Report - drraul.com.br/wp-admin/.draa/login.php?cmd=3Dlogin

Report Overview

Submitted URL
drraul.com.br/wp-admin/.draa/login.php?cmd=3Dlogin_submit&id
IP
162.214.195.42
ASN
#46606 UNIFIEDLAYER-AS-1
Submitted
2022-09-17 10:29:10
Access
Website Title
Final URL
Tags
None
urlquery detections
No alerts detected

Detections

urlquery
0
Network Intrusion Detection
0
Threat Detection Systems
54

Domain Summary

Domain / FQDN	Rank	First Seen	Last Seen	Sent	Received	IP
ocsp.digicert.com	86	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	1.3 kB	2.8 kB	93.184.220.29
connect.facebook.net	139	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	828 B	91 kB	31.13.72.12
static.zdassets.com	2154	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	365 B	13 kB	104.18.70.113
ekr.zdassets.com	2396	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	422 B	1.3 kB	104.18.70.113
content-signature-2.cdn.mozilla.net	1152	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	401 B	5.8 kB	143.204.55.110
contile.services.mozilla.com	1114	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	321 B	229 B	34.117.237.239
drraul.com.br	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	379 B	494 B	162.214.195.42
fonts.googleapis.com	8877	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	1.3 kB	2.8 kB	142.250.74.10
region1.google-analytics.com	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	768 B	563 B	216.239.32.36
www.clinicaalameda.com.br	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	413 B	18 kB	162.214.195.42
www.google.com	7	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	503 B	694 B	142.250.74.164
push.services.mozilla.com	2140	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	594 B	127 B	34.214.236.46
ocsp.pki.goog	175	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	4.3 kB	9.1 kB	142.250.74.3
widget-mediator.zopim.com	2693	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	582 B	620 B	52.58.222.8
firefox.settings.services.mozilla.com	867	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	758 B	2.7 kB	143.204.55.36
www.googletagmanager.com	75	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	373 B	44 kB	142.250.74.72
v2.zopim.com	9869	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	1.3 kB	3.8 kB	104.16.104.139
www.google-analytics.com	40	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	361 B	21 kB	142.250.74.174
www.facebook.com	99	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	1.5 kB	52 kB	31.13.72.36
stats.g.doubleclick.net	96	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	592 B	711 B	142.251.1.155
static.xx.fbcdn.net	661	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	7.6 kB	300 kB	31.13.72.12
scontent-arn2-2.xx.fbcdn.net	87860	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	1.2 kB	105 kB	157.240.194.27
r3.o.lencr.org	344	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	2.0 kB	5.3 kB	23.36.77.32
img-getpocket.cdn.mozilla.net	1631	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	3.2 kB	51 kB	34.120.237.76
fonts.gstatic.com	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	968 B	53 kB	142.250.74.163
www.google.no	25607	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	502 B	694 B	142.250.74.3
ocsp.sca1b.amazontrust.com	1015	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	338 B	944 B	143.204.42.156
www.drraul.com.br	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	21 kB	1.8 MB	162.214.195.42

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

OpenPhish

No alerts detected

PhishTank

No alerts detected

Fortinet's Web Filter

Scan Date	Severity	Indicator	Alert
2022-09-17	medium	www.drraul.com.br/wp-content/themes/medicare/magnific-popup.css?ver=5.9.4	Phishing
2022-09-17	medium	www.drraul.com.br/wp-content/plugins/mp-timetable/media/css/style.css?ver=2.4.5	Phishing
2022-09-17	medium	www.drraul.com.br/wp-content/plugins/Marvy%20-%20Ultimate%20Elementor%20Animation%20Addons-v1.5.1/elementor/assets/css/marvy-custom-pro.css?ver=1.5.1	Phishing
2022-09-17	medium	www.drraul.com.br/wp-content/plugins/contact-form-7/includes/css/styles.css?ver=5.5.5	Phishing
2022-09-17	medium	www.drraul.com.br/wp-content/plugins/kivicare-clinic-management-system/assets/css/kcElementor.css?ver=2.3.6	Phishing
2022-09-17	medium	www.drraul.com.br/wp-includes/css/dist/block-library/style.min.css?ver=5.9.4	Phishing
2022-09-17	medium	www.drraul.com.br/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2	Phishing
2022-09-17	medium	www.drraul.com.br/wp-content/plugins/contact-form-7/includes/js/jquery-ui/themes/smoothness/jquery-ui.min.css?ver=1.12.1	Phishing
2022-09-17	medium	www.drraul.com.br/wp-content/plugins/bt_cost_calculator/cc.main.js?ver=5.9.4	Phishing
2022-09-17	medium	www.drraul.com.br/wp-content/plugins/medicare/bt_elements.js?ver=5.9.4	Phishing
2022-09-17	medium	www.drraul.com.br/wp-content/themes/medicare/js/slick.min.js?ver=5.9.4	Phishing
2022-09-17	medium	www.drraul.com.br/wp-content/themes/medicare/js/jquery.magnific-popup.min.js?ver=5.9.4	Phishing
2022-09-17	medium	www.drraul.com.br/wp-content/themes/medicare/js/iscroll.js?ver=5.9.4	Phishing
2022-09-17	medium	www.drraul.com.br/wp-content/themes/medicare/js/html5shiv.min.js?ver=5.9.4	Phishing
2022-09-17	medium	www.drraul.com.br/wp-content/themes/medicare/js/misc.js?ver=5.9.4	Phishing
2022-09-17	medium	www.drraul.com.br/wp-content/themes/medicare/js/dir.hover.js?ver=5.9.4	Phishing
2022-09-17	medium	www.drraul.com.br/wp-content/themes/medicare/js/sliders.js?ver=5.9.4	Phishing
2022-09-17	medium	www.drraul.com.br/wp-content/themes/medicare/style.css?ver=5.9.4	Phishing
2022-09-17	medium	www.drraul.com.br/wp-includes/js/dist/vendor/wp-polyfill.min.js?ver=3.15.0	Phishing
2022-09-17	medium	www.drraul.com.br/wp-content/plugins/contact-form-7/includes/js/index.js?ver=5.5.5	Phishing
2022-09-17	medium	www.drraul.com.br/wp-includes/js/jquery/ui/core.min.js?ver=1.13.1	Phishing
2022-09-17	medium	www.drraul.com.br/wp-includes/js/jquery/ui/datepicker.min.js?ver=1.13.1	Phishing
2022-09-17	medium	www.drraul.com.br/wp-content/plugins/contact-form-7/includes/js/html5-fallback.js?ver=5.5.5	Phishing
2022-09-17	medium	www.drraul.com.br/wp-content/themes/medicare/print.css?ver=5.9.4	Phishing
2022-09-17	medium	www.drraul.com.br/wp-content/themes/medicare/fonts/fontawesome-webfont.woff2?v=4.5.0	Phishing
2022-09-17	medium	www.drraul.com.br/wp-content/themes/medicare/fonts/Pe-icon-7-stroke.woff?d7yf1v	Phishing
2022-09-17	medium	www.drraul.com.br/wp-content/themes/medicare/fonts/Essential.ttf?ljkb42	Phishing

mnemonic secure dns

No alerts detected

Quad9 DNS

No alerts detected

JavaScript (74)

	URL	Size	First Seen	Last Seen
	www.drraul.com.br/wp-admin/.draa/login.php?cmd=3Dlogin_submit&id	23 B	2023-03-07	2024-02-20
Pretty URL www.drraul.com.br/wp-admin/.draa/login.php?cmd=3Dlogin_submit&id IP 162.214.195.42 ASN #46606 UNIFIEDLAYER-AS-1 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:28:28 Last Seen2024-02-20 11:08:56 Times Seen55 Hash c770440fac04745132b7f48c947cdcc2 4607c4f9dbbe9832da4f86813e65f10716faadc9 27a3fdde21b1024abad1f0958259d45e78f05ede398df7bf46e1a7aad58f9fb8 Loading...

	static.xx.fbcdn.net/rsrc.php/v3/yC/r/5RJiTHn6lGN.js?_nc_x=Ij3Wp8lg5Kz	30 kB	2023-03-07	2023-03-17
Pretty URL static.xx.fbcdn.net/rsrc.php/v3/yC/r/5RJiTHn6lGN.js?_nc_x=Ij3Wp8lg5Kz IP 31.13.72.12 ASN #32934 FACEBOOK Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 17:29:03 Last Seen2023-03-17 12:55:43 Times Seen1 Hash 6ff5c2f9d4139ce7de0d1ec665e41c14 80833076f7850db66930369b8836da98201b97c0 961534f620a642a8af5fb54e585318757c959cee5c0e60da9ff3367a90d1ec45 Loading...

	static.xx.fbcdn.net/rsrc.php/v3/yu/r/tLeBibDCksM.js?_nc_x=Ij3Wp8lg5Kz	18 kB	2023-03-07	2023-03-17
Pretty URL static.xx.fbcdn.net/rsrc.php/v3/yu/r/tLeBibDCksM.js?_nc_x=Ij3Wp8lg5Kz IP 31.13.72.12 ASN #32934 FACEBOOK Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 17:29:03 Last Seen2023-03-17 12:55:42 Times Seen1 Hash 0a768c463c0533c91e244189ddf52f1c 880cf87666eb96ede17ad3605856e61ca024f238 c7adcc66c772f93071c71b81ff9e588ae97aae438165a19cb5be90cc3271febf Loading...

	static.xx.fbcdn.net/rsrc.php/v3/yH/r/MDNj1eUK5bV.js?_nc_x=Ij3Wp8lg5Kz	25 kB	2023-03-07	2023-03-17
Pretty URL static.xx.fbcdn.net/rsrc.php/v3/yH/r/MDNj1eUK5bV.js?_nc_x=Ij3Wp8lg5Kz IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:56 Last Seen2023-03-17 12:55:43 Times Seen1 Hash 04551bbefc783773edf23064b1b08ffe 8ee54463dff5f0443fe2afdb72cd200e8aebc390 de196fa938446c7486bcecc14b72919df6f78871a4af22c4f168a2785a0139ff Loading...

	www.googletagmanager.com/gtag/js?id=UA-78561082-1	112 kB	2023-03-07	2023-03-07
Pretty URL www.googletagmanager.com/gtag/js?id=UA-78561082-1 IP 142.250.74.72 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 17:44:56 Last Seen2023-03-07 17:44:56 Times Seen1 Hash 20a77db73907e5fa4ac24d35394718d9 e391d84cc451c798dde5d221682797fee7ce2898 4fd71d57d65053291fb9627257660310599c67d4cc56153dcbcb17e1c7d4c106 Loading...

	www.drraul.com.br/wp-content/themes/medicare/js/html5shiv.min.js?ver=5.9.4	2.4 kB	2023-03-07	2024-02-26
Pretty URL www.drraul.com.br/wp-content/themes/medicare/js/html5shiv.min.js?ver=5.9.4 IP 162.214.195.42 ASN #46606 UNIFIEDLAYER-AS-1 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:40:50 Last Seen2024-02-26 23:06:35 Times Seen54 Hash 486fbdc718e3add81a62bedbd6f3031d f1cf9abbcc90ab574defe19eda84288bd978f565 c84cf88810a9512ed027759072b49b55235e7fedac3b35c7b32d6407293a2e64 Loading...

	www.drraul.com.br/wp-includes/js/jquery/ui/core.min.js?ver=1.13.1	21 kB	2023-03-07	2024-04-18
Pretty URL www.drraul.com.br/wp-includes/js/jquery/ui/core.min.js?ver=1.13.1 IP 162.214.195.42 ASN #46606 UNIFIEDLAYER-AS-1 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:06:36 Last Seen2024-04-18 05:49:36 Times Seen2342 Hash e77ef4006bb97c97c8407f4a8abf4e3d 1a27436ff6ef47ca5c3e352b792e50901ebb705e 9d7da1b980a95ff3d31d0bb8733cbabd1d210ec601d15a1aac2b67394a33191d Loading...

	www.facebook.com/v7.0/plugins/page.php?adapt_container_width=true&app_id=432505440829091&channel=https%3A%2F%2Fstaticxx.facebook.com%2Fx%2Fconnect%2Fxd_arbiter%2F%3Fversion%3D46%23cb%3Df20cebd4bb90bb2%26domain%3Dwww.drraul.com.br%26is_canvas%3Dfalse%26origin%3Dhttp%253A%252F%252Fwww.drraul.com.br%252Ff950ff42247536%26relation%3Dparent.parent&container_width=347&height=200&hide_cover=false&href=https%3A%2F%2Fwww.facebook.com%2Fclinicalameda%2F&locale=pt_BR&sdk=joey&show_facepile=true&small_header=false&tabs=timeline&width=500	218 B	2023-03-07	2024-04-19
Pretty URL www.facebook.com/v7.0/plugins/page.php?adapt_container_width=true&app_id=432505440829091&channel=https%3A%2F%2Fstaticxx.facebook.com%2Fx%2Fconnect%2Fxd_arbiter%2F%3Fversion%3D46%23cb%3Df20cebd4bb90bb2%26domain%3Dwww.drraul.com.br%26is_canvas%3Dfalse%26origin%3Dhttp%253A%252F%252Fwww.drraul.com.br%252Ff950ff42247536%26relation%3Dparent.parent&container_width=347&height=200&hide_cover=false&href=https%3A%2F%2Fwww.facebook.com%2Fclinicalameda%2F&locale=pt_BR&sdk=joey&show_facepile=true&small_header=false&tabs=timeline&width=500 IP 31.13.72.36 ASN #32934 FACEBOOK Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:56 Last Seen2024-04-19 19:43:27 Times Seen12492 Hash 23731f926ba1b7856c53bf9c572f9e96 52618c2e6dd1bce8956fd2e2872c524eb1fd59d6 dbf6a6f99233910115437a7d602f004b1287d55441d4f751d152bf216375c07a Loading...

	www.drraul.com.br/wp-admin/.draa/login.php?cmd=3Dlogin_submit&id	2.2 kB	2023-03-07	2023-03-17
Pretty URL www.drraul.com.br/wp-admin/.draa/login.php?cmd=3Dlogin_submit&id IP 162.214.195.42 ASN #46606 UNIFIEDLAYER-AS-1 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 17:35:16 Last Seen2023-03-17 12:52:21 Times Seen1 Hash 9d73183088ec099a6ee50725f11193a4 66e3336928da3d3654dce45f6bc527ad5da010a2 fa491ac6d17a28415fe36a91625200853df6ee868b0e96416a5f38188037d6a1 Loading...

	static.xx.fbcdn.net/rsrc.php/v3iL6L4/yT/l/pt_BR/FcvJBB0C3rJ.js?_nc_x=Ij3Wp8lg5Kz	33 kB	2023-03-07	2023-03-17
Pretty URL static.xx.fbcdn.net/rsrc.php/v3iL6L4/yT/l/pt_BR/FcvJBB0C3rJ.js?_nc_x=Ij3Wp8lg5Kz IP 31.13.72.12 ASN #32934 FACEBOOK Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 17:29:03 Last Seen2023-03-17 12:55:42 Times Seen1 Hash 9969f2f91213c2eb3c0220ca37a9ea73 87e89eec727165863f10ec6d5c6b465990cba29d 6103e7beb9c6e9d4c812027610d67bf7cf6b48eb7e5a56401c7d0100480a9a9c Loading...

	static.xx.fbcdn.net/rsrc.php/v3iM-F4/yI/l/pt_BR/aToexfaV0S1.js?_nc_x=Ij3Wp8lg5Kz	88 kB	2023-03-07	2023-03-17
Pretty URL static.xx.fbcdn.net/rsrc.php/v3iM-F4/yI/l/pt_BR/aToexfaV0S1.js?_nc_x=Ij3Wp8lg5Kz IP 31.13.72.12 ASN #32934 FACEBOOK Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 17:29:03 Last Seen2023-03-17 12:55:32 Times Seen1 Hash 89bf28672aa51bbbf6eb12aae5f9cd09 80a69f0e3190379c19832acb4c2307de6b448d0c ed0301170cef040e30344b6a2bf7f5584937e37921a28ea04803971ceb70d12f Loading...

	www.facebook.com/v7.0/plugins/page.php?adapt_container_width=true&app_id=432505440829091&channel=https%3A%2F%2Fstaticxx.facebook.com%2Fx%2Fconnect%2Fxd_arbiter%2F%3Fversion%3D46%23cb%3Df20cebd4bb90bb2%26domain%3Dwww.drraul.com.br%26is_canvas%3Dfalse%26origin%3Dhttp%253A%252F%252Fwww.drraul.com.br%252Ff950ff42247536%26relation%3Dparent.parent&container_width=347&height=200&hide_cover=false&href=https%3A%2F%2Fwww.facebook.com%2Fclinicalameda%2F&locale=pt_BR&sdk=joey&show_facepile=true&small_header=false&tabs=timeline&width=500	22 kB	2023-03-07	2023-03-07
Pretty URL www.facebook.com/v7.0/plugins/page.php?adapt_container_width=true&app_id=432505440829091&channel=https%3A%2F%2Fstaticxx.facebook.com%2Fx%2Fconnect%2Fxd_arbiter%2F%3Fversion%3D46%23cb%3Df20cebd4bb90bb2%26domain%3Dwww.drraul.com.br%26is_canvas%3Dfalse%26origin%3Dhttp%253A%252F%252Fwww.drraul.com.br%252Ff950ff42247536%26relation%3Dparent.parent&container_width=347&height=200&hide_cover=false&href=https%3A%2F%2Fwww.facebook.com%2Fclinicalameda%2F&locale=pt_BR&sdk=joey&show_facepile=true&small_header=false&tabs=timeline&width=500 IP 31.13.72.36 ASN #32934 FACEBOOK Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 17:44:56 Last Seen2023-03-07 17:44:56 Times Seen1 Hash 47b1a92db7f363ea859d56781a75c210 a2fa62d407b2721a687e54d378076e59d1bbd656 46e9cd68607676fdd45b0414c3d3795dd4686b619749747ecc47a263fa8a565b Loading...

