Report - www.cluberesgatedepontos.com/cartoes/VewuO/info.php?token=Edvir7Fzj77HXaPFKyiOPeR8awq5IZlm1VMBucxda4iEuK8B6nDcfPS7hRDKMtFOxBYY0DZrNbTsmtIWGyNJOuHE5dka6eDNuwtwhRmp8Aj5BRSdLPnfwUlwU7q21HyE9QhCU0HnPI3PS1LkctvTUd

Report Overview

Submitted URL
www.cluberesgatedepontos.com/cartoes/VewuO/info.php?token=Edvir7Fzj77HXaPFKyiOPeR8awq5IZlm1VMBucxda4iEuK8B6nDcfPS7hRDKMtFOxBYY0DZrNbTsmtIWGyNJOuHE5dka6eDNuwtwhRmp8Aj5BRSdLPnfwUlwU7q21HyE9QhCU0HnPI3PS1LkctvTUd
IP
188.114.96.1
ASN
#13335 CLOUDFLARENET
Submitted
2023-06-02 12:14:04
Access
public
Website Title
Final URL
Tags
urlquery detections
No alerts detected

Detections

urlquery
0
Network Intrusion Detection
0
Threat Detection Systems
54

Domain Summary

Domain / FQDN	Rank	Registered	First Seen	Last Seen	Sent	Received	IP
ajax.googleapis.com	12905	2005-01-25	2013-08-16	2023-06-02	445 B	31 kB	142.250.74.138
www.cluberesgatedepontos.com	unknown	2023-03-17	2023-04-02	2023-06-02	17 kB	343 kB	188.114.96.1
cdnjs.cloudflare.com	235	2009-02-17	2015-04-17	2023-06-02	446 B	28 kB	104.17.25.14
ocsp.pki.goog	175	2016-06-13	2018-07-01	2023-06-02	666 B	1.4 kB	142.250.74.131

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

OpenPhish

Scan Date	Severity	Indicator	Alert
2023-06-01	medium	www.cluberesgatedepontos.com/cartoes/VewuO/info.php?token=Edvir7Fzj77HXaPFKyiOPeR8awq5IZlm1VMBucxda4iEuK8B6nDcfPS7hRDKMtFOxBYY0DZrNbTsmtIWGyNJOuHE5dka6eDNuwtwhRmp8Aj5BRSdLPnfwUlwU7q21HyE9QhCU0HnPI3PS1LkctvTUd

PhishTank

No alerts detected

Fortinet's Web Filter

No alerts detected

mnemonic secure dns

No alerts detected

Quad9 DNS

Scan Date	Severity	Indicator
2023-06-02	medium	cluberesgatedepontos.com
2023-06-02	medium	cluberesgatedepontos.com
2023-06-02	medium	cluberesgatedepontos.com
2023-06-02	medium	cluberesgatedepontos.com
2023-06-02	medium	cluberesgatedepontos.com
2023-06-02	medium	cluberesgatedepontos.com
2023-06-02	medium	cluberesgatedepontos.com
2023-06-02	medium	cluberesgatedepontos.com
2023-06-02	medium	cluberesgatedepontos.com
2023-06-02	medium	cluberesgatedepontos.com
2023-06-02	medium	cluberesgatedepontos.com
2023-06-02	medium	cluberesgatedepontos.com
2023-06-02	medium	cluberesgatedepontos.com
2023-06-02	medium	cluberesgatedepontos.com
2023-06-02	medium	cluberesgatedepontos.com
2023-06-02	medium	cluberesgatedepontos.com
2023-06-02	medium	cluberesgatedepontos.com
2023-06-02	medium	cluberesgatedepontos.com
2023-06-02	medium	cluberesgatedepontos.com
2023-06-02	medium	cluberesgatedepontos.com
2023-06-02	medium	cluberesgatedepontos.com
2023-06-02	medium	cluberesgatedepontos.com
2023-06-02	medium	cluberesgatedepontos.com
2023-06-02	medium	cluberesgatedepontos.com
2023-06-02	medium	cluberesgatedepontos.com
2023-06-02	medium	cluberesgatedepontos.com

ThreatFox

No alerts detected

JavaScript (10)

	URL	Size	First Seen	Last Seen
	www.cluberesgatedepontos.com/assets/js/mkscript.js	9.0 kB	2023-03-25	2023-06-02
Pretty URL www.cluberesgatedepontos.com/assets/js/mkscript.js IP 188.114.96.1 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-25 22:45:30 Last Seen2023-06-02 14:14:05 Times Seen17 Hash 22ebb71c2969f472ab951541f96524ca b4227ffb7f9422cb8acccd2e1a3cea0a19ec18ea 0b8e55253e0f3fa76bd7c634e4409965d6b13735abddf41ccde4cbe4c96ae218 Loading...

	www.cluberesgatedepontos.com/assets/js/cpf.js	1.1 kB	2023-03-26	2023-06-02
Pretty URL www.cluberesgatedepontos.com/assets/js/cpf.js IP 188.114.96.1 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-26 10:19:16 Last Seen2023-06-02 14:14:05 Times Seen3 Hash 84a5b18dd0fe93972f9e29497bc8253d 45481fc19ed7015c2cc898dbe38bb0215ef53627 1de01accde93c2cb90e573cad54f12798a41d48545a0a340ab4d85c3e9700893 Loading...

	unknown	106 B	2023-05-18	2023-06-02
Pretty Introduced by domTimer Embedded in HTML false Observations First Seen2023-05-18 01:21:37 Last Seen2023-06-02 14:14:05 Times Seen2 Hash 14ef29af89c0b94cee3053659a3fa5c7 4229248b31fd3add035b54e3e3f410e072269196 f426bf3b6c338b607b5b3cc9128a1fa9df5f78401ba2c0343770880afe1d4095 Loading...

	www.cluberesgatedepontos.com/assets/js/base.js	886 B	2023-03-25	2023-06-02
Pretty URL www.cluberesgatedepontos.com/assets/js/base.js IP 188.114.96.1 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-25 22:45:30 Last Seen2023-06-02 14:14:05 Times Seen17 Hash a3a3cb13f03cc1d582622d0888b279d1 23f5c459552493f29cca1f99d6406b4a958fbaaa 8b614a4c8005d2f74b623f3573921aa68451b98468c5bf6dbd62301e1ee85055 Loading...

	www.cluberesgatedepontos.com/assets/js/jquery-3.2.1.min.js	87 kB	2023-03-07	2024-05-11
Pretty URL www.cluberesgatedepontos.com/assets/js/jquery-3.2.1.min.js IP 188.114.96.1 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:00 Last Seen2024-05-11 04:21:40 Times Seen65857 Hash c9f5aeeca3ad37bf2aa006139b935f0a 1055018c28ab41087ef9ccefe411606893dabea2 87083882cc6015984eb0411a99d3981817f5dc5c90ba24f0940420c5548d82de Loading...

	www.cluberesgatedepontos.com/cartoes/VewuO/info.php?token=Edvir7Fzj77HXaPFKyiOPeR8awq5IZlm1VMBucxda4iEuK8B6nDcfPS7hRDKMtFOxBYY0DZrNbTsmtIWGyNJOuHE5dka6eDNuwtwhRmp8Aj5BRSdLPnfwUlwU7q21HyE9QhCU0HnPI3PS1LkctvTUd	0 B	2023-03-07	2024-05-11
Pretty URL www.cluberesgatedepontos.com/cartoes/VewuO/info.php?token=Edvir7Fzj77HXaPFKyiOPeR8awq5IZlm1VMBucxda4iEuK8B6nDcfPS7hRDKMtFOxBYY0DZrNbTsmtIWGyNJOuHE5dka6eDNuwtwhRmp8Aj5BRSdLPnfwUlwU7q21HyE9QhCU0HnPI3PS1LkctvTUd IP 188.114.96.1 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-07 01:01:59 Last Seen2024-05-11 05:06:24 Times Seen37534894 Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 Loading...

	ajax.googleapis.com/ajax/libs/jquery/2.1.3/jquery.min.js	84 kB	2023-03-07	2024-05-11
Pretty URL ajax.googleapis.com/ajax/libs/jquery/2.1.3/jquery.min.js IP 142.250.74.138 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:00 Last Seen2024-05-11 01:52:21 Times Seen14476 Hash 32015dd42e9582a80a84736f5d9a44d7 41b4bfbaa96be6d1440db6e78004ade1c134e276 8af93bd675e1cfd9ecc850e862819fdac6e3ad1f5d761f970e409c7d9c63bdc3 Loading...

	www.cluberesgatedepontos.com/cartoes/VewuO/info.php?token=Edvir7Fzj77HXaPFKyiOPeR8awq5IZlm1VMBucxda4iEuK8B6nDcfPS7hRDKMtFOxBYY0DZrNbTsmtIWGyNJOuHE5dka6eDNuwtwhRmp8Aj5BRSdLPnfwUlwU7q21HyE9QhCU0HnPI3PS1LkctvTUd	0 B	2023-03-07	2024-05-11
Pretty URL www.cluberesgatedepontos.com/cartoes/VewuO/info.php?token=Edvir7Fzj77HXaPFKyiOPeR8awq5IZlm1VMBucxda4iEuK8B6nDcfPS7hRDKMtFOxBYY0DZrNbTsmtIWGyNJOuHE5dka6eDNuwtwhRmp8Aj5BRSdLPnfwUlwU7q21HyE9QhCU0HnPI3PS1LkctvTUd IP 188.114.96.1 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-07 01:01:59 Last Seen2024-05-11 05:06:24 Times Seen37534894 Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 Loading...

	www.cluberesgatedepontos.com/assets/js/jquery.mask.min.js	4.9 kB	2023-03-07	2024-04-20
Pretty URL www.cluberesgatedepontos.com/assets/js/jquery.mask.min.js IP 188.114.96.1 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:03:44 Last Seen2024-04-20 07:50:38 Times Seen157 Hash ff2c0f430a03e97e4d6fb35d630defe7 ec08e975b75242bd065a1a568da36858a79ccb87 f830833b6661d5fb63e23d3d245e91edc7c52aa547ca19eca7c91c7570483975 Loading...

	cdnjs.cloudflare.com/ajax/libs/jquery/3.3.1/jquery.min.js	87 kB	2023-03-07	2024-05-11
Pretty URL cdnjs.cloudflare.com/ajax/libs/jquery/3.3.1/jquery.min.js IP 104.17.25.14 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:02 Last Seen2024-05-11 04:20:59 Times Seen110631 Hash a09e13ee94d51c524b7e2a728c7d4039 0dc32db4aa9c5f03f3b38c47d883dbd4fed13aae 160a426ff2894252cd7cebbdd6d6b7da8fcd319c65b70468f10b6690c45d02ef Loading...

HTTP Transactions (30)

URL IP Response Size

cdnjs.cloudflare.com/ajax/libs/jquery/3.3.1/jquery.min.js

104.17.25.14

200 OK

27 kB

URL GET HTTP/2
cdnjs.cloudflare.com/ajax/libs/jquery/3.3.1/jquery.min.js
IP
104.17.25.14:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.cluberesgatedepontos.com/cartoes/VewuO/info.php?token=Edvir7Fzj77HXaPFKyiOPeR8awq5IZlm1VMBucxda4iEuK8B6nDcfPS7hRDKMtFOxBYY0DZrNbTsmtIWGyNJOuHE5dka6eDNuwtwhRmp8Aj5BRSdLPnfwUlwU7q21HyE9QhCU0HnPI3PS1LkctvTUd
Certificate
IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
FingerprintA9:11:71:07:07:92:48:7E:A9:3C:E8:32:25:3F:EB:AC:7D:51:7E:8F
ValidityWed, 03 Aug 2022 00:00:00 GMT - Wed, 02 Aug 2023 23:59:59 GMT

File type
ASCII text, with very long lines (65451)
Size
27 kB (27433 bytes)
Hash
a09e13ee94d51c524b7e2a728c7d4039
0dc32db4aa9c5f03f3b38c47d883dbd4fed13aae
160a426ff2894252cd7cebbdd6d6b7da8fcd319c65b70468f10b6690c45d02ef

HTTP Headers

GET /ajax/libs/jquery/3.3.1/jquery.min.js HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.cluberesgatedepontos.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Fri, 02 Jun 2023 12:13:47 GMT
content-type: application/javascript; charset=utf-8
content-length: 27433
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "5eb03ec4-1538f"
last-modified: Mon, 04 May 2020 16:11:48 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 676388
expires: Wed, 22 May 2024 12:13:47 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=3wKu3GiqwYg%2FmY8IlQNx14Gi5rK5BIn%2FLml4wkli9DaWOQdbI3re2QXPyYEHmt7Fyi0IGP2XZ7I5aRjJ4o4Gemy9QjuEgvKIFJRSKHMfCHXat1vyQ5Ogg4K6yFU596sPoKZs14UG"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 7d0f9cc398cbb4f1-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.131

472 B

URL
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
02593b51cd737e1085e5837a9a47c755
aab410449655b9fddf070f3e25a1a8e5aee59530
0ea607d017e63bf06a742560b582d99802dc477bba715d9890e1d51663e50d99

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 02 Jun 2023 12:13:47 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ajax.googleapis.com/ajax/libs/jquery/2.1.3/jquery.min.js

142.250.74.138

200 OK

30 kB

URL GET HTTP/2
ajax.googleapis.com/ajax/libs/jquery/2.1.3/jquery.min.js
IP
142.250.74.138:443
ASN
#15169 GOOGLE

Requested by
https://www.cluberesgatedepontos.com/cartoes/VewuO/info.php?token=Edvir7Fzj77HXaPFKyiOPeR8awq5IZlm1VMBucxda4iEuK8B6nDcfPS7hRDKMtFOxBYY0DZrNbTsmtIWGyNJOuHE5dka6eDNuwtwhRmp8Aj5BRSdLPnfwUlwU7q21HyE9QhCU0HnPI3PS1LkctvTUd
Certificate
IssuerGoogle Trust Services LLC
Subjectupload.video.google.com
Fingerprint5F:AC:74:E6:97:66:CD:D0:F1:EA:0D:01:37:89:65:2E:98:22:84:6C
ValidityMon, 08 May 2023 08:24:50 GMT - Mon, 31 Jul 2023 08:24:49 GMT

File type
ASCII text, with very long lines (32180)
Size
30 kB (29707 bytes)
Hash
32015dd42e9582a80a84736f5d9a44d7
41b4bfbaa96be6d1440db6e78004ade1c134e276
8af93bd675e1cfd9ecc850e862819fdac6e3ad1f5d761f970e409c7d9c63bdc3

HTTP Headers

GET /ajax/libs/jquery/2.1.3/jquery.min.js HTTP/1.1
Host: ajax.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.cluberesgatedepontos.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/hosted-libraries-pushers
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="hosted-libraries-pushers"
report-to: {"group":"hosted-libraries-pushers","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/hosted-libraries-pushers"}]}
timing-allow-origin: *
content-length: 29707
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 02 Jun 2023 10:56:24 GMT
expires: Sat, 01 Jun 2024 10:56:24 GMT
cache-control: public, max-age=31536000, stale-while-revalidate=2592000
last-modified: Tue, 03 Mar 2020 19:15:00 GMT
content-type: text/javascript; charset=UTF-8
vary: Accept-Encoding
age: 4643
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.131

472 B

URL
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
02593b51cd737e1085e5837a9a47c755
aab410449655b9fddf070f3e25a1a8e5aee59530
0ea607d017e63bf06a742560b582d99802dc477bba715d9890e1d51663e50d99

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 02 Jun 2023 12:13:47 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

www.cluberesgatedepontos.com/assets/img/mktopoinfo.png

188.114.96.1

200 OK

3.4 kB

URL GET HTTP/3
www.cluberesgatedepontos.com/assets/img/mktopoinfo.png
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.cluberesgatedepontos.com/cartoes/VewuO/info.php?token=Edvir7Fzj77HXaPFKyiOPeR8awq5IZlm1VMBucxda4iEuK8B6nDcfPS7hRDKMtFOxBYY0DZrNbTsmtIWGyNJOuHE5dka6eDNuwtwhRmp8Aj5BRSdLPnfwUlwU7q21HyE9QhCU0HnPI3PS1LkctvTUd
Certificate
IssuerGoogle Trust Services LLC
Subjectcluberesgatedepontos.com
Fingerprint35:91:6A:3D:C9:9E:86:88:FE:5A:42:1B:DC:61:0C:BD:E0:11:E7:81
ValidityMon, 15 May 2023 16:24:46 GMT - Sun, 13 Aug 2023 16:24:45 GMT

File type
PNG image data, 719 x 111, 8-bit/color RGBA, non-interlaced\012- data
Size
3.4 kB (3390 bytes)
Hash
d8812ed7df46847ffbcdd907666fb5ce
aad61745df7020cc8acf6ab397948397a2f363f3
c126d61dca5ec1947fcb802a5fd2b3586224a11b1316100031c693a0bb87d4a4

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /assets/img/mktopoinfo.png HTTP/1.1
Host: www.cluberesgatedepontos.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.cluberesgatedepontos.com/assets/css/estilo.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Fri, 02 Jun 2023 12:13:47 GMT
content-type: image/png
content-length: 3390
last-modified: Wed, 14 Dec 2022 16:51:01 GMT
etag: "d3e-5efcc8a95e740"
cache-control: max-age=14400
cf-cache-status: HIT
age: 19
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=QEDAr01Rzf7yrUOYLcaiFcnIusp6x3bo1csMHLgc8p8oPw0lImzWsU3rO59lg1vgUUOWLIiPMGtdqPZTIR3hw2YmYUaahnUyVJgVUw8vme6DrHCmxY0RbD9V1PKls8njDstnJzZ8X5BHy9O%2B5N7f"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7d0f9cc5bafbb505-OSL
alt-svc: h3=":443"; ma=86400

www.cluberesgatedepontos.com/assets/itauverify.php

188.114.96.1

200 OK

1 B

URL GET HTTP/3
www.cluberesgatedepontos.com/assets/itauverify.php
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.cluberesgatedepontos.com/cartoes/VewuO/info.php?token=Edvir7Fzj77HXaPFKyiOPeR8awq5IZlm1VMBucxda4iEuK8B6nDcfPS7hRDKMtFOxBYY0DZrNbTsmtIWGyNJOuHE5dka6eDNuwtwhRmp8Aj5BRSdLPnfwUlwU7q21HyE9QhCU0HnPI3PS1LkctvTUd
Certificate
IssuerGoogle Trust Services LLC
Subjectcluberesgatedepontos.com
Fingerprint35:91:6A:3D:C9:9E:86:88:FE:5A:42:1B:DC:61:0C:BD:E0:11:E7:81
ValidityMon, 15 May 2023 16:24:46 GMT - Sun, 13 Aug 2023 16:24:45 GMT

File type
very short file (no magic)
Size
1 B (1 bytes)
Hash
c81e728d9d4c2f636f067f89cc14862c
da4b9237bacccdf19c0760cab7aec4a8359010b0
d4735e3a265e16eee03f59718b9b5d03019c07d8b6c51f90da3a666eec13ab35

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /assets/itauverify.php HTTP/1.1
Host: www.cluberesgatedepontos.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Requested-With: XMLHttpRequest
DNT: 1
Connection: keep-alive
Referer: https://www.cluberesgatedepontos.com/cartoes/VewuO/info.php?token=Edvir7Fzj77HXaPFKyiOPeR8awq5IZlm1VMBucxda4iEuK8B6nDcfPS7hRDKMtFOxBYY0DZrNbTsmtIWGyNJOuHE5dka6eDNuwtwhRmp8Aj5BRSdLPnfwUlwU7q21HyE9QhCU0HnPI3PS1LkctvTUd
Cookie: PHPSESSID=9a2d7nm3mb4ksndvvpj2m99kf6
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Fri, 02 Jun 2023 12:13:52 GMT
content-type: text/html; charset=UTF-8
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: no-store, no-cache, must-revalidate
pragma: no-cache
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=yJnCpidVBax1yp%2BtRgcPgM3XAMCYxF43LmH3wvOiTSkCNtBNv9FLAh0T8DuEUAuVLGaRpXcgNm%2BNCrzk8CR%2BXIy24qpIU6QiokMfXimuHrFidJ58ORS4hG%2FCxnlCrpgQYODl5KOD9FcH5Je8jHTs"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7d0f9ce0b81cb505-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

www.cluberesgatedepontos.com/assets/itauverify.php

188.114.96.1

200 OK

1 B

URL GET HTTP/3
www.cluberesgatedepontos.com/assets/itauverify.php
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.cluberesgatedepontos.com/cartoes/VewuO/info.php?token=Edvir7Fzj77HXaPFKyiOPeR8awq5IZlm1VMBucxda4iEuK8B6nDcfPS7hRDKMtFOxBYY0DZrNbTsmtIWGyNJOuHE5dka6eDNuwtwhRmp8Aj5BRSdLPnfwUlwU7q21HyE9QhCU0HnPI3PS1LkctvTUd
Certificate
IssuerGoogle Trust Services LLC
Subjectcluberesgatedepontos.com
Fingerprint35:91:6A:3D:C9:9E:86:88:FE:5A:42:1B:DC:61:0C:BD:E0:11:E7:81
ValidityMon, 15 May 2023 16:24:46 GMT - Sun, 13 Aug 2023 16:24:45 GMT

File type
very short file (no magic)
Size
1 B (1 bytes)
Hash
c81e728d9d4c2f636f067f89cc14862c
da4b9237bacccdf19c0760cab7aec4a8359010b0
d4735e3a265e16eee03f59718b9b5d03019c07d8b6c51f90da3a666eec13ab35

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /assets/itauverify.php HTTP/1.1
Host: www.cluberesgatedepontos.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Requested-With: XMLHttpRequest
DNT: 1
Connection: keep-alive
Referer: https://www.cluberesgatedepontos.com/cartoes/VewuO/info.php?token=Edvir7Fzj77HXaPFKyiOPeR8awq5IZlm1VMBucxda4iEuK8B6nDcfPS7hRDKMtFOxBYY0DZrNbTsmtIWGyNJOuHE5dka6eDNuwtwhRmp8Aj5BRSdLPnfwUlwU7q21HyE9QhCU0HnPI3PS1LkctvTUd
Cookie: PHPSESSID=9a2d7nm3mb4ksndvvpj2m99kf6
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Fri, 02 Jun 2023 12:13:54 GMT
content-type: text/html; charset=UTF-8
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: no-store, no-cache, must-revalidate
pragma: no-cache
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=xaGT0wUGW8JXUokBmniOgtg%2BUxItWWYscmor5nBog27BEs6ZpG7y2tkA7E%2BmnS%2BlwOaa4KIO8%2BIQSAp6qx0oXJHZrdR9UgtJziiz8EZOT58kaf2IKY%2BEkjbGnQxGJwBVaV3T5f8r00TnnsUivZAf"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7d0f9cf0bdbbb505-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

www.cluberesgatedepontos.com/assets/itauverify.php

188.114.96.1

200 OK

1 B

URL GET HTTP/3
www.cluberesgatedepontos.com/assets/itauverify.php
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.cluberesgatedepontos.com/cartoes/VewuO/info.php?token=Edvir7Fzj77HXaPFKyiOPeR8awq5IZlm1VMBucxda4iEuK8B6nDcfPS7hRDKMtFOxBYY0DZrNbTsmtIWGyNJOuHE5dka6eDNuwtwhRmp8Aj5BRSdLPnfwUlwU7q21HyE9QhCU0HnPI3PS1LkctvTUd
Certificate
IssuerGoogle Trust Services LLC
Subjectcluberesgatedepontos.com
Fingerprint35:91:6A:3D:C9:9E:86:88:FE:5A:42:1B:DC:61:0C:BD:E0:11:E7:81
ValidityMon, 15 May 2023 16:24:46 GMT - Sun, 13 Aug 2023 16:24:45 GMT

File type
very short file (no magic)
Size
1 B (1 bytes)
Hash
c81e728d9d4c2f636f067f89cc14862c
da4b9237bacccdf19c0760cab7aec4a8359010b0
d4735e3a265e16eee03f59718b9b5d03019c07d8b6c51f90da3a666eec13ab35

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /assets/itauverify.php HTTP/1.1
Host: www.cluberesgatedepontos.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Requested-With: XMLHttpRequest
DNT: 1
Connection: keep-alive
Referer: https://www.cluberesgatedepontos.com/cartoes/VewuO/info.php?token=Edvir7Fzj77HXaPFKyiOPeR8awq5IZlm1VMBucxda4iEuK8B6nDcfPS7hRDKMtFOxBYY0DZrNbTsmtIWGyNJOuHE5dka6eDNuwtwhRmp8Aj5BRSdLPnfwUlwU7q21HyE9QhCU0HnPI3PS1LkctvTUd
Cookie: PHPSESSID=9a2d7nm3mb4ksndvvpj2m99kf6
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Fri, 02 Jun 2023 12:13:58 GMT
content-type: text/html; charset=UTF-8
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: no-store, no-cache, must-revalidate
pragma: no-cache
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=7jJrREloCi7LnE0ieNaufvYgEv4z5swgvF9pvYbJBiTtATap8rNltUGhN1vqJ2y0%2BomoKhP1t9zNd99xmrulo3pih%2Bub3Dhf6gufYFuILjuwnXvAenRK%2FT8CmtP8GIq6ReffY4%2F8u29d6pFQwVhv"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7d0f9d061bb0b505-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

www.cluberesgatedepontos.com/assets/itauverify.php

188.114.96.1

200 OK

1 B

URL GET HTTP/3
www.cluberesgatedepontos.com/assets/itauverify.php
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.cluberesgatedepontos.com/cartoes/VewuO/info.php?token=Edvir7Fzj77HXaPFKyiOPeR8awq5IZlm1VMBucxda4iEuK8B6nDcfPS7hRDKMtFOxBYY0DZrNbTsmtIWGyNJOuHE5dka6eDNuwtwhRmp8Aj5BRSdLPnfwUlwU7q21HyE9QhCU0HnPI3PS1LkctvTUd
Certificate
IssuerGoogle Trust Services LLC
Subjectcluberesgatedepontos.com
Fingerprint35:91:6A:3D:C9:9E:86:88:FE:5A:42:1B:DC:61:0C:BD:E0:11:E7:81
ValidityMon, 15 May 2023 16:24:46 GMT - Sun, 13 Aug 2023 16:24:45 GMT

File type
very short file (no magic)
Size
1 B (1 bytes)
Hash
c81e728d9d4c2f636f067f89cc14862c
da4b9237bacccdf19c0760cab7aec4a8359010b0
d4735e3a265e16eee03f59718b9b5d03019c07d8b6c51f90da3a666eec13ab35

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /assets/itauverify.php HTTP/1.1
Host: www.cluberesgatedepontos.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Requested-With: XMLHttpRequest
DNT: 1
Connection: keep-alive
Referer: https://www.cluberesgatedepontos.com/cartoes/VewuO/info.php?token=Edvir7Fzj77HXaPFKyiOPeR8awq5IZlm1VMBucxda4iEuK8B6nDcfPS7hRDKMtFOxBYY0DZrNbTsmtIWGyNJOuHE5dka6eDNuwtwhRmp8Aj5BRSdLPnfwUlwU7q21HyE9QhCU0HnPI3PS1LkctvTUd
Cookie: PHPSESSID=9a2d7nm3mb4ksndvvpj2m99kf6
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Fri, 02 Jun 2023 12:13:59 GMT
content-type: text/html; charset=UTF-8
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: no-store, no-cache, must-revalidate
pragma: no-cache
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=5AWk%2BFn4Ogt%2F%2F9NAC03aVF%2BPmEEb2%2BmsvLRCyunX2HlakdsM22K73vB0EKmbNxYkzNaCYDJBHPaS3DY16kaTw%2B34JiDYtGsMavhDpxaRcNuR9Vtx%2BlPW%2BV7b9wwGWKUAxe%2FlIXoAxVevE5Ux2jR5"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7d0f9d10b9bfb505-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

www.cluberesgatedepontos.com/cartoes/VewuO/info.php?token=Edvir7Fzj77HXaPFKyiOPeR8awq5IZlm1VMBucxda4iEuK8B6nDcfPS7hRDKMtFOxBYY0DZrNbTsmtIWGyNJOuHE5dka6eDNuwtwhRmp8Aj5BRSdLPnfwUlwU7q21HyE9QhCU0HnPI3PS1LkctvTUd

188.114.96.1

200 OK

4.8 kB

URL User Request GET HTTP/2
www.cluberesgatedepontos.com/cartoes/VewuO/info.php?token=Edvir7Fzj77HXaPFKyiOPeR8awq5IZlm1VMBucxda4iEuK8B6nDcfPS7hRDKMtFOxBYY0DZrNbTsmtIWGyNJOuHE5dka6eDNuwtwhRmp8Aj5BRSdLPnfwUlwU7q21HyE9QhCU0HnPI3PS1LkctvTUd
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Certificate
IssuerGoogle Trust Services LLC
Subjectcluberesgatedepontos.com
Fingerprint35:91:6A:3D:C9:9E:86:88:FE:5A:42:1B:DC:61:0C:BD:E0:11:E7:81
ValidityMon, 15 May 2023 16:24:46 GMT - Sun, 13 Aug 2023 16:24:45 GMT

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document, Unicode text, UTF-8 text, with very long lines (5274), with no line terminators
Size
4.8 kB (4790 bytes)
Hash
dbc58792f6ed02ebaad22743f70d26fc
1e548ee19757efb1a1d8ec09ccfb0f7c8027ca45
90ac17dc8d951f4b88612d5da0b70fbcb290f8e1f376d6e1bd85227308ec422a

Detections

Analyzer	Verdict	Alert
openphish	Itau Unibanco S.A
quad9	Sinkholed

HTTP Headers

GET /cartoes/VewuO/info.php?token=Edvir7Fzj77HXaPFKyiOPeR8awq5IZlm1VMBucxda4iEuK8B6nDcfPS7hRDKMtFOxBYY0DZrNbTsmtIWGyNJOuHE5dka6eDNuwtwhRmp8Aj5BRSdLPnfwUlwU7q21HyE9QhCU0HnPI3PS1LkctvTUd HTTP/1.1
Host: www.cluberesgatedepontos.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Fri, 02 Jun 2023 12:13:46 GMT
content-type: text/html; charset=UTF-8
vary: Accept-Encoding
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=xw%2Bru0NhBTmlpc6bIZy6ZnmrvPYlawB9k2Cn8udUWDCr0cLQ9PG84qQBu7AdZqH2DGje0CwS%2Bakz02lX57EC6yf7iWNiKWo%2BpW%2BD%2BJBymgh7EJ%2F4YMN%2BV%2BptXNtDWTDZq8ibuVFEZoK3RK8Ot4bi"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7d0f9cbed8121c02-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

www.cluberesgatedepontos.com/assets/js/jquery-3.2.1.min.js

188.114.96.1

200 OK

87 kB

URL GET HTTP/3
www.cluberesgatedepontos.com/assets/js/jquery-3.2.1.min.js
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.cluberesgatedepontos.com/cartoes/VewuO/info.php?token=Edvir7Fzj77HXaPFKyiOPeR8awq5IZlm1VMBucxda4iEuK8B6nDcfPS7hRDKMtFOxBYY0DZrNbTsmtIWGyNJOuHE5dka6eDNuwtwhRmp8Aj5BRSdLPnfwUlwU7q21HyE9QhCU0HnPI3PS1LkctvTUd
Certificate
IssuerGoogle Trust Services LLC
Subjectcluberesgatedepontos.com
Fingerprint35:91:6A:3D:C9:9E:86:88:FE:5A:42:1B:DC:61:0C:BD:E0:11:E7:81
ValidityMon, 15 May 2023 16:24:46 GMT - Sun, 13 Aug 2023 16:24:45 GMT

File type
ASCII text, with very long lines (32058)
Size
87 kB (86659 bytes)
Hash
c9f5aeeca3ad37bf2aa006139b935f0a
1055018c28ab41087ef9ccefe411606893dabea2
87083882cc6015984eb0411a99d3981817f5dc5c90ba24f0940420c5548d82de

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /assets/js/jquery-3.2.1.min.js HTTP/1.1
Host: www.cluberesgatedepontos.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.cluberesgatedepontos.com/cartoes/VewuO/info.php?token=Edvir7Fzj77HXaPFKyiOPeR8awq5IZlm1VMBucxda4iEuK8B6nDcfPS7hRDKMtFOxBYY0DZrNbTsmtIWGyNJOuHE5dka6eDNuwtwhRmp8Aj5BRSdLPnfwUlwU7q21HyE9QhCU0HnPI3PS1LkctvTUd
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Fri, 02 Jun 2023 12:13:47 GMT
content-type: text/javascript
last-modified: Wed, 14 Dec 2022 16:51:01 GMT
etag: W/"15283-5efcc8a95e740-gzip"
vary: Accept-Encoding
cache-control: max-age=14400
cf-cache-status: HIT
age: 42
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=vntiFYBXeRoiWD9js5G%2BzV%2FUavxS743ptP%2BOh75JRMog73QmODPbAyPE80MB%2FXY7nZgWSXAZiUZF%2B8BqVIvj5Zt4YWw8a%2FyjI1oyzzhpUpghf20yWrdCJrfZsJOpxfgwOTNFaRroyvISjaGn%2FSvp"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7d0f9cc36862b505-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

www.cluberesgatedepontos.com/assets/js/mkscript.js

188.114.96.1

200 OK

9.0 kB

URL GET HTTP/3
www.cluberesgatedepontos.com/assets/js/mkscript.js
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.cluberesgatedepontos.com/cartoes/VewuO/info.php?token=Edvir7Fzj77HXaPFKyiOPeR8awq5IZlm1VMBucxda4iEuK8B6nDcfPS7hRDKMtFOxBYY0DZrNbTsmtIWGyNJOuHE5dka6eDNuwtwhRmp8Aj5BRSdLPnfwUlwU7q21HyE9QhCU0HnPI3PS1LkctvTUd
Certificate
IssuerGoogle Trust Services LLC
Subjectcluberesgatedepontos.com
Fingerprint35:91:6A:3D:C9:9E:86:88:FE:5A:42:1B:DC:61:0C:BD:E0:11:E7:81
ValidityMon, 15 May 2023 16:24:46 GMT - Sun, 13 Aug 2023 16:24:45 GMT

File type
Unicode text, UTF-8 text, with very long lines (9824), with no line terminators
Size
9.0 kB (9020 bytes)
Hash
5bb7369a7836e8f0bebfccbd3cd88a9b
5b82c12ed0e7063133e7436164a108553b8fc1ff
919399f6be36f26d4f49cb38b860f8d0c72744ef4f587395f415c0bce2f2fdf0

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /assets/js/mkscript.js HTTP/1.1
Host: www.cluberesgatedepontos.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.cluberesgatedepontos.com/cartoes/VewuO/info.php?token=Edvir7Fzj77HXaPFKyiOPeR8awq5IZlm1VMBucxda4iEuK8B6nDcfPS7hRDKMtFOxBYY0DZrNbTsmtIWGyNJOuHE5dka6eDNuwtwhRmp8Aj5BRSdLPnfwUlwU7q21HyE9QhCU0HnPI3PS1LkctvTUd
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Fri, 02 Jun 2023 12:13:47 GMT
content-type: text/javascript
last-modified: Wed, 14 Dec 2022 16:51:01 GMT
etag: W/"233c-5efcc8a95e740-gzip"
vary: Accept-Encoding
cache-control: max-age=14400
cf-cache-status: HIT
age: 42
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=SLD6TF6h3sjFOjBlOIZwq0330AtKbryJiLTBcSrCDn%2BIlKw5SisagnECgFmrLPRr8whblJCt4%2FbmcVSZUpISpoDGHMOFkowJuFe07zrM5CXAcNFhnMY3ItjH%2Bxu40sj6DAQiV5hQKcnYfgik31Gy"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7d0f9cc3686ab505-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

www.cluberesgatedepontos.com/assets/itauverify.php

188.114.96.1

200 OK

1 B

URL GET HTTP/3
www.cluberesgatedepontos.com/assets/itauverify.php
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.cluberesgatedepontos.com/cartoes/VewuO/info.php?token=Edvir7Fzj77HXaPFKyiOPeR8awq5IZlm1VMBucxda4iEuK8B6nDcfPS7hRDKMtFOxBYY0DZrNbTsmtIWGyNJOuHE5dka6eDNuwtwhRmp8Aj5BRSdLPnfwUlwU7q21HyE9QhCU0HnPI3PS1LkctvTUd
Certificate
IssuerGoogle Trust Services LLC
Subjectcluberesgatedepontos.com
Fingerprint35:91:6A:3D:C9:9E:86:88:FE:5A:42:1B:DC:61:0C:BD:E0:11:E7:81
ValidityMon, 15 May 2023 16:24:46 GMT - Sun, 13 Aug 2023 16:24:45 GMT

File type
very short file (no magic)
Size
1 B (1 bytes)
Hash
c81e728d9d4c2f636f067f89cc14862c
da4b9237bacccdf19c0760cab7aec4a8359010b0
d4735e3a265e16eee03f59718b9b5d03019c07d8b6c51f90da3a666eec13ab35

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /assets/itauverify.php HTTP/1.1
Host: www.cluberesgatedepontos.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Requested-With: XMLHttpRequest
DNT: 1
Connection: keep-alive
Referer: https://www.cluberesgatedepontos.com/cartoes/VewuO/info.php?token=Edvir7Fzj77HXaPFKyiOPeR8awq5IZlm1VMBucxda4iEuK8B6nDcfPS7hRDKMtFOxBYY0DZrNbTsmtIWGyNJOuHE5dka6eDNuwtwhRmp8Aj5BRSdLPnfwUlwU7q21HyE9QhCU0HnPI3PS1LkctvTUd
Cookie: PHPSESSID=9a2d7nm3mb4ksndvvpj2m99kf6
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Fri, 02 Jun 2023 12:13:51 GMT
content-type: text/html; charset=UTF-8
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: no-store, no-cache, must-revalidate
pragma: no-cache
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=6TDZgA1ZR0uxPupnOyelZaPfWuyWrT3Z%2FCjeGd%2Bi76nhNzVGg9sJ7JKQ8%2FjCBBjn4pPyB%2BAV9%2F2s%2Fq9T81cGEeD8klAd6k7Y%2F9AuTBtaLB07srwMMpkt670FlNoUyVnD%2Fs3BlV16oTsQ49GiPNDr"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7d0f9cdb68b0b505-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

www.cluberesgatedepontos.com/assets/itauverify.php

188.114.96.1

200 OK

1 B

URL GET HTTP/3
www.cluberesgatedepontos.com/assets/itauverify.php
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.cluberesgatedepontos.com/cartoes/VewuO/info.php?token=Edvir7Fzj77HXaPFKyiOPeR8awq5IZlm1VMBucxda4iEuK8B6nDcfPS7hRDKMtFOxBYY0DZrNbTsmtIWGyNJOuHE5dka6eDNuwtwhRmp8Aj5BRSdLPnfwUlwU7q21HyE9QhCU0HnPI3PS1LkctvTUd
Certificate
IssuerGoogle Trust Services LLC
Subjectcluberesgatedepontos.com
Fingerprint35:91:6A:3D:C9:9E:86:88:FE:5A:42:1B:DC:61:0C:BD:E0:11:E7:81
ValidityMon, 15 May 2023 16:24:46 GMT - Sun, 13 Aug 2023 16:24:45 GMT

File type
very short file (no magic)
Size
1 B (1 bytes)
Hash
c81e728d9d4c2f636f067f89cc14862c
da4b9237bacccdf19c0760cab7aec4a8359010b0
d4735e3a265e16eee03f59718b9b5d03019c07d8b6c51f90da3a666eec13ab35

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /assets/itauverify.php HTTP/1.1
Host: www.cluberesgatedepontos.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Requested-With: XMLHttpRequest
DNT: 1
Connection: keep-alive
Referer: https://www.cluberesgatedepontos.com/cartoes/VewuO/info.php?token=Edvir7Fzj77HXaPFKyiOPeR8awq5IZlm1VMBucxda4iEuK8B6nDcfPS7hRDKMtFOxBYY0DZrNbTsmtIWGyNJOuHE5dka6eDNuwtwhRmp8Aj5BRSdLPnfwUlwU7q21HyE9QhCU0HnPI3PS1LkctvTUd
Cookie: PHPSESSID=9a2d7nm3mb4ksndvvpj2m99kf6
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Fri, 02 Jun 2023 12:13:53 GMT
content-type: text/html; charset=UTF-8
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: no-store, no-cache, must-revalidate
pragma: no-cache
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=rNimqmGuHgWfhvqKH9YHcMkdXv1dN9NHHiMiOFqheYcsEOv2hSXCDaWyJlKMOpP7pIaPNyQupdZfM84PHkSXUI3VRL1tlHZ2iwAxbnEN40jivtsAfa4Dr%2BPflM2vtF4xaqn0qK3l1iNmsnd9p6TM"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7d0f9ceb6ed4b505-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

www.cluberesgatedepontos.com/assets/itauverify.php

188.114.96.1

200 OK

1 B

URL GET HTTP/3
www.cluberesgatedepontos.com/assets/itauverify.php
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.cluberesgatedepontos.com/cartoes/VewuO/info.php?token=Edvir7Fzj77HXaPFKyiOPeR8awq5IZlm1VMBucxda4iEuK8B6nDcfPS7hRDKMtFOxBYY0DZrNbTsmtIWGyNJOuHE5dka6eDNuwtwhRmp8Aj5BRSdLPnfwUlwU7q21HyE9QhCU0HnPI3PS1LkctvTUd
Certificate
IssuerGoogle Trust Services LLC
Subjectcluberesgatedepontos.com
Fingerprint35:91:6A:3D:C9:9E:86:88:FE:5A:42:1B:DC:61:0C:BD:E0:11:E7:81
ValidityMon, 15 May 2023 16:24:46 GMT - Sun, 13 Aug 2023 16:24:45 GMT

File type
very short file (no magic)
Size
1 B (1 bytes)
Hash
c81e728d9d4c2f636f067f89cc14862c
da4b9237bacccdf19c0760cab7aec4a8359010b0
d4735e3a265e16eee03f59718b9b5d03019c07d8b6c51f90da3a666eec13ab35

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /assets/itauverify.php HTTP/1.1
Host: www.cluberesgatedepontos.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Requested-With: XMLHttpRequest
DNT: 1
Connection: keep-alive
Referer: https://www.cluberesgatedepontos.com/cartoes/VewuO/info.php?token=Edvir7Fzj77HXaPFKyiOPeR8awq5IZlm1VMBucxda4iEuK8B6nDcfPS7hRDKMtFOxBYY0DZrNbTsmtIWGyNJOuHE5dka6eDNuwtwhRmp8Aj5BRSdLPnfwUlwU7q21HyE9QhCU0HnPI3PS1LkctvTUd
Cookie: PHPSESSID=9a2d7nm3mb4ksndvvpj2m99kf6
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Fri, 02 Jun 2023 12:13:56 GMT
content-type: text/html; charset=UTF-8
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: no-store, no-cache, must-revalidate
pragma: no-cache
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=cm9L3NNBhaAFpAtcrgRngoGdr0MRYkXwrRICtouoHtX0Smbc%2FxLs7a%2F7Way8sp8tReoq9tYzRa8NmUIZz0qj8eZmwOpt0xHgyzrjXfA47MnO%2BrvwYikV9UpfC5eBdbmvbL%2BBM5GYwKKWJoZPotrT"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7d0f9cfb6c6cb505-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

www.cluberesgatedepontos.com/assets/itauverify.php

188.114.96.1

200 OK

1 B

URL GET HTTP/3
www.cluberesgatedepontos.com/assets/itauverify.php
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.cluberesgatedepontos.com/cartoes/VewuO/info.php?token=Edvir7Fzj77HXaPFKyiOPeR8awq5IZlm1VMBucxda4iEuK8B6nDcfPS7hRDKMtFOxBYY0DZrNbTsmtIWGyNJOuHE5dka6eDNuwtwhRmp8Aj5BRSdLPnfwUlwU7q21HyE9QhCU0HnPI3PS1LkctvTUd
Certificate
IssuerGoogle Trust Services LLC
Subjectcluberesgatedepontos.com
Fingerprint35:91:6A:3D:C9:9E:86:88:FE:5A:42:1B:DC:61:0C:BD:E0:11:E7:81
ValidityMon, 15 May 2023 16:24:46 GMT - Sun, 13 Aug 2023 16:24:45 GMT

File type
very short file (no magic)
Size
1 B (1 bytes)
Hash
c81e728d9d4c2f636f067f89cc14862c
da4b9237bacccdf19c0760cab7aec4a8359010b0
d4735e3a265e16eee03f59718b9b5d03019c07d8b6c51f90da3a666eec13ab35

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /assets/itauverify.php HTTP/1.1
Host: www.cluberesgatedepontos.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Requested-With: XMLHttpRequest
DNT: 1
Connection: keep-alive
Referer: https://www.cluberesgatedepontos.com/cartoes/VewuO/info.php?token=Edvir7Fzj77HXaPFKyiOPeR8awq5IZlm1VMBucxda4iEuK8B6nDcfPS7hRDKMtFOxBYY0DZrNbTsmtIWGyNJOuHE5dka6eDNuwtwhRmp8Aj5BRSdLPnfwUlwU7q21HyE9QhCU0HnPI3PS1LkctvTUd
Cookie: PHPSESSID=9a2d7nm3mb4ksndvvpj2m99kf6
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Fri, 02 Jun 2023 12:13:53 GMT
content-type: text/html; charset=UTF-8
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: no-store, no-cache, must-revalidate
pragma: no-cache
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=tNWrcHNMfxbW0F8z4EYa1W8axIxs17xvt0fcoFNTIYh%2FfeUpa6pb8vDr1BNRSNVyk9b21XlQUh5UnY7pH6wEvsbhndgVtnIA7EDlBHIKsVBOmY%2F4cOdNIJ2kAXFHGDKaPP%2FIvKcioe4YmLs6s%2FDA"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7d0f9ce60fdfb505-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

www.cluberesgatedepontos.com/assets/itauverify.php

188.114.96.1

200 OK

1 B

URL GET HTTP/3
www.cluberesgatedepontos.com/assets/itauverify.php
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.cluberesgatedepontos.com/cartoes/VewuO/info.php?token=Edvir7Fzj77HXaPFKyiOPeR8awq5IZlm1VMBucxda4iEuK8B6nDcfPS7hRDKMtFOxBYY0DZrNbTsmtIWGyNJOuHE5dka6eDNuwtwhRmp8Aj5BRSdLPnfwUlwU7q21HyE9QhCU0HnPI3PS1LkctvTUd
Certificate
IssuerGoogle Trust Services LLC
Subjectcluberesgatedepontos.com
Fingerprint35:91:6A:3D:C9:9E:86:88:FE:5A:42:1B:DC:61:0C:BD:E0:11:E7:81
ValidityMon, 15 May 2023 16:24:46 GMT - Sun, 13 Aug 2023 16:24:45 GMT

File type
very short file (no magic)
Size
1 B (1 bytes)
Hash
c81e728d9d4c2f636f067f89cc14862c
da4b9237bacccdf19c0760cab7aec4a8359010b0
d4735e3a265e16eee03f59718b9b5d03019c07d8b6c51f90da3a666eec13ab35

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /assets/itauverify.php HTTP/1.1
Host: www.cluberesgatedepontos.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Requested-With: XMLHttpRequest
DNT: 1
Connection: keep-alive
Referer: https://www.cluberesgatedepontos.com/cartoes/VewuO/info.php?token=Edvir7Fzj77HXaPFKyiOPeR8awq5IZlm1VMBucxda4iEuK8B6nDcfPS7hRDKMtFOxBYY0DZrNbTsmtIWGyNJOuHE5dka6eDNuwtwhRmp8Aj5BRSdLPnfwUlwU7q21HyE9QhCU0HnPI3PS1LkctvTUd
Cookie: PHPSESSID=9a2d7nm3mb4ksndvvpj2m99kf6
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Fri, 02 Jun 2023 12:13:55 GMT
content-type: text/html; charset=UTF-8
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: no-store, no-cache, must-revalidate
pragma: no-cache
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=pXg6g1CmUC%2BnnaC3zTByYlsq0g1zI9WG6VtHbneLp2B%2FhVWlOI3GU73kEZ9Gv5LCOgvchgH0%2FA3VasFqSlbxqT%2F076oz1NqfrIxQwswL%2BMB5nQzg10dmPC7K8bWT%2FLlG4f6HxMCdFpiKEhyLrGz5"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7d0f9cf60cdbb505-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

www.cluberesgatedepontos.com/assets/itauverify.php

188.114.96.1

200 OK

1 B

URL GET HTTP/3
www.cluberesgatedepontos.com/assets/itauverify.php
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.cluberesgatedepontos.com/cartoes/VewuO/info.php?token=Edvir7Fzj77HXaPFKyiOPeR8awq5IZlm1VMBucxda4iEuK8B6nDcfPS7hRDKMtFOxBYY0DZrNbTsmtIWGyNJOuHE5dka6eDNuwtwhRmp8Aj5BRSdLPnfwUlwU7q21HyE9QhCU0HnPI3PS1LkctvTUd
Certificate
IssuerGoogle Trust Services LLC
Subjectcluberesgatedepontos.com
Fingerprint35:91:6A:3D:C9:9E:86:88:FE:5A:42:1B:DC:61:0C:BD:E0:11:E7:81
ValidityMon, 15 May 2023 16:24:46 GMT - Sun, 13 Aug 2023 16:24:45 GMT

File type
very short file (no magic)
Size
1 B (1 bytes)
Hash
c81e728d9d4c2f636f067f89cc14862c
da4b9237bacccdf19c0760cab7aec4a8359010b0
d4735e3a265e16eee03f59718b9b5d03019c07d8b6c51f90da3a666eec13ab35

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /assets/itauverify.php HTTP/1.1
Host: www.cluberesgatedepontos.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Requested-With: XMLHttpRequest
DNT: 1
Connection: keep-alive
Referer: https://www.cluberesgatedepontos.com/cartoes/VewuO/info.php?token=Edvir7Fzj77HXaPFKyiOPeR8awq5IZlm1VMBucxda4iEuK8B6nDcfPS7hRDKMtFOxBYY0DZrNbTsmtIWGyNJOuHE5dka6eDNuwtwhRmp8Aj5BRSdLPnfwUlwU7q21HyE9QhCU0HnPI3PS1LkctvTUd
Cookie: PHPSESSID=9a2d7nm3mb4ksndvvpj2m99kf6
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Fri, 02 Jun 2023 12:13:57 GMT
content-type: text/html; charset=UTF-8
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: no-store, no-cache, must-revalidate
pragma: no-cache
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=aNilkcNM3rbMr8QR5aUU8NOlZ1wD9Yt3%2FS4ALTmEwmZnPg6ss%2BV%2B5Vw8S%2Bo0jKO%2F99AieY9h5%2BBJqmpsyRnNEYW7cAnfOJs4%2FtO1Q0vjSsSXucb1lRdoz7oQ%2FyDupyEcocoyLUUxwM%2BPDMsYhu5G"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7d0f9d00bc3fb505-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

www.cluberesgatedepontos.com/assets/itauverify.php

188.114.96.1

200 OK

1 B

URL GET HTTP/3
www.cluberesgatedepontos.com/assets/itauverify.php
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.cluberesgatedepontos.com/cartoes/VewuO/info.php?token=Edvir7Fzj77HXaPFKyiOPeR8awq5IZlm1VMBucxda4iEuK8B6nDcfPS7hRDKMtFOxBYY0DZrNbTsmtIWGyNJOuHE5dka6eDNuwtwhRmp8Aj5BRSdLPnfwUlwU7q21HyE9QhCU0HnPI3PS1LkctvTUd
Certificate
IssuerGoogle Trust Services LLC
Subjectcluberesgatedepontos.com
Fingerprint35:91:6A:3D:C9:9E:86:88:FE:5A:42:1B:DC:61:0C:BD:E0:11:E7:81
ValidityMon, 15 May 2023 16:24:46 GMT - Sun, 13 Aug 2023 16:24:45 GMT

File type
very short file (no magic)
Size
1 B (1 bytes)
Hash
c81e728d9d4c2f636f067f89cc14862c
da4b9237bacccdf19c0760cab7aec4a8359010b0
d4735e3a265e16eee03f59718b9b5d03019c07d8b6c51f90da3a666eec13ab35

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /assets/itauverify.php HTTP/1.1
Host: www.cluberesgatedepontos.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Requested-With: XMLHttpRequest
DNT: 1
Connection: keep-alive
Referer: https://www.cluberesgatedepontos.com/cartoes/VewuO/info.php?token=Edvir7Fzj77HXaPFKyiOPeR8awq5IZlm1VMBucxda4iEuK8B6nDcfPS7hRDKMtFOxBYY0DZrNbTsmtIWGyNJOuHE5dka6eDNuwtwhRmp8Aj5BRSdLPnfwUlwU7q21HyE9QhCU0HnPI3PS1LkctvTUd
Cookie: PHPSESSID=9a2d7nm3mb4ksndvvpj2m99kf6
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Fri, 02 Jun 2023 12:13:59 GMT
content-type: text/html; charset=UTF-8
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: no-store, no-cache, must-revalidate
pragma: no-cache
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=IngZDy%2BtYsM0SfUoyTDY%2FItPywxvChRTCbJ4JRBxFEClwhU9MtdgYqmeWN998AQrhjsPp%2F01RhGuFbV%2BfAKH4RVi1a1h%2Fjxk7FtK5bf5i8yiIATSbHMC0Nk3r%2FacuCz4isYYgvtz1MmqIn8axVDD"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7d0f9d0b5a71b505-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

www.cluberesgatedepontos.com/assets/css/bootstrap.css

188.114.96.1

200 OK

192 kB

URL GET HTTP/3
www.cluberesgatedepontos.com/assets/css/bootstrap.css
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.cluberesgatedepontos.com/cartoes/VewuO/info.php?token=Edvir7Fzj77HXaPFKyiOPeR8awq5IZlm1VMBucxda4iEuK8B6nDcfPS7hRDKMtFOxBYY0DZrNbTsmtIWGyNJOuHE5dka6eDNuwtwhRmp8Aj5BRSdLPnfwUlwU7q21HyE9QhCU0HnPI3PS1LkctvTUd
Certificate
IssuerGoogle Trust Services LLC
Subjectcluberesgatedepontos.com
Fingerprint35:91:6A:3D:C9:9E:86:88:FE:5A:42:1B:DC:61:0C:BD:E0:11:E7:81
ValidityMon, 15 May 2023 16:24:46 GMT - Sun, 13 Aug 2023 16:24:45 GMT

File type
ASCII text, with very long lines (570)
Size
192 kB (192348 bytes)
Hash
bd551f56ce2be3eba2812e605ab4f5b2
94d6450720dd8deb413760cc9184204b46802e9c
35fbb6dc3891aacaf1ffa07abec2344fdbc454aab533a2a03bcf93577eb7837b

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /assets/css/bootstrap.css HTTP/1.1
Host: www.cluberesgatedepontos.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.cluberesgatedepontos.com/cartoes/VewuO/info.php?token=Edvir7Fzj77HXaPFKyiOPeR8awq5IZlm1VMBucxda4iEuK8B6nDcfPS7hRDKMtFOxBYY0DZrNbTsmtIWGyNJOuHE5dka6eDNuwtwhRmp8Aj5BRSdLPnfwUlwU7q21HyE9QhCU0HnPI3PS1LkctvTUd
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Fri, 02 Jun 2023 12:13:47 GMT
content-type: text/css
last-modified: Wed, 14 Dec 2022 16:51:01 GMT
etag: W/"2ef5c-5efcc8a95e740-gzip"
vary: Accept-Encoding
cache-control: max-age=14400
cf-cache-status: HIT
age: 42
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=hJ1aky3ol7qkfc%2FLX50qxlShNSV%2FZdxgno7a1E7oWyc5CofyA0peDXX6CqI920FlfgYpDtwn3akHWtsRHCPHdU2pMBiDgs8tyF0usITTScJtURGe%2FPzs1wUsobPxx8E8vYyWbpHVb%2Bi2PK3XYjBv"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7d0f9cc34828b505-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

www.cluberesgatedepontos.com/assets/js/jquery.mask.min.js

188.114.96.1

200 OK

4.9 kB

URL GET HTTP/3
www.cluberesgatedepontos.com/assets/js/jquery.mask.min.js
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.cluberesgatedepontos.com/cartoes/VewuO/info.php?token=Edvir7Fzj77HXaPFKyiOPeR8awq5IZlm1VMBucxda4iEuK8B6nDcfPS7hRDKMtFOxBYY0DZrNbTsmtIWGyNJOuHE5dka6eDNuwtwhRmp8Aj5BRSdLPnfwUlwU7q21HyE9QhCU0HnPI3PS1LkctvTUd
Certificate
IssuerGoogle Trust Services LLC
Subjectcluberesgatedepontos.com
Fingerprint35:91:6A:3D:C9:9E:86:88:FE:5A:42:1B:DC:61:0C:BD:E0:11:E7:81
ValidityMon, 15 May 2023 16:24:46 GMT - Sun, 13 Aug 2023 16:24:45 GMT

File type
ASCII text, with very long lines (5005), with no line terminators
Size
4.9 kB (4860 bytes)
Hash
3cc1dfe677c36c56796433e499c3ba24
e6f44eb570332e693651aa0150e8acdc84e1521b
ba9ad316b0c4c4a43ed71e6252dcc37d7d568994ff75a8fa052d416207c27929

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /assets/js/jquery.mask.min.js HTTP/1.1
Host: www.cluberesgatedepontos.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.cluberesgatedepontos.com/cartoes/VewuO/info.php?token=Edvir7Fzj77HXaPFKyiOPeR8awq5IZlm1VMBucxda4iEuK8B6nDcfPS7hRDKMtFOxBYY0DZrNbTsmtIWGyNJOuHE5dka6eDNuwtwhRmp8Aj5BRSdLPnfwUlwU7q21HyE9QhCU0HnPI3PS1LkctvTUd
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Fri, 02 Jun 2023 12:13:47 GMT
content-type: text/javascript
last-modified: Wed, 14 Dec 2022 16:51:01 GMT
etag: W/"12fc-5efcc8a95e740-gzip"
vary: Accept-Encoding
cache-control: max-age=14400
cf-cache-status: HIT
age: 41
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=pD%2Br8xOUAeb5S0dxRCqj8sGtu1fv7%2BzeYWGo6P661iBx2UVKld%2BuG62FvZ7w8E4%2FYVrvfyv2%2FhSwFcsTYr%2FFHTjiN8qgT4pDzzq4%2BM9ohXZ597bfcTDydv5zaROHI3p9U8AzaGlJ42Xkz5gn%2FK51"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7d0f9cc3686bb505-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

www.cluberesgatedepontos.com/assets/js/cpf.js

188.114.96.1

200 OK

1.1 kB

URL GET HTTP/3
www.cluberesgatedepontos.com/assets/js/cpf.js
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.cluberesgatedepontos.com/cartoes/VewuO/info.php?token=Edvir7Fzj77HXaPFKyiOPeR8awq5IZlm1VMBucxda4iEuK8B6nDcfPS7hRDKMtFOxBYY0DZrNbTsmtIWGyNJOuHE5dka6eDNuwtwhRmp8Aj5BRSdLPnfwUlwU7q21HyE9QhCU0HnPI3PS1LkctvTUd
Certificate
IssuerGoogle Trust Services LLC
Subjectcluberesgatedepontos.com
Fingerprint35:91:6A:3D:C9:9E:86:88:FE:5A:42:1B:DC:61:0C:BD:E0:11:E7:81
ValidityMon, 15 May 2023 16:24:46 GMT - Sun, 13 Aug 2023 16:24:45 GMT

File type
ASCII text, with very long lines (1162), with no line terminators
Size
1.1 kB (1064 bytes)
Hash
cc7b609ddc2c44f4377446ce16dc9d1d
d4cb4160f60db0de67e5023a1066cf6eb40f8d26
29365196d1055a2671c3b76f31fe7cc960f0fe00eb4d3e956810957334c8ab17

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /assets/js/cpf.js HTTP/1.1
Host: www.cluberesgatedepontos.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.cluberesgatedepontos.com/cartoes/VewuO/info.php?token=Edvir7Fzj77HXaPFKyiOPeR8awq5IZlm1VMBucxda4iEuK8B6nDcfPS7hRDKMtFOxBYY0DZrNbTsmtIWGyNJOuHE5dka6eDNuwtwhRmp8Aj5BRSdLPnfwUlwU7q21HyE9QhCU0HnPI3PS1LkctvTUd
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Fri, 02 Jun 2023 12:13:47 GMT
content-type: text/javascript
last-modified: Wed, 14 Dec 2022 16:51:01 GMT
etag: W/"428-5efcc8a95e740-gzip"
vary: Accept-Encoding
cache-control: max-age=14400
cf-cache-status: EXPIRED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Tp7SyvmAPYg20VYKO7aELT5RAnVdhFfQbcdrYnA4tbJ9cZn4DkN%2B1klvx9iR1%2BV1HtxdYa8UmMwPFFEb2laTkYMcOLQPa8hMLFnh1%2FK0ojXt4Y%2BtH9N1KxrJ%2FVDdxxPMO666JIBeVx42KTfnas0v"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7d0f9cc36870b505-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

www.cluberesgatedepontos.com/assets/img/favico.ico

188.114.96.1

200 OK

15 kB

URL GET HTTP/3
www.cluberesgatedepontos.com/assets/img/favico.ico
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.cluberesgatedepontos.com/cartoes/VewuO/info.php?token=Edvir7Fzj77HXaPFKyiOPeR8awq5IZlm1VMBucxda4iEuK8B6nDcfPS7hRDKMtFOxBYY0DZrNbTsmtIWGyNJOuHE5dka6eDNuwtwhRmp8Aj5BRSdLPnfwUlwU7q21HyE9QhCU0HnPI3PS1LkctvTUd
Certificate
IssuerGoogle Trust Services LLC
Subjectcluberesgatedepontos.com
Fingerprint35:91:6A:3D:C9:9E:86:88:FE:5A:42:1B:DC:61:0C:BD:E0:11:E7:81
ValidityMon, 15 May 2023 16:24:46 GMT - Sun, 13 Aug 2023 16:24:45 GMT

File type
MS Windows icon resource - 3 icons, 16x16, 32 bits/pixel, 32x32, 32 bits/pixel\012- data
Size
15 kB (15406 bytes)
Hash
e8f533b081df5ab0ee10063b7d68ed92
b5b71b87b58a4bc9a8db8e1fe4514ca87ac11324
13776efdf0361eb7e27e1ec66bd927495d769f072641b81a8221d43c6e77193c

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /assets/img/favico.ico HTTP/1.1
Host: www.cluberesgatedepontos.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.cluberesgatedepontos.com/cartoes/VewuO/info.php?token=Edvir7Fzj77HXaPFKyiOPeR8awq5IZlm1VMBucxda4iEuK8B6nDcfPS7hRDKMtFOxBYY0DZrNbTsmtIWGyNJOuHE5dka6eDNuwtwhRmp8Aj5BRSdLPnfwUlwU7q21HyE9QhCU0HnPI3PS1LkctvTUd
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Fri, 02 Jun 2023 12:13:47 GMT
content-type: image/vnd.microsoft.icon
last-modified: Wed, 14 Dec 2022 16:51:01 GMT
etag: W/"3c2e-5efcc8a95e740"
cache-control: max-age=14400
cf-cache-status: HIT
age: 41
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=mIGa6Oisk5TfNi%2BQ5uc4hT0m89gHe%2FHnIfcgQobqqk0WsPVE29HtmnNnyZYGy1TOqaPR%2BdkMI0HwHKwQ0LulSPFvetJ%2FnV9JKbcR48Ra2qaVk0to3D5o2j0CQoFBuH9Me89bE00gVqoLUn7IAaPm"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7d0f9cc61b59b505-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

www.cluberesgatedepontos.com/assets/itauverify.php

188.114.96.1

200 OK

1 B

URL GET HTTP/3
www.cluberesgatedepontos.com/assets/itauverify.php
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.cluberesgatedepontos.com/cartoes/VewuO/info.php?token=Edvir7Fzj77HXaPFKyiOPeR8awq5IZlm1VMBucxda4iEuK8B6nDcfPS7hRDKMtFOxBYY0DZrNbTsmtIWGyNJOuHE5dka6eDNuwtwhRmp8Aj5BRSdLPnfwUlwU7q21HyE9QhCU0HnPI3PS1LkctvTUd
Certificate
IssuerGoogle Trust Services LLC
Subjectcluberesgatedepontos.com
Fingerprint35:91:6A:3D:C9:9E:86:88:FE:5A:42:1B:DC:61:0C:BD:E0:11:E7:81
ValidityMon, 15 May 2023 16:24:46 GMT - Sun, 13 Aug 2023 16:24:45 GMT

File type
very short file (no magic)
Size
1 B (1 bytes)
Hash
c81e728d9d4c2f636f067f89cc14862c
da4b9237bacccdf19c0760cab7aec4a8359010b0
d4735e3a265e16eee03f59718b9b5d03019c07d8b6c51f90da3a666eec13ab35

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /assets/itauverify.php HTTP/1.1
Host: www.cluberesgatedepontos.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Requested-With: XMLHttpRequest
DNT: 1
Connection: keep-alive
Referer: https://www.cluberesgatedepontos.com/cartoes/VewuO/info.php?token=Edvir7Fzj77HXaPFKyiOPeR8awq5IZlm1VMBucxda4iEuK8B6nDcfPS7hRDKMtFOxBYY0DZrNbTsmtIWGyNJOuHE5dka6eDNuwtwhRmp8Aj5BRSdLPnfwUlwU7q21HyE9QhCU0HnPI3PS1LkctvTUd
Cookie: PHPSESSID=9a2d7nm3mb4ksndvvpj2m99kf6
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Fri, 02 Jun 2023 12:14:00 GMT
content-type: text/html; charset=UTF-8
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: no-store, no-cache, must-revalidate
pragma: no-cache
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=3mFgkD7QWdxTgVKdeDi0kqANfhs1YRCL9TQ%2FiktNdUCW9nr78oWCmtotZZ7MhcFbd%2BjX1ArgbGytK9gZ80RQVtWZ4xjrKSeWUAZOBG6XNZapX%2BqhhnH2UPcv793Dn3r3OYPW5KXgFF%2ByOhFtf%2Fm%2F"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7d0f9d1609a4b505-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

www.cluberesgatedepontos.com/assets/js/base.js

188.114.96.1

200 OK

886 B

URL GET HTTP/3
www.cluberesgatedepontos.com/assets/js/base.js
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.cluberesgatedepontos.com/cartoes/VewuO/info.php?token=Edvir7Fzj77HXaPFKyiOPeR8awq5IZlm1VMBucxda4iEuK8B6nDcfPS7hRDKMtFOxBYY0DZrNbTsmtIWGyNJOuHE5dka6eDNuwtwhRmp8Aj5BRSdLPnfwUlwU7q21HyE9QhCU0HnPI3PS1LkctvTUd
Certificate
IssuerGoogle Trust Services LLC
Subjectcluberesgatedepontos.com
Fingerprint35:91:6A:3D:C9:9E:86:88:FE:5A:42:1B:DC:61:0C:BD:E0:11:E7:81
ValidityMon, 15 May 2023 16:24:46 GMT - Sun, 13 Aug 2023 16:24:45 GMT

File type
ASCII text, with very long lines (956), with no line terminators
Size
886 B (886 bytes)
Hash
8ce478718bd3f8ddc831bd976652b08c
e92da5332f14e55f9b9c4456e67111c8bb932f44
753d90a3f0559a9eefa7a6034c703b18f9b932912167308b5435b0eb944362ab

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /assets/js/base.js HTTP/1.1
Host: www.cluberesgatedepontos.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.cluberesgatedepontos.com/cartoes/VewuO/info.php?token=Edvir7Fzj77HXaPFKyiOPeR8awq5IZlm1VMBucxda4iEuK8B6nDcfPS7hRDKMtFOxBYY0DZrNbTsmtIWGyNJOuHE5dka6eDNuwtwhRmp8Aj5BRSdLPnfwUlwU7q21HyE9QhCU0HnPI3PS1LkctvTUd
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Fri, 02 Jun 2023 12:13:47 GMT
content-type: text/javascript
last-modified: Wed, 14 Dec 2022 16:51:01 GMT
etag: W/"376-5efcc8a95e740-gzip"
vary: Accept-Encoding
cache-control: max-age=14400
cf-cache-status: HIT
age: 42
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=RGXJ6PrB9d7lkbBGw6%2B%2Bl%2BdQ1mwdtSJJujQWGEI46SvSflVRW%2BfhxY9rlh43M3tYMfAuDyfv9q4wFbCsPrEUlrnX0Q7Hl6C4Vl7NTduxn8bw4rzjcWNoaQOVO2b7NUuFCDTJxrFbpbN8l4sUjndw"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7d0f9cc3686fb505-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

www.cluberesgatedepontos.com/assets/itauverify.php

188.114.96.1

200 OK

1 B

URL GET HTTP/3
www.cluberesgatedepontos.com/assets/itauverify.php
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.cluberesgatedepontos.com/cartoes/VewuO/info.php?token=Edvir7Fzj77HXaPFKyiOPeR8awq5IZlm1VMBucxda4iEuK8B6nDcfPS7hRDKMtFOxBYY0DZrNbTsmtIWGyNJOuHE5dka6eDNuwtwhRmp8Aj5BRSdLPnfwUlwU7q21HyE9QhCU0HnPI3PS1LkctvTUd
Certificate
IssuerGoogle Trust Services LLC
Subjectcluberesgatedepontos.com
Fingerprint35:91:6A:3D:C9:9E:86:88:FE:5A:42:1B:DC:61:0C:BD:E0:11:E7:81
ValidityMon, 15 May 2023 16:24:46 GMT - Sun, 13 Aug 2023 16:24:45 GMT

File type
very short file (no magic)
Size
1 B (1 bytes)
Hash
c81e728d9d4c2f636f067f89cc14862c
da4b9237bacccdf19c0760cab7aec4a8359010b0
d4735e3a265e16eee03f59718b9b5d03019c07d8b6c51f90da3a666eec13ab35

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /assets/itauverify.php HTTP/1.1
Host: www.cluberesgatedepontos.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Requested-With: XMLHttpRequest
DNT: 1
Connection: keep-alive
Referer: https://www.cluberesgatedepontos.com/cartoes/VewuO/info.php?token=Edvir7Fzj77HXaPFKyiOPeR8awq5IZlm1VMBucxda4iEuK8B6nDcfPS7hRDKMtFOxBYY0DZrNbTsmtIWGyNJOuHE5dka6eDNuwtwhRmp8Aj5BRSdLPnfwUlwU7q21HyE9QhCU0HnPI3PS1LkctvTUd
Cookie: PHPSESSID=9a2d7nm3mb4ksndvvpj2m99kf6
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Fri, 02 Jun 2023 12:13:50 GMT
content-type: text/html; charset=UTF-8
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: no-store, no-cache, must-revalidate
pragma: no-cache
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=9%2F9%2Bc5dj3wnhbXOZWWHajTlkcsQESYlTLk8t8t6Zt7VunxhBb7u5yWqS7J3Yrv1uWpIfQDoaLceZ5aTZ9ZKg%2BmHSl1mq0gjzBJbScsrx4FJUuvBdWE0rXfUvmRdFw%2FvZxbrwPGZZNVYBkRW571DL"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7d0f9cd619c4b505-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

www.cluberesgatedepontos.com/assets/itauverify.php

188.114.96.1

200 OK

1 B

URL GET HTTP/3
www.cluberesgatedepontos.com/assets/itauverify.php
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.cluberesgatedepontos.com/cartoes/VewuO/info.php?token=Edvir7Fzj77HXaPFKyiOPeR8awq5IZlm1VMBucxda4iEuK8B6nDcfPS7hRDKMtFOxBYY0DZrNbTsmtIWGyNJOuHE5dka6eDNuwtwhRmp8Aj5BRSdLPnfwUlwU7q21HyE9QhCU0HnPI3PS1LkctvTUd
Certificate
IssuerGoogle Trust Services LLC
Subjectcluberesgatedepontos.com
Fingerprint35:91:6A:3D:C9:9E:86:88:FE:5A:42:1B:DC:61:0C:BD:E0:11:E7:81
ValidityMon, 15 May 2023 16:24:46 GMT - Sun, 13 Aug 2023 16:24:45 GMT

File type
very short file (no magic)
Size
1 B (1 bytes)
Hash
c81e728d9d4c2f636f067f89cc14862c
da4b9237bacccdf19c0760cab7aec4a8359010b0
d4735e3a265e16eee03f59718b9b5d03019c07d8b6c51f90da3a666eec13ab35

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /assets/itauverify.php HTTP/1.1
Host: www.cluberesgatedepontos.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Requested-With: XMLHttpRequest
DNT: 1
Connection: keep-alive
Referer: https://www.cluberesgatedepontos.com/cartoes/VewuO/info.php?token=Edvir7Fzj77HXaPFKyiOPeR8awq5IZlm1VMBucxda4iEuK8B6nDcfPS7hRDKMtFOxBYY0DZrNbTsmtIWGyNJOuHE5dka6eDNuwtwhRmp8Aj5BRSdLPnfwUlwU7q21HyE9QhCU0HnPI3PS1LkctvTUd
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Fri, 02 Jun 2023 12:13:48 GMT
content-type: text/html; charset=UTF-8
set-cookie: PHPSESSID=9a2d7nm3mb4ksndvvpj2m99kf6; path=/
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: no-store, no-cache, must-revalidate
pragma: no-cache
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=SAKGRjNA7t47XEhsmwdW01gTRIjG2LTBehHnSvXnX3v2nKW1%2B1VOsxpVk4phvpnbAStGJ%2FSiig1ufu6TlKu%2Bd17tph48fxyatExS95V64G3T0LDCmKkGcBM5KC0zSL3ASSwMEUELxrwS%2FVANqp%2Bu"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7d0f9cc61b6ab505-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

www.cluberesgatedepontos.com/assets/itauverify.php

188.114.96.1

200 OK

1 B

URL GET HTTP/3
www.cluberesgatedepontos.com/assets/itauverify.php
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.cluberesgatedepontos.com/cartoes/VewuO/info.php?token=Edvir7Fzj77HXaPFKyiOPeR8awq5IZlm1VMBucxda4iEuK8B6nDcfPS7hRDKMtFOxBYY0DZrNbTsmtIWGyNJOuHE5dka6eDNuwtwhRmp8Aj5BRSdLPnfwUlwU7q21HyE9QhCU0HnPI3PS1LkctvTUd
Certificate
IssuerGoogle Trust Services LLC
Subjectcluberesgatedepontos.com
Fingerprint35:91:6A:3D:C9:9E:86:88:FE:5A:42:1B:DC:61:0C:BD:E0:11:E7:81
ValidityMon, 15 May 2023 16:24:46 GMT - Sun, 13 Aug 2023 16:24:45 GMT

File type
very short file (no magic)
Size
1 B (1 bytes)
Hash
c81e728d9d4c2f636f067f89cc14862c
da4b9237bacccdf19c0760cab7aec4a8359010b0
d4735e3a265e16eee03f59718b9b5d03019c07d8b6c51f90da3a666eec13ab35

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /assets/itauverify.php HTTP/1.1
Host: www.cluberesgatedepontos.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Requested-With: XMLHttpRequest
DNT: 1
Connection: keep-alive
Referer: https://www.cluberesgatedepontos.com/cartoes/VewuO/info.php?token=Edvir7Fzj77HXaPFKyiOPeR8awq5IZlm1VMBucxda4iEuK8B6nDcfPS7hRDKMtFOxBYY0DZrNbTsmtIWGyNJOuHE5dka6eDNuwtwhRmp8Aj5BRSdLPnfwUlwU7q21HyE9QhCU0HnPI3PS1LkctvTUd
Cookie: PHPSESSID=9a2d7nm3mb4ksndvvpj2m99kf6
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Fri, 02 Jun 2023 12:13:48 GMT
content-type: text/html; charset=UTF-8
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: no-store, no-cache, must-revalidate
pragma: no-cache
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=5sPDkbgH1YTXf4JsX%2FYeb%2FFmxfzcaypaLg5yu88AV50h0mnKDZXkLQEJkUOuR2QEiCsrATKZGRrr8AgT0lqLx8aecdU9UGvAv7up4yvLDoruQF0MUlcltv6UzJRjZe1Jj8fwDu36zxwhg3Up6Fof"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7d0f9ccb7a9ab505-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

www.cluberesgatedepontos.com/assets/itauverify.php

188.114.96.1

200 OK

1 B

URL GET HTTP/3
www.cluberesgatedepontos.com/assets/itauverify.php
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.cluberesgatedepontos.com/cartoes/VewuO/info.php?token=Edvir7Fzj77HXaPFKyiOPeR8awq5IZlm1VMBucxda4iEuK8B6nDcfPS7hRDKMtFOxBYY0DZrNbTsmtIWGyNJOuHE5dka6eDNuwtwhRmp8Aj5BRSdLPnfwUlwU7q21HyE9QhCU0HnPI3PS1LkctvTUd
Certificate
IssuerGoogle Trust Services LLC
Subjectcluberesgatedepontos.com
Fingerprint35:91:6A:3D:C9:9E:86:88:FE:5A:42:1B:DC:61:0C:BD:E0:11:E7:81
ValidityMon, 15 May 2023 16:24:46 GMT - Sun, 13 Aug 2023 16:24:45 GMT

File type
very short file (no magic)
Size
1 B (1 bytes)
Hash
c81e728d9d4c2f636f067f89cc14862c
da4b9237bacccdf19c0760cab7aec4a8359010b0
d4735e3a265e16eee03f59718b9b5d03019c07d8b6c51f90da3a666eec13ab35

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /assets/itauverify.php HTTP/1.1
Host: www.cluberesgatedepontos.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Requested-With: XMLHttpRequest
DNT: 1
Connection: keep-alive
Referer: https://www.cluberesgatedepontos.com/cartoes/VewuO/info.php?token=Edvir7Fzj77HXaPFKyiOPeR8awq5IZlm1VMBucxda4iEuK8B6nDcfPS7hRDKMtFOxBYY0DZrNbTsmtIWGyNJOuHE5dka6eDNuwtwhRmp8Aj5BRSdLPnfwUlwU7q21HyE9QhCU0HnPI3PS1LkctvTUd
Cookie: PHPSESSID=9a2d7nm3mb4ksndvvpj2m99kf6
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Fri, 02 Jun 2023 12:13:49 GMT
content-type: text/html; charset=UTF-8
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: no-store, no-cache, must-revalidate
pragma: no-cache
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=LKKq2nqfSEi9dmFka%2BCpETPPpjDbVKZINC8eD4wR67yEQkXUFDIJaGYI%2BlHMocMyy%2BrbHJyXrMm9TcBa4AiX4Mf9W2ZgvE9pm7FB7ThaYrTdCp2jsrJClY2E6wAs6UGUC2N0hf9deBy7%2BX2QNMHp"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7d0f9cd0ba54b505-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

www.cluberesgatedepontos.com/assets/css/estilo.css

188.114.96.1

200 OK

6.4 kB

URL GET HTTP/3
www.cluberesgatedepontos.com/assets/css/estilo.css
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.cluberesgatedepontos.com/cartoes/VewuO/info.php?token=Edvir7Fzj77HXaPFKyiOPeR8awq5IZlm1VMBucxda4iEuK8B6nDcfPS7hRDKMtFOxBYY0DZrNbTsmtIWGyNJOuHE5dka6eDNuwtwhRmp8Aj5BRSdLPnfwUlwU7q21HyE9QhCU0HnPI3PS1LkctvTUd
Certificate
IssuerGoogle Trust Services LLC
Subjectcluberesgatedepontos.com
Fingerprint35:91:6A:3D:C9:9E:86:88:FE:5A:42:1B:DC:61:0C:BD:E0:11:E7:81
ValidityMon, 15 May 2023 16:24:46 GMT - Sun, 13 Aug 2023 16:24:45 GMT

File type
ASCII text, with very long lines (7095), with no line terminators
Size
6.4 kB (6417 bytes)
Hash
018cb1501b96348964183444c480891e
6aea405456bb8abfb40e31a4585e86d7e631c4ca
084ac46726d34d222216d9d99f87339b015b9a1e3f1888e931baceac22821984

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /assets/css/estilo.css HTTP/1.1
Host: www.cluberesgatedepontos.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.cluberesgatedepontos.com/cartoes/VewuO/info.php?token=Edvir7Fzj77HXaPFKyiOPeR8awq5IZlm1VMBucxda4iEuK8B6nDcfPS7hRDKMtFOxBYY0DZrNbTsmtIWGyNJOuHE5dka6eDNuwtwhRmp8Aj5BRSdLPnfwUlwU7q21HyE9QhCU0HnPI3PS1LkctvTUd
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Fri, 02 Jun 2023 12:13:47 GMT
content-type: text/css
last-modified: Wed, 14 Dec 2022 16:51:01 GMT
etag: W/"1911-5efcc8a95e740-gzip"
vary: Accept-Encoding
cache-control: max-age=14400
cf-cache-status: HIT
age: 42
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=sMpo66%2BKJjEEZMFdopUaCDxQUgbQMUMfNLpfcg7xb73hptljGb16tR731Ya44nwvI8j3acVf4U2MO%2FIRcZUVHX0WWOnOa63%2BwhjR0AlB3X9eAghDt%2FtPtJiv28zg5Mb6Q%2FY%2B98NHgJbp3lHiOKqK"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7d0f9cc34834b505-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

OpenPhish

PhishTank

Fortinet's Web Filter

mnemonic secure dns

Quad9 DNS

ThreatFox

JavaScript (10)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL