{"report_id":"b1bd7701-ad0c-4ff0-92cf-938b17b1d0b2","version":0,"status":"done","tags":[],"date":"2026-06-12T11:15:02Z","url":{"schema":"http","addr":"entrar.enquete.gerenciagram.net/","fqdn":"entrar.enquete.gerenciagram.net","domain":"gerenciagram.net","tld":"net"},"ip":{"addr":"108.167.151.39","port":0,"asn":19871,"as":"NETWORK-SOLUTIONS-HOSTING","country":"United States","country_code":"US"},"final":{"url":{"schema":"https","addr":"entrar.enquete.gerenciagram.net/","fqdn":"entrar.enquete.gerenciagram.net","domain":"gerenciagram.net","tld":"net"},"title":"Gmail","dom":{"size":23244,"mime_type":"text/html; charset=utf-8","magic":"HTML document, Unicode text, UTF-8 text, with very long lines (504)","md5":"9a24c69dc2a7ead5b63d89757965e073","sha1":"6a4df2a42246b7cc4a3384ab01b4a0488a976f63","sha256":"1a72c3bb45190d9e19505959ccdb3cc0f8817a2a0f653b6af47490c6a7433c50","sha512":"a3a0e8f4ecf4e314eec2d97dbe873c065b2177b0023245411843882101dbd3fb465931e064bd492ddd930b01a9ab0f72fcbf85f42aa41199d5f4c3965d451dfd","ssdeep":"192:ozmYsOyaO+kUWhBys97njnGq9QwVFBjkVJMQT6qB7nD2aCDfD3mLRaNx:oz3sOlO+kUW5pBjpQT6qR2aCDfD3mMD","tlshash":"89a263febaa200047536d6e13952bb592362c011d90bde3b97e234fcdf4a6d11ab3359","dom_hash":"domhash963545042fb461ae16eccacc736495d5","first_seen":"","last_seen":"","times_seen":0,"resource_available":false,"data":null}},"submit":{"url":{"schema":"http","addr":"entrar.enquete.gerenciagram.net/","fqdn":"entrar.enquete.gerenciagram.net","domain":"gerenciagram.net","tld":"net"},"ip":{"addr":"108.167.151.39","port":0,"asn":19871,"as":"NETWORK-SOLUTIONS-HOSTING","country":"United States","country_code":"US"},"tags":null,"meta":null},"settings":{"access":"public","device_type":"desktop","expires_at":"2027-07-17T11:15:02Z","useragent":"Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0","referer":"","cookies":null,"exit_node":"qguvgzjxzsgb3vs"},"stats":{"alert_count":{"ids":0,"urlquery":0,"analyzer":4}},"detection":{"ids":null,"analyzer":[{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-06-12","alert":"Phishing Block","trigger":"entrar.enquete.gerenciagram.net","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-06-12","alert":"Sinkholed","trigger":"entrar.enquete.gerenciagram.net","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-12","alert":"Sinkholed","trigger":"entrar.enquete.gerenciagram.net","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"quad9","sensor_type":"DNS","title":"Quad9 DNS","description":"Quad9 DNS","scan_date":"2026-06-12","alert":"Sinkholed","trigger":"entrar.enquete.gerenciagram.net","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS","link":"https://www.quad9.net","meta":null}],"urlquery":null},"summary":[{"fqdn":"entrar.enquete.gerenciagram.net","ip":{"addr":"108.167.151.39","port":443,"asn":19871,"as":"NETWORK-SOLUTIONS-HOSTING","country":"United States","country_code":"US"},"domain_registered":"2022-05-24","domain_rank":0,"first_seen":"2022-12-20T15:55:02Z","last_seen":"2025-08-23T03:23:36.324825Z","alert_count":36,"request_count":9,"received_data":71481,"sent_data":4904,"comment":"","tags":null,"fingerprints":[{"name":"Apache HTTP Server","description":"Apache is a free and open-source cross-platform web server software.","website":"https://httpd.apache.org/","common_platform_enumeration":"cpe:2.3:a:apache:http_server:*:*:*:*:*:*:*:*","icon":"Apache.svg","categories":["Web servers"]},{"name":"Bootstrap","description":"Bootstrap is a free and open-source CSS framework directed at responsive, mobile-first front-end web development. It contains CSS and JavaScript-based design templates for typography, forms, buttons, navigation, and other interface components.","website":"https://getbootstrap.com","common_platform_enumeration":"cpe:2.3:a:getbootstrap:bootstrap:*:*:*:*:*:*:*:*","icon":"Bootstrap.svg","categories":["UI frameworks"]}]}],"files":null,"artifacts":{"windows_shortcuts":null,"files":null,"telegram":null,"pdfs":null,"clipboard":null},"sensors":{"ids":null,"analyzer":null,"urlquery":null},"javascript":{"script":null,"eval":null,"write":null,"console":null},"http":[{"url":{"schema":"https","addr":"entrar.enquete.gerenciagram.net/","fqdn":"entrar.enquete.gerenciagram.net","domain":"gerenciagram.net","tld":"net"},"ip":{"addr":"108.167.151.39","port":443,"asn":19871,"as":"NETWORK-SOLUTIONS-HOSTING","country":"United