2e5fac3
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4636
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Tue, 04 Oct 2022 09:59:04 GMT
Last-Modified: Tue, 04 Oct 2022 08:41:48 GMT
Server: ECS (ska/F718)
X-Cache: HIT
Content-Length: 471
www.oftalmed.com.br/files/assets/css/jPushMenu.css
108.179.252.178200 OK 808 B URL HTTP/1.1 www.oftalmed.com.br/files/assets/css/jPushMenu.css
IP 108.179.252.178:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with CRLF line terminators
Hash 186ae7d616174d57161a1f9c042e1a7c
9725abece46338da6d58ac79f066fe165e3e1841
0f9a464a4ea9dac65f8c23cd55a045ac0aa857a254c99063dba21ced863aa099
GET /files/assets/css/jPushMenu.css HTTP/1.1
Host: www.oftalmed.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.oftalmed.com.br/
Cookie: PHPSESSID=cfdfe4632ba0e4856e835cca033a3972
HTTP/1.1 200 OK
Date: Tue, 04 Oct 2022 09:59:04 GMT
Server: Apache
Upgrade: h2,h2c
Connection: Upgrade, Keep-Alive
Last-Modified: Mon, 30 Sep 2019 10:44:29 GMT
Accept-Ranges: none
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 808
Keep-Alive: timeout=5, max=75
Content-Type: text/css
www.oftalmed.com.br/files/assets/css/shadowbox.css
108.179.252.178200 OK 732 B URL HTTP/1.1 www.oftalmed.com.br/files/assets/css/shadowbox.css
IP 108.179.252.178:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with CRLF line terminators
Hash 7e43f74f7c3a258933b27c78d168f20c
6ec75f8af7179b2c7d389217f699e0edc3103927
7dd41de04245795375aa3194cc535ba686c87e4883844a333d42d8b356945cd4
GET /files/assets/css/shadowbox.css HTTP/1.1
Host: www.oftalmed.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.oftalmed.com.br/
Cookie: PHPSESSID=cfdfe4632ba0e4856e835cca033a3972
HTTP/1.1 200 OK
Date: Tue, 04 Oct 2022 09:59:04 GMT
Server: Apache
Upgrade: h2,h2c
Connection: Upgrade, Keep-Alive
Last-Modified: Mon, 30 Sep 2019 10:44:29 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 732
Keep-Alive: timeout=5, max=75
Content-Type: text/css
www.oftalmed.com.br/files/assets/css/owl.carousel.min.css
108.179.252.178200 OK 975 B URL HTTP/1.1 www.oftalmed.com.br/files/assets/css/owl.carousel.min.css
IP 108.179.252.178:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (2846), with CRLF line terminators
Hash cc538c4fefe8317e2f39312f7faad7d8
c6e4a125ed897e47f69a711e0eaae4162e8cd870
f29cd9f3a2aa9b22f2c84e5ab5a2aa66bd7a58d0e30c20fbf9cef7e77666296d
GET /files/assets/css/owl.carousel.min.css HTTP/1.1
Host: www.oftalmed.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.oftalmed.com.br/
Cookie: PHPSESSID=cfdfe4632ba0e4856e835cca033a3972
HTTP/1.1 200 OK
Date: Tue, 04 Oct 2022 09:59:04 GMT
Server: Apache
Upgrade: h2,h2c
Connection: Upgrade, Keep-Alive
Last-Modified: Mon, 30 Sep 2019 10:44:29 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 975
Keep-Alive: timeout=5, max=75
Content-Type: text/css
www.google.com/recaptcha/api.js?hl=pt-BR
142.250.74.164200 OK 555 B URL HTTP/2 www.google.com/recaptcha/api.js?hl=pt-BR
IP 142.250.74.164:0
File type ASCII text, with very long lines (853), with no line terminators
Hash 23d7aa80a7b7d85b0cf5988d8911d96b
be0711492f46e78d37b0fa9fafeefc4738847541
c08b0c0bf0928e9685128be278fea7d560f090c48bff8f472a87944b40f34d34
GET /recaptcha/api.js?hl=pt-BR HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.oftalmed.com.br/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
expires: Tue, 04 Oct 2022 09:59:04 GMT
date: Tue, 04 Oct 2022 09:59:04 GMT
cache-control: private, max-age=300
content-type: text/javascript; charset=UTF-8
cross-origin-resource-policy: cross-origin
content-encoding: gzip
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
content-security-policy: frame-ancestors 'self'
x-xss-protection: 1; mode=block
content-length: 555
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.oftalmed.com.br/files/assets/js/owl.carousel.min.js
108.179.252.178200 OK 15 kB URL HTTP/1.1 www.oftalmed.com.br/files/assets/js/owl.carousel.min.js
IP 108.179.252.178:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (32000), with CRLF line terminators
Hash 4abcf4ed418c59f48188925991bfb1cf
5adc48c03dfdfe91367b8eed76fbd7cdf9166a30
8911847696e35f16ee9057f65da5c3882ec9268b8b243bc7441a13a2fefb2fed
Analyzer Verdict Alert fortinet Phishing
GET /files/assets/js/owl.carousel.min.js HTTP/1.1
Host: www.oftalmed.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.oftalmed.com.br/
Cookie: PHPSESSID=cfdfe4632ba0e4856e835cca033a3972
HTTP/1.1 200 OK
Date: Tue, 04 Oct 2022 09:59:04 GMT
Server: Apache
Last-Modified: Mon, 30 Sep 2019 10:44:29 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 15332
Keep-Alive: timeout=5, max=73
Connection: Keep-Alive
Content-Type: application/javascript
www.google.com/recaptcha/api.js
142.250.74.164200 OK 555 B URL HTTP/2 www.google.com/recaptcha/api.js
IP 142.250.74.164:0
File type ASCII text, with very long lines (850), with no line terminators
Hash e75e7b4c9bf71c4a14d5e1d1946b161a
36148f31ea702a23a3f0dafd907a9069234021e7
e43b40968f165ec7b121020103aa40529d891aa2d03ead26ed47adefc4d6ab6d
GET /recaptcha/api.js HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.oftalmed.com.br/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
expires: Tue, 04 Oct 2022 09:59:04 GMT
date: Tue, 04 Oct 2022 09:59:04 GMT
cache-control: private, max-age=300
content-type: text/javascript; charset=UTF-8
cross-origin-resource-policy: cross-origin
content-encoding: gzip
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
content-security-policy: frame-ancestors 'self'
x-xss-protection: 1; mode=block
content-length: 555
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.oftalmed.com.br/files/assets/js/jPushMenu.js
108.179.252.178200 OK 954 B URL HTTP/1.1 www.oftalmed.com.br/files/assets/js/jPushMenu.js
IP 108.179.252.178:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with CRLF line terminators
Hash 0436bb97dae877100cc6d45bacd70bce
94413a570519a771bb9a485024e36e6667978ae5
994a3f12802837ff75fb8b338def92ad5bab705313971b4f52f41043142ac8e7
Analyzer Verdict Alert fortinet Phishing
GET /files/assets/js/jPushMenu.js HTTP/1.1
Host: www.oftalmed.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.oftalmed.com.br/
Cookie: PHPSESSID=cfdfe4632ba0e4856e835cca033a3972
HTTP/1.1 200 OK
Date: Tue, 04 Oct 2022 09:59:04 GMT
Server: Apache
Upgrade: h2,h2c
Connection: Upgrade, Keep-Alive
Last-Modified: Mon, 30 Sep 2019 10:44:29 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 954
Keep-Alive: timeout=5, max=75
Content-Type: application/javascript
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash 9e40b2c69615f45f2bc898334ab3e343
6a569648ed10564e126d3bbf3f91352e6b3f6d4f
4f1d0982c58b9bbeaa266b99292baa1a00c9e39280f73d5a525722c851e15981
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 04 Oct 2022 09:59:04 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash 129fe858bf2aa7291fd2c6dd4cf9d226
e3e048b964b851ebbdcfb5bd80ebdbad13720cf6
addc7e4ddab73c8c7ee50f6d33fc1e4ff73b71cc014e481049a393c3b87b0924
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 04 Oct 2022 09:59:04 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.oftalmed.com.br/files/assets/js/headroom.min.js
108.179.252.178200 OK 1.8 kB URL HTTP/1.1 www.oftalmed.com.br/files/assets/js/headroom.min.js
IP 108.179.252.178:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (5182), with CRLF line terminators
Hash f87f7e4cfa1d48715101f7e7a7dddd9e
4102ca0a01e881fa3af3c766059e8fbbad1c50d6
fc46cb7fac339002332c058b795c746b18e55402ca05c3557e7fef63f937be39
Analyzer Verdict Alert fortinet Phishing
GET /files/assets/js/headroom.min.js HTTP/1.1
Host: www.oftalmed.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.oftalmed.com.br/
Cookie: PHPSESSID=cfdfe4632ba0e4856e835cca033a3972
HTTP/1.1 200 OK
Date: Tue, 04 Oct 2022 09:59:04 GMT
Server: Apache
Last-Modified: Mon, 30 Sep 2019 10:44:29 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 1795
Keep-Alive: timeout=5, max=74
Connection: Keep-Alive
Content-Type: application/javascript
www.oftalmed.com.br/files/assets/js/jQuery.headroom.js
108.179.252.178200 OK 337 B URL HTTP/1.1 www.oftalmed.com.br/files/assets/js/jQuery.headroom.js
IP 108.179.252.178:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with CRLF line terminators
Hash 1c30d6b265d5f510054e34f0cce4ddbb
704584fe6b46f44e59495b8309f8555ff49e57b2
08c6e2dfca7abf6c0d5a5acebaa1de6e1017451d2cb018c467af3d93a6e2254f
Analyzer Verdict Alert fortinet Phishing
GET /files/assets/js/jQuery.headroom.js HTTP/1.1
Host: www.oftalmed.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.oftalmed.com.br/
Cookie: PHPSESSID=cfdfe4632ba0e4856e835cca033a3972
HTTP/1.1 200 OK
Date: Tue, 04 Oct 2022 09:59:04 GMT
Server: Apache
Last-Modified: Mon, 30 Sep 2019 10:44:29 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 337
Keep-Alive: timeout=5, max=74
Connection: Keep-Alive
Content-Type: application/javascript
www.oftalmed.com.br/files/js/jquery.maskedinput.js
108.179.252.178200 OK 2.7 kB URL HTTP/1.1 www.oftalmed.com.br/files/js/jquery.maskedinput.js
IP 108.179.252.178:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with CRLF line terminators
Hash 0124c06300084171eb6c96cac595f06a
9241895c27e5de32477eff0b106689600a3ebccd
2228f62adb5293ead3c70deee4d06a47c3f0305b7f3d91f1b1c7c9bdb724aa62
Analyzer Verdict Alert fortinet Phishing
GET /files/js/jquery.maskedinput.js HTTP/1.1
Host: www.oftalmed.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.oftalmed.com.br/
Cookie: PHPSESSID=cfdfe4632ba0e4856e835cca033a3972
HTTP/1.1 200 OK
Date: Tue, 04 Oct 2022 09:59:04 GMT
Server: Apache
Last-Modified: Mon, 30 Sep 2019 10:44:31 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 2678
Keep-Alive: timeout=5, max=72
Connection: Keep-Alive
Content-Type: application/javascript
www.oftalmed.com.br/files/assets/css/geral.css
108.179.252.178200 OK 47 kB URL HTTP/1.1 www.oftalmed.com.br/files/assets/css/geral.css
IP 108.179.252.178:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (65367), with CRLF line terminators
Hash 43599c4eeb46abc109e9061f8c2f94e0
56532cfb61c8fc70dc6eb07873983d10e1c94281
6c2a8ef759f8616da44f6f4c7bcef79e87de4198a80d6d463c79cc7dc9e2249e
GET /files/assets/css/geral.css HTTP/1.1
Host: www.oftalmed.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.oftalmed.com.br/
Cookie: PHPSESSID=cfdfe4632ba0e4856e835cca033a3972
HTTP/1.1 200 OK
Date: Tue, 04 Oct 2022 09:59:04 GMT
Server: Apache
Upgrade: h2,h2c
Connection: Upgrade, Keep-Alive
Last-Modified: Mon, 30 Sep 2019 10:44:29 GMT
Accept-Ranges: none
Vary: Accept-Encoding
Content-Encoding: gzip
Keep-Alive: timeout=5, max=75
Transfer-Encoding: chunked
Content-Type: text/css
www.oftalmed.com.br/files/assets/sass/biblioteca/bootstrap/javascripts/bootstrap.min.js
108.179.252.178200 OK 14 kB URL HTTP/1.1 www.oftalmed.com.br/files/assets/sass/biblioteca/bootstrap/javascripts/bootstrap.min.js
IP 108.179.252.178:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (32033), with CRLF line terminators
Hash 0a2bb695c4a9fb8f5e7576fe605472fa
2a477afdd17236fe149ff6f8a8c774cc2f76f469
1a85ee685c43e7366a304e478240c7dfda27e29d9081fdb45d1bfa2060e46b8f
Analyzer Verdict Alert fortinet Phishing
GET /files/assets/sass/biblioteca/bootstrap/javascripts/bootstrap.min.js HTTP/1.1
Host: www.oftalmed.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.oftalmed.com.br/
Cookie: PHPSESSID=cfdfe4632ba0e4856e835cca033a3972
HTTP/1.1 200 OK
Date: Tue, 04 Oct 2022 09:59:04 GMT
Server: Apache
Last-Modified: Mon, 30 Sep 2019 10:44:29 GMT
Accept-Ranges: none
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 14401
Keep-Alive: timeout=5, max=74
Connection: Keep-Alive
Content-Type: application/javascript
push.services.mozilla.com/
34.213.140.56101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 34.213.140.56:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: VspCPOXJhp7NniuhdXwlvw==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: Mzhvg9ThTofrgnmG6UmwzUo4vaQ=
www.oftalmed.com.br/files/assets/js/script.js
108.179.252.178200 OK 887 B URL HTTP/1.1 www.oftalmed.com.br/files/assets/js/script.js
IP 108.179.252.178:0
ASN #46606 UNIFIEDLAYER-AS-1
File type Unicode text, UTF-8 text, with CRLF line terminators
Hash 4cd7b6f7eed0244411a61764a98b1d6a
105ea5960efd1ae31af0f96108c80898ae8ed99f
9704ddeff80caed0c7c4089728f87ecb969597cf4c3b75d48ebc1a0313bf55db
Analyzer Verdict Alert fortinet Phishing
GET /files/assets/js/script.js HTTP/1.1
Host: www.oftalmed.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.oftalmed.com.br/
Cookie: PHPSESSID=cfdfe4632ba0e4856e835cca033a3972
HTTP/1.1 200 OK
Date: Tue, 04 Oct 2022 09:59:04 GMT
Server: Apache
Last-Modified: Mon, 30 Sep 2019 10:44:29 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 887
Keep-Alive: timeout=5, max=73
Connection: Keep-Alive
Content-Type: application/javascript
www.oftalmed.com.br/files/assets/js/shadowbox.js
108.179.252.178200 OK 25 kB URL HTTP/1.1 www.oftalmed.com.br/files/assets/js/shadowbox.js
IP 108.179.252.178:0
ASN #46606 UNIFIEDLAYER-AS-1
File type Unicode text, UTF-8 text, with very long lines (28608), with CRLF line terminators
Hash 51367a0a8e7994dd027a4293a7cbc575
112c9b77fac62ecf16257a365b70daae07f82ad6
fcacbb46653e82229755bb8e05bb5c96c9768a34a3f48651ecf3d00341168973
Analyzer Verdict Alert fortinet Phishing
GET /files/assets/js/shadowbox.js HTTP/1.1
Host: www.oftalmed.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.oftalmed.com.br/
Cookie: PHPSESSID=cfdfe4632ba0e4856e835cca033a3972
HTTP/1.1 200 OK
Date: Tue, 04 Oct 2022 09:59:04 GMT
Server: Apache
Last-Modified: Mon, 30 Sep 2019 10:44:29 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Keep-Alive: timeout=5, max=74
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: application/javascript
www.oftalmed.com.br/files/assets/js/jquery-1.10.2.min.js
108.179.252.178200 OK 41 kB URL HTTP/1.1 www.oftalmed.com.br/files/assets/js/jquery-1.10.2.min.js
IP 108.179.252.178:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (32072), with CRLF line terminators
Hash 1218be55d7b35660213a5f941293947e
44a269abad69d3636c1a9290032b070b92f0df8a
76ca92e90d3e7d85118fd58c0e12ed447c1163cb3cd2a91586e8a763280a5e9c
Analyzer Verdict Alert fortinet Phishing
GET /files/assets/js/jquery-1.10.2.min.js HTTP/1.1
Host: www.oftalmed.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.oftalmed.com.br/
Cookie: PHPSESSID=cfdfe4632ba0e4856e835cca033a3972
HTTP/1.1 200 OK
Date: Tue, 04 Oct 2022 09:59:04 GMT
Server: Apache
Last-Modified: Mon, 30 Sep 2019 10:44:29 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Keep-Alive: timeout=5, max=73
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: application/javascript
www.oftalmed.com.br/files/assets/img/icon-escurece-layout.png
108.179.252.178200 OK 1.4 kB URL HTTP/1.1 www.oftalmed.com.br/files/assets/img/icon-escurece-layout.png
IP 108.179.252.178:0
ASN #46606 UNIFIEDLAYER-AS-1
File type PNG image data, 26 x 26, 8-bit/color RGBA, non-interlaced\012- data
Hash e4276946080b0626e763ec16252be843
a885ad2eaa6e6a9976c5c70c5af4139437275d07
72faa9f5cc38bbd1c081599731a82f252a9805486bfa182926798fce8c0151f3
GET /files/assets/img/icon-escurece-layout.png HTTP/1.1
Host: www.oftalmed.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.oftalmed.com.br/
Cookie: PHPSESSID=cfdfe4632ba0e4856e835cca033a3972
HTTP/1.1 200 OK
Date: Tue, 04 Oct 2022 09:59:05 GMT
Server: Apache
Last-Modified: Mon, 30 Sep 2019 10:44:29 GMT
Accept-Ranges: bytes
Content-Length: 1352
Keep-Alive: timeout=5, max=72
Connection: Keep-Alive
Content-Type: image/png
www.oftalmed.com.br/timthumb.php?src=/http://www.oftalmed.com.br/files/images/home/timthumb2.jpg&w=520&h=488
108.179.252.178200 OK 34 kB URL HTTP/1.1 www.oftalmed.com.br/timthumb.php?src=/http://www.oftalmed.com.br/files/images/home/timthumb2.jpg&w=520&h=488
IP 108.179.252.178:0
ASN #46606 UNIFIEDLAYER-AS-1
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 90", baseline, precision 8, 520x488, components 3\012- data
Hash f4ea48717bbfc738a245b7529ea88da5
3fcf9e670c5b3a186ff2a75cc0d8e5592cf0d848
77de496ee1305e48d09747904392309bac20e5c4f1354d7dcb4d2312f3976ab0
GET /timthumb.php?src=/http://www.oftalmed.com.br/files/images/home/timthumb2.jpg&w=520&h=488 HTTP/1.1
Host: www.oftalmed.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.oftalmed.com.br/
Cookie: PHPSESSID=cfdfe4632ba0e4856e835cca033a3972
HTTP/1.1 200 OK
Date: Tue, 04 Oct 2022 09:59:05 GMT
Server: Apache
Accept-Ranges: none
Cache-Control: max-age=864000, must-revalidate
Expires: Fri, 14 Oct 2022 09:59:05 GMT
Last-Modified: Tue, 04 Oct 2022 09:59:05 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
Keep-Alive: timeout=5, max=71
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: image/jpeg
www.oftalmed.com.br/timthumb.php?src=/http://www.oftalmed.com.br/files/images/home/oftalmed3.jpg&w=520&h=488
108.179.252.178200 OK 77 kB URL HTTP/1.1 www.oftalmed.com.br/timthumb.php?src=/http://www.oftalmed.com.br/files/images/home/oftalmed3.jpg&w=520&h=488
IP 108.179.252.178:0
ASN #46606 UNIFIEDLAYER-AS-1
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 90", baseline, precision 8, 520x488, components 3\012- data
Hash b270beb83e30b12cf1925791f36c1757
4c66ee783fcdafa924e58adc3e45dd73face3b22
f7d79da31b1c15b0ef5fde101d955eb7b7f0a4b9dc02ebaa0be6b0462ac0662d
GET /timthumb.php?src=/http://www.oftalmed.com.br/files/images/home/oftalmed3.jpg&w=520&h=488 HTTP/1.1
Host: www.oftalmed.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.oftalmed.com.br/
Cookie: PHPSESSID=cfdfe4632ba0e4856e835cca033a3972
HTTP/1.1 200 OK
Date: Tue, 04 Oct 2022 09:59:05 GMT
Server: Apache
Accept-Ranges: none
Cache-Control: max-age=864000, must-revalidate
Expires: Fri, 14 Oct 2022 09:59:05 GMT
Last-Modified: Tue, 04 Oct 2022 09:59:05 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
Keep-Alive: timeout=5, max=74
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: image/jpeg
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash 0ac04f7c449093fff4f846a7ae56cd4f
50aeb5664545a0dec4173920a274e906bcbcdf6f
18eff2566317aba7b70ee558e8cba42231eb4eae31e903501dc122c751d6993b
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 04 Oct 2022 09:59:05 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.oftalmed.com.br/timthumb.php?src=/http://www.oftalmed.com.br/files/images/home/macro-blue-eye-with-lots-of-details-PGBM3SC.jpg&w=520&h=488
108.179.252.178200 OK 65 kB URL HTTP/1.1 www.oftalmed.com.br/timthumb.php?src=/http://www.oftalmed.com.br/files/images/home/macro-blue-eye-with-lots-of-details-PGBM3SC.jpg&w=520&h=488
IP 108.179.252.178:0
ASN #46606 UNIFIEDLAYER-AS-1
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 90", baseline, precision 8, 520x488, components 3\012- data
Hash 61ca1d2c0ad71347a41e8d57e22e0604
1b90f8559aa43767dd87ecfe8add11e10e96ff77
d2446ee4d52cbfbce4143ac70514bcb153122def3000254c480785b1d51bcb51
GET /timthumb.php?src=/http://www.oftalmed.com.br/files/images/home/macro-blue-eye-with-lots-of-details-PGBM3SC.jpg&w=520&h=488 HTTP/1.1
Host: www.oftalmed.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.oftalmed.com.br/
Cookie: PHPSESSID=cfdfe4632ba0e4856e835cca033a3972
HTTP/1.1 200 OK
Date: Tue, 04 Oct 2022 09:59:05 GMT
Server: Apache
Accept-Ranges: none
Cache-Control: max-age=864000, must-revalidate
Expires: Fri, 14 Oct 2022 09:59:05 GMT
Last-Modified: Tue, 04 Oct 2022 09:59:05 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
Keep-Alive: timeout=5, max=73
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: image/jpeg
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash 0ac04f7c449093fff4f846a7ae56cd4f
50aeb5664545a0dec4173920a274e906bcbcdf6f
18eff2566317aba7b70ee558e8cba42231eb4eae31e903501dc122c751d6993b
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 04 Oct 2022 09:59:05 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.oftalmed.com.br/timthumb.php?src=/http://www.oftalmed.com.br/files/images/home/businesswoman-rubbing-tired-eyes-at-office-P7C5XSY.jpg&w=520&h=488
108.179.252.178200 OK 40 kB URL HTTP/1.1 www.oftalmed.com.br/timthumb.php?src=/http://www.oftalmed.com.br/files/images/home/businesswoman-rubbing-tired-eyes-at-office-P7C5XSY.jpg&w=520&h=488
IP 108.179.252.178:0
ASN #46606 UNIFIEDLAYER-AS-1
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 90", baseline, precision 8, 520x488, components 3\012- data
Hash 0c1a983f66f12ce173bdb91181acd2cf
1120074bc77cb7d3d3e7207cb8ad8199e8edcae0
f9c228e68275a2d5e2d4cca646fd29ac56a65a1b09badb5154b471a05f7a1c44
GET /timthumb.php?src=/http://www.oftalmed.com.br/files/images/home/businesswoman-rubbing-tired-eyes-at-office-P7C5XSY.jpg&w=520&h=488 HTTP/1.1
Host: www.oftalmed.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.oftalmed.com.br/
Cookie: PHPSESSID=cfdfe4632ba0e4856e835cca033a3972
HTTP/1.1 200 OK
Date: Tue, 04 Oct 2022 09:59:05 GMT
Server: Apache
Accept-Ranges: none
Cache-Control: max-age=864000, must-revalidate
Expires: Fri, 14 Oct 2022 09:59:05 GMT
Last-Modified: Tue, 04 Oct 2022 09:59:05 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
Keep-Alive: timeout=5, max=72
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: image/jpeg
www.oftalmed.com.br/timthumb.php?src=/http://www.oftalmed.com.br/files/images/home/IMG_7723.JPG&w=520&h=488
108.179.252.178200 OK 66 kB URL HTTP/1.1 www.oftalmed.com.br/timthumb.php?src=/http://www.oftalmed.com.br/files/images/home/IMG_7723.JPG&w=520&h=488
IP 108.179.252.178:0
ASN #46606 UNIFIEDLAYER-AS-1
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 90", baseline, precision 8, 520x488, components 3\012- data
Hash f9f67555564f5c9fa6c6f23df31e10a3
0360d83d1ff7db67cba953c20c49487ef8c868af
8fb3d1b08d8fc92e403fa13ce14f10949302226e29e4e67c14b9ce654d267285
GET /timthumb.php?src=/http://www.oftalmed.com.br/files/images/home/IMG_7723.JPG&w=520&h=488 HTTP/1.1
Host: www.oftalmed.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.oftalmed.com.br/
Cookie: PHPSESSID=cfdfe4632ba0e4856e835cca033a3972
HTTP/1.1 200 OK
Date: Tue, 04 Oct 2022 09:59:05 GMT
Server: Apache
Accept-Ranges: none
Cache-Control: max-age=864000, must-revalidate
Expires: Fri, 14 Oct 2022 09:59:05 GMT
Last-Modified: Tue, 04 Oct 2022 09:59:05 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
Keep-Alive: timeout=5, max=73
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: image/jpeg
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash 0ac04f7c449093fff4f846a7ae56cd4f
50aeb5664545a0dec4173920a274e906bcbcdf6f
18eff2566317aba7b70ee558e8cba42231eb4eae31e903501dc122c751d6993b
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 04 Oct 2022 09:59:05 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2
216.58.207.195200 OK 16 kB URL HTTP/2 fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2
IP 216.58.207.195:0
File type Web Open Font Format (Version 2), TrueType, length 15744, version 1.0\012- data
Hash 15d9f621c3bd1599f0169dcf0bd5e63e
7ca9c5967f3bb8bffeab24b639b49c1e7d03fa52
f6734f8177112c0839b961f96d813fcb189d81b60e96c33278c1983b6f419615
GET /s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://www.oftalmed.com.br
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15744
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 28 Sep 2022 19:34:08 GMT
expires: Thu, 28 Sep 2023 19:34:08 GMT
cache-control: public, max-age=31536000
age: 483897
last-modified: Wed, 11 May 2022 19:24:48 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmSU5fBBc4.woff2
216.58.207.195200 OK 16 kB URL HTTP/2 fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmSU5fBBc4.woff2
IP 216.58.207.195:0
File type Web Open Font Format (Version 2), TrueType, length 15740, version 1.0\012- data
Hash b9c29351c46f3e8c8631c4002457f48a
e57e59c5780995ff2937ab2b511a769212974a87
f75911313e1c7802c23345ab57e754d87801581706780c993fb23ff4e0fe62ef
GET /s/roboto/v30/KFOlCnqEu92Fr1MmSU5fBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://www.oftalmed.com.br
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15740
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 28 Sep 2022 19:34:21 GMT
expires: Thu, 28 Sep 2023 19:34:21 GMT
cache-control: public, max-age=31536000
age: 483884
last-modified: Wed, 11 May 2022 19:24:56 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmEU9fBBc4.woff2
216.58.207.195200 OK 16 kB URL HTTP/2 fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmEU9fBBc4.woff2
IP 216.58.207.195:0
File type Web Open Font Format (Version 2), TrueType, length 15920, version 1.0\012- data
Hash 3a44e06eb954b96aa043227f3534189d
23cef6993ddb2b2979e8e7647fc3763694e2ba7d
b019538234514166ec7665359d097403358f8a4c991901983922fb4d56989f1e
GET /s/roboto/v30/KFOlCnqEu92Fr1MmEU9fBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://www.oftalmed.com.br
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15920
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sun, 02 Oct 2022 01:31:40 GMT
expires: Mon, 02 Oct 2023 01:31:40 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 11 May 2022 19:24:45 GMT
content-type: font/woff2
age: 203245
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash 0ac04f7c449093fff4f846a7ae56cd4f
50aeb5664545a0dec4173920a274e906bcbcdf6f
18eff2566317aba7b70ee558e8cba42231eb4eae31e903501dc122c751d6993b
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 04 Oct 2022 09:59:05 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.oftalmed.com.br/files/assets/img/img-agende.png
108.179.252.178200 OK 49 kB URL HTTP/1.1 www.oftalmed.com.br/files/assets/img/img-agende.png
IP 108.179.252.178:0
ASN #46606 UNIFIEDLAYER-AS-1
File type PNG image data, 326 x 203, 8-bit/color RGB, non-interlaced\012- data
Hash 82d3b852beb43b4310402da3e626ef6f
a81e0bc7445c872fd2c94a566e8566b51304678e
018822d30258ec503ff2f6a2744623ae47000e2d3341f1969342247678d3a247
GET /files/assets/img/img-agende.png HTTP/1.1
Host: www.oftalmed.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.oftalmed.com.br/files/assets/css/geral.css
Cookie: PHPSESSID=cfdfe4632ba0e4856e835cca033a3972
HTTP/1.1 200 OK
Date: Tue, 04 Oct 2022 09:59:05 GMT
Server: Apache
Last-Modified: Mon, 30 Sep 2019 10:44:29 GMT
Accept-Ranges: bytes
Content-Length: 49111
Keep-Alive: timeout=5, max=70
Connection: Keep-Alive
Content-Type: image/png
www.oftalmed.com.br/files/assets/img/img-conheca-medico.png
108.179.252.178200 OK 50 kB URL HTTP/1.1 www.oftalmed.com.br/files/assets/img/img-conheca-medico.png
IP 108.179.252.178:0
ASN #46606 UNIFIEDLAYER-AS-1
File type PNG image data, 326 x 203, 8-bit/color RGB, non-interlaced\012- data
Hash 605414e140e6336e0f6b05a14676c2ed
eb9b8d995fdad8e785223dcb5b95803d662a920f
19cd9a32d53d7d3d97d745292c0a32ba7e838e45089a2a14d539c8c9a342da32
GET /files/assets/img/img-conheca-medico.png HTTP/1.1
Host: www.oftalmed.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.oftalmed.com.br/files/assets/css/geral.css
Cookie: PHPSESSID=cfdfe4632ba0e4856e835cca033a3972
HTTP/1.1 200 OK
Date: Tue, 04 Oct 2022 09:59:05 GMT
Server: Apache
Last-Modified: Mon, 30 Sep 2019 10:44:29 GMT
Accept-Ranges: bytes
Content-Length: 49984
Keep-Alive: timeout=5, max=73
Connection: Keep-Alive
Content-Type: image/png
www.oftalmed.com.br/files/assets/img/onda-localizacao.png
108.179.252.178200 OK 8.6 kB URL HTTP/1.1 www.oftalmed.com.br/files/assets/img/onda-localizacao.png
IP 108.179.252.178:0
ASN #46606 UNIFIEDLAYER-AS-1
File type PNG image data, 297 x 220, 8-bit/color RGBA, non-interlaced\012- data
Hash f4a5b45b514497144f64c2e6f86ea94b
dc9450f5e1602a9f52acac67a7b561664ed69bdd
3e270663430c32355b27e7bfc01d0a371372e77d98f130e0fa74be0fa49aa6f2
GET /files/assets/img/onda-localizacao.png HTTP/1.1
Host: www.oftalmed.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.oftalmed.com.br/files/assets/css/geral.css
Cookie: PHPSESSID=cfdfe4632ba0e4856e835cca033a3972
HTTP/1.1 200 OK
Date: Tue, 04 Oct 2022 09:59:05 GMT
Server: Apache
Last-Modified: Mon, 30 Sep 2019 10:44:29 GMT
Accept-Ranges: bytes
Content-Length: 8557
Keep-Alive: timeout=5, max=71
Connection: Keep-Alive
Content-Type: image/png
www.oftalmed.com.br/video.jpg
108.179.252.178302 Moved Temporarily 0 B URL HTTP/1.1 www.oftalmed.com.br/video.jpg
IP 108.179.252.178:0
ASN #46606 UNIFIEDLAYER-AS-1
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /video.jpg HTTP/1.1
Host: www.oftalmed.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.oftalmed.com.br/
Cookie: PHPSESSID=cfdfe4632ba0e4856e835cca033a3972
HTTP/1.1 302 Moved Temporarily
Date: Tue, 04 Oct 2022 09:59:05 GMT
Server: Apache
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate
Pragma: no-cache
Location: http://www.oftalmed.com.br/erro/page_404
Content-Length: 0
Keep-Alive: timeout=5, max=72
Connection: Keep-Alive
Content-Type: text/html; charset=UTF-8
www.oftalmed.com.br/files/assets/fonts/fontawesome-webfont.woff2?v=4.7.0
108.179.252.178200 OK 77 kB URL HTTP/1.1 www.oftalmed.com.br/files/assets/fonts/fontawesome-webfont.woff2?v=4.7.0
IP 108.179.252.178:0
ASN #46606 UNIFIEDLAYER-AS-1
File type Web Open Font Format (Version 2), TrueType, length 77160, version 4.459\012- data
Hash af7ae505a9eed503f8b8e6982036873e
d6f48cba7d076fb6f2fd6ba993a75b9dc1ecbf0c
2adefcbc041e7d18fcf2d417879dc5a09997aa64d675b7a3c4b6ce33da13f3fe
Analyzer Verdict Alert fortinet Phishing
GET /files/assets/fonts/fontawesome-webfont.woff2?v=4.7.0 HTTP/1.1
Host: www.oftalmed.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: http://www.oftalmed.com.br/files/assets/css/geral.css
Cookie: PHPSESSID=cfdfe4632ba0e4856e835cca033a3972
HTTP/1.1 200 OK
Date: Tue, 04 Oct 2022 09:59:05 GMT
Server: Apache
Last-Modified: Mon, 30 Sep 2019 10:44:29 GMT
Accept-Ranges: bytes
Content-Length: 77160
Keep-Alive: timeout=5, max=71
Connection: Keep-Alive
Content-Type: font/woff2
www.oftalmed.com.br/files/assets/img/img-convenios-atendidos.png
108.179.252.178200 OK 71 kB URL HTTP/1.1 www.oftalmed.com.br/files/assets/img/img-convenios-atendidos.png
IP 108.179.252.178:0
ASN #46606 UNIFIEDLAYER-AS-1
File type PNG image data, 326 x 203, 8-bit/color RGB, non-interlaced\012- data
Hash 6650d09310265770cf343a95b8e649ed
1698a04041ee1186a76c9e667a47b7691c7a8d3b
b00a7659e035193b8250f456f36d26561eeb9d839ea09899347b831f94c4237b
GET /files/assets/img/img-convenios-atendidos.png HTTP/1.1
Host: www.oftalmed.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.oftalmed.com.br/files/assets/css/geral.css
Cookie: PHPSESSID=cfdfe4632ba0e4856e835cca033a3972
HTTP/1.1 200 OK
Date: Tue, 04 Oct 2022 09:59:05 GMT
Server: Apache
Last-Modified: Mon, 30 Sep 2019 10:44:29 GMT
Accept-Ranges: bytes
Content-Length: 71414
Keep-Alive: timeout=5, max=72
Connection: Keep-Alive
Content-Type: image/png
www.oftalmed.com.br/files/assets/img/logo-oftalmed.jpg
108.179.252.178200 OK 23 kB URL HTTP/1.1 www.oftalmed.com.br/files/assets/img/logo-oftalmed.jpg
IP 108.179.252.178:0
ASN #46606 UNIFIEDLAYER-AS-1
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=12, height=53, bps=158, PhotometricIntepretation=RGB, orientation=upper-left, width=210], progressive, precision 8, 210x53, components 3\012- data
Hash 4dc92ad6a68cdd6fe1e8bd9bce7c3a1b
15d2b6d54b11ebbf5cec91ce92582da340da96c9
ad214ef6357628f9d03eea65185712a48f6130bd70fb3c12395b6701e4134f36
GET /files/assets/img/logo-oftalmed.jpg HTTP/1.1
Host: www.oftalmed.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.oftalmed.com.br/
Cookie: PHPSESSID=cfdfe4632ba0e4856e835cca033a3972
HTTP/1.1 200 OK
Date: Tue, 04 Oct 2022 09:59:05 GMT
Server: Apache
Last-Modified: Mon, 30 Sep 2019 10:44:29 GMT
Accept-Ranges: bytes
Content-Length: 23206
Keep-Alive: timeout=5, max=70
Connection: Keep-Alive
Content-Type: image/jpeg
www.oftalmed.com.br/files/assets/img/img-servicos.jpg
108.179.252.178200 OK 12 kB URL HTTP/1.1 www.oftalmed.com.br/files/assets/img/img-servicos.jpg
IP 108.179.252.178:0
ASN #46606 UNIFIEDLAYER-AS-1
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 204x180, components 3\012- data
Hash fc9653f7776c54b47190c6111ecda1e5
aba09f5dbbf91dc7216eb51631c9dff833c6817e
b13d909663f0f4222fe65a412f260ea49f58a838ac76fda2f3c163a0d58d4f7e
GET /files/assets/img/img-servicos.jpg HTTP/1.1
Host: www.oftalmed.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.oftalmed.com.br/
Cookie: PHPSESSID=cfdfe4632ba0e4856e835cca033a3972
HTTP/1.1 200 OK
Date: Tue, 04 Oct 2022 09:59:05 GMT
Server: Apache
Last-Modified: Mon, 30 Sep 2019 10:44:29 GMT
Accept-Ranges: bytes
Content-Length: 11470
Keep-Alive: timeout=5, max=71
Connection: Keep-Alive
Content-Type: image/jpeg
www.oftalmed.com.br/timthumb.php?src=/http://www.oftalmed.com.br/files/images/especiais/infografico_setembro_2018_menor.png&w=204&h=180
108.179.252.178200 OK 60 kB URL HTTP/1.1 www.oftalmed.com.br/timthumb.php?src=/http://www.oftalmed.com.br/files/images/especiais/infografico_setembro_2018_menor.png&w=204&h=180
IP 108.179.252.178:0
ASN #46606 UNIFIEDLAYER-AS-1
File type PNG image data, 204 x 180, 8-bit/color RGBA, non-interlaced\012- data
Hash 7561274cf6902e59946ab142e0886080
bd15d74e6976e61499f9da6f30ffb7926f16eca9
6b9bb5e1f2b996bb26f64b4583d1108b544f95f45f969a3dc90a23b0e7c855b4
GET /timthumb.php?src=/http://www.oftalmed.com.br/files/images/especiais/infografico_setembro_2018_menor.png&w=204&h=180 HTTP/1.1
Host: www.oftalmed.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.oftalmed.com.br/
Cookie: PHPSESSID=cfdfe4632ba0e4856e835cca033a3972
HTTP/1.1 200 OK
Date: Tue, 04 Oct 2022 09:59:05 GMT
Server: Apache
Accept-Ranges: none
Cache-Control: max-age=864000, must-revalidate
Expires: Fri, 14 Oct 2022 09:59:05 GMT
Last-Modified: Tue, 04 Oct 2022 09:59:05 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
Keep-Alive: timeout=5, max=70
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: image/png
www.oftalmed.com.br/timthumb.php?src=/http://www.oftalmed.com.br/files/images/quem-somos/Consultorio_1andar_FotoKZ_9.jpg&w=518&h=454
108.179.252.178200 OK 38 kB URL HTTP/1.1 www.oftalmed.com.br/timthumb.php?src=/http://www.oftalmed.com.br/files/images/quem-somos/Consultorio_1andar_FotoKZ_9.jpg&w=518&h=454
IP 108.179.252.178:0
ASN #46606 UNIFIEDLAYER-AS-1
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 90", baseline, precision 8, 518x454, components 3\012- data
Hash 7c7a77e6b28d3e572fc2acbfd9e459d5
51c7836bd58613da5af2a6de6ffafc3f8293ca96
69a79b1ccb14328f74e5d22d314dd6e0eaf4059f08e762e9265287e2a0424ebe
GET /timthumb.php?src=/http://www.oftalmed.com.br/files/images/quem-somos/Consultorio_1andar_FotoKZ_9.jpg&w=518&h=454 HTTP/1.1
Host: www.oftalmed.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.oftalmed.com.br/
Cookie: PHPSESSID=cfdfe4632ba0e4856e835cca033a3972
HTTP/1.1 200 OK
Date: Tue, 04 Oct 2022 09:59:05 GMT
Server: Apache
Accept-Ranges: none
Cache-Control: max-age=864000, must-revalidate
Expires: Fri, 14 Oct 2022 09:59:05 GMT
Last-Modified: Tue, 04 Oct 2022 09:59:05 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
Keep-Alive: timeout=5, max=71
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: image/jpeg
www.oftalmed.com.br/erro/page_404
108.179.252.178200 OK 951 B URL HTTP/1.1 www.oftalmed.com.br/erro/page_404
IP 108.179.252.178:0
ASN #46606 UNIFIEDLAYER-AS-1
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with CRLF line terminators
Hash 896917c709cfe52729410323a5c0cf25
9978685c0cc02543c0c19abc4504b00fddc9172d
9fe53ecdf56a91d70c8b084948ee529f57a8e87e336d76fc7f8801fbe2cdd7c2
Analyzer Verdict Alert fortinet Phishing
GET /erro/page_404 HTTP/1.1
Host: www.oftalmed.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://www.oftalmed.com.br/
Connection: keep-alive
Cookie: PHPSESSID=cfdfe4632ba0e4856e835cca033a3972
HTTP/1.1 200 OK
Date: Tue, 04 Oct 2022 09:59:05 GMT
Server: Apache
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate
Pragma: no-cache
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 951
Keep-Alive: timeout=5, max=69
Connection: Keep-Alive
Content-Type: text/html; charset=UTF-8
www.oftalmed.com.br/timthumb.php?src=/http://www.oftalmed.com.br/files/images/quem-somos/Recepcao_1andar_FotoKZ_3.jpg&w=518&h=454
108.179.252.178200 OK 59 kB URL HTTP/1.1 www.oftalmed.com.br/timthumb.php?src=/http://www.oftalmed.com.br/files/images/quem-somos/Recepcao_1andar_FotoKZ_3.jpg&w=518&h=454
IP 108.179.252.178:0
ASN #46606 UNIFIEDLAYER-AS-1
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 90", baseline, precision 8, 518x454, components 3\012- data
Hash 6947b4ab32010182ee896e86646352a5
4d81afeb27642838a5a9ee822e4ca97aac6fc2ba
1c7edf5faeaa17bd1b9eae93e52633cd4b03a6d61e86031076f94ab9e4ebc6d5
GET /timthumb.php?src=/http://www.oftalmed.com.br/files/images/quem-somos/Recepcao_1andar_FotoKZ_3.jpg&w=518&h=454 HTTP/1.1
Host: www.oftalmed.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.oftalmed.com.br/
Cookie: PHPSESSID=cfdfe4632ba0e4856e835cca033a3972
HTTP/1.1 200 OK
Date: Tue, 04 Oct 2022 09:59:05 GMT
Server: Apache
Accept-Ranges: none
Cache-Control: max-age=864000, must-revalidate
Expires: Fri, 14 Oct 2022 09:59:05 GMT
Last-Modified: Tue, 04 Oct 2022 09:59:05 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
Keep-Alive: timeout=5, max=70
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: image/jpeg
www.oftalmed.com.br/timthumb.php?src=/http://www.oftalmed.com.br/files/images/quem-somos/Consultorio_1andar_FotoKZ_11.jpg&w=518&h=454
108.179.252.178200 OK 37 kB URL HTTP/1.1 www.oftalmed.com.br/timthumb.php?src=/http://www.oftalmed.com.br/files/images/quem-somos/Consultorio_1andar_FotoKZ_11.jpg&w=518&h=454
IP 108.179.252.178:0
ASN #46606 UNIFIEDLAYER-AS-1
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 90", baseline, precision 8, 518x454, components 3\012- data
Hash 35b8643a2cee4e96ed7a1443207f6fda
8b3d776fd17e147898fe82c253b695dcfca41106
9a1c74bf026dfee5f40b33490ed96d37045c8db4fb446803f5a84c7eac316876
GET /timthumb.php?src=/http://www.oftalmed.com.br/files/images/quem-somos/Consultorio_1andar_FotoKZ_11.jpg&w=518&h=454 HTTP/1.1
Host: www.oftalmed.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.oftalmed.com.br/
Cookie: PHPSESSID=cfdfe4632ba0e4856e835cca033a3972
HTTP/1.1 200 OK
Date: Tue, 04 Oct 2022 09:59:05 GMT
Server: Apache
Accept-Ranges: none
Cache-Control: max-age=864000, must-revalidate
Expires: Fri, 14 Oct 2022 09:59:05 GMT
Last-Modified: Tue, 04 Oct 2022 09:59:05 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
Keep-Alive: timeout=5, max=69
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: image/jpeg
www.oftalmed.com.br/timthumb.php?src=/http://www.oftalmed.com.br/files/images/quem-somos/SalaIOLmaster_CDO_FotoKZ_3.jpg&w=518&h=454
108.179.252.178200 OK 53 kB URL HTTP/1.1 www.oftalmed.com.br/timthumb.php?src=/http://www.oftalmed.com.br/files/images/quem-somos/SalaIOLmaster_CDO_FotoKZ_3.jpg&w=518&h=454
IP 108.179.252.178:0
ASN #46606 UNIFIEDLAYER-AS-1
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 90", baseline, precision 8, 518x454, components 3\012- data
Hash f732a1bd6486e227b4ceb70c4a6d0541
6cd4244c25cc751febc3d0c885075bae82288a03
0e66cf7cb816d2da7fbd0ec89baa6387e45020bfe62e737920f070567465f951
GET /timthumb.php?src=/http://www.oftalmed.com.br/files/images/quem-somos/SalaIOLmaster_CDO_FotoKZ_3.jpg&w=518&h=454 HTTP/1.1
Host: www.oftalmed.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.oftalmed.com.br/
Cookie: PHPSESSID=cfdfe4632ba0e4856e835cca033a3972
HTTP/1.1 200 OK
Date: Tue, 04 Oct 2022 09:59:05 GMT
Server: Apache
Accept-Ranges: none
Cache-Control: max-age=864000, must-revalidate
Expires: Fri, 14 Oct 2022 09:59:05 GMT
Last-Modified: Tue, 04 Oct 2022 09:59:05 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
Keep-Alive: timeout=5, max=70
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: image/jpeg
www.oftalmed.com.br/timthumb.php?src=/http://www.oftalmed.com.br/files/images/quem-somos/SalaIOLmaster_CDO_FotoKZ_5.jpg&w=518&h=454
