r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 2857be6f18459c7a4a7f00f6cd6076f1
570609086d72a9be57cde7bfefd25663c1035fba
bd8abb8f420d1e31462fca1d6a7caadf1e2bba6fc7db05684b5811e00e84107f
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "BD8ABB8F420D1E31462FCA1D6A7CAADF1E2BBA6FC7DB05684B5811E00E84107F"
Last-Modified: Fri, 17 Mar 2023 14:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10247
Expires: Sat, 18 Mar 2023 10:35:34 GMT
Date: Sat, 18 Mar 2023 07:44:47 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 443a700f85619f4fd8a548421c5c23e2
a58764a07feafb2bb4b340c020b5104c55b35195
0bc80613f3d493ea081bf5672ab76f6f33a1dcc0710fe1431de83c46d7e8d31d
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "0BC80613F3D493EA081BF5672AB76F6F33A1DCC0710FE1431DE83C46D7E8D31D"
Last-Modified: Fri, 17 Mar 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3983
Expires: Sat, 18 Mar 2023 08:51:10 GMT
Date: Sat, 18 Mar 2023 07:44:47 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
35.241.9.150200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash bc86ef2a0cee04915bc360f5821adc8f
3658f9028cce204d38f7f48fcfaa2a8e4f54383a
aeecd718d03811322457de4f20828bdba86b277e7e0e328cae9c0a8075638454
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Length, Retry-After, Content-Type, Alert, Backoff
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Sat, 18 Mar 2023 07:14:31 GMT
content-type: application/json
age: 1816
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash eddc2a353d39e5ce5c30d7e90b3ed6a5
305e86e4b966344c135c50af9a6509ffd3a83e9e
bd775c38c2e11f1baedde5d92ab17ceaf4c2067f8ea996595a66801758a71813
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "BD775C38C2E11F1BAEDDE5D92AB17CEAF4C2067F8EA996595A66801758A71813"
Last-Modified: Fri, 17 Mar 2023 19:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=13876
Expires: Sat, 18 Mar 2023 11:36:03 GMT
Date: Sat, 18 Mar 2023 07:44:47 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-04-30-16-53-14.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-04-30-16-53-14.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash e7bace7c1e04d44012e37ddffe36e5d5
3ac8d7c0a9d3e3f0b28b2530c7b8d8407b4042c2
6b4f80f2e95b26f6122ea8dcd0ef8d762299be822c69e839fc37581ca2bcb5f2
GET /chains/remote-settings.content-signature.mozilla.org-2023-04-30-16-53-14.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: 7qzDowEhVyZv5YlwgrpTnhOGDU8lbUlj0JzarTUOKxxRcputB0xvuGk8DRtMgRFnUZ6ZM/EpsuEnHsFTD8KPkg==
x-amz-request-id: J1B77FBRGN1JEBHY
x-amz-server-side-encryption: AES256
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Sat, 18 Mar 2023 06:57:46 GMT
age: 2821
last-modified: Sat, 11 Mar 2023 16:53:15 GMT
etag: "e7bace7c1e04d44012e37ddffe36e5d5"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Sat, 18 Mar 2023 07:44:47 GMT
content-type: application/json
content-length: 12
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
access-control-allow-credentials: true
access-control-expose-headers: content-type
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
martecmed.com.br/portal/wp-admin/js/widgets/seu/login.php?cmd=login_submit&id=c1484cdf6fa6fd2a0ec1bfc028d4c5aac1484cdf6fa6fd2a0ec1bfc028d4c5aa&session=c1484cdf6fa6fd2a0ec1bfc028d4c5aac1484cdf6fa6fd2a0ec1bfc028d4c5aa
200.201.196.138301 Moved Permanently 439 B URL HTTP/1.1 martecmed.com.br/portal/wp-admin/js/widgets/seu/login.php?cmd=login_submit&id=c1484cdf6fa6fd2a0ec1bfc028d4c5aac1484cdf6fa6fd2a0ec1bfc028d4c5aa&session=c1484cdf6fa6fd2a0ec1bfc028d4c5aac1484cdf6fa6fd2a0ec1bfc028d4c5aa
IP 200.201.196.138:0
ASN #10733 DC MATRIX INTERNET SA
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash d16c684d3abb0dbaca605e7c34370e6f
9b0a4af72fd3831580dfcf3e520064adac14e176
0b829d4be74428b35a2dc2a7025e6e845738127c7fe24d4dff57abdd728a578d
NIDS Severity Alert suricata high ET PHISHING Generic Phishkit Activity (GET)
GET /portal/wp-admin/js/widgets/seu/login.php?cmd=login_submit&id=c1484cdf6fa6fd2a0ec1bfc028d4c5aac1484cdf6fa6fd2a0ec1bfc028d4c5aa&session=c1484cdf6fa6fd2a0ec1bfc028d4c5aac1484cdf6fa6fd2a0ec1bfc028d4c5aa HTTP/1.1
Host: martecmed.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Date: Sat, 18 Mar 2023 07:44:47 GMT
Server: Apache/2
Location: https://martecmed.com.br/portal/wp-admin/js/widgets/seu/login.php?cmd=login_submit&id=c1484cdf6fa6fd2a0ec1bfc028d4c5aac1484cdf6fa6fd2a0ec1bfc028d4c5aa&session=c1484cdf6fa6fd2a0ec1bfc028d4c5aac1484cdf6fa6fd2a0ec1bfc028d4c5aa
Content-Length: 439
Keep-Alive: timeout=2, max=100
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
35.241.9.150200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Retry-After, ETag, Pragma, Content-Type, Content-Length, Cache-Control, Expires, Backoff, Alert, Last-Modified
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Sat, 18 Mar 2023 07:14:32 GMT
age: 1815
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 70f795f7a73fb087a4b08eebe6e2a970
faaa9283e766256900f3c3e00dee00973e7da2a6
4f7e4813f82f60ebf9c536d9342726307686931df7309a4c367f3b658602efde
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "4F7E4813F82F60EBF9C536D9342726307686931DF7309A4C367F3B658602EFDE"
Last-Modified: Fri, 17 Mar 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5677
Expires: Sat, 18 Mar 2023 09:19:25 GMT
Date: Sat, 18 Mar 2023 07:44:48 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash b929b6720d709c0862ab52bb2f448268
b20c21feac683c67ca55731b95616095ee9d80b7
95cd74996fe32ca59c73e1300a7b749d7be61270283a89a3e63e03841e4717d5
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "95CD74996FE32CA59C73E1300A7B749D7BE61270283A89A3E63E03841E4717D5"
Last-Modified: Fri, 17 Mar 2023 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21498
Expires: Sat, 18 Mar 2023 13:43:06 GMT
Date: Sat, 18 Mar 2023 07:44:48 GMT
Connection: keep-alive
push.services.mozilla.com/
54.149.224.76101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 54.149.224.76:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: Y8G2etC0Jt33AcPDzjgOOg==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: /rEsVf+7+lWh/Dve/WQLd0iwpAM=
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 84762efcb2e1535ae49fca6c1523df33
93e7f138a491d4276a793c2e5b947195ae69a88c
920778735cfb5f0395bbfa1391cb4e90c547d455cac77c8bb161a0c3b55a6a3f
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "920778735CFB5F0395BBFA1391CB4E90C547D455CAC77C8BB161A0C3B55A6A3F"
Last-Modified: Thu, 16 Mar 2023 15:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9725
Expires: Sat, 18 Mar 2023 10:26:54 GMT
Date: Sat, 18 Mar 2023 07:44:49 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 84762efcb2e1535ae49fca6c1523df33
93e7f138a491d4276a793c2e5b947195ae69a88c
920778735cfb5f0395bbfa1391cb4e90c547d455cac77c8bb161a0c3b55a6a3f
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "920778735CFB5F0395BBFA1391CB4E90C547D455CAC77C8BB161A0C3B55A6A3F"
Last-Modified: Thu, 16 Mar 2023 15:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9725
Expires: Sat, 18 Mar 2023 10:26:54 GMT
Date: Sat, 18 Mar 2023 07:44:49 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 84762efcb2e1535ae49fca6c1523df33
93e7f138a491d4276a793c2e5b947195ae69a88c
920778735cfb5f0395bbfa1391cb4e90c547d455cac77c8bb161a0c3b55a6a3f
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "920778735CFB5F0395BBFA1391CB4E90C547D455CAC77C8BB161A0C3B55A6A3F"
Last-Modified: Thu, 16 Mar 2023 15:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9725
Expires: Sat, 18 Mar 2023 10:26:54 GMT
Date: Sat, 18 Mar 2023 07:44:49 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 84762efcb2e1535ae49fca6c1523df33
93e7f138a491d4276a793c2e5b947195ae69a88c
920778735cfb5f0395bbfa1391cb4e90c547d455cac77c8bb161a0c3b55a6a3f
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "920778735CFB5F0395BBFA1391CB4E90C547D455CAC77C8BB161A0C3B55A6A3F"
Last-Modified: Thu, 16 Mar 2023 15:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9725
Expires: Sat, 18 Mar 2023 10:26:54 GMT
Date: Sat, 18 Mar 2023 07:44:49 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9607ae69-eb3e-4674-8d7e-92ec3396add8.jpeg
34.120.237.76200 OK 5.1 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9607ae69-eb3e-4674-8d7e-92ec3396add8.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 89ee2faaca51d8bf8e29f55a3e0d3233
97b5f79e2d7905299e96896e0d50a2d9d7441cb2
5ac04b8981b716a8b64b71a751018640bb173271e0d1ab9c814d9e3b31648a53
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9607ae69-eb3e-4674-8d7e-92ec3396add8.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5114
x-amzn-requestid: 01a67a01-e9d8-457a-8de9-9dd65092476c
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: B8eO4FTzIAMFq9Q=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6414dd92-1a94fb0065b0e654439db7c2;Sampled=0
x-amzn-remapped-date: Fri, 17 Mar 2023 21:37:22 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C3
x-cache: Hit from cloudfront
x-amz-cf-id: _l_5sg7TbTk8YSja0WOC74eBcln7NfD2_DLmqUN4yVgwhsh7HY1czg==
via: 1.1 9b311162717b41c968f6f00426d88aaa.cloudfront.net (CloudFront), 1.1 0906d4887f6625f4a4467d8d4fd268d2.cloudfront.net (CloudFront), 1.1 google
date: Fri, 17 Mar 2023 22:05:35 GMT
age: 34754
etag: "97b5f79e2d7905299e96896e0d50a2d9d7441cb2"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F87df4bcd-c6cd-4a0c-a9f5-dffb7f36d2e4.jpeg
34.120.237.76200 OK 8.5 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F87df4bcd-c6cd-4a0c-a9f5-dffb7f36d2e4.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash be71491cee9b47dc3ffb23b4fdff25b3
79c7d22c8df6d305f46c5779ccb9f25169d4d111
e785896e5840fb901ddd0118bef3ccad6b59a96d8eef0e8ccd9c95a3c261ba45
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F87df4bcd-c6cd-4a0c-a9f5-dffb7f36d2e4.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8487
x-amzn-requestid: 92381f1a-0140-47e9-a971-594a7de36c3c
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: BkEcBGizoAMFgOA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-640b1ab3-1a54b65a5d7083e62dcb85ab;Sampled=0
x-amzn-remapped-date: Fri, 10 Mar 2023 11:55:31 GMT
x-amz-cf-pop: SEA19-C3
x-cache: Hit from cloudfront
x-amz-cf-id: Nn4eV-UeuWZ02ANOxzTUSgE4UODtaZxeIjp8UJfU8PgUny2shFaDjQ==