States","country_code":"US"},"is_navigation_request":true,"resource_type":"document","requested_by":"","date":"2026-06-12T11:14:38.791Z","timestamp":1781262878791,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"www.login.enquete.gerenciagram.net","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Fri, 24 Apr 2026 06:11:24 GMT","end":"Thu, 23 Jul 2026 06:11:23 GMT"},"fingerprint":{"sha1":"59:F2:E2:18:9D:D1:15:76:64:07:F1:18:6F:B7:E7:C0:1E:1D:F6:BB","sha256":"DF:11:0C:DC:6D:05:9C:2D:46:7C:47:F8:6E:61:33:E5:C7:00:87:77:71:6F:7F:70:1E:DE:B5:15:09:FB:FC:00"}}},"request":{"raw":"GET / HTTP/1.1\r\nHost: entrar.enquete.gerenciagram.net\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nSec-GPC: 1\r\nUpgrade-Insecure-Requests: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: document\r\nSec-Fetch-Mode: navigate\r\nSec-Fetch-Site: none\r\nPriority: u=0, i\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 \r\nlast-modified: Tue, 20 Dec 2022 14:29:47 GMT\r\naccept-ranges: bytes\r\nvary: Accept-Encoding\r\ncontent-encoding: gzip\r\ncontent-length: 6550\r\ncontent-type: text/html\r\ndate: Fri, 12 Jun 2026 11:14:39 GMT\r\nserver: Apache\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"Apache HTTP Server","description":"Apache is a free and open-source cross-platform web server software.","website":"https://httpd.apache.org/","common_platform_enumeration":"cpe:2.3:a:apache:http_server:*:*:*:*:*:*:*:*","icon":"Apache.svg","categories":["Web servers"]}],"data":{"size":24193,"size_decoded":6800,"mime_type":"text/html","magic":"HTML document, Unicode text, UTF-8 text, with very long lines (511), with CRLF line terminators","md5":"6e2266ba38b2e53149a820bde9cf5231","sha1":"75958332a64256dd3b522d79029350c6c8efab3a","sha256":"46ec736040d20eaa3c9c2defbe6d32f29034edad2b84deceedb5f63e53176498","sha512":"6144584d2ef45043983b249650062d90da85ac6409302b09fb9683164d10b801ed35a20348331b4255fb62b4e73efbbe55e32c9c7be87f2f19f2bbb0765ebef7","ssdeep":"192:cezk3XOjwgk8jSXFc7LJy9EmDkok8Yk8ryeacKqKKVA8:Nk3i8wyeacKOb","tlshash":"7cb23f39e64218057232c7f1bb42ab5976734121c707073bbff2b9a9a349a590637ed4","first_seen":"2023-04-18T06:59:40Z","last_seen":"2026-06-12T11:15:04.703302Z","times_seen":13,"resource_available":true,"data":null}},"time_used":1266,"timings":{"blocked":-1,"dns":465,"connect":196,"send":0,"wait":203,"receive":0,"ssl":402},"alerts":{"ids":null,"analyzer":[{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-06-12","alert":"Phishing Block","trigger":"entrar.enquete.gerenciagram.net","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-06-12","alert":"Sinkholed","trigger":"entrar.enquete.gerenciagram.net","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-12","alert":"Sinkholed","trigger":"entrar.enquete.gerenciagram.net","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"quad9","sensor_type":"DNS","title":"Quad9 DNS","description":"Quad9 DNS","scan_date":"2026-06-12","alert":"Sinkholed","trigger":"entrar.enquete.gerenciagram.net","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS","link":"https://www.quad9.net","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"entrar.enquete.gerenciagram.net/Gmail_files/logo_strip_2x.html","fqdn":"entrar.enquete.gerenciagram.net","domain":"gerenciagram.net","tld":"net"},"ip":{"addr":"108.167.151.39","port":443,"asn":19871,"as":"NETWORK-SOLUTIONS-HOSTING","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://entrar.enquete.gerenciagram.net/","date":"2026-06-12T11:14:40.289Z","timestamp":1781262880289,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"www.login.enquete.gerenciagram.net","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Fri, 24 Apr 2026 06:11:24 GMT","end":"Thu, 23 Jul 2026 06:11:23 GMT"},"fingerprint":{"sha1":"59:F2:E2:18:9D:D1:15:76:64:07:F1:18:6F:B7:E7:C0:1E:1D:F6:BB","sha256":"DF:11:0C:DC:6D:05:9C:2D:46:7C:47:F8:6E:61:33:E5:C7:00:87:77:71:6F:7F:70:1E:DE:B5:15:09:FB:FC:00"}}},"request":{"raw":"GET /Gmail_files/logo_strip_2x.html HTTP/1.1\r\nHost: entrar.enquete.gerenciagram.net\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,image/png,image/svg+xml,image/*;q=0.8,*/*;q=0.5\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: https://entrar.enquete.gerenciagram.net/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPriority: u=5, i\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 \r\nlast-modified: Wed, 29 Jul 2020 06:55:16 GMT\r\naccept-ranges: bytes\r\nvary: Accept-Encoding\r\ncontent-encoding: gzip\r\ncontent-length: 3401\r\ncontent-type: text/html\r\ndate: Fri, 12 Jun 2026 11:14:40 GMT\r\nserver: Apache\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"Apache HTTP Server","description":"Apache is a free and open-source cross-platform web server software.","website":"https://httpd.apache.org/","common_platform_enumeration":"cpe:2.3:a:apache:http_server:*:*:*:*:*:*:*:*","icon":"Apache.svg","categories":["Web servers"]}],"data":{"size":8765,"size_decoded":3651,"mime_type":"text/html","magic":"HTML document, Unicode text, UTF-8 text, with very long lines (1005)","md5":"e5808f489228a93ce8e88ee3e1137249","sha1":"11aa016329812948165cfc46fa949b90d74e3664","sha256":"a6cbd72b46b2b60991ad4fabfbae06cb8b8277edf02a75aedc63072cb7164bf6","sha512":"2baa49eb90af5a387e80d51f173b3f6daff1e541113abf0a374906395ce39b3fe0453c9bd7d6e7aaf30ba1ee6de3755b22ce09f61af46bb2d4f1d97e8791e324","ssdeep":"96:zxLfKmFrHxtDroMGXRJfYDSbQgwaETeKE7a95x/HNw37pI82:z1xFrHProM2RJrk9vt87pI82","tlshash":"ed02859b21e380070643d0e41bf76f4eb6375d27c94acda17aed0a54ef82a5644b7acc","first_seen":"2023-04-18T06:59:40Z","last_seen":"2026-06-12T11:15:04.704584Z","times_seen":13,"resource_available":false,"data":null}},"time_used":388,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":388,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-06-12","alert":"Phishing Block","trigger":"entrar.enquete.gerenciagram.net","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"quad9","sensor_type":"DNS","title":"Quad9 DNS","description":"Quad9 DNS","scan_date":"2026-06-12","alert":"Sinkholed","trigger":"entrar.enquete.gerenciagram.net","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS","link":"https://www.quad9.net","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-06-12","alert":"Sinkholed","trigger":"entrar.enquete.gerenciagram.net","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-12","alert":"Sinkholed","trigger":"entrar.enquete.gerenciagram.net","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"entrar.enquete.gerenciagram.net/ssl.gstatic.com/ui/v1/menu/checkmark.png","fqdn":"entrar.enquete.gerenciagram.net","domain":"gerenciagram.net","tld":"net"},"ip":{"addr":"108.167.151.39","port":443,"asn":19871,"as":"NETWORK-SOLUTIONS-HOSTING","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://entrar.enquete.gerenciagram.net/","date":"2026-06-12T11:14:40.493Z","timestamp":1781262880493,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"www.login.enquete.gerenciagram.net","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Fri, 24 Apr 2026 06:11:24 GMT","end":"Thu, 23 Jul 2026 06:11:23 GMT"},"fingerprint":{"sha1":"59:F2:E2:18:9D:D1:15:76:64:07:F1:18:6F:B7:E7:C0:1E:1D:F6:BB","sha256":"DF:11:0C:DC:6D:05:9C:2D:46:7C:47:F8:6E:61:33:E5:C7:00:87:77:71:6F:7F:70:1E:DE:B5:15:09:FB:FC:00"}}},"request":{"raw":"GET /ssl.gstatic.com/ui/v1/menu/checkmark.png HTTP/1.1\r\nHost: entrar.enquete.gerenciagram.net\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,image/png,image/svg+xml,image/*;q=0.8,*/*;q=0.5\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: https://entrar.enquete.gerenciagram.net/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPriority: u=4, i\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 404 \r\nlast-modified: Fri, 03 Apr 2026 01:49:46 GMT\r\naccept-ranges: bytes\r\nvary: Accept-Encoding\r\ncontent-encoding: gzip\r\ncontent-length: 836\r\ncontent-type: text/html\r\ndate: Fri, 12 Jun 2026 11:14:40 GMT\r\nserver: Apache\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"404","status_text":"","fingerprints":[{"name":"Bootstrap","description":"Bootstrap is a free and open-source CSS framework directed at responsive, mobile-first front-end web development. It contains CSS and JavaScript-based design templates for typography, forms, buttons, navigation, and other interface components.","website":"https://getbootstrap.com","common_platform_enumeration":"cpe:2.3:a:getbootstrap:bootstrap:*:*:*:*:*:*:*:*","icon":"Bootstrap.svg","categories":["UI frameworks"]},{"name":"Apache HTTP Server","description":"Apache is a free and open-source cross-platform web server software.","website":"https://httpd.apache.org/","common_platform_enumeration":"cpe:2.3:a:apache:http_server:*:*:*:*:*:*:*:*","icon":"Apache.svg","categories":["Web