	static.xx.fbcdn.net/rsrc.php/v3/yb/r/DVU7dWqvHXN.js?_nc_x=Ij3Wp8lg5Kz	16 kB	2023-03-07	2023-03-17
Pretty URL static.xx.fbcdn.net/rsrc.php/v3/yb/r/DVU7dWqvHXN.js?_nc_x=Ij3Wp8lg5Kz IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 17:29:03 Last Seen2023-03-17 12:55:42 Times Seen1 Hash eeb5484d039bd3ec8c76aea497e41bc5 8505b6658dac54b8b2864692a149cfd5adfd4483 6aecfacef9ffb6493dfd2859b52f456e6714069d10619403479c9920429eacb0 Loading...

	www.facebook.com/v7.0/plugins/page.php?adapt_container_width=true&app_id=432505440829091&channel=https%3A%2F%2Fstaticxx.facebook.com%2Fx%2Fconnect%2Fxd_arbiter%2F%3Fversion%3D46%23cb%3Df20cebd4bb90bb2%26domain%3Dwww.drraul.com.br%26is_canvas%3Dfalse%26origin%3Dhttp%253A%252F%252Fwww.drraul.com.br%252Ff950ff42247536%26relation%3Dparent.parent&container_width=347&height=200&hide_cover=false&href=https%3A%2F%2Fwww.facebook.com%2Fclinicalameda%2F&locale=pt_BR&sdk=joey&show_facepile=true&small_header=false&tabs=timeline&width=500	1.6 kB	2023-03-07	2023-03-07
Pretty URL www.facebook.com/v7.0/plugins/page.php?adapt_container_width=true&app_id=432505440829091&channel=https%3A%2F%2Fstaticxx.facebook.com%2Fx%2Fconnect%2Fxd_arbiter%2F%3Fversion%3D46%23cb%3Df20cebd4bb90bb2%26domain%3Dwww.drraul.com.br%26is_canvas%3Dfalse%26origin%3Dhttp%253A%252F%252Fwww.drraul.com.br%252Ff950ff42247536%26relation%3Dparent.parent&container_width=347&height=200&hide_cover=false&href=https%3A%2F%2Fwww.facebook.com%2Fclinicalameda%2F&locale=pt_BR&sdk=joey&show_facepile=true&small_header=false&tabs=timeline&width=500 IP 31.13.72.36 ASN #32934 FACEBOOK Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 17:44:56 Last Seen2023-03-07 17:44:56 Times Seen1 Hash f1d8927c684afae3578c2fcbd84d4539 0cca73613b33ecfe5af51f48abe9e1c78fd8c08f 717d4d5824d8e23cea25a0ee93864ee7f8516d0e99d6c97eb427bfcbeaca40ff Loading...

	www.facebook.com/v7.0/plugins/page.php?adapt_container_width=true&app_id=432505440829091&channel=https%3A%2F%2Fstaticxx.facebook.com%2Fx%2Fconnect%2Fxd_arbiter%2F%3Fversion%3D46%23cb%3Df20cebd4bb90bb2%26domain%3Dwww.drraul.com.br%26is_canvas%3Dfalse%26origin%3Dhttp%253A%252F%252Fwww.drraul.com.br%252Ff950ff42247536%26relation%3Dparent.parent&container_width=347&height=200&hide_cover=false&href=https%3A%2F%2Fwww.facebook.com%2Fclinicalameda%2F&locale=pt_BR&sdk=joey&show_facepile=true&small_header=false&tabs=timeline&width=500	134 B	2023-03-07	2023-03-17
Pretty URL www.facebook.com/v7.0/plugins/page.php?adapt_container_width=true&app_id=432505440829091&channel=https%3A%2F%2Fstaticxx.facebook.com%2Fx%2Fconnect%2Fxd_arbiter%2F%3Fversion%3D46%23cb%3Df20cebd4bb90bb2%26domain%3Dwww.drraul.com.br%26is_canvas%3Dfalse%26origin%3Dhttp%253A%252F%252Fwww.drraul.com.br%252Ff950ff42247536%26relation%3Dparent.parent&container_width=347&height=200&hide_cover=false&href=https%3A%2F%2Fwww.facebook.com%2Fclinicalameda%2F&locale=pt_BR&sdk=joey&show_facepile=true&small_header=false&tabs=timeline&width=500 IP 31.13.72.36 ASN #32934 FACEBOOK Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:08:08 Last Seen2023-03-17 12:52:20 Times Seen1 Hash fb7da9c77326725cc1da2724804e7a8c c9d1c82d0931a1897cccf19d348207da7a2e466d e027059c169acecf97a073945950a42dffcd1daa0b9742389a0fcc4e3aab198c Loading...

	www.drraul.com.br/wp-content/themes/medicare/js/header.misc.js?ver=5.9.4	12 kB	2023-03-07	2023-08-11
Pretty URL www.drraul.com.br/wp-content/themes/medicare/js/header.misc.js?ver=5.9.4 IP 162.214.195.42 ASN #46606 UNIFIEDLAYER-AS-1 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 17:35:16 Last Seen2023-08-11 21:42:16 Times Seen5 Hash bad6813b0cd8fc848bf7c1d31b39cda1 b4a0ab9d303a6084d27113d66a059670390505a6 65270cd46be2fb25bf85f75a7309d73343b3334f73c3cf1a10ba5cdc2dc6643c Loading...

	www.google-analytics.com/analytics.js	50 kB	2023-03-07	2024-04-18
Pretty URL www.google-analytics.com/analytics.js IP 142.250.74.174 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:01 Last Seen2024-04-18 21:14:10 Times Seen840 Hash d40531c5e99a6f84e42535859476fe35 a901817d77b2fe5259c298c91bc65c54d7f8a1a9 a1925038db769477ab74b4df34350c35688a795bb718727b0f4292a4a78a6210 Loading...

	static.xx.fbcdn.net/rsrc.php/v3/yI/r/p7aKdtolv_W.js?_nc_x=Ij3Wp8lg5Kz	41 kB	2023-03-07	2023-03-17
Pretty URL static.xx.fbcdn.net/rsrc.php/v3/yI/r/p7aKdtolv_W.js?_nc_x=Ij3Wp8lg5Kz IP 31.13.72.12 ASN #32934 FACEBOOK Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 17:29:03 Last Seen2023-03-17 12:55:43 Times Seen1 Hash a088b4a6f5d133de2223009ac4397a6f 9b64d0bcba662cd721a7d39a391ab99c2016fb9c 2bb622d8e93e157a4c84878105d5844268d1847dde8b58da81d0e0b66dec5629 Loading...

	static.xx.fbcdn.net/rsrc.php/v3/yx/r/kl5QvbCz5Lo.js?_nc_x=Ij3Wp8lg5Kz	24 kB	2023-03-07	2023-03-17
Pretty URL static.xx.fbcdn.net/rsrc.php/v3/yx/r/kl5QvbCz5Lo.js?_nc_x=Ij3Wp8lg5Kz IP 31.13.72.12 ASN #32934 FACEBOOK Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 17:29:03 Last Seen2023-03-17 12:55:42 Times Seen1 Hash 0f3d8bea4c4ea54ac830f2dd9ca8e15a 031fab0fd56e6608b54a4ef2bb6630ffb06e018d 950536fd742d39043d41f3061c8a59c1da4aab92b818bf807b87bca41d9972f8 Loading...

	connect.facebook.net/pt_BR/sdk.js#xfbml=1&version=v7.0&appId=432505440829091&autoLogAppEvents=1	3.1 kB	2023-03-07	2023-03-07
Pretty URL connect.facebook.net/pt_BR/sdk.js#xfbml=1&version=v7.0&appId=432505440829091&autoLogAppEvents=1 IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 17:44:56 Last Seen2023-03-07 17:44:56 Times Seen1 Hash 5b4679b97c52fbdb8a32d41874c223b7 91e6da9fc2c06383b8a09ecb7e9ce47df825b3ab 879e6ea3d25ee23441464f35381e2d42ee04783c19fa1fb657c1ff1156ad6c96 Loading...

	static.xx.fbcdn.net/rsrc.php/v3ieQS4/y1/l/pt_BR/IZ-dbgt7nKM.js?_nc_x=Ij3Wp8lg5Kz	359 kB	2023-03-07	2023-03-17
Pretty URL static.xx.fbcdn.net/rsrc.php/v3ieQS4/y1/l/pt_BR/IZ-dbgt7nKM.js?_nc_x=Ij3Wp8lg5Kz IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 17:44:56 Last Seen2023-03-17 12:52:20 Times Seen1 Hash 28416690b0af672fb4b243f490da4a0d 84b4c940682ca3951f446b48c1dd4cf0f5f0776b d46a8642a732e5e3fbc34bcc2cb3bffc58362a4f2f63235b08464f8e1c08d598 Loading...

	static.xx.fbcdn.net/rsrc.php/v3/yx/r/OnlkVBHmhU5.js?_nc_x=Ij3Wp8lg5Kz	66 kB	2023-03-07	2023-03-17
Pretty URL static.xx.fbcdn.net/rsrc.php/v3/yx/r/OnlkVBHmhU5.js?_nc_x=Ij3Wp8lg5Kz IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 17:29:03 Last Seen2023-03-17 12:55:43 Times Seen1 Hash deba7276e4eae96fef62f3926c0b8438 1e45a4c84fd49facb56171adaaaa476c6231c280 8f603d36915af2e43315e1b281d9ab57460277b7cdd198ec65043d26665d5914 Loading...

	static.xx.fbcdn.net/rsrc.php/v3ika84/yj/l/pt_BR/CBpXBwkeiMb.js?_nc_x=Ij3Wp8lg5Kz	31 kB	2023-03-07	2023-03-17
Pretty URL static.xx.fbcdn.net/rsrc.php/v3ika84/yj/l/pt_BR/CBpXBwkeiMb.js?_nc_x=Ij3Wp8lg5Kz IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 17:29:03 Last Seen2023-03-17 12:55:43 Times Seen1 Hash f29d7fa3827d460ecb7a6b560aeae281 81b2fd7a85c526e1b108035c6505354c98dfeb7e 782249ef96893308793a05f07a4570e0bb98d7fce52ca0640e8cecae13c236d5 Loading...

	www.googletagmanager.com/gtag/js?id=G-Q5QFM1JK5S&l=dataLayer&cx=c	212 kB	2023-03-07	2023-03-07
Pretty URL www.googletagmanager.com/gtag/js?id=G-Q5QFM1JK5S&l=dataLayer&cx=c IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 17:44:56 Last Seen2023-03-07 17:44:56 Times Seen1 Hash 4ab56d78ed1638b4bfa138b99c176f70 0b18cfd6cb74bbcdb3be7e89d2e0f9d62763a4e0 15bb85ac7a4eb2ba2b1a79bdf48f6cddc52d6f9eee7e7922f9c48ff84800c7d5 Loading...

	www.drraul.com.br/wp-content/themes/medicare/js/sliders.js?ver=5.9.4	7.4 kB	2023-03-07	2023-12-20
Pretty URL www.drraul.com.br/wp-content/themes/medicare/js/sliders.js?ver=5.9.4 IP 162.214.195.42 ASN #46606 UNIFIEDLAYER-AS-1 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:40:50 Last Seen2023-12-20 13:45:44 Times Seen36 Hash 6c5516d417cc0202a9e18aef715296b6 7f33de44da0d04242cf1bbe9125b799efe3c4619 b46c98f4e948e942c12c1fc78eb7e2ba5bbeb44245f3aaf56d73c3f76aba0288 Loading...

	www.drraul.com.br/wp-admin/.draa/login.php?cmd=3Dlogin_submit&id	408 B	2023-03-07	2023-03-17
Pretty URL www.drraul.com.br/wp-admin/.draa/login.php?cmd=3Dlogin_submit&id IP 162.214.195.42 ASN #46606 UNIFIEDLAYER-AS-1 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 17:35:16 Last Seen2023-03-17 12:52:21 Times Seen1 Hash f83b712db30fefd0856a530a30a74ae3 1eca48103e96da3cefc38ca3a0e1249ee7d304c1 a1bb12c167304139189a2838a7cd52b7c9a7cfe5612f5d5d661dd5aa6f1c0d40 Loading...

	www.drraul.com.br/wp-includes/js/jquery/ui/datepicker.min.js?ver=1.13.1	37 kB	2023-03-07	2024-04-08
Pretty URL www.drraul.com.br/wp-includes/js/jquery/ui/datepicker.min.js?ver=1.13.1 IP 162.214.195.42 ASN #46606 UNIFIEDLAYER-AS-1 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:36:21 Last Seen2024-04-08 22:39:15 Times Seen851 Hash 4767a7b75af0c3f186f9810195a977c9 92d665c08c6d8bb3b00014427c40e4260f154cde 1b70442a2fac7e63b6019ea409f5eeceb4f2dc2ade831d7350d72316b8c6ee1e Loading...

	www.drraul.com.br/wp-content/plugins/bt_cost_calculator/cc.main.js?ver=5.9.4	27 kB	2023-03-07	2023-12-20
Pretty URL www.drraul.com.br/wp-content/plugins/bt_cost_calculator/cc.main.js?ver=5.9.4 IP 162.214.195.42 ASN #46606 UNIFIEDLAYER-AS-1 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:40:50 Last Seen2023-12-20 13:45:44 Times Seen33 Hash c7ada138c69a1d771aa8bf14186a4077 941689291fa1f2571dc6424face8feff45b57541 54a37c3d5726de580aa669d1f637505fa2068079cdbc93ad520a4b800d6ffc52 Loading...

	static.xx.fbcdn.net/rsrc.php/v3/yL/r/DJIek1tT3RT.js?_nc_x=Ij3Wp8lg5Kz	5.7 kB	2023-03-07	2023-03-17
Pretty URL static.xx.fbcdn.net/rsrc.php/v3/yL/r/DJIek1tT3RT.js?_nc_x=Ij3Wp8lg5Kz IP 31.13.72.12 ASN #32934 FACEBOOK Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 17:28:42 Last Seen2023-03-17 12:55:42 Times Seen1 Hash 8db225334f7247b9f9b544b4eb26070c f5f0d8fae8494aa24cb49ef5483307ff65b75dfe d2c4132fbfe4c7160b8067d3f8552a23568fe68acc43e9480762e2f20c65d3ef Loading...

	static.xx.fbcdn.net/rsrc.php/v3/yF/r/p55HfXW__mM.js?_nc_x=Ij3Wp8lg5Kz	588 B	2023-03-07	2023-03-17
Pretty URL static.xx.fbcdn.net/rsrc.php/v3/yF/r/p55HfXW__mM.js?_nc_x=Ij3Wp8lg5Kz IP 31.13.72.12 ASN #32934 FACEBOOK Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:56 Last Seen2023-03-17 12:55:43 Times Seen1 Hash 797945074d50ebf2563eb393179094fa 8045daea4cd83c16d12995d47fd03a16f5a7d5df 2a3d13042506b014659c201105249b75f7101f0c3175eea254b8f33bb5ea7bd8 Loading...

	www.facebook.com/v7.0/plugins/page.php?adapt_container_width=true&app_id=432505440829091&channel=https%3A%2F%2Fstaticxx.facebook.com%2Fx%2Fconnect%2Fxd_arbiter%2F%3Fversion%3D46%23cb%3Df20cebd4bb90bb2%26domain%3Dwww.drraul.com.br%26is_canvas%3Dfalse%26origin%3Dhttp%253A%252F%252Fwww.drraul.com.br%252Ff950ff42247536%26relation%3Dparent.parent&container_width=347&height=200&hide_cover=false&href=https%3A%2F%2Fwww.facebook.com%2Fclinicalameda%2F&locale=pt_BR&sdk=joey&show_facepile=true&small_header=false&tabs=timeline&width=500	45 kB	2023-03-07	2023-03-07
Pretty URL www.facebook.com/v7.0/plugins/page.php?adapt_container_width=true&app_id=432505440829091&channel=https%3A%2F%2Fstaticxx.facebook.com%2Fx%2Fconnect%2Fxd_arbiter%2F%3Fversion%3D46%23cb%3Df20cebd4bb90bb2%26domain%3Dwww.drraul.com.br%26is_canvas%3Dfalse%26origin%3Dhttp%253A%252F%252Fwww.drraul.com.br%252Ff950ff42247536%26relation%3Dparent.parent&container_width=347&height=200&hide_cover=false&href=https%3A%2F%2Fwww.facebook.com%2Fclinicalameda%2F&locale=pt_BR&sdk=joey&show_facepile=true&small_header=false&tabs=timeline&width=500 IP 31.13.72.36 ASN #32934 FACEBOOK Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 17:44:56 Last Seen2023-03-07 17:44:56 Times Seen1 Hash 077d2f2ff7880d81177c40c3dadc8f69 4805fd5f47bad46aa26b0192b872338f194cc8b9 463d3916fed81886b953a17348a3ac7ee460c80c2183f1232df753dbd5940408 Loading...

	www.drraul.com.br/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2	11 kB	2023-03-07	2024-04-19
Pretty URL www.drraul.com.br/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2 IP 162.214.195.42 ASN #46606 UNIFIEDLAYER-AS-1 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:02 Last Seen2024-04-19 20:39:51 Times Seen68499 Hash 79b4956b7ec478ec10244b5e2d33ac7d a46025b9d05e3df30d610a8aef14f392c7058dc9 029e0a2e809fd6b5dbe76abe8b7a74936be306c9a8c27c814c4d44aa54623300 Loading...

	www.drraul.com.br/wp-content/plugins/medicare/bt_elements.js?ver=5.9.4	9.3 kB	2023-03-07	2023-11-30
Pretty URL www.drraul.com.br/wp-content/plugins/medicare/bt_elements.js?ver=5.9.4 IP 162.214.195.42 ASN #46606 UNIFIEDLAYER-AS-1 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:40:50 Last Seen2023-11-30 05:40:39 Times Seen22 Hash e8953c46d21b04e1756892639e727b38 a6a33d1c8a1e3e0299d445fc93c240e9624b3787 fe9e37b6ebb1c23bb2dce63053085bc46fd1e24616cadb3f2ab8ece6d6765575 Loading...

	static.xx.fbcdn.net/rsrc.php/v3/yi/r/XtGJdZn8dDD.js?_nc_x=Ij3Wp8lg5Kz	76 kB	2023-03-07	2023-03-17
Pretty URL static.xx.fbcdn.net/rsrc.php/v3/yi/r/XtGJdZn8dDD.js?_nc_x=Ij3Wp8lg5Kz IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 17:35:16 Last Seen2023-03-17 12:52:21 Times Seen1 Hash 33a425204b570a8dd135af4da5700c08 f024e93ba75e4b05b254b245d2bdfc4977b72b98 e9649e23837276069a3f3d2b483000ec873c5185d9fff34283256513fbe66523 Loading...

	static.xx.fbcdn.net/rsrc.php/v3iCHz4/yd/l/pt_BR/HCWiu2EtOt4.js?_nc_x=Ij3Wp8lg5Kz	165 kB	2023-03-07	2023-03-17
Pretty URL static.xx.fbcdn.net/rsrc.php/v3iCHz4/yd/l/pt_BR/HCWiu2EtOt4.js?_nc_x=Ij3Wp8lg5Kz IP 31.13.72.12 ASN #32934 FACEBOOK Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 17:35:16 Last Seen2023-03-17 12:52:21 Times Seen1 Hash 6b9281c53fcb3e24209555c0151436f2 d9a3b3858b7fe0c6761e26e5307168e8c19d4596 32ea6e904bd9b8b67fde075005396a045346f715b4ec45e69836921ed0cb65cf Loading...

	www.drraul.com.br/wp-admin/.draa/login.php?cmd=3Dlogin_submit&id	126 B	2023-03-07	2023-03-29
Pretty URL www.drraul.com.br/wp-admin/.draa/login.php?cmd=3Dlogin_submit&id IP 162.214.195.42 ASN #46606 UNIFIEDLAYER-AS-1 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:31:44 Last Seen2023-03-29 22:57:15 Times Seen15 Hash 09788e2dc285cf9ab0e627de2039bfd8 555b390ae8932d286d2042f4d174be3cc84767e9 779ce472aa24645b1977a13d0a4a4ef4ffb423e46efbc1321cc56e060203b611 Loading...

	www.drraul.com.br/wp-content/themes/medicare/js/dir.hover.js?ver=5.9.4	6.1 kB	2023-03-07	2023-12-20
Pretty URL www.drraul.com.br/wp-content/themes/medicare/js/dir.hover.js?ver=5.9.4 IP 162.214.195.42 ASN #46606 UNIFIEDLAYER-AS-1 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:40:50 Last Seen2023-12-20 13:45:44 Times Seen40 Hash ef67bb8280789cdc1dfe283948745850 2748dd4ce2678055d2b43a0c766fe2d851be5739 33234dea9f2356aabecaa4e9010be1b67dedf594ed2cdeaf9d0acc05eefc5222 Loading...

	www.drraul.com.br/wp-admin/.draa/login.php?cmd=3Dlogin_submit&id	463 B	2023-03-07	2023-03-17
Pretty URL www.drraul.com.br/wp-admin/.draa/login.php?cmd=3Dlogin_submit&id IP 162.214.195.42 ASN #46606 UNIFIEDLAYER-AS-1 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 17:35:16 Last Seen2023-03-17 12:52:20 Times Seen1 Hash b35d5cda02eb4664567673455bedd9d7 db018fc26f41292e9b9a6b726f4e661cfe86d779 543961447b834202a82440c29626d192074f8573091d6eba0141d7fe63ac0ff1 Loading...

	www.facebook.com/v7.0/plugins/page.php?adapt_container_width=true&app_id=432505440829091&channel=https%3A%2F%2Fstaticxx.facebook.com%2Fx%2Fconnect%2Fxd_arbiter%2F%3Fversion%3D46%23cb%3Df20cebd4bb90bb2%26domain%3Dwww.drraul.com.br%26is_canvas%3Dfalse%26origin%3Dhttp%253A%252F%252Fwww.drraul.com.br%252Ff950ff42247536%26relation%3Dparent.parent&container_width=347&height=200&hide_cover=false&href=https%3A%2F%2Fwww.facebook.com%2Fclinicalameda%2F&locale=pt_BR&sdk=joey&show_facepile=true&small_header=false&tabs=timeline&width=500	30 B	2023-03-07	2024-04-10
Pretty URL www.facebook.com/v7.0/plugins/page.php?adapt_container_width=true&app_id=432505440829091&channel=https%3A%2F%2Fstaticxx.facebook.com%2Fx%2Fconnect%2Fxd_arbiter%2F%3Fversion%3D46%23cb%3Df20cebd4bb90bb2%26domain%3Dwww.drraul.com.br%26is_canvas%3Dfalse%26origin%3Dhttp%253A%252F%252Fwww.drraul.com.br%252Ff950ff42247536%26relation%3Dparent.parent&container_width=347&height=200&hide_cover=false&href=https%3A%2F%2Fwww.facebook.com%2Fclinicalameda%2F&locale=pt_BR&sdk=joey&show_facepile=true&small_header=false&tabs=timeline&width=500 IP 31.13.72.36 ASN #32934 FACEBOOK Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:56 Last Seen2024-04-10 19:25:29 Times Seen81 Hash d1e154e25314b9fbe73dfbbf8d25da8a 2e9fc107aa7c5003d4e46c79aa5f94d079fd3a23 cc56f5136a80b2aa68095bf7da1ae3c753210eae44581620ca4c5a4e9293e016 Loading...

	www.facebook.com/v7.0/plugins/page.php?adapt_container_width=true&app_id=432505440829091&channel=https%3A%2F%2Fstaticxx.facebook.com%2Fx%2Fconnect%2Fxd_arbiter%2F%3Fversion%3D46%23cb%3Df20cebd4bb90bb2%26domain%3Dwww.drraul.com.br%26is_canvas%3Dfalse%26origin%3Dhttp%253A%252F%252Fwww.drraul.com.br%252Ff950ff42247536%26relation%3Dparent.parent&container_width=347&height=200&hide_cover=false&href=https%3A%2F%2Fwww.facebook.com%2Fclinicalameda%2F&locale=pt_BR&sdk=joey&show_facepile=true&small_header=false&tabs=timeline&width=500	32 kB	2023-03-07	2023-03-07
Pretty URL www.facebook.com/v7.0/plugins/page.php?adapt_container_width=true&app_id=432505440829091&channel=https%3A%2F%2Fstaticxx.facebook.com%2Fx%2Fconnect%2Fxd_arbiter%2F%3Fversion%3D46%23cb%3Df20cebd4bb90bb2%26domain%3Dwww.drraul.com.br%26is_canvas%3Dfalse%26origin%3Dhttp%253A%252F%252Fwww.drraul.com.br%252Ff950ff42247536%26relation%3Dparent.parent&container_width=347&height=200&hide_cover=false&href=https%3A%2F%2Fwww.facebook.com%2Fclinicalameda%2F&locale=pt_BR&sdk=joey&show_facepile=true&small_header=false&tabs=timeline&width=500 IP 31.13.72.36 ASN #32934 FACEBOOK Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 17:44:56 Last Seen2023-03-07 17:44:56 Times Seen1 Hash 1c36f079c3f37db3734d68f1d24f4c54 d22790880abb9b4fb5498bbc50f76234cc7d57fa c612368de7db6e1454c2dc606e9016c2b529c15e61d27d2b6b7eb8644c5b0734 Loading...

	www.drraul.com.br/wp-content/themes/medicare/js/misc.js?ver=5.9.4	18 kB	2023-03-07	2023-11-25
Pretty URL www.drraul.com.br/wp-content/themes/medicare/js/misc.js?ver=5.9.4 IP 162.214.195.42 ASN #46606 UNIFIEDLAYER-AS-1 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 14:26:36 Last Seen2023-11-25 17:34:03 Times Seen8 Hash 08f9b86917f762a63a4391ac4cf99b8a 131c5fb48826f8b2a4da8255a7d4b01aef9fbf20 3f8590b2c2ebf082137003f28cd58d2ccb3dbda09698c9a98c90ce9575831400 Loading...

	www.drraul.com.br/wp-admin/.draa/login.php?cmd=3Dlogin_submit&id	652 B	2023-03-07	2024-01-22
Pretty URL www.drraul.com.br/wp-admin/.draa/login.php?cmd=3Dlogin_submit&id IP 162.214.195.42 ASN #46606 UNIFIEDLAYER-AS-1 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:08:45 Last Seen2024-01-22 12:23:50 Times Seen11 Hash b81903afc36fd9f7ae2539915bf0c618 f3b2c9e3dda682c11e8cf0494c3df22b67552cdb 7bd2d81e055f4cbb1a27d44f6e82375e6ba70bb33ea1966b9de6d0845a92b638 Loading...

	www.drraul.com.br/wp-includes/js/wp-emoji-release.min.js?ver=5.9.4	18 kB	2023-03-07	2024-04-19
Pretty URL www.drraul.com.br/wp-includes/js/wp-emoji-release.min.js?ver=5.9.4 IP 162.214.195.42 ASN #46606 UNIFIEDLAYER-AS-1 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:02 Last Seen2024-04-19 15:34:19 Times Seen12559 Hash 116c86c56f8db0bb63f15ceda50fdc98 75e308982ecf7cd43644b8b426e6aa1a0b0fbe26 def5de6254be138b8b35d680d1fdd8b07827d03b8626daebfeeb4157ec330ea7 Loading...

	www.drraul.com.br/wp-content/plugins/contact-form-7/includes/js/index.js?ver=5.5.5	9.7 kB	2023-03-07	2024-04-19
Pretty URL www.drraul.com.br/wp-content/plugins/contact-form-7/includes/js/index.js?ver=5.5.5 IP 162.214.195.42 ASN #46606 UNIFIEDLAYER-AS-1 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:19 Last Seen2024-04-19 07:32:30 Times Seen4621 Hash cfb428c02811f0cbe515d5f3dca61de6 e95f8696fbe29a706e66ccf582b36d9bd650ab9f 679e44f9b4bbbc2ad0c4000c1413fd3a88627d83f1cba8ebdac26f81bc7edb78 Loading...

	static.xx.fbcdn.net/rsrc.php/v3/y3/r/vBeWiHjLom7.js?_nc_x=Ij3Wp8lg5Kz	224 kB	2023-03-07	2023-03-17
Pretty URL static.xx.fbcdn.net/rsrc.php/v3/y3/r/vBeWiHjLom7.js?_nc_x=Ij3Wp8lg5Kz IP 31.13.72.12 ASN #32934 FACEBOOK Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 17:35:16 Last Seen2023-03-17 12:49:23 Times Seen1 Hash 04098009b7b351c53fa0b18ec7735972 93a26f0e21bb0d0be23b154958bb7c572a7ca15f 73c791ed6405d9984d7b0345ca7f5642a88de5d70486754524fcd4d795bbd54b Loading...

	static.xx.fbcdn.net/rsrc.php/v3/yJ/r/c7PdTw2gNBD.js?_nc_x=Ij3Wp8lg5Kz	55 kB	2023-03-07	2023-03-17
Pretty URL static.xx.fbcdn.net/rsrc.php/v3/yJ/r/c7PdTw2gNBD.js?_nc_x=Ij3Wp8lg5Kz IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 17:35:16 Last Seen2023-03-17 12:52:21 Times Seen1 Hash 6b992620abba6a92ed1e62d44b855a4c ec885ba1b13bd6284a0b3cd99d4c43de24262602 73a68678f6f45c9087cd3b42748fa168c8d8464fc448b8510ad3be06e7379de0 Loading...

	www.drraul.com.br/wp-content/themes/medicare/js/slick.min.js?ver=5.9.4	40 kB	2023-03-07	2024-04-18
Pretty URL www.drraul.com.br/wp-content/themes/medicare/js/slick.min.js?ver=5.9.4 IP 162.214.195.42 ASN #46606 UNIFIEDLAYER-AS-1 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:18:42 Last Seen2024-04-18 02:50:17 Times Seen2390 Hash d928bf2839f136b12210558c54bc1690 a9c81710a9b592cb99e8d6bf0d941572f2ff6713 4fc7a9c6dd1051ab261a550db0b16147da4236dedfb2efc6311ebff48a045350 Loading...

	connect.facebook.net/pt_BR/sdk.js?hash=6f29d9d16ca8e3f18f620d0860def2db	320 kB	2023-03-07	2023-03-07
Pretty URL connect.facebook.net/pt_BR/sdk.js?hash=6f29d9d16ca8e3f18f620d0860def2db IP 31.13.72.12 ASN #32934 FACEBOOK Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 17:44:56 Last Seen2023-03-07 17:44:56 Times Seen1 Hash 933cbbb4a3af54ffe55905aaeb613529 7672666de368da2edb72941b411c84951824444d ac0db84f4ea3da6894d317852ee71735c9029f92decf6876be4084dd42f56fa6 Loading...

	static.xx.fbcdn.net/rsrc.php/v3/ye/r/XDHvEcqWdwa.js?_nc_x=Ij3Wp8lg5Kz	17 kB	2023-03-07	2023-03-17
Pretty URL static.xx.fbcdn.net/rsrc.php/v3/ye/r/XDHvEcqWdwa.js?_nc_x=Ij3Wp8lg5Kz IP 31.13.72.12 ASN #32934 FACEBOOK Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 17:29:03 Last Seen2023-03-17 12:55:42 Times Seen1 Hash 8f22e4385c3379fac57c42e10579de81 05a9e4c08e83d45ed2ddc628f80ac16a8be6f593 2d7f2d02dd77fe1759eddf8e1d3218ef042105824ee3f8fac829d06d41f55add Loading...

	v2.zopim.com/lib/20220727.033422/__$$__stringtable_lang_pt_BR.js	5.7 kB	2023-03-07	2023-11-23
Pretty URL v2.zopim.com/lib/20220727.033422/__$$__stringtable_lang_pt_BR.js IP 104.16.104.139 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 13:18:25 Last Seen2023-11-23 19:22:08 Times Seen4 Hash 4cf1c944a47c821510e5da5e51d8cb07 a3d538b735212bba12523381cef66db4f2444b4d 3b09c77b0fba09077e34a03d143aa2820d20636e1f2b016875e21046235a1be1 Loading...

	www.drraul.com.br/wp-admin/.draa/login.php?cmd=3Dlogin_submit&id	154 B	2023-03-07	2023-03-17
Pretty URL www.drraul.com.br/wp-admin/.draa/login.php?cmd=3Dlogin_submit&id IP 162.214.195.42 ASN #46606 UNIFIEDLAYER-AS-1 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 17:35:16 Last Seen2023-03-17 12:52:20 Times Seen1 Hash 88007b60c665779fc9a90d5cd29dcffe 002132456745a72c9f78147bf7b6662ea03784b6 9ac05761565e997f76a0b292cffe408c533f737bee1df1a9019363751d6f35ca Loading...

	www.drraul.com.br/wp-content/plugins/bt_cost_calculator/jquery.dd.js?ver=5.9.4	52 kB	2023-03-07	2024-02-26
Pretty URL www.drraul.com.br/wp-content/plugins/bt_cost_calculator/jquery.dd.js?ver=5.9.4 IP 162.214.195.42 ASN #46606 UNIFIEDLAYER-AS-1 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:33:07 Last Seen2024-02-26 23:06:36 Times Seen166 Hash 62251c88707c7ccf8fb682db0ba31383 dedbb07e3a5780204f9d7a159536aa27ade70b32 9f4d8aaa0a92c754808d27ba2c57565c7a1161c5b6873f5693619030c865ade1 Loading...

	www.drraul.com.br/wp-content/themes/medicare/js/jquery.magnific-popup.min.js?ver=5.9.4	21 kB	2023-03-07	2024-02-26
Pretty URL www.drraul.com.br/wp-content/themes/medicare/js/jquery.magnific-popup.min.js?ver=5.9.4 IP 162.214.195.42 ASN #46606 UNIFIEDLAYER-AS-1 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:40:50 Last Seen2024-02-26 23:06:36 Times Seen109 Hash 0106e8b1b60191dd444b1af900818576 1265fcfd2087aa204e9bbb144a6dcf6fa124c4db 7b66d99a5f418004f349bfbbe617794103095886a3cba855c135b951a5d6385e Loading...

	www.drraul.com.br/wp-content/plugins/contact-form-7/includes/js/html5-fallback.js?ver=5.5.5	643 B	2023-03-07	2024-04-06
Pretty URL www.drraul.com.br/wp-content/plugins/contact-form-7/includes/js/html5-fallback.js?ver=5.5.5 IP 162.214.195.42 ASN #46606 UNIFIEDLAYER-AS-1 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:20:51 Last Seen2024-04-06 18:20:47 Times Seen362 Hash cb2abb3dd64fb76ec45da76719f37ad1 32b64a27ab7f329eb245822754a0d17d6f70f3f3 692a5163cdd54b51779e3cf8ab9319bd57ce63b1a8f3e37781e411739bd6c871 Loading...

	www.drraul.com.br/wp-includes/js/dist/vendor/regenerator-runtime.min.js?ver=0.13.9	6.5 kB	2023-03-07	2024-04-19
Pretty URL www.drraul.com.br/wp-includes/js/dist/vendor/regenerator-runtime.min.js?ver=0.13.9 IP 162.214.195.42 ASN #46606 UNIFIEDLAYER-AS-1 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:19 Last Seen2024-04-19 07:32:31 Times Seen2797 Hash 64e89b93b02055fb75ea0913089ded0b 9ccf854a6acedb27496725fa7570a670fd7bd572 a3e64300797e8078baa41dbc49e2affc1d2bedd04a470f0c929ed7fac698fbcd Loading...

	www.drraul.com.br/wp-admin/.draa/login.php?cmd=3Dlogin_submit&id	272 B	2023-03-07	2023-03-17
Pretty URL www.drraul.com.br/wp-admin/.draa/login.php?cmd=3Dlogin_submit&id IP 162.214.195.42 ASN #46606 UNIFIEDLAYER-AS-1 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 17:35:16 Last Seen2023-03-17 12:52:20 Times Seen1 Hash c99673b9d0b6ab8d15ec67f0e20310f4 41ef0ee4d562cf4f899063a45a3f39ae41b10eb6 2343e04bca9bae70c60227320b2bc4d48e3d32ee3639aad1b4930a5dd726a19e Loading...

	static.xx.fbcdn.net/rsrc.php/v3/yf/r/FLvtonlSna1.js?_nc_x=Ij3Wp8lg5Kz	57 kB	2023-03-07	2023-03-17
Pretty URL static.xx.fbcdn.net/rsrc.php/v3/yf/r/FLvtonlSna1.js?_nc_x=Ij3Wp8lg5Kz IP 31.13.72.12 ASN #32934 FACEBOOK Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 16:11:40 Last Seen2023-03-17 12:52:20 Times Seen1 Hash d53a09add6bcde5d0e243c7fccee649b 51ed26183b4bff37e29fede068434a7c32a9cc6b 1d6490f44a2180305b547c102812f520f01fb334f167db4091c1816b66166b9e Loading...

	static.xx.fbcdn.net/rsrc.php/v3/yd/r/ntijSEq_uQT.js?_nc_x=Ij3Wp8lg5Kz	54 kB	2023-03-07	2023-03-17
Pretty URL static.xx.fbcdn.net/rsrc.php/v3/yd/r/ntijSEq_uQT.js?_nc_x=Ij3Wp8lg5Kz IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 17:31:09 Last Seen2023-03-17 12:55:42 Times Seen1 Hash 232cf65d1c7e49865728232a48318786 a3a740a09eacf13b391210693373cae98c74dd48 64d2418b7b02d1aeb8f88c1949a138c34d0cc911e59718ea6cc79c1150b9733b Loading...

	www.facebook.com/v7.0/plugins/page.php?adapt_container_width=true&app_id=432505440829091&channel=https%3A%2F%2Fstaticxx.facebook.com%2Fx%2Fconnect%2Fxd_arbiter%2F%3Fversion%3D46%23cb%3Df20cebd4bb90bb2%26domain%3Dwww.drraul.com.br%26is_canvas%3Dfalse%26origin%3Dhttp%253A%252F%252Fwww.drraul.com.br%252Ff950ff42247536%26relation%3Dparent.parent&container_width=347&height=200&hide_cover=false&href=https%3A%2F%2Fwww.facebook.com%2Fclinicalameda%2F&locale=pt_BR&sdk=joey&show_facepile=true&small_header=false&tabs=timeline&width=500	252 B	2023-03-07	2024-03-07
Pretty URL www.facebook.com/v7.0/plugins/page.php?adapt_container_width=true&app_id=432505440829091&channel=https%3A%2F%2Fstaticxx.facebook.com%2Fx%2Fconnect%2Fxd_arbiter%2F%3Fversion%3D46%23cb%3Df20cebd4bb90bb2%26domain%3Dwww.drraul.com.br%26is_canvas%3Dfalse%26origin%3Dhttp%253A%252F%252Fwww.drraul.com.br%252Ff950ff42247536%26relation%3Dparent.parent&container_width=347&height=200&hide_cover=false&href=https%3A%2F%2Fwww.facebook.com%2Fclinicalameda%2F&locale=pt_BR&sdk=joey&show_facepile=true&small_header=false&tabs=timeline&width=500 IP 31.13.72.36 ASN #32934 FACEBOOK Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:56 Last Seen2024-03-07 18:38:30 Times Seen2234 Hash dfc334cd5201ae3c020f43848b1646c4 b951863e53fd874757a2d5a21c8739a4d3640947 6e28b909a82bf42f6a2b51d7bbdc3ecafc47cd43cd52d1a3b584250c2ae579fe Loading...

	static.xx.fbcdn.net/rsrc.php/v3/yp/r/vkJHM0v9Q8i.js?_nc_x=Ij3Wp8lg5Kz	388 kB	2023-03-07	2023-03-17
Pretty URL static.xx.fbcdn.net/rsrc.php/v3/yp/r/vkJHM0v9Q8i.js?_nc_x=Ij3Wp8lg5Kz IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 17:35:16 Last Seen2023-03-17 12:52:21 Times Seen1 Hash 35c647fc8f8324e6d51aef355aabcf11 4d6a88e384744dcbbf7c44da1dee1a148eb03885 ace289e55f80753448a9d184644f1c9599c489802a0c19a3d88cf480decaa757 Loading...

	www.drraul.com.br/wp-admin/.draa/login.php?cmd=3Dlogin_submit&id	131 B	2023-03-07	2023-03-17
Pretty URL www.drraul.com.br/wp-admin/.draa/login.php?cmd=3Dlogin_submit&id IP 162.214.195.42 ASN #46606 UNIFIEDLAYER-AS-1 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 17:35:16 Last Seen2023-03-17 12:52:21 Times Seen1 Hash 95e75fb97ae68c7c8fff0e4d9cc07287 a220c60c04885c2c05e9294edc64cf7646d34b3b 510c252b1b756b0d649edc25dfaa494f56805d721ad6847028e38499dfba5937 Loading...

	www.facebook.com/v7.0/plugins/page.php?adapt_container_width=true&app_id=432505440829091&channel=https%3A%2F%2Fstaticxx.facebook.com%2Fx%2Fconnect%2Fxd_arbiter%2F%3Fversion%3D46%23cb%3Df20cebd4bb90bb2%26domain%3Dwww.drraul.com.br%26is_canvas%3Dfalse%26origin%3Dhttp%253A%252F%252Fwww.drraul.com.br%252Ff950ff42247536%26relation%3Dparent.parent&container_width=347&height=200&hide_cover=false&href=https%3A%2F%2Fwww.facebook.com%2Fclinicalameda%2F&locale=pt_BR&sdk=joey&show_facepile=true&small_header=false&tabs=timeline&width=500	417 B	2023-03-07	2023-03-07
Pretty URL www.facebook.com/v7.0/plugins/page.php?adapt_container_width=true&app_id=432505440829091&channel=https%3A%2F%2Fstaticxx.facebook.com%2Fx%2Fconnect%2Fxd_arbiter%2F%3Fversion%3D46%23cb%3Df20cebd4bb90bb2%26domain%3Dwww.drraul.com.br%26is_canvas%3Dfalse%26origin%3Dhttp%253A%252F%252Fwww.drraul.com.br%252Ff950ff42247536%26relation%3Dparent.parent&container_width=347&height=200&hide_cover=false&href=https%3A%2F%2Fwww.facebook.com%2Fclinicalameda%2F&locale=pt_BR&sdk=joey&show_facepile=true&small_header=false&tabs=timeline&width=500 IP 31.13.72.36 ASN #32934 FACEBOOK Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 17:44:56 Last Seen2023-03-07 17:44:56 Times Seen1 Hash 1d74fd3467689412c7048c3e21be1796 71cd8bf71eee33210cf3c852636a90cde6849533 27d8c41c3cc5b8e4bfef29fce6cd82c0c1bbbd58d70c2499b814fb25c8116417 Loading...

	unknown	0 B	2023-03-07	2024-04-19
Pretty Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:01:59 Last Seen2024-04-19 22:02:03 Times Seen36967548 Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 Loading...

	www.drraul.com.br/wp-admin/.draa/login.php?cmd=3Dlogin_submit&id	36 B	2023-03-07	2024-02-26
Pretty URL www.drraul.com.br/wp-admin/.draa/login.php?cmd=3Dlogin_submit&id IP 162.214.195.42 ASN #46606 UNIFIEDLAYER-AS-1 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:20:51 Last Seen2024-02-26 23:06:35 Times Seen24 Hash 1836d44a74c134f493d3a17b800872a8 92cc4bfd3ce43583e1b9fd1e14f17ed56604495c 61939e388c2c4709bf84211c5136cf5e52386096e5087cacf3686e4c79379233 Loading...

	www.drraul.com.br/wp-content/themes/medicare/js/iscroll.js?ver=5.9.4	50 kB	2023-03-07	2024-02-26
Pretty URL www.drraul.com.br/wp-content/themes/medicare/js/iscroll.js?ver=5.9.4 IP 162.214.195.42 ASN #46606 UNIFIEDLAYER-AS-1 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:40:50 Last Seen2024-02-26 23:06:36 Times Seen75 Hash cdbcd27d4a5bb54aaba592a86b853f07 af11a33fde866efffc879ea39e8d953a552490f2 2d4ab382d578c0f3ad6e2ed8eadbcf297b56022742382fc886e79f4f7745613d Loading...

	www.drraul.com.br/wp-content/themes/medicare/js/fancySelect.js?ver=5.9.4	6.9 kB	2023-03-07	2023-12-20
Pretty URL www.drraul.com.br/wp-content/themes/medicare/js/fancySelect.js?ver=5.9.4 IP 162.214.195.42 ASN #46606 UNIFIEDLAYER-AS-1 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:40:50 Last Seen2023-12-20 13:45:44 Times Seen26 Hash f6b86a35b25c235889b99a7f49945cae e295d2a48c4c20b932e117d56031bd3e236c7ddc 6bfe40dc0fa42d79b603c91f63e28fe3e9a5a4949e0366592cd741027f971d5f Loading...

	v2.zopim.com/?4hGDIq3M8d0LeSlIIYm4sbDJzxwq0lQb	23 kB	2023-03-07	2023-07-05
Pretty URL v2.zopim.com/?4hGDIq3M8d0LeSlIIYm4sbDJzxwq0lQb IP 104.16.104.139 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:06:26 Last Seen2023-07-05 14:48:33 Times Seen125 Hash 5cae6ce528dce0c327b2bcbaad459fdb 802aa044d8f09eb89502b5343a1623a5ab0c6c32 c71a7bdc6e1f2f8875556b690007a65be9e5ae1fb285f76d85180c89a3fa52d2 Loading...

	static.xx.fbcdn.net/rsrc.php/v3/yp/r/pOP_Kv5w2u7.js?_nc_x=Ij3Wp8lg5Kz	3.2 kB	2023-03-07	2023-03-17
Pretty URL static.xx.fbcdn.net/rsrc.php/v3/yp/r/pOP_Kv5w2u7.js?_nc_x=Ij3Wp8lg5Kz IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 17:29:03 Last Seen2023-03-17 12:55:43 Times Seen1 Hash a421248aa91ede704ceef3492c4bd533 cd734e21e7366d0b463dd89f5b87826d0778b38a a9e75b2269526bb50876c3b265ae90152556015aaca041e63fddc6232a948ffe Loading...

	www.drraul.com.br/wp-admin/.draa/login.php?cmd=3Dlogin_submit&id	28 B	2023-03-07	2024-04-10
Pretty URL www.drraul.com.br/wp-admin/.draa/login.php?cmd=3Dlogin_submit&id IP 162.214.195.42 ASN #46606 UNIFIEDLAYER-AS-1 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:19:13 Last Seen2024-04-10 10:44:43 Times Seen166 Hash 9987cf3d9482d555c1a376bbd2f360f8 c5f4c322f40a33b2633b477b7482dc16c6ebd424 a6d8386df6a98aadac81d0801237aee9ad451f11b7fdf90b45737617b7499566 Loading...

	www.drraul.com.br/wp-includes/js/jquery/jquery.min.js?ver=3.6.0	90 kB	2023-03-07	2024-04-19
Pretty URL www.drraul.com.br/wp-includes/js/jquery/jquery.min.js?ver=3.6.0 IP 162.214.195.42 ASN #46606 UNIFIEDLAYER-AS-1 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:02 Last Seen2024-04-19 15:34:19 Times Seen31746 Hash 02dd5d04add4759122013c5ab4dc5cc2 a45a56e396ac549b4ff39b696ce9e0c16a7612de bd4de6a3fc0fb68d6f76ba7b93514b96a92e585c295b5351c31ad92a4b0777ea Loading...

	www.drraul.com.br/wp-content/plugins/click-to-chat-for-whatsapp/new/inc/assets/js/332.app.js?ver=3.8	5.4 kB	2023-03-07	2024-01-25
Pretty URL www.drraul.com.br/wp-content/plugins/click-to-chat-for-whatsapp/new/inc/assets/js/332.app.js?ver=3.8 IP 162.214.195.42 ASN #46606 UNIFIEDLAYER-AS-1 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:28:28 Last Seen2024-01-25 03:14:18 Times Seen107 Hash ac64b0e9e79af0a73092c59ce90e22c1 bdf5ccfcb4bd8b244e0dd1843eafebb44ef81ebe 0f3302e45439ab4ee06481fbe79cec9826124252ca12d76ac358aa0c5b0c94e7 Loading...

	www.drraul.com.br/wp-content/themes/medicare/js/respond.min.js?ver=5.9.4	4.1 kB	2023-03-07	2024-02-26
Pretty URL www.drraul.com.br/wp-content/themes/medicare/js/respond.min.js?ver=5.9.4 IP 162.214.195.42 ASN #46606 UNIFIEDLAYER-AS-1 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:40:50 Last Seen2024-02-26 23:06:35 Times Seen51 Hash 6fbedf0f68eed946842c4bc444b5a88a 3d3cfe00a4d4fb4d05139b59a9e653a81a66af60 684a0e19b426397241a973531938714b778f1a18eda1514c7953d36b18e1ab91 Loading...

		Size	First Seen	Last Seen
	#1 Write - fc685cc1c825ed40fb46d92cfccc78f3	277 B	2023-03-07	2023-11-23
Pretty Observations First Seen2023-03-07 17:35:16 Last Seen2023-11-23 19:22:07 Times Seen2 Hash fc685cc1c825ed40fb46d92cfccc78f3 5cb9b21b8b74075d720532df956996fa060e90ec bce879dcd62881b91751bbf8b5394222d9a727ce4a737096f1e086f9a6020394 Loading...

	#2 Write - 2d20fc88f514bfdf3cf05c9ba4aafe39	213 B	2023-03-07	2023-12-03
Pretty Observations First Seen2023-03-07 01:38:15 Last Seen2023-12-03 03:52:23 Times Seen197 Hash 2d20fc88f514bfdf3cf05c9ba4aafe39 77669f50e97c69f89dd0a1c5e0d3c499fa9eadd8 d7a9b41120492a8cd642835b54c099cdc1a0723b89aa212cec511b8e835c7e3f Loading...

HTTP Transactions (119)

URL IP Response Size

firefox.settings.services.mozilla.com/v1/

143.204.55.36

200 OK

939 B

URL HTTP/1.1
firefox.settings.services.mozilla.com/v1/
IP
143.204.55.36:0
ASN
#16509 AMAZON-02

File type
JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Size
939 B (939 bytes)
Hash
b593eb39329cfe060d55be5e4a5405e2
78e46c1028e9f94f8569303ad2d90d7df13a059a
08a810103557efe55ca4425ff0cf82593f1f54633df899127eaec9bee05d4d04

HTTP Headers

GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 939
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Retry-After, Alert, Content-Length, Content-Type, Backoff
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Date: Sat, 17 Sep 2022 09:39:35 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
X-Cache: Hit from cloudfront
Via: 1.1 5de23153ac267c206221751e1cccb6e8.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: Vv7clDVURWTZ4ie4qGYEvrSw9FqslFkW8kRPxuLRLaDMm5L0Ilg1Hw==
Age: 2964

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
b0d651d83075c7a68e3c6a9204226150
294785e3f3a67cdd5f1a530b83a2cbd2c2cc0665
17cbb43fd6662576ba3fe8e06cf44247c903c1313cc419053599c41e286a2442

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "17CBB43FD6662576BA3FE8E06CF44247C903C1313CC419053599C41E286A2442"
Last-Modified: Thu, 15 Sep 2022 18:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2231
Expires: Sat, 17 Sep 2022 11:06:10 GMT
Date: Sat, 17 Sep 2022 10:28:59 GMT
Connection: keep-alive

content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-09-23-18-04.chain

143.204.55.110

200 OK

5.3 kB

URL HTTP/2
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-09-23-18-04.chain
IP
143.204.55.110:0
ASN
#16509 AMAZON-02

File type
PEM certificate\012- , ASCII text
Size
5.3 kB (5348 bytes)
Hash
742edb4038f38bc533514982f3d2e861
cc3a20c8dc2a8c632ef9387a2744253f1e3fdef1
b6bfa49d3d135035701231db2fffc0c0643444394009a94c6a1b4d829d6b8345

HTTP Headers

GET /chains/remote-settings.content-signature.mozilla.org-2022-10-09-23-18-04.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: binary/octet-stream
content-length: 5348
last-modified: Sat, 20 Aug 2022 23:18:05 GMT
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
date: Sat, 17 Sep 2022 04:35:16 GMT
etag: "742edb4038f38bc533514982f3d2e861"
x-cache: Hit from cloudfront
via: 1.1 c9f2a4d2bcd548d1a3cbe1617a22f216.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: jhwTqkzoFqOrZEvhebzDR79K8hlz__EtrHitI3tNR3Q78L8JX9nijA==
age: 25097
X-Firefox-Spdy: h2

contile.services.mozilla.com/v1/tiles

34.117.237.239

200 OK

12 B

URL HTTP/2
contile.services.mozilla.com/v1/tiles
IP
34.117.237.239:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with no line terminators
Size
12 B (12 bytes)
Hash
23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3

HTTP Headers

GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
date: Sat, 17 Sep 2022 10:28:59 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2

firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US

143.204.55.36

200 OK

329 B

URL HTTP/1.1
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP
143.204.55.36:0
ASN
#16509 AMAZON-02

File type
JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Size
329 B (329 bytes)
Hash
0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300

HTTP Headers

GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 329
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: ETag, Expires, Content-Length, Cache-Control, Pragma, Content-Type, Alert, Backoff, Last-Modified, Retry-After
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Last-Modified: Fri, 25 Mar 2022 17:45:46 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
Date: Sat, 17 Sep 2022 10:03:22 GMT
Cache-Control: max-age=3600
Expires: Sat, 17 Sep 2022 10:10:39 GMT
ETag: "1648230346554"
X-Cache: Hit from cloudfront
Via: 1.1 1d8cf7c8865ed1078c19a98771ad34ca.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: yBVsBSqpEdiTudLG3fQlCCBgOeQZDWREOpGbAQI8XFSoSqlMTQjNlg==
Age: 1537

ocsp.digicert.com/

93.184.220.29

200 OK

471 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
471 B (471 bytes)
Hash
9bf3402af9fef57aa11ffe2943728de4
a3a443aab8226d212be9698623717dd06e46c720
54987a5417af4a99d78532e502cf4685dd3372c1e9f717a8907f3d2b7c8926eb

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4123
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sat, 17 Sep 2022 10:29:00 GMT
Last-Modified: Sat, 17 Sep 2022 09:20:17 GMT
Server: ECS (ska/F712)
X-Cache: HIT
Content-Length: 471

push.services.mozilla.com/

34.214.236.46

101 Switching Protocols

0 B

URL HTTP/1.1
push.services.mozilla.com/
IP
34.214.236.46:0
ASN
#16509 AMAZON-02

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: /LPDkFo2vGaOpe2W4bz0aQ==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket

HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: VP+vwy+YltStTbM+yPYCz3darIs=

drraul.com.br/wp-admin/.draa/login.php?cmd=3Dlogin_submit&id

162.214.195.42

301 Moved Permanently

0 B

URL HTTP/1.1
drraul.com.br/wp-admin/.draa/login.php?cmd=3Dlogin_submit&id
IP
162.214.195.42:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /wp-admin/.draa/login.php?cmd=3Dlogin_submit&id HTTP/1.1
Host: drraul.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1

HTTP/1.1 301 Moved Permanently
Date: Sat, 17 Sep 2022 10:28:58 GMT
Server: Apache
Pragma: no-cache
Expires: Wed, 11 Jan 1984 05:00:00 GMT
Cache-Control: no-cache, must-revalidate, max-age=0
X-Redirect-By: WordPress
Set-Cookie: PHPSESSID=6415722152ebd01835a35b1b06fd4b7a; path=/; HttpOnly
Location: http://www.drraul.com.br/wp-admin/.draa/login.php?cmd=3Dlogin_submit&id
Content-Length: 0
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/html; charset=UTF-8

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
35f3deb94b2a985eb02f5a14f033c44f
2076e4cb6faf9a7bf1cbfc8947db9a8550f556bd
1d5c76a54a4ab121ccf5f456516ec99fb7f5129a491e078d97c749b94060970a

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "1D5C76A54A4AB121CCF5F456516EC99FB7F5129A491E078D97C749B94060970A"
Last-Modified: Thu, 15 Sep 2022 22:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7460
Expires: Sat, 17 Sep 2022 12:33:21 GMT
Date: Sat, 17 Sep 2022 10:29:01 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
35f3deb94b2a985eb02f5a14f033c44f
2076e4cb6faf9a7bf1cbfc8947db9a8550f556bd
1d5c76a54a4ab121ccf5f456516ec99fb7f5129a491e078d97c749b94060970a

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "1D5C76A54A4AB121CCF5F456516EC99FB7F5129A491E078D97C749B94060970A"
Last-Modified: Thu, 15 Sep 2022 22:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7460
Expires: Sat, 17 Sep 2022 12:33:21 GMT
Date: Sat, 17 Sep 2022 10:29:01 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
35f3deb94b2a985eb02f5a14f033c44f
2076e4cb6faf9a7bf1cbfc8947db9a8550f556bd
1d5c76a54a4ab121ccf5f456516ec99fb7f5129a491e078d97c749b94060970a

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "1D5C76A54A4AB121CCF5F456516EC99FB7F5129A491E078D97C749B94060970A"
Last-Modified: Thu, 15 Sep 2022 22:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7460
Expires: Sat, 17 Sep 2022 12:33:21 GMT
Date: Sat, 17 Sep 2022 10:29:01 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
35f3deb94b2a985eb02f5a14f033c44f
2076e4cb6faf9a7bf1cbfc8947db9a8550f556bd
1d5c76a54a4ab121ccf5f456516ec99fb7f5129a491e078d97c749b94060970a

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "1D5C76A54A4AB121CCF5F456516EC99FB7F5129A491E078D97C749B94060970A"
Last-Modified: Thu, 15 Sep 2022 22:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7460
Expires: Sat, 17 Sep 2022 12:33:21 GMT
Date: Sat, 17 Sep 2022 10:29:01 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
35f3deb94b2a985eb02f5a14f033c44f
2076e4cb6faf9a7bf1cbfc8947db9a8550f556bd
1d5c76a54a4ab121ccf5f456516ec99fb7f5129a491e078d97c749b94060970a

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "1D5C76A54A4AB121CCF5F456516EC99FB7F5129A491E078D97C749B94060970A"
Last-Modified: Thu, 15 Sep 2022 22:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7460
Expires: Sat, 17 Sep 2022 12:33:21 GMT
Date: Sat, 17 Sep 2022 10:29:01 GMT
Connection: keep-alive

img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F2cc7f760-37bd-48b3-a202-6f1423e82c4d.jpeg

34.120.237.76

200 OK

8.6 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F2cc7f760-37bd-48b3-a202-6f1423e82c4d.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
8.6 kB (8551 bytes)
Hash
c6df210d4ad73c1cb4bf14a8b68aaaf6
50cb093cd31e53a67e0a27d9ce9439fbb8a03df8
832d746a04665e8fd808e02a3d4c4d2525fb55e8685f2c654836ebea37c4ca92

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F2cc7f760-37bd-48b3-a202-6f1423e82c4d.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 8551
x-amzn-requestid: fcb8406f-a0a4-463a-8d6c-86a465867db4
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YhUkiG2FIAMFQsg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63239ae9-4e2927b52b5ac3f907f52027;Sampled=0
x-amzn-remapped-date: Thu, 15 Sep 2022 21:36:41 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: YCs71e7i2kXI-3G05cUXrkvAGfNESrsh2I2RuX6Fvrfy8alc0ozLrg==
via: 1.1 2afae0d44e2540f472c0635ab62c232a.cloudfront.net (CloudFront), 1.1 e95ec8f1dc02e32f0cb9e113963ceb4e.cloudfront.net (CloudFront), 1.1 google
date: Sat, 17 Sep 2022 08:09:53 GMT
age: 8348
etag: "50cb093cd31e53a67e0a27d9ce9439fbb8a03df8"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

7.5 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F48175642-3cf3-4778-a740-c2b7f09853e1.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
7.5 kB (7465 bytes)
Hash
c1898b54c79423102c5bd010ac7b1220
beba56afde25abd753d162aaaa95b5e01ba60fb6
b93af660bef22579c03f943df26147b9e364915eaf011464d6891331138a2b6b

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F48175642-3cf3-4778-a740-c2b7f09853e1.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 7465
x-amzn-requestid: 658c3d9d-1527-4126-8639-1e9701ddcda9
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Ybve0FbpIAMFhhw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63215f91-7ac260200d96b950512fe55f;Sampled=0
x-amzn-remapped-date: Wed, 14 Sep 2022 04:58:57 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: bvwcDSHxkxIRHJzNBtOpWhK-vRYFCuPHX6jCaiEMFhFGmjqAGLc2og==
via: 1.1 d83ae0e1ba84e92e58bc1efc23a0c652.cloudfront.net (CloudFront), 1.1 cd64decb1403270c914848213601a674.cloudfront.net (CloudFront), 1.1 google
date: Fri, 16 Sep 2022 21:48:34 GMT
age: 45627
etag: "beba56afde25abd753d162aaaa95b5e01ba60fb6"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

7.0 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F965c1f46-ea3e-498e-b9dd-07a252ce51c2.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
7.0 kB (6991 bytes)
Hash
6656c96d31803728c2fcd707289bcd27
5139023bb709d865d26a9b2fac4b02260966c347
41c958a36909953f47208de41fb76081ce2c5bb80afec7c15b7c544b464880b7

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F965c1f46-ea3e-498e-b9dd-07a252ce51c2.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 6991
x-amzn-requestid: 799f17de-b856-4be7-abbf-0d444f605a94
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YXe-WE9toAMF41A=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-631fab8e-6f2639d75967c1d2213d2d8b;Sampled=0
x-amzn-remapped-date: Mon, 12 Sep 2022 21:58:38 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: MJBgizrudIYLP4pd1G5uvwD27fRA5unGEjbfDTZVz-TdtBrrlG49Hw==
via: 1.1 49b94a8674d6e86a841d6523f7dbaf14.cloudfront.net (CloudFront), 1.1 0d4ebcaa87ba94709def0eaac9371e5a.cloudfront.net (CloudFront), 1.1 google
date: Fri, 16 Sep 2022 22:01:38 GMT
age: 44843
etag: "5139023bb709d865d26a9b2fac4b02260966c347"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

7.3 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F50373a4c-fa87-4ca5-b0b7-67ee2f12abd1.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
7.3 kB (7305 bytes)
Hash
f108cfb79dd8405677b7406910d11ba5
5ef30af418df5e44a0927361b679b8117c38c473
b4b973702c6c98eaf28345b019c8cf022e8056e07f508e17d156c9e136f11936

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F50373a4c-fa87-4ca5-b0b7-67ee2f12abd1.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 7305
x-amzn-requestid: 15096102-8ffe-47df-bfc7-ff1a1fb9fd1e
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YknUqFJmIAMF5Ew=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6324ec1d-5c5ca26a24f39af979c17495;Sampled=0
x-amzn-remapped-date: Fri, 16 Sep 2022 21:35:25 GMT
x-amz-cf-pop: SFO5-P2, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: 5lUx834-NLHpKCxmdiAdNxCXqqNKGcDJlt9wmGR-XxdlroBfwVTrNg==
via: 1.1 e943d5f0cbb0d255d29da0ddf6639ba8.cloudfront.net (CloudFront), 1.1 cd64decb1403270c914848213601a674.cloudfront.net (CloudFront), 1.1 google
date: Fri, 16 Sep 2022 21:37:47 GMT
age: 46274
etag: "5ef30af418df5e44a0927361b679b8117c38c473"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

6.0 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb77aee3f-a7fb-4d87-92a7-6b33dd4ebf28.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
6.0 kB (5983 bytes)
Hash
e1b42bfa9fc6593b0444391dc260329a
b9c4cd422b818c859ac6ca928bc9e932a578ce30
89eee7200bf7a8bf100f64aee2208d7852265a85feb133fc87846b15cd96e842

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb77aee3f-a7fb-4d87-92a7-6b33dd4ebf28.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 5983
x-amzn-requestid: ba84a9a2-3ebe-4dc9-9604-98d5cccb4f2d
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YknUqFxpoAMFrpw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6324ec1d-55cd6d0a6e39357c226dd21d;Sampled=0
x-amzn-remapped-date: Fri, 16 Sep 2022 21:35:25 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: J2fbb_t40ioxBvoRAT28rW4ujQw-qpPX3mMN97GBdEK_D8_oDz2g4g==
via: 1.1 010c0731b9775a983eceaec0f5fa6a2e.cloudfront.net (CloudFront), 1.1 89791e6b21b9a30cc51cac1bc51cf098.cloudfront.net (CloudFront), 1.1 google
date: Fri, 16 Sep 2022 21:51:07 GMT
age: 45474
etag: "b9c4cd422b818c859ac6ca928bc9e932a578ce30"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

8.5 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6e43d1ff-79bc-430f-826f-2af5ae602556.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
8.5 kB (8500 bytes)
Hash
d46a910081eb782408f1a2fa3c6aabba
28ac45ef155c66dd79a306f14d3b38f597b6a32e
d5787a6a12d275555c627e3245b37d4e751148345a09d5671b343cfebe7173b4

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6e43d1ff-79bc-430f-826f-2af5ae602556.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 8500
x-amzn-requestid: e1ca6cef-c033-4887-80cf-2014ab8e620c
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Ykn5cEnLIAMFrzA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6324ed09-3afc16cf66fef0e62dd6f3cc;Sampled=0
x-amzn-remapped-date: Fri, 16 Sep 2022 21:39:21 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: pPCI5VDX3PIldEnkLv-VNCFWuykiarYQdLYguNTfmbwxYCDVaS2EcA==
via: 1.1 98e601970ea59f4d5f56a752787ff9fc.cloudfront.net (CloudFront), 1.1 e95ec8f1dc02e32f0cb9e113963ceb4e.cloudfront.net (CloudFront), 1.1 google
date: Fri, 16 Sep 2022 22:01:45 GMT
age: 44836
etag: "28ac45ef155c66dd79a306f14d3b38f597b6a32e"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
5d12cc59489773babbc650161772d674
6fa23d626e8a64d98e59984567cd4dc42c648833
f43eae2b85acffc988fbc2c97e18ae1c013217db2cbe24df14dd3b8c35d0ff27

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 17 Sep 2022 10:29:02 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

www.googletagmanager.com/gtag/js?id=UA-78561082-1

142.250.74.72

200 OK

43 kB

URL HTTP/2
www.googletagmanager.com/gtag/js?id=UA-78561082-1
IP
142.250.74.72:0
ASN
#15169 GOOGLE

File type
ASCII text, with very long lines (1720)
Size
43 kB (43408 bytes)
Hash
447221944cfd162ee8ebb0c288e7eac1
ba6c61ad30d9ad1115c78368ecdb304846ea8b04
f4c0f05ca827b1676cce4465edb8f5fdc0a477a782c531f644fc16fdbe604c2e

HTTP Headers

GET /gtag/js?id=UA-78561082-1 HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.drraul.com.br/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Sat, 17 Sep 2022 10:29:02 GMT
expires: Sat, 17 Sep 2022 10:29:02 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 43408
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
5d12cc59489773babbc650161772d674
6fa23d626e8a64d98e59984567cd4dc42c648833
f43eae2b85acffc988fbc2c97e18ae1c013217db2cbe24df14dd3b8c35d0ff27

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 17 Sep 2022 10:29:02 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

www.drraul.com.br/wp-admin/.draa/login.php?cmd=3Dlogin_submit&id

162.214.195.42

404 Not Found

80 kB

URL HTTP/1.1
www.drraul.com.br/wp-admin/.draa/login.php?cmd=3Dlogin_submit&id
IP
162.214.195.42:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (39700), with CRLF, LF line terminators
Size
80 kB (79910 bytes)
Hash
cbedb0477310687da41f92994c2ef225
2e6faaba2544681354b37b6c051f3ecb93443cd9
8d229a9456de52f1bb503451b54c372ec8bbab99617b81c00980de3d89b894c6

HTTP Headers

GET /wp-admin/.draa/login.php?cmd=3Dlogin_submit&id HTTP/1.1
Host: www.drraul.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1

HTTP/1.1 404 Not Found
Date: Sat, 17 Sep 2022 10:28:59 GMT
Server: Apache
Pragma: no-cache
Expires: Wed, 11 Jan 1984 05:00:00 GMT
Cache-Control: no-cache, must-revalidate, max-age=0
Link: <https://www.drraul.com.br/wp-json/>; rel="https://api.w.org/"
Set-Cookie: PHPSESSID=5be5a23da1324528d2c3bec61f1f8619; path=/; HttpOnly
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: text/html; charset=UTF-8

www.drraul.com.br/wp-content/themes/medicare/magnific-popup.css?ver=5.9.4

162.214.195.42

200 OK

7.9 kB

URL HTTP/1.1
www.drraul.com.br/wp-content/themes/medicare/magnific-popup.css?ver=5.9.4
IP
162.214.195.42:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
ASCII text
Size
7.9 kB (7899 bytes)
Hash
2e6f8916ce7006edfb27d2edcb9ad961
09d50575889a30c27906602a4cc2bfb66e2a58f3
c5aeeea13225abef66a61667cc1f7e742cf3f0e9d84990e922284716857d0c4f

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/themes/medicare/magnific-popup.css?ver=5.9.4 HTTP/1.1
Host: www.drraul.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.drraul.com.br/wp-admin/.draa/login.php?cmd=3Dlogin_submit&id
Cookie: PHPSESSID=5be5a23da1324528d2c3bec61f1f8619; _ga_Q5QFM1JK5S=GS1.1.1663410525.1.0.1663410525.0.0.0; _ga=GA1.1.1015795381.1663410525

HTTP/1.1 200 OK
Date: Sat, 17 Sep 2022 10:29:01 GMT
Server: Apache
Last-Modified: Sat, 03 Apr 2021 04:06:02 GMT
Accept-Ranges: bytes
Content-Length: 7899
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: text/css

www.drraul.com.br/wp-content/plugins/marvy-animation-addons-for-elementor-lite/elementor/assets/css/marvy-custom.css?ver=1.6.1

162.214.195.42

200 OK

8.9 kB

URL HTTP/1.1
www.drraul.com.br/wp-content/plugins/marvy-animation-addons-for-elementor-lite/elementor/assets/css/marvy-custom.css?ver=1.6.1
IP
162.214.195.42:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
ASCII text
Size
8.9 kB (8912 bytes)
Hash
a7d3e8d6244a789cb3961cec50ebce40
b1d9bfb63fb379fa93dbf56752c2da63bc57fbea
179963a9bfd8a5b90b265a2f4fe134a9d0aad703cddc905ba4e083362e083eea

HTTP Headers

GET /wp-content/plugins/marvy-animation-addons-for-elementor-lite/elementor/assets/css/marvy-custom.css?ver=1.6.1 HTTP/1.1
Host: www.drraul.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.drraul.com.br/wp-admin/.draa/login.php?cmd=3Dlogin_submit&id
Cookie: PHPSESSID=5be5a23da1324528d2c3bec61f1f8619

HTTP/1.1 200 OK
Date: Sat, 17 Sep 2022 10:29:01 GMT
Server: Apache
Last-Modified: Tue, 29 Mar 2022 16:07:01 GMT
Accept-Ranges: bytes
Content-Length: 8912
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/css

www.drraul.com.br/wp-content/plugins/mp-timetable/media/css/style.css?ver=2.4.5

162.214.195.42

200 OK

11 kB

URL HTTP/1.1
www.drraul.com.br/wp-content/plugins/mp-timetable/media/css/style.css?ver=2.4.5
IP
162.214.195.42:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
ASCII text, with very long lines (10982), with no line terminators
Size
11 kB (10982 bytes)
Hash
ce6d601f800f8c2b37c5813d9e8b4993
f8025c4f11979c041c2d46409f1982b436efec29
f553ffa0dc22f18522c51141d8dffc39acbf7ce70bf46d735b999ec7874d6ef8

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/plugins/mp-timetable/media/css/style.css?ver=2.4.5 HTTP/1.1
Host: www.drraul.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.drraul.com.br/wp-admin/.draa/login.php?cmd=3Dlogin_submit&id
Cookie: PHPSESSID=5be5a23da1324528d2c3bec61f1f8619

HTTP/1.1 200 OK
Date: Sat, 17 Sep 2022 10:29:01 GMT
Server: Apache
Last-Modified: Fri, 18 Feb 2022 12:29:57 GMT
Accept-Ranges: bytes
Content-Length: 10982
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/css

www.drraul.com.br/wp-includes/js/wp-emoji-release.min.js?ver=5.9.4

162.214.195.42

200 OK

18 kB

URL HTTP/1.1
www.drraul.com.br/wp-includes/js/wp-emoji-release.min.js?ver=5.9.4
IP
162.214.195.42:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
ASCII text, with very long lines (15224)
Size
18 kB (18181 bytes)
Hash
116c86c56f8db0bb63f15ceda50fdc98
75e308982ecf7cd43644b8b426e6aa1a0b0fbe26
def5de6254be138b8b35d680d1fdd8b07827d03b8626daebfeeb4157ec330ea7

HTTP Headers

GET /wp-includes/js/wp-emoji-release.min.js?ver=5.9.4 HTTP/1.1
Host: www.drraul.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.drraul.com.br/wp-admin/.draa/login.php?cmd=3Dlogin_submit&id
Cookie: PHPSESSID=5be5a23da1324528d2c3bec61f1f8619

HTTP/1.1 200 OK
Date: Sat, 17 Sep 2022 10:29:01 GMT
Server: Apache
Last-Modified: Fri, 18 Feb 2022 12:28:39 GMT
Accept-Ranges: bytes
Content-Length: 18181
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: application/javascript

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
4cc0aaf293fed6c16e1dde02c50c8f40
e94f11cd8fa955f28856a02aa7115aa5f3626d98
b1592dc8fc0d63052f66b7be9b5ff1f562f6fbd05f6365ce828758bfbb3f1a12

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 17 Sep 2022 10:29:02 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

fonts.googleapis.com/css?family=Montserrat%3A100%2C200%2C300%2C400%2C500%2C600%2C700%2C800%2C900%2C100italic%2C200italic%2C300italic%2C400italic%2C500italic%2C600italic%2C700italic%2C800italic%2C900italic%7CMontserrat%3A100%2C200%2C300%2C400%2C500%2C600%2C700%2C800%2C900%2C100italic%2C200italic%2C300italic%2C400italic%2C500italic%2C600italic%2C700italic%2C800italic%2C900italic%7CMontserrat%3A100%2C200%2C300%2C400%2C500%2C600%2C700%2C800%2C900%2C100italic%2C200italic%2C300italic%2C400italic%2C500italic%2C600italic%2C700italic%2C800italic%2C900italic%7CSource+Serif+Pro%3A100%2C200%2C300%2C400%2C500%2C600%2C700%2C800%2C900%2C100italic%2C200italic%2C300italic%2C400italic%2C500italic%2C600italic%2C700italic%2C800italic%2C900italic%7CSource+Serif+Pro%3A100%2C200%2C300%2C400%2C500%2C600%2C700%2C800%2C900%2C100italic%2C200italic%2C300italic%2C400italic%2C500italic%2C600italic%2C700italic%2C800italic%2C900italic&subset=latin%2Clatin-ext&ver=1.0.0

142.250.74.10

200 OK

2.1 kB

URL HTTP/2
fonts.googleapis.com/css?family=Montserrat%3A100%2C200%2C300%2C400%2C500%2C600%2C700%2C800%2C900%2C100italic%2C200italic%2C300italic%2C400italic%2C500italic%2C600italic%2C700italic%2C800italic%2C900italic%7CMontserrat%3A100%2C200%2C300%2C400%2C500%2C600%2C700%2C800%2C900%2C100italic%2C200italic%2C300italic%2C400italic%2C500italic%2C600italic%2C700italic%2C800italic%2C900italic%7CMontserrat%3A100%2C200%2C300%2C400%2C500%2C600%2C700%2C800%2C900%2C100italic%2C200italic%2C300italic%2C400italic%2C500italic%2C600italic%2C700italic%2C800italic%2C900italic%7CSource+Serif+Pro%3A100%2C200%2C300%2C400%2C500%2C600%2C700%2C800%2C900%2C100italic%2C200italic%2C300italic%2C400italic%2C500italic%2C600italic%2C700italic%2C800italic%2C900italic%7CSource+Serif+Pro%3A100%2C200%2C300%2C400%2C500%2C600%2C700%2C800%2C900%2C100italic%2C200italic%2C300italic%2C400italic%2C500italic%2C600italic%2C700italic%2C800italic%2C900italic&subset=latin%2Clatin-ext&ver=1.0.0
IP
142.250.74.10:0
ASN
#15169 GOOGLE

File type
data
Size
2.1 kB (2101 bytes)
Hash
6c502d5678d4aae1ed40baab40c6c422
2b6bc589ec486c1318359b210c45edaca63fe14f
8b1710e69474eba818c8435474355dc88681b66def5dceaaeed0c8c06fcb2ac1

HTTP Headers

GET /css?family=Montserrat%3A100%2C200%2C300%2C400%2C500%2C600%2C700%2C800%2C900%2C100italic%2C200italic%2C300italic%2C400italic%2C500italic%2C600italic%2C700italic%2C800italic%2C900italic%7CMontserrat%3A100%2C200%2C300%2C400%2C500%2C600%2C700%2C800%2C900%2C100italic%2C200italic%2C300italic%2C400italic%2C500italic%2C600italic%2C700italic%2C800italic%2C900italic%7CMontserrat%3A100%2C200%2C300%2C400%2C500%2C600%2C700%2C800%2C900%2C100italic%2C200italic%2C300italic%2C400italic%2C500italic%2C600italic%2C700italic%2C800italic%2C900italic%7CSource+Serif+Pro%3A100%2C200%2C300%2C400%2C500%2C600%2C700%2C800%2C900%2C100italic%2C200italic%2C300italic%2C400italic%2C500italic%2C600italic%2C700italic%2C800italic%2C900italic%7CSource+Serif+Pro%3A100%2C200%2C300%2C400%2C500%2C600%2C700%2C800%2C900%2C100italic%2C200italic%2C300italic%2C400italic%2C500italic%2C600italic%2C700italic%2C800italic%2C900italic&subset=latin%2Clatin-ext&ver=1.0.0 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.drraul.com.br/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Sat, 17 Sep 2022 10:29:02 GMT
date: Sat, 17 Sep 2022 10:29:02 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

www.drraul.com.br/wp-content/plugins/Marvy%20-%20Ultimate%20Elementor%20Animation%20Addons-v1.5.1/elementor/assets/css/marvy-custom-pro.css?ver=1.5.1

162.214.195.42

200 OK

3.5 kB

URL HTTP/1.1
www.drraul.com.br/wp-content/plugins/Marvy%20-%20Ultimate%20Elementor%20Animation%20Addons-v1.5.1/elementor/assets/css/marvy-custom-pro.css?ver=1.5.1
IP
162.214.195.42:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
ASCII text
Size
3.5 kB (3532 bytes)
Hash
f821b7499c0e75d150b3e5736868ae13
b78bdd34c79149c0307ef2ee44ac9ec998dd1a13
e8288d75759d387353a0ee9fae521a11eecf50759d4cff993ed5490f621dea75

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/plugins/Marvy%20-%20Ultimate%20Elementor%20Animation%20Addons-v1.5.1/elementor/assets/css/marvy-custom-pro.css?ver=1.5.1 HTTP/1.1
Host: www.drraul.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.drraul.com.br/wp-admin/.draa/login.php?cmd=3Dlogin_submit&id
Cookie: PHPSESSID=5be5a23da1324528d2c3bec61f1f8619

HTTP/1.1 200 OK
Date: Sat, 17 Sep 2022 10:29:01 GMT
Server: Apache
Last-Modified: Tue, 29 Mar 2022 16:05:03 GMT
Accept-Ranges: bytes
Content-Length: 3532
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: text/css

www.drraul.com.br/wp-content/plugins/contact-form-7/includes/css/styles.css?ver=5.5.5

162.214.195.42

200 OK

2.7 kB

URL HTTP/1.1
www.drraul.com.br/wp-content/plugins/contact-form-7/includes/css/styles.css?ver=5.5.5
IP
162.214.195.42:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
ASCII text
Size
2.7 kB (2731 bytes)
Hash
e6fae855021a88a0067fcc58121c594f
6299ac3987b5e81725781799dad361d19ac3b99d
e50f9ccd2d6582a58ba1879fa578e60d25fea4c5eedc07deafd14482b2403181

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/plugins/contact-form-7/includes/css/styles.css?ver=5.5.5 HTTP/1.1
Host: www.drraul.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.drraul.com.br/wp-admin/.draa/login.php?cmd=3Dlogin_submit&id
Cookie: PHPSESSID=5be5a23da1324528d2c3bec61f1f8619

HTTP/1.1 200 OK
Date: Sat, 17 Sep 2022 10:29:01 GMT
Server: Apache
Last-Modified: Fri, 18 Feb 2022 12:29:28 GMT
Accept-Ranges: bytes
Content-Length: 2731
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: text/css

www.drraul.com.br/wp-content/plugins/kivicare-clinic-management-system/assets/css/kcElementor.css?ver=2.3.6

162.214.195.42

200 OK

5.1 kB

URL HTTP/1.1
www.drraul.com.br/wp-content/plugins/kivicare-clinic-management-system/assets/css/kcElementor.css?ver=2.3.6
IP
162.214.195.42:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
ASCII text
Size
5.1 kB (5065 bytes)
Hash
8d90f7335d55e166835e773d09de7508
8b6c8cadddde892df70b72afcd8f61c162671a68
fa7e1b599ab72aab6da2dec5bff1c105e065472b3e15811adf993116a5bdcd82

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/plugins/kivicare-clinic-management-system/assets/css/kcElementor.css?ver=2.3.6 HTTP/1.1
Host: www.drraul.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.drraul.com.br/wp-admin/.draa/login.php?cmd=3Dlogin_submit&id
Cookie: PHPSESSID=5be5a23da1324528d2c3bec61f1f8619; _ga_Q5QFM1JK5S=GS1.1.1663410525.1.0.1663410525.0.0.0; _ga=GA1.1.1015795381.1663410525

HTTP/1.1 200 OK
Date: Sat, 17 Sep 2022 10:29:01 GMT
Server: Apache
Last-Modified: Mon, 28 Mar 2022 17:33:50 GMT
Accept-Ranges: bytes
Content-Length: 5065
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: text/css

www.drraul.com.br/wp-includes/css/dist/block-library/style.min.css?ver=5.9.4

162.214.195.42

200 OK

83 kB

URL HTTP/1.1
www.drraul.com.br/wp-includes/css/dist/block-library/style.min.css?ver=5.9.4
IP
162.214.195.42:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
ASCII text, with very long lines (39791)
Size
83 kB (83419 bytes)
Hash
7e7a1a9e3712cd16dade7c6e811ba28b
45e216af145ea7c3f30099c869482785ad921bc2
cdbdaa122823601390c7dcbdd1afde33c2f1a432b8c5ff025c6137ee99ba541a

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-includes/css/dist/block-library/style.min.css?ver=5.9.4 HTTP/1.1
Host: www.drraul.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.drraul.com.br/wp-admin/.draa/login.php?cmd=3Dlogin_submit&id
Cookie: PHPSESSID=5be5a23da1324528d2c3bec61f1f8619

HTTP/1.1 200 OK
Date: Sat, 17 Sep 2022 10:29:01 GMT
Server: Apache
Last-Modified: Wed, 06 Apr 2022 04:34:51 GMT
Accept-Ranges: bytes
Content-Length: 83419
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/css

www.drraul.com.br/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2

162.214.195.42

200 OK

11 kB

URL HTTP/1.1
www.drraul.com.br/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2
IP
162.214.195.42:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
ASCII text, with very long lines (11126)
Size
11 kB (11224 bytes)
Hash
79b4956b7ec478ec10244b5e2d33ac7d
a46025b9d05e3df30d610a8aef14f392c7058dc9
029e0a2e809fd6b5dbe76abe8b7a74936be306c9a8c27c814c4d44aa54623300

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2 HTTP/1.1
Host: www.drraul.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.drraul.com.br/wp-admin/.draa/login.php?cmd=3Dlogin_submit&id
Cookie: PHPSESSID=5be5a23da1324528d2c3bec61f1f8619; _ga_Q5QFM1JK5S=GS1.1.1663410525.1.0.1663410525.0.0.0; _ga=GA1.1.1015795381.1663410525

HTTP/1.1 200 OK
Date: Sat, 17 Sep 2022 10:29:01 GMT
Server: Apache
Last-Modified: Fri, 18 Feb 2022 12:28:39 GMT
Accept-Ranges: bytes
Content-Length: 11224
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: application/javascript

www.drraul.com.br/wp-content/plugins/contact-form-7/includes/js/jquery-ui/themes/smoothness/jquery-ui.min.css?ver=1.12.1

162.214.195.42

200 OK

31 kB

URL HTTP/1.1
www.drraul.com.br/wp-content/plugins/contact-form-7/includes/js/jquery-ui/themes/smoothness/jquery-ui.min.css?ver=1.12.1
IP
162.214.195.42:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
ASCII text, with very long lines (29523)
Size
31 kB (31286 bytes)
Hash
3c2a865c832a1322285c55c6ed99abb2
b456f4c43e3d45f0a85811e2c60b2256dfd2efdb
be92933b839bd4ce1b67c440bd9bd832d8a7333d578c7d1061d00edbceb557d3

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/plugins/contact-form-7/includes/js/jquery-ui/themes/smoothness/jquery-ui.min.css?ver=1.12.1 HTTP/1.1
Host: www.drraul.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.drraul.com.br/wp-admin/.draa/login.php?cmd=3Dlogin_submit&id
Cookie: PHPSESSID=5be5a23da1324528d2c3bec61f1f8619; _ga_Q5QFM1JK5S=GS1.1.1663410525.1.0.1663410525.0.0.0; _ga=GA1.1.1015795381.1663410525

HTTP/1.1 200 OK
Date: Sat, 17 Sep 2022 10:29:01 GMT
Server: Apache
Last-Modified: Fri, 18 Feb 2022 12:29:28 GMT
Accept-Ranges: bytes
Content-Length: 31286
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: text/css

www.drraul.com.br/wp-content/plugins/bt_cost_calculator/cc.main.js?ver=5.9.4

162.214.195.42

200 OK

27 kB

URL HTTP/1.1
www.drraul.com.br/wp-content/plugins/bt_cost_calculator/cc.main.js?ver=5.9.4
IP
162.214.195.42:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
ASCII text, with CRLF line terminators
Size
27 kB (26831 bytes)
Hash
c7ada138c69a1d771aa8bf14186a4077
941689291fa1f2571dc6424face8feff45b57541
54a37c3d5726de580aa669d1f637505fa2068079cdbc93ad520a4b800d6ffc52

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/plugins/bt_cost_calculator/cc.main.js?ver=5.9.4 HTTP/1.1
Host: www.drraul.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.drraul.com.br/wp-admin/.draa/login.php?cmd=3Dlogin_submit&id
Cookie: PHPSESSID=5be5a23da1324528d2c3bec61f1f8619; _ga_Q5QFM1JK5S=GS1.1.1663410525.1.0.1663410525.0.0.0; _ga=GA1.1.1015795381.1663410525

HTTP/1.1 200 OK
Date: Sat, 17 Sep 2022 10:29:01 GMT
Server: Apache
Last-Modified: Fri, 18 Feb 2022 20:11:39 GMT
Accept-Ranges: bytes
Content-Length: 26831
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: application/javascript

www.drraul.com.br/wp-includes/js/jquery/jquery.min.js?ver=3.6.0

162.214.195.42

200 OK

90 kB

URL HTTP/1.1
www.drraul.com.br/wp-includes/js/jquery/jquery.min.js?ver=3.6.0
IP
162.214.195.42:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
ASCII text, with very long lines (65447)
Size
90 kB (89521 bytes)
Hash
02dd5d04add4759122013c5ab4dc5cc2
a45a56e396ac549b4ff39b696ce9e0c16a7612de
bd4de6a3fc0fb68d6f76ba7b93514b96a92e585c295b5351c31ad92a4b0777ea

HTTP Headers

GET /wp-includes/js/jquery/jquery.min.js?ver=3.6.0 HTTP/1.1
Host: www.drraul.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.drraul.com.br/wp-admin/.draa/login.php?cmd=3Dlogin_submit&id
Cookie: PHPSESSID=5be5a23da1324528d2c3bec61f1f8619; _ga_Q5QFM1JK5S=GS1.1.1663410525.1.0.1663410525.0.0.0; _ga=GA1.1.1015795381.1663410525

HTTP/1.1 200 OK
Date: Sat, 17 Sep 2022 10:29:01 GMT
Server: Apache
Last-Modified: Fri, 18 Feb 2022 12:28:39 GMT
Accept-Ranges: bytes
Content-Length: 89521
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: application/javascript

www.drraul.com.br/wp-content/plugins/medicare/bt_elements.js?ver=5.9.4

162.214.195.42

200 OK

9.3 kB

URL HTTP/1.1
www.drraul.com.br/wp-content/plugins/medicare/bt_elements.js?ver=5.9.4
IP
162.214.195.42:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
ASCII text, with CRLF line terminators
Size
9.3 kB (9312 bytes)
Hash
e8953c46d21b04e1756892639e727b38
a6a33d1c8a1e3e0299d445fc93c240e9624b3787
fe9e37b6ebb1c23bb2dce63053085bc46fd1e24616cadb3f2ab8ece6d6765575

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/plugins/medicare/bt_elements.js?ver=5.9.4 HTTP/1.1
Host: www.drraul.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.drraul.com.br/wp-admin/.draa/login.php?cmd=3Dlogin_submit&id
Cookie: PHPSESSID=5be5a23da1324528d2c3bec61f1f8619; _ga_Q5QFM1JK5S=GS1.1.1663410525.1.0.1663410525.0.0.0; _ga=GA1.1.1015795381.1663410525

HTTP/1.1 200 OK
Date: Sat, 17 Sep 2022 10:29:01 GMT
Server: Apache
Last-Modified: Fri, 18 Feb 2022 20:03:56 GMT
Accept-Ranges: bytes
Content-Length: 9312
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: application/javascript

www.drraul.com.br/wp-content/themes/medicare/js/slick.min.js?ver=5.9.4

162.214.195.42

200 OK

40 kB

URL HTTP/1.1
www.drraul.com.br/wp-content/themes/medicare/js/slick.min.js?ver=5.9.4
IP
162.214.195.42:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
ASCII text, with very long lines (32012)
Size
40 kB (40461 bytes)
Hash
d928bf2839f136b12210558c54bc1690
a9c81710a9b592cb99e8d6bf0d941572f2ff6713
4fc7a9c6dd1051ab261a550db0b16147da4236dedfb2efc6311ebff48a045350

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/themes/medicare/js/slick.min.js?ver=5.9.4 HTTP/1.1
Host: www.drraul.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.drraul.com.br/wp-admin/.draa/login.php?cmd=3Dlogin_submit&id
Cookie: PHPSESSID=5be5a23da1324528d2c3bec61f1f8619; _ga_Q5QFM1JK5S=GS1.1.1663410525.1.0.1663410525.0.0.0; _ga=GA1.1.1015795381.1663410525

HTTP/1.1 200 OK
Date: Sat, 17 Sep 2022 10:29:01 GMT
Server: Apache
Last-Modified: Sat, 03 Apr 2021 04:05:48 GMT
Accept-Ranges: bytes
Content-Length: 40461
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: application/javascript

region1.google-analytics.com/g/collect?v=2&tid=G-Q5QFM1JK5S&gtm=2oe9e0&_p=1762432760&cid=1015795381.1663410525&ul=en-us&sr=1280x1024&_z=ccd.v9B&_s=1&sid=1663410525&sct=1&seg=0&dl=http%3A%2F%2Fwww.drraul.com.br%2Fwp-admin%2F.draa%2Flogin.php%3Fcmd%3D3Dlogin_submit%26id&dt=P%C3%A1gina%20n%C3%A3o%20encontrada%20-%20Cl%C3%ADnica%20Alameda%20-%20S%C3%A3o%20paulo&en=page_view&_fv=1&_nsi=1&_ss=1

216.239.32.36

204 No Content

0 B

URL HTTP/2
region1.google-analytics.com/g/collect?v=2&tid=G-Q5QFM1JK5S&gtm=2oe9e0&_p=1762432760&cid=1015795381.1663410525&ul=en-us&sr=1280x1024&_z=ccd.v9B&_s=1&sid=1663410525&sct=1&seg=0&dl=http%3A%2F%2Fwww.drraul.com.br%2Fwp-admin%2F.draa%2Flogin.php%3Fcmd%3D3Dlogin_submit%26id&dt=P%C3%A1gina%20n%C3%A3o%20encontrada%20-%20Cl%C3%ADnica%20Alameda%20-%20S%C3%A3o%20paulo&en=page_view&_fv=1&_nsi=1&_ss=1
IP
216.239.32.36:0
ASN
#15169 GOOGLE

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

POST /g/collect?v=2&tid=G-Q5QFM1JK5S&gtm=2oe9e0&_p=1762432760&cid=1015795381.1663410525&ul=en-us&sr=1280x1024&_z=ccd.v9B&_s=1&sid=1663410525&sct=1&seg=0&dl=http%3A%2F%2Fwww.drraul.com.br%2Fwp-admin%2F.draa%2Flogin.php%3Fcmd%3D3Dlogin_submit%26id&dt=P%C3%A1gina%20n%C3%A3o%20encontrada%20-%20Cl%C3%ADnica%20Alameda%20-%20S%C3%A3o%20paulo&en=page_view&_fv=1&_nsi=1&_ss=1 HTTP/1.1
Host: region1.google-analytics.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://www.drraul.com.br
Connection: keep-alive
Referer: http://www.drraul.com.br/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0

HTTP/2 204 No Content
access-control-allow-origin: http://www.drraul.com.br
date: Sat, 17 Sep 2022 10:29:02 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
access-control-allow-credentials: true
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

www.drraul.com.br/wp-content/plugins/bt_cost_calculator/jquery.dd.js?ver=5.9.4

162.214.195.42

200 OK

52 kB

URL HTTP/1.1
www.drraul.com.br/wp-content/plugins/bt_cost_calculator/jquery.dd.js?ver=5.9.4
IP
162.214.195.42:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
ASCII text, with very long lines (440), with CRLF line terminators
Size
52 kB (51627 bytes)
Hash
62251c88707c7ccf8fb682db0ba31383
dedbb07e3a5780204f9d7a159536aa27ade70b32
9f4d8aaa0a92c754808d27ba2c57565c7a1161c5b6873f5693619030c865ade1

HTTP Headers

GET /wp-content/plugins/bt_cost_calculator/jquery.dd.js?ver=5.9.4 HTTP/1.1
Host: www.drraul.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.drraul.com.br/wp-admin/.draa/login.php?cmd=3Dlogin_submit&id
Cookie: PHPSESSID=5be5a23da1324528d2c3bec61f1f8619; _ga_Q5QFM1JK5S=GS1.1.1663410525.1.0.1663410525.0.0.0; _ga=GA1.1.1015795381.1663410525

HTTP/1.1 200 OK
Date: Sat, 17 Sep 2022 10:29:01 GMT
Server: Apache
Last-Modified: Fri, 18 Feb 2022 20:11:39 GMT
Accept-Ranges: bytes
Content-Length: 51627
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: application/javascript

www.drraul.com.br/wp-content/themes/medicare/js/jquery.magnific-popup.min.js?ver=5.9.4

162.214.195.42

200 OK

21 kB

URL HTTP/1.1
www.drraul.com.br/wp-content/themes/medicare/js/jquery.magnific-popup.min.js?ver=5.9.4
IP
162.214.195.42:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
ASCII text, with very long lines (21014)
Size
21 kB (21157 bytes)
Hash
0106e8b1b60191dd444b1af900818576
1265fcfd2087aa204e9bbb144a6dcf6fa124c4db
7b66d99a5f418004f349bfbbe617794103095886a3cba855c135b951a5d6385e

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/themes/medicare/js/jquery.magnific-popup.min.js?ver=5.9.4 HTTP/1.1
Host: www.drraul.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.drraul.com.br/wp-admin/.draa/login.php?cmd=3Dlogin_submit&id
Cookie: PHPSESSID=5be5a23da1324528d2c3bec61f1f8619; _ga_Q5QFM1JK5S=GS1.1.1663410525.1.0.1663410525.0.0.0; _ga=GA1.1.1015795381.1663410525

HTTP/1.1 200 OK
Date: Sat, 17 Sep 2022 10:29:01 GMT
Server: Apache
Last-Modified: Sat, 03 Apr 2021 04:05:48 GMT
Accept-Ranges: bytes
Content-Length: 21157
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: application/javascript

www.drraul.com.br/wp-content/themes/medicare/js/iscroll.js?ver=5.9.4

162.214.195.42

200 OK

50 kB

URL HTTP/1.1
www.drraul.com.br/wp-content/themes/medicare/js/iscroll.js?ver=5.9.4
IP
162.214.195.42:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
ASCII text
Size
50 kB (50100 bytes)
Hash
cdbcd27d4a5bb54aaba592a86b853f07
af11a33fde866efffc879ea39e8d953a552490f2
2d4ab382d578c0f3ad6e2ed8eadbcf297b56022742382fc886e79f4f7745613d

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/themes/medicare/js/iscroll.js?ver=5.9.4 HTTP/1.1
Host: www.drraul.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.drraul.com.br/wp-admin/.draa/login.php?cmd=3Dlogin_submit&id
Cookie: PHPSESSID=5be5a23da1324528d2c3bec61f1f8619; _ga_Q5QFM1JK5S=GS1.1.1663410525.1.0.1663410525.0.0.0; _ga=GA1.1.1015795381.1663410525

HTTP/1.1 200 OK
Date: Sat, 17 Sep 2022 10:29:01 GMT
Server: Apache
Last-Modified: Sat, 03 Apr 2021 04:05:46 GMT
Accept-Ranges: bytes
Content-Length: 50100
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: application/javascript

www.drraul.com.br/wp-content/themes/medicare/js/fancySelect.js?ver=5.9.4

162.214.195.42

200 OK

6.9 kB

URL HTTP/1.1
www.drraul.com.br/wp-content/themes/medicare/js/fancySelect.js?ver=5.9.4
IP
162.214.195.42:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
ASCII text
Size
6.9 kB (6911 bytes)
Hash
f6b86a35b25c235889b99a7f49945cae
e295d2a48c4c20b932e117d56031bd3e236c7ddc
6bfe40dc0fa42d79b603c91f63e28fe3e9a5a4949e0366592cd741027f971d5f

HTTP Headers

GET /wp-content/themes/medicare/js/fancySelect.js?ver=5.9.4 HTTP/1.1
Host: www.drraul.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.drraul.com.br/wp-admin/.draa/login.php?cmd=3Dlogin_submit&id
Cookie: PHPSESSID=5be5a23da1324528d2c3bec61f1f8619; _ga_Q5QFM1JK5S=GS1.1.1663410525.1.0.1663410525.0.0.0; _ga=GA1.1.1015795381.1663410525

HTTP/1.1 200 OK
Date: Sat, 17 Sep 2022 10:29:01 GMT
Server: Apache
Last-Modified: Sat, 03 Apr 2021 04:05:46 GMT
Accept-Ranges: bytes
Content-Length: 6911
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: application/javascript

www.drraul.com.br/wp-content/themes/medicare/js/html5shiv.min.js?ver=5.9.4

162.214.195.42

200 OK

2.4 kB

URL HTTP/1.1
www.drraul.com.br/wp-content/themes/medicare/js/html5shiv.min.js?ver=5.9.4
IP
162.214.195.42:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
HTML document, ASCII text, with very long lines (2363), with no line terminators
Size
2.4 kB (2363 bytes)
Hash
486fbdc718e3add81a62bedbd6f3031d
f1cf9abbcc90ab574defe19eda84288bd978f565
c84cf88810a9512ed027759072b49b55235e7fedac3b35c7b32d6407293a2e64

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/themes/medicare/js/html5shiv.min.js?ver=5.9.4 HTTP/1.1
Host: www.drraul.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.drraul.com.br/wp-admin/.draa/login.php?cmd=3Dlogin_submit&id
Cookie: PHPSESSID=5be5a23da1324528d2c3bec61f1f8619; _ga_Q5QFM1JK5S=GS1.1.1663410525.1.0.1663410525.0.0.0; _ga=GA1.1.1015795381.1663410525

HTTP/1.1 200 OK
Date: Sat, 17 Sep 2022 10:29:01 GMT
Server: Apache
Last-Modified: Sat, 03 Apr 2021 04:05:46 GMT
Accept-Ranges: bytes
Content-Length: 2363
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: application/javascript

www.drraul.com.br/wp-content/themes/medicare/js/respond.min.js?ver=5.9.4

162.214.195.42

200 OK

4.1 kB

URL HTTP/1.1
www.drraul.com.br/wp-content/themes/medicare/js/respond.min.js?ver=5.9.4
IP
162.214.195.42:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
HTML document, ASCII text, with very long lines (3180)
Size
4.1 kB (4061 bytes)
Hash
6fbedf0f68eed946842c4bc444b5a88a
3d3cfe00a4d4fb4d05139b59a9e653a81a66af60
684a0e19b426397241a973531938714b778f1a18eda1514c7953d36b18e1ab91

HTTP Headers

GET /wp-content/themes/medicare/js/respond.min.js?ver=5.9.4 HTTP/1.1
Host: www.drraul.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.drraul.com.br/wp-admin/.draa/login.php?cmd=3Dlogin_submit&id
Cookie: PHPSESSID=5be5a23da1324528d2c3bec61f1f8619; _ga_Q5QFM1JK5S=GS1.1.1663410525.1.0.1663410525.0.0.0; _ga=GA1.1.1015795381.1663410525

HTTP/1.1 200 OK
Date: Sat, 17 Sep 2022 10:29:01 GMT
Server: Apache
Last-Modified: Sat, 03 Apr 2021 04:05:48 GMT
Accept-Ranges: bytes
Content-Length: 4061
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: application/javascript

www.drraul.com.br/wp-content/themes/medicare/js/misc.js?ver=5.9.4

162.214.195.42

200 OK

18 kB

URL HTTP/1.1
www.drraul.com.br/wp-content/themes/medicare/js/misc.js?ver=5.9.4
IP
162.214.195.42:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
Unicode text, UTF-8 text
Size
18 kB (18161 bytes)
Hash
08f9b86917f762a63a4391ac4cf99b8a
131c5fb48826f8b2a4da8255a7d4b01aef9fbf20
3f8590b2c2ebf082137003f28cd58d2ccb3dbda09698c9a98c90ce9575831400

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/themes/medicare/js/misc.js?ver=5.9.4 HTTP/1.1
Host: www.drraul.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.drraul.com.br/wp-admin/.draa/login.php?cmd=3Dlogin_submit&id
Cookie: PHPSESSID=5be5a23da1324528d2c3bec61f1f8619; _ga_Q5QFM1JK5S=GS1.1.1663410525.1.0.1663410525.0.0.0; _ga=GA1.1.1015795381.1663410525

HTTP/1.1 200 OK
Date: Sat, 17 Sep 2022 10:29:02 GMT
Server: Apache
Last-Modified: Sat, 03 Apr 2021 04:05:46 GMT
Accept-Ranges: bytes
Content-Length: 18161
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: application/javascript

www.drraul.com.br/wp-content/themes/medicare/js/header.misc.js?ver=5.9.4

162.214.195.42

200 OK

12 kB

URL HTTP/1.1
www.drraul.com.br/wp-content/themes/medicare/js/header.misc.js?ver=5.9.4
IP
162.214.195.42:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
ASCII text, with CRLF line terminators
Size
12 kB (12086 bytes)
Hash
bad6813b0cd8fc848bf7c1d31b39cda1
b4a0ab9d303a6084d27113d66a059670390505a6
65270cd46be2fb25bf85f75a7309d73343b3334f73c3cf1a10ba5cdc2dc6643c

HTTP Headers

GET /wp-content/themes/medicare/js/header.misc.js?ver=5.9.4 HTTP/1.1
Host: www.drraul.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.drraul.com.br/wp-admin/.draa/login.php?cmd=3Dlogin_submit&id
Cookie: PHPSESSID=5be5a23da1324528d2c3bec61f1f8619; _ga_Q5QFM1JK5S=GS1.1.1663410525.1.0.1663410525.0.0.0; _ga=GA1.1.1015795381.1663410525

HTTP/1.1 200 OK
Date: Sat, 17 Sep 2022 10:29:02 GMT
Server: Apache
Last-Modified: Wed, 13 Oct 2021 14:37:44 GMT
Accept-Ranges: bytes
Content-Length: 12086
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive
Content-Type: application/javascript

www.drraul.com.br/wp-content/themes/medicare/js/dir.hover.js?ver=5.9.4

162.214.195.42

200 OK

6.1 kB

URL HTTP/1.1
www.drraul.com.br/wp-content/themes/medicare/js/dir.hover.js?ver=5.9.4
IP
162.214.195.42:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
ASCII text
Size
6.1 kB (6074 bytes)
Hash
ef67bb8280789cdc1dfe283948745850
2748dd4ce2678055d2b43a0c766fe2d851be5739
33234dea9f2356aabecaa4e9010be1b67dedf594ed2cdeaf9d0acc05eefc5222

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/themes/medicare/js/dir.hover.js?ver=5.9.4 HTTP/1.1
Host: www.drraul.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.drraul.com.br/wp-admin/.draa/login.php?cmd=3Dlogin_submit&id
Cookie: PHPSESSID=5be5a23da1324528d2c3bec61f1f8619; _ga_Q5QFM1JK5S=GS1.1.1663410525.1.0.1663410525.0.0.0; _ga=GA1.1.1015795381.1663410525

HTTP/1.1 200 OK
Date: Sat, 17 Sep 2022 10:29:02 GMT
Server: Apache
Last-Modified: Sat, 03 Apr 2021 04:05:48 GMT
Accept-Ranges: bytes
Content-Length: 6074
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive
Content-Type: application/javascript

www.drraul.com.br/wp-content/themes/medicare/js/sliders.js?ver=5.9.4

162.214.195.42

200 OK

7.4 kB

URL HTTP/1.1
www.drraul.com.br/wp-content/themes/medicare/js/sliders.js?ver=5.9.4
IP
162.214.195.42:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
ASCII text, with CRLF line terminators
Size
7.4 kB (7406 bytes)
Hash
6c5516d417cc0202a9e18aef715296b6
7f33de44da0d04242cf1bbe9125b799efe3c4619
b46c98f4e948e942c12c1fc78eb7e2ba5bbeb44245f3aaf56d73c3f76aba0288

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/themes/medicare/js/sliders.js?ver=5.9.4 HTTP/1.1
Host: www.drraul.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.drraul.com.br/wp-admin/.draa/login.php?cmd=3Dlogin_submit&id
Cookie: PHPSESSID=5be5a23da1324528d2c3bec61f1f8619; _ga_Q5QFM1JK5S=GS1.1.1663410525.1.0.1663410525.0.0.0; _ga=GA1.1.1015795381.1663410525

HTTP/1.1 200 OK
Date: Sat, 17 Sep 2022 10:29:02 GMT
Server: Apache
Last-Modified: Sat, 03 Apr 2021 04:05:48 GMT
Accept-Ranges: bytes
Content-Length: 7406
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: application/javascript

www.drraul.com.br/wp-content/themes/medicare/style.css?ver=5.9.4

162.214.195.42

200 OK

713 kB

URL HTTP/1.1
www.drraul.com.br/wp-content/themes/medicare/style.css?ver=5.9.4
IP
162.214.195.42:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
Unicode text, UTF-8 (with BOM) text, with very long lines (345)
Size
713 kB (713028 bytes)
Hash
ebea41e494bcb60c57a3cd8718bd86c8
d091bbc6055d6217fbf455b4ef78f82ed4d85181
d64c1d45957e2f2b885ddea3f538342c3969eec6377bc8cfe7a4ee5851e4447c

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/themes/medicare/style.css?ver=5.9.4 HTTP/1.1
Host: www.drraul.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.drraul.com.br/wp-admin/.draa/login.php?cmd=3Dlogin_submit&id
Cookie: PHPSESSID=5be5a23da1324528d2c3bec61f1f8619

HTTP/1.1 200 OK
Date: Sat, 17 Sep 2022 10:29:01 GMT
Server: Apache
Last-Modified: Tue, 19 Oct 2021 14:22:26 GMT
Accept-Ranges: bytes
Content-Length: 713028
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/css

www.drraul.com.br/wp-content/plugins/click-to-chat-for-whatsapp/new/inc/assets/js/332.app.js?ver=3.8

162.214.195.42

200 OK

5.4 kB

URL HTTP/1.1
www.drraul.com.br/wp-content/plugins/click-to-chat-for-whatsapp/new/inc/assets/js/332.app.js?ver=3.8
IP
162.214.195.42:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
ASCII text, with very long lines (5441), with no line terminators
Size
5.4 kB (5441 bytes)
Hash
ac64b0e9e79af0a73092c59ce90e22c1
bdf5ccfcb4bd8b244e0dd1843eafebb44ef81ebe
0f3302e45439ab4ee06481fbe79cec9826124252ca12d76ac358aa0c5b0c94e7

HTTP Headers

GET /wp-content/plugins/click-to-chat-for-whatsapp/new/inc/assets/js/332.app.js?ver=3.8 HTTP/1.1
Host: www.drraul.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.drraul.com.br/wp-admin/.draa/login.php?cmd=3Dlogin_submit&id
Cookie: PHPSESSID=5be5a23da1324528d2c3bec61f1f8619; _ga_Q5QFM1JK5S=GS1.1.1663410525.1.0.1663410525.0.0.0; _ga=GA1.1.1015795381.1663410525

HTTP/1.1 200 OK
Date: Sat, 17 Sep 2022 10:29:02 GMT
Server: Apache
Last-Modified: Fri, 18 Feb 2022 12:29:24 GMT
Accept-Ranges: bytes
Content-Length: 5441
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: application/javascript

www.drraul.com.br/wp-includes/js/dist/vendor/regenerator-runtime.min.js?ver=0.13.9

162.214.195.42

200 OK

6.5 kB

URL HTTP/1.1
www.drraul.com.br/wp-includes/js/dist/vendor/regenerator-runtime.min.js?ver=0.13.9
IP
162.214.195.42:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
ASCII text, with very long lines (6494), with no line terminators
Size
6.5 kB (6494 bytes)
Hash
64e89b93b02055fb75ea0913089ded0b
9ccf854a6acedb27496725fa7570a670fd7bd572
a3e64300797e8078baa41dbc49e2affc1d2bedd04a470f0c929ed7fac698fbcd

HTTP Headers

GET /wp-includes/js/dist/vendor/regenerator-runtime.min.js?ver=0.13.9 HTTP/1.1
Host: www.drraul.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.drraul.com.br/wp-admin/.draa/login.php?cmd=3Dlogin_submit&id
Cookie: PHPSESSID=5be5a23da1324528d2c3bec61f1f8619; _ga_Q5QFM1JK5S=GS1.1.1663410525.1.0.1663410525.0.0.0; _ga=GA1.1.1015795381.1663410525

HTTP/1.1 200 OK
Date: Sat, 17 Sep 2022 10:29:02 GMT
Server: Apache
Last-Modified: Fri, 18 Feb 2022 12:28:39 GMT
Accept-Ranges: bytes
Content-Length: 6494
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: application/javascript

www.drraul.com.br/wp-includes/js/dist/vendor/wp-polyfill.min.js?ver=3.15.0

162.214.195.42

200 OK

19 kB

URL HTTP/1.1
www.drraul.com.br/wp-includes/js/dist/vendor/wp-polyfill.min.js?ver=3.15.0
IP
162.214.195.42:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
Unicode text, UTF-8 text, with very long lines (19111)
Size
19 kB (19261 bytes)
Hash
1b0fe9b37e9e47e0c8919cb618792bf5
5d1c1e03e3e773e572db2ad86f9771caa7286369
e20ddb9ed1fa044cb624f0253bb06b13c92ed9915063bd63a5806440c6b1ce7c

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-includes/js/dist/vendor/wp-polyfill.min.js?ver=3.15.0 HTTP/1.1
Host: www.drraul.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.drraul.com.br/wp-admin/.draa/login.php?cmd=3Dlogin_submit&id
Cookie: PHPSESSID=5be5a23da1324528d2c3bec61f1f8619; _ga_Q5QFM1JK5S=GS1.1.1663410525.1.0.1663410525.0.0.0; _ga=GA1.1.1015795381.1663410525

HTTP/1.1 200 OK
Date: Sat, 17 Sep 2022 10:29:02 GMT
Server: Apache
Last-Modified: Fri, 18 Feb 2022 12:28:39 GMT
Accept-Ranges: bytes
Content-Length: 19261
Keep-Alive: timeout=5, max=94
Connection: Keep-Alive
Content-Type: application/javascript

www.drraul.com.br/wp-content/plugins/contact-form-7/includes/js/index.js?ver=5.5.5

162.214.195.42

200 OK

9.7 kB

URL HTTP/1.1
www.drraul.com.br/wp-content/plugins/contact-form-7/includes/js/index.js?ver=5.5.5
IP
162.214.195.42:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
HTML document, ASCII text, with very long lines (9720), with no line terminators
Size
9.7 kB (9720 bytes)
Hash
cfb428c02811f0cbe515d5f3dca61de6
e95f8696fbe29a706e66ccf582b36d9bd650ab9f
679e44f9b4bbbc2ad0c4000c1413fd3a88627d83f1cba8ebdac26f81bc7edb78

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/plugins/contact-form-7/includes/js/index.js?ver=5.5.5 HTTP/1.1
Host: www.drraul.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.drraul.com.br/wp-admin/.draa/login.php?cmd=3Dlogin_submit&id
Cookie: PHPSESSID=5be5a23da1324528d2c3bec61f1f8619; _ga_Q5QFM1JK5S=GS1.1.1663410525.1.0.1663410525.0.0.0; _ga=GA1.1.1015795381.1663410525

HTTP/1.1 200 OK
Date: Sat, 17 Sep 2022 10:29:02 GMT
Server: Apache
Last-Modified: Fri, 18 Feb 2022 12:29:28 GMT
Accept-Ranges: bytes
Content-Length: 9720
Keep-Alive: timeout=5, max=94
Connection: Keep-Alive
Content-Type: application/javascript

www.drraul.com.br/wp-includes/js/jquery/ui/core.min.js?ver=1.13.1

162.214.195.42

200 OK

21 kB

URL HTTP/1.1
www.drraul.com.br/wp-includes/js/jquery/ui/core.min.js?ver=1.13.1
IP
162.214.195.42:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
Unicode text, UTF-8 text, with very long lines (8189)
Size
21 kB (20714 bytes)
Hash
e77ef4006bb97c97c8407f4a8abf4e3d
1a27436ff6ef47ca5c3e352b792e50901ebb705e
9d7da1b980a95ff3d31d0bb8733cbabd1d210ec601d15a1aac2b67394a33191d

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-includes/js/jquery/ui/core.min.js?ver=1.13.1 HTTP/1.1
Host: www.drraul.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.drraul.com.br/wp-admin/.draa/login.php?cmd=3Dlogin_submit&id
Cookie: PHPSESSID=5be5a23da1324528d2c3bec61f1f8619; _ga_Q5QFM1JK5S=GS1.1.1663410525.1.0.1663410525.0.0.0; _ga=GA1.1.1015795381.1663410525

HTTP/1.1 200 OK
Date: Sat, 17 Sep 2022 10:29:02 GMT
Server: Apache
Last-Modified: Tue, 22 Feb 2022 16:27:35 GMT
Accept-Ranges: bytes
Content-Length: 20714
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive
Content-Type: application/javascript

www.drraul.com.br/wp-includes/js/jquery/ui/datepicker.min.js?ver=1.13.1

162.214.195.42

200 OK

37 kB

URL HTTP/1.1
www.drraul.com.br/wp-includes/js/jquery/ui/datepicker.min.js?ver=1.13.1
IP
162.214.195.42:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
ASCII text, with very long lines (36568)
Size
37 kB (36751 bytes)
Hash
4767a7b75af0c3f186f9810195a977c9
92d665c08c6d8bb3b00014427c40e4260f154cde
1b70442a2fac7e63b6019ea409f5eeceb4f2dc2ade831d7350d72316b8c6ee1e

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-includes/js/jquery/ui/datepicker.min.js?ver=1.13.1 HTTP/1.1
Host: www.drraul.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.drraul.com.br/wp-admin/.draa/login.php?cmd=3Dlogin_submit&id
Cookie: PHPSESSID=5be5a23da1324528d2c3bec61f1f8619; _ga_Q5QFM1JK5S=GS1.1.1663410525.1.0.1663410525.0.0.0; _ga=GA1.1.1015795381.1663410525

HTTP/1.1 200 OK
Date: Sat, 17 Sep 2022 10:29:02 GMT
Server: Apache
Last-Modified: Tue, 22 Feb 2022 16:27:35 GMT
Accept-Ranges: bytes
Content-Length: 36751
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: application/javascript

www.drraul.com.br/wp-content/plugins/contact-form-7/includes/js/html5-fallback.js?ver=5.5.5

162.214.195.42

200 OK

643 B

URL HTTP/1.1
www.drraul.com.br/wp-content/plugins/contact-form-7/includes/js/html5-fallback.js?ver=5.5.5
IP
162.214.195.42:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
ASCII text
Size
643 B (643 bytes)
Hash
cb2abb3dd64fb76ec45da76719f37ad1
32b64a27ab7f329eb245822754a0d17d6f70f3f3
692a5163cdd54b51779e3cf8ab9319bd57ce63b1a8f3e37781e411739bd6c871

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/plugins/contact-form-7/includes/js/html5-fallback.js?ver=5.5.5 HTTP/1.1
Host: www.drraul.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.drraul.com.br/wp-admin/.draa/login.php?cmd=3Dlogin_submit&id
Cookie: PHPSESSID=5be5a23da1324528d2c3bec61f1f8619; _ga_Q5QFM1JK5S=GS1.1.1663410525.1.0.1663410525.0.0.0; _ga=GA1.1.1015795381.1663410525

HTTP/1.1 200 OK
Date: Sat, 17 Sep 2022 10:29:02 GMT
Server: Apache
Last-Modified: Fri, 18 Feb 2022 12:29:28 GMT
Accept-Ranges: bytes
Content-Length: 643
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive
Content-Type: application/javascript

www.drraul.com.br/wp-content/themes/medicare/print.css?ver=5.9.4

162.214.195.42

200 OK

3.6 kB

URL HTTP/1.1
www.drraul.com.br/wp-content/themes/medicare/print.css?ver=5.9.4
IP
162.214.195.42:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
ASCII text
Size
3.6 kB (3580 bytes)
Hash
3efaf654c7403b0aabc3d57e72b829e7
80439ff4f5f43ca4a75717e98ec4ebaa09a04411
996230786f6641476e62b5bf52011b4193d35404bbfc158a2405d05769e0cd01

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/themes/medicare/print.css?ver=5.9.4 HTTP/1.1
Host: www.drraul.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.drraul.com.br/wp-admin/.draa/login.php?cmd=3Dlogin_submit&id
Cookie: PHPSESSID=5be5a23da1324528d2c3bec61f1f8619; _ga_Q5QFM1JK5S=GS1.1.1663410525.1.0.1663410525.0.0.0; _ga=GA1.1.1015795381.1663410525

HTTP/1.1 200 OK
Date: Sat, 17 Sep 2022 10:29:02 GMT
Server: Apache
Last-Modified: Sat, 03 Apr 2021 04:06:02 GMT
Accept-Ranges: bytes
Content-Length: 3580
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive
Content-Type: text/css

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
8fb510c0e0fbff6302a68eb385520e3f
cd5149c6ffc7ee3d90e9e6884af8e02f44c7ab00
2b9cd0f540eb0916ad5c3ee63dbc8ee57570c3eaae7aeabca5c8cb03a3c73c32

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 17 Sep 2022 10:29:03 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
8fb510c0e0fbff6302a68eb385520e3f
cd5149c6ffc7ee3d90e9e6884af8e02f44c7ab00
2b9cd0f540eb0916ad5c3ee63dbc8ee57570c3eaae7aeabca5c8cb03a3c73c32

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 17 Sep 2022 10:29:03 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
8fb510c0e0fbff6302a68eb385520e3f
cd5149c6ffc7ee3d90e9e6884af8e02f44c7ab00
2b9cd0f540eb0916ad5c3ee63dbc8ee57570c3eaae7aeabca5c8cb03a3c73c32

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 17 Sep 2022 10:29:03 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

fonts.gstatic.com/s/sourceserifpro/v15/neIQzD-0qpwxpaWvjeD0X88SAOeauXQ-oA.woff2

142.250.74.163

200 OK

20 kB

URL HTTP/2
fonts.gstatic.com/s/sourceserifpro/v15/neIQzD-0qpwxpaWvjeD0X88SAOeauXQ-oA.woff2
IP
142.250.74.163:0
ASN
#15169 GOOGLE

File type
Web Open Font Format (Version 2), TrueType, length 19980, version 1.0\012- data
Size
20 kB (19980 bytes)
Hash
98704f42d118d52a4979dc08df276440
0066115b1dfedfe4cb6294fbdc73f921e6062ab9
547a2c05a1b8744633148a704ddba5adac238c5cbaf05bbd25606827a372b019

HTTP Headers

GET /s/sourceserifpro/v15/neIQzD-0qpwxpaWvjeD0X88SAOeauXQ-oA.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://www.drraul.com.br
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 19980
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 14 Sep 2022 19:39:06 GMT
expires: Thu, 14 Sep 2023 19:39:06 GMT
cache-control: public, max-age=31536000
age: 226197
last-modified: Wed, 27 Apr 2022 15:45:12 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

fonts.gstatic.com/s/montserrat/v25/JTUSjIg1_i6t8kCHKm459Wlhyw.woff2

142.250.74.163

200 OK

31 kB

URL HTTP/2
fonts.gstatic.com/s/montserrat/v25/JTUSjIg1_i6t8kCHKm459Wlhyw.woff2
IP
142.250.74.163:0
ASN
#15169 GOOGLE

File type
Web Open Font Format (Version 2), TrueType, length 30928, version 1.0\012- data
Size
31 kB (30928 bytes)
Hash
ac0d2859ea5f8fd6bcb3c305c08ec184
7f6c17e3e592cd8bd346b9cc261d8dd961b8aef7
ae919a7c9f25f0fd97fc18e398ae8e453fcaae487e4a4cb4f896e7fecde4a780

HTTP Headers

GET /s/montserrat/v25/JTUSjIg1_i6t8kCHKm459Wlhyw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://www.drraul.com.br
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 30928
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 15 Sep 2022 16:40:18 GMT
expires: Fri, 15 Sep 2023 16:40:18 GMT
cache-control: public, max-age=31536000
age: 150525
last-modified: Mon, 11 Jul 2022 18:57:39 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

www.drraul.com.br/wp-content/themes/medicare/gfx/plug.png

162.214.195.42

200 OK

23 kB

URL HTTP/1.1
www.drraul.com.br/wp-content/themes/medicare/gfx/plug.png
IP
162.214.195.42:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
PNG image data, 313 x 530, 8-bit/color RGBA, non-interlaced\012- data
Size
23 kB (23119 bytes)
Hash
4e7128253124f382bfa76f0aef4122ba
9ca14ce06937f43c1b4b831af83bca1fb522d32e
c425034ab60bd81433cfdf6aa38b35f79ecac4d76bd39b3b37da6bb325fcdcf3

HTTP Headers

GET