via: 1.1 112c6b3f9aea37a6cb00b7d933e5af6e.cloudfront.net (CloudFront), 1.1 74ab105148338444981d1b2277ffd9c4.cloudfront.net (CloudFront), 1.1 google
date: Fri, 17 Mar 2023 22:31:05 GMT
age: 33224
etag: "79c7d22c8df6d305f46c5779ccb9f25169d4d111"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3f28ddee-c5ae-4106-9ce2-9c8042cd4b69.jpeg
34.120.237.76200 OK 11 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3f28ddee-c5ae-4106-9ce2-9c8042cd4b69.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 05370e6d7505b4529eea9e993f98e1fe
83339f33716c03c3ea995a323bb040b50f5b7edc
563d0b70a19778405fd332ca5172840a6103cd363771108e172b1b1815303abf
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3f28ddee-c5ae-4106-9ce2-9c8042cd4b69.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 11204
x-amzn-requestid: d84b9e32-9fea-45ce-87ef-508caff41b62
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: B8eTFG8GIAMFWmg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6414ddad-29cab07f73030a1145e941b6;Sampled=0
x-amzn-remapped-date: Fri, 17 Mar 2023 21:37:49 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C3
x-cache: Hit from cloudfront
x-amz-cf-id: zVpaEcPZ1C7mdKusWhw8JSrURp_0FYRpK-6tP-ckngxWEdUzORYGnA==
via: 1.1 da5952aa802df39905ceb16592e9698a.cloudfront.net (CloudFront), 1.1 2c6b5dd77f1abe60653ce0454f344b64.cloudfront.net (CloudFront), 1.1 google
date: Fri, 17 Mar 2023 21:51:57 GMT
age: 35572
etag: "83339f33716c03c3ea995a323bb040b50f5b7edc"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F2f1a34e9-7909-48a7-b61c-9327da80fb59.jpeg
34.120.237.76200 OK 6.8 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F2f1a34e9-7909-48a7-b61c-9327da80fb59.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash b64359187a0861404cdc0aae39a4131b
8d038b2703a6fba15175e4f71f4d81df681e2e5a
b378f8c9f79656dfeb114acc36072cc9badc3e693f40db1ac901c3a562a75042
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F2f1a34e9-7909-48a7-b61c-9327da80fb59.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6770
x-amzn-requestid: 23077f41-b559-400e-999b-e435c9d4da42
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: B8eNfHDooAMFl6A=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6414dd89-02d9989b3477f6f474073650;Sampled=0
x-amzn-remapped-date: Fri, 17 Mar 2023 21:37:13 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C3
x-cache: Hit from cloudfront
x-amz-cf-id: pnVKCmvu5ljlUzeXqp2AuPnBL-vQcSEZ1WgdjcOgDFaxZKHg9i1BHg==
via: 1.1 0aebf3fe433ff96e68d785fad4ea4c0e.cloudfront.net (CloudFront), 1.1 ae06b19943a6bad1c1b12b79f7339498.cloudfront.net (CloudFront), 1.1 google
date: Fri, 17 Mar 2023 22:05:08 GMT
age: 34781
etag: "8d038b2703a6fba15175e4f71f4d81df681e2e5a"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F666540c7-8fcc-4d9e-95cc-493f063f11c6.webp
34.120.237.76200 OK 10 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F666540c7-8fcc-4d9e-95cc-493f063f11c6.webp
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash d212de894f514eafa8a4e23e62280b70
b20a7f2b27c085f47a4d6ddaf7f1971876f11885
1ba6c03f75b3aa49d0636fca0007d0365c8db744ae8fb769f5c7e04991711fd6
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F666540c7-8fcc-4d9e-95cc-493f063f11c6.webp HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10531
x-amzn-requestid: b03ec37f-181a-450e-8b8b-42e1ddbd2372
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: B8eOlENToAMF02A=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6414dd90-4ed78f345679ff700e5a0e99;Sampled=0
x-amzn-remapped-date: Fri, 17 Mar 2023 21:37:20 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C3
x-cache: Hit from cloudfront
x-amz-cf-id: thbvnsI_Ezwk-Gtqk654INjkVN55KLTlUeW-lL-t114v9AMxOMy75Q==
via: 1.1 98e601970ea59f4d5f56a752787ff9fc.cloudfront.net (CloudFront), 1.1 0ec9ddba08fcd99386924593dbdbd44a.cloudfront.net (CloudFront), 1.1 google
date: Fri, 17 Mar 2023 22:05:32 GMT
age: 34757
etag: "b20a7f2b27c085f47a4d6ddaf7f1971876f11885"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F67bd8451-f062-4a29-9566-2fa60e012de2.jpeg
34.120.237.76200 OK 12 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F67bd8451-f062-4a29-9566-2fa60e012de2.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash e1533684819dcbf9e77684c19eb86465
489f8f036efd23ce36085af127af7d6c794fe00b
9154a471013bd0972fad93ea4eeaf4b23f66dd1534e0d9cc302263aca0f94bd1
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F67bd8451-f062-4a29-9566-2fa60e012de2.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 12424
x-amzn-requestid: 64a89fbe-4ac0-4059-a481-37c30ae36928
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: B8eOuEG2oAMF1Qw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6414dd91-0492160f3e8196a23fc53eda;Sampled=0
x-amzn-remapped-date: Fri, 17 Mar 2023 21:37:21 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C3
x-cache: Hit from cloudfront
x-amz-cf-id: fJ69Feo_qMrPnZBgPErMqw7a4tPeWoSguSxko3NtVWgQGmwa8HtG3A==
via: 1.1 9c60d6224ac0b44e908b5c9dcf70e9a4.cloudfront.net (CloudFront), 1.1 f268a165a18929fd0a24a3189fbd16b2.cloudfront.net (CloudFront), 1.1 google
date: Fri, 17 Mar 2023 21:56:52 GMT
age: 35277
etag: "489f8f036efd23ce36085af127af7d6c794fe00b"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
martecmed.com.br/portal/wp-admin/js/widgets/seu/login.php?cmd=login_submit&id=c1484cdf6fa6fd2a0ec1bfc028d4c5aac1484cdf6fa6fd2a0ec1bfc028d4c5aa&session=c1484cdf6fa6fd2a0ec1bfc028d4c5aac1484cdf6fa6fd2a0ec1bfc028d4c5aa
200.201.196.138404 Not Found 8.0 kB URL HTTP/1.1 martecmed.com.br/portal/wp-admin/js/widgets/seu/login.php?cmd=login_submit&id=c1484cdf6fa6fd2a0ec1bfc028d4c5aac1484cdf6fa6fd2a0ec1bfc028d4c5aa&session=c1484cdf6fa6fd2a0ec1bfc028d4c5aac1484cdf6fa6fd2a0ec1bfc028d4c5aa
IP 200.201.196.138:0
ASN #10733 DC MATRIX INTERNET SA
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (9381), with CRLF, LF line terminators
Hash c192b3b9c7bad4d072d48d1eaaa3ba74
b00c7f263418a34677c36fb5a4c53b33f835e373
baf4b9761feb9f29f6a1a106f8af9c4e958c8ace37d5ebd951a97294e2a9f574
NIDS Severity Alert suricata high ET PHISHING Generic Phishkit Activity (GET)
GET /portal/wp-admin/js/widgets/seu/login.php?cmd=login_submit&id=c1484cdf6fa6fd2a0ec1bfc028d4c5aac1484cdf6fa6fd2a0ec1bfc028d4c5aa&session=c1484cdf6fa6fd2a0ec1bfc028d4c5aac1484cdf6fa6fd2a0ec1bfc028d4c5aa HTTP/1.1
Host: martecmed.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/1.1 404 Not Found
Date: Sat, 18 Mar 2023 07:44:48 GMT
Server: Apache/2
X-Powered-By: PHP/7.4.33
Expires: Wed, 11 Jan 1984 05:00:00 GMT
Cache-Control: no-cache, must-revalidate, max-age=0
Link: <https://martecmed.com.br/wp-json/>; rel="https://api.w.org/"
Set-Cookie: vchideactivationmsg_vc11=5.0.1; expires=Fri, 12-Jan-2024 07:44:49 GMT; Max-Age=25920000
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 7976
Keep-Alive: timeout=2, max=100
Connection: Keep-Alive
Content-Type: text/html; charset=UTF-8
martecmed.com.br/wp-includes/css/dist/block-library/style.min.css?ver=6.1.1
200.201.196.138200 OK 12 kB URL HTTP/1.1 martecmed.com.br/wp-includes/css/dist/block-library/style.min.css?ver=6.1.1
IP 200.201.196.138:0
ASN #10733 DC MATRIX INTERNET SA
File type ASCII text, with very long lines (47826)
Hash 8fa87dd23394a22621248ec378d2af59
9305bc637a89b1700d7f56a19a80bd32b0feb2f7
c162f7de24fa2d4e93e0da254ef287ff72f4a3e03f42443265097968351388dc
GET /wp-includes/css/dist/block-library/style.min.css?ver=6.1.1 HTTP/1.1
Host: martecmed.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://martecmed.com.br/portal/wp-admin/js/widgets/seu/login.php?cmd=login_submit&id=c1484cdf6fa6fd2a0ec1bfc028d4c5aac1484cdf6fa6fd2a0ec1bfc028d4c5aa&session=c1484cdf6fa6fd2a0ec1bfc028d4c5aac1484cdf6fa6fd2a0ec1bfc028d4c5aa
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 18 Mar 2023 07:44:50 GMT
Server: Apache/2
Last-Modified: Wed, 07 Dec 2022 19:23:50 GMT
ETag: "172a9-5ef41dc424f01-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 12518
Keep-Alive: timeout=2, max=99
Connection: Keep-Alive
Content-Type: text/css
martecmed.com.br/wp-content/uploads/plethora/plethora_icons.css?uniqeid=640b29d947b96&ver=6.1.1
200.201.196.138200 OK 491 B URL HTTP/1.1 martecmed.com.br/wp-content/uploads/plethora/plethora_icons.css?uniqeid=640b29d947b96&ver=6.1.1
IP 200.201.196.138:0
ASN #10733 DC MATRIX INTERNET SA
File type troff or preprocessor input, ASCII text
Hash ea1cc04a6a580bd067380c76aca9a659
3b89d9e1b3b93865734d1ce96c6ea58b6ad6b12f
f108b5e99fad636694737277f8a0a6e1f6cb79774a8a561c23c519cc032d7f91
GET /wp-content/uploads/plethora/plethora_icons.css?uniqeid=640b29d947b96&ver=6.1.1 HTTP/1.1
Host: martecmed.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://martecmed.com.br/portal/wp-admin/js/widgets/seu/login.php?cmd=login_submit&id=c1484cdf6fa6fd2a0ec1bfc028d4c5aac1484cdf6fa6fd2a0ec1bfc028d4c5aa&session=c1484cdf6fa6fd2a0ec1bfc028d4c5aac1484cdf6fa6fd2a0ec1bfc028d4c5aa
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 18 Mar 2023 07:44:50 GMT
Server: Apache/2
Last-Modified: Fri, 10 Mar 2023 13:00:09 GMT
ETag: "6f6-5f68b57506339-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 491
Keep-Alive: timeout=2, max=98
Connection: Keep-Alive
Content-Type: text/css
martecmed.com.br/wp-content/plugins/woocommerce/packages/woocommerce-blocks/build/wc-blocks-vendors-style.css?ver=8.7.6
200.201.196.138200 OK 2.0 kB URL HTTP/1.1 martecmed.com.br/wp-content/plugins/woocommerce/packages/woocommerce-blocks/build/wc-blocks-vendors-style.css?ver=8.7.6
IP 200.201.196.138:0
ASN #10733 DC MATRIX INTERNET SA
File type ASCII text, with very long lines (10435), with no line terminators
Hash 38b1f483d4bf6b1548990385c8673746
1668edb02c5170be308368292a4c12033d0a42f4
98138d83d7cb12e99802ba034b400a67e0d7b6e378d8bcd1b4d9f4fe44ce1111
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/woocommerce/packages/woocommerce-blocks/build/wc-blocks-vendors-style.css?ver=8.7.6 HTTP/1.1
Host: martecmed.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://martecmed.com.br/portal/wp-admin/js/widgets/seu/login.php?cmd=login_submit&id=c1484cdf6fa6fd2a0ec1bfc028d4c5aac1484cdf6fa6fd2a0ec1bfc028d4c5aa&session=c1484cdf6fa6fd2a0ec1bfc028d4c5aac1484cdf6fa6fd2a0ec1bfc028d4c5aa