servers"]}],"data":{"size":2361,"size_decoded":1085,"mime_type":"text/html","magic":"HTML document, Unicode text, UTF-8 text, with CRLF line terminators","md5":"11a0bbc52834cf74da795d5815b7dc63","sha1":"5d401cf953df570210427a92d27e00ddf403f4b7","sha256":"c989a169a129121f006c8fcbf90ab305d9005d516ce72cc44b4949167eed39d5","sha512":"bdc773e24231dcc13db01881c1977c091f565d1505ab8fb8aaf7f6565ddcbc36b1943126d51e43e701a49c6c024e9d335b50ca546e8058029844255f2796a62c","ssdeep":"","tlshash":"75418d8348c04d4f3231a649ba5b63a9d982a147cf6e9e40b2de631f4ff2da1c573131","first_seen":"2023-04-05T04:00:29Z","last_seen":"2026-06-21T18:11:45.039967Z","times_seen":7338,"resource_available":true,"data":null}},"time_used":199,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":199,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-06-12","alert":"Phishing Block","trigger":"entrar.enquete.gerenciagram.net","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"quad9","sensor_type":"DNS","title":"Quad9 DNS","description":"Quad9 DNS","scan_date":"2026-06-12","alert":"Sinkholed","trigger":"entrar.enquete.gerenciagram.net","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS","link":"https://www.quad9.net","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-12","alert":"Sinkholed","trigger":"entrar.enquete.gerenciagram.net","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-06-12","alert":"Sinkholed","trigger":"entrar.enquete.gerenciagram.net","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"entrar.enquete.gerenciagram.net/favicon.ico","fqdn":"entrar.enquete.gerenciagram.net","domain":"gerenciagram.net","tld":"net"},"ip":{"addr":"108.167.151.39","port":443,"asn":19871,"as":"NETWORK-SOLUTIONS-HOSTING","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://entrar.enquete.gerenciagram.net/","date":"2026-06-12T11:14:40.699Z","timestamp":1781262880699,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"www.login.enquete.gerenciagram.net","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Fri, 24 Apr 2026 06:11:24 GMT","end":"Thu, 23 Jul 2026 06:11:23 GMT"},"fingerprint":{"sha1":"59:F2:E2:18:9D:D1:15:76:64:07:F1:18:6F:B7:E7:C0:1E:1D:F6:BB","sha256":"DF:11:0C:DC:6D:05:9C:2D:46:7C:47:F8:6E:61:33:E5:C7:00:87:77:71:6F:7F:70:1E:DE:B5:15:09:FB:FC:00"}}},"request":{"raw":"GET /favicon.ico HTTP/1.1\r\nHost: entrar.enquete.gerenciagram.net\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,image/png,image/svg+xml,image/*;q=0.8,*/*;q=0.5\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: https://entrar.enquete.gerenciagram.net/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPriority: u=6\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 404 \r\nlast-modified: Fri, 03 Apr 2026 01:49:46 GMT\r\naccept-ranges: bytes\r\nvary: Accept-Encoding\r\ncontent-encoding: gzip\r\ncontent-length: 836\r\ncontent-type: text/html\r\ndate: Fri, 12 Jun 2026 11:14:40 GMT\r\nserver: Apache\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"404","status_text":"","fingerprints":[{"name":"Apache HTTP Server","description":"Apache is a free and open-source cross-platform web server software.","website":"https://httpd.apache.org/","common_platform_enumeration":"cpe:2.3:a:apache:http_server:*:*:*:*:*:*:*:*","icon":"Apache.svg","categories":["Web servers"]},{"name":"Bootstrap","description":"Bootstrap is a free and open-source CSS framework directed at responsive, mobile-first front-end web development. It contains CSS and JavaScript-based design templates for typography, forms, buttons, navigation, and other interface components.","website":"https://getbootstrap.com","common_platform_enumeration":"cpe:2.3:a:getbootstrap:bootstrap:*:*:*:*:*:*:*:*","icon":"Bootstrap.svg","categories":["UI frameworks"]}],"data":{"size":2361,"size_decoded":1085,"mime_type":"text/html","magic":"HTML document, Unicode text, UTF-8 text, with CRLF line terminators","md5":"11a0bbc52834cf74da795d5815b7dc63","sha1":"5d401cf953df570210427a92d27e00ddf403f4b7","sha256":"c989a169a129121f006c8fcbf90ab305d9005d516ce72cc44b4949167eed39d5","sha512":"bdc773e24231dcc13db01881c1977c091f565d1505ab8fb8aaf7f6565ddcbc36b1943126d51e43e701a49c6c024e9d335b50ca546e8058029844255f2796a62c","ssdeep":"","tlshash":"75418d8348c04d4f3231a649ba5b63a9d982a147cf6e9e40b2de631f4ff2da1c573131","first_seen":"2023-04-05T04:00:29Z","last_seen":"2026-06-21T18:11:45.039967Z","times_seen":7338,"resource_available":true,"data":null}},"time_used":199,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":199,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-12","alert":"Sinkholed","trigger":"entrar.enquete.gerenciagram.net","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-06-12","alert":"Phishing Block","trigger":"entrar.enquete.gerenciagram.net","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"quad9","sensor_type":"DNS","title":"Quad9 DNS","description":"Quad9 DNS","scan_date":"2026-06-12","alert":"Sinkholed","trigger":"entrar.enquete.gerenciagram.net","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS","link":"https://www.quad9.net","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-06-12","alert":"Sinkholed","trigger":"entrar.enquete.gerenciagram.net","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"entrar.enquete.gerenciagram.net/Gmail_files/css.html","fqdn":"entrar.enquete.gerenciagram.net","domain":"gerenciagram.net","tld":"net"},"ip":{"addr":"108.167.151.39","port":443,"asn":19871,"as":"NETWORK-SOLUTIONS-HOSTING","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://entrar.enquete.gerenciagram.net/","date":"2026-06-12T11:14:40.280Z","timestamp":1781262880280,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"www.login.enquete.gerenciagram.net","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Fri, 24 Apr 2026 06:11:24 GMT","end":"Thu, 23 Jul 2026 06:11:23 GMT"},"fingerprint":{"sha1":"59:F2:E2:18:9D:D1:15:76:64:07:F1:18:6F:B7:E7:C0:1E:1D:F6:BB","sha256":"DF:11:0C:DC:6D:05:9C:2D:46:7C:47:F8:6E:61:33:E5:C7:00:87:77:71:6F:7F:70:1E:DE:B5:15:09:FB:FC:00"}}},"request":{"raw":"GET /Gmail_files/css.html HTTP/1.1\r\nHost: entrar.enquete.gerenciagram.net\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: https://entrar.enquete.gerenciagram.net/\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPriority: u=2\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 \r\nlast-modified: Wed, 29 Jul 2020 06:55:16 GMT\r\naccept-ranges: bytes\r\nvary: Accept-Encoding\r\ncontent-encoding: gzip\r\ncontent-length: 3401\r\ncontent-type: text/html\r\ndate: Fri, 12 Jun 2026 11:14:40 GMT\r\nserver: Apache\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"Apache HTTP Server","description":"Apache is a free and open-source cross-platform web server software.","website":"https://httpd.apache.org/","common_platform_enumeration":"cpe:2.3:a:apache:http_server:*:*:*:*:*:*:*:*","icon":"Apache.svg","categories":["Web servers"]}],"data":{"size":8765,"size_decoded":3651,"mime_type":"text/html","magic":"HTML document, Unicode text, UTF-8 text, with very long lines (1005)","md5":"e5808f489228a93ce8e88ee3e1137249","sha1":"11aa016329812948165cfc46fa949b90d74e3664","sha256":"a6cbd72b46b2b60991ad4fabfbae06cb8b8277edf02a75aedc63072cb7164bf6","sha512":"2baa49eb90af5a387e80d51f173b3f6daff1e541113abf0a374906395ce39b3fe0453c9bd7d6e7aaf30ba1ee6de3755b22ce09f61af46bb2d4f1d97e8791e324","ssdeep":"96:zxLfKmFrHxtDroMGXRJfYDSbQgwaETeKE7a95x/HNw37pI82:z1xFrHProM2RJrk9vt87pI82","tlshash":"ed02859b21e380070643d0e41bf76f4eb6375d27c94acda17aed0a54ef82a5644b7acc","first_seen":"2023-04-18T06:59:40Z","last_seen":"2026-06-12T11:15:04.704584Z","times_seen":13,"resource_available":false,"data":null}},"time_used":201,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":201,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-06-12","alert":"Sinkholed","trigger":"entrar.enquete.gerenciagram.net","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"quad9","sensor_type":"DNS","title":"Quad9 DNS","description":"Quad9 DNS","scan_date":"2026-06-12","alert":"Sinkholed","trigger":"entrar.enquete.gerenciagram.net","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS","link":"https://www.quad9.net","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-12","alert":"Sinkholed","trigger":"entrar.enquete.gerenciagram.net","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-06-12","alert":"Phishing Block","trigger":"entrar.enquete.gerenciagram.net","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"entrar.enquete.gerenciagram.net/google.png","fqdn":"entrar.enquete.gerenciagram.net","domain":"gerenciagram.net","tld":"net"},"ip":{"addr":"108.167.151.39","port":443,"asn":19871,"as":"NETWORK-SOLUTIONS-HOSTING","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://entrar.enquete.gerenciagram.net/","date":"2026-06-12T11:14:40.285Z","timestamp":1781262880285,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"www.login.enquete.gerenciagram.net","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Fri, 24 Apr 2026 06:11:24 GMT","end":"Thu, 23 Jul 2026 06:11:23 GMT"},"fingerprint":{"sha1":"59:F2:E2:18:9D:D1:15:76:64:07:F1:18:6F:B7:E7:C0:1E:1D:F6:BB","sha256":"DF:11:0C:DC:6D:05:9C:2D:46:7C:47:F8:6E:61:33:E5:C7:00:87:77:71:6F:7F:70:1E:DE:B5:15:09:FB:FC:00"}}},"request":{"raw":"GET /google.png HTTP/1.1\r\nHost: entrar.enquete.gerenciagram.net\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,image/png,image/svg+xml,image/*;q=0.8,*/*;q=0.5\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: https://entrar.enquete.gerenciagram.net/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPriority: u=5, i\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 \r\nlast-modified: Wed, 29 Jul 2020 06:55:16 GMT\r\naccept-ranges: bytes\r\ncontent-length: 13774\r\ncontent-type: image/png\r\ndate: Fri, 12 Jun 2026 11:14:40 GMT\r\nserver: Apache\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"Apache HTTP Server","description":"Apache is a free and open-source cross-platform web server software.","website":"https://httpd.apache.org/","common_platform_enumeration":"cpe:2.3:a:apache:http_server:*:*:*:*:*:*:*:*","icon":"Apache.svg","categories":["Web servers"]}],"data":{"size":13774,"size_decoded":13978,"mime_type":"image/png","magic":"PNG image data, 450 x 172, 8-bit/color RGBA, non-interlaced","md5":"12ce2116411d544583503ad29baaab87","sha1":"732c478cb69e681e371a9e968e3e391a9e39d0cb","sha256":"d035bce456dbb0842f418acdf3f517547d1668d6951ccfa49265adfc31969679","sha512":"f768e96fae5ca17c50e8e1956115c4b3ebf2fc3fe58bbcb995c01ae307a6f65c1f03bbed5697c8a87310d6e608cca0ca351e2e5234e3f698e4117c239c98ed51","ssdeep":"384:01qL4zTHu7/uCmxv174d0+ZavjF1G9oTMKM:0lv7BxePavj7G9oTY","tlshash":"0152b0e459add539ac07b6565b930f322466965cbec350c043cc099e50efc94dbac98f","first_seen":"2023-05-05T03:22:15Z","last_seen":"2026-06-12T11:15:04.706118Z","times_seen":59,"resource_available":false,"data":null}},"time_used":199,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":199,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-06-12","alert":"Sinkholed","trigger":"entrar.enquete.gerenciagram.net","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-06-12","alert":"Phishing Block","trigger":"entrar.enquete.gerenciagram.net","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-12","alert":"Sinkholed","trigger":"entrar.enquete.gerenciagram.net","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"quad9","sensor_type":"DNS","title":"Quad9 DNS","description":"Quad9 DNS","scan_date":"2026-06-12","alert":"Sinkholed","trigger":"entrar.enquete.gerenciagram.net","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS","link":"https://www.quad9.net","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"entrar.enquete.gerenciagram.net/avatar.png","fqdn":"entrar.enquete.gerenciagram.net","domain":"gerenciagram.net","tld":"net"},"ip":{"addr":"108.167.151.39","port":443,"asn":19871,"as":"NETWORK-SOLUTIONS-HOSTING","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://entrar.enquete.gerenciagram.net/","date":"2026-06-12T11:14:40.288Z","timestamp":1781262880288,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"www.login.enquete.gerenciagram.net","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Fri, 24 Apr 2026 06:11:24 GMT","end":"Thu, 23 Jul 2026 06:11:23 GMT"},"fingerprint":{"sha1":"59:F2:E2:18:9D:D1:15:76:64:07:F1:18:6F:B7:E7:C0:1E:1D:F6:BB","sha256":"DF:11:0C:DC:6D:05:9C:2D:46:7C:47:F8:6E:61:33:E5:C7:00:87:77:71:6F:7F:70:1E:DE:B5:15:09:FB:FC:00"}}},"request":{"raw":"GET /avatar.png HTTP/1.1\r\nHost: entrar.enquete.gerenciagram.net\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,image/png,image/svg+xml,image/*;q=0.8,*/*;q=0.5\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: https://entrar.enquete.gerenciagram.net/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPriority: u=5, i\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 \r\nlast-modified: Wed, 29 Jul 2020 06:55:16 GMT\r\naccept-ranges: bytes\r\ncontent-length: 6616\r\ncontent-type: image/png\r\ndate: Fri, 12 Jun 2026 11:14:40 GMT\r\nserver: Apache\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"Apache HTTP Server","description":"Apache is a free and open-source cross-platform web server software.","website":"https://httpd.apache.org/","common_platform_enumeration":"cpe:2.3:a:apache:http_server:*:*:*:*:*:*:*:*","icon":"Apache.svg","categories":["Web servers"]}],"data":{"size":6616,"size_decoded":6819,"mime_type":"image/png","magic":"PNG image data, 173 x 173, 8-bit/color RGBA, interlaced","md5":"4d2a4fb4ae0a5f1d7a5dcba60ce51bd8","sha1":"4290b7b12bd06cf826f62bd8a9c40e301a68aa0e","sha256":"8b644acbfa18779fc0c5d022ec54494c47bc7c5a6dc11a8adc15cf5a86542e4b","sha512":"f1df233125454e3074c513ddeea1c063d5b163e6ba3db4f0a7217cdb72cfd40aade6d1b21c4c0e7cc0778d139e5493487f05a50b93abbc978c98349041481bd8","ssdeep":"192:Xw5g5m1c4pSQ+SNMomZRfbREvtJVd09TSfr1n:XQg5m1pMSN5mZRfb6FJVd+TSfrZ","tlshash":"21d18d4d8f009a519c8cf09930e593a384f35e59b969efb5a14bf12349207d204ae7cb","first_seen":"2023-05-05T03:22:15Z","last_seen":"2026-06-12T11:15:04.707574Z","times_seen":57,"resource_available":false,"data":null}},"time_used":198,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":198,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-06-12","alert":"Sinkholed","trigger":"entrar.enquete.gerenciagram.net","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"quad9","sensor_type":"DNS","title":"Quad9 DNS","description":"Quad9 DNS","scan_date":"2026-06-12","alert":"Sinkholed","trigger":"entrar.enquete.gerenciagram.net","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS","link":"https://www.quad9.net","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-12","alert":"Sinkholed","trigger":"entrar.enquete.gerenciagram.net","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-06-12","alert":"Phishing Block","trigger":"entrar.enquete.gerenciagram.net","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"entrar.enquete.gerenciagram.net/images.png","fqdn":"entrar.enquete.gerenciagram.net","domain":"gerenciagram.net","tld":"net"},"ip":{"addr":"108.167.151.39","port":443,"asn":19871,"as":"NETWORK-SOLUTIONS-HOSTING","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://entrar.enquete.gerenciagram.net/","date":"2026-06-12T11:14:40.291Z","timestamp":1781262880291,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"www.login.enquete.gerenciagram.net","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Fri, 24 Apr 2026 06:11:24 GMT","end":"Thu, 23 Jul 2026 06:11:23 GMT"},"fingerprint":{"sha1":"59:F2:E2:18:9D:D1:15:76:64:07:F1:18:6F:B7:E7:C0:1E:1D:F6:BB","sha256":"DF:11:0C:DC:6D:05:9C:2D:46:7C:47:F8:6E:61:33:E5:C7:00:87:77:71:6F:7F:70:1E:DE:B5:15:09:FB:FC:00"}}},"request":{"raw":"GET /images.png HTTP/1.1\r\nHost: entrar.enquete.gerenciagram.net\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,image/png,image/svg+xml,image/*;q=0.8,*/*;q=0.5\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: https://entrar.enquete.gerenciagram.net/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPriority: u=5, i\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 \r\nlast-modified: Wed, 29 Jul 2020 06:55:16 GMT\r\naccept-ranges: bytes\r\ncontent-length: 179\r\ncontent-type: image/png\r\ndate: Fri, 12 Jun 2026 11:14:40 GMT\r\nserver: Apache\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"Apache HTTP Server","description":"Apache is a free and open-source cross-platform web server software.","website":"https://httpd.apache.org/","common_platform_enumeration":"cpe:2.3:a:apache:http_server:*:*:*:*:*:*:*:*","icon":"Apache.svg","categories":["Web servers"]}],"data":{"size":179,"size_decoded":381,"mime_type":"image/png","magic":"PNG image data, 21 x 21, 8-bit colormap, non-interlaced","md5":"e40c7636b8e7c34fee58670e46b864e2","sha1":"c037ccea2fd5086476767cb013170afa7b946b3f","sha256":"1a4af55492527f43db57a32c34b2c741911054498f3b3a35bb6802c7deee6878","sha512":"ac90d6d8d67fce2144f97654eeb5d2738ba2efcf8e1dd61128b641f4581e768584f10022d4036aeed934bbab58aca1bbada786249ef5fd2de2c1bd76d3dea05a","ssdeep":"","tlshash":"8ac0c0b053f1f830dd8a65330332808e948080005413d60b501bfb3534c200b70ec003","first_seen":"2023-05-05T03:22:15Z","last_seen":"2026-06-12T11:15:04.708436Z","times_seen":41,"resource_available":false,"data":null}},"time_used":387,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":387,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-12","alert":"Sinkholed","trigger":"entrar.enquete.gerenciagram.net","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-06-12","alert":"Phishing Block","trigger":"entrar.enquete.gerenciagram.net","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"quad9","sensor_type":"DNS","title":"Quad9 DNS","description":"Quad9 DNS","scan_date":"2026-06-12","alert":"Sinkholed","trigger":"entrar.enquete.gerenciagram.net","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS","link":"https://www.quad9.net","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-06-12","alert":"Sinkholed","trigger":"entrar.enquete.gerenciagram.net","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"entrar.enquete.gerenciagram.net/raw.githubusercontent.com/000webhost/logo/e9bd13f7/footer-powered-by-000webhost-white2.png","fqdn":"entrar.enquete.gerenciagram.net","domain":"gerenciagram.net","tld":"net"},"ip":{"addr":"108.167.151.39","port":443,"asn":19871,"as":"NETWORK-SOLUTIONS-HOSTING","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://entrar.enquete.gerenciagram.net/","date":"2026-06-12T11:14:40.292Z","timestamp":1781262880292,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"www.login.enquete.gerenciagram.net","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Fri, 24 Apr 2026 06:11:24 GMT","end":"Thu, 23 Jul 2026 06:11:23 GMT"},"fingerprint":{"sha1":"59:F2:E2:18:9D:D1:15:76:64:07:F1:18:6F:B7:E7:C0:1E:1D:F6:BB","sha256":"DF:11:0C:DC:6D:05:9C:2D:46:7C:47:F8:6E:61:33:E5:C7:00:87:77:71:6F:7F:70:1E:DE:B5:15:09:FB:FC:00"}}},"request":{"raw":"GET /raw.githubusercontent.com/000webhost/logo/e9bd13f7/footer-powered-by-000webhost-white2.png HTTP/1.1\r\nHost: entrar.enquete.gerenciagram.net\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,image/png,image/svg+xml,image/*;q=0.8,*/*;q=0.5\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: https://entrar.enquete.gerenciagram.net/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPriority: u=5, i\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 404 \r\nlast-modified: Fri, 03 Apr 2026 01:49:46 GMT\r\naccept-ranges: bytes\r\nvary: Accept-Encoding\r\ncontent-encoding: gzip\r\ncontent-length: 836\r\ncontent-type: text/html\r\ndate: Fri, 12 Jun 2026 11:14:40 GMT\r\nserver: Apache\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"404","status_text":"","fingerprints":[{"name":"Bootstrap","description":"Bootstrap is a free and open-source CSS framework directed at responsive, mobile-first front-end web development. It contains CSS and JavaScript-based design templates for typography, forms, buttons, navigation, and other interface components.","website":"https://getbootstrap.com","common_platform_enumeration":"cpe:2.3:a:getbootstrap:bootstrap:*:*:*:*:*:*:*:*","icon":"Bootstrap.svg","categories":["UI frameworks"]},{"name":"Apache HTTP Server","description":"Apache is a free and open-source cross-platform web server software.","website":"https://httpd.apache.org/","common_platform_enumeration":"cpe:2.3:a:apache:http_server:*:*:*:*:*:*:*:*","icon":"Apache.svg","categories":["Web servers"]}],"data":{"size":2361,"size_decoded":1085,"mime_type":"text/html","magic":"HTML document, Unicode text, UTF-8 text, with CRLF line terminators","md5":"11a0bbc52834cf74da795d5815b7dc63","sha1":"5d401cf953df570210427a92d27e00ddf403f4b7","sha256":"c989a169a129121f006c8fcbf90ab305d9005d516ce72cc44b4949167eed39d5","sha512":"bdc773e24231dcc13db01881c1977c091f565d1505ab8fb8aaf7f6565ddcbc36b1943126d51e43e701a49c6c024e9d335b50ca546e8058029844255f2796a62c","ssdeep":"","tlshash":"75418d8348c04d4f3231a649ba5b63a9d982a147cf6e9e40b2de631f4ff2da1c573131","first_seen":"2023-04-05T04:00:29Z","last_seen":"2026-06-21T18:11:45.039967Z","times_seen":7338,"resource_available":true,"data":null}},"time_used":386,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":386,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-12","alert":"Sinkholed","trigger":"entrar.enquete.gerenciagram.net","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-06-12","alert":"Sinkholed","trigger":"entrar.enquete.gerenciagram.net","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-06-12","alert":"Phishing Block","trigger":"entrar.enquete.gerenciagram.net","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"quad9","sensor_type":"DNS","title":"Quad9 DNS","description":"Quad9 DNS","scan_date":"2026-06-12","alert":"Sinkholed","trigger":"entrar.enquete.gerenciagram.net","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS","link":"https://www.quad9.net","meta":null}],"urlquery":null}}]}