108.179.252.178200 OK 50 kB URL HTTP/1.1 www.oftalmed.com.br/timthumb.php?src=/http://www.oftalmed.com.br/files/images/quem-somos/SalaIOLmaster_CDO_FotoKZ_5.jpg&w=518&h=454
IP 108.179.252.178:0
ASN #46606 UNIFIEDLAYER-AS-1
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 90", baseline, precision 8, 518x454, components 3\012- data
Hash 81019e53a73028eaf232ed738888cc38
18ef677340c7e0c518aa0efd51d1bdbb80b9b17d
0c0753fe81842963a11015609007efbe18f28180fc8b20aa1f3cca06033eb406
GET /timthumb.php?src=/http://www.oftalmed.com.br/files/images/quem-somos/SalaIOLmaster_CDO_FotoKZ_5.jpg&w=518&h=454 HTTP/1.1
Host: www.oftalmed.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.oftalmed.com.br/
Cookie: PHPSESSID=cfdfe4632ba0e4856e835cca033a3972
HTTP/1.1 200 OK
Date: Tue, 04 Oct 2022 09:59:05 GMT
Server: Apache
Accept-Ranges: none
Cache-Control: max-age=864000, must-revalidate
Expires: Fri, 14 Oct 2022 09:59:05 GMT
Last-Modified: Tue, 04 Oct 2022 09:59:05 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
Keep-Alive: timeout=5, max=68
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: image/jpeg
www.oftalmed.com.br/timthumb.php?src=/http://www.oftalmed.com.br/files/images/quem-somos/Fachada_CDO_FotoKZ_2.jpg&w=518&h=454
108.179.252.178200 OK 43 kB URL HTTP/1.1 www.oftalmed.com.br/timthumb.php?src=/http://www.oftalmed.com.br/files/images/quem-somos/Fachada_CDO_FotoKZ_2.jpg&w=518&h=454
IP 108.179.252.178:0
ASN #46606 UNIFIEDLAYER-AS-1
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 90", baseline, precision 8, 518x454, components 3\012- data
Hash 88c77c7dd640e1276c4908dbe07ae372
10e8b306dc117447e7845f619c51bd4282737c20
b52ea2861addbdd553e58c124fd045b7bd2754545502ac38b4743896295ee659
GET /timthumb.php?src=/http://www.oftalmed.com.br/files/images/quem-somos/Fachada_CDO_FotoKZ_2.jpg&w=518&h=454 HTTP/1.1
Host: www.oftalmed.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.oftalmed.com.br/
Cookie: PHPSESSID=cfdfe4632ba0e4856e835cca033a3972
HTTP/1.1 200 OK
Date: Tue, 04 Oct 2022 09:59:05 GMT
Server: Apache
Accept-Ranges: none
Cache-Control: max-age=864000, must-revalidate
Expires: Fri, 14 Oct 2022 09:59:05 GMT
Last-Modified: Tue, 04 Oct 2022 09:59:05 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
Keep-Alive: timeout=5, max=69
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: image/jpeg
www.oftalmed.com.br/timthumb.php?src=/http://www.oftalmed.com.br/files/images/quem-somos/Consult%C3%B3rios_Taguatinga_FotoKZ_8.jpg&w=518&h=454
108.179.252.178400 Bad Request 258 B URL HTTP/1.1 www.oftalmed.com.br/timthumb.php?src=/http://www.oftalmed.com.br/files/images/quem-somos/Consult%C3%B3rios_Taguatinga_FotoKZ_8.jpg&w=518&h=454
IP 108.179.252.178:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (321), with no line terminators
Hash c028a8e4b905537523ead15f6ab87566
ad98607e6a4185e4928ee11e9037a34207f85c4a
1ec5dba905bcdb87d869eab34f8bf6bb64ea6a75c45d0809dcdd0402f2bdf510
GET /timthumb.php?src=/http://www.oftalmed.com.br/files/images/quem-somos/Consult%C3%B3rios_Taguatinga_FotoKZ_8.jpg&w=518&h=454 HTTP/1.1
Host: www.oftalmed.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.oftalmed.com.br/
Cookie: PHPSESSID=cfdfe4632ba0e4856e835cca033a3972
HTTP/1.1 400 Bad Request
Date: Tue, 04 Oct 2022 09:59:05 GMT
Server: Apache
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 258
Connection: close
Content-Type: text/html; charset=UTF-8
www.oftalmed.com.br/timthumb.php?src=/http://www.oftalmed.com.br/files/images/quem-somos/Consult%C3%B3rios_Taguatinga_FotoKZ_3.jpg&w=518&h=454
108.179.252.178400 Bad Request 258 B URL HTTP/1.1 www.oftalmed.com.br/timthumb.php?src=/http://www.oftalmed.com.br/files/images/quem-somos/Consult%C3%B3rios_Taguatinga_FotoKZ_3.jpg&w=518&h=454
IP 108.179.252.178:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (321), with no line terminators
Hash 95642aa29843c64960e6d30d4b256e7b
7297c0ba3a5bac14347a49b6d961479339ae992e
0b246dfb69b9294959268cb7af4bc433c0e02749c10b8cbd2a39422892c24e85
GET /timthumb.php?src=/http://www.oftalmed.com.br/files/images/quem-somos/Consult%C3%B3rios_Taguatinga_FotoKZ_3.jpg&w=518&h=454 HTTP/1.1
Host: www.oftalmed.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.oftalmed.com.br/
Cookie: PHPSESSID=cfdfe4632ba0e4856e835cca033a3972
HTTP/1.1 400 Bad Request
Date: Tue, 04 Oct 2022 09:59:05 GMT
Server: Apache
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 258
Connection: close
Content-Type: text/html; charset=UTF-8
www.oftalmed.com.br/timthumb.php?src=/http://www.oftalmed.com.br/files/images/quem-somos/PreExame_Taguatinga_FotoKZ_1.jpg&w=518&h=454
108.179.252.178200 OK 57 kB URL HTTP/1.1 www.oftalmed.com.br/timthumb.php?src=/http://www.oftalmed.com.br/files/images/quem-somos/PreExame_Taguatinga_FotoKZ_1.jpg&w=518&h=454
IP 108.179.252.178:0
ASN #46606 UNIFIEDLAYER-AS-1
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 90", baseline, precision 8, 518x454, components 3\012- data
Hash 6b3e5f44aec7fb198617a5afe6e6eed0
f735d7f0610cb284bceff1b65d97ab21e5b59996
94efb8ceb83414823c17c6eda771ded3723f5b6522e2221a4ef21c79658da12f
GET /timthumb.php?src=/http://www.oftalmed.com.br/files/images/quem-somos/PreExame_Taguatinga_FotoKZ_1.jpg&w=518&h=454 HTTP/1.1
Host: www.oftalmed.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.oftalmed.com.br/
Cookie: PHPSESSID=cfdfe4632ba0e4856e835cca033a3972
HTTP/1.1 200 OK
Date: Tue, 04 Oct 2022 09:59:05 GMT
Server: Apache
Accept-Ranges: none
Cache-Control: max-age=864000, must-revalidate
Expires: Fri, 14 Oct 2022 09:59:05 GMT
Last-Modified: Tue, 04 Oct 2022 09:59:05 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
Keep-Alive: timeout=5, max=67
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: image/jpeg
www.oftalmed.com.br/timthumb.php?src=/http://www.oftalmed.com.br/files/images/quem-somos/Recepcao_Taguatinga_FotoKZ_4.jpg&w=518&h=454
108.179.252.178200 OK 64 kB URL HTTP/1.1 www.oftalmed.com.br/timthumb.php?src=/http://www.oftalmed.com.br/files/images/quem-somos/Recepcao_Taguatinga_FotoKZ_4.jpg&w=518&h=454
IP 108.179.252.178:0
ASN #46606 UNIFIEDLAYER-AS-1
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 90", baseline, precision 8, 518x454, components 3\012- data
Hash f4bc4fb04152868bd96c44e657123c95
67c2c4165b77279ca8f57d7989eb334bc1e409db
947f661e71f7c13daeeebd69b36545f44945e1e9bdce191dbd481941fbd2dfe3
GET /timthumb.php?src=/http://www.oftalmed.com.br/files/images/quem-somos/Recepcao_Taguatinga_FotoKZ_4.jpg&w=518&h=454 HTTP/1.1
Host: www.oftalmed.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.oftalmed.com.br/
Cookie: PHPSESSID=cfdfe4632ba0e4856e835cca033a3972
HTTP/1.1 200 OK
Date: Tue, 04 Oct 2022 09:59:05 GMT
Server: Apache
Accept-Ranges: none
Cache-Control: max-age=864000, must-revalidate
Expires: Fri, 14 Oct 2022 09:59:05 GMT
Last-Modified: Tue, 04 Oct 2022 09:59:05 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
Keep-Alive: timeout=5, max=68
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: image/jpeg
www.oftalmed.com.br/timthumb.php?src=/http://www.oftalmed.com.br/files/images/quem-somos/Consultorio_1andar_FotoKZ_3.jpg&w=518&h=454
108.179.252.178200 OK 62 kB URL HTTP/1.1 www.oftalmed.com.br/timthumb.php?src=/http://www.oftalmed.com.br/files/images/quem-somos/Consultorio_1andar_FotoKZ_3.jpg&w=518&h=454
IP 108.179.252.178:0
ASN #46606 UNIFIEDLAYER-AS-1
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 90", baseline, precision 8, 518x454, components 3\012- data
Hash 60ba200ccb336ddb14071d310df2289b
aaacb962375b0ace047f8cab50d37506c9b24b82
810eed25486792d646dd47d6adea41a938b0e50d969a9fe052265096e11feb32
GET /timthumb.php?src=/http://www.oftalmed.com.br/files/images/quem-somos/Consultorio_1andar_FotoKZ_3.jpg&w=518&h=454 HTTP/1.1
Host: www.oftalmed.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.oftalmed.com.br/
Cookie: PHPSESSID=cfdfe4632ba0e4856e835cca033a3972
HTTP/1.1 200 OK
Date: Tue, 04 Oct 2022 09:59:05 GMT
Server: Apache
Accept-Ranges: none
Cache-Control: max-age=864000, must-revalidate
Expires: Fri, 14 Oct 2022 09:59:05 GMT
Upgrade: h2,h2c
Connection: Upgrade, Keep-Alive
Last-Modified: Tue, 04 Oct 2022 09:59:05 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
Keep-Alive: timeout=5, max=75
Transfer-Encoding: chunked
Content-Type: image/jpeg
www.oftalmed.com.br/timthumb.php?src=/http://www.oftalmed.com.br/files/images/quem-somos/CentroCirurgico_FotoKarinaZambrana_37.jpg&w=518&h=454
108.179.252.178200 OK 37 kB URL HTTP/1.1 www.oftalmed.com.br/timthumb.php?src=/http://www.oftalmed.com.br/files/images/quem-somos/CentroCirurgico_FotoKarinaZambrana_37.jpg&w=518&h=454
IP 108.179.252.178:0
ASN #46606 UNIFIEDLAYER-AS-1
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 90", baseline, precision 8, 518x454, components 3\012- data
Hash 3b0f01520beacd2b114ecfdd8860b990
a280973d57f09431f1a2035231fe5e67ffec59f0
cb448288b5485d5b4e31edce030bc3cb84529dde3b4a5367eaa0eddb7c2689f1
GET /timthumb.php?src=/http://www.oftalmed.com.br/files/images/quem-somos/CentroCirurgico_FotoKarinaZambrana_37.jpg&w=518&h=454 HTTP/1.1
Host: www.oftalmed.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.oftalmed.com.br/
Cookie: PHPSESSID=cfdfe4632ba0e4856e835cca033a3972
HTTP/1.1 200 OK
Date: Tue, 04 Oct 2022 09:59:06 GMT
Server: Apache
Accept-Ranges: none
Cache-Control: max-age=864000, must-revalidate
Expires: Fri, 14 Oct 2022 09:59:06 GMT
Last-Modified: Tue, 04 Oct 2022 09:59:06 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
Keep-Alive: timeout=5, max=66
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: image/jpeg
www.oftalmed.com.br/timthumb.php?src=/http://www.oftalmed.com.br/files/images/quem-somos/CentroCirurgico_FotoKarinaZambrana_31.jpg&w=518&h=454
108.179.252.178200 OK 56 kB URL HTTP/1.1 www.oftalmed.com.br/timthumb.php?src=/http://www.oftalmed.com.br/files/images/quem-somos/CentroCirurgico_FotoKarinaZambrana_31.jpg&w=518&h=454
IP 108.179.252.178:0
ASN #46606 UNIFIEDLAYER-AS-1
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 90", baseline, precision 8, 518x454, components 3\012- data
Hash 4b82120f7730ecb0c4646aa1d5c0d369
4d054f5e23ac0bef0d01fb4ae4d697d001386ac9
3132c2404b4db38404d99b7a252e1c0d634ebb6cf4a908e9a636260cc09b60c3
GET /timthumb.php?src=/http://www.oftalmed.com.br/files/images/quem-somos/CentroCirurgico_FotoKarinaZambrana_31.jpg&w=518&h=454 HTTP/1.1
Host: www.oftalmed.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.oftalmed.com.br/
Cookie: PHPSESSID=cfdfe4632ba0e4856e835cca033a3972
HTTP/1.1 200 OK
Date: Tue, 04 Oct 2022 09:59:06 GMT
Server: Apache
Accept-Ranges: none
Cache-Control: max-age=864000, must-revalidate
Expires: Fri, 14 Oct 2022 09:59:06 GMT
Last-Modified: Tue, 04 Oct 2022 09:59:06 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
Keep-Alive: timeout=5, max=67
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: image/jpeg
www.oftalmed.com.br/timthumb.php?src=/http://www.oftalmed.com.br/files/images/quem-somos/Sala4_CDO_FotoKZ_1.jpg&w=518&h=454
108.179.252.178200 OK 51 kB URL HTTP/1.1 www.oftalmed.com.br/timthumb.php?src=/http://www.oftalmed.com.br/files/images/quem-somos/Sala4_CDO_FotoKZ_1.jpg&w=518&h=454
IP 108.179.252.178:0
ASN #46606 UNIFIEDLAYER-AS-1
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 90", baseline, precision 8, 518x454, components 3\012- data
Hash e69dbb4b053c708c096bc96c9fa5ce29
21d090aefb5327fbd7c13314868dfbf93db85c48
0d12e387147f95472682cadd9500e1394fd2e5fa0159f9aa1b24997124c4be3b
GET /timthumb.php?src=/http://www.oftalmed.com.br/files/images/quem-somos/Sala4_CDO_FotoKZ_1.jpg&w=518&h=454 HTTP/1.1
Host: www.oftalmed.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.oftalmed.com.br/
Cookie: PHPSESSID=cfdfe4632ba0e4856e835cca033a3972
HTTP/1.1 200 OK
Date: Tue, 04 Oct 2022 09:59:05 GMT
Server: Apache
Accept-Ranges: none
Cache-Control: max-age=864000, must-revalidate
Expires: Fri, 14 Oct 2022 09:59:05 GMT
Upgrade: h2,h2c
Connection: Upgrade, Keep-Alive
Last-Modified: Tue, 04 Oct 2022 09:59:05 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
Keep-Alive: timeout=5, max=75
Transfer-Encoding: chunked
Content-Type: image/jpeg
www.oftalmed.com.br/timthumb.php?src=/http://www.oftalmed.com.br/files/images/quem-somos/CallCenterTagua_FotoKarinaZambrana_12.jpg&w=518&h=454
108.179.252.178200 OK 45 kB URL HTTP/1.1 www.oftalmed.com.br/timthumb.php?src=/http://www.oftalmed.com.br/files/images/quem-somos/CallCenterTagua_FotoKarinaZambrana_12.jpg&w=518&h=454
IP 108.179.252.178:0
ASN #46606 UNIFIEDLAYER-AS-1
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 90", baseline, precision 8, 518x454, components 3\012- data
Hash c45c8bd9e37422f7347525cc1bef6265
0e646d6773e59ca5e68b88b80bcc408f6cb1898f
011957281d6bacd0fb5a295a0416a04fec99b5bdb15fc290832a91946c699581
GET /timthumb.php?src=/http://www.oftalmed.com.br/files/images/quem-somos/CallCenterTagua_FotoKarinaZambrana_12.jpg&w=518&h=454 HTTP/1.1
Host: www.oftalmed.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.oftalmed.com.br/
Cookie: PHPSESSID=cfdfe4632ba0e4856e835cca033a3972
HTTP/1.1 200 OK
Date: Tue, 04 Oct 2022 09:59:06 GMT
Server: Apache
Accept-Ranges: none
Cache-Control: max-age=864000, must-revalidate
Expires: Fri, 14 Oct 2022 09:59:06 GMT
Last-Modified: Tue, 04 Oct 2022 09:59:06 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
Keep-Alive: timeout=5, max=74
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: image/jpeg
www.oftalmed.com.br/timthumb.php?src=/http://www.oftalmed.com.br/files/images/quem-somos/CallCenterTagua_FotoKarinaZambrana_26.jpg&w=518&h=454
108.179.252.178200 OK 52 kB URL HTTP/1.1 www.oftalmed.com.br/timthumb.php?src=/http://www.oftalmed.com.br/files/images/quem-somos/CallCenterTagua_FotoKarinaZambrana_26.jpg&w=518&h=454
IP 108.179.252.178:0
ASN #46606 UNIFIEDLAYER-AS-1
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 90", baseline, precision 8, 518x454, components 3\012- data
Hash 20e5f44332b45f590c753fc1fb413e82
c576ff346a17f900235bba77c5c31b9ac2abfb9b
0d8056396d5252e28d2f99ee73ba309ec4ed8c1c13b0b6f65949fb9573cf6570
GET /timthumb.php?src=/http://www.oftalmed.com.br/files/images/quem-somos/CallCenterTagua_FotoKarinaZambrana_26.jpg&w=518&h=454 HTTP/1.1
Host: www.oftalmed.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.oftalmed.com.br/
Cookie: PHPSESSID=cfdfe4632ba0e4856e835cca033a3972
HTTP/1.1 200 OK
Date: Tue, 04 Oct 2022 09:59:06 GMT
Server: Apache
Accept-Ranges: none
Cache-Control: max-age=864000, must-revalidate
Expires: Fri, 14 Oct 2022 09:59:06 GMT
Last-Modified: Tue, 04 Oct 2022 09:59:06 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
Keep-Alive: timeout=5, max=65
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: image/jpeg
www.oftalmed.com.br/files/assets/img/icon-download.png
108.179.252.178200 OK 1.1 kB URL HTTP/1.1 www.oftalmed.com.br/files/assets/img/icon-download.png
IP 108.179.252.178:0
ASN #46606 UNIFIEDLAYER-AS-1
File type PNG image data, 17 x 19, 8-bit/color RGBA, non-interlaced\012- data
Hash 9a857ac822ae2a8d99320d0187a94f3b
30e283b58243dbc91714e265825223ebb37b737a
88eef0b999f2e5ec1788fab86582bdf59f4f0b670e2b0fb74319382d6bb26c02
GET /files/assets/img/icon-download.png HTTP/1.1
Host: www.oftalmed.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.oftalmed.com.br/
Cookie: PHPSESSID=cfdfe4632ba0e4856e835cca033a3972
HTTP/1.1 200 OK
Date: Tue, 04 Oct 2022 09:59:06 GMT
Server: Apache
Last-Modified: Mon, 30 Sep 2019 10:44:29 GMT
Accept-Ranges: bytes
Content-Length: 1080
Keep-Alive: timeout=5, max=73
Connection: Keep-Alive
Content-Type: image/png
www.oftalmed.com.br/timthumb.php?src=/http://www.oftalmed.com.br/files/images/quem-somos/CentroCirurgico_FotoKarinaZambrana_19.jpg&w=518&h=454
108.179.252.178200 OK 36 kB URL HTTP/1.1 www.oftalmed.com.br/timthumb.php?src=/http://www.oftalmed.com.br/files/images/quem-somos/CentroCirurgico_FotoKarinaZambrana_19.jpg&w=518&h=454
IP 108.179.252.178:0
ASN #46606 UNIFIEDLAYER-AS-1
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 90", baseline, precision 8, 518x454, components 3\012- data
Hash 54ee3091d1b784b770ed2405086f3ce0
661c76167799dceff559dc15d264e476cfee3f19
f7ca89822661b08b2dad589b6f1a6fce6cafa2cbf50e8886cc4abea7e812d802
GET /timthumb.php?src=/http://www.oftalmed.com.br/files/images/quem-somos/CentroCirurgico_FotoKarinaZambrana_19.jpg&w=518&h=454 HTTP/1.1
Host: www.oftalmed.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.oftalmed.com.br/
Cookie: PHPSESSID=cfdfe4632ba0e4856e835cca033a3972
HTTP/1.1 200 OK
Date: Tue, 04 Oct 2022 09:59:06 GMT
Server: Apache
Accept-Ranges: none
Cache-Control: max-age=864000, must-revalidate
Expires: Fri, 14 Oct 2022 09:59:06 GMT
Upgrade: h2,h2c
Connection: Upgrade, Keep-Alive
Last-Modified: Tue, 04 Oct 2022 09:59:06 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
Keep-Alive: timeout=5, max=75
Transfer-Encoding: chunked
Content-Type: image/jpeg
www.oftalmed.com.br/files/assets/img/icon-contato-rodape.png
108.179.252.178200 OK 1.1 kB URL HTTP/1.1 www.oftalmed.com.br/files/assets/img/icon-contato-rodape.png
IP 108.179.252.178:0
ASN #46606 UNIFIEDLAYER-AS-1
File type PNG image data, 31 x 32, 8-bit/color RGBA, non-interlaced\012- data
Hash bb1eb80136ed0b47b0ab2230a9b15261
75286c75f0ec34a91f3628ad68ddaa78141ef274
cabae650dee22c5f752f29b437e7e2d6ab34f3b771ed2e1c4b7fa4b7aa904d04
GET /files/assets/img/icon-contato-rodape.png HTTP/1.1
Host: www.oftalmed.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.oftalmed.com.br/
Cookie: PHPSESSID=cfdfe4632ba0e4856e835cca033a3972
HTTP/1.1 200 OK
Date: Tue, 04 Oct 2022 09:59:06 GMT
Server: Apache
Last-Modified: Mon, 30 Sep 2019 10:44:29 GMT
Accept-Ranges: bytes
Content-Length: 1112
Keep-Alive: timeout=5, max=64
Connection: Keep-Alive
Content-Type: image/png
www.oftalmed.com.br/timthumb.php?src=/http://www.oftalmed.com.br/files/images/revistas/revista%20oftalmed%20capa%203.png&w=324&h=458
108.179.252.178200 OK 141 kB URL HTTP/1.1 www.oftalmed.com.br/timthumb.php?src=/http://www.oftalmed.com.br/files/images/revistas/revista%20oftalmed%20capa%203.png&w=324&h=458
IP 108.179.252.178:0
ASN #46606 UNIFIEDLAYER-AS-1
File type PNG image data, 324 x 458, 8-bit/color RGBA, non-interlaced\012- data
Size 141 kB (140784 bytes)
Hash c6df7321fac53f6242c83b9a4a380797
17a8ff7d5ff2205a3d1a72a9b4c53d1df97729ad
f3255219277fe9812d5f000f1ed508343e2fc233e2383f262382c40904630821
GET /timthumb.php?src=/http://www.oftalmed.com.br/files/images/revistas/revista%20oftalmed%20capa%203.png&w=324&h=458 HTTP/1.1
Host: www.oftalmed.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.oftalmed.com.br/
Cookie: PHPSESSID=cfdfe4632ba0e4856e835cca033a3972
HTTP/1.1 200 OK
Date: Tue, 04 Oct 2022 09:59:06 GMT
Server: Apache
Accept-Ranges: none
Cache-Control: max-age=864000, must-revalidate
Expires: Fri, 14 Oct 2022 09:59:06 GMT
Last-Modified: Tue, 04 Oct 2022 09:59:06 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
Keep-Alive: timeout=5, max=74
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: image/png
www.oftalmed.com.br/timthumb.php?src=/http://www.oftalmed.com.br/files/images/imprensa/29.08.18_Correio%20Braziliense.png&w=324&h=298
108.179.252.178200 OK 140 kB URL HTTP/1.1 www.oftalmed.com.br/timthumb.php?src=/http://www.oftalmed.com.br/files/images/imprensa/29.08.18_Correio%20Braziliense.png&w=324&h=298
IP 108.179.252.178:0
ASN #46606 UNIFIEDLAYER-AS-1
File type PNG image data, 324 x 298, 8-bit/color RGBA, non-interlaced\012- data
Size 140 kB (140476 bytes)
Hash ef2e3ff4c6dd40d3dbb6b369a6b0c6d5
03eccf9fca269fdd2b3541d07915a7ba265885d5
7c9a45b7eba97eb881ea6c592519a28cd3d4ad82c5b41dac741b522a3ae14881
GET /timthumb.php?src=/http://www.oftalmed.com.br/files/images/imprensa/29.08.18_Correio%20Braziliense.png&w=324&h=298 HTTP/1.1
Host: www.oftalmed.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.oftalmed.com.br/
Cookie: PHPSESSID=cfdfe4632ba0e4856e835cca033a3972
HTTP/1.1 200 OK
Date: Tue, 04 Oct 2022 09:59:06 GMT
Server: Apache
Accept-Ranges: none
Cache-Control: max-age=864000, must-revalidate
Expires: Fri, 14 Oct 2022 09:59:06 GMT
Last-Modified: Tue, 04 Oct 2022 09:59:06 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
Keep-Alive: timeout=5, max=66
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: image/png
www.oftalmed.com.br/files/assets/img/icon-email-rodape.png
108.179.252.178200 OK 722 B URL HTTP/1.1 www.oftalmed.com.br/files/assets/img/icon-email-rodape.png
IP 108.179.252.178:0
ASN #46606 UNIFIEDLAYER-AS-1
File type PNG image data, 31 x 32, 8-bit/color RGBA, non-interlaced\012- data
Hash 2e75f979ca484e67d16c18e76214adbe
56911b320806e7809b01b5bdccfdacca6d37a6f0
2ce8845dd1ac03374a4ef616507b3e1424b97a183afa54bab725b72721997600
GET /files/assets/img/icon-email-rodape.png HTTP/1.1
Host: www.oftalmed.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.oftalmed.com.br/
Cookie: PHPSESSID=cfdfe4632ba0e4856e835cca033a3972
HTTP/1.1 200 OK
Date: Tue, 04 Oct 2022 09:59:06 GMT
Server: Apache
Last-Modified: Mon, 30 Sep 2019 10:44:29 GMT
Accept-Ranges: bytes
Content-Length: 722
Keep-Alive: timeout=5, max=72
Connection: Keep-Alive
Content-Type: image/png
www.oftalmed.com.br/files/assets/img/btn-prev.jpg
108.179.252.178200 OK 1.3 kB URL HTTP/1.1 www.oftalmed.com.br/files/assets/img/btn-prev.jpg
IP 108.179.252.178:0
ASN #46606 UNIFIEDLAYER-AS-1
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 37x38, components 3\012- data
Hash cfa22ffff4015acef454d8bbc24aca48
9492760d6c97a59bb0174d4b2da6d5ff4a8d440b
7874712d8b3da814fe42f3fb28b39d018d270579237d76c377c98e70e2fcfefe
GET /files/assets/img/btn-prev.jpg HTTP/1.1
Host: www.oftalmed.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.oftalmed.com.br/
Cookie: PHPSESSID=cfdfe4632ba0e4856e835cca033a3972
HTTP/1.1 200 OK
Date: Tue, 04 Oct 2022 09:59:06 GMT
Server: Apache
Last-Modified: Mon, 30 Sep 2019 10:44:29 GMT
Accept-Ranges: bytes
Content-Length: 1314
Keep-Alive: timeout=5, max=74
Connection: Keep-Alive
Content-Type: image/jpeg
www.oftalmed.com.br/timthumb.php?src=/http://www.oftalmed.com.br/files/images/quem-somos/CentroCirurgico_FotoKarinaZambrana_25.jpg&w=518&h=454
108.179.252.178200 OK 49 kB URL HTTP/1.1 www.oftalmed.com.br/timthumb.php?src=/http://www.oftalmed.com.br/files/images/quem-somos/CentroCirurgico_FotoKarinaZambrana_25.jpg&w=518&h=454
IP 108.179.252.178:0
ASN #46606 UNIFIEDLAYER-AS-1
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 90", baseline, precision 8, 518x454, components 3\012- data
Hash 86c23ba983d4fd69e1e251f86a6160d2
7092f5debd6593b18403798ce2ba93c3b4b8b112
47a6ae97f860235939dbd3a35ac0d96865ff10c1f0af0edafe4adff37b521e29
GET /timthumb.php?src=/http://www.oftalmed.com.br/files/images/quem-somos/CentroCirurgico_FotoKarinaZambrana_25.jpg&w=518&h=454 HTTP/1.1
Host: www.oftalmed.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.oftalmed.com.br/
Cookie: PHPSESSID=cfdfe4632ba0e4856e835cca033a3972
HTTP/1.1 200 OK
Date: Tue, 04 Oct 2022 09:59:06 GMT
Server: Apache
Accept-Ranges: none
Cache-Control: max-age=864000, must-revalidate
Expires: Fri, 14 Oct 2022 09:59:06 GMT
Upgrade: h2,h2c
Connection: Upgrade, Keep-Alive
Last-Modified: Tue, 04 Oct 2022 09:59:06 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
Keep-Alive: timeout=5, max=75
Transfer-Encoding: chunked
Content-Type: image/jpeg
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash ff433c9569a3557d806b1480aeafece9
20bbd46383b85326837f45290ff87df708b3b310
e8e5212b8d90257f23bdb0d1d643b5e7d7528d964056c3a4a269b5e09f409f2d
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "E8E5212B8D90257F23BDB0D1D643B5E7D7528D964056C3A4A269B5E09F409F2D"
Last-Modified: Sun, 02 Oct 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=13820
Expires: Tue, 04 Oct 2022 13:49:26 GMT
Date: Tue, 04 Oct 2022 09:59:06 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash ff433c9569a3557d806b1480aeafece9
20bbd46383b85326837f45290ff87df708b3b310
e8e5212b8d90257f23bdb0d1d643b5e7d7528d964056c3a4a269b5e09f409f2d
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "E8E5212B8D90257F23BDB0D1D643B5E7D7528D964056C3A4A269B5E09F409F2D"
Last-Modified: Sun, 02 Oct 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=13820
Expires: Tue, 04 Oct 2022 13:49:26 GMT
Date: Tue, 04 Oct 2022 09:59:06 GMT
Connection: keep-alive
www.oftalmed.com.br/files/assets/img/btn-next.jpg
108.179.252.178200 OK 1.3 kB URL HTTP/1.1 www.oftalmed.com.br/files/assets/img/btn-next.jpg
IP 108.179.252.178:0
ASN #46606 UNIFIEDLAYER-AS-1
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 37x38, components 3\012- data
Hash 1fc2efc0fb90b4c37ff6ced931f00feb
c8ae9429073c9dd90890a179ec70fa6bb483f067
0d4689f1e0d497fe439599952a6f6d3bd1127891d21723af363814a7ab956fc6
GET /files/assets/img/btn-next.jpg HTTP/1.1
Host: www.oftalmed.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.oftalmed.com.br/
Cookie: PHPSESSID=cfdfe4632ba0e4856e835cca033a3972
HTTP/1.1 200 OK
Date: Tue, 04 Oct 2022 09:59:06 GMT
Server: Apache
Last-Modified: Mon, 30 Sep 2019 10:44:29 GMT
Accept-Ranges: bytes
Content-Length: 1342
Keep-Alive: timeout=5, max=63
Connection: Keep-Alive
Content-Type: image/jpeg
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0c459c91-b5cc-492c-9573-3101e5df6b51.jpeg
34.120.237.76200 OK 5.1 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0c459c91-b5cc-492c-9573-3101e5df6b51.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 34f2dfb2faff276db1d4a57739db2450
f5ce815082043a4efce28fc790ae7d8b3a8531f8
e02ea92f0be524ccfe26eee61a77e39a13d852d1ba3696f729e0f61812028667
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0c459c91-b5cc-492c-9573-3101e5df6b51.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5083
x-amzn-requestid: ed99df03-5d15-4e09-9aea-bbf77a705323
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZcpI0HT0IAMFxvQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-633b556b-422197147d76caac6e910664;Sampled=0
x-amzn-remapped-date: Mon, 03 Oct 2022 21:34:35 GMT
x-amz-cf-pop: SFO5-P2, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: pddStyEpwVdYKSAUVcpupnWVPw6ALoYCouHQzixF_vTgXdpVF60ElA==
via: 1.1 946b9edb2009c5508a0fbbd636f95014.cloudfront.net (CloudFront), 1.1 28390a4d24ed4fdccd685d99cd06cf4e.cloudfront.net (CloudFront), 1.1 google
date: Mon, 03 Oct 2022 22:10:59 GMT
age: 42487
etag: "f5ce815082043a4efce28fc790ae7d8b3a8531f8"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F180dee10-1cde-4fbe-8a74-62b7b3bdb1e2.jpeg
34.120.237.76200 OK 6.3 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F180dee10-1cde-4fbe-8a74-62b7b3bdb1e2.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 206fb65e75dbadf119512f71e0b78402
58ff0bf8ce7528b303d28bab01a80ad721705569
56c8d5f3b3060ee54bf81995269b86c070855d8c33bf437161339a45b309703f
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F180dee10-1cde-4fbe-8a74-62b7b3bdb1e2.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6315
x-amzn-requestid: 6aa75b16-32e4-48a7-9fb0-9e3d5528c2d5
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZWSdsHUnIAMFXtw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6338cabd-742d8a436403683e0cd9368f;Sampled=0
x-amzn-remapped-date: Sat, 01 Oct 2022 23:18:21 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: 5sAzc5Ewv4g6Wqq6JJiLylG3Jyy_nlWrr5Oteeo6ebEgq7Rvss4XaQ==
via: 1.1 f13aef0c4b52f6f681401f232d03eb68.cloudfront.net (CloudFront), 1.1 09331f0822fc98eebaf04130a83dbd44.cloudfront.net (CloudFront), 1.1 google
date: Tue, 04 Oct 2022 04:42:53 GMT
age: 18973
etag: "58ff0bf8ce7528b303d28bab01a80ad721705569"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8641c47a-9aff-4f73-bb07-6770cbbcc8d6.jpeg
34.120.237.76200 OK 5.5 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8641c47a-9aff-4f73-bb07-6770cbbcc8d6.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 6c6882c60d7ca6f918c77104e3ad1d52
20ef861be49c652a938e0145e4ca3a60159367e2
861f5870990fbd2939d151ae18384cf311e87067ca9a50818efe0c2d51b83088
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8641c47a-9aff-4f73-bb07-6770cbbcc8d6.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5504
x-amzn-requestid: 37405eb0-5c75-46a9-84c0-e8ed726995d8
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZcpHvHPvoAMF3mg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-633b5564-77fd550b58af612525e74761;Sampled=0
x-amzn-remapped-date: Mon, 03 Oct 2022 21:34:28 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: Ovm2wuk28PygH4EZNEUoPchoHQggWCyXbYHOjMV1tZmfyDrL6PjPZA==
via: 1.1 01c28b52813cd0e82f810c492808b142.cloudfront.net (CloudFront), 1.1 5fe5f2a3903f1378941d92eceaf3fa16.cloudfront.net (CloudFront), 1.1 google
date: Mon, 03 Oct 2022 22:29:19 GMT
age: 41387
etag: "20ef861be49c652a938e0145e4ca3a60159367e2"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9a61745f-0c9b-404a-ba22-0a69cf2f0383.jpeg
34.120.237.76200 OK 4.9 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9a61745f-0c9b-404a-ba22-0a69cf2f0383.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 6779181f9c06975f2a662da743893939
585e7146fd24cdc2496b05baafea04091dc541e2
8e9a9f92fd89b7cdce77884ccd76b83ab82d28f125ebfc1cb0d371d4046b7985
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9a61745f-0c9b-404a-ba22-0a69cf2f0383.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 4858
x-amzn-requestid: fb21c414-2994-444a-a838-e643fd05b171
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZcpvTEfPoAMFfeQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-633b5661-593dd8043b0490e7301cac0d;Sampled=0
x-amzn-remapped-date: Mon, 03 Oct 2022 21:38:41 GMT
x-amz-cf-pop: SFO5-P2, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: MiSh_FjAciKCaOakY2mM_EHBN1Z6GIDYIP8mwS4ikkrToQN3Ktsv2g==
via: 1.1 773ca14e6bd4bf9244988cb69fc9dca8.cloudfront.net (CloudFront), 1.1 b36bf2c460ac693ce304817aed073112.cloudfront.net (CloudFront), 1.1 google
date: Mon, 03 Oct 2022 21:56:46 GMT
age: 43340
etag: "585e7146fd24cdc2496b05baafea04091dc541e2"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0bec66cf-b911-4eb8-95d6-27e5f2afb6c7.jpeg
34.120.237.76200 OK 8.3 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0bec66cf-b911-4eb8-95d6-27e5f2afb6c7.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash de29d0d95d22e4e246a90feed644baf0
4ac6c5691df804078d5da54233cf4d8e7012f9ca
8e34ad07e098df14f7001d1ee538479de11afa4c255006cb6e8e2207c0e50a47
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0bec66cf-b911-4eb8-95d6-27e5f2afb6c7.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8308
x-amzn-requestid: 3348b2e8-915a-492b-8241-89c13a21232c
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZcqFlFyyoAMFz_A=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-633b56f0-2baf7ac2213c31fc384e8317;Sampled=0
x-amzn-remapped-date: Mon, 03 Oct 2022 21:41:04 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: Y1H21zphqs9mIGVYHojfc-nvW35BS3nq4hunM_JmyT9mC100bXlgWw==
via: 1.1 0c96ded7ff282d2dbcf47c918b6bb500.cloudfront.net (CloudFront), 1.1 ee330666adf9f04c8c30094f8ddcd004.cloudfront.net (CloudFront), 1.1 google
date: Mon, 03 Oct 2022 21:55:46 GMT
age: 43400
etag: "4ac6c5691df804078d5da54233cf4d8e7012f9ca"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
www.oftalmed.com.br/files/assets/img/onda-rodape.png
108.179.252.178200 OK 12 kB URL HTTP/1.1 www.oftalmed.com.br/files/assets/img/onda-rodape.png
IP 108.179.252.178:0
ASN #46606 UNIFIEDLAYER-AS-1
File type PNG image data, 569 x 255, 8-bit/color RGBA, non-interlaced\012- data
Hash 19e1209c971d99c8994707c63e407f66
c570e5daf90bcdb62ee11f7c0c5b2e23e174636b
1d77b3c4041e9ed44be045e7f23ecee1996ad57b5a560f69b74a9b89b9b5d1bb
GET /files/assets/img/onda-rodape.png HTTP/1.1
Host: www.oftalmed.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.oftalmed.com.br/files/assets/css/geral.css
Cookie: PHPSESSID=cfdfe4632ba0e4856e835cca033a3972
HTTP/1.1 200 OK
Date: Tue, 04 Oct 2022 09:59:06 GMT
Server: Apache
Last-Modified: Mon, 30 Sep 2019 10:44:29 GMT
Accept-Ranges: bytes
Content-Length: 12014
Keep-Alive: timeout=5, max=73
Connection: Keep-Alive
Content-Type: image/png
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F545190f2-96f3-40f8-bd46-cebe7171aee7.webp
34.120.237.76200 OK 9.9 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F545190f2-96f3-40f8-bd46-cebe7171aee7.webp
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash d8c08f8066cc732de8befd6ccd629a95
22aab05208a01ae5def4d63dc145085630f57bcb
f8a560a0563518d992d0bd2655d2b5c406435a18e874ca00b51374d2ff901770
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F545190f2-96f3-40f8-bd46-cebe7171aee7.webp HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9917
x-amzn-requestid: 2dff93d9-795d-4885-9b82-610b0d235a82
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZcpvTGEnIAMF1zg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-633b5661-117afa703663ada75627792c;Sampled=0
x-amzn-remapped-date: Mon, 03 Oct 2022 21:38:41 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: p5nOqBojKO6S-c_DxIu8B3p-NK0pzRHkz0DOPeyv7PQt9h0x1jdtoQ==
via: 1.1 da5952aa802df39905ceb16592e9698a.cloudfront.net (CloudFront), 1.1 1508efc4152aa1778ed4adecb328b374.cloudfront.net (CloudFront), 1.1 google
date: Mon, 03 Oct 2022 21:55:54 GMT
age: 43392
etag: "22aab05208a01ae5def4d63dc145085630f57bcb"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
www.gstatic.com/recaptcha/releases/a9s0j4pCVT6gaTEkLiFbtZPH/recaptcha__pt_br.js
142.250.74.163200 OK 160 kB URL HTTP/2 www.gstatic.com/recaptcha/releases/a9s0j4pCVT6gaTEkLiFbtZPH/recaptcha__pt_br.js
IP 142.250.74.163:0
File type ASCII text, with very long lines (840)
Size 160 kB (159932 bytes)
Hash 4185917f875d64355626e0fcf4125531
30f915d6f310500e85aa119a5f18fe12c8347387
0744060d1787acae295ecbfd56497604d46e67f56897cb94934b4616af9334f7
GET /recaptcha/releases/a9s0j4pCVT6gaTEkLiFbtZPH/recaptcha__pt_br.js HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://www.oftalmed.com.br
Connection: keep-alive
Referer: http://www.oftalmed.com.br/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/recaptcha
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups; report-to="recaptcha"
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
content-length: 159932
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sat, 01 Oct 2022 04:17:30 GMT
expires: Sun, 01 Oct 2023 04:17:30 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 26 Sep 2022 04:02:34 GMT
content-type: text/javascript
age: 279696
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
colorlib.com/polygon/vendors/mjolnic-bootstrap-colorpicker/dist/js/bootstrap-colorpicker.min.js
104.22.20.226200 OK 19 kB URL HTTP/2 colorlib.com/polygon/vendors/mjolnic-bootstrap-colorpicker/dist/js/bootstrap-colorpicker.min.js
IP 104.22.20.226:0
File type ASCII text, with very long lines (18598)
Hash 0f306b45e5ead911fe15c1855de24534
348c797ce616d40fe336c73b167cec711e7404a2
389295904134a9041e68c1145b772820d7c5f3bf79c0b3ddbdf586f36d42c9d6
GET /polygon/vendors/mjolnic-bootstrap-colorpicker/dist/js/bootstrap-colorpicker.min.js HTTP/1.1
Host: colorlib.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.oftalmed.com.br/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Tue, 04 Oct 2022 09:59:04 GMT
content-type: application/javascript
strict-transport-security: max-age=15552000; preload
last-modified: Fri, 30 Sep 2022 20:18:42 GMT
vary: Accept-Encoding
etag: W/"63374f22-4901"
expires: Mon, 10 Oct 2022 09:51:31 GMT
cache-control: max-age=604800
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD
x-ac: 2.yyz _atomic_dca BYPASS
cf-cache-status: HIT
x-content-type-options: nosniff
server: cloudflare
cf-ray: 754d100dbcd1b518-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
colorlib.com/polygon/vendors/bootstrap-daterangepicker/daterangepicker.js
104.22.20.226200 OK 0 B URL HTTP/2 colorlib.com/polygon/vendors/bootstrap-daterangepicker/daterangepicker.js
IP 104.22.20.226:0
GET /polygon/vendors/bootstrap-daterangepicker/daterangepicker.js HTTP/1.1
Host: colorlib.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.oftalmed.com.br/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Tue, 04 Oct 2022 09:59:04 GMT
content-type: application/javascript
cache-control: max-age=604800
cf-bgj: minify
cf-polished: origSize=63906
access-control-allow-methods: GET, HEAD
access-control-allow-origin: *
etag: W/"63374e01-f9a2"
expires: Mon, 10 Oct 2022 09:45:17 GMT
last-modified: Fri, 30 Sep 2022 20:13:53 GMT
strict-transport-security: max-age=15552000; preload
vary: Accept-Encoding
x-ac: 1.yyz _atomic_dca BYPASS
cf-cache-status: HIT
x-content-type-options: nosniff
server: cloudflare
cf-ray: 754d100dbcc1b518-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
www.gstatic.com/recaptcha/releases/a9s0j4pCVT6gaTEkLiFbtZPH/recaptcha__en.js
142.250.74.163200 OK 0 B URL HTTP/2 www.gstatic.com/recaptcha/releases/a9s0j4pCVT6gaTEkLiFbtZPH/recaptcha__en.js
IP 142.250.74.163:0
GET /recaptcha/releases/a9s0j4pCVT6gaTEkLiFbtZPH/recaptcha__en.js HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://www.oftalmed.com.br
Connection: keep-alive
Referer: http://www.oftalmed.com.br/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/recaptcha
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups; report-to="recaptcha"
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
content-length: 158844
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sat, 01 Oct 2022 01:05:31 GMT
expires: Sun, 01 Oct 2023 01:05:31 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 26 Sep 2022 04:02:34 GMT
content-type: text/javascript
age: 291215
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.googleapis.com/css?family=Roboto:300,400,500,700
142.250.74.10200 OK 0 B URL HTTP/2 fonts.googleapis.com/css?family=Roboto:300,400,500,700
IP 142.250.74.10:0
GET /css?family=Roboto:300,400,500,700 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.oftalmed.com.br/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Tue, 04 Oct 2022 09:59:04 GMT
date: Tue, 04 Oct 2022 09:59:04 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.oftalmed.com.br/video.mp4
108.179.252.178206 Partial Content 0 B URL HTTP/1.1 www.oftalmed.com.br/video.mp4
IP 108.179.252.178:0
ASN #46606 UNIFIEDLAYER-AS-1
Analyzer Verdict Alert fortinet Phishing
GET /video.mp4 HTTP/1.1
Host: www.oftalmed.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: video/webm,video/ogg,video/*;q=0.9,application/ogg;q=0.7,audio/*;q=0.6,*/*;q=0.5
Accept-Language: en-US,en;q=0.5
Range: bytes=0-
Connection: keep-alive
Referer: http://www.oftalmed.com.br/
Cookie: PHPSESSID=cfdfe4632ba0e4856e835cca033a3972
HTTP/1.1 206 Partial Content
Date: Tue, 04 Oct 2022 09:59:05 GMT
Server: Apache
Last-Modified: Mon, 30 Sep 2019 10:44:26 GMT
Accept-Ranges: bytes
Content-Length: 7692780
Content-Range: bytes 0-7692779/7692780
Keep-Alive: timeout=5, max=69
Connection: Keep-Alive
Content-Type: video/mp4
www.oftalmed.com.br/video2.mp4
108.179.252.178206 Partial Content 0 B URL HTTP/1.1 www.oftalmed.com.br/video2.mp4
IP 108.179.252.178:0
ASN #46606 UNIFIEDLAYER-AS-1
Analyzer Verdict Alert fortinet Phishing
GET /video2.mp4 HTTP/1.1
Host: www.oftalmed.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: video/webm,video/ogg,video/*;q=0.9,application/ogg;q=0.7,audio/*;q=0.6,*/*;q=0.5
Accept-Language: en-US,en;q=0.5
Range: bytes=0-
Connection: keep-alive
Referer: http://www.oftalmed.com.br/
Cookie: PHPSESSID=cfdfe4632ba0e4856e835cca033a3972
HTTP/1.1 206 Partial Content
Date: Tue, 04 Oct 2022 09:59:05 GMT
Server: Apache
Last-Modified: Mon, 30 Sep 2019 10:44:26 GMT
Accept-Ranges: bytes
Content-Length: 10507567
Content-Range: bytes 0-10507566/10507567
Keep-Alive: timeout=5, max=72
Connection: Keep-Alive
Content-Type: video/mp4