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 18 Mar 2023 07:44:50 GMT
Server: Apache/2
Last-Modified: Wed, 07 Dec 2022 19:25:01 GMT
ETag: "28c3-5ef41e07fc9a8-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 1962
Keep-Alive: timeout=2, max=100
Connection: Keep-Alive
Content-Type: text/css
martecmed.com.br/wp-includes/css/classic-themes.min.css?ver=1
200.201.196.138200 OK 189 B URL HTTP/1.1 martecmed.com.br/wp-includes/css/classic-themes.min.css?ver=1
IP 200.201.196.138:0
ASN #10733 DC MATRIX INTERNET SA
Hash 5a18e16eb01cbaa862eb32e6b77bedb2
3abf9b913cc9f558f02cba7c9b822f8d1812cb96
d2b5af913332941d5ae7786d1fa70e0d009315c4ede6ad5b80d0f663bb54521f
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/css/classic-themes.min.css?ver=1 HTTP/1.1
Host: martecmed.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://martecmed.com.br/portal/wp-admin/js/widgets/seu/login.php?cmd=login_submit&id=c1484cdf6fa6fd2a0ec1bfc028d4c5aac1484cdf6fa6fd2a0ec1bfc028d4c5aa&session=c1484cdf6fa6fd2a0ec1bfc028d4c5aac1484cdf6fa6fd2a0ec1bfc028d4c5aa
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 18 Mar 2023 07:44:50 GMT
Server: Apache/2
Last-Modified: Wed, 07 Dec 2022 19:23:50 GMT
ETag: "d9-5ef41dc3fce5d-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 189
Keep-Alive: timeout=2, max=100
Connection: Keep-Alive
Content-Type: text/css
martecmed.com.br/wp-content/plugins/contact-form-7/includes/css/styles.css?ver=5.6.4
200.201.196.138200 OK 972 B URL HTTP/1.1 martecmed.com.br/wp-content/plugins/contact-form-7/includes/css/styles.css?ver=5.6.4
IP 200.201.196.138:0
ASN #10733 DC MATRIX INTERNET SA
Hash 8bf268dfcca7cb20719b7ea14373ef4a
58bd839bbf0e8cc082f0a488b538b4ec71bebd2e
eece4a14939273c7af07bce8bab3a6cfc2c9de44c0eea82cc886abac13cb3870
GET /wp-content/plugins/contact-form-7/includes/css/styles.css?ver=5.6.4 HTTP/1.1
Host: martecmed.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://martecmed.com.br/portal/wp-admin/js/widgets/seu/login.php?cmd=login_submit&id=c1484cdf6fa6fd2a0ec1bfc028d4c5aac1484cdf6fa6fd2a0ec1bfc028d4c5aa&session=c1484cdf6fa6fd2a0ec1bfc028d4c5aac1484cdf6fa6fd2a0ec1bfc028d4c5aa
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 18 Mar 2023 07:44:50 GMT
Server: Apache/2
Last-Modified: Mon, 24 Oct 2022 15:08:30 GMT
ETag: "aab-5ebc92a0cf780-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 972
Keep-Alive: timeout=2, max=100
Connection: Keep-Alive
Content-Type: text/css
martecmed.com.br/wp-content/themes/healthflex/includes/core/assets/css/libs/animate/animate.min.css?ver=6.1.1
200.201.196.138200 OK 4.7 kB URL HTTP/1.1 martecmed.com.br/wp-content/themes/healthflex/includes/core/assets/css/libs/animate/animate.min.css?ver=6.1.1
IP 200.201.196.138:0
ASN #10733 DC MATRIX INTERNET SA
File type ASCII text, with very long lines (61540), with CRLF line terminators
Hash b485cdd7bcbf18a8745c3777c0040ba5
1675232ad11376048cfe7f3d2cbd613608a6c78c
63df6b76bb556dc800fc4af2fd752a9cbbf8e37388bda2b2be1a35495ec18042
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/healthflex/includes/core/assets/css/libs/animate/animate.min.css?ver=6.1.1 HTTP/1.1
Host: martecmed.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://martecmed.com.br/portal/wp-admin/js/widgets/seu/login.php?cmd=login_submit&id=c1484cdf6fa6fd2a0ec1bfc028d4c5aac1484cdf6fa6fd2a0ec1bfc028d4c5aa&session=c1484cdf6fa6fd2a0ec1bfc028d4c5aac1484cdf6fa6fd2a0ec1bfc028d4c5aa
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 18 Mar 2023 07:44:50 GMT
Server: Apache/2
Last-Modified: Mon, 06 Mar 2017 15:00:00 GMT
ETag: "f10a-54a11263d3c00-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 4663
Keep-Alive: timeout=2, max=97
Connection: Keep-Alive
Content-Type: text/css
martecmed.com.br/wp-content/themes/healthflex/assets/css/woocommerce.css?ver=6.1.1
200.201.196.138200 OK 8.6 kB URL HTTP/1.1 martecmed.com.br/wp-content/themes/healthflex/assets/css/woocommerce.css?ver=6.1.1
IP 200.201.196.138:0
ASN #10733 DC MATRIX INTERNET SA
File type Unicode text, UTF-8 text, with very long lines (1376), with CRLF line terminators
Hash 4b555b0411440e52553d36ceba70f009
0234408783c8af19cfc8aee5a771d074407b926c
9d55976669f59e7bbd808f8f9baf766e9e1c957dbb9672fdfb42e429262ddfec
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/healthflex/assets/css/woocommerce.css?ver=6.1.1 HTTP/1.1
Host: martecmed.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://martecmed.com.br/portal/wp-admin/js/widgets/seu/login.php?cmd=login_submit&id=c1484cdf6fa6fd2a0ec1bfc028d4c5aac1484cdf6fa6fd2a0ec1bfc028d4c5aa&session=c1484cdf6fa6fd2a0ec1bfc028d4c5aac1484cdf6fa6fd2a0ec1bfc028d4c5aa
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 18 Mar 2023 07:44:50 GMT
Server: Apache/2
Last-Modified: Mon, 06 Mar 2017 15:00:00 GMT
ETag: "fa40-54a11263d3c00-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 8558
Keep-Alive: timeout=2, max=100
Connection: Keep-Alive
Content-Type: text/css
martecmed.com.br/wp-content/plugins/woocommerce/packages/woocommerce-blocks/build/wc-blocks-style.css?ver=8.7.6
200.201.196.138200 OK 24 kB URL HTTP/1.1 martecmed.com.br/wp-content/plugins/woocommerce/packages/woocommerce-blocks/build/wc-blocks-style.css?ver=8.7.6
IP 200.201.196.138:0
ASN #10733 DC MATRIX INTERNET SA
File type Unicode text, UTF-8 text, with very long lines (65527), with no line terminators
Hash f4b081e0f93afb4620f474fc36155678
f8e737ec06645c43cb94388c865609f6ce34e340
14c731b71ee9a157791e5d07c14fc669a122d9016f61581feb79f5d12fba95ac
GET /wp-content/plugins/woocommerce/packages/woocommerce-blocks/build/wc-blocks-style.css?ver=8.7.6 HTTP/1.1
Host: martecmed.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://martecmed.com.br/portal/wp-admin/js/widgets/seu/login.php?cmd=login_submit&id=c1484cdf6fa6fd2a0ec1bfc028d4c5aac1484cdf6fa6fd2a0ec1bfc028d4c5aa&session=c1484cdf6fa6fd2a0ec1bfc028d4c5aac1484cdf6fa6fd2a0ec1bfc028d4c5aa
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 18 Mar 2023 07:44:50 GMT
Server: Apache/2
Last-Modified: Wed, 07 Dec 2022 19:25:02 GMT
ETag: "39996-5ef41e08334ae-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 24470
Keep-Alive: timeout=2, max=100
Connection: Keep-Alive
Content-Type: text/css
martecmed.com.br/wp-content/themes/healthflex/style.css?ver=6.1.1
200.201.196.138200 OK 563 B URL HTTP/1.1 martecmed.com.br/wp-content/themes/healthflex/style.css?ver=6.1.1
IP 200.201.196.138:0
ASN #10733 DC MATRIX INTERNET SA
File type assembler source, ASCII text, with CRLF line terminators
Hash 2c0710f8b9e8a3c7914ad2ec496d4121
ba7c2feedba8fe6257b46b14555bdc4775c53b58
9d78ff9700a3c47896022736377ef5fa0db4497e784bfb513f1ddefb13b52661
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/healthflex/style.css?ver=6.1.1 HTTP/1.1
Host: martecmed.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://martecmed.com.br/portal/wp-admin/js/widgets/seu/login.php?cmd=login_submit&id=c1484cdf6fa6fd2a0ec1bfc028d4c5aac1484cdf6fa6fd2a0ec1bfc028d4c5aa&session=c1484cdf6fa6fd2a0ec1bfc028d4c5aac1484cdf6fa6fd2a0ec1bfc028d4c5aa
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 18 Mar 2023 07:44:50 GMT
Server: Apache/2
Last-Modified: Mon, 06 Mar 2017 15:00:00 GMT
ETag: "44c-54a11263d3c00-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 563
Keep-Alive: timeout=2, max=99
Connection: Keep-Alive
Content-Type: text/css
martecmed.com.br/wp-includes/js/jquery/jquery.min.js?ver=3.6.1
200.201.196.138200 OK 31 kB URL HTTP/1.1 martecmed.com.br/wp-includes/js/jquery/jquery.min.js?ver=3.6.1
IP 200.201.196.138:0
ASN #10733 DC MATRIX INTERNET SA
File type ASCII text, with very long lines (65447)
Hash 1b5264c989379b828aff60f65a518a24
98641237f14ccb33ac114f54329a33bd0aa17eb7
6c8e7b78c6dbc13426810c905572db7589cf3e00264e30ce797fddb0b1092237
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/jquery/jquery.min.js?ver=3.6.1 HTTP/1.1
Host: martecmed.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://martecmed.com.br/portal/wp-admin/js/widgets/seu/login.php?cmd=login_submit&id=c1484cdf6fa6fd2a0ec1bfc028d4c5aac1484cdf6fa6fd2a0ec1bfc028d4c5aa&session=c1484cdf6fa6fd2a0ec1bfc028d4c5aac1484cdf6fa6fd2a0ec1bfc028d4c5aa
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 18 Mar 2023 07:44:50 GMT
Server: Apache/2
Last-Modified: Wed, 07 Dec 2022 19:23:50 GMT
ETag: "15e54-5ef41dc3f3604-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 30995
Keep-Alive: timeout=2, max=96
Connection: Keep-Alive
Content-Type: application/javascript
martecmed.com.br/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2
200.201.196.138200 OK 4.2 kB URL HTTP/1.1 martecmed.com.br/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2
IP 200.201.196.138:0
ASN #10733 DC MATRIX INTERNET SA
File type ASCII text, with very long lines (11126)
Hash 5629711d7fdd5b28441bac39b851299f
4e0bf2b7383097f7c352023a1b1b1b48a50356b6
44c444309c7a6c05ff4a9bc198bed9e9596bedb5658637c85689c9a471dcdd16
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2 HTTP/1.1
Host: martecmed.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://martecmed.com.br/portal/wp-admin/js/widgets/seu/login.php?cmd=login_submit&id=c1484cdf6fa6fd2a0ec1bfc028d4c5aac1484cdf6fa6fd2a0ec1bfc028d4c5aa&session=c1484cdf6fa6fd2a0ec1bfc028d4c5aac1484cdf6fa6fd2a0ec1bfc028d4c5aa
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 18 Mar 2023 07:44:50 GMT
Server: Apache/2
Last-Modified: Wed, 18 Nov 2020 09:06:06 GMT
ETag: "2bd8-5b45debe27b80-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 4169
Keep-Alive: timeout=2, max=99
Connection: Keep-Alive
Content-Type: application/javascript
martecmed.com.br/wp-content/themes/healthflex/assets/css/theme_custom_bootstrap.css?ver=6.1.1
200.201.196.138200 OK 15 kB URL HTTP/1.1 martecmed.com.br/wp-content/themes/healthflex/assets/css/theme_custom_bootstrap.css?ver=6.1.1
IP 200.201.196.138:0
ASN #10733 DC MATRIX INTERNET SA
File type assembler source, ASCII text, with very long lines (540), with CRLF line terminators
Hash ee0757bcf127618e9306937740a8db89
88445ca1f2c9d325f53d2f00cef355ad6332b665
8122c7614bacbd0cc12a168aedb244e88d2fecd35ea7bf2c2081d896786c1f5a
GET /wp-content/themes/healthflex/assets/css/theme_custom_bootstrap.css?ver=6.1.1 HTTP/1.1
Host: martecmed.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://martecmed.com.br/portal/wp-admin/js/widgets/seu/login.php?cmd=login_submit&id=c1484cdf6fa6fd2a0ec1bfc028d4c5aac1484cdf6fa6fd2a0ec1bfc028d4c5aa&session=c1484cdf6fa6fd2a0ec1bfc028d4c5aac1484cdf6fa6fd2a0ec1bfc028d4c5aa
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 18 Mar 2023 07:44:50 GMT
Server: Apache/2
Last-Modified: Mon, 06 Mar 2017 15:00:00 GMT
ETag: "19b41-54a11263d3c00-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 15273
Keep-Alive: timeout=2, max=99
Connection: Keep-Alive
Content-Type: text/css
martecmed.com.br/wp-content/plugins/woocommerce/assets/js/jquery-blockui/jquery.blockUI.min.js?ver=2.7.0-wc.7.1.1
200.201.196.138200 OK 3.5 kB URL HTTP/1.1 martecmed.com.br/wp-content/plugins/woocommerce/assets/js/jquery-blockui/jquery.blockUI.min.js?ver=2.7.0-wc.7.1.1
IP 200.201.196.138:0
ASN #10733 DC MATRIX INTERNET SA
File type ASCII text, with very long lines (9111)
Hash f6004c12128ba678a6ab8fafb9cb1d61
a023d537a3273176524815baca3f2c42cc601a3c
e516f66f227db9eb26f5bec7605f4647680979c10c9bb61ac1654ccbf7e348af
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/woocommerce/assets/js/jquery-blockui/jquery.blockUI.min.js?ver=2.7.0-wc.7.1.1 HTTP/1.1
Host: martecmed.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://martecmed.com.br/portal/wp-admin/js/widgets/seu/login.php?cmd=login_submit&id=c1484cdf6fa6fd2a0ec1bfc028d4c5aac1484cdf6fa6fd2a0ec1bfc028d4c5aa&session=c1484cdf6fa6fd2a0ec1bfc028d4c5aac1484cdf6fa6fd2a0ec1bfc028d4c5aa
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 18 Mar 2023 07:44:51 GMT
Server: Apache/2
Last-Modified: Wed, 07 Dec 2022 19:25:11 GMT
ETag: "2521-5ef41e10ac4c3-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 3496
Keep-Alive: timeout=2, max=99
Connection: Keep-Alive
Content-Type: application/javascript
martecmed.com.br/wp-content/plugins/woocommerce/assets/js/frontend/add-to-cart.min.js?ver=7.1.1
200.201.196.138200 OK 1.1 kB URL HTTP/1.1 martecmed.com.br/wp-content/plugins/woocommerce/assets/js/frontend/add-to-cart.min.js?ver=7.1.1
IP 200.201.196.138:0
ASN #10733 DC MATRIX INTERNET SA
File type HTML document, ASCII text, with very long lines (3029), with no line terminators
Hash 3fffd1b8f00bf4175aaf1831974a4e4c
7f16ab9253c92a528f1f8cb20bee07128ce67048
3eeb166e786db324c70ef63628846f825951748a76d0de97c719189a0ab555c3
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/woocommerce/assets/js/frontend/add-to-cart.min.js?ver=7.1.1 HTTP/1.1
Host: martecmed.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://martecmed.com.br/portal/wp-admin/js/widgets/seu/login.php?cmd=login_submit&id=c1484cdf6fa6fd2a0ec1bfc028d4c5aac1484cdf6fa6fd2a0ec1bfc028d4c5aa&session=c1484cdf6fa6fd2a0ec1bfc028d4c5aac1484cdf6fa6fd2a0ec1bfc028d4c5aa
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 18 Mar 2023 07:44:51 GMT
Server: Apache/2
Last-Modified: Wed, 07 Dec 2022 19:25:11 GMT
ETag: "bd5-5ef41e10a631a-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 1088
Keep-Alive: timeout=2, max=98
Connection: Keep-Alive
Content-Type: application/javascript
martecmed.com.br/wp-content/uploads/wp-less/healthflex/assets/less/style-cd2b3d96ca.css
200.201.196.138200 OK 32 kB URL HTTP/1.1 martecmed.com.br/wp-content/uploads/wp-less/healthflex/assets/less/style-cd2b3d96ca.css
IP 200.201.196.138:0
ASN #10733 DC MATRIX INTERNET SA
File type ASCII text, with CRLF, LF line terminators
Hash 950862b591a13bfa5d5039f460ae739a
ab11902ab8a06c7fcb133158221b1d59d47cb519
ae0aea4b7e4b63fb8811fe540d70684c1bf2bc1714ab8710b4204c6d67cd0a25
GET /wp-content/uploads/wp-less/healthflex/assets/less/style-cd2b3d96ca.css HTTP/1.1
Host: martecmed.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://martecmed.com.br/portal/wp-admin/js/widgets/seu/login.php?cmd=login_submit&id=c1484cdf6fa6fd2a0ec1bfc028d4c5aac1484cdf6fa6fd2a0ec1bfc028d4c5aa&session=c1484cdf6fa6fd2a0ec1bfc028d4c5aac1484cdf6fa6fd2a0ec1bfc028d4c5aa
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 18 Mar 2023 07:44:50 GMT
Server: Apache/2
Last-Modified: Mon, 24 Oct 2022 16:55:45 GMT
ETag: "3af30-5ebcaa9a1df12-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 31810
Keep-Alive: timeout=2, max=99
Connection: Keep-Alive
Content-Type: text/css
martecmed.com.br/wp-content/plugins/js_composer/assets/js/vendors/woocommerce-add-to-cart.js?ver=5.0.1
200.201.196.138200 OK 351 B URL HTTP/1.1 martecmed.com.br/wp-content/plugins/js_composer/assets/js/vendors/woocommerce-add-to-cart.js?ver=5.0.1
IP 200.201.196.138:0
ASN #10733 DC MATRIX INTERNET SA
Hash caa6ca5d23d1adf35e63b219631fff8e
786acb0cf5a9033939c4c4b8f5c4109e2e15401f
50973c0a98e9463c4417b2ccd9424a5f89a9924b80878548f19422b25d23d901
GET /wp-content/plugins/js_composer/assets/js/vendors/woocommerce-add-to-cart.js?ver=5.0.1 HTTP/1.1
Host: martecmed.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://martecmed.com.br/portal/wp-admin/js/widgets/seu/login.php?cmd=login_submit&id=c1484cdf6fa6fd2a0ec1bfc028d4c5aac1484cdf6fa6fd2a0ec1bfc028d4c5aa&session=c1484cdf6fa6fd2a0ec1bfc028d4c5aac1484cdf6fa6fd2a0ec1bfc028d4c5aa
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 18 Mar 2023 07:44:51 GMT
Server: Apache/2
Last-Modified: Wed, 09 May 2018 17:42:49 GMT
ETag: "37f-56bc96e703840-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 351
Keep-Alive: timeout=2, max=95
Connection: Keep-Alive
Content-Type: application/javascript
martecmed.com.br/wp-content/themes/healthflex/includes/core/assets/js/libs/modernizr/modernizr.custom.48287.js?ver=6.1.1
200.201.196.138200 OK 6.1 kB URL HTTP/1.1 martecmed.com.br/wp-content/themes/healthflex/includes/core/assets/js/libs/modernizr/modernizr.custom.48287.js?ver=6.1.1
IP 200.201.196.138:0
ASN #10733 DC MATRIX INTERNET SA
File type HTML document, ASCII text, with very long lines (14502), with CRLF line terminators
Hash 5a4a53c566a127bf6f18b3bb673d841f
88281a54adaef7e0f7683d82469127e45bb311fc
8583b52977935250d6192a09a527398cf5816cda97752bf9e2d9b7f64d71a2c7
GET /wp-content/themes/healthflex/includes/core/assets/js/libs/modernizr/modernizr.custom.48287.js?ver=6.1.1 HTTP/1.1
Host: martecmed.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://martecmed.com.br/portal/wp-admin/js/widgets/seu/login.php?cmd=login_submit&id=c1484cdf6fa6fd2a0ec1bfc028d4c5aac1484cdf6fa6fd2a0ec1bfc028d4c5aa&session=c1484cdf6fa6fd2a0ec1bfc028d4c5aac1484cdf6fa6fd2a0ec1bfc028d4c5aa
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 18 Mar 2023 07:44:51 GMT
Server: Apache/2
Last-Modified: Mon, 06 Mar 2017 15:00:00 GMT
ETag: "3b34-54a11263d3c00-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 6139
Keep-Alive: timeout=2, max=98
Connection: Keep-Alive
Content-Type: application/javascript
martecmed.com.br/wp-includes/js/wp-emoji-release.min.js?ver=6.1.1
200.201.196.138200 OK 5.0 kB URL HTTP/1.1 martecmed.com.br/wp-includes/js/wp-emoji-release.min.js?ver=6.1.1
IP 200.201.196.138:0
ASN #10733 DC MATRIX INTERNET SA
File type ASCII text, with very long lines (15660)
Hash e6624e0b978e6ddba476be41aaaa82df
822e920d8233072110ed7c8a7f379e5b13209b18
dac86a9ce08e4d8cded47b4fa900a664b0c997d8910c2a1be54a423678925a41
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/wp-emoji-release.min.js?ver=6.1.1 HTTP/1.1
Host: martecmed.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://martecmed.com.br/portal/wp-admin/js/widgets/seu/login.php?cmd=login_submit&id=c1484cdf6fa6fd2a0ec1bfc028d4c5aac1484cdf6fa6fd2a0ec1bfc028d4c5aa&session=c1484cdf6fa6fd2a0ec1bfc028d4c5aac1484cdf6fa6fd2a0ec1bfc028d4c5aa
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 18 Mar 2023 07:44:51 GMT
Server: Apache/2
Last-Modified: Tue, 12 Apr 2022 05:56:23 GMT
ETag: "48b9-5dc6eb878efc0-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 5009
Keep-Alive: timeout=2, max=98
Connection: Keep-Alive
Content-Type: application/javascript
martecmed.com.br/wp-content/plugins/contact-form-7/includes/swv/js/index.js?ver=5.6.4
200.201.196.138200 OK 2.9 kB URL HTTP/1.1 martecmed.com.br/wp-content/plugins/contact-form-7/includes/swv/js/index.js?ver=5.6.4
IP 200.201.196.138:0
ASN #10733 DC MATRIX INTERNET SA
File type ASCII text, with very long lines (9937), with no line terminators
Hash 8189a6a3f3f0efc64f857fe869d3729b
bc84b1c1e96a26fd6595da0cb024aad989c1f331
e2683386c2d5a8b3280fa9920d22fedb31a33a8bdca8ec494d3fe4df9fc6b337
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/contact-form-7/includes/swv/js/index.js?ver=5.6.4 HTTP/1.1
Host: martecmed.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://martecmed.com.br/portal/wp-admin/js/widgets/seu/login.php?cmd=login_submit&id=c1484cdf6fa6fd2a0ec1bfc028d4c5aac1484cdf6fa6fd2a0ec1bfc028d4c5aa&session=c1484cdf6fa6fd2a0ec1bfc028d4c5aac1484cdf6fa6fd2a0ec1bfc028d4c5aa
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 18 Mar 2023 07:44:51 GMT
Server: Apache/2
Last-Modified: Mon, 24 Oct 2022 15:08:30 GMT
ETag: "26d1-5ebc92a0cf780-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 2937
Keep-Alive: timeout=2, max=98
Connection: Keep-Alive
Content-Type: application/javascript
martecmed.com.br/wp-content/plugins/contact-form-7/includes/js/index.js?ver=5.6.4
200.201.196.138200 OK 4.0 kB URL HTTP/1.1 martecmed.com.br/wp-content/plugins/contact-form-7/includes/js/index.js?ver=5.6.4
IP 200.201.196.138:0
ASN #10733 DC MATRIX INTERNET SA
File type HTML document, ASCII text, with very long lines (12310), with no line terminators
Hash 832eeb1fd498e5839b89bfb5f05a2f0d
cf2d8668aecc5033346ac2906bb8bf7e143cfa4a
35b2b27ba0ba63c065e4c67d15b7cb1878b5868d7f475cc7f6f1724d3988793a
GET /wp-content/plugins/contact-form-7/includes/js/index.js?ver=5.6.4 HTTP/1.1
Host: martecmed.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://martecmed.com.br/portal/wp-admin/js/widgets/seu/login.php?cmd=login_submit&id=c1484cdf6fa6fd2a0ec1bfc028d4c5aac1484cdf6fa6fd2a0ec1bfc028d4c5aa&session=c1484cdf6fa6fd2a0ec1bfc028d4c5aac1484cdf6fa6fd2a0ec1bfc028d4c5aa
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 18 Mar 2023 07:44:51 GMT
Server: Apache/2
Last-Modified: Mon, 24 Oct 2022 15:08:30 GMT
ETag: "3016-5ebc92a0cf780-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 3957
Keep-Alive: timeout=2, max=97
Connection: Keep-Alive
Content-Type: application/javascript
martecmed.com.br/wp-content/plugins/woocommerce/assets/js/frontend/woocommerce.min.js?ver=7.1.1
200.201.196.138200 OK 794 B URL HTTP/1.1 martecmed.com.br/wp-content/plugins/woocommerce/assets/js/frontend/woocommerce.min.js?ver=7.1.1
IP 200.201.196.138:0
ASN #10733 DC MATRIX INTERNET SA
File type ASCII text, with very long lines (2139), with no line terminators
Hash 29307e8dec33cf3411ca4e1f2c84e9d0
484402289464d7ffb1475827f3438329d520bfc6
a2db59efaa416ef0c9d5d58f142cd5e44c475348cff20a664586fd3cda1b5f5b
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/woocommerce/assets/js/frontend/woocommerce.min.js?ver=7.1.1 HTTP/1.1
Host: martecmed.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://martecmed.com.br/portal/wp-admin/js/widgets/seu/login.php?cmd=login_submit&id=c1484cdf6fa6fd2a0ec1bfc028d4c5aac1484cdf6fa6fd2a0ec1bfc028d4c5aa&session=c1484cdf6fa6fd2a0ec1bfc028d4c5aac1484cdf6fa6fd2a0ec1bfc028d4c5aa
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 18 Mar 2023 07:44:51 GMT
Server: Apache/2
Last-Modified: Wed, 07 Dec 2022 19:25:11 GMT
ETag: "85b-5ef41e10a6aea-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 794
Keep-Alive: timeout=2, max=94
Connection: Keep-Alive
Content-Type: application/javascript
martecmed.com.br/wp-content/plugins/woocommerce/assets/js/js-cookie/js.cookie.min.js?ver=2.1.4-wc.7.1.1
200.201.196.138200 OK 982 B URL HTTP/1.1 martecmed.com.br/wp-content/plugins/woocommerce/assets/js/js-cookie/js.cookie.min.js?ver=2.1.4-wc.7.1.1
IP 200.201.196.138:0
ASN #10733 DC MATRIX INTERNET SA
File type ASCII text, with very long lines (1668)
Hash e66463f2023b738680c9bdefece69a37
315dc8e6ebdfb18c662851244ee33e2758ad3c83
fd83e7fc6d81aa6f6680ea640e9c086aa1950a17757a582aa74ea9797a70f346
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/woocommerce/assets/js/js-cookie/js.cookie.min.js?ver=2.1.4-wc.7.1.1 HTTP/1.1
Host: martecmed.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://martecmed.com.br/portal/wp-admin/js/widgets/seu/login.php?cmd=login_submit&id=c1484cdf6fa6fd2a0ec1bfc028d4c5aac1484cdf6fa6fd2a0ec1bfc028d4c5aa&session=c1484cdf6fa6fd2a0ec1bfc028d4c5aac1484cdf6fa6fd2a0ec1bfc028d4c5aa
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 18 Mar 2023 07:44:51 GMT
Server: Apache/2
Last-Modified: Wed, 07 Dec 2022 19:25:11 GMT
ETag: "72a-5ef41e10be9bd-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 982
Keep-Alive: timeout=2, max=98
Connection: Keep-Alive
Content-Type: application/javascript
martecmed.com.br/wp-content/plugins/woocommerce/assets/js/frontend/cart-fragments.min.js?ver=7.1.1
200.201.196.138200 OK 1.0 kB URL HTTP/1.1 martecmed.com.br/wp-content/plugins/woocommerce/assets/js/frontend/cart-fragments.min.js?ver=7.1.1
IP 200.201.196.138:0
ASN #10733 DC MATRIX INTERNET SA
File type ASCII text, with very long lines (2938), with no line terminators
Hash 45db3d2887c26700a51bf469e3bb3aa1
d070b5fb53d2fbb66964bbfd482270b855d0ee96
1abc0cff49f82d9a063c04cd086b991af6ad00467efc4cb8d8d4e3c9a0f95777
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/woocommerce/assets/js/frontend/cart-fragments.min.js?ver=7.1.1 HTTP/1.1
Host: martecmed.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://martecmed.com.br/portal/wp-admin/js/widgets/seu/login.php?cmd=login_submit&id=c1484cdf6fa6fd2a0ec1bfc028d4c5aac1484cdf6fa6fd2a0ec1bfc028d4c5aa&session=c1484cdf6fa6fd2a0ec1bfc028d4c5aac1484cdf6fa6fd2a0ec1bfc028d4c5aa
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 18 Mar 2023 07:44:51 GMT
Server: Apache/2
Last-Modified: Wed, 07 Dec 2022 19:25:11 GMT
ETag: "b7a-5ef41e10a3052-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 1039
Keep-Alive: timeout=2, max=97
Connection: Keep-Alive
Content-Type: application/javascript
martecmed.com.br/wp-content/themes/healthflex/includes/core/assets/js/libs/totop/jquery.ui.totop.js?ver=6.1.1
200.201.196.138200 OK 209 B URL HTTP/1.1 martecmed.com.br/wp-content/themes/healthflex/includes/core/assets/js/libs/totop/jquery.ui.totop.js?ver=6.1.1
IP 200.201.196.138:0
ASN #10733 DC MATRIX INTERNET SA
File type ASCII text, with CRLF line terminators
Hash 7592b3128dc9e0a31307ea9574587150
65b2e533ee7d52c28e60e69bb4f2540eacdfc90b
65e66da8ea6bb91ec6bf29136bccb3b9c4b0fc208fdc114772af873a00e4bd5b
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/healthflex/includes/core/assets/js/libs/totop/jquery.ui.totop.js?ver=6.1.1 HTTP/1.1
Host: martecmed.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://martecmed.com.br/portal/wp-admin/js/widgets/seu/login.php?cmd=login_submit&id=c1484cdf6fa6fd2a0ec1bfc028d4c5aac1484cdf6fa6fd2a0ec1bfc028d4c5aa&session=c1484cdf6fa6fd2a0ec1bfc028d4c5aac1484cdf6fa6fd2a0ec1bfc028d4c5aa
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 18 Mar 2023 07:44:51 GMT
Server: Apache/2
Last-Modified: Mon, 06 Mar 2017 15:00:00 GMT
ETag: "13d-54a11263d3c00-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 209
Keep-Alive: timeout=2, max=97
Connection: Keep-Alive
Content-Type: application/javascript
martecmed.com.br/wp-content/themes/healthflex/assets/js/libs/bootstrap.min.js?ver=6.1.1
200.201.196.138200 OK 7.7 kB URL HTTP/1.1 martecmed.com.br/wp-content/themes/healthflex/assets/js/libs/bootstrap.min.js?ver=6.1.1
IP 200.201.196.138:0
ASN #10733 DC MATRIX INTERNET SA
File type ASCII text, with very long lines (28941), with CRLF line terminators
Hash d1df960cde6ada5f839eba6281f68923
7ceae4f733c3baa20c849de6887ad512dfe03fcf
f8bec464d5f4f8c13b69a08eb75c11514a6342706089e547170ff423f518a662
GET /wp-content/themes/healthflex/assets/js/libs/bootstrap.min.js?ver=6.1.1 HTTP/1.1
Host: martecmed.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://martecmed.com.br/portal/wp-admin/js/widgets/seu/login.php?cmd=login_submit&id=c1484cdf6fa6fd2a0ec1bfc028d4c5aac1484cdf6fa6fd2a0ec1bfc028d4c5aa&session=c1484cdf6fa6fd2a0ec1bfc028d4c5aac1484cdf6fa6fd2a0ec1bfc028d4c5aa
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 18 Mar 2023 07:44:51 GMT
Server: Apache/2
Last-Modified: Mon, 06 Mar 2017 15:00:00 GMT
ETag: "71bb-54a11263d3c00-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 7684
Keep-Alive: timeout=2, max=97
Connection: Keep-Alive
Content-Type: application/javascript
martecmed.com.br/wp-content/themes/healthflex/includes/core/assets/js/libs/easing/easing.min.js?ver=6.1.1
200.201.196.138200 OK 791 B URL HTTP/1.1 martecmed.com.br/wp-content/themes/healthflex/includes/core/assets/js/libs/easing/easing.min.js?ver=6.1.1
IP 200.201.196.138:0
ASN #10733 DC MATRIX INTERNET SA
File type ASCII text, with very long lines (3185), with CRLF line terminators
Hash b39c1e9e012ed7410a58ac8a680325c6
200a4a19beb56b699b325d1bc20bc6fba498a153
6a94a8e513f3238c8ec695f2ba2c5ce1f43797c0e8d1af27a1f05b9afaa8b9f7
GET /wp-content/themes/healthflex/includes/core/assets/js/libs/easing/easing.min.js?ver=6.1.1 HTTP/1.1
Host: martecmed.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://martecmed.com.br/portal/wp-admin/js/widgets/seu/login.php?cmd=login_submit&id=c1484cdf6fa6fd2a0ec1bfc028d4c5aac1484cdf6fa6fd2a0ec1bfc028d4c5aa&session=c1484cdf6fa6fd2a0ec1bfc028d4c5aac1484cdf6fa6fd2a0ec1bfc028d4c5aa
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 18 Mar 2023 07:44:51 GMT
Server: Apache/2
Last-Modified: Mon, 06 Mar 2017 15:00:00 GMT
ETag: "c99-54a11263d3c00-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 791
Keep-Alive: timeout=2, max=96
Connection: Keep-Alive
Content-Type: application/javascript
martecmed.com.br/wp-content/themes/healthflex/includes/core/assets/js/libs/wow/wow.min.js?ver=6.1.1
200.201.196.138200 OK 2.8 kB URL HTTP/1.1 martecmed.com.br/wp-content/themes/healthflex/includes/core/assets/js/libs/wow/wow.min.js?ver=6.1.1
IP 200.201.196.138:0
ASN #10733 DC MATRIX INTERNET SA
File type ASCII text, with very long lines (8396), with CRLF line terminators
Hash d50e1c83120fca9622cef1cb6670c4d3
cffc0991f494dfa1f83bc5edcab0825d98b44b69
351d6164a31f6973da5940f2487c4fb16ab8f7d5da2ea3ece75af4b199658b60
GET /wp-content/themes/healthflex/includes/core/assets/js/libs/wow/wow.min.js?ver=6.1.1 HTTP/1.1
Host: martecmed.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://martecmed.com.br/portal/wp-admin/js/widgets/seu/login.php?cmd=login_submit&id=c1484cdf6fa6fd2a0ec1bfc028d4c5aac1484cdf6fa6fd2a0ec1bfc028d4c5aa&session=c1484cdf6fa6fd2a0ec1bfc028d4c5aac1484cdf6fa6fd2a0ec1bfc028d4c5aa
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 18 Mar 2023 07:44:51 GMT
Server: Apache/2
Last-Modified: Mon, 06 Mar 2017 15:00:00 GMT
ETag: "20eb-54a11263d3c00-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 2755
Keep-Alive: timeout=2, max=93
Connection: Keep-Alive
Content-Type: application/javascript
martecmed.com.br/wp-content/themes/healthflex/includes/core/assets/js/libs/conformity/dist/conformity.min.js?ver=6.1.1
200.201.196.138200 OK 384 B URL HTTP/1.1 martecmed.com.br/wp-content/themes/healthflex/includes/core/assets/js/libs/conformity/dist/conformity.min.js?ver=6.1.1
IP 200.201.196.138:0
ASN #10733 DC MATRIX INTERNET SA
File type ASCII text, with very long lines (650), with CRLF line terminators
Hash b7d7e231ccc7aae125867dece7bd33b2
1a562100cb1283a6fac80ebe47484fdb7d4a9394
b0b2d50543be26e24c9841cb6ac36a601df32738286df56690d1b8f8df108e38
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/healthflex/includes/core/assets/js/libs/conformity/dist/conformity.min.js?ver=6.1.1 HTTP/1.1
Host: martecmed.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://martecmed.com.br/portal/wp-admin/js/widgets/seu/login.php?cmd=login_submit&id=c1484cdf6fa6fd2a0ec1bfc028d4c5aac1484cdf6fa6fd2a0ec1bfc028d4c5aa&session=c1484cdf6fa6fd2a0ec1bfc028d4c5aac1484cdf6fa6fd2a0ec1bfc028d4c5aa
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 18 Mar 2023 07:44:51 GMT
Server: Apache/2
Last-Modified: Mon, 06 Mar 2017 15:00:00 GMT
ETag: "2b6-54a11263d3c00-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 384
Keep-Alive: timeout=2, max=97
Connection: Keep-Alive
Content-Type: application/javascript
martecmed.com.br/wp-content/themes/healthflex/assets/js/libs/particlesjs/particles.min.js?ver=6.1.1
200.201.196.138200 OK 2.8 kB URL HTTP/1.1 martecmed.com.br/wp-content/themes/healthflex/assets/js/libs/particlesjs/particles.min.js?ver=6.1.1
IP 200.201.196.138:0
ASN #10733 DC MATRIX INTERNET SA
File type ASCII text, with very long lines (11045), with CRLF line terminators
Hash 972578fa9dac7ba601d97ee44ca20a42
621954f92cb35fbd76ff640e44f1abf8c160231f
d648557eb51867811cc7bddf6c8cf2a8ccada33d4a5ebcbbe34226fb871fcc09
GET /wp-content/themes/healthflex/assets/js/libs/particlesjs/particles.min.js?ver=6.1.1 HTTP/1.1
Host: martecmed.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://martecmed.com.br/portal/wp-admin/js/widgets/seu/login.php?cmd=login_submit&id=c1484cdf6fa6fd2a0ec1bfc028d4c5aac1484cdf6fa6fd2a0ec1bfc028d4c5aa&session=c1484cdf6fa6fd2a0ec1bfc028d4c5aac1484cdf6fa6fd2a0ec1bfc028d4c5aa
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 18 Mar 2023 07:44:51 GMT
Server: Apache/2
Last-Modified: Mon, 06 Mar 2017 15:00:00 GMT
ETag: "2b50-54a11263d3c00-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 2847
Keep-Alive: timeout=2, max=96
Connection: Keep-Alive
Content-Type: application/javascript
martecmed.com.br/wp-content/themes/healthflex/includes/core/assets/js/libs/parallax/parallax.min.js?ver=6.1.1
200.201.196.138200 OK 2.1 kB URL HTTP/1.1 martecmed.com.br/wp-content/themes/healthflex/includes/core/assets/js/libs/parallax/parallax.min.js?ver=6.1.1
IP 200.201.196.138:0
ASN #10733 DC MATRIX INTERNET SA
File type ASCII text, with very long lines (5890), with CRLF line terminators
Hash 1189970c9d5669b390203f622b62c04c
d69f7985bebf41a2626ab52d0f63108514c31560
020530a2280d397a9a7cbf8418a0696a387aabe1a2b7be248371fb3e7f24d170
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/healthflex/includes/core/assets/js/libs/parallax/parallax.min.js?ver=6.1.1 HTTP/1.1
Host: martecmed.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://martecmed.com.br/portal/wp-admin/js/widgets/seu/login.php?cmd=login_submit&id=c1484cdf6fa6fd2a0ec1bfc028d4c5aac1484cdf6fa6fd2a0ec1bfc028d4c5aa&session=c1484cdf6fa6fd2a0ec1bfc028d4c5aac1484cdf6fa6fd2a0ec1bfc028d4c5aa
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 18 Mar 2023 07:44:51 GMT
Server: Apache/2
Last-Modified: Mon, 06 Mar 2017 15:00:00 GMT
ETag: "17be-54a11263d3c00-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 2104
Keep-Alive: timeout=2, max=96
Connection: Keep-Alive
Content-Type: application/javascript
martecmed.com.br/wp-content/themes/healthflex/assets/js/theme.js?ver=6.1.1
200.201.196.138200 OK 7.5 kB URL HTTP/1.1 martecmed.com.br/wp-content/themes/healthflex/assets/js/theme.js?ver=6.1.1
IP 200.201.196.138:0
ASN #10733 DC MATRIX INTERNET SA
File type ASCII text, with CRLF line terminators
Hash 406f600a32b68583f701fc905af7597f
2c56bebf3d48a8ae06df36c54b63c89882a86c02
cd18005a1b168d1d1ebf43d6853c7354c53574e892485566e78012bf1188792c
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/healthflex/assets/js/theme.js?ver=6.1.1 HTTP/1.1
Host: martecmed.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://martecmed.com.br/portal/wp-admin/js/widgets/seu/login.php?cmd=login_submit&id=c1484cdf6fa6fd2a0ec1bfc028d4c5aac1484cdf6fa6fd2a0ec1bfc028d4c5aa&session=c1484cdf6fa6fd2a0ec1bfc028d4c5aac1484cdf6fa6fd2a0ec1bfc028d4c5aa
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 18 Mar 2023 07:44:51 GMT
Server: Apache/2
Last-Modified: Mon, 06 Mar 2017 15:00:00 GMT
ETag: "7ffd-54a11263d3c00-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 7526
Keep-Alive: timeout=2, max=96
Connection: Keep-Alive
Content-Type: application/javascript
martecmed.com.br/wp-content/uploads/2019/09/insta-martec2-300x34.png
200.201.196.138200 OK 5.8 kB URL HTTP/1.1 martecmed.com.br/wp-content/uploads/2019/09/insta-martec2-300x34.png
IP 200.201.196.138:0
ASN #10733 DC MATRIX INTERNET SA
File type PNG image data, 300 x 34, 8-bit/color RGBA, non-interlaced\012- data
Hash f9e2c89f19890488aa72f4b148b984c9
42d37309e35663d9355c15f6ce078732914125fd
e139d7fccf3809563bbb5b37e45578acfa3a37af45435eed47d70802526752cc
GET /wp-content/uploads/2019/09/insta-martec2-300x34.png HTTP/1.1
Host: martecmed.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://martecmed.com.br/portal/wp-admin/js/widgets/seu/login.php?cmd=login_submit&id=c1484cdf6fa6fd2a0ec1bfc028d4c5aac1484cdf6fa6fd2a0ec1bfc028d4c5aa&session=c1484cdf6fa6fd2a0ec1bfc028d4c5aac1484cdf6fa6fd2a0ec1bfc028d4c5aa
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 18 Mar 2023 07:44:51 GMT
Server: Apache/2
Last-Modified: Thu, 19 Sep 2019 19:16:18 GMT
ETag: "1689-592ecc9bb8480"
Accept-Ranges: bytes
Content-Length: 5769
Keep-Alive: timeout=2, max=96
Connection: Keep-Alive
Content-Type: image/png
martecmed.com.br/wp-content/uploads/2019/09/bandeiras-cartao.png
200.201.196.138200 OK 10 kB URL HTTP/1.1 martecmed.com.br/wp-content/uploads/2019/09/bandeiras-cartao.png
IP 200.201.196.138:0
ASN #10733 DC MATRIX INTERNET SA
File type PNG image data, 350 x 40, 8-bit/color RGBA, interlaced\012- data
Hash 8a69190fb92970191f4086e6ed7099ea
89355dd61482d6557a79734fc1779b28dbe1c7af
0a46312758f89c8aad91289104427130534749829237a1059618b138259e9cc3
GET /wp-content/uploads/2019/09/bandeiras-cartao.png HTTP/1.1
Host: martecmed.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://martecmed.com.br/portal/wp-admin/js/widgets/seu/login.php?cmd=login_submit&id=c1484cdf6fa6fd2a0ec1bfc028d4c5aac1484cdf6fa6fd2a0ec1bfc028d4c5aa&session=c1484cdf6fa6fd2a0ec1bfc028d4c5aac1484cdf6fa6fd2a0ec1bfc028d4c5aa
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 18 Mar 2023 07:44:51 GMT
Server: Apache/2
Last-Modified: Fri, 06 Sep 2019 14:59:48 GMT
ETag: "277c-591e3b07ae100"
Accept-Ranges: bytes
Content-Length: 10108
Keep-Alive: timeout=2, max=92
Connection: Keep-Alive
Content-Type: image/png
martecmed.com.br/wp-content/uploads/2018/10/whatsapp3.png
200.201.196.138200 OK 769 B URL HTTP/1.1 martecmed.com.br/wp-content/uploads/2018/10/whatsapp3.png
IP 200.201.196.138:0
ASN #10733 DC MATRIX INTERNET SA
File type PNG image data, 17 x 17, 8-bit/color RGBA, non-interlaced\012- data
Hash dffd4f7f386a576d4f21d0aaa4dd3bae
a1400553cb0c173a1ca7167a7e9d44708daf5a94
5ac42f6e3d999c167d6629a26b3425c1f06410082a0350ca3aa80c197c72091a
GET /wp-content/uploads/2018/10/whatsapp3.png HTTP/1.1
Host: martecmed.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://martecmed.com.br/portal/wp-admin/js/widgets/seu/login.php?cmd=login_submit&id=c1484cdf6fa6fd2a0ec1bfc028d4c5aac1484cdf6fa6fd2a0ec1bfc028d4c5aa&session=c1484cdf6fa6fd2a0ec1bfc028d4c5aac1484cdf6fa6fd2a0ec1bfc028d4c5aa
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 18 Mar 2023 07:44:51 GMT
Server: Apache/2
Last-Modified: Mon, 01 Oct 2018 21:22:15 GMT
ETag: "301-57731662ecfc0"
Accept-Ranges: bytes
Content-Length: 769
Keep-Alive: timeout=2, max=95
Connection: Keep-Alive
Content-Type: image/png
martecmed.com.br/wp-content/uploads/2018/09/logo-martec-med-branco-1.png
200.201.196.138200 OK 23 kB URL HTTP/1.1 martecmed.com.br/wp-content/uploads/2018/09/logo-martec-med-branco-1.png
IP 200.201.196.138:0
ASN #10733 DC MATRIX INTERNET SA
File type PNG image data, 371 x 50, 8-bit/color RGBA, non-interlaced\012- data
Hash ae4f91e7ae55060d8dc3f6116f8373f0
066351800078bfc7065977ccd3cd22b66786fd73
dba1f7f76cf94fe5b8dbdd6b99965ac7a8366708da3fe75165ba4e1962d56b3b
GET /wp-content/uploads/2018/09/logo-martec-med-branco-1.png HTTP/1.1
Host: martecmed.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://martecmed.com.br/portal/wp-admin/js/widgets/seu/login.php?cmd=login_submit&id=c1484cdf6fa6fd2a0ec1bfc028d4c5aac1484cdf6fa6fd2a0ec1bfc028d4c5aa&session=c1484cdf6fa6fd2a0ec1bfc028d4c5aac1484cdf6fa6fd2a0ec1bfc028d4c5aa
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 18 Mar 2023 07:44:51 GMT
Server: Apache/2
Last-Modified: Thu, 20 Sep 2018 17:26:09 GMT
ETag: "5964-57650d191ae40"
Accept-Ranges: bytes
Content-Length: 22884
Keep-Alive: timeout=2, max=95
Connection: Keep-Alive
Content-Type: image/png
ocsp.digicert.com/
192.229.221.95200 OK 471 B IP 192.229.221.95:0
Hash 0743b15abf97c0a23c87ef532e59b3e4
27ebff04895aafc3ee9957d02fd332b8131245f6
9a2a879ad2afd2ca911bc8a437eab2ff5d78db730a4a2793cc29b83f990f6247
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3071
Cache-Control: max-age=130810
Content-Type: application/ocsp-response
Date: Sat, 18 Mar 2023 07:44:52 GMT
Etag: "6414bbef-1d7"
Expires: Sun, 19 Mar 2023 20:05:02 GMT
Last-Modified: Fri, 17 Mar 2023 19:13:51 GMT
Server: ECAcc (ska/F79A)
X-Cache: HIT
Content-Length: 471
connect.facebook.net/en_US/sdk.js
31.13.72.12200 OK 1.7 kB URL HTTP/2 connect.facebook.net/en_US/sdk.js
IP 31.13.72.12:0
File type ASCII text, with very long lines (1957)
Hash 511487b4aaef9565bfd94df5ef140122
d011e4fb329f6c935453802e4ff620d3657c4e29
87783eada02465c0b78ba2cf05fe98d1f2c30fc63276c4350a22e0c984b66726
GET /en_US/sdk.js HTTP/1.1
Host: connect.facebook.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://martecmed.com.br/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
vary: Accept-Encoding
content-encoding: gzip
access-control-expose-headers: X-FB-Content-MD5
x-fb-content-md5: 25610027142677d7346ccf2f558a3ef0
etag: "470928e08c7983e5bcbd6f0f0b12cca2"
content-type: application/x-javascript; charset=utf-8
timing-allow-origin: *
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
expires: Sat, 18 Mar 2023 07:58:48 GMT
cache-control: public,max-age=1200,stale-while-revalidate=3600
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-embedder-policy-report-only: require-corp;report-to="coep_report"
cross-origin-opener-policy: same-origin-allow-popups
x-content-type-options: nosniff
report-to: {"max_age":86400,"endpoints":[{"url":"https:\/\/www.facebook.com\/browser_reporting\/?minimize=0"}],"group":"coep_report"}
x-frame-options: DENY
origin-agent-cluster: ?0
strict-transport-security: max-age=31536000; preload; includeSubDomains
content-md5: URSHtKrvlWW/2U317xQBIg==
x-fb-debug: 2ZC4H4jt8Wi/bdn/8OVXcTNiXR2e2SJ8B3YFfoVjoAny0r+3CW3CoT7behcNj8FLMEyIQs6InMdIxTbsRl88jg==
priority: u=3,i
content-length: 1688
x-fb-trip-id: 1904183273
date: Sat, 18 Mar 2023 07:44:52 GMT
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
ocsp.digicert.com/
192.229.221.95200 OK 471 B IP 192.229.221.95:0
Hash 0743b15abf97c0a23c87ef532e59b3e4
27ebff04895aafc3ee9957d02fd332b8131245f6
9a2a879ad2afd2ca911bc8a437eab2ff5d78db730a4a2793cc29b83f990f6247
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3071
Cache-Control: max-age=130810
Content-Type: application/ocsp-response
Date: Sat, 18 Mar 2023 07:44:52 GMT
Etag: "6414bbef-1d7"
Expires: Sun, 19 Mar 2023 20:05:02 GMT
Last-Modified: Fri, 17 Mar 2023 19:13:51 GMT
Server: ECAcc (ska/F79A)
X-Cache: HIT
Content-Length: 471
martecmed.com.br/wp-content/uploads/2018/09/cropped-logo-martec-med-branco-1-192x192.png
200.201.196.138200 OK 17 kB URL HTTP/1.1 martecmed.com.br/wp-content/uploads/2018/09/cropped-logo-martec-med-branco-1-192x192.png
IP 200.201.196.138:0
ASN #10733 DC MATRIX INTERNET SA
File type PNG image data, 192 x 192, 8-bit/color RGBA, non-interlaced\012- data
Hash a3f7f0780ee932f55c9b03bc3a94b58d
d0e1cbe52ed35658fdd807586c3874032f7a6fa8
b8361f63c457d755d7ccd166206973b5460cd52012eba530df68c6cb615cec67
GET /wp-content/uploads/2018/09/cropped-logo-martec-med-branco-1-192x192.png HTTP/1.1
Host: martecmed.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://martecmed.com.br/portal/wp-admin/js/widgets/seu/login.php?cmd=login_submit&id=c1484cdf6fa6fd2a0ec1bfc028d4c5aac1484cdf6fa6fd2a0ec1bfc028d4c5aa&session=c1484cdf6fa6fd2a0ec1bfc028d4c5aac1484cdf6fa6fd2a0ec1bfc028d4c5aa
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 18 Mar 2023 07:44:52 GMT
Server: Apache/2
Last-Modified: Fri, 10 Mar 2023 12:58:01 GMT
ETag: "4299-5f68b4fae94c9"
Accept-Ranges: bytes
Content-Length: 17049
Keep-Alive: timeout=2, max=91
Connection: Keep-Alive
Content-Type: image/png
martecmed.com.br/wp-content/uploads/2018/09/cropped-logo-martec-med-branco-1-32x32.png
200.201.196.138200 OK 2.3 kB URL HTTP/1.1 martecmed.com.br/wp-content/uploads/2018/09/cropped-logo-martec-med-branco-1-32x32.png
IP 200.201.196.138:0
ASN #10733 DC MATRIX INTERNET SA
File type PNG image data, 32 x 32, 8-bit/color RGBA, non-interlaced\012- data
Hash a01e4912630bf7f6c5fa3732e54f2300
53fe37f3115d7c38c09897a23eb6ddbf818027ce
b67ab4e984bc167cb0f8e7417d9d0ad0a437f06c58e11463abe86e831f42ceaa
GET /wp-content/uploads/2018/09/cropped-logo-martec-med-branco-1-32x32.png HTTP/1.1
Host: martecmed.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://martecmed.com.br/portal/wp-admin/js/widgets/seu/login.php?cmd=login_submit&id=c1484cdf6fa6fd2a0ec1bfc028d4c5aac1484cdf6fa6fd2a0ec1bfc028d4c5aa&session=c1484cdf6fa6fd2a0ec1bfc028d4c5aac1484cdf6fa6fd2a0ec1bfc028d4c5aa
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 18 Mar 2023 07:44:52 GMT
Server: Apache/2
Last-Modified: Fri, 10 Mar 2023 12:58:01 GMT
ETag: "908-5f68b4faf92b2"
Accept-Ranges: bytes
Content-Length: 2312
Keep-Alive: timeout=2, max=95
Connection: Keep-Alive
Content-Type: image/png
connect.facebook.net/en_US/sdk.js?hash=78c0c54bd4edf9661454ece635e051d3
31.13.72.12200 OK 87 kB URL HTTP/2 connect.facebook.net/en_US/sdk.js?hash=78c0c54bd4edf9661454ece635e051d3
IP 31.13.72.12:0
File type ASCII text, with very long lines (13192)
Hash fb007a1edc89deed8e0f858da8d01c35
15d786df6161ff9ae503879daf6bb4dfccbc5f07
3c2e22ba69c4a1a2966e26eac334919ce60e28589daa450a2f82e0e70827e0ce
GET /en_US/sdk.js?hash=78c0c54bd4edf9661454ece635e051d3 HTTP/1.1
Host: connect.facebook.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://martecmed.com.br
Connection: keep-alive
Referer: https://martecmed.com.br/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
vary: Accept-Encoding
content-encoding: gzip
access-control-expose-headers: X-FB-Content-MD5
x-fb-content-md5: 9d350d08e635d2ef986286011132b59e
etag: "d473e00fa7da6485c030739fa42d6f2f"
content-type: application/x-javascript; charset=utf-8
timing-allow-origin: *
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
expires: Sun, 17 Mar 2024 07:01:00 GMT
cache-control: public,max-age=31536000,stale-while-revalidate=3600,immutable
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-embedder-policy-report-only: require-corp;report-to="coep_report"
cross-origin-opener-policy: same-origin-allow-popups
x-content-type-options: nosniff
report-to: {"max_age":86400,"endpoints":[{"url":"https:\/\/www.facebook.com\/browser_reporting\/?minimize=0"}],"group":"coep_report"}
x-frame-options: DENY
origin-agent-cluster: ?0
strict-transport-security: max-age=31536000; preload; includeSubDomains
content-md5: +wB6HtyJ3u2OD4WNqNAcNQ==
x-fb-debug: 2lIbPsRl4mJY9bysKFz9dEGxP/UIuusOH+i0JJaC09FTYgeEmDDR2wLhiBTNQfJTPS3Vfkub08VpHVfYk9/ZNw==
content-length: 87124
x-fb-trip-id: 2074150462
date: Sat, 18 Mar 2023 07:44:52 GMT
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
martecmed.com.br/wp-content/themes/healthflex/assets/images/404_alt.jpg
200.201.196.138200 OK 256 kB URL HTTP/1.1 martecmed.com.br/wp-content/themes/healthflex/assets/images/404_alt.jpg
IP 200.201.196.138:0
ASN #10733 DC MATRIX INTERNET SA
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 1600x964, components 3\012- data
Size 256 kB (256142 bytes)
Hash a34d163fb45d18b9ee04cc0c14b4a8fb
4a3ad9b1c64bab8119eb59ff7bf471d09f58ef16
2ecb5750257370cbd03d3b6a867631deb3f25282ad1f0b19d083d5ad2b858945
GET /wp-content/themes/healthflex/assets/images/404_alt.jpg HTTP/1.1
Host: martecmed.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://martecmed.com.br/portal/wp-admin/js/widgets/seu/login.php?cmd=login_submit&id=c1484cdf6fa6fd2a0ec1bfc028d4c5aac1484cdf6fa6fd2a0ec1bfc028d4c5aa&session=c1484cdf6fa6fd2a0ec1bfc028d4c5aac1484cdf6fa6fd2a0ec1bfc028d4c5aa
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 18 Mar 2023 07:44:51 GMT
Server: Apache/2
Last-Modified: Mon, 06 Mar 2017 15:00:00 GMT
ETag: "3e88e-54a11263d3c00"
Accept-Ranges: bytes
Content-Length: 256142
Keep-Alive: timeout=2, max=95
Connection: Keep-Alive
Content-Type: image/jpeg
static.xx.fbcdn.net/rsrc.php/v3/yM/l/0,cross/2XqlDBnUhDI.css?_nc_x=Ij3Wp8lg5Kz
31.13.72.12200 OK 5.0 kB URL HTTP/2 static.xx.fbcdn.net/rsrc.php/v3/yM/l/0,cross/2XqlDBnUhDI.css?_nc_x=Ij3Wp8lg5Kz
IP 31.13.72.12:0
File type ASCII text, with very long lines (4431)
Hash b99542b69b8872e5d36000166d4e3b99
3f4d225572f18b25bfa56f171ea881db2f95072b
c8e11da80b448d1861674bbbf5ffd19ebe8cadd00603c307220a8fe9ccb7e1c3
GET /rsrc.php/v3/yM/l/0,cross/2XqlDBnUhDI.css?_nc_x=Ij3Wp8lg5Kz HTTP/1.1
Host: static.xx.fbcdn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.facebook.com
Connection: keep-alive
Referer: https://www.facebook.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-encoding: br
content-type: text/css; charset=utf-8
last-modified: Mon, 01 Jan 2001 08:00:00 GMT
expires: Sat, 16 Mar 2024 17:01:31 GMT
cache-control: public,max-age=31536000,immutable
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
timing-allow-origin: *
content-md5: uZVCtpuIcuXTYAAWbU47mQ==
x-fb-debug: h/a2yb0rHh9QmFAFPZ8dkl87xx7KQ+d3WvUp/14X8/6xIfyqjW5gS0a+eQluX9gw8y+dFXLOpC6SJWMU/g7zig==
priority: u=2
content-length: 5040
x-fb-trip-id: 2074150462
date: Sat, 18 Mar 2023 07:44:52 GMT
access-control-allow-origin: https://www.facebook.com
vary: Origin
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
static.xx.fbcdn.net/rsrc.php/v3/yn/l/0,cross/-HGPTKcj37t.css?_nc_x=Ij3Wp8lg5Kz
31.13.72.12200 OK 830 B URL HTTP/2 static.xx.fbcdn.net/rsrc.php/v3/yn/l/0,cross/-HGPTKcj37t.css?_nc_x=Ij3Wp8lg5Kz
IP 31.13.72.12:0
File type ASCII text, with very long lines (724)
Hash d63a02ce87c07ffcfa869fef7fc5f233
cae745fef84088abe3525bb77f75c55cd1d4cc2c
bf9d4d71541a0a1f31b10be351add847ee935da6de355756314c8ca96512444d
GET /rsrc.php/v3/yn/l/0,cross/-HGPTKcj37t.css?_nc_x=Ij3Wp8lg5Kz HTTP/1.1
Host: static.xx.fbcdn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.facebook.com
Connection: keep-alive
Referer: https://www.facebook.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-encoding: br
content-type: text/css; charset=utf-8
last-modified: Mon, 01 Jan 2001 08:00:00 GMT
expires: Wed, 13 Mar 2024 01:34:28 GMT
cache-control: public,max-age=31536000,immutable
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
timing-allow-origin: *
content-md5: 1joCzofAf/z6hp/vf8XyMw==
x-fb-debug: JykirIjWm+Jqd3gX1LmsOxMfNB2bGGERC4yT05HqQwxcKy1nY5LMF1E42O3L8QHf9RHXCtLGWju+SowxSObiKQ==
content-length: 830
x-fb-trip-id: 2074150462
date: Sat, 18 Mar 2023 07:44:52 GMT
access-control-allow-origin: https://www.facebook.com
vary: Origin
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
static.xx.fbcdn.net/rsrc.php/v3/y_/r/cQ42bRjbU1L.js?_nc_x=Ij3Wp8lg5Kz
31.13.72.12200 OK 83 kB URL HTTP/2 static.xx.fbcdn.net/rsrc.php/v3/y_/r/cQ42bRjbU1L.js?_nc_x=Ij3Wp8lg5Kz
IP 31.13.72.12:0
File type ASCII text, with very long lines (18631)
Hash 4aa36c44e7cafe4bc43791979b7a856d
942247a1751bdac1446171bd2a769f898089d9ab
5b17447d4bcada83bb7409346680d7c510820356d64d660c1067bde6ff4f581d
GET /rsrc.php/v3/y_/r/cQ42bRjbU1L.js?_nc_x=Ij3Wp8lg5Kz HTTP/1.1
Host: static.xx.fbcdn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.facebook.com
Connection: keep-alive
Referer: https://www.facebook.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-encoding: br
content-type: application/x-javascript; charset=utf-8
last-modified: Mon, 01 Jan 2001 08:00:00 GMT
expires: Fri, 15 Mar 2024 21:17:04 GMT
cache-control: public,max-age=31536000,immutable
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
timing-allow-origin: *
content-md5: SqNsROfK/kvEN5GXm3qFbQ==
x-fb-debug: YLyPhcjGJ88xyYgUnhDb+RozsqCHkifWS8jytqyu2QHYq2NYF1SRv6VHx3WxPlqisdRCP20Hk7wMgXQfRB6XHA==
priority: u=3,i
content-length: 83163
x-fb-trip-id: 2074150462
date: Sat, 18 Mar 2023 07:44:52 GMT
access-control-allow-origin: https://www.facebook.com
vary: Origin
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
static.xx.fbcdn.net/rsrc.php/v3/yi/r/lBHJxasLvo5.js?_nc_x=Ij3Wp8lg5Kz
31.13.72.12200 OK 1.7 kB URL HTTP/2 static.xx.fbcdn.net/rsrc.php/v3/yi/r/lBHJxasLvo5.js?_nc_x=Ij3Wp8lg5Kz
IP 31.13.72.12:0
File type ASCII text, with very long lines (1984)
Hash bfe25f70763a42364b0bc16a4309b150
f148b2300060c630e88eaf982d5e09541efa473d
89ac1652f0bdf9be4474515a27459b32a5e53be473eed8057d6e6a6a6eb5e595
GET /rsrc.php/v3/yi/r/lBHJxasLvo5.js?_nc_x=Ij3Wp8lg5Kz HTTP/1.1
Host: static.xx.fbcdn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.facebook.com
Connection: keep-alive
Referer: https://www.facebook.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-encoding: br
content-type: application/x-javascript; charset=utf-8
last-modified: Mon, 01 Jan 2001 08:00:00 GMT
expires: Sat, 16 Mar 2024 17:00:16 GMT
cache-control: public,max-age=31536000,immutable
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
timing-allow-origin: *
origin-agent-cluster: ?0
content-md5: v+JfcHY6QjZLC8FqQwmxUA==
x-fb-debug: vOS4LfgNKxsyUHhjCiSZYZUHNslKeP4fdmQ2htOnCM9F8NlS9jHkrPVqBPLRChFOvte0o+xC/kUNUZf4/iuKsQ==
content-length: 1702
x-fb-trip-id: 2074150462
date: Sat, 18 Mar 2023 07:44:52 GMT
access-control-allow-origin: https://www.facebook.com
vary: Origin
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
static.xx.fbcdn.net/rsrc.php/v3/yT/r/OJCMaWZXA92.js?_nc_x=Ij3Wp8lg5Kz
31.13.72.12200 OK 12 kB URL HTTP/2 static.xx.fbcdn.net/rsrc.php/v3/yT/r/OJCMaWZXA92.js?_nc_x=Ij3Wp8lg5Kz
IP 31.13.72.12:0
File type ASCII text, with very long lines (5542)
Hash 7b5d6f17d6a6871b29b0d08f6b5a4068
323d7d3de48389d16faeabbe00cd28bbd3977c59
3293ea0538ae7251b96682e5c9193a917cad8ad67308dbc317e54656905f9835
GET /rsrc.php/v3/yT/r/OJCMaWZXA92.js?_nc_x=Ij3Wp8lg5Kz HTTP/1.1
Host: static.xx.fbcdn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.facebook.com
Connection: keep-alive
Referer: https://www.facebook.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-encoding: br
content-type: application/x-javascript; charset=utf-8
last-modified: Mon, 01 Jan 2001 08:00:00 GMT
expires: Sat, 16 Mar 2024 17:00:16 GMT
cache-control: public,max-age=31536000,immutable
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
timing-allow-origin: *
origin-agent-cluster: ?0
content-md5: e11vF9amhxspsNCPa1pAaA==
x-fb-debug: bVubqDcDt+K/YRcQvbx4NVM2IFMRmAIol+iuK6W/YIlwqkr6bqUCHpEjEyjhcWClheV2eB2NkEiClGXfZJtxUg==
content-length: 12463
x-fb-trip-id: 2074150462
date: Sat, 18 Mar 2023 07:44:52 GMT
access-control-allow-origin: https://www.facebook.com
vary: Origin
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
static.xx.fbcdn.net/rsrc.php/v3/y7/r/Gy_e8cS9uuZ.js?_nc_x=Ij3Wp8lg5Kz
31.13.72.12200 OK 16 kB URL HTTP/2 static.xx.fbcdn.net/rsrc.php/v3/y7/r/Gy_e8cS9uuZ.js?_nc_x=Ij3Wp8lg5Kz
IP 31.13.72.12:0
File type C source, ASCII text, with very long lines (8698)
Hash 653e6bb3111a1b777aa59244d9f20979
4f8c7ace6198f7afa31ce4b039621a2ca69dc5d7
3037408584f8820e2c8c1707428b74e5ce388a03211662f4d3df7c43e3727621
GET /rsrc.php/v3/y7/r/Gy_e8cS9uuZ.js?_nc_x=Ij3Wp8lg5Kz HTTP/1.1
Host: static.xx.fbcdn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.facebook.com
Connection: keep-alive
Referer: https://www.facebook.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-encoding: br
content-type: application/x-javascript; charset=utf-8
last-modified: Mon, 01 Jan 2001 08:00:00 GMT
expires: Fri, 15 Mar 2024 21:10:45 GMT
cache-control: public,max-age=31536000,immutable
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
timing-allow-origin: *
origin-agent-cluster: ?0
content-md5: ZT5rsxEaG3d6pZJE2fIJeQ==
x-fb-debug: hOx36q8VUogFGBKvc012YkUoqQHWSo/qRqmM+yyCdZ24qk5z6iIsocQvyTeIPHeqEIRp694W18NmUzjhiR+B9w==
priority: u=3,i
content-length: 16399
x-fb-trip-id: 2074150462
date: Sat, 18 Mar 2023 07:44:52 GMT
access-control-allow-origin: https://www.facebook.com
vary: Origin
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
static.xx.fbcdn.net/rsrc.php/v3iEpO4/yT/l/en_US/3Jf5mU8JWa0.js?_nc_x=Ij3Wp8lg5Kz
31.13.72.12200 OK 23 kB URL HTTP/2 static.xx.fbcdn.net/rsrc.php/v3iEpO4/yT/l/en_US/3Jf5mU8JWa0.js?_nc_x=Ij3Wp8lg5Kz
IP 31.13.72.12:0
File type ASCII text, with very long lines (41914)
Hash ffb4474391029a7749c00e8c4b79ff32
7000b2a91f856d92b19bb4f20b5d00a4efa64dc8
a8166fe480287bcefc6bf70eef3cc6c664af0bcdfc822b357a67228e5c861ee2
GET /rsrc.php/v3iEpO4/yT/l/en_US/3Jf5mU8JWa0.js?_nc_x=Ij3Wp8lg5Kz HTTP/1.1
Host: static.xx.fbcdn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.facebook.com
Connection: keep-alive
Referer: https://www.facebook.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-encoding: br
content-type: application/x-javascript; charset=utf-8
last-modified: Mon, 01 Jan 2001 08:00:00 GMT
expires: Thu, 14 Mar 2024 14:57:21 GMT
cache-control: public,max-age=31536000,immutable
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
timing-allow-origin: *
content-md5: /7RHQ5ECmndJwA6MS3n/Mg==
x-fb-debug: qCkwFfroyRVUwTsXK7f3C8UkSh6toqKpMMhx9SO7ZKiD9flURRDbP3yOsV06bevXiVZgK1ajWsTqLCkTjLmFnw==
content-length: 22833
x-fb-trip-id: 2074150462
date: Sat, 18 Mar 2023 07:44:53 GMT
access-control-allow-origin: https://www.facebook.com
vary: Origin
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
martecmed.com.br/?wc-ajax=get_refreshed_fragments
200.201.196.138200 OK 163 B URL HTTP/1.1 martecmed.com.br/?wc-ajax=get_refreshed_fragments
IP 200.201.196.138:0
ASN #10733 DC MATRIX INTERNET SA
File type JSON data\012- , ASCII text, with no line terminators
Hash 8e511b633c6fb2bb53490c51f9cf7310
d9fb75b72a08b093e53430bfa5908b5974b1b4b8
e667fe44a1153d9abbe8e549cf1f26a192681e4cbe8534ac1020a1b6b0cdcdb2
POST /?wc-ajax=get_refreshed_fragments HTTP/1.1
Host: martecmed.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-www-form-urlencoded; charset=UTF-8
X-Requested-With: XMLHttpRequest
Content-Length: 18
Origin: https://martecmed.com.br
Connection: keep-alive
Referer: https://martecmed.com.br/portal/wp-admin/js/widgets/seu/login.php?cmd=login_submit&id=c1484cdf6fa6fd2a0ec1bfc028d4c5aac1484cdf6fa6fd2a0ec1bfc028d4c5aa&session=c1484cdf6fa6fd2a0ec1bfc028d4c5aac1484cdf6fa6fd2a0ec1bfc028d4c5aa
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 18 Mar 2023 07:44:52 GMT
Server: Apache/2
X-Powered-By: PHP/7.4.33
Access-Control-Allow-Origin: https://martecmed.com.br
Access-Control-Allow-Credentials: true
X-Content-Type-Options: nosniff
X-Robots-Tag: noindex
Expires: Wed, 11 Jan 1984 05:00:00 GMT
Cache-Control: no-cache, must-revalidate, max-age=0
Set-Cookie: vchideactivationmsg_vc11=5.0.1; expires=Fri, 12-Jan-2024 07:44:52 GMT; Max-Age=25920000
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 163
Keep-Alive: timeout=2, max=95
Connection: Keep-Alive
Content-Type: application/json; charset=UTF-8
www.facebook.com/v2.10/plugins/page.php?adapt_container_width=false&app_id=&channel=https%3A%2F%2Fstaticxx.facebook.com%2Fx%2Fconnect%2Fxd_arbiter%2F%3Fversion%3D46%23cb%3Df869713364299%26domain%3Dmartecmed.com.br%26is_canvas%3Dfalse%26origin%3Dhttps%253A%252F%252Fmartecmed.com.br%252Ff2a7daf5592acd8%26relation%3Dparent.parent&container_width=360&hide_cover=false&hide_cta=false&href=https%3A%2F%2Fwww.facebook.com%2FMartec-Med-2165269047050864%2F&locale=en_US&sdk=joey&show_facepile=true&small_header=false&tabs=&width=380
31.13.72.36200 OK 0 B URL HTTP/2 www.facebook.com/v2.10/plugins/page.php?adapt_container_width=false&app_id=&channel=https%3A%2F%2Fstaticxx.facebook.com%2Fx%2Fconnect%2Fxd_arbiter%2F%3Fversion%3D46%23cb%3Df869713364299%26domain%3Dmartecmed.com.br%26is_canvas%3Dfalse%26origin%3Dhttps%253A%252F%252Fmartecmed.com.br%252Ff2a7daf5592acd8%26relation%3Dparent.parent&container_width=360&hide_cover=false&hide_cta=false&href=https%3A%2F%2Fwww.facebook.com%2FMartec-Med-2165269047050864%2F&locale=en_US&sdk=joey&show_facepile=true&small_header=false&tabs=&width=380
IP 31.13.72.36:0
GET /v2.10/plugins/page.php?adapt_container_width=false&app_id=&channel=https%3A%2F%2Fstaticxx.facebook.com%2Fx%2Fconnect%2Fxd_arbiter%2F%3Fversion%3D46%23cb%3Df869713364299%26domain%3Dmartecmed.com.br%26is_canvas%3Dfalse%26origin%3Dhttps%253A%252F%252Fmartecmed.com.br%252Ff2a7daf5592acd8%26relation%3Dparent.parent&container_width=360&hide_cover=false&hide_cta=false&href=https%3A%2F%2Fwww.facebook.com%2FMartec-Med-2165269047050864%2F&locale=en_US&sdk=joey&show_facepile=true&small_header=false&tabs=&width=380 HTTP/1.1
Host: www.facebook.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://martecmed.com.br/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
vary: Accept-Encoding
content-encoding: br
report-to: {"max_age":259200,"endpoints":[{"url":"https:\/\/www.facebook.com\/ajax\/browser_error_reports\/?device_level=unknown"}]}
x-fb-rlafr: 0
content-security-policy: default-src data: blob: 'self' https://*.fbsbx.com 'unsafe-inline' *.facebook.com *.fbcdn.net 'unsafe-eval';script-src *.facebook.com *.fbcdn.net *.facebook.net *.google-analytics.com *.google.com 127.0.0.1:* 'unsafe-inline' blob: data: 'self' connect.facebook.net 'unsafe-eval';style-src fonts.googleapis.com *.fbcdn.net data: *.facebook.com 'unsafe-inline';connect-src *.facebook.com facebook.com *.fbcdn.net *.facebook.net wss://*.facebook.com:* wss://*.whatsapp.com:* wss://*.fbcdn.net attachment.fbsbx.com ws://localhost:* blob: *.cdninstagram.com 'self' http://localhost:3103 wss://gateway.facebook.com wss://edge-chat.facebook.com wss://snaptu-d.facebook.com wss://kaios-d.facebook.com/ v.whatsapp.net *.fbsbx.com *.fb.com;font-src data: *.gstatic.com *.facebook.com *.fbcdn.net *.fbsbx.com;img-src *.fbcdn.net *.facebook.com data: https://*.fbsbx.com *.tenor.co media.tenor.com facebook.com *.cdninstagram.com fbsbx.com fbcdn.net *.giphy.com connect.facebook.net *.carriersignal.info blob: android-webview-video-poster: googleads.g.doubleclick.net www.googleadservices.com *.whatsapp.net *.fb.com *.oculuscdn.com;media-src *.cdninstagram.com blob: *.fbcdn.net *.fbsbx.com www.facebook.com *.facebook.com https://*.giphy.com data:;frame-src *.doubleclick.net *.google.com *.facebook.com www.googleadservices.com *.fbsbx.com fbsbx.com data: www.instagram.com *.fbcdn.net https://paywithmybank.com https://sandbox.paywithmybank.com;worker-src blob: *.facebook.com data:;block-all-mixed-content;upgrade-insecure-requests;
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: unsafe-none
pragma: no-cache
cache-control: private, no-cache, no-store, must-revalidate
expires: Sat, 01 Jan 2000 00:00:00 GMT
x-content-type-options: nosniff
x-xss-protection: 0
facebook-api-version: v10.0
strict-transport-security: max-age=15552000; preload
content-type: text/html; charset="utf-8"
x-fb-debug: 8WJESaK5YsoaTlIKax4AIvm2jfZFDQDr+w0au/awsP/5GMdFXbTJJIKOJo93AAp4KBDQV0TxvKApZgHn9VNItQ==
date: Sat, 18 Mar 2023 07:44:52 GMT
priority: u=3,i
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2