Report - cetiradentes.com.br/yghhtele/

Report Overview

Submitted URL
cetiradentes.com.br/yghhtele/
IP
216.172.172.44
ASN
#46606 UNIFIEDLAYER-AS-1
Submitted
2022-09-28 10:44:03
Access
Website Title
Final URL
Tags
None
urlquery detections
No alerts detected

Detections

urlquery
0
Network Intrusion Detection
0
Threat Detection Systems
32

Domain Summary

Domain / FQDN	Rank	First Seen	Last Seen	Sent	Received	IP
r3.o.lencr.org	344	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	652 B	1.8 kB	23.36.77.32
contile.services.mozilla.com	1114	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	321 B	229 B	34.117.237.239
push.services.mozilla.com	2140	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	594 B	127 B	52.89.17.198
firefox.settings.services.mozilla.com	867	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	758 B	2.7 kB	143.204.55.36
content-signature-2.cdn.mozilla.net	1152	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	401 B	5.8 kB	143.204.55.25
cetiradentes.com.br	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	7.8 kB	637 kB	216.172.172.44
ocsp.digicert.com	86	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	329 B	737 B	93.184.220.29
www.gstatic.com	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	328 B	2.5 kB	142.250.74.163
img-getpocket.cdn.mozilla.net	1631	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	3.2 kB	63 kB	34.120.237.76

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

OpenPhish

Scan Date	Severity	Indicator	Alert
2022-09-27	medium	cetiradentes.com.br/yghhtele/	Deutsche Telekom

PhishTank

No alerts detected

Fortinet's Web Filter

Scan Date	Severity	Indicator	Alert
2022-09-28	medium	cetiradentes.com.br/yghhtele/	Phishing
2022-09-28	medium	cetiradentes.com.br/yghhtele/css/login.js.download	Phishing
2022-09-28	medium	cetiradentes.com.br/yghhtele/css/components.min.js.download	Phishing
2022-09-28	medium	cetiradentes.com.br/yghhtele/css/jquery-3.2.1.min.js.download	Phishing
2022-09-28	medium	cetiradentes.com.br/yghhtele/fonts/telegroteskscreen-regular.woff	Phishing
2022-09-28	medium	cetiradentes.com.br/yghhtele/fonts/telekomicon-outline.woff	Phishing
2022-09-28	medium	cetiradentes.com.br/yghhtele/fonts/telegroteskscreen-bold.woff	Phishing
2022-09-28	medium	cetiradentes.com.br/yghhtele/fonts/telegroteskscreen-thin.woff	Phishing
2022-09-28	medium	cetiradentes.com.br/yghhtele/fonts/telekomicon-ui.woff	Phishing
2022-09-28	medium	cetiradentes.com.br/yghhtele/images/data_protection.svg	Phishing
2022-09-28	medium	cetiradentes.com.br/yghhtele/fonts/telekomicon-outline.ttf	Phishing
2022-09-28	medium	cetiradentes.com.br/yghhtele/fonts/telegroteskscreen-regular.ttf	Phishing
2022-09-28	medium	cetiradentes.com.br/yghhtele/fonts/telegroteskscreen-thin.ttf	Phishing
2022-09-28	medium	cetiradentes.com.br/yghhtele/fonts/telegroteskscreen-bold.ttf	Phishing
2022-09-28	medium	cetiradentes.com.br/yghhtele/fonts/telekomicon-ui.ttf	Phishing

mnemonic secure dns

No alerts detected

Quad9 DNS

No alerts detected

JavaScript (5)

	URL	Size	First Seen	Last Seen
	cetiradentes.com.br/yghhtele/css/login.js.download	9.6 kB	2023-03-07	2024-04-07
Pretty URL cetiradentes.com.br/yghhtele/css/login.js.download IP 216.172.172.44 ASN #46606 UNIFIEDLAYER-AS-1 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:12:00 Last Seen2024-04-07 06:50:10 Times Seen38 Hash 1142da57ed433b58a13e9fad58c5a349 019030f7cc8d2b5eb39da4834db3b5c1717c8c90 7e3a7788472182c326dfa1382ab0e99c7c5fb50e8e4151d187c2cb13e24bb821 Loading...

	cetiradentes.com.br/yghhtele/	123 B	2023-03-07	2023-10-03
Pretty URL cetiradentes.com.br/yghhtele/ IP 216.172.172.44 ASN #46606 UNIFIEDLAYER-AS-1 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:12:00 Last Seen2023-10-03 01:29:39 Times Seen7 Hash d712bd629c6e34f408ab9fbe67555916 541f1736838e0ae35a42612e88de67c43567f8e9 492604abd0baf479293928c70653c12e9e43daae08b491d2400bd62021da4894 Loading...

	cetiradentes.com.br/yghhtele/css/components.min.js.download	68 kB	2023-03-07	2024-03-02
Pretty URL cetiradentes.com.br/yghhtele/css/components.min.js.download IP 216.172.172.44 ASN #46606 UNIFIEDLAYER-AS-1 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:12:00 Last Seen2024-03-02 06:35:16 Times Seen34 Hash efb6c6b1ec8ecf9d048753ff30423bee 54306fe1f6355debcaad1e027cf55e6faf7c371c e5a1bef74748388cadf99777549feff118627b888816a6f57fc0fb36e3cad57f Loading...

	cetiradentes.com.br/yghhtele/css/jquery-3.2.1.min.js.download	87 kB	2023-03-07	2024-04-23
Pretty URL cetiradentes.com.br/yghhtele/css/jquery-3.2.1.min.js.download IP 216.172.172.44 ASN #46606 UNIFIEDLAYER-AS-1 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:00 Last Seen2024-04-23 17:37:37 Times Seen61651 Hash c9f5aeeca3ad37bf2aa006139b935f0a 1055018c28ab41087ef9ccefe411606893dabea2 87083882cc6015984eb0411a99d3981817f5dc5c90ba24f0940420c5548d82de Loading...

	cetiradentes.com.br/yghhtele/	222 B	2023-03-07	2023-10-03
Pretty URL cetiradentes.com.br/yghhtele/ IP 216.172.172.44 ASN #46606 UNIFIEDLAYER-AS-1 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:12:00 Last Seen2023-10-03 01:29:39 Times Seen9 Hash 1299ace461b7ea6dcb892b60c3072b89 d2b05d350bdaa0fe9b3bdac11a7c372952ccd674 01d0c0a93ebb0b146561f52bf74d67b2538edc2702a1053588f34ca6c90f7af4 Loading...

HTTP Transactions (36)

URL IP Response Size

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
7fb7c70f7f4e2cee27eb0e7d875931f7
98fca3817a551b1daecebae103a48e718b8b5a53
2a40f957a6b1734aa3f87cff51b673f0536732db15b09033dd604879692df349

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "2A40F957A6B1734AA3F87CFF51B673F0536732DB15B09033DD604879692DF349"
Last-Modified: Tue, 27 Sep 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6337
Expires: Wed, 28 Sep 2022 12:29:29 GMT
Date: Wed, 28 Sep 2022 10:43:52 GMT
Connection: keep-alive

firefox.settings.services.mozilla.com/v1/

143.204.55.36

200 OK

939 B

URL HTTP/1.1
firefox.settings.services.mozilla.com/v1/
IP
143.204.55.36:0
ASN
#16509 AMAZON-02

File type
JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Size
939 B (939 bytes)
Hash
2d12f67fe57a87e7366b662d153a5582
d7b02d81cc74f24a251d9363e0f4b0a149264ec1
73c273c0b5a2de3cb970b8e8c187999d3b55e760dc7766dab4bb76428d19b551

HTTP Headers

GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 939
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Content-Type, Alert, Backoff, Retry-After, Content-Length
Cache-Control: max-age=3600
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Date: Wed, 28 Sep 2022 10:17:40 GMT
X-Content-Type-Options: nosniff
X-Cache: Hit from cloudfront
Via: 1.1 a6d89f7e2d55548b941f1ff5d5b3c8d4.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: 5x-9aalGs9eonT54ty_aXktTM2BGfbhyhiQl--5LNYdsDTbQUDgM5w==
Age: 1572

content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-30-18-47-44.chain

143.204.55.25

200 OK

5.3 kB

URL HTTP/2
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-30-18-47-44.chain
IP
143.204.55.25:0
ASN
#16509 AMAZON-02

File type
PEM certificate\012- , ASCII text
Size
5.3 kB (5348 bytes)
Hash
6113f8408c59aebe188d6af273b90743
7398873bf00f99944eaa77ad3ebc0d43c23dba6b
b6e0cc9ad68306208a160f3835fb8da76acc5a82d8fde1da5a98e1de1c11a770

HTTP Headers

GET /chains/remote-settings.content-signature.mozilla.org-2022-10-30-18-47-44.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: binary/octet-stream
content-length: 5348
last-modified: Sat, 10 Sep 2022 18:47:45 GMT
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
date: Wed, 28 Sep 2022 09:24:14 GMT
etag: "6113f8408c59aebe188d6af273b90743"
x-cache: Hit from cloudfront
via: 1.1 095562e8748e634f880ee3c4ada2b6d0.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: 3kDrAScnvyAwyxQLGVZFSB4DjP0fU8-yEAozhGhZTDoydWwLsJbEdA==
age: 18926
X-Firefox-Spdy: h2

contile.services.mozilla.com/v1/tiles

34.117.237.239

200 OK

12 B

URL HTTP/2
contile.services.mozilla.com/v1/tiles
IP
34.117.237.239:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with no line terminators
Size
12 B (12 bytes)
Hash
23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3

HTTP Headers

GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
date: Wed, 28 Sep 2022 10:43:52 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2

cetiradentes.com.br/yghhtele/

216.172.172.44

200 OK

3.4 kB

URL HTTP/1.1
cetiradentes.com.br/yghhtele/
IP
216.172.172.44:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (801), with CRLF line terminators
Size
3.4 kB (3359 bytes)
Hash
61c4e74d3b482c21cb36d32f7472dce1
fdd3af089e281cd5a042eda82f0197293f2d49d4
4a55460e5ba98b782d51bcffa7b5a16d1846dfbc51e4ea894bc690e788689874

Detections

Analyzer	Verdict	Alert
openphish	Deutsche Telekom
fortinet	Phishing

HTTP Headers

GET /yghhtele/ HTTP/1.1
Host: cetiradentes.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1

HTTP/1.1 200 OK
Date: Wed, 28 Sep 2022 10:43:52 GMT
Server: Apache
Upgrade: h2,h2c
Connection: Upgrade, Keep-Alive
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 3359
Keep-Alive: timeout=5, max=75
Content-Type: text/html; charset=UTF-8

cetiradentes.com.br/yghhtele/css/login.css

216.172.172.44

200 OK

3.0 kB

URL HTTP/1.1
cetiradentes.com.br/yghhtele/css/login.css
IP
216.172.172.44:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
ASCII text
Size
3.0 kB (2992 bytes)
Hash
06cf8e567e9d1bd51e5ae91b6d91d072
c922e8ec27704e53c8434d048b587f903635142d
e285c770ee9157c81eb5ff905cd24880229e0692d7afbf7d41022f0cf781d0c7

HTTP Headers

GET /yghhtele/css/login.css HTTP/1.1
Host: cetiradentes.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://cetiradentes.com.br/yghhtele/

HTTP/1.1 200 OK
Date: Wed, 28 Sep 2022 10:43:53 GMT
Server: Apache
Last-Modified: Wed, 25 Apr 2018 06:49:50 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 2992
Keep-Alive: timeout=5, max=74
Connection: Keep-Alive
Content-Type: text/css

firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US

143.204.55.36

200 OK

329 B

URL HTTP/1.1
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP
143.204.55.36:0
ASN
#16509 AMAZON-02

File type
JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Size
329 B (329 bytes)
Hash
0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300

HTTP Headers

GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 329
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: ETag, Expires, Content-Length, Cache-Control, Pragma, Content-Type, Alert, Backoff, Last-Modified, Retry-After
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Last-Modified: Fri, 25 Mar 2022 17:45:46 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
Date: Wed, 28 Sep 2022 10:29:33 GMT
Cache-Control: max-age=3600, max-age=3600
Expires: Wed, 28 Sep 2022 11:23:32 GMT
ETag: "1648230346554"
X-Cache: Hit from cloudfront
Via: 1.1 71c98156ae29b36a903974f9dd2568f8.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: h_bOv12QVbpFwUSHLNuFO4pL1X-OOiUhGQO2WEJb3kX1gnAS1hD2IQ==
Age: 860

cetiradentes.com.br/yghhtele/css/login.js.download

216.172.172.44

200 OK

2.8 kB

URL HTTP/1.1
cetiradentes.com.br/yghhtele/css/login.js.download
IP
216.172.172.44:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
ASCII text, with CRLF line terminators
Size
2.8 kB (2814 bytes)
Hash
245e0d92a509e47fe1fe13c0546049bb
25ed0f800798788f55b4148a315338620b827ec7
0782827ef9a53046a5d275e0b4451def2d6e2bdd24175aca3bd84d029791c907

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /yghhtele/css/login.js.download HTTP/1.1
Host: cetiradentes.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://cetiradentes.com.br/yghhtele/

HTTP/1.1 200 OK
Date: Wed, 28 Sep 2022 10:43:53 GMT
Server: Apache
Upgrade: h2,h2c
Connection: Upgrade, Keep-Alive
Last-Modified: Wed, 25 Apr 2018 06:49:52 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 2814
Keep-Alive: timeout=5, max=75
Content-Type: application/javascript

cetiradentes.com.br/yghhtele/css/components.min.css

216.172.172.44

200 OK

22 kB

URL HTTP/1.1
cetiradentes.com.br/yghhtele/css/components.min.css
IP
216.172.172.44:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
ASCII text, with very long lines (65506)
Size
22 kB (22318 bytes)
Hash
167436d331ca3af22cc40973926d70b1
4b3be7707de088f31fb65955c0490c840e71e8f5
113dcf3fa6d153bda0b6e25e12c541cc993931705eb0baccfa83430497739a8b

HTTP Headers

GET /yghhtele/css/components.min.css HTTP/1.1
Host: cetiradentes.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://cetiradentes.com.br/yghhtele/

HTTP/1.1 200 OK
Date: Wed, 28 Sep 2022 10:43:53 GMT
Server: Apache
Upgrade: h2,h2c
Connection: Upgrade, Keep-Alive
Last-Modified: Wed, 25 Apr 2018 06:49:50 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Keep-Alive: timeout=5, max=75
Transfer-Encoding: chunked
Content-Type: text/css

cetiradentes.com.br/yghhtele/css/translateelement.css

216.172.172.44

200 OK

4.8 kB

URL HTTP/1.1
cetiradentes.com.br/yghhtele/css/translateelement.css
IP
216.172.172.44:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
ASCII text, with very long lines (18670)
Size
4.8 kB (4812 bytes)
Hash
a70b9376ce44075b0f7456f1fc324404
19bce3105db82f423cbc21819e9fdc0c9611aec3
e663fcb10dcd87e0b0c42a98c072e74f3755f5ef4fe0a00c8cc6559662d33f53

HTTP Headers

GET /yghhtele/css/translateelement.css HTTP/1.1
Host: cetiradentes.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://cetiradentes.com.br/yghhtele/

HTTP/1.1 200 OK
Date: Wed, 28 Sep 2022 10:43:53 GMT
Server: Apache
Upgrade: h2,h2c
Connection: Upgrade, Keep-Alive
Last-Modified: Wed, 25 Apr 2018 06:49:52 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 4812
Keep-Alive: timeout=5, max=75
Content-Type: text/css

cetiradentes.com.br/yghhtele/css/components.min.js.download

216.172.172.44

200 OK

28 kB

URL HTTP/1.1
cetiradentes.com.br/yghhtele/css/components.min.js.download
IP
216.172.172.44:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
ASCII text, with very long lines (32018)
Size
28 kB (27483 bytes)
Hash
c92d71101dd56dc34cbc2b5270b26b82
d32bd4c2ccf69ea57251aa79a4cade45b6c89924
78c233da2118ad01cb0f66599661e2705228619b6e3d3998a7e1c93b0dad8209

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /yghhtele/css/components.min.js.download HTTP/1.1
Host: cetiradentes.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://cetiradentes.com.br/yghhtele/

HTTP/1.1 200 OK
Date: Wed, 28 Sep 2022 10:43:53 GMT
Server: Apache
Upgrade: h2,h2c
Connection: Upgrade, Keep-Alive
Last-Modified: Wed, 25 Apr 2018 06:49:50 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Keep-Alive: timeout=5, max=75
Transfer-Encoding: chunked
Content-Type: application/javascript

cetiradentes.com.br/yghhtele/css/jquery-3.2.1.min.js.download

216.172.172.44

200 OK

38 kB

URL HTTP/1.1
cetiradentes.com.br/yghhtele/css/jquery-3.2.1.min.js.download
IP
216.172.172.44:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
ASCII text, with very long lines (32058)
Size
38 kB (38018 bytes)
Hash
158ed1f63711a0812b7c2b396cbaa6e7
1a6fe374f9c4963adc88db33dd128d324fceb9f2
811e8097bc41bb848b417ed7626ec9f8f8d8b682c664f8f2890ed4b57371e60b

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /yghhtele/css/jquery-3.2.1.min.js.download HTTP/1.1
Host: cetiradentes.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://cetiradentes.com.br/yghhtele/

HTTP/1.1 200 OK
Date: Wed, 28 Sep 2022 10:43:53 GMT
Server: Apache
Upgrade: h2,h2c
Connection: Upgrade, Keep-Alive
Last-Modified: Wed, 25 Apr 2018 06:49:50 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Keep-Alive: timeout=5, max=75
Transfer-Encoding: chunked
Content-Type: application/javascript

ocsp.digicert.com/

93.184.220.29

200 OK

471 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
471 B (471 bytes)
Hash
3526d5ce1381ba26cbc553db057e1915
fe01c920696448e8bf12e6fff877bce8281d34a2
09604aed7cbca7971bfcb5afcb53591600b944f28eff21aa65dc601e78cdda53

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3653
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Wed, 28 Sep 2022 10:43:53 GMT
Last-Modified: Wed, 28 Sep 2022 09:43:00 GMT
Server: ECS (ska/F706)
X-Cache: HIT
Content-Length: 471

cetiradentes.com.br/yghhtele/css/services.png

216.172.172.44

200 OK

23 kB

URL HTTP/1.1
cetiradentes.com.br/yghhtele/css/services.png
IP
216.172.172.44:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
PNG image data, 270 x 48, 8-bit/color RGBA, non-interlaced\012- data
Size
23 kB (22647 bytes)
Hash
70e3abc323721940a3fde12ec5a337cb
cd37490fee37309e370e0a4d73a29eac2b49d007
14977cb7057352ad7715b93dec52f4993fc16980836d03b64f79566e8c9bec22

HTTP Headers

GET /yghhtele/css/services.png HTTP/1.1
Host: cetiradentes.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://cetiradentes.com.br/yghhtele/

HTTP/1.1 200 OK
Date: Wed, 28 Sep 2022 10:43:53 GMT
Server: Apache
Last-Modified: Wed, 25 Apr 2018 06:49:52 GMT
Accept-Ranges: bytes
Content-Length: 22647
Keep-Alive: timeout=5, max=74
Connection: Keep-Alive
Content-Type: image/png

cetiradentes.com.br/yghhtele/css/translate_24dp.png

216.172.172.44

200 OK

825 B

URL HTTP/1.1
cetiradentes.com.br/yghhtele/css/translate_24dp.png
IP
216.172.172.44:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
PNG image data, 24 x 24, 8-bit/color RGBA, non-interlaced\012- data
Size
825 B (825 bytes)
Hash
55ff382a8b09329e3230a1797eb8f5fd
026ae089006a674da7dcc9bf6b986c5d59e75478
1bb2279aed6bc1438d2b17a5ffcbac9d37864582aedeeec8d301eab162b2c213

HTTP Headers

GET /yghhtele/css/translate_24dp.png HTTP/1.1
Host: cetiradentes.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://cetiradentes.com.br/yghhtele/

HTTP/1.1 200 OK
Date: Wed, 28 Sep 2022 10:43:53 GMT
Server: Apache
Last-Modified: Wed, 25 Apr 2018 06:49:52 GMT
Accept-Ranges: bytes
Content-Length: 825
Keep-Alive: timeout=5, max=74
Connection: Keep-Alive
Content-Type: image/png

push.services.mozilla.com/

52.89.17.198

101 Switching Protocols

0 B

URL HTTP/1.1
push.services.mozilla.com/
IP
52.89.17.198:0
ASN
#16509 AMAZON-02

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: oqoxPDAGSd4FWOB3LeEdfA==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket

HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: IIEw3FvKjR68aozQ3kaZRM7ubXQ=

cetiradentes.com.br/yghhtele/fonts/telegroteskscreen-regular.woff

216.172.172.44

404 Not Found

77 kB

URL HTTP/1.1
cetiradentes.com.br/yghhtele/fonts/telegroteskscreen-regular.woff
IP
216.172.172.44:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (26344)
Size
77 kB (76634 bytes)
Hash
496375ace5451c536d0c1e9afe64e062
161eb6d6f54b1866ac175791b889bfa6f8e6f6dd
0e3528e17465706edbfa6677a6357a2d47f2b12499a39541354da7413f46773b

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /yghhtele/fonts/telegroteskscreen-regular.woff HTTP/1.1
Host: cetiradentes.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: http://cetiradentes.com.br/yghhtele/css/components.min.css

HTTP/1.1 404 Not Found
Date: Wed, 28 Sep 2022 10:43:53 GMT
Server: Apache
Expires: Wed, 11 Jan 1984 05:00:00 GMT
Cache-Control: no-cache, must-revalidate, max-age=0
Link: <https://cetiradentes.com.br/wp-json/>; rel="https://api.w.org/"
Set-Cookie: swpm_session=e8852e4dcb8ce6d52b81ae1624f38633; path=/
Vary: Accept-Encoding
Keep-Alive: timeout=5, max=74
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: text/html; charset=UTF-8

cetiradentes.com.br/yghhtele/fonts/telekomicon-outline.woff

216.172.172.44

404 Not Found

77 kB

URL HTTP/1.1
cetiradentes.com.br/yghhtele/fonts/telekomicon-outline.woff
IP
216.172.172.44:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (26344)
Size
77 kB (76634 bytes)
Hash
496375ace5451c536d0c1e9afe64e062
161eb6d6f54b1866ac175791b889bfa6f8e6f6dd
0e3528e17465706edbfa6677a6357a2d47f2b12499a39541354da7413f46773b

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /yghhtele/fonts/telekomicon-outline.woff HTTP/1.1
Host: cetiradentes.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: http://cetiradentes.com.br/yghhtele/css/components.min.css

HTTP/1.1 404 Not Found
Date: Wed, 28 Sep 2022 10:43:53 GMT
Server: Apache
Expires: Wed, 11 Jan 1984 05:00:00 GMT
Cache-Control: no-cache, must-revalidate, max-age=0
Link: <https://cetiradentes.com.br/wp-json/>; rel="https://api.w.org/"
Set-Cookie: swpm_session=d93ed1b09b91a3482c16ec631a174bec; path=/
Vary: Accept-Encoding
Keep-Alive: timeout=5, max=74
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: text/html; charset=UTF-8

cetiradentes.com.br/yghhtele/fonts/telegroteskscreen-bold.woff

216.172.172.44

404 Not Found

77 kB

URL HTTP/1.1
cetiradentes.com.br/yghhtele/fonts/telegroteskscreen-bold.woff
IP
216.172.172.44:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (26344)
Size
77 kB (76634 bytes)
Hash
496375ace5451c536d0c1e9afe64e062
161eb6d6f54b1866ac175791b889bfa6f8e6f6dd
0e3528e17465706edbfa6677a6357a2d47f2b12499a39541354da7413f46773b

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /yghhtele/fonts/telegroteskscreen-bold.woff HTTP/1.1
Host: cetiradentes.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: http://cetiradentes.com.br/yghhtele/css/components.min.css

HTTP/1.1 404 Not Found
Date: Wed, 28 Sep 2022 10:43:53 GMT
Server: Apache
Expires: Wed, 11 Jan 1984 05:00:00 GMT
Cache-Control: no-cache, must-revalidate, max-age=0
Link: <https://cetiradentes.com.br/wp-json/>; rel="https://api.w.org/"
Set-Cookie: swpm_session=16c0a3d645c1fcf321df3ad399fc421e; path=/
Vary: Accept-Encoding
Keep-Alive: timeout=5, max=73
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: text/html; charset=UTF-8

cetiradentes.com.br/yghhtele/fonts/telegroteskscreen-thin.woff

216.172.172.44

404 Not Found

77 kB

URL HTTP/1.1
cetiradentes.com.br/yghhtele/fonts/telegroteskscreen-thin.woff
IP
216.172.172.44:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (26344)
Size
77 kB (76634 bytes)
Hash
496375ace5451c536d0c1e9afe64e062
161eb6d6f54b1866ac175791b889bfa6f8e6f6dd
0e3528e17465706edbfa6677a6357a2d47f2b12499a39541354da7413f46773b

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /yghhtele/fonts/telegroteskscreen-thin.woff HTTP/1.1
Host: cetiradentes.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: http://cetiradentes.com.br/yghhtele/css/components.min.css

HTTP/1.1 404 Not Found
Date: Wed, 28 Sep 2022 10:43:53 GMT
Server: Apache
Expires: Wed, 11 Jan 1984 05:00:00 GMT
Cache-Control: no-cache, must-revalidate, max-age=0
Link: <https://cetiradentes.com.br/wp-json/>; rel="https://api.w.org/"
Set-Cookie: swpm_session=b51c3cbb23569014a2d9fefd895b1e3c; path=/
Vary: Accept-Encoding
Keep-Alive: timeout=5, max=73
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: text/html; charset=UTF-8

cetiradentes.com.br/yghhtele/fonts/telekomicon-ui.woff

216.172.172.44

404 Not Found

77 kB

URL HTTP/1.1
cetiradentes.com.br/yghhtele/fonts/telekomicon-ui.woff
IP
216.172.172.44:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (26344)
Size
77 kB (76634 bytes)
Hash
496375ace5451c536d0c1e9afe64e062
161eb6d6f54b1866ac175791b889bfa6f8e6f6dd
0e3528e17465706edbfa6677a6357a2d47f2b12499a39541354da7413f46773b

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /yghhtele/fonts/telekomicon-ui.woff HTTP/1.1
Host: cetiradentes.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: http://cetiradentes.com.br/yghhtele/css/components.min.css

HTTP/1.1 404 Not Found
Date: Wed, 28 Sep 2022 10:43:53 GMT
Server: Apache
Expires: Wed, 11 Jan 1984 05:00:00 GMT
Cache-Control: no-cache, must-revalidate, max-age=0
Link: <https://cetiradentes.com.br/wp-json/>; rel="https://api.w.org/"
Set-Cookie: swpm_session=7da8a3da06e46c26edf46a3fa3fad7be; path=/
Vary: Accept-Encoding
Keep-Alive: timeout=5, max=73
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: text/html; charset=UTF-8

www.gstatic.com/images/branding/product/2x/translate_24dp.png

142.250.74.163

200 OK

1.8 kB

URL HTTP/1.1
www.gstatic.com/images/branding/product/2x/translate_24dp.png
IP
142.250.74.163:0
ASN
#15169 GOOGLE

File type
PNG image data, 48 x 48, 8-bit/color RGBA, non-interlaced\012- data
Size
1.8 kB (1842 bytes)
Hash
c69c796362406f9e11c7f4bf5bb628da
e489ce95ab56208090868882113d7416abf46775
4dac0026fbfa2615dce30c0af12830863fe885f84387a0147b9e338f548d5d82

HTTP Headers

GET /images/branding/product/2x/translate_24dp.png HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://cetiradentes.com.br/

HTTP/1.1 200 OK
Accept-Ranges: bytes
Vary: Origin
Cross-Origin-Resource-Policy: cross-origin
Cross-Origin-Opener-Policy-Report-Only: same-origin; report-to="static-on-bigtable"
Report-To: {"group":"static-on-bigtable","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/static-on-bigtable"}]}
Content-Length: 1842
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 0
Date: Fri, 23 Sep 2022 01:28:26 GMT
Expires: Sat, 23 Sep 2023 01:28:26 GMT
Cache-Control: public, max-age=31536000
Age: 465328
Last-Modified: Thu, 14 Oct 2021 09:08:00 GMT
Content-Type: image/png

cetiradentes.com.br/yghhtele/images/data_protection.svg

216.172.172.44

404 Not Found

17 kB

URL HTTP/1.1
cetiradentes.com.br/yghhtele/images/data_protection.svg
IP
216.172.172.44:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
data
Size
17 kB (16705 bytes)
Hash
fff54830e3ace69a3b53b648cbf31331
c82ca2cb07b5050478d35a27f838e8633a682288
ec39b2b84227adb4d8747846ce5b9c09ee4d2d5752fb1771325e9def32a13f5f

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /yghhtele/images/data_protection.svg HTTP/1.1
Host: cetiradentes.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://cetiradentes.com.br/yghhtele/css/login.css

HTTP/1.1 404 Not Found
Date: Wed, 28 Sep 2022 10:43:53 GMT
Server: Apache
Expires: Wed, 11 Jan 1984 05:00:00 GMT
Cache-Control: no-cache, must-revalidate, max-age=0
Link: <https://cetiradentes.com.br/wp-json/>; rel="https://api.w.org/"
Set-Cookie: swpm_session=7d606345d45bb6033c600701f10c7724; path=/
Vary: Accept-Encoding
Content-Encoding: gzip
Keep-Alive: timeout=5, max=74
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: text/html; charset=UTF-8

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
139d64e28724086d1d5ab6d2f534ff25
2c717905e83564a17bd8ca61dd934133416f629b
a37afafc8ee712ae7ae935d3ed564f3cf46dd09005debbc5e2650f8b434d1e00

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "A37AFAFC8EE712AE7AE935D3ED564F3CF46DD09005DEBBC5E2650F8B434D1E00"
Last-Modified: Tue, 27 Sep 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3615
Expires: Wed, 28 Sep 2022 11:44:10 GMT
Date: Wed, 28 Sep 2022 10:43:55 GMT
Connection: keep-alive

img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7723c423-9c9b-4e58-93cc-7198e8ff6f62.jpeg

34.120.237.76

200 OK

7.4 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7723c423-9c9b-4e58-93cc-7198e8ff6f62.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
7.4 kB (7359 bytes)
Hash
46dc8f1499f4de5f03bd87a68c3c6c7b
0cd28a243f9704140ccb9eb1415a77fcccc7cf87
3d7a5cdc0812857efabd7ab941aea6d6582790b86a9587809d222c0a8546262b

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7723c423-9c9b-4e58-93cc-7198e8ff6f62.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 7359
x-amzn-requestid: 6e3123b2-ea7e-4e3e-8399-19a66d27923f
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZI34CEYtIAMF01w=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63336d00-5995316c70da7a0c460ac432;Sampled=0
x-amzn-remapped-date: Tue, 27 Sep 2022 21:37:04 GMT
x-amz-cf-pop: SEA73-P2, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: t_uz9vKifWkMj014gCS83STU-fnM39a49_LB5By3j9NqLpqfl8tKSA==
via: 1.1 de8fc80b494d3d381f7e006918dcc588.cloudfront.net (CloudFront), 1.1 e95ec8f1dc02e32f0cb9e113963ceb4e.cloudfront.net (CloudFront), 1.1 google
date: Tue, 27 Sep 2022 21:57:38 GMT
age: 45977
etag: "0cd28a243f9704140ccb9eb1415a77fcccc7cf87"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

5.3 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F63a7aeb3-999a-4e57-9255-c40e0376d08e.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
5.3 kB (5319 bytes)
Hash
46e31aa06b8e86a9a5f9ba1cc3feca08
75df3341e30281fcbf78c7074980356fdf0be8e2
d1fd4f81b7e0f43de960f0ee024d9e87bcb395f032a4ab0360e3829d1ec8a42b

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F63a7aeb3-999a-4e57-9255-c40e0376d08e.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 5319
x-amzn-requestid: 74191b02-ebea-48bd-8522-f05bf8080f31
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZFlOKFtsIAMFyGQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63321bf4-1f2daa9d7906bf9812e10953;Sampled=0
x-amzn-remapped-date: Mon, 26 Sep 2022 21:39:00 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: Y0gjPs-l9_JD9F-LSH_i1uL2Nz0UcWCG-9PmDmRH8cN_cNAeSchJTA==
via: 1.1 4d7fa73f804f1c93f20cfc24c4b1266e.cloudfront.net (CloudFront), 1.1 68fadeb91f97256bb67b03bfca74d830.cloudfront.net (CloudFront), 1.1 google
date: Tue, 27 Sep 2022 21:32:06 GMT
age: 47509
etag: "75df3341e30281fcbf78c7074980356fdf0be8e2"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

9.7 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F02722822-e024-44b9-8ec1-48ec9500ca58.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
9.7 kB (9733 bytes)
Hash
f3e1fd3401c5e635a8dbeec5f78b721d
2142075b27d0d355c51231ab06fea46e25eb9c59
2e17a43985b624e6b6592d402c36dd45b915cd6e1ac84e187c18c46420eb9a1d

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F02722822-e024-44b9-8ec1-48ec9500ca58.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 9733
x-amzn-requestid: fff8214b-48f7-4b45-bd91-69ea4db871d6
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZCAWhG9HIAMFloQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6330adc3-1cffa63711378c525e49e11d;Sampled=0
x-amzn-remapped-date: Sun, 25 Sep 2022 19:36:35 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: L2Of12XTKmTF2EPL4MHpJvBW7GNS8gSRs3FuUMB-RUpTZaY8ew_o_w==
via: 1.1 0dc4feb22bb4657ce2bb95fd05ec7122.cloudfront.net (CloudFront), 1.1 5fe5f2a3903f1378941d92eceaf3fa16.cloudfront.net (CloudFront), 1.1 google
date: Wed, 28 Sep 2022 05:26:00 GMT
age: 19075
etag: "2142075b27d0d355c51231ab06fea46e25eb9c59"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

12 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fad593ee0-d404-46e3-b129-229e09b263b0.png
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
12 kB (12016 bytes)
Hash
4b794c6812cb546de0295e087ebe66a7
a54803cca7d3c509c195f65961e1110c8ec56f55
6a207f75eb3951f3dea5252bc8d185cd604d3d657f15b838774e8087e91f37f5

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fad593ee0-d404-46e3-b129-229e09b263b0.png HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 12016
x-amzn-requestid: ec1b3715-5d0f-4045-aa5b-b70a55c81d72
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZI3e3EtyIAMFdZg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63336c5e-201dd1ef1426a09965c68dab;Sampled=0
x-amzn-remapped-date: Tue, 27 Sep 2022 21:34:22 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: pR4b1-lZZRMnWf-PdXFGXaHBCGAfOyp3AjeuCvtu5imWmf9N9l2wKQ==
via: 1.1 41e349e25dc4bc856d0e5d2c162428a0.cloudfront.net (CloudFront), 1.1 be082a2326b7d49643607b097f1e7180.cloudfront.net (CloudFront), 1.1 google
date: Tue, 27 Sep 2022 21:48:38 GMT
age: 46517
etag: "a54803cca7d3c509c195f65961e1110c8ec56f55"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

13 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F693de74c-173e-4d9b-8317-35601f30ffd7.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
13 kB (13299 bytes)
Hash
ad84ed0c5b2090df7996007514cf1984
651600f2ef18cecc2e38370069bbb5e1d86f68e0
a3d0729e1d43afeadd2dd8273c858b8839d9e476f773c8ec9d96b5969a9e0b4a

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F693de74c-173e-4d9b-8317-35601f30ffd7.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 13299
x-amzn-requestid: 926df8b6-beec-470d-b0b3-33be326cd379
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZI3UPF8YIAMF3Nw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63336c1a-343e91e735af43d01fc83ddd;Sampled=0
x-amzn-remapped-date: Tue, 27 Sep 2022 21:33:14 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: fcxclGRP3zfWwb6opjYU2bL9VAq_mCSNjFtfp9iMLq6tbZu57EDqpQ==
via: 1.1 e5af640ced3aa8764b82c4bc3f7af38e.cloudfront.net (CloudFront), 1.1 2324edbcb8fc72f617442c65f36a40fc.cloudfront.net (CloudFront), 1.1 google
date: Tue, 27 Sep 2022 21:50:04 GMT
etag: "651600f2ef18cecc2e38370069bbb5e1d86f68e0"
content-type: image/jpeg
age: 46431
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

8.5 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8ffa6dde-b51e-43f8-bfcb-3f442d674928.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
8.5 kB (8500 bytes)
Hash
6139c878a7d2bd32c61fc8287996eb5b
9c4692ea64832895fbd107d91f879728b6a440c7
3839df92f0a10c1433d5b576df50c9f7953912ae4f425012262f08ee8a59ce2e

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8ffa6dde-b51e-43f8-bfcb-3f442d674928.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 8500
x-amzn-requestid: 626c21ec-f29b-4b69-b275-c22c864c2409
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZI3VmENnIAMFeTQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63336c23-75eccc381fbd6e5d4ff59c06;Sampled=0
x-amzn-remapped-date: Tue, 27 Sep 2022 21:33:23 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: Eyy8qoYVCJbt6b6hTGJ-rOrYex9RuX1InyZbpHkeu9yQqPUEvowKcw==
via: 1.1 da5952aa802df39905ceb16592e9698a.cloudfront.net (CloudFront), 1.1 09331f0822fc98eebaf04130a83dbd44.cloudfront.net (CloudFront), 1.1 google
date: Tue, 27 Sep 2022 21:48:58 GMT
etag: "9c4692ea64832895fbd107d91f879728b6a440c7"
content-type: image/jpeg
age: 46497
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

cetiradentes.com.br/favicon.ico

216.172.172.44

200 OK

3.3 kB

URL HTTP/1.1
cetiradentes.com.br/favicon.ico
IP
216.172.172.44:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
PNG image data, 16 x 16, 8-bit/color RGBA, non-interlaced\012- data
Size
3.3 kB (3287 bytes)
Hash
64649d9b6fc3f4a992213738748d59d4
649a268585830657751c21003e6de920f01ae327
16b6e1c4d1d274378f038acf836e24a6c8b6ea16672f89ce84c6a59fc3e762a9

HTTP Headers

GET /favicon.ico HTTP/1.1
Host: cetiradentes.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://cetiradentes.com.br/yghhtele/
Cookie: swpm_session=7d606345d45bb6033c600701f10c7724

HTTP/1.1 200 OK
Date: Wed, 28 Sep 2022 10:43:55 GMT
Server: Apache
Upgrade: h2,h2c
Connection: Upgrade, Keep-Alive
Last-Modified: Thu, 24 Jun 2021 13:17:27 GMT
Accept-Ranges: bytes
Content-Length: 3287
Cache-Control: max-age=604800
Expires: Wed, 05 Oct 2022 10:43:55 GMT
Keep-Alive: timeout=5, max=75
Content-Type: image/x-icon

cetiradentes.com.br/yghhtele/fonts/telekomicon-outline.ttf

216.172.172.44

404 Not Found

20 kB

URL HTTP/1.1
cetiradentes.com.br/yghhtele/fonts/telekomicon-outline.ttf
IP
216.172.172.44:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (26344)
Size
20 kB (20116 bytes)
Hash
a206a9f97522c5240f68ef5edfb336fa
375cae5f9d5074dae9ac2f46046d28d99fc2195c
49d95101f31a3dbabccb8f7c468d2f9ba6df10e3c2aeb4d74066310a91ef1b0f

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /yghhtele/fonts/telekomicon-outline.ttf HTTP/1.1
Host: cetiradentes.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://cetiradentes.com.br/yghhtele/css/components.min.css
Cookie: swpm_session=7d606345d45bb6033c600701f10c7724

HTTP/1.1 404 Not Found
Date: Wed, 28 Sep 2022 10:43:54 GMT
Server: Apache
Expires: Wed, 11 Jan 1984 05:00:00 GMT
Cache-Control: no-cache, must-revalidate, max-age=0
Link: <https://cetiradentes.com.br/wp-json/>; rel="https://api.w.org/"
Vary: Accept-Encoding
Content-Encoding: gzip
Keep-Alive: timeout=5, max=73
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: text/html; charset=UTF-8

cetiradentes.com.br/yghhtele/fonts/telegroteskscreen-regular.ttf

216.172.172.44

404 Not Found

20 kB

URL HTTP/1.1
cetiradentes.com.br/yghhtele/fonts/telegroteskscreen-regular.ttf
IP
216.172.172.44:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (26344)
Size
20 kB (20116 bytes)
Hash
a206a9f97522c5240f68ef5edfb336fa
375cae5f9d5074dae9ac2f46046d28d99fc2195c
49d95101f31a3dbabccb8f7c468d2f9ba6df10e3c2aeb4d74066310a91ef1b0f

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /yghhtele/fonts/telegroteskscreen-regular.ttf HTTP/1.1
Host: cetiradentes.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://cetiradentes.com.br/yghhtele/css/components.min.css
Cookie: swpm_session=7d606345d45bb6033c600701f10c7724

HTTP/1.1 404 Not Found
Date: Wed, 28 Sep 2022 10:43:54 GMT
Server: Apache
Expires: Wed, 11 Jan 1984 05:00:00 GMT
Cache-Control: no-cache, must-revalidate, max-age=0
Link: <https://cetiradentes.com.br/wp-json/>; rel="https://api.w.org/"
Vary: Accept-Encoding
Content-Encoding: gzip
Keep-Alive: timeout=5, max=73
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: text/html; charset=UTF-8

cetiradentes.com.br/yghhtele/fonts/telegroteskscreen-thin.ttf

216.172.172.44

404 Not Found

20 kB

URL HTTP/1.1
cetiradentes.com.br/yghhtele/fonts/telegroteskscreen-thin.ttf
IP
216.172.172.44:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (26344)
Size
20 kB (20116 bytes)
Hash
a206a9f97522c5240f68ef5edfb336fa
375cae5f9d5074dae9ac2f46046d28d99fc2195c
49d95101f31a3dbabccb8f7c468d2f9ba6df10e3c2aeb4d74066310a91ef1b0f

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /yghhtele/fonts/telegroteskscreen-thin.ttf HTTP/1.1
Host: cetiradentes.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://cetiradentes.com.br/yghhtele/css/components.min.css
Cookie: swpm_session=7d606345d45bb6033c600701f10c7724

HTTP/1.1 404 Not Found
Date: Wed, 28 Sep 2022 10:43:54 GMT
Server: Apache
Expires: Wed, 11 Jan 1984 05:00:00 GMT
Cache-Control: no-cache, must-revalidate, max-age=0
Link: <https://cetiradentes.com.br/wp-json/>; rel="https://api.w.org/"
Vary: Accept-Encoding
Content-Encoding: gzip
Keep-Alive: timeout=5, max=72
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: text/html; charset=UTF-8

cetiradentes.com.br/yghhtele/fonts/telegroteskscreen-bold.ttf

216.172.172.44

404 Not Found

20 kB

URL HTTP/1.1
cetiradentes.com.br/yghhtele/fonts/telegroteskscreen-bold.ttf
IP
216.172.172.44:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (26344)
Size
20 kB (20116 bytes)
Hash
a206a9f97522c5240f68ef5edfb336fa
375cae5f9d5074dae9ac2f46046d28d99fc2195c
49d95101f31a3dbabccb8f7c468d2f9ba6df10e3c2aeb4d74066310a91ef1b0f

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /yghhtele/fonts/telegroteskscreen-bold.ttf HTTP/1.1
Host: cetiradentes.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://cetiradentes.com.br/yghhtele/css/components.min.css
Cookie: swpm_session=7d606345d45bb6033c600701f10c7724

HTTP/1.1 404 Not Found
Date: Wed, 28 Sep 2022 10:43:54 GMT
Server: Apache
Expires: Wed, 11 Jan 1984 05:00:00 GMT
Cache-Control: no-cache, must-revalidate, max-age=0
Link: <https://cetiradentes.com.br/wp-json/>; rel="https://api.w.org/"
Vary: Accept-Encoding
Content-Encoding: gzip
Keep-Alive: timeout=5, max=72
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: text/html; charset=UTF-8

cetiradentes.com.br/yghhtele/fonts/telekomicon-ui.ttf

216.172.172.44

404 Not Found

20 kB

URL HTTP/1.1
cetiradentes.com.br/yghhtele/fonts/telekomicon-ui.ttf
IP
216.172.172.44:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (26344)
Size
20 kB (20116 bytes)
Hash
a206a9f97522c5240f68ef5edfb336fa
375cae5f9d5074dae9ac2f46046d28d99fc2195c
49d95101f31a3dbabccb8f7c468d2f9ba6df10e3c2aeb4d74066310a91ef1b0f

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /yghhtele/fonts/telekomicon-ui.ttf HTTP/1.1
Host: cetiradentes.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://cetiradentes.com.br/yghhtele/css/components.min.css
Cookie: swpm_session=7d606345d45bb6033c600701f10c7724

HTTP/1.1 404 Not Found
Date: Wed, 28 Sep 2022 10:43:54 GMT
Server: Apache
Expires: Wed, 11 Jan 1984 05:00:00 GMT
Cache-Control: no-cache, must-revalidate, max-age=0
Link: <https://cetiradentes.com.br/wp-json/>; rel="https://api.w.org/"
Vary: Accept-Encoding
Content-Encoding: gzip
Keep-Alive: timeout=5, max=72
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: text/html; charset=UTF-8

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

OpenPhish

PhishTank

Fortinet's Web Filter

mnemonic secure dns

Quad9 DNS

JavaScript (5)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

HTTP Transactions (36)

URL HTTP/1.1

IP

ASN

File type

Size

Hash

HTTP Headers

URL HTTP/1.1

IP

ASN

File type

Size

Hash

HTTP Headers

URL HTTP/2

IP

ASN

File type

Size