Report - clinicamechi.com.br/home/

Report Overview

Submitted URL
clinicamechi.com.br/home/
IP
162.241.2.61
ASN
#46606 UNIFIEDLAYER-AS-1
Submitted
2022-12-18 13:00:03
Access
Website Title
Final URL
Tags
urlquery detections
No alerts detected

Detections

urlquery
0
Network Intrusion Detection
0
Threat Detection Systems
60

Domain Summary

Domain / FQDN	Rank	First Seen	Last Seen	Sent	Received	IP
ocsp.digicert.com	86	2012-05-21T09:02:23Z	2023-03-09T11:52:10Z	341 B	737 B	93.184.220.29
www.google.no	25607	2016-04-05T21:50:59Z	2023-03-09T09:24:51Z	694 B	757 B	142.250.74.163
fonts.googleapis.com	8877	2013-06-10T22:14:26Z	2023-03-09T12:17:45Z	1.4 kB	746 B	142.250.74.74
firefox.settings.services.mozilla.com	867	2020-06-04T22:08:41Z	2023-03-09T05:09:18Z	782 B	2.4 kB	35.241.9.150
content-signature-2.cdn.mozilla.net	1152	2020-11-03T13:26:46Z	2023-03-09T05:09:49Z	413 B	5.8 kB	34.160.144.191
img-getpocket.cdn.mozilla.net	1631	2018-06-22T01:36:00Z	2023-03-09T10:04:36Z	3.2 kB	58 kB	34.120.237.76
ocsp.pki.goog	175	2018-07-01T08:43:07Z	2023-03-09T05:09:50Z	5.5 kB	11 kB	142.250.74.131
www.googletagmanager.com	75	2013-05-22T04:07:37Z	2023-03-09T13:40:16Z	389 B	54 kB	142.250.74.168
clinicamechi.com.br	unknown	2014-12-15T19:03:13Z	2022-11-21T07:24:09Z	25 kB	3.6 MB	162.241.2.61
push.services.mozilla.com	2140	2014-10-24T10:27:06Z	2023-03-09T05:09:13Z	606 B	127 B	52.37.79.227
maps.google.com	1899	2012-09-11T01:07:43Z	2023-03-09T09:15:29Z	559 B	943 B	142.250.74.46
www.google.com	7	2015-05-10T13:11:19Z	2023-03-09T13:38:50Z	551 B	1.7 kB	142.250.74.132
googleads.g.doubleclick.net	42	2021-02-20T16:43:32Z	2023-03-09T13:41:05Z	716 B	1.8 kB	172.217.21.162
r3.o.lencr.org	344	2020-12-02T09:52:13Z	2023-03-09T05:09:05Z	3.0 kB	8.0 kB	23.36.77.32
contile.services.mozilla.com	1114	2021-05-27T20:32:35Z	2023-03-09T05:09:48Z	333 B	391 B	34.117.237.239
fonts.gstatic.com	unknown	2014-09-09T02:40:21Z	2023-03-09T10:01:47Z	3.4 kB	185 kB	216.58.207.227

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

OpenPhish

No alerts detected

PhishTank

No alerts detected

Fortinet's Web Filter

Scan Date	Severity	Indicator	Alert
2022-12-18	medium	clinicamechi.com.br/home/	Malware
2022-12-18	medium	clinicamechi.com.br/home/	Malware
2022-12-18	medium	clinicamechi.com.br/home/wp-content/plugins/templately/assets/css/editor.css?ver=1.3.6	Malware
2022-12-18	medium	clinicamechi.com.br/home/wp-content/plugins/elementor/assets/lib/eicons/css/elementor-icons.min.css?ver=5.15.0	Malware
2022-12-18	medium	clinicamechi.com.br/home/wp-content/plugins/elementskit-lite/modules/elementskit-icon-pack/assets/css/ekiticons.css?ver=2.6.3	Malware
2022-12-18	medium	clinicamechi.com.br/home/wp-content/uploads/elementor/css/post-48.css?ver=1662643665	Malware
2022-12-18	medium	clinicamechi.com.br/home/wp-content/plugins/elementor/assets/lib/font-awesome/css/regular.min.css?ver=5.15.3	Malware
2022-12-18	medium	clinicamechi.com.br/home/wp-content/plugins/elementor/assets/lib/font-awesome/css/brands.min.css?ver=5.15.3	Malware
2022-12-18	medium	clinicamechi.com.br/home/wp-content/uploads/premium-addons-elementor/pa-frontend-2733cb7eb.min.js?ver=1671368393	Malware
2022-12-18	medium	clinicamechi.com.br/home/wp-content/plugins/elementor/assets/lib/animations/animations.min.css?ver=3.6.7	Malware
2022-12-18	medium	clinicamechi.com.br/home/wp-content/plugins/elementskit-lite/widgets/init/assets/css/responsive.css?ver=2.6.3	Malware
2022-12-18	medium	clinicamechi.com.br/home/wp-content/plugins/elementor-pro/assets/lib/sticky/jquery.sticky.min.js?ver=3.2.0	Malware
2022-12-18	medium	clinicamechi.com.br/home/wp-content/plugins/elementor/assets/lib/waypoints/waypoints.min.js?ver=4.0.2	Malware
2022-12-18	medium	clinicamechi.com.br/home/wp-content/plugins/elementor/assets/js/frontend-modules.min.js?ver=3.6.7	Malware
2022-12-18	medium	clinicamechi.com.br/home/wp-includes/js/wp-emoji-release.min.js?ver=6.1.1	Malware
2022-12-18	medium	clinicamechi.com.br/home/wp-content/plugins/elementskit-lite/widgets/init/assets/js/elementor.js?ver=2.6.3	Malware
2022-12-18	medium	clinicamechi.com.br/home/wp-content/plugins/elementor-pro/assets/js/webpack-pro.runtime.min.js?ver=3.2.0	Malware
2022-12-18	medium	clinicamechi.com.br/home/wp-content/plugins/elementor/assets/js/frontend.min.js?ver=3.6.7	Malware
2022-12-18	medium	clinicamechi.com.br/home/wp-includes/js/jquery/ui/core.min.js?ver=1.13.2	Malware
2022-12-18	medium	clinicamechi.com.br/home/wp-content/themes/twentytwentytwo/assets/fonts/SourceSerif4Variable-Roman.ttf.woff2	Malware
2022-12-18	medium	clinicamechi.com.br/home/wp-content/plugins/premium-addons-for-elementor/assets/frontend/min-js/lottie.min.js?ver=4.9.22	Malware
2022-12-18	medium	clinicamechi.com.br/home/wp-content/plugins/elementor/assets/lib/font-awesome/webfonts/fa-brands-400.woff2	Malware
2022-12-18	medium	clinicamechi.com.br/home/wp-content/plugins/elementor/assets/lib/font-awesome/webfonts/fa-solid-900.woff2	Malware
2022-12-18	medium	clinicamechi.com.br/home/wp-content/plugins/elementor/assets/lib/font-awesome/webfonts/fa-regular-400.woff2	Malware
2022-12-18	medium	clinicamechi.com.br/home/wp-content/plugins/elementskit-lite/modules/elementskit-icon-pack/assets/fonts/elementskit.woff?y24e1e	Malware
2022-12-18	medium	clinicamechi.com.br/home/wp-content/plugins/elementor/assets/js/text-editor.2c35aafbe5bf0e127950.bundle.min.js	Malware
2022-12-18	medium	clinicamechi.com.br/home/wp-includes/js/jquery/jquery.min.js?ver=3.6.1	Malware
2022-12-18	medium	clinicamechi.com.br/home/wp-content/plugins/elementor-pro/assets/css/frontend.min.css?ver=3.2.0	Malware
2022-12-18	medium	clinicamechi.com.br/home/wp-content/plugins/elementor/assets/lib/swiper/swiper.min.js?ver=2.6.3	Malware
2022-12-18	medium	clinicamechi.com.br/home/wp-content/plugins/elementskit-lite/widgets/init/assets/css/widget-styles.css?ver=2.6.3	Malware

mnemonic secure dns

No alerts detected

Quad9 DNS

No alerts detected

JavaScript (45)

	URL	Size	First Seen	Last Seen
	clinicamechi.com.br/home/wp-content/plugins/elementor/assets/js/frontend-modules.min.js?ver=3.6.7	14 kB	2023-03-07	2024-05-02
Pretty URL clinicamechi.com.br/home/wp-content/plugins/elementor/assets/js/frontend-modules.min.js?ver=3.6.7 IP 162.241.2.61 ASN #46606 UNIFIEDLAYER-AS-1 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:10:33 Last Seen2024-05-02 06:55:27 Times Seen425 Hash f7a9fe2494d4fb5b559215de44f8932d e6f2314d6d1300035cccb8a21d91109b1b98db37 133f35fbfc23c0d8cf814176860427bd6a02da9278de3de662da11d9602d8582 Loading...

	clinicamechi.com.br/home/	103 B	2023-03-09	2023-03-09
Pretty URL clinicamechi.com.br/home/ IP 162.241.2.61 ASN #46606 UNIFIEDLAYER-AS-1 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-09 14:54:35 Last Seen2023-03-09 14:54:35 Times Seen1 Hash d3e9ac607aa204d6b67a9eb68692dd5e 2a518c7f903376f0fb7761321d13c2a013d3076a fe7a05ac48261b0632f2dfc663341b49b786f4c11354a884924fca57c7fb1f66 Loading...

	maps.googleapis.com/maps-api-v3/api/js/51/3/onion.js	27 kB	2023-03-08	2023-03-12
Pretty URL maps.googleapis.com/maps-api-v3/api/js/51/3/onion.js IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 21:20:58 Last Seen2023-03-12 14:26:19 Times Seen1 Hash 780b6c1321276326ff3d8edb19a729aa 4125d5b9d1fee8f3986eb360476886b4b17780f2 2aed3514a9d3aa64cbfcfcbe83cf138d9a60fe2cfb4ac1bd1b447f9605c2dac4 Loading...

	maps.googleapis.com/maps/api/js/ViewportInfoService.GetViewportInfo?1m6&1m2&1d-23.811929926849945&2d-46.820888310602584&2m2&1d-23.51559519070689&2d-46.495876019348906&2u9&4sen-US&5e2&7b0&8e0&11e289&12e1&13shttps%3A%2F%2Fwww.google.com%2Fmaps%2Fembed&14b1&callback=_xdc_._frarwe&client=google-maps-embed&token=121924	10 kB	2023-03-09	2023-03-09
Pretty URL maps.googleapis.com/maps/api/js/ViewportInfoService.GetViewportInfo?1m6&1m2&1d-23.811929926849945&2d-46.820888310602584&2m2&1d-23.51559519070689&2d-46.495876019348906&2u9&4sen-US&5e2&7b0&8e0&11e289&12e1&13shttps%3A%2F%2Fwww.google.com%2Fmaps%2Fembed&14b1&callback=_xdc_._frarwe&client=google-maps-embed&token=121924 IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-09 14:54:35 Last Seen2023-03-09 14:54:35 Times Seen1 Hash 71799eb0f762c3087cf849285186a52b 434e2d24ac65c00e74da740793a747c452c87fa4 312a4294e5cabb7da117b106093a07fa43a72a70fa9cbc52989772a57d4e140b Loading...

	maps.googleapis.com/maps/api/js/QuotaService.RecordEvent?1shttps%3A%2F%2Fwww.google.com%2Fmaps%2Fembed&2sgoogle-maps-embed&7stdl95h&10e1&11b0&callback=_xdc_._v5ie04&client=google-maps-embed&token=29674	62 B	2023-03-09	2023-03-09
Pretty URL maps.googleapis.com/maps/api/js/QuotaService.RecordEvent?1shttps%3A%2F%2Fwww.google.com%2Fmaps%2Fembed&2sgoogle-maps-embed&7stdl95h&10e1&11b0&callback=_xdc_._v5ie04&client=google-maps-embed&token=29674 IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-09 14:54:35 Last Seen2023-03-09 14:54:35 Times Seen1 Hash f51b608582dbbfe5abb99057cc454e7f d1563437ea8a7c43da348df741e19a0b331c06ba 635404f5a72245c5103d461cc339974b9d0bc6327ee3c7f95484f94f9efad087 Loading...

	clinicamechi.com.br/home/	2.2 kB	2023-03-09	2023-03-09
Pretty URL clinicamechi.com.br/home/ IP 162.241.2.61 ASN #46606 UNIFIEDLAYER-AS-1 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-09 14:54:35 Last Seen2023-03-09 14:54:35 Times Seen1 Hash ce04df9e0bacc6e5c59c09ff815049e2 efb40d44791e39dc6e6a7aebe88c1c972fc2930c 289e41ea63156f3893296f107453ddfc2f410db3c1131e661e951aabfbb6ee03 Loading...

	clinicamechi.com.br/home/wp-content/plugins/elementor/assets/lib/waypoints/waypoints.min.js?ver=4.0.2	12 kB	2023-03-07	2024-05-10
Pretty URL clinicamechi.com.br/home/wp-content/plugins/elementor/assets/lib/waypoints/waypoints.min.js?ver=4.0.2 IP 162.241.2.61 ASN #46606 UNIFIEDLAYER-AS-1 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:08 Last Seen2024-05-10 12:21:02 Times Seen53741 Hash 3819c3569da71daec283a75483735f7e ecd40a5cc6f0b76200c454ca880210dc301cfab8 214674cc77aba35ab3567b88e2739fd08e8e96c61d279559ad61874069683ea0 Loading...

	clinicamechi.com.br/home/wp-content/plugins/elementskit-lite/widgets/init/assets/js/elementor.js?ver=2.6.3	17 kB	2023-03-07	2023-12-21
Pretty URL clinicamechi.com.br/home/wp-content/plugins/elementskit-lite/widgets/init/assets/js/elementor.js?ver=2.6.3 IP 162.241.2.61 ASN #46606 UNIFIEDLAYER-AS-1 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:16:00 Last Seen2023-12-21 10:42:18 Times Seen87 Hash 1e1f6bda57b3fe634f02092ec0f871e0 00707f99c0c3aebb7f9c7aa9c2c64ada80b83af4 b5104e9ecdca4a466a83a5b9430afcfcb5bb625ac1dee3dc3d489690deb06997 Loading...

	clinicamechi.com.br/home/wp-content/plugins/elementor/assets/lib/swiper/swiper.min.js?ver=2.6.3	139 kB	2023-03-07	2024-05-10
Pretty URL clinicamechi.com.br/home/wp-content/plugins/elementor/assets/lib/swiper/swiper.min.js?ver=2.6.3 IP 162.241.2.61 ASN #46606 UNIFIEDLAYER-AS-1 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:08 Last Seen2024-05-10 10:07:04 Times Seen23360 Hash 15bb2b8491fc7e84137d65f610e1685a cd76b70a5426893e9c022b9a75c50a7c1348e2d0 b23f49f504faa32aac548b6662ffd64412f6738496fab8be38da46c5b7121804 Loading...

	clinicamechi.com.br/home/	1.3 kB	2023-03-09	2023-03-09
Pretty URL clinicamechi.com.br/home/ IP 162.241.2.61 ASN #46606 UNIFIEDLAYER-AS-1 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-09 14:54:35 Last Seen2023-03-09 14:54:35 Times Seen1 Hash 6d7c116870cfaf8ca9a63b953e396b5d 407440b9c74a69a5e49af076f60887ee657b5313 1f646d9afe14c81a1fbb94824e6a3a48e1b9970dc29f9bbdc6b041fd8678887e Loading...

	www.google.com/maps/embed?origin=mfe&pb=!1m4!2m1!1sRua+Prof.+Paulo+Mangabeira+Albernaz,+61!5e0!6i12	2.0 kB	2023-03-09	2023-03-09
Pretty URL www.google.com/maps/embed?origin=mfe&pb=!1m4!2m1!1sRua+Prof.+Paulo+Mangabeira+Albernaz,+61!5e0!6i12 IP 142.250.74.132 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-09 14:54:35 Last Seen2023-03-09 14:54:35 Times Seen1 Hash b927cf9b29590b3c2ab88e13cabda4d9 5790d41b8864a469d5e7e80bbb758cceca1997dd 33a57171e3578c31481c119304628c30a6233dbb022dca5792bae0869000ccb0 Loading...

	maps.googleapis.com/maps/api/js?client=google-maps-embed&paint_origin=&libraries=geometry,search&v=3.exp&language=en_US&callback=onApiLoad	174 kB	2023-03-09	2023-03-09
Pretty URL maps.googleapis.com/maps/api/js?client=google-maps-embed&paint_origin=&libraries=geometry,search&v=3.exp&language=en_US&callback=onApiLoad IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-09 13:58:24 Last Seen2023-03-09 17:06:03 Times Seen1 Hash 91fa1e4106a0baeebb3575cbde418c7b 940b27687f9b68e018be950125434072aecab935 a37dee937d225c1410319c4194d3b9b8dc24c5364b7bed88c09411ce7c8a4baa Loading...

	clinicamechi.com.br/home/wp-content/plugins/elementor-pro/assets/lib/sticky/jquery.sticky.min.js?ver=3.2.0	6.6 kB	2023-03-07	2024-05-10
Pretty URL clinicamechi.com.br/home/wp-content/plugins/elementor-pro/assets/lib/sticky/jquery.sticky.min.js?ver=3.2.0 IP 162.241.2.61 ASN #46606 UNIFIEDLAYER-AS-1 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:35 Last Seen2024-05-10 10:07:04 Times Seen4178 Hash e16a8821e5f099c3a619889ea7cf0399 a38e0c736aaf0b019b29b63b00e68c1381502217 a48dea362116d7516a2cf97066a32758d353760ee02dbf900ddff86b02a16473 Loading...

	clinicamechi.com.br/home/wp-content/plugins/elementor-pro/assets/js/elements-handlers.min.js?ver=3.2.0	51 kB	2023-03-07	2023-03-12
Pretty URL clinicamechi.com.br/home/wp-content/plugins/elementor-pro/assets/js/elements-handlers.min.js?ver=3.2.0 IP 162.241.2.61 ASN #46606 UNIFIEDLAYER-AS-1 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:22:05 Last Seen2023-03-12 07:55:33 Times Seen1 Hash e8802af788193709cddfa2dbc926f4f0 8a7237f4be5ad1f5119a90f9de7b2b7b21407d52 e76694d3cb00866cb18433022b009e7b097981c975177ee7b3324cd17da1153d Loading...

	clinicamechi.com.br/home/wp-content/plugins/premium-addons-for-elementor/assets/frontend/min-js/lottie.min.js?ver=4.9.22	283 kB	2023-03-07	2023-12-09
Pretty URL clinicamechi.com.br/home/wp-content/plugins/premium-addons-for-elementor/assets/frontend/min-js/lottie.min.js?ver=4.9.22 IP 162.241.2.61 ASN #46606 UNIFIEDLAYER-AS-1 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:10:29 Last Seen2023-12-09 18:20:29 Times Seen22 Hash fdc63d08bf244d34fbbe21e86c108af4 b300c3d1ed89d948f101fcf30fa4b5d64fbfe772 8135accf0bb7cd5ec030c60d2bf0fd7b854341149ae9653b1d03f64bfb0b4e69 Loading...

	clinicamechi.com.br/home/wp-content/plugins/elementor/assets/js/text-editor.2c35aafbe5bf0e127950.bundle.min.js	1.4 kB	2023-03-07	2024-04-06
Pretty URL clinicamechi.com.br/home/wp-content/plugins/elementor/assets/js/text-editor.2c35aafbe5bf0e127950.bundle.min.js IP 162.241.2.61 ASN #46606 UNIFIEDLAYER-AS-1 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:10:33 Last Seen2024-04-06 21:50:23 Times Seen211 Hash 76074a08fd420db4ef93c929df914bb1 8921f1a99d74000a1c16020fbfe59e1241f3bed5 becb1689ce3b273ee217029babc33ff91c90f592bd0cc0ccf1c0a9e7389cfaa2 Loading...

	maps.googleapis.com/maps-api-v3/api/js/51/3/common.js	255 kB	2023-03-08	2023-03-12
Pretty URL maps.googleapis.com/maps-api-v3/api/js/51/3/common.js IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 21:11:43 Last Seen2023-03-12 14:26:19 Times Seen1 Hash 87c978a83e6f6fd3a5b91c95334bcb8d 4c34d1820d01eeaf501a662fa7cefa777174e966 32999fee543995c67d5f35c2432cccc8a0df808c6e3aa5697e751e694e4a8cef Loading...

	maps.googleapis.com/maps-api-v3/api/js/51/3/map.js	73 kB	2023-03-08	2023-03-12
Pretty URL maps.googleapis.com/maps-api-v3/api/js/51/3/map.js IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 21:20:58 Last Seen2023-03-12 14:26:19 Times Seen1 Hash a6b70e624b89e269a9c3376fab9d7406 1965c21983f6e3a4b83735c199dc012b45df37b2 3739dcbf43cdc3d8af938bc654fda2ad74cf883c4d9848e314f13ac5b7e56a91 Loading...

	maps.googleapis.com/maps-api-v3/api/js/51/3/search_impl.js	2.8 kB	2023-03-08	2023-03-12
Pretty URL maps.googleapis.com/maps-api-v3/api/js/51/3/search_impl.js IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 21:20:58 Last Seen2023-03-12 14:20:02 Times Seen1 Hash cde277258c2a61dcde9d567f621e2bd7 1a4612c8c31d6b225385daf418589144f352b1e9 45cdd36ac50849b2e390133b01636a68acb05b60847c92d2508e44db03d1e3d0 Loading...

	maps.googleapis.com/maps-api-v3/api/js/51/3/controls.js	89 kB	2023-03-08	2023-03-13
Pretty URL maps.googleapis.com/maps-api-v3/api/js/51/3/controls.js IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 21:20:58 Last Seen2023-03-13 12:12:46 Times Seen1 Hash a874c64f3161e76c9fc742013031aca7 5391f5b5a07ffdd18e52ce5cd25dc1cb7b8ce0ae fe9c01e4a451cda124f8650fca402d58d984929cbd4fe243fa679f7a1b1ecb0a Loading...

	clinicamechi.com.br/home/wp-includes/js/jquery/ui/core.min.js?ver=1.13.2	21 kB	2023-03-08	2024-05-09
Pretty URL clinicamechi.com.br/home/wp-includes/js/jquery/ui/core.min.js?ver=1.13.2 IP 162.241.2.61 ASN #46606 UNIFIEDLAYER-AS-1 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 14:21:46 Last Seen2024-05-09 23:11:38 Times Seen9848 Hash 034bd11ecaf6fb9240d905245e42e202 ff136c394ed95badfc0107fb98a890dcff642828 ca7154cdda62b535ceaba9ad2a2b2217ff49de94c069a2c4e89733f3f06b3651 Loading...

	clinicamechi.com.br/home/wp-content/plugins/elementor/assets/js/frontend.min.js?ver=3.6.7	38 kB	2023-03-07	2024-05-02
Pretty URL clinicamechi.com.br/home/wp-content/plugins/elementor/assets/js/frontend.min.js?ver=3.6.7 IP 162.241.2.61 ASN #46606 UNIFIEDLAYER-AS-1 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:10:33 Last Seen2024-05-02 06:55:27 Times Seen427 Hash 6f35d3750be3979cdba82cf143093f9b 5d19dc6041e5c24b5ef205e28f9f607bfa9a03aa e0f0d6d71e313ae3ee40517ae4df4806d42aacf7720c5c0220506c247796c4f7 Loading...

	clinicamechi.com.br/home/	155 B	2023-03-09	2023-03-09
Pretty URL clinicamechi.com.br/home/ IP 162.241.2.61 ASN #46606 UNIFIEDLAYER-AS-1 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-09 14:54:35 Last Seen2023-03-09 14:54:35 Times Seen1 Hash 1dd7b9804ec4122bef4a5dc57e13685d 67fd42d5f98ae1bddc3500ab64548ca84a28e00d cafb2f03de5e9c44837701cbac3e938bc463673100bc35ff1b68beb7ab64b9e1 Loading...

	clinicamechi.com.br/home/	121 B	2023-03-09	2023-03-09
Pretty URL clinicamechi.com.br/home/ IP 162.241.2.61 ASN #46606 UNIFIEDLAYER-AS-1 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-09 14:54:35 Last Seen2023-03-09 14:54:35 Times Seen1 Hash b68c771c546c713cf8fcef5e608891b5 96e2dbbc9631a679a6fe60c74bd3ae46e65258cd 462103ee336d402a7ad879e98056604b82a07ca0fc34c73027b014de3eaffae8 Loading...

	clinicamechi.com.br/home/wp-content/uploads/premium-addons-elementor/pa-frontend-2733cb7eb.min.js?ver=1671368393	2.0 kB	2023-03-09	2023-03-09
Pretty URL clinicamechi.com.br/home/wp-content/uploads/premium-addons-elementor/pa-frontend-2733cb7eb.min.js?ver=1671368393 IP 162.241.2.61 ASN #46606 UNIFIEDLAYER-AS-1 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-09 14:54:35 Last Seen2023-03-09 14:54:35 Times Seen1 Hash 815e1cad458cf517812ddd4bef43de9d 0a6db919efd4247a9714150377156a2981d5f4aa b94f62f36ebde2c09b1a38316e2245142488695bcfdb19df31bb2d7eb08e9363 Loading...

	clinicamechi.com.br/home/wp-content/plugins/elementskit-lite/libs/framework/assets/js/frontend-script.js?ver=2.6.3	40 B	2023-03-07	2024-05-10
Pretty URL clinicamechi.com.br/home/wp-content/plugins/elementskit-lite/libs/framework/assets/js/frontend-script.js?ver=2.6.3 IP 162.241.2.61 ASN #46606 UNIFIEDLAYER-AS-1 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:10:33 Last Seen2024-05-10 07:12:31 Times Seen8531 Hash 94d041d462db321cdb888066586f2068 717d2f9da7fb9f9e2bf2058a8177a0344f8a8647 b8166c5475df6a64ab2456e95f64564164ed697d258e8bfed8cebca40efd6fa5 Loading...

	googleads.g.doubleclick.net/pagead/viewthroughconversion/10965364207/?random=1671368394837&cv=11&fst=1671368394837&bg=ffffff&guid=ON&async=1&gtm=2oabu0&u_w=1280&u_h=1024&hn=www.googleadservices.com&frm=0&url=https%3A%2F%2Fclinicamechi.com.br%2Fhome%2F&tiba=Cl%C3%ADnica%20Mechi%20%E2%80%93%20Dr%20Leandro%20Mechi&auid=1964117842.1671368395&data=event%3Dgtag.config&rfmt=3&fmt=4	1.9 kB	2023-03-09	2023-03-09
Pretty URL googleads.g.doubleclick.net/pagead/viewthroughconversion/10965364207/?random=1671368394837&cv=11&fst=1671368394837&bg=ffffff&guid=ON&async=1&gtm=2oabu0&u_w=1280&u_h=1024&hn=www.googleadservices.com&frm=0&url=https%3A%2F%2Fclinicamechi.com.br%2Fhome%2F&tiba=Cl%C3%ADnica%20Mechi%20%E2%80%93%20Dr%20Leandro%20Mechi&auid=1964117842.1671368395&data=event%3Dgtag.config&rfmt=3&fmt=4 IP 172.217.21.162 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-09 14:54:35 Last Seen2023-03-09 14:54:35 Times Seen1 Hash cac7b2bb8e44aaf7dc85047347ca4364 32a127c29bffdd60fc7d6c5256edb95990ed63e0 c30cb423ac4c2f95b73d01bdd8cc92088947eb78c4bc361d2fb0018516e74bd2 Loading...

	maps.gstatic.com/maps-api-v3/embed/js/51/3/init_embed.js	227 kB	2023-03-08	2023-03-12
Pretty URL maps.gstatic.com/maps-api-v3/embed/js/51/3/init_embed.js IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 21:20:58 Last Seen2023-03-12 14:20:02 Times Seen1 Hash 8f1345a90663ee168a0158e6f5950a71 e09f342c796fff0fad48ef5911d0882ed2fd1bbb 4a55952452aec6501f0316ffebf424c5b8fac8a787a8b45e1942659ec0faf056 Loading...

	clinicamechi.com.br/home/wp-includes/js/wp-emoji-release.min.js?ver=6.1.1	19 kB	2023-03-07	2024-05-10
Pretty URL clinicamechi.com.br/home/wp-includes/js/wp-emoji-release.min.js?ver=6.1.1 IP 162.241.2.61 ASN #46606 UNIFIEDLAYER-AS-1 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:08 Last Seen2024-05-10 12:06:17 Times Seen38249 Hash 32beb68a374e3aeac00abdf9e12b84ea b5d18aa625e8696dd9d07cd0869337717b211ae0 5aad5fbd4238981a9ff5e2772ff1353dfe1a801fb49542fe157418c1438f7782 Loading...

	clinicamechi.com.br/home/wp-content/plugins/elementskit-lite/widgets/init/assets/js/widget-scripts.js?ver=2.6.3	138 kB	2023-03-07	2024-05-09
Pretty URL clinicamechi.com.br/home/wp-content/plugins/elementskit-lite/widgets/init/assets/js/widget-scripts.js?ver=2.6.3 IP 162.241.2.61 ASN #46606 UNIFIEDLAYER-AS-1 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:16:00 Last Seen2024-05-09 23:11:39 Times Seen3571 Hash 27405af5f1692473fafa26151a67c55d e6d515a2fce4ac444d5ac9d6b8a80b9ad667ee28 cdaa4c91b5bc3dd4ce8e1345b453844dd414602022a182ce2853d87bd4b9a9d3 Loading...

	clinicamechi.com.br/home/	1.0 kB	2023-03-07	2023-04-02
Pretty URL clinicamechi.com.br/home/ IP 162.241.2.61 ASN #46606 UNIFIEDLAYER-AS-1 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:36 Last Seen2023-04-02 21:28:01 Times Seen12 Hash de3486794f319384b662e2ee337a5369 3e299f2bd299b4dfad51ca9dbec0957cb34566da f9e715ff795220f76ae82147442203ad86bf51109c44f414fe397880cd0b9553 Loading...

	clinicamechi.com.br/home/	2.1 kB	2023-03-09	2023-03-09
Pretty URL clinicamechi.com.br/home/ IP 162.241.2.61 ASN #46606 UNIFIEDLAYER-AS-1 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-09 14:54:35 Last Seen2023-03-09 14:54:35 Times Seen1 Hash a3130a5d63166e039694b79b4d1c9bd0 0d39bdb7b3eab6b4c2f64d40407e4421b8f95268 dfb23317c32f3606412ccaba52945538c826df25e9c4971e9a482f086cdc0efe Loading...

	clinicamechi.com.br/home/	117 B	2023-03-09	2023-03-09
Pretty URL clinicamechi.com.br/home/ IP 162.241.2.61 ASN #46606 UNIFIEDLAYER-AS-1 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-09 14:54:35 Last Seen2023-03-09 14:54:35 Times Seen1 Hash a4071d7b9fa8037d364832a19c0c95ed ca3c60f1b939841421884b9c2dbb79f8a7a93de7 5bd561364f7170753300e4d4098dee86d9e67706f7a3a0b0ad1281c350baa04c Loading...

	clinicamechi.com.br/home/wp-content/plugins/elementor-pro/assets/js/webpack-pro.runtime.min.js?ver=3.2.0	5.5 kB	2023-03-07	2023-11-07
Pretty URL clinicamechi.com.br/home/wp-content/plugins/elementor-pro/assets/js/webpack-pro.runtime.min.js?ver=3.2.0 IP 162.241.2.61 ASN #46606 UNIFIEDLAYER-AS-1 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:22:05 Last Seen2023-11-07 06:15:41 Times Seen21 Hash fbc7fd1246e539429145fd7958ff9de4 5d4d3d710276e72323cb7ee92f196d48cf90ef64 e837e7a31152ea3d2c72aa4377c7ca4af1689e5e692904b362ec5fdb0a9692fe Loading...

	maps.googleapis.com/maps-api-v3/api/js/51/3/overlay.js	3.6 kB	2023-03-08	2023-03-12
Pretty URL maps.googleapis.com/maps-api-v3/api/js/51/3/overlay.js IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 21:20:58 Last Seen2023-03-12 14:26:19 Times Seen1 Hash 2e0492d2bda13b0ccdd20c5f4c83b11d c8a294f9e08d8cf20fba2d123838a57952f788ba a2a936e3b225b20034387717209093e03c3e9f85652db2053cc20aeb624086f0 Loading...

	maps.googleapis.com/maps/api/js/ViewportInfoService.GetViewportInfo?1m6&1m2&1d-23.809917525168427&2d-46.931196389743626&2m2&1d-23.517481929574043&2d-46.37462541748335&2u12&4sen-US&5e0&6sm%40629000000&7b0&8e0&11e289&12e1&13shttps%3A%2F%2Fwww.google.com%2Fmaps%2Fembed&14b1&callback=_xdc_._o7wq00&client=google-maps-embed&token=103492	26 kB	2023-03-09	2023-03-09
Pretty URL maps.googleapis.com/maps/api/js/ViewportInfoService.GetViewportInfo?1m6&1m2&1d-23.809917525168427&2d-46.931196389743626&2m2&1d-23.517481929574043&2d-46.37462541748335&2u12&4sen-US&5e0&6sm%40629000000&7b0&8e0&11e289&12e1&13shttps%3A%2F%2Fwww.google.com%2Fmaps%2Fembed&14b1&callback=_xdc_._o7wq00&client=google-maps-embed&token=103492 IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-09 14:54:35 Last Seen2023-03-09 14:54:35 Times Seen1 Hash 68a85760b08618025abf723b0681c041 ef042ea45f6f388d02f5c1583381ff2cac255c20 87163462a804ac63ad6d1747f39d34008d8b792db6627ece5939a146a0d41df9 Loading...

	clinicamechi.com.br/home/wp-content/plugins/elementskit-lite/widgets/init/assets/js/animate-circle.js?ver=2.6.3	810 B	2023-03-07	2024-05-09
Pretty URL clinicamechi.com.br/home/wp-content/plugins/elementskit-lite/widgets/init/assets/js/animate-circle.js?ver=2.6.3 IP 162.241.2.61 ASN #46606 UNIFIEDLAYER-AS-1 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:16:00 Last Seen2024-05-09 17:08:34 Times Seen3590 Hash 5ab577656d48e7fb2da4071c3477d4f4 34a292f50ec979d7967a08c2ff4d707c39a11f3c 8667a50fdab17dd946e43e37c6fd1623583b9440bdca887e44cc726e48feedaf Loading...

	clinicamechi.com.br/home/wp-content/plugins/elementor-pro/assets/js/frontend.min.js?ver=3.2.0	57 kB	2023-03-07	2023-11-07
Pretty URL clinicamechi.com.br/home/wp-content/plugins/elementor-pro/assets/js/frontend.min.js?ver=3.2.0 IP 162.241.2.61 ASN #46606 UNIFIEDLAYER-AS-1 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:22:05 Last Seen2023-11-07 06:15:41 Times Seen20 Hash 22d7aaa5e4509ddaf416f9f4c18a9931 473833c1c43d741e692972ca1e5492b4289a7a03 ef39f11e2e0b2cd7d2fc4f8dbc7bfaa6b9ca58aa02ca2a6f66e58919fe80c03c Loading...

	www.googletagmanager.com/gtag/js?id=AW-10965364207	138 kB	2023-03-09	2023-03-09
Pretty URL www.googletagmanager.com/gtag/js?id=AW-10965364207 IP 142.250.74.168 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-09 14:54:35 Last Seen2023-03-09 14:54:35 Times Seen1 Hash 4d1b5508600f5e221c95fcae2a9f4b06 e096951e3c13a8d81444d1c1599c72424f3dd138 7a71e882edc0afe11b04a4f4ee6653e5f787f14414d56cf69efcbcfbe3c16b9c Loading...

	clinicamechi.com.br/home/wp-content/plugins/elementor/assets/js/webpack.runtime.min.js?ver=3.6.7	5.0 kB	2023-03-07	2024-05-02
Pretty URL clinicamechi.com.br/home/wp-content/plugins/elementor/assets/js/webpack.runtime.min.js?ver=3.6.7 IP 162.241.2.61 ASN #46606 UNIFIEDLAYER-AS-1 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:10:33 Last Seen2024-05-02 06:55:24 Times Seen366 Hash 0981243ad04e7bfb26ef9d4b6070f08e e89726f738b980c5dcd7cd805011e217e46c2a8c e31e1cfb470365c46c451ae94f3a5f9bac9df96a0f403f044f851228a5bf1667 Loading...

	maps.googleapis.com/maps-api-v3/api/js/51/3/util.js	170 kB	2023-03-08	2023-03-12
Pretty URL maps.googleapis.com/maps-api-v3/api/js/51/3/util.js IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 21:11:43 Last Seen2023-03-12 14:26:19 Times Seen1 Hash 75a28a7654f3cb167466fc9f53f26857 f0608e6738a9929564fc924d3f7b8ca719410344 ca9a23567883cb5e3c7b2d81005271db6d3753e2186c625acbf88ad47e282041 Loading...

	maps.googleapis.com/maps/api/js/AuthenticationService.Authenticate?1shttps%3A%2F%2Fwww.google.com%2Fmaps%2Fembed&2sgoogle-maps-embed&7m1&1e0&8b0&callback=_xdc_._uxcir0&client=google-maps-embed&token=71997	62 B	2023-03-08	2023-08-17
Pretty URL maps.googleapis.com/maps/api/js/AuthenticationService.Authenticate?1shttps%3A%2F%2Fwww.google.com%2Fmaps%2Fembed&2sgoogle-maps-embed&7m1&1e0&8b0&callback=_xdc_._uxcir0&client=google-maps-embed&token=71997 IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 06:25:00 Last Seen2023-08-17 14:45:14 Times Seen1761 Hash ac206f9aca43cbd08f77ebff219bad68 a8f70e30f06a72933f89c350b8fcc8e77280ff5d 5da1360295132675024820ab37f9bc1c658f6b900180906ec44125f8127f762e Loading...

	maps.googleapis.com/maps/api/js/QuotaService.RecordEvent?1shttps%3A%2F%2Fwww.google.com%2Fmaps%2Fembed&2sgoogle-maps-embed&7stdl7t2&10e1&11b0&callback=_xdc_._ckfbwf&client=google-maps-embed&token=81051	62 B	2023-03-09	2023-03-09
Pretty URL maps.googleapis.com/maps/api/js/QuotaService.RecordEvent?1shttps%3A%2F%2Fwww.google.com%2Fmaps%2Fembed&2sgoogle-maps-embed&7stdl7t2&10e1&11b0&callback=_xdc_._ckfbwf&client=google-maps-embed&token=81051 IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-09 14:54:35 Last Seen2023-03-09 14:54:35 Times Seen1 Hash a8b2b50c9cfb08e70b500383e1feeced d489e0cc2347a46a747739a2df40b521db93d542 b3e4095dde54ceb7c01c701a5d11f84941d90501ba1fb085997e6f068d2cc688 Loading...

	clinicamechi.com.br/home/wp-includes/js/jquery/jquery.min.js?ver=3.6.1	90 kB	2023-03-08	2024-05-10
Pretty URL clinicamechi.com.br/home/wp-includes/js/jquery/jquery.min.js?ver=3.6.1 IP 162.241.2.61 ASN #46606 UNIFIEDLAYER-AS-1 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 14:21:46 Last Seen2024-05-10 10:15:06 Times Seen32010 Hash 17738318d61d394f1de8890d589afaec f6d0c4dc1399cf02d53f5753ad46573a8bbc2ac3 cc7403bab52ed166e24ea9324241045af370be482f5b594468f4a6ac6e7e7981 Loading...

	clinicamechi.com.br/home/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2	11 kB	2023-03-07	2024-05-10
Pretty URL clinicamechi.com.br/home/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2 IP 162.241.2.61 ASN #46606 UNIFIEDLAYER-AS-1 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:02 Last Seen2024-05-10 12:26:04 Times Seen69191 Hash 79b4956b7ec478ec10244b5e2d33ac7d a46025b9d05e3df30d610a8aef14f392c7058dc9 029e0a2e809fd6b5dbe76abe8b7a74936be306c9a8c27c814c4d44aa54623300 Loading...

HTTP Transactions (103)

URL IP Response Size

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
9f3cf7e36f17a535e53e5213c02cf2b4
e65acbc03135ce135b9e91b4f74b3e1439faa6f6
a2317476862acd0a92fe523454c3991752b07ba14e7667f421dd9624e0233758

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "A2317476862ACD0A92FE523454C3991752B07BA14E7667F421DD9624E0233758"
Last-Modified: Sat, 17 Dec 2022 16:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8843
Expires: Sun, 18 Dec 2022 15:27:14 GMT
Date: Sun, 18 Dec 2022 12:59:51 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
460af93786e1eaa666f135e6c3fdc634
bc8aeba36225c79718f5de73d79928fe817c5490
471f4e7ae29bcf6ba1f749c0f5d4ab446cebfac5aa80c3e19c6edf21be456eb5

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "471F4E7AE29BCF6BA1F749C0F5D4AB446CEBFAC5AA80C3E19C6EDF21BE456EB5"
Last-Modified: Sat, 17 Dec 2022 16:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8300
Expires: Sun, 18 Dec 2022 15:18:11 GMT
Date: Sun, 18 Dec 2022 12:59:51 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
bcade8542361774f13ecd22557ff8fb8
5e67a3753b0856c765f3b17f1742d3ed684ffb6d
647f8d9d3d1170e60a60e15fdfd9b59445feb56a6ce9d9bb2fa4720f0bfc3a14

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "647F8D9D3D1170E60A60E15FDFD9B59445FEB56A6CE9D9BB2FA4720F0BFC3A14"
Last-Modified: Sat, 17 Dec 2022 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8225
Expires: Sun, 18 Dec 2022 15:16:56 GMT
Date: Sun, 18 Dec 2022 12:59:51 GMT
Connection: keep-alive

firefox.settings.services.mozilla.com/v1/

35.241.9.150

200 OK

939 B

URL HTTP/2
firefox.settings.services.mozilla.com/v1/
IP
35.241.9.150:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Size
939 B (939 bytes)
Hash
bf0c602d32b3c14606f22a86183b5e3c
6eabd8d83475eba731968abe1a05a8bfd272f160
6c6a7c519a9e950c2445ed874a25211a94dd4d3cf3afb0103af9dcd1dbd5ff9e

HTTP Headers

GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Alert, Content-Length, Content-Type, Retry-After, Backoff
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Sun, 18 Dec 2022 12:45:27 GMT
content-type: application/json
age: 864
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2

content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-01-19-10-06-33.chain

34.160.144.191

200 OK

5.3 kB

URL HTTP/2
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-01-19-10-06-33.chain
IP
34.160.144.191:0
ASN
#15169 GOOGLE

File type
PEM certificate\012- , ASCII text
Size
5.3 kB (5348 bytes)
Hash
53341dea33f4f3d9b4966f80589f429a
20f7b07c686c986d2ed1e3e9ad1bb2aef8edaf0d
651683e52cdbc96b289f8f123155f0b96d9f67432689e89156fa56f5a346c6a0

HTTP Headers

GET /chains/remote-settings.content-signature.mozilla.org-2023-01-19-10-06-33.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
x-amz-id-2: Gr88PVTu3esycUMy1MI+0xRCTKA0Ptt5F6dkRLM8gTE4iSuQn5kB8oOxKv62Ywc+PBFR12r6Re4=
x-amz-request-id: H26Z8ADQXJSK36XD
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Sun, 18 Dec 2022 12:52:12 GMT
age: 459
last-modified: Wed, 30 Nov 2022 10:06:34 GMT
etag: "53341dea33f4f3d9b4966f80589f429a"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2

contile.services.mozilla.com/v1/tiles

34.117.237.239

200 OK

12 B

URL HTTP/2
contile.services.mozilla.com/v1/tiles
IP
34.117.237.239:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with no line terminators
Size
12 B (12 bytes)
Hash
23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3

HTTP Headers

GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
date: Sun, 18 Dec 2022 12:59:51 GMT
content-type: application/json
content-length: 12
access-control-expose-headers: content-type
access-control-allow-credentials: true
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2

firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US

35.241.9.150

200 OK

329 B

URL HTTP/2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP
35.241.9.150:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Size
329 B (329 bytes)
Hash
0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300

HTTP Headers

GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Cache-Control, Backoff, Content-Length, Pragma, Alert, Expires, Last-Modified, Retry-After, ETag, Content-Type
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Sun, 18 Dec 2022 12:33:23 GMT
age: 1589
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2

clinicamechi.com.br/home/

162.241.2.61

301 Moved Permanently

0 B

URL HTTP/1.1
clinicamechi.com.br/home/
IP
162.241.2.61:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /home/ HTTP/1.1
Host: clinicamechi.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1

HTTP/1.1 301 Moved Permanently
Date: Sun, 18 Dec 2022 12:59:52 GMT
Server: Apache
X-Redirect-By: WordPress
Upgrade: h2,h2c
Connection: Upgrade, Keep-Alive
Location: https://clinicamechi.com.br/home/
Content-Length: 0
Keep-Alive: timeout=5, max=75
Content-Type: text/html; charset=UTF-8

ocsp.digicert.com/

93.184.220.29

200 OK

471 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
471 B (471 bytes)
Hash
0bc27cdcd6c42d7f8eece6c074bc452f
ff1234b58f7381f51f9082c1ef4894b1ac5700ff
672fc3b7ba7ee7a8b376c73a86a5bab00b1a1aead54c3ca64c0bff83d831348e

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2226
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sun, 18 Dec 2022 12:59:52 GMT
Last-Modified: Sun, 18 Dec 2022 12:22:46 GMT
Server: ECS (ska/F71A)
X-Cache: HIT
Content-Length: 471

push.services.mozilla.com/

52.37.79.227

101 Switching Protocols

0 B

URL HTTP/1.1
push.services.mozilla.com/
IP
52.37.79.227:0
ASN
#16509 AMAZON-02

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: Fb0xSAmSsGKgkZaoH/BQtQ==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket

HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: NyuI1d0koPNwc7lhwtT8WR6sBAM=

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
e5f6023b5322ba16ca1eb395b408024e
145c72fed05ce82a2617ba1a5e718d489930887d
e4faf1cd5b06b226800bb1ad8ac63d880568489341c8bfd9be2119ad222e8468

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "E4FAF1CD5B06B226800BB1AD8AC63D880568489341C8BFD9BE2119AD222E8468"
Last-Modified: Fri, 16 Dec 2022 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21600
Expires: Sun, 18 Dec 2022 18:59:52 GMT
Date: Sun, 18 Dec 2022 12:59:52 GMT
Connection: keep-alive

clinicamechi.com.br/home/

162.241.2.61

200 OK

30 kB

URL HTTP/2
clinicamechi.com.br/home/
IP
162.241.2.61:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
data
Size
30 kB (29528 bytes)
Hash
14d4536ae304ca907e3292ce61e78dd8
4300a049b59a37c0d359bc26cb63ac24e9152adf
3e2a0e6a8f331e4b7d7fa99c29691c353be42d8c20a3054b92e3b09355debaee

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /home/ HTTP/1.1
Host: clinicamechi.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1

HTTP/2 200 OK
link: <https://clinicamechi.com.br/home/wp-json/>; rel="https://api.w.org/", <https://clinicamechi.com.br/home/wp-json/wp/v2/pages/48>; rel="alternate"; type="application/json", <https://clinicamechi.com.br/home/>; rel=shortlink
vary: Accept-Encoding
content-encoding: gzip
content-type: text/html; charset=UTF-8
date: Sun, 18 Dec 2022 12:59:52 GMT
server: Apache
X-Firefox-Spdy: h2

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
74619c8a7d32d46fc91cc86f793f107c
3f2b1390ef4f7cd385f513d57297fa482f7dd43c
6aa1fbfb532fc85b041684e259bbeecf53c7e7f711c8d414fc0775c4c1404457

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "6AA1FBFB532FC85B041684E259BBEECF53C7E7F711C8D414FC0775C4C1404457"
Last-Modified: Sat, 17 Dec 2022 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=12797
Expires: Sun, 18 Dec 2022 16:33:10 GMT
Date: Sun, 18 Dec 2022 12:59:53 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
74619c8a7d32d46fc91cc86f793f107c
3f2b1390ef4f7cd385f513d57297fa482f7dd43c
6aa1fbfb532fc85b041684e259bbeecf53c7e7f711c8d414fc0775c4c1404457

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "6AA1FBFB532FC85B041684E259BBEECF53C7E7F711C8D414FC0775C4C1404457"
Last-Modified: Sat, 17 Dec 2022 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=12797
Expires: Sun, 18 Dec 2022 16:33:10 GMT
Date: Sun, 18 Dec 2022 12:59:53 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
74619c8a7d32d46fc91cc86f793f107c
3f2b1390ef4f7cd385f513d57297fa482f7dd43c
6aa1fbfb532fc85b041684e259bbeecf53c7e7f711c8d414fc0775c4c1404457

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "6AA1FBFB532FC85B041684E259BBEECF53C7E7F711C8D414FC0775C4C1404457"
Last-Modified: Sat, 17 Dec 2022 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=12797
Expires: Sun, 18 Dec 2022 16:33:10 GMT
Date: Sun, 18 Dec 2022 12:59:53 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
74619c8a7d32d46fc91cc86f793f107c
3f2b1390ef4f7cd385f513d57297fa482f7dd43c
6aa1fbfb532fc85b041684e259bbeecf53c7e7f711c8d414fc0775c4c1404457

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "6AA1FBFB532FC85B041684E259BBEECF53C7E7F711C8D414FC0775C4C1404457"
Last-Modified: Sat, 17 Dec 2022 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=12797
Expires: Sun, 18 Dec 2022 16:33:10 GMT
Date: Sun, 18 Dec 2022 12:59:53 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
74619c8a7d32d46fc91cc86f793f107c
3f2b1390ef4f7cd385f513d57297fa482f7dd43c
6aa1fbfb532fc85b041684e259bbeecf53c7e7f711c8d414fc0775c4c1404457

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "6AA1FBFB532FC85B041684E259BBEECF53C7E7F711C8D414FC0775C4C1404457"
Last-Modified: Sat, 17 Dec 2022 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=12797
Expires: Sun, 18 Dec 2022 16:33:10 GMT
Date: Sun, 18 Dec 2022 12:59:53 GMT
Connection: keep-alive

img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0c81bdf4-0a78-472d-ba75-80092016f334.png

34.120.237.76

200 OK

12 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0c81bdf4-0a78-472d-ba75-80092016f334.png
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
12 kB (12125 bytes)
Hash
ed374d0c34e8b2e15f08a6479a4f45e7
5db9e59699048998f0685e940640eae19ef11c8e
9933854830be796a87cfe44b6b8336294e2d3dbbe3205f267720aca6968c3a21

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0c81bdf4-0a78-472d-ba75-80092016f334.png HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 12125
x-amzn-requestid: e44faa15-1dfd-4bc0-bdfb-307c3de2755d
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: dT2QPFZAIAMFf5g=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-639e3734-33d636210a1e24742ee71187;Sampled=0
x-amzn-remapped-date: Sat, 17 Dec 2022 21:40:04 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: DmeWRYIlUMCR8Nds0-n0a9ju0ySR7ZuTAS82Lu8sZxPXQpBJkqzvww==
via: 1.1 a4fe306096165bb1e86e69365dc8fac2.cloudfront.net (CloudFront), 1.1 a3bd0eb50c22e4d5fbda56a30b96002c.cloudfront.net (CloudFront), 1.1 google
date: Sat, 17 Dec 2022 21:52:21 GMT
age: 54452
etag: "5db9e59699048998f0685e940640eae19ef11c8e"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

9.9 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb6b04bcc-ed1e-40f8-81f9-587f3470d5fe.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
9.9 kB (9925 bytes)
Hash
578392bee48563d778885698790a124b
597892da925c3a363878e81ff02032a316303512
d30fe2470e1f63c5249fd42d7cd804bbf326cf9a703c61e31b5322ebdb26fca6

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb6b04bcc-ed1e-40f8-81f9-587f3470d5fe.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 9925
x-amzn-requestid: 15eb2112-b947-458a-8544-51bac721773d
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: dT2k9HNjIAMFTTw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-639e37b9-7c5b94866d266af252f133b3;Sampled=0
x-amzn-remapped-date: Sat, 17 Dec 2022 21:42:17 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: vffD2KxBpOeR3uM-GHLzYmIlBCBR4K6R1ScupFeM7PQEsZSqHi_eZQ==
via: 1.1 f13aef0c4b52f6f681401f232d03eb68.cloudfront.net (CloudFront), 1.1 57a21088b36c69a83578b5a5579df58e.cloudfront.net (CloudFront), 1.1 google
date: Sat, 17 Dec 2022 21:54:10 GMT
age: 54343
etag: "597892da925c3a363878e81ff02032a316303512"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

5.2 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe2ded193-0301-4ad3-a888-72c52212ad95.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
5.2 kB (5185 bytes)
Hash
bfd0e913579b4ff2f511223d70cb01fb
497e0ffef816e100e6ddc221ec17d5f389c1142a
bee68ae1a938a5111a32dab4ec4f6964994e6c39143eac9ab94d6c5e29999372

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe2ded193-0301-4ad3-a888-72c52212ad95.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 5185
x-amzn-requestid: 3087af97-3f2d-4848-b297-eba8d84f10c5
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: dT10YHv8oAMF2sg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-639e3682-7527022d4bd9c15518fe75cc;Sampled=0
x-amzn-remapped-date: Sat, 17 Dec 2022 21:37:06 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: KyEMrUTeuVTPJ3EIkrH1DLYqa4bHK7fe6dApTAFP4XY0G4airnflGA==
via: 1.1 98e601970ea59f4d5f56a752787ff9fc.cloudfront.net (CloudFront), 1.1 fda3b2797d2719576f6b916583a28e52.cloudfront.net (CloudFront), 1.1 google
date: Sat, 17 Dec 2022 21:37:06 GMT
age: 55367
etag: "497e0ffef816e100e6ddc221ec17d5f389c1142a"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

11 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F2e098e9f-4d93-4282-beb5-b37a17658134.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
11 kB (10670 bytes)
Hash
12c4c2232b6d09e9085f0214b3260c1e
a24f8e949a2f2a973fe2dd5af994cd970d37f13a
000475ed7d0aab9a7dab3e25f0a29f82552739fea99f98cbf5131282d0db7d63

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F2e098e9f-4d93-4282-beb5-b37a17658134.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 10670
x-amzn-requestid: d72e1904-caf4-4c72-a811-d1bde023f4b2
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: dT11JGCsIAMFRDg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-639e3687-7789040d71253d00378f9162;Sampled=0
x-amzn-remapped-date: Sat, 17 Dec 2022 21:37:11 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: 8qqSQbj22k16ApKTT8y5BQItInb8EjZuACdWcsW_FnMysvnDADbLxQ==
via: 1.1 5a1753718d8b33365e5f693dd338c510.cloudfront.net (CloudFront), 1.1 57a21088b36c69a83578b5a5579df58e.cloudfront.net (CloudFront), 1.1 google
date: Sat, 17 Dec 2022 21:37:11 GMT
age: 55362
etag: "a24f8e949a2f2a973fe2dd5af994cd970d37f13a"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

8.7 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6a667002-4518-4b30-baaa-3a4eab2bdc1d.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
8.7 kB (8696 bytes)
Hash
ada04738696f861648635c9ba98841e4
ce644cd4349d88aa7c24b2503b0b18b444061639
e5cee777efbf1d8a0f95f6cce71199e5f016a91f90cf0afe38bc86654b9d730d

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6a667002-4518-4b30-baaa-3a4eab2bdc1d.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 8696
x-amzn-requestid: c897aeed-a082-46a1-965f-39e8c763cb05
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: dT10ZH3jIAMF0gw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-639e3682-548ac80840737a20743980f5;Sampled=0
x-amzn-remapped-date: Sat, 17 Dec 2022 21:37:06 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: JecluZu8ExMmP-UHM8QbK-bjm_yqULU1tl2QQDfKMea8NHM6y2JI7g==
via: 1.1 446313511980eb02f28ff5a9a4147c0a.cloudfront.net (CloudFront), 1.1 b2f9564ebf9c745cc2ceae96d434977e.cloudfront.net (CloudFront), 1.1 google
date: Sat, 17 Dec 2022 21:37:06 GMT
age: 55367
etag: "ce644cd4349d88aa7c24b2503b0b18b444061639"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

5.4 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F529727e6-116f-471b-88fd-3de99d63b5fe.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
5.4 kB (5439 bytes)
Hash
c569ac897b39fb7a1d87aec6c3403c51
260c3af2ec68b8f6e9c17104798796c507526688
8e09f0c960b384fc24cb8278d9e10f53f1b7c28ad7a4a9144aac3a610da0b3f2

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F529727e6-116f-471b-88fd-3de99d63b5fe.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 5439
x-amzn-requestid: 66cbff47-a2b4-443d-b14e-0b996b425e77
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: dT2SmGqdIAMFWlQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-639e3743-462f86df545b71be02bb07ab;Sampled=0
x-amzn-remapped-date: Sat, 17 Dec 2022 21:40:19 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: I1XWFZJQWMnUAm9Val_AJ8Pmg8LRhgZ1TYJVs1FDxi6EgXoztqnN_Q==
via: 1.1 26ca01ec7377e425b59b6a08cb1ec342.cloudfront.net (CloudFront), 1.1 e4d3d5aafc7d7d582423c073065ab562.cloudfront.net (CloudFront), 1.1 google
date: Sat, 17 Dec 2022 21:54:10 GMT
etag: "260c3af2ec68b8f6e9c17104798796c507526688"
content-type: image/jpeg
age: 54343
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

clinicamechi.com.br/home/wp-content/uploads/premium-addons-elementor/pa-frontend-2733cb7eb.min.css?ver=1671368393

162.241.2.61

200 OK

4.0 kB

URL HTTP/2
clinicamechi.com.br/home/wp-content/uploads/premium-addons-elementor/pa-frontend-2733cb7eb.min.css?ver=1671368393
IP
162.241.2.61:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
ASCII text, with very long lines (22353), with no line terminators
Size
4.0 kB (4026 bytes)
Hash
30c3b7965ab6074238f11cc4cd4778e5
35e81a53b118561176a56e657f743a42ed6955b8
9eef4ca1d04cca9021f70e1980e801f30e561cad9f6e4e36911c11a626a4a022

HTTP Headers

GET /home/wp-content/uploads/premium-addons-elementor/pa-frontend-2733cb7eb.min.css?ver=1671368393 HTTP/1.1
Host: clinicamechi.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://clinicamechi.com.br/home/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Thu, 08 Sep 2022 14:02:26 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 4026
content-type: text/css
date: Sun, 18 Dec 2022 12:59:53 GMT
server: Apache
X-Firefox-Spdy: h2

clinicamechi.com.br/home/wp-content/uploads/elementor/css/post-5.css?ver=1658447517

162.241.2.61

200 OK

355 B

URL HTTP/2
clinicamechi.com.br/home/wp-content/uploads/elementor/css/post-5.css?ver=1658447517
IP
162.241.2.61:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
ASCII text, with very long lines (1117), with no line terminators
Size
355 B (355 bytes)
Hash
9e1f7dab43fe9a0e767ca6feb1d21eca
9ec70c09811f61c8ffd0fa6cc2b58542c62cf10b
20b7f5d96619ddd0d281fa8310531e7eac2dd9d1e37e626195b2f5e1fd225bed

HTTP Headers

GET /home/wp-content/uploads/elementor/css/post-5.css?ver=1658447517 HTTP/1.1
Host: clinicamechi.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://clinicamechi.com.br/home/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Thu, 21 Jul 2022 23:51:57 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 355
content-type: text/css
date: Sun, 18 Dec 2022 12:59:53 GMT
server: Apache
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
10a3a852ef62dc4d4ccbbf6ff396688b
953e40775326102f6c3fc09a18a7039239df656f
30872c631302c914fc93b789892b200beb6284a3ba6753e1ee7f909a1231f2dd

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 18 Dec 2022 12:59:53 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

clinicamechi.com.br/home/wp-content/plugins/templately/assets/css/editor.css?ver=1.3.6

162.241.2.61

200 OK

655 B

URL HTTP/2
clinicamechi.com.br/home/wp-content/plugins/templately/assets/css/editor.css?ver=1.3.6
IP
162.241.2.61:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
ASCII text
Size
655 B (655 bytes)
Hash
e61ea406b208e09f72d8364b841e2920
7a0d2a9698729da5f6a476888ab5f97880c7241a
ca6b1179b679f289a0829f2e2fc292761ab7cdab9c0e034a8094459509f24d29

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /home/wp-content/plugins/templately/assets/css/editor.css?ver=1.3.6 HTTP/1.1
Host: clinicamechi.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://clinicamechi.com.br/home/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Thu, 21 Jul 2022 23:07:14 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 655
content-type: text/css
date: Sun, 18 Dec 2022 12:59:53 GMT
server: Apache
X-Firefox-Spdy: h2

clinicamechi.com.br/home/wp-content/themes/twentytwentytwo/style.css?ver=1.1

162.241.2.61

200 OK

2.1 kB

URL HTTP/2
clinicamechi.com.br/home/wp-content/themes/twentytwentytwo/style.css?ver=1.1
IP
162.241.2.61:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
Unicode text, UTF-8 text, with very long lines (948)
Size
2.1 kB (2087 bytes)
Hash
607663e914552c11307570f7304305d6
e4bf384d0cb8ef3c43922597a3b9059f9b67f606
fc4248483c3d4f170bd424a31b93f98b3735aae7ba754529eefd0ecc0c6144d3

HTTP Headers

GET /home/wp-content/themes/twentytwentytwo/style.css?ver=1.1 HTTP/1.1
Host: clinicamechi.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://clinicamechi.com.br/home/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Thu, 21 Jul 2022 22:02:30 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 2087
content-type: text/css
date: Sun, 18 Dec 2022 12:59:53 GMT
server: Apache
X-Firefox-Spdy: h2

clinicamechi.com.br/home/wp-content/plugins/elementor/assets/lib/eicons/css/elementor-icons.min.css?ver=5.15.0

162.241.2.61

200 OK

4.0 kB

URL HTTP/2
clinicamechi.com.br/home/wp-content/plugins/elementor/assets/lib/eicons/css/elementor-icons.min.css?ver=5.15.0
IP
162.241.2.61:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
ASCII text, with very long lines (19082)
Size
4.0 kB (3978 bytes)
Hash
1a51c193793d105fc6aaddfc3bc05349
238e509973276daa145be273af1aba0fbb3801bf
69e8578f795564941f826ab314ab57c83da7fb6ca7d9221c8df5f1e9081ae6e3

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /home/wp-content/plugins/elementor/assets/lib/eicons/css/elementor-icons.min.css?ver=5.15.0 HTTP/1.1
Host: clinicamechi.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://clinicamechi.com.br/home/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Thu, 21 Jul 2022 23:05:52 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 3978
content-type: text/css
date: Sun, 18 Dec 2022 12:59:53 GMT
server: Apache
X-Firefox-Spdy: h2

clinicamechi.com.br/home/wp-content/uploads/elementor/css/global.css?ver=1658447749

162.241.2.61

200 OK

9.1 kB

URL HTTP/2
clinicamechi.com.br/home/wp-content/uploads/elementor/css/global.css?ver=1658447749
IP
162.241.2.61:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
ASCII text, with very long lines (27491), with CRLF, LF line terminators
Size
9.1 kB (9057 bytes)
Hash
e0414ef176f32fa8e3b95fad84cf91e2
35e699156cb2bbc44da5fd2732be7a81a441027e
7b0d04bd048a5cbed9855a90bf720d6b0e4ac625c6586de46316f46b2fdc6de3

HTTP Headers

GET /home/wp-content/uploads/elementor/css/global.css?ver=1658447749 HTTP/1.1
Host: clinicamechi.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://clinicamechi.com.br/home/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Thu, 21 Jul 2022 23:55:49 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 9057
content-type: text/css
date: Sun, 18 Dec 2022 12:59:53 GMT
server: Apache
X-Firefox-Spdy: h2

www.googletagmanager.com/gtag/js?id=AW-10965364207

142.250.74.168

200 OK

53 kB

URL HTTP/2
www.googletagmanager.com/gtag/js?id=AW-10965364207
IP
142.250.74.168:0
ASN
#15169 GOOGLE

File type
ASCII text, with very long lines (1921)
Size
53 kB (52973 bytes)
Hash
46750f5b440503b1e2062dc4b3ada73d
5c4e4d53185c0e697c6ea3aeaeaf4ddaf9067822
1449052bb5640af2dc1a2e9d93d50456970376a938c69117a8c96d6d29c36365

HTTP Headers

GET /gtag/js?id=AW-10965364207 HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://clinicamechi.com.br/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Sun, 18 Dec 2022 12:59:53 GMT
expires: Sun, 18 Dec 2022 12:59:53 GMT
cache-control: private, max-age=900
last-modified: Sun, 18 Dec 2022 12:00:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 52973
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
b09c5fd392d9d40a99ab4c70e59fd24e
40e39676ca8052fd8b9eab501750f0011737f507
8c2b60b0ec0a8121d5c5a8dda2ec1a57b923efe10246386262f359f6a458cdcd

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 18 Dec 2022 12:59:53 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
10a3a852ef62dc4d4ccbbf6ff396688b
953e40775326102f6c3fc09a18a7039239df656f
30872c631302c914fc93b789892b200beb6284a3ba6753e1ee7f909a1231f2dd

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 18 Dec 2022 12:59:54 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

clinicamechi.com.br/home/wp-content/plugins/elementskit-lite/modules/elementskit-icon-pack/assets/css/ekiticons.css?ver=2.6.3

162.241.2.61

200 OK

12 kB

URL HTTP/2
clinicamechi.com.br/home/wp-content/plugins/elementskit-lite/modules/elementskit-icon-pack/assets/css/ekiticons.css?ver=2.6.3
IP
162.241.2.61:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
ASCII text, with very long lines (65536), with no line terminators
Size
12 kB (12507 bytes)
Hash
de36019dbf63f1416159b424b5dab6b1
d5fe94c68fb7d434175c050321c954bdc0ba9e4a
6e2e9dc48f822a0350a67c19dc4175729d9fe7b0dcf3a6378c7e8f43176b3d2f

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /home/wp-content/plugins/elementskit-lite/modules/elementskit-icon-pack/assets/css/ekiticons.css?ver=2.6.3 HTTP/1.1
Host: clinicamechi.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://clinicamechi.com.br/home/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Thu, 21 Jul 2022 23:06:22 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 12507
content-type: text/css
date: Sun, 18 Dec 2022 12:59:53 GMT
server: Apache
X-Firefox-Spdy: h2

clinicamechi.com.br/home/wp-content/uploads/elementor/css/post-48.css?ver=1662643665

162.241.2.61

200 OK

12 kB

URL HTTP/2
clinicamechi.com.br/home/wp-content/uploads/elementor/css/post-48.css?ver=1662643665
IP
162.241.2.61:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
ASCII text, with very long lines (65536), with no line terminators
Size
12 kB (12141 bytes)
Hash
98e775864f4a5d720e004f6716936a3d
c3677508e4cf31649485395a43d2eaee32d1f3c6
a6c4e9c48dba52b03136903d3cf537cce62ba902376d370afed60c336dd70686

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /home/wp-content/uploads/elementor/css/post-48.css?ver=1662643665 HTTP/1.1
Host: clinicamechi.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://clinicamechi.com.br/home/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Thu, 08 Sep 2022 13:27:45 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 12141
content-type: text/css
date: Sun, 18 Dec 2022 12:59:53 GMT
server: Apache
X-Firefox-Spdy: h2

clinicamechi.com.br/home/wp-content/plugins/elementskit-lite/libs/framework/assets/js/frontend-script.js?ver=2.6.3

162.241.2.61

200 OK

40 B

URL HTTP/2
clinicamechi.com.br/home/wp-content/plugins/elementskit-lite/libs/framework/assets/js/frontend-script.js?ver=2.6.3
IP
162.241.2.61:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
ASCII text, with no line terminators
Size
40 B (40 bytes)
Hash
94d041d462db321cdb888066586f2068
717d2f9da7fb9f9e2bf2058a8177a0344f8a8647
b8166c5475df6a64ab2456e95f64564164ed697d258e8bfed8cebca40efd6fa5

HTTP Headers

GET /home/wp-content/plugins/elementskit-lite/libs/framework/assets/js/frontend-script.js?ver=2.6.3 HTTP/1.1
Host: clinicamechi.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://clinicamechi.com.br/home/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Thu, 21 Jul 2022 23:06:22 GMT
accept-ranges: bytes
content-length: 40
content-type: application/javascript
date: Sun, 18 Dec 2022 12:59:53 GMT
server: Apache
X-Firefox-Spdy: h2

clinicamechi.com.br/home/wp-content/plugins/elementor/assets/lib/font-awesome/css/regular.min.css?ver=5.15.3

162.241.2.61

200 OK

308 B

URL HTTP/2
clinicamechi.com.br/home/wp-content/plugins/elementor/assets/lib/font-awesome/css/regular.min.css?ver=5.15.3
IP
162.241.2.61:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
ASCII text, with very long lines (491)
Size
308 B (308 bytes)
Hash
851fd514d412b7e854365f20a4227c8a
08bf47072f70af1816450cc85a5efb3b8f9114d2
a9449e3cc7c003e5ed6b93bae7b0bba3e4f1713c52214f41d3591692a759b9d7

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /home/wp-content/plugins/elementor/assets/lib/font-awesome/css/regular.min.css?ver=5.15.3 HTTP/1.1
Host: clinicamechi.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://clinicamechi.com.br/home/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Thu, 21 Jul 2022 23:05:52 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 308
content-type: text/css
date: Sun, 18 Dec 2022 12:59:53 GMT
server: Apache
X-Firefox-Spdy: h2

clinicamechi.com.br/home/wp-content/plugins/elementor/assets/lib/font-awesome/css/brands.min.css?ver=5.15.3

162.241.2.61

200 OK

308 B

URL HTTP/2
clinicamechi.com.br/home/wp-content/plugins/elementor/assets/lib/font-awesome/css/brands.min.css?ver=5.15.3
IP
162.241.2.61:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
ASCII text, with very long lines (489)
Size
308 B (308 bytes)
Hash
0a08469d24387f830bbaaa00b3c228ae
01f5dfeb8f93a32c9a8f66fe5940758109771fcd
3c7c29e5fc1193ff7ce24f72f77b2dc129e1a9434a97ef7b625f6f715531803c

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /home/wp-content/plugins/elementor/assets/lib/font-awesome/css/brands.min.css?ver=5.15.3 HTTP/1.1
Host: clinicamechi.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://clinicamechi.com.br/home/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Thu, 21 Jul 2022 23:05:52 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 308
content-type: text/css
date: Sun, 18 Dec 2022 12:59:53 GMT
server: Apache
X-Firefox-Spdy: h2

clinicamechi.com.br/home/wp-content/uploads/premium-addons-elementor/pa-frontend-2733cb7eb.min.js?ver=1671368393

162.241.2.61

200 OK

812 B

URL HTTP/2
clinicamechi.com.br/home/wp-content/uploads/premium-addons-elementor/pa-frontend-2733cb7eb.min.js?ver=1671368393
IP
162.241.2.61:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
ASCII text, with very long lines (2047), with no line terminators
Size
812 B (812 bytes)
Hash
bc5f43ffb52d67fc7ea9df6e122ad80d
2f704a5856682ef771b680ae8592f978ecbd1ba7
fb9e83c3c2206dbd06a0ae14d5734b3a174a613b48431895442f0bdc53f8d201

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /home/wp-content/uploads/premium-addons-elementor/pa-frontend-2733cb7eb.min.js?ver=1671368393 HTTP/1.1
Host: clinicamechi.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://clinicamechi.com.br/home/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Thu, 08 Sep 2022 14:02:26 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 812
content-type: application/javascript
date: Sun, 18 Dec 2022 12:59:53 GMT
server: Apache
X-Firefox-Spdy: h2

clinicamechi.com.br/home/wp-content/plugins/elementor/assets/lib/font-awesome/css/solid.min.css?ver=5.15.3

162.241.2.61

200 OK

309 B

URL HTTP/2
clinicamechi.com.br/home/wp-content/plugins/elementor/assets/lib/font-awesome/css/solid.min.css?ver=5.15.3
IP
162.241.2.61:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
ASCII text, with very long lines (483)
Size
309 B (309 bytes)
Hash
0ea43e394ddaae5fdb710dbbc8869e58
3b0c93adc80720236096201db5cc2751e703996d
85225fffa21a94bfd954393d7471069ab227b98fd8b51cb5ab4af5488168a34e

HTTP Headers

GET /home/wp-content/plugins/elementor/assets/lib/font-awesome/css/solid.min.css?ver=5.15.3 HTTP/1.1
Host: clinicamechi.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://clinicamechi.com.br/home/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Thu, 21 Jul 2022 23:05:52 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 309
content-type: text/css
date: Sun, 18 Dec 2022 12:59:53 GMT
server: Apache
X-Firefox-Spdy: h2

clinicamechi.com.br/home/wp-content/plugins/elementor/assets/css/widget-icon-list.min.css

162.241.2.61

200 OK

1.7 kB

URL HTTP/2
clinicamechi.com.br/home/wp-content/plugins/elementor/assets/css/widget-icon-list.min.css
IP
162.241.2.61:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
ASCII text, with very long lines (11736)
Size
1.7 kB (1652 bytes)
Hash
6a6b36e5a64ae9cc40ad1fee78a26350
e3a43fc97c47e2cc35e9bdd64b0655bca8b08969
71f63f26da359be42b1043534c716494e0df137f3176442209cff966392fc215

HTTP Headers

GET /home/wp-content/plugins/elementor/assets/css/widget-icon-list.min.css HTTP/1.1
Host: clinicamechi.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://clinicamechi.com.br/home/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Thu, 21 Jul 2022 23:05:52 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 1652
content-type: text/css
date: Sun, 18 Dec 2022 12:59:53 GMT
server: Apache
X-Firefox-Spdy: h2

clinicamechi.com.br/home/wp-content/plugins/elementskit-lite/widgets/init/assets/js/animate-circle.js?ver=2.6.3

162.241.2.61

200 OK

442 B

URL HTTP/2
clinicamechi.com.br/home/wp-content/plugins/elementskit-lite/widgets/init/assets/js/animate-circle.js?ver=2.6.3
IP
162.241.2.61:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
ASCII text, with very long lines (810), with no line terminators
Size
442 B (442 bytes)
Hash
b96c7d958b2c4a3ff7e92608615daeb0
6e95b60a83d06479921cefd745c4dd058842604e
5176a7109dc14142199bbc99ce78c5c6536812d06562b1d300b283bd26849d2f

HTTP Headers

GET /home/wp-content/plugins/elementskit-lite/widgets/init/assets/js/animate-circle.js?ver=2.6.3 HTTP/1.1
Host: clinicamechi.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://clinicamechi.com.br/home/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Thu, 21 Jul 2022 23:06:22 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 442
content-type: application/javascript
date: Sun, 18 Dec 2022 12:59:53 GMT
server: Apache
X-Firefox-Spdy: h2

clinicamechi.com.br/home/wp-content/plugins/elementor/assets/lib/animations/animations.min.css?ver=3.6.7

162.241.2.61

200 OK

3.0 kB

URL HTTP/2
clinicamechi.com.br/home/wp-content/plugins/elementor/assets/lib/animations/animations.min.css?ver=3.6.7
IP
162.241.2.61:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
ASCII text, with very long lines (10019)
Size
3.0 kB (2997 bytes)
Hash
c2b5af6052f630a96e450e5e2a3cea52
00ca76a8828a1bbec1534eb10786804fd36492f2
58f6cc2d4fa3e528622102975fb62949dc0170bd47b588a67318d18552a57d59

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /home/wp-content/plugins/elementor/assets/lib/animations/animations.min.css?ver=3.6.7 HTTP/1.1
Host: clinicamechi.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://clinicamechi.com.br/home/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Thu, 21 Jul 2022 23:05:52 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 2997
content-type: text/css
date: Sun, 18 Dec 2022 12:59:53 GMT
server: Apache
X-Firefox-Spdy: h2

clinicamechi.com.br/home/wp-content/plugins/elementskit-lite/widgets/init/assets/css/responsive.css?ver=2.6.3

162.241.2.61

200 OK

4.4 kB

URL HTTP/2
clinicamechi.com.br/home/wp-content/plugins/elementskit-lite/widgets/init/assets/css/responsive.css?ver=2.6.3
IP
162.241.2.61:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
ASCII text, with very long lines (30283), with no line terminators
Size
4.4 kB (4436 bytes)
Hash
c2c381b76f533a3992b1060b1e8275ed
8441603d412df07e265d70d72569bd3ed90c51ee
6b1c02e5f7f5a04d0320c0a69a67651c6c322b81dfcf1ad9ca29e0f7374cf613

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /home/wp-content/plugins/elementskit-lite/widgets/init/assets/css/responsive.css?ver=2.6.3 HTTP/1.1
Host: clinicamechi.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://clinicamechi.com.br/home/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Thu, 21 Jul 2022 23:06:22 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 4436
content-type: text/css
date: Sun, 18 Dec 2022 12:59:53 GMT
server: Apache
X-Firefox-Spdy: h2

clinicamechi.com.br/home/wp-content/plugins/elementor/assets/js/webpack.runtime.min.js?ver=3.6.7

162.241.2.61

200 OK

2.3 kB

URL HTTP/2
clinicamechi.com.br/home/wp-content/plugins/elementor/assets/js/webpack.runtime.min.js?ver=3.6.7
IP
162.241.2.61:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
ASCII text, with very long lines (4918)
Size
2.3 kB (2315 bytes)
Hash
cbd7eed220e5b1bb961b0c15b6057e23
f394c304e485b8e0b45e45f54a0d66d95493ef53
b970ce8c388d5eb0e502d4b8a577689e51da13cb3d6f352117536c1a7eba29f2

HTTP Headers

GET /home/wp-content/plugins/elementor/assets/js/webpack.runtime.min.js?ver=3.6.7 HTTP/1.1
Host: clinicamechi.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://clinicamechi.com.br/home/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Thu, 21 Jul 2022 23:05:52 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 2315
content-type: application/javascript
date: Sun, 18 Dec 2022 12:59:53 GMT
server: Apache
X-Firefox-Spdy: h2

clinicamechi.com.br/home/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2

162.241.2.61

200 OK

4.6 kB

URL HTTP/2
clinicamechi.com.br/home/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2
IP
162.241.2.61:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
ASCII text, with very long lines (11126)
Size
4.6 kB (4618 bytes)
Hash
acdb97105af28a7066790c6748ae2e1e
65794d2c5a9d04f747faf370bc8bacd330e69e5a
dc4efbc4b704b142b5313588c32e56ea56648068a01d2bc596a4eee06b379b5e

HTTP Headers

GET /home/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2 HTTP/1.1
Host: clinicamechi.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://clinicamechi.com.br/home/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Thu, 21 Jul 2022 22:53:12 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 4618
content-type: application/javascript
date: Sun, 18 Dec 2022 12:59:53 GMT
server: Apache
X-Firefox-Spdy: h2

clinicamechi.com.br/home/wp-content/plugins/elementor-pro/assets/lib/sticky/jquery.sticky.min.js?ver=3.2.0

162.241.2.61

200 OK

2.2 kB

URL HTTP/2
clinicamechi.com.br/home/wp-content/plugins/elementor-pro/assets/lib/sticky/jquery.sticky.min.js?ver=3.2.0
IP
162.241.2.61:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
ASCII text, with very long lines (6595), with no line terminators
Size
2.2 kB (2153 bytes)
Hash
2aa47e22e033b1a04cf09550d521033e
a0cf9de580a0eae9481906f97c1d6b38a0f8cf36
bda46e0dfe6c4c18bc8a9f9562a6e18e4261844d2d39ddcdb8b4c0160d267be7

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /home/wp-content/plugins/elementor-pro/assets/lib/sticky/jquery.sticky.min.js?ver=3.2.0 HTTP/1.1
Host: clinicamechi.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://clinicamechi.com.br/home/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Thu, 21 Jul 2022 22:21:21 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 2153
content-type: application/javascript
date: Sun, 18 Dec 2022 12:59:53 GMT
server: Apache
X-Firefox-Spdy: h2

clinicamechi.com.br/home/wp-content/plugins/elementor/assets/lib/waypoints/waypoints.min.js?ver=4.0.2

162.241.2.61

200 OK

3.7 kB

URL HTTP/2
clinicamechi.com.br/home/wp-content/plugins/elementor/assets/lib/waypoints/waypoints.min.js?ver=4.0.2
IP
162.241.2.61:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
ASCII text, with very long lines (12198), with no line terminators
Size
3.7 kB (3747 bytes)
Hash
e2a8decccf4d0a6b925af707a36077a9
26a0febc9c3d91e75410f74b9ec62099ba1cbe90
09e0e638a6f53c0fdcfeeb8ae91f3a404bef47b471324e335e29be14a2aa87f7

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /home/wp-content/plugins/elementor/assets/lib/waypoints/waypoints.min.js?ver=4.0.2 HTTP/1.1
Host: clinicamechi.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://clinicamechi.com.br/home/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Thu, 21 Jul 2022 23:05:52 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 3747
content-type: application/javascript
date: Sun, 18 Dec 2022 12:59:53 GMT
server: Apache
X-Firefox-Spdy: h2

clinicamechi.com.br/home/wp-content/plugins/elementor/assets/lib/font-awesome/css/fontawesome.min.css?ver=5.15.3

162.241.2.61

200 OK

13 kB

URL HTTP/2
clinicamechi.com.br/home/wp-content/plugins/elementor/assets/lib/font-awesome/css/fontawesome.min.css?ver=5.15.3
IP
162.241.2.61:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
ASCII text, with very long lines (57726)
Size
13 kB (12577 bytes)
Hash
dc63c0a8e2d5857cc7a00a4b5456dabb
ee29df5eb2a4bf3eb805b160551c1afd84b42599
035ef40b1dd3df1eefb2dd3c8c2096425727fb939b06f3aa0bc6ef91dafd5441

HTTP Headers

GET /home/wp-content/plugins/elementor/assets/lib/font-awesome/css/fontawesome.min.css?ver=5.15.3 HTTP/1.1
Host: clinicamechi.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://clinicamechi.com.br/home/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Thu, 21 Jul 2022 23:05:52 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 12577
content-type: text/css
date: Sun, 18 Dec 2022 12:59:53 GMT
server: Apache
X-Firefox-Spdy: h2

clinicamechi.com.br/home/wp-content/plugins/elementor/assets/js/frontend-modules.min.js?ver=3.6.7

162.241.2.61

200 OK

5.8 kB

URL HTTP/2
clinicamechi.com.br/home/wp-content/plugins/elementor/assets/js/frontend-modules.min.js?ver=3.6.7
IP
162.241.2.61:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
ASCII text, with very long lines (14448)
Size
5.8 kB (5798 bytes)
Hash
6927a5aa81bbba29cfc30dbd1c5d948e
cbb9a407b01a3b772f4c522534bbfaa084979421
004a40e9b0514d9c9b072735aeb4dec289fe6e8a5cfdbcceafa8a6309d223c81

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /home/wp-content/plugins/elementor/assets/js/frontend-modules.min.js?ver=3.6.7 HTTP/1.1
Host: clinicamechi.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://clinicamechi.com.br/home/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Thu, 21 Jul 2022 23:05:52 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 5798
content-type: application/javascript
date: Sun, 18 Dec 2022 12:59:53 GMT
server: Apache
X-Firefox-Spdy: h2

clinicamechi.com.br/home/wp-includes/js/wp-emoji-release.min.js?ver=6.1.1

162.241.2.61

200 OK

5.3 kB

URL HTTP/2
clinicamechi.com.br/home/wp-includes/js/wp-emoji-release.min.js?ver=6.1.1
IP
162.241.2.61:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
ASCII text, with very long lines (15660)
Size
5.3 kB (5321 bytes)
Hash
710f8b142ea44c0682dc2c30f318f065
49144e9b3a76d3d383b1d4359cf7a25e947f4233
708bb5819879a2a2c7670abc20a58cca68a415ffd621011cbc4c3c9d82dddc50

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /home/wp-includes/js/wp-emoji-release.min.js?ver=6.1.1 HTTP/1.1
Host: clinicamechi.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://clinicamechi.com.br/home/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Thu, 21 Jul 2022 22:44:52 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 5321
content-type: application/javascript
date: Sun, 18 Dec 2022 12:59:53 GMT
server: Apache
X-Firefox-Spdy: h2

clinicamechi.com.br/home/wp-content/plugins/elementskit-lite/widgets/init/assets/js/elementor.js?ver=2.6.3

162.241.2.61

200 OK

5.5 kB

URL HTTP/2
clinicamechi.com.br/home/wp-content/plugins/elementskit-lite/widgets/init/assets/js/elementor.js?ver=2.6.3
IP
162.241.2.61:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
ASCII text, with very long lines (16580), with no line terminators
Size
5.5 kB (5526 bytes)
Hash
cbf42b9b0dc77278ef216229622386f9
ec1c8412bbfd275182d369d784c0f04c706562bf
b66cab1c896a8f8687d6066d00fa03ee99b79365d21e31ef2b9c2f8dcbf831b6

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /home/wp-content/plugins/elementskit-lite/widgets/init/assets/js/elementor.js?ver=2.6.3 HTTP/1.1
Host: clinicamechi.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://clinicamechi.com.br/home/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Thu, 21 Jul 2022 23:06:22 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 5526
content-type: application/javascript
date: Sun, 18 Dec 2022 12:59:53 GMT
server: Apache
X-Firefox-Spdy: h2

clinicamechi.com.br/home/wp-content/plugins/elementor-pro/assets/js/webpack-pro.runtime.min.js?ver=3.2.0

162.241.2.61

200 OK

2.5 kB

URL HTTP/2
clinicamechi.com.br/home/wp-content/plugins/elementor-pro/assets/js/webpack-pro.runtime.min.js?ver=3.2.0
IP
162.241.2.61:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
ASCII text, with very long lines (5493)
Size
2.5 kB (2538 bytes)
Hash
da68d396f81c6aa9031f3bd55333676e
284eb3a267dd23c3323e927067a14346e6db5b42
ac6cec4831f7c4c20a8184f6cb4ec40c1945dbbf5279af8e4d05699cf35e191b

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /home/wp-content/plugins/elementor-pro/assets/js/webpack-pro.runtime.min.js?ver=3.2.0 HTTP/1.1
Host: clinicamechi.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://clinicamechi.com.br/home/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Thu, 21 Jul 2022 22:10:21 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 2538
content-type: application/javascript
date: Sun, 18 Dec 2022 12:59:53 GMT
server: Apache
X-Firefox-Spdy: h2

clinicamechi.com.br/home/wp-content/plugins/elementor/assets/js/frontend.min.js?ver=3.6.7

162.241.2.61

200 OK

15 kB

URL HTTP/2
clinicamechi.com.br/home/wp-content/plugins/elementor/assets/js/frontend.min.js?ver=3.6.7
IP
162.241.2.61:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
ASCII text, with very long lines (37920)
Size
15 kB (14837 bytes)
Hash
f3028a179ea0a9864e047d69ba09dd86
84c7242760730284170a4d30733ee46365f38355
b62b659bbf6a9008af15083266d3481da4614c8b736b094f495d946d183ed56e

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /home/wp-content/plugins/elementor/assets/js/frontend.min.js?ver=3.6.7 HTTP/1.1
Host: clinicamechi.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://clinicamechi.com.br/home/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Thu, 21 Jul 2022 23:05:52 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 14837
content-type: application/javascript
date: Sun, 18 Dec 2022 12:59:53 GMT
server: Apache
X-Firefox-Spdy: h2

clinicamechi.com.br/home/wp-includes/js/jquery/ui/core.min.js?ver=1.13.2

162.241.2.61

200 OK

8.3 kB

URL HTTP/2
clinicamechi.com.br/home/wp-includes/js/jquery/ui/core.min.js?ver=1.13.2
IP
162.241.2.61:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
Unicode text, UTF-8 text, with very long lines (8189)
Size
8.3 kB (8344 bytes)
Hash
838560e989767f2ef5951b9eeee20352
6bf8419cb4d68d9beced9e4b79b22b347ae16a46
72e6d275c5229613a59aef94523fc6a96330553976aee003d8544d5806fa0c3d

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /home/wp-includes/js/jquery/ui/core.min.js?ver=1.13.2 HTTP/1.1
Host: clinicamechi.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://clinicamechi.com.br/home/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Wed, 02 Nov 2022 04:03:04 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 8344
content-type: application/javascript
date: Sun, 18 Dec 2022 12:59:53 GMT
server: Apache
X-Firefox-Spdy: h2

clinicamechi.com.br/home/wp-content/themes/twentytwentytwo/assets/fonts/SourceSerif4Variable-Roman.ttf.woff2

162.241.2.61

200 OK

428 kB

URL HTTP/2
clinicamechi.com.br/home/wp-content/themes/twentytwentytwo/assets/fonts/SourceSerif4Variable-Roman.ttf.woff2
IP
162.241.2.61:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
Web Open Font Format (Version 2), TrueType, length 428448, version 4.262\012- data
Size
428 kB (428448 bytes)
Hash
378b83a85cfb1cb0f11ab503b0df456e
b622e44324ea8789789e812cae242e1f483e9811
bb8c4212414ce2a7887636e1c6eb1fd3ab46e4391226fd39653a2c2abbb17697

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /home/wp-content/themes/twentytwentytwo/assets/fonts/SourceSerif4Variable-Roman.ttf.woff2 HTTP/1.1
Host: clinicamechi.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://clinicamechi.com.br/home/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Thu, 21 Jul 2022 22:17:25 GMT
accept-ranges: bytes
content-length: 428448
content-type: font/woff2
date: Sun, 18 Dec 2022 12:59:53 GMT
server: Apache
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
157b62091fad279063f540564a4c72e6
9db33b844db31eed03695c97daf4c84a4d7d265f
92904432175c023613dea4d660d2c9098e00b7f3b628c8519bf5b404cad450a8

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 18 Dec 2022 12:59:54 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
fdbb7ba725cc70f13ad981863c8c5581
1b9a678e8f3b68f162bc7a6e7bde5171f5415046
dcab650b9fa579906912c3b598b7099cf0728e72b7782d5362849ef310a00965

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 18 Dec 2022 12:59:54 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
fdbb7ba725cc70f13ad981863c8c5581
1b9a678e8f3b68f162bc7a6e7bde5171f5415046
dcab650b9fa579906912c3b598b7099cf0728e72b7782d5362849ef310a00965

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 18 Dec 2022 12:59:54 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
fdbb7ba725cc70f13ad981863c8c5581
1b9a678e8f3b68f162bc7a6e7bde5171f5415046
dcab650b9fa579906912c3b598b7099cf0728e72b7782d5362849ef310a00965

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 18 Dec 2022 12:59:54 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmEU9fBBc4.woff2

216.58.207.227

200 OK

16 kB

URL HTTP/2
fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmEU9fBBc4.woff2
IP
216.58.207.227:0
ASN
#15169 GOOGLE

File type
Web Open Font Format (Version 2), TrueType, length 15920, version 1.0\012- data
Size
16 kB (15920 bytes)
Hash
3a44e06eb954b96aa043227f3534189d
23cef6993ddb2b2979e8e7647fc3763694e2ba7d
b019538234514166ec7665359d097403358f8a4c991901983922fb4d56989f1e

HTTP Headers

GET /s/roboto/v30/KFOlCnqEu92Fr1MmEU9fBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://clinicamechi.com.br
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15920
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 14 Dec 2022 19:33:56 GMT
expires: Thu, 14 Dec 2023 19:33:56 GMT
cache-control: public, max-age=31536000
age: 321958
last-modified: Wed, 11 May 2022 19:24:45 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

maps.google.com/maps?q=Rua%20Prof.%20Paulo%20Mangabeira%20Albernaz%2C%2061&t=m&z=12&output=embed&iwloc=near

142.250.74.46

301 Moved Permanently

308 B

URL HTTP/2
maps.google.com/maps?q=Rua%20Prof.%20Paulo%20Mangabeira%20Albernaz%2C%2061&t=m&z=12&output=embed&iwloc=near
IP
142.250.74.46:0
ASN
#15169 GOOGLE

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF, LF line terminators
Size
308 B (308 bytes)
Hash
0e144dd5d4231bd6cf76aa0c3d0aea9b
516990be98994b097c9342be77234f20a7871382
b95a8806917524dc9aacc9cf17247e2aa84f2680491e40f9acd9b60d5ada1922

HTTP Headers

GET /maps?q=Rua%20Prof.%20Paulo%20Mangabeira%20Albernaz%2C%2061&t=m&z=12&output=embed&iwloc=near HTTP/1.1
Host: maps.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://clinicamechi.com.br/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site

HTTP/2 301 Moved Permanently
date: Sun, 18 Dec 2022 12:59:54 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
location: https://www.google.com/maps/embed?origin=mfe&pb=!1m4!2m1!1sRua+Prof.+Paulo+Mangabeira+Albernaz,+61!5e0!6i12
content-type: text/html; charset=UTF-8
server: mafe
content-length: 308
x-xss-protection: 0
x-frame-options: SAMEORIGIN
server-timing: gfet4t7; dur=2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
fdbb7ba725cc70f13ad981863c8c5581
1b9a678e8f3b68f162bc7a6e7bde5171f5415046
dcab650b9fa579906912c3b598b7099cf0728e72b7782d5362849ef310a00965

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 18 Dec 2022 12:59:54 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
fdbb7ba725cc70f13ad981863c8c5581
1b9a678e8f3b68f162bc7a6e7bde5171f5415046
dcab650b9fa579906912c3b598b7099cf0728e72b7782d5362849ef310a00965

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 18 Dec 2022 12:59:54 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

fonts.gstatic.com/s/lato/v23/S6u9w4BMUTPHh50XSwiPGQ.woff2

216.58.207.227

200 OK

22 kB

URL HTTP/2
fonts.gstatic.com/s/lato/v23/S6u9w4BMUTPHh50XSwiPGQ.woff2
IP
216.58.207.227:0
ASN
#15169 GOOGLE

File type
Web Open Font Format (Version 2), TrueType, length 22504, version 1.0\012- data
Size
22 kB (22504 bytes)
Hash
1c6c65523675abc6fcd78e804325bd77
898d9808304dc157f5dcb18ca169ec6e2b96b3d7
08664859baab5ed98f0bf818ed77e38464ff1826dc6406d5ecbd651409afbd92

HTTP Headers

GET /s/lato/v23/S6u9w4BMUTPHh50XSwiPGQ.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://clinicamechi.com.br
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 22504
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 13 Dec 2022 17:14:55 GMT
expires: Wed, 13 Dec 2023 17:14:55 GMT
cache-control: public, max-age=31536000
age: 416699
last-modified: Tue, 26 Apr 2022 16:04:16 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2

216.58.207.227

200 OK

16 kB

URL HTTP/2
fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2
IP
216.58.207.227:0
ASN
#15169 GOOGLE

File type
Web Open Font Format (Version 2), TrueType, length 15860, version 1.0\012- data
Size
16 kB (15860 bytes)
Hash
e9f5aaf547f165386cd313b995dddd8e
acdef5603c2387b0e5bffd744b679a24a8bc1968
f5aebdfea35d1e7656ef4acc5db1f243209755ae3300943ef8fc6280f363c860

HTTP Headers

GET /s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://clinicamechi.com.br
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15860
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 16 Dec 2022 13:33:13 GMT
expires: Sat, 16 Dec 2023 13:33:13 GMT
cache-control: public, max-age=31536000
age: 170801
last-modified: Wed, 11 May 2022 19:24:42 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

clinicamechi.com.br/home/wp-content/plugins/premium-addons-for-elementor/assets/frontend/min-js/lottie.min.js?ver=4.9.22

162.241.2.61

200 OK

119 kB

URL HTTP/2
clinicamechi.com.br/home/wp-content/plugins/premium-addons-for-elementor/assets/frontend/min-js/lottie.min.js?ver=4.9.22
IP
162.241.2.61:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
data
Size
119 kB (119174 bytes)
Hash
cfeabee014a4a9c2d9b14ee58e23a40e
ae328559cdec71d1741f20223776a3ba9fe4e58d
14da8b727bb7f13235aa28a91eba5bf6a63b4d0b2147170097778462371d97d3

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /home/wp-content/plugins/premium-addons-for-elementor/assets/frontend/min-js/lottie.min.js?ver=4.9.22 HTTP/1.1
Host: clinicamechi.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://clinicamechi.com.br/home/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Thu, 21 Jul 2022 23:06:52 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-type: application/javascript
date: Sun, 18 Dec 2022 12:59:53 GMT
server: Apache
X-Firefox-Spdy: h2

fonts.gstatic.com/s/ebgaramond/v26/SlGUmQSNjdsmc35JDF1K5GR1SDk.woff2

216.58.207.227

200 OK

40 kB

URL HTTP/2
fonts.gstatic.com/s/ebgaramond/v26/SlGUmQSNjdsmc35JDF1K5GR1SDk.woff2
IP
216.58.207.227:0
ASN
#15169 GOOGLE

File type
Web Open Font Format (Version 2), TrueType, length 40144, version 1.0\012- data
Size
40 kB (40144 bytes)
Hash
0116041b31726cea3144332b673919e8
c6f0008edefdcf305498582fa145917b7ce420c2
306b0d4768246ba448fa14872f6b5d7dcfcf3734fb3c9b68f9041cf86884c6ce

HTTP Headers

GET /s/ebgaramond/v26/SlGUmQSNjdsmc35JDF1K5GR1SDk.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://clinicamechi.com.br
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 40144
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 13 Dec 2022 00:33:53 GMT
expires: Wed, 13 Dec 2023 00:33:53 GMT
cache-control: public, max-age=31536000
age: 476761
last-modified: Mon, 11 Jul 2022 19:16:41 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2

216.58.207.227

200 OK

16 kB

URL HTTP/2
fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2
IP
216.58.207.227:0
ASN
#15169 GOOGLE

File type
Web Open Font Format (Version 2), TrueType, length 15744, version 1.0\012- data
Size
16 kB (15744 bytes)
Hash
15d9f621c3bd1599f0169dcf0bd5e63e
7ca9c5967f3bb8bffeab24b639b49c1e7d03fa52
f6734f8177112c0839b961f96d813fcb189d81b60e96c33278c1983b6f419615

HTTP Headers

GET /s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://clinicamechi.com.br
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15744
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 14 Dec 2022 19:33:54 GMT
expires: Thu, 14 Dec 2023 19:33:54 GMT
cache-control: public, max-age=31536000
age: 321960
last-modified: Wed, 11 May 2022 19:24:48 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

fonts.gstatic.com/s/alexbrush/v20/SZc83FzrJKuqFbwMKk6EhUXz7Q.woff2

216.58.207.227

200 OK

21 kB

URL HTTP/2
fonts.gstatic.com/s/alexbrush/v20/SZc83FzrJKuqFbwMKk6EhUXz7Q.woff2
IP
216.58.207.227:0
ASN
#15169 GOOGLE

File type
Web Open Font Format (Version 2), TrueType, length 20604, version 1.0\012- data
Size
21 kB (20604 bytes)
Hash
dd2a415dfd368b8c4c3e0a012df959f7
e24f0a036d320fac147c98973d306a4dd161b3d1
d4c74901c602739058387e75fa097432f393898fee5bfc5680544422de5bd4a1

HTTP Headers

GET /s/alexbrush/v20/SZc83FzrJKuqFbwMKk6EhUXz7Q.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://clinicamechi.com.br
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 20604
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 16 Dec 2022 13:35:13 GMT
expires: Sat, 16 Dec 2023 13:35:13 GMT
cache-control: public, max-age=31536000
age: 170681
last-modified: Tue, 19 Apr 2022 19:59:41 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

fonts.gstatic.com/s/worksans/v18/QGYsz_wNahGAdqQ43Rh_fKDp.woff2

216.58.207.227

200 OK

48 kB

URL HTTP/2
fonts.gstatic.com/s/worksans/v18/QGYsz_wNahGAdqQ43Rh_fKDp.woff2
IP
216.58.207.227:0
ASN
#15169 GOOGLE

File type
Web Open Font Format (Version 2), TrueType, length 47728, version 1.0\012- data
Size
48 kB (47728 bytes)
Hash
b1581ddd77372ceb06eb14adfd1bea07
1a3b0fc96fa73b808aa1f91f122a3c9bdcf93ee8
97e82d8eac8d106b28abf1b716982c40c06fffe49cc2f34cd1c299266745ef73

HTTP Headers

GET /s/worksans/v18/QGYsz_wNahGAdqQ43Rh_fKDp.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://clinicamechi.com.br
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 47728
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 13 Dec 2022 19:22:23 GMT
expires: Wed, 13 Dec 2023 19:22:23 GMT
cache-control: public, max-age=31536000
age: 409051
last-modified: Tue, 23 Aug 2022 17:55:22 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
fdbb7ba725cc70f13ad981863c8c5581
1b9a678e8f3b68f162bc7a6e7bde5171f5415046
dcab650b9fa579906912c3b598b7099cf0728e72b7782d5362849ef310a00965

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 18 Dec 2022 12:59:54 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

clinicamechi.com.br/home/wp-content/plugins/elementor/assets/lib/font-awesome/webfonts/fa-brands-400.woff2

162.241.2.61

200 OK

77 kB

URL HTTP/2
clinicamechi.com.br/home/wp-content/plugins/elementor/assets/lib/font-awesome/webfonts/fa-brands-400.woff2
IP
162.241.2.61:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
Web Open Font Format (Version 2), TrueType, length 76764, version 331.-31261\012- data
Size
77 kB (76764 bytes)
Hash
f7307680c7fe85959f3ecf122493ea7d
fce0da592a3e536d6d5df5b50cb513398d8c5161
43c072c16c9ee6d67acdfa6c6d6685ff1e74eb4237b7cc3c1348ab1c108b26af

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /home/wp-content/plugins/elementor/assets/lib/font-awesome/webfonts/fa-brands-400.woff2 HTTP/1.1
Host: clinicamechi.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://clinicamechi.com.br/home/wp-content/plugins/elementor/assets/lib/font-awesome/css/brands.min.css?ver=5.15.3
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Thu, 21 Jul 2022 23:05:52 GMT
accept-ranges: bytes
content-length: 76764
content-type: font/woff2
date: Sun, 18 Dec 2022 12:59:54 GMT
server: Apache
X-Firefox-Spdy: h2

clinicamechi.com.br/home/wp-content/plugins/elementor/assets/lib/font-awesome/webfonts/fa-solid-900.woff2

162.241.2.61

200 OK

78 kB

URL HTTP/2
clinicamechi.com.br/home/wp-content/plugins/elementor/assets/lib/font-awesome/webfonts/fa-solid-900.woff2
IP
162.241.2.61:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
Web Open Font Format (Version 2), TrueType, length 78196, version 331.-31261\012- data
Size
78 kB (78196 bytes)
Hash
e8a427e15cc502bef99cfd722b37ea98
a9922842a120a7f1eaced667480c5e185a106d69
d0b4256abed72481585662971262eabee345c19f837af00d7ce24239d3b40eef

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /home/wp-content/plugins/elementor/assets/lib/font-awesome/webfonts/fa-solid-900.woff2 HTTP/1.1
Host: clinicamechi.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://clinicamechi.com.br/home/wp-content/plugins/elementor/assets/lib/font-awesome/css/solid.min.css?ver=5.15.3
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Thu, 21 Jul 2022 23:05:52 GMT
accept-ranges: bytes
content-length: 78196
content-type: font/woff2
date: Sun, 18 Dec 2022 12:59:54 GMT
server: Apache
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
157b62091fad279063f540564a4c72e6
9db33b844db31eed03695c97daf4c84a4d7d265f
92904432175c023613dea4d660d2c9098e00b7f3b628c8519bf5b404cad450a8

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 18 Dec 2022 12:59:54 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
953635cff82596ecfcbd7ff83474031a
5ea2fa051d49d203df6582bc273639a90348f8d2
bb63f27f12c917fccddd13680972fc6e12a8e0e4dcb9b9340f7f911c8b1db9ae

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 18 Dec 2022 12:59:54 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

clinicamechi.com.br/home/wp-content/uploads/2022/07/odontologico.jpg

162.241.2.61

200 OK

162 kB

URL HTTP/2
clinicamechi.com.br/home/wp-content/uploads/2022/07/odontologico.jpg
IP
162.241.2.61:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 2000x800, components 3\012- data
Size
162 kB (161453 bytes)
Hash
1d738a19e275cb366ba34960b6da095f
bdb65b65cd850b08bba22365a339c07f03b5b7b7
ad684744b3583f081227742063a6302c87d632715f298c6735a93d50021fde1c

HTTP Headers

GET /home/wp-content/uploads/2022/07/odontologico.jpg HTTP/1.1
Host: clinicamechi.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://clinicamechi.com.br/home/wp-content/uploads/elementor/css/post-48.css?ver=1662643665
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Thu, 21 Jul 2022 23:08:16 GMT
accept-ranges: bytes
content-length: 161453
content-type: image/jpeg
date: Sun, 18 Dec 2022 12:59:54 GMT
server: Apache
X-Firefox-Spdy: h2

clinicamechi.com.br/home/wp-content/uploads/2022/07/Site-Clinica-Mechi.jpg

162.241.2.61

200 OK

264 kB

URL HTTP/2
clinicamechi.com.br/home/wp-content/uploads/2022/07/Site-Clinica-Mechi.jpg
IP
162.241.2.61:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=14, height=533, bps=182, PhotometricIntepretation=RGB, manufacturer=Canon, model=Canon EOS REBEL T4i, orientation=upper-left, width=800], baseline, precision 8, 800x533, components 3\012- data
Size
264 kB (263664 bytes)
Hash
e1eb9c1d2649026185c8c8d6a9a2ecf0
23392d272b316040707ffdd9728308d3135556b6
c2ddaa23cf281f9ad7f860c21a2e8b90e6e67952d7470276226c38e06260dc8f

HTTP Headers

GET /home/wp-content/uploads/2022/07/Site-Clinica-Mechi.jpg HTTP/1.1
Host: clinicamechi.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://clinicamechi.com.br/home/wp-content/uploads/elementor/css/post-48.css?ver=1662643665
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Thu, 21 Jul 2022 23:08:14 GMT
accept-ranges: bytes
content-length: 263664
content-type: image/jpeg
date: Sun, 18 Dec 2022 12:59:54 GMT
server: Apache
X-Firefox-Spdy: h2

clinicamechi.com.br/home/wp-content/plugins/elementor/assets/lib/font-awesome/webfonts/fa-regular-400.woff2

162.241.2.61

200 OK

13 kB

URL HTTP/2
clinicamechi.com.br/home/wp-content/plugins/elementor/assets/lib/font-awesome/webfonts/fa-regular-400.woff2
IP
162.241.2.61:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
Web Open Font Format (Version 2), TrueType, length 13276, version 331.-31261\012- data
Size
13 kB (13276 bytes)
Hash
f0f8230116992e521526097a28f54066
0447c6b10bbf73f97b23dcfd6e6a48510822cb6e
8afc6e5e842baab16010c2ce6fcf48ec4ded8e1579a37c1f1bc027e120d04951

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /home/wp-content/plugins/elementor/assets/lib/font-awesome/webfonts/fa-regular-400.woff2 HTTP/1.1
Host: clinicamechi.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://clinicamechi.com.br/home/wp-content/plugins/elementor/assets/lib/font-awesome/css/regular.min.css?ver=5.15.3
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Thu, 21 Jul 2022 23:05:52 GMT
accept-ranges: bytes
content-length: 13276
content-type: font/woff2
date: Sun, 18 Dec 2022 12:59:54 GMT
server: Apache
X-Firefox-Spdy: h2

clinicamechi.com.br/home/wp-content/uploads/2022/07/Modelo_home-Copia.png

162.241.2.61

200 OK

1.6 MB

URL HTTP/2
clinicamechi.com.br/home/wp-content/uploads/2022/07/Modelo_home-Copia.png
IP
162.241.2.61:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
PNG image data, 2362 x 1309, 8-bit/color RGBA, non-interlaced\012- data
Size
1.6 MB (1568376 bytes)
Hash
9415ebaf966aa35dcba3207d750924c5
7ddb0bc21a8f264de48b93fb6abca2c800cd9156
90368a832a4dc58e4bc98c22698a7f65125ae5b137184c9734545fbb36576a4b

HTTP Headers

GET /home/wp-content/uploads/2022/07/Modelo_home-Copia.png HTTP/1.1
Host: clinicamechi.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://clinicamechi.com.br/home/wp-content/uploads/elementor/css/post-48.css?ver=1662643665
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Thu, 21 Jul 2022 23:08:07 GMT
accept-ranges: bytes
content-length: 1568376
content-type: image/png
date: Sun, 18 Dec 2022 12:59:54 GMT
server: Apache
X-Firefox-Spdy: h2

clinicamechi.com.br/home/wp-content/uploads/2022/07/03-mechi1.png

162.241.2.61

200 OK

54 kB

URL HTTP/2
clinicamechi.com.br/home/wp-content/uploads/2022/07/03-mechi1.png
IP
162.241.2.61:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
PNG image data, 220 x 220, 8-bit/color RGBA, non-interlaced\012- data
Size
54 kB (54539 bytes)
Hash
712ab77d95aadcfe5c9482f946547513
65c114becf1750c4cf04dcd4298d4cb0fee31bf3
2f4109df08303f5a150c628f699dfb6cc9228be499fa814a45eb2ecd39188081

HTTP Headers

GET /home/wp-content/uploads/2022/07/03-mechi1.png HTTP/1.1
Host: clinicamechi.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://clinicamechi.com.br/home/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Thu, 21 Jul 2022 23:08:14 GMT
accept-ranges: bytes
content-length: 54539
content-type: image/png
date: Sun, 18 Dec 2022 12:59:54 GMT
server: Apache
X-Firefox-Spdy: h2

www.google.com/maps/embed?origin=mfe&pb=!1m4!2m1!1sRua+Prof.+Paulo+Mangabeira+Albernaz,+61!5e0!6i12

142.250.74.132

200 OK

964 B

URL HTTP/2
www.google.com/maps/embed?origin=mfe&pb=!1m4!2m1!1sRua+Prof.+Paulo+Mangabeira+Albernaz,+61!5e0!6i12
IP
142.250.74.132:0
ASN
#15169 GOOGLE

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (1739)
Size
964 B (964 bytes)
Hash
214d5493643c7b5d5cf64192ee2a6204
4ed5be9d24193845e021d146b4dd2b34c32983b2
5f7f405e2f3cae500d91e8be25e4fc72be0c3724b7d7d1a08ed05e7f52e91aeb

HTTP Headers

GET /maps/embed?origin=mfe&pb=!1m4!2m1!1sRua+Prof.+Paulo+Mangabeira+Albernaz,+61!5e0!6i12 HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://clinicamechi.com.br/
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: text/html; charset=UTF-8
date: Sun, 18 Dec 2022 12:59:55 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
vary: Accept-Language
content-security-policy: object-src 'none';base-uri 'self';script-src 'nonce--0s0cJDM1bxtxom16nSC6Q' 'strict-dynamic' 'report-sample' 'unsafe-eval' 'unsafe-inline' https: http:;report-uri https://csp.withgoogle.com/csp/geo-maps-api/1
content-encoding: gzip
server: mafe
content-length: 964
x-xss-protection: 0
server-timing: gfet4t7; dur=295
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

clinicamechi.com.br/home/wp-content/uploads/2022/07/01-mechi.png

162.241.2.61

200 OK

74 kB

URL HTTP/2
clinicamechi.com.br/home/wp-content/uploads/2022/07/01-mechi.png
IP
162.241.2.61:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
PNG image data, 220 x 220, 8-bit/color RGBA, non-interlaced\012- data
Size
74 kB (73976 bytes)
Hash
836091ca03d4accac87946796910ec2e
af4606d90da76c22332282acef7d9680b6244231
e4c1c2ee6008a935b49be70c633ec536a4b9ab05ef99739d99f3fde59f1e0cfe

HTTP Headers

GET /home/wp-content/uploads/2022/07/01-mechi.png HTTP/1.1
Host: clinicamechi.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://clinicamechi.com.br/home/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Thu, 21 Jul 2022 23:08:14 GMT
accept-ranges: bytes
content-length: 73976
content-type: image/png
date: Sun, 18 Dec 2022 12:59:54 GMT
server: Apache
X-Firefox-Spdy: h2

clinicamechi.com.br/home/wp-content/uploads/2022/07/Logo-Mechi.png

162.241.2.61

200 OK

37 kB

URL HTTP/2
clinicamechi.com.br/home/wp-content/uploads/2022/07/Logo-Mechi.png
IP
162.241.2.61:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
PNG image data, 440 x 180, 8-bit/color RGBA, non-interlaced\012- data
Size
37 kB (37223 bytes)
Hash
daf70a47c714428980b1df25dfd85bf8
45a351de2b44181cb0167085951ae073113bbeca
c1dd7d71cee1e9c5c9efce0eddec34b2622f81e8cb043ce27eeb853147ece07d

HTTP Headers

GET /home/wp-content/uploads/2022/07/Logo-Mechi.png HTTP/1.1
Host: clinicamechi.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://clinicamechi.com.br/home/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Thu, 21 Jul 2022 23:08:05 GMT
accept-ranges: bytes
content-length: 37223
content-type: image/png
date: Sun, 18 Dec 2022 12:59:54 GMT
server: Apache
X-Firefox-Spdy: h2

clinicamechi.com.br/home/wp-content/uploads/2022/07/02-mechi.png

162.241.2.61

200 OK

41 kB

URL HTTP/2
clinicamechi.com.br/home/wp-content/uploads/2022/07/02-mechi.png
IP
162.241.2.61:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
PNG image data, 220 x 220, 8-bit/color RGBA, non-interlaced\012- data
Size
41 kB (41315 bytes)
Hash
f75bbe092a687617ed8473c1773d80f2
fb127c3fc65881d6effd9b8c32a15f06b84f0c9a
157f655e9e6b9e11aabb9f0255e420dfdd64382d41f6b1d3f48d6e4125b50991

HTTP Headers

GET /home/wp-content/uploads/2022/07/02-mechi.png HTTP/1.1
Host: clinicamechi.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://clinicamechi.com.br/home/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Thu, 21 Jul 2022 23:08:14 GMT
accept-ranges: bytes
content-length: 41315
content-type: image/png
date: Sun, 18 Dec 2022 12:59:54 GMT
server: Apache
X-Firefox-Spdy: h2

clinicamechi.com.br/home/wp-content/plugins/elementskit-lite/modules/elementskit-icon-pack/assets/fonts/elementskit.woff?y24e1e

162.241.2.61

200 OK

444 kB

URL HTTP/2
clinicamechi.com.br/home/wp-content/plugins/elementskit-lite/modules/elementskit-icon-pack/assets/fonts/elementskit.woff?y24e1e
IP
162.241.2.61:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
Web Open Font Format, TrueType, length 444192, version 1.0\012- data
Size
444 kB (444192 bytes)
Hash
0de1957df52eabcf696d5856c1c8877b
4a4d2259e49c305912765f299e2ffed8f1eb61d9
9683e68ed67ac927c4d06c65c6c6757e9b1972c50509dd5cff891ff8dece798a

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /home/wp-content/plugins/elementskit-lite/modules/elementskit-icon-pack/assets/fonts/elementskit.woff?y24e1e HTTP/1.1
Host: clinicamechi.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://clinicamechi.com.br/home/wp-content/plugins/elementskit-lite/modules/elementskit-icon-pack/assets/css/ekiticons.css?ver=2.6.3
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Thu, 21 Jul 2022 23:06:22 GMT
accept-ranges: bytes
content-length: 444192
content-type: font/woff
date: Sun, 18 Dec 2022 12:59:54 GMT
server: Apache
X-Firefox-Spdy: h2

clinicamechi.com.br/home/wp-content/plugins/elementor/assets/js/text-editor.2c35aafbe5bf0e127950.bundle.min.js

162.241.2.61

200 OK

671 B

URL HTTP/2
clinicamechi.com.br/home/wp-content/plugins/elementor/assets/js/text-editor.2c35aafbe5bf0e127950.bundle.min.js
IP
162.241.2.61:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
ASCII text, with very long lines (1320)
Size
671 B (671 bytes)
Hash
6e10a37d36257d3faf524f80f9f797b2
85129bb7918524b20dd37148efa5636136d34d31
5d463c1dcb9e44701b64411922ae28c309d3d0a8bb950794d914e56a66b8d990

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /home/wp-content/plugins/elementor/assets/js/text-editor.2c35aafbe5bf0e127950.bundle.min.js HTTP/1.1
Host: clinicamechi.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://clinicamechi.com.br/home/
Cookie: _gcl_au=1.1.1964117842.1671368395
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Thu, 21 Jul 2022 23:05:52 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 671
content-type: application/javascript
date: Sun, 18 Dec 2022 12:59:55 GMT
server: Apache
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
0973dd05c36d5b21a858d6a6bec71334
e5bc1af376e6cd71fe3be45b393ceb1f61434891
e46922306d68a94ce397d96c12c5ddfd0341e139369cab988a6c57b57a9bd0ad

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 18 Dec 2022 12:59:55 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

googleads.g.doubleclick.net/pagead/viewthroughconversion/10965364207/?random=1671368394837&cv=11&fst=1671368394837&bg=ffffff&guid=ON&async=1&gtm=2oabu0&u_w=1280&u_h=1024&hn=www.googleadservices.com&frm=0&url=https%3A%2F%2Fclinicamechi.com.br%2Fhome%2F&tiba=Cl%C3%ADnica%20Mechi%20%E2%80%93%20Dr%20Leandro%20Mechi&auid=1964117842.1671368395&data=event%3Dgtag.config&rfmt=3&fmt=4

172.217.21.162

200 OK

906 B

URL HTTP/2
googleads.g.doubleclick.net/pagead/viewthroughconversion/10965364207/?random=1671368394837&cv=11&fst=1671368394837&bg=ffffff&guid=ON&async=1&gtm=2oabu0&u_w=1280&u_h=1024&hn=www.googleadservices.com&frm=0&url=https%3A%2F%2Fclinicamechi.com.br%2Fhome%2F&tiba=Cl%C3%ADnica%20Mechi%20%E2%80%93%20Dr%20Leandro%20Mechi&auid=1964117842.1671368395&data=event%3Dgtag.config&rfmt=3&fmt=4
IP
172.217.21.162:0
ASN
#15169 GOOGLE

File type
ASCII text, with very long lines (1933), with no line terminators
Size
906 B (906 bytes)
Hash
4776324b32355ad9f50099262c02ca3f
cec375ab9f5185364cd2a296a4ba4baa8cb88fdd
311046d51d9f29c7c6e014efa27b874451e05a428f8b3a132eb187b3011ff198

HTTP Headers

GET /pagead/viewthroughconversion/10965364207/?random=1671368394837&cv=11&fst=1671368394837&bg=ffffff&guid=ON&async=1&gtm=2oabu0&u_w=1280&u_h=1024&hn=www.googleadservices.com&frm=0&url=https%3A%2F%2Fclinicamechi.com.br%2Fhome%2F&tiba=Cl%C3%ADnica%20Mechi%20%E2%80%93%20Dr%20Leandro%20Mechi&auid=1964117842.1671368395&data=event%3Dgtag.config&rfmt=3&fmt=4 HTTP/1.1
Host: googleads.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://clinicamechi.com.br/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Sun, 18 Dec 2022 12:59:55 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
content-type: text/javascript; charset=UTF-8
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: br
server: cafe
content-length: 906
x-xss-protection: 0
set-cookie: test_cookie=CheckForPermission; expires=Sun, 18-Dec-2022 13:14:55 GMT; path=/; domain=.doubleclick.net; Secure; SameSite=none
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

clinicamechi.com.br/home/wp-includes/js/jquery/jquery.min.js?ver=3.6.1

162.241.2.61

200 OK

39 kB

URL HTTP/2
clinicamechi.com.br/home/wp-includes/js/jquery/jquery.min.js?ver=3.6.1
IP
162.241.2.61:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
data
Size
39 kB (39195 bytes)
Hash
f75f410827b79a1058ac46abf8b6727e
9c0f96601582281329e822a0e6d0d182f3aa840d
755957156b48cfb281d92cb946e2f3fae2bf22e6056052628659ded8922576b0

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /home/wp-includes/js/jquery/jquery.min.js?ver=3.6.1 HTTP/1.1
Host: clinicamechi.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://clinicamechi.com.br/home/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Wed, 02 Nov 2022 04:03:04 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-type: application/javascript
date: Sun, 18 Dec 2022 12:59:53 GMT
server: Apache
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
0973dd05c36d5b21a858d6a6bec71334
e5bc1af376e6cd71fe3be45b393ceb1f61434891
e46922306d68a94ce397d96c12c5ddfd0341e139369cab988a6c57b57a9bd0ad

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 18 Dec 2022 12:59:55 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

clinicamechi.com.br/favicon.ico

162.241.2.61

404 Not Found

836 B

URL HTTP/2
clinicamechi.com.br/favicon.ico
IP
162.241.2.61:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with CRLF line terminators
Size
836 B (836 bytes)
Hash
e73571aebce42792b40325ac9117da29
d3fe79abd3a925079c1133a0d3c46fd8941514f7
2726faa315039af16d833fbca9694060c9cece0cbe9dd3069bdbba15d073aef2

HTTP Headers

GET /favicon.ico HTTP/1.1
Host: clinicamechi.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://clinicamechi.com.br/home/
Cookie: _gcl_au=1.1.1964117842.1671368395
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 404 Not Found
last-modified: Thu, 06 Oct 2022 11:26:09 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 836
content-type: text/html
date: Sun, 18 Dec 2022 12:59:55 GMT
server: Apache
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
2f3dbc33499e42ecb967c87f0df23a85
96a87c596ae880eb482b0e8a5fdb6e09bb728895
aee03631139a47dfbb4dbbfd4257d10afc3b814b5f70366759bdff153e9e2bd0

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 18 Dec 2022 12:59:55 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

www.google.no/pagead/1p-user-list/10965364207/?random=1671368394837&cv=11&fst=1671364800000&bg=ffffff&guid=ON&async=1&gtm=2oabu0&u_w=1280&u_h=1024&frm=0&url=https%3A%2F%2Fclinicamechi.com.br%2Fhome%2F&tiba=Cl%C3%ADnica%20Mechi%20%E2%80%93%20Dr%20Leandro%20Mechi&data=event%3Dgtag.config&fmt=3&is_vtc=1&random=882559435&rmt_tld=1&ipr=y

142.250.74.163

200 OK

42 B

URL HTTP/2
www.google.no/pagead/1p-user-list/10965364207/?random=1671368394837&cv=11&fst=1671364800000&bg=ffffff&guid=ON&async=1&gtm=2oabu0&u_w=1280&u_h=1024&frm=0&url=https%3A%2F%2Fclinicamechi.com.br%2Fhome%2F&tiba=Cl%C3%ADnica%20Mechi%20%E2%80%93%20Dr%20Leandro%20Mechi&data=event%3Dgtag.config&fmt=3&is_vtc=1&random=882559435&rmt_tld=1&ipr=y
IP
142.250.74.163:0
ASN
#15169 GOOGLE

File type
GIF image data, version 89a, 1 x 1\012- data
Size
42 B (42 bytes)
Hash
d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629

HTTP Headers

GET /pagead/1p-user-list/10965364207/?random=1671368394837&cv=11&fst=1671364800000&bg=ffffff&guid=ON&async=1&gtm=2oabu0&u_w=1280&u_h=1024&frm=0&url=https%3A%2F%2Fclinicamechi.com.br%2Fhome%2F&tiba=Cl%C3%ADnica%20Mechi%20%E2%80%93%20Dr%20Leandro%20Mechi&data=event%3Dgtag.config&fmt=3&is_vtc=1&random=882559435&rmt_tld=1&ipr=y HTTP/1.1
Host: www.google.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://clinicamechi.com.br/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Sun, 18 Dec 2022 12:59:55 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
content-security-policy: script-src 'none'; object-src 'none'
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

clinicamechi.com.br/home/wp-content/plugins/elementskit-lite/widgets/init/assets/js/widget-scripts.js?ver=2.6.3

162.241.2.61

200 OK

56 kB

URL HTTP/2
clinicamechi.com.br/home/wp-content/plugins/elementskit-lite/widgets/init/assets/js/widget-scripts.js?ver=2.6.3
IP
162.241.2.61:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
ASCII text, with very long lines (45047)
Size
56 kB (55849 bytes)
Hash
c84eccbfe16683770631863ce5a92ea4
60a11f95b0e06e7290e7fda8f718a4cbbcaafd63
3e9e4c58f19bf489d6d9d48fddcb637da199e37ef40fead3fe9fff7c868d176f

HTTP Headers

GET /home/wp-content/plugins/elementskit-lite/widgets/init/assets/js/widget-scripts.js?ver=2.6.3 HTTP/1.1
Host: clinicamechi.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://clinicamechi.com.br/home/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Thu, 21 Jul 2022 23:06:22 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-type: application/javascript
date: Sun, 18 Dec 2022 12:59:53 GMT
server: Apache
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
2f3dbc33499e42ecb967c87f0df23a85
96a87c596ae880eb482b0e8a5fdb6e09bb728895
aee03631139a47dfbb4dbbfd4257d10afc3b814b5f70366759bdff153e9e2bd0

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 18 Dec 2022 12:59:55 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

fonts.googleapis.com/css?family=Roboto%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic%7CRoboto+Slab%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic%7CAlex+Brush%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic%7CWork+Sans%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic%7CEB+Garamond%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic%7CLato%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic&display=auto&ver=6.1.1

142.250.74.74

200 OK

0 B

URL HTTP/2
fonts.googleapis.com/css?family=Roboto%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic%7CRoboto+Slab%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic%7CAlex+Brush%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic%7CWork+Sans%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic%7CEB+Garamond%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic%7CLato%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic&display=auto&ver=6.1.1
IP
142.250.74.74:0
ASN
#15169 GOOGLE

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /css?family=Roboto%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic%7CRoboto+Slab%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic%7CAlex+Brush%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic%7CWork+Sans%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic%7CEB+Garamond%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic%7CLato%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic&display=auto&ver=6.1.1 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://clinicamechi.com.br/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Sun, 18 Dec 2022 12:59:53 GMT
date: Sun, 18 Dec 2022 12:59:53 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

clinicamechi.com.br/home/wp-content/plugins/elementor/assets/css/frontend-lite.min.css?ver=3.6.7

162.241.2.61

200 OK

0 B

URL HTTP/2
clinicamechi.com.br/home/wp-content/plugins/elementor/assets/css/frontend-lite.min.css?ver=3.6.7
IP
162.241.2.61:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /home/wp-content/plugins/elementor/assets/css/frontend-lite.min.css?ver=3.6.7 HTTP/1.1
Host: clinicamechi.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://clinicamechi.com.br/home/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Thu, 21 Jul 2022 23:05:52 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-type: text/css
date: Sun, 18 Dec 2022 12:59:53 GMT
server: Apache
X-Firefox-Spdy: h2

clinicamechi.com.br/home/wp-content/plugins/elementor-pro/assets/css/frontend.min.css?ver=3.2.0

162.241.2.61

200 OK

0 B

URL HTTP/2
clinicamechi.com.br/home/wp-content/plugins/elementor-pro/assets/css/frontend.min.css?ver=3.2.0
IP
162.241.2.61:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type

Size
0 B (0 bytes)
Hash

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /home/wp-content/plugins/elementor-pro/assets/css/frontend.min.css?ver=3.2.0 HTTP/1.1
Host: clinicamechi.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://clinicamechi.com.br/home/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Thu, 21 Jul 2022 22:09:47 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-type: text/css
date: Sun, 18 Dec 2022 12:59:53 GMT
server: Apache
X-Firefox-Spdy: h2

clinicamechi.com.br/home/wp-content/plugins/elementor/assets/lib/swiper/swiper.min.js?ver=2.6.3

162.241.2.61

200 OK

0 B

URL HTTP/2
clinicamechi.com.br/home/wp-content/plugins/elementor/assets/lib/swiper/swiper.min.js?ver=2.6.3
IP
162.241.2.61:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type

Size
0 B (0 bytes)
Hash

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /home/wp-content/plugins/elementor/assets/lib/swiper/swiper.min.js?ver=2.6.3 HTTP/1.1
Host: clinicamechi.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://clinicamechi.com.br/home/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Thu, 21 Jul 2022 23:05:52 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-type: application/javascript
date: Sun, 18 Dec 2022 12:59:53 GMT
server: Apache
X-Firefox-Spdy: h2

clinicamechi.com.br/home/wp-content/plugins/elementskit-lite/widgets/init/assets/css/widget-styles.css?ver=2.6.3

162.241.2.61

200 OK

0 B

URL HTTP/2
clinicamechi.com.br/home/wp-content/plugins/elementskit-lite/widgets/init/assets/css/widget-styles.css?ver=2.6.3
IP
162.241.2.61:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type

Size
0 B (0 bytes)
Hash

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /home/wp-content/plugins/elementskit-lite/widgets/init/assets/css/widget-styles.css?ver=2.6.3 HTTP/1.1
Host: clinicamechi.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://clinicamechi.com.br/home/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Thu, 21 Jul 2022 23:06:22 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-type: text/css
date: Sun, 18 Dec 2022 12:59:53 GMT
server: Apache
X-Firefox-Spdy: h2

clinicamechi.com.br/home/wp-content/plugins/elementor-pro/assets/js/elements-handlers.min.js?ver=3.2.0

162.241.2.61

200 OK

0 B

URL HTTP/2
clinicamechi.com.br/home/wp-content/plugins/elementor-pro/assets/js/elements-handlers.min.js?ver=3.2.0
IP
162.241.2.61:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /home/wp-content/plugins/elementor-pro/assets/js/elements-handlers.min.js?ver=3.2.0 HTTP/1.1
Host: clinicamechi.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://clinicamechi.com.br/home/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Thu, 21 Jul 2022 22:10:00 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-type: application/javascript
date: Sun, 18 Dec 2022 12:59:53 GMT
server: Apache
X-Firefox-Spdy: h2

clinicamechi.com.br/home/wp-content/plugins/elementor-pro/assets/js/frontend.min.js?ver=3.2.0

162.241.2.61

200 OK

0 B

URL HTTP/2
clinicamechi.com.br/home/wp-content/plugins/elementor-pro/assets/js/frontend.min.js?ver=3.2.0
IP
162.241.2.61:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /home/wp-content/plugins/elementor-pro/assets/js/frontend.min.js?ver=3.2.0 HTTP/1.1
Host: clinicamechi.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://clinicamechi.com.br/home/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Thu, 21 Jul 2022 22:10:05 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-type: application/javascript
date: Sun, 18 Dec 2022 12:59:53 GMT
server: Apache
X-Firefox-Spdy: h2

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

OpenPhish

PhishTank

Fortinet's Web Filter

mnemonic secure dns

Quad9 DNS

JavaScript (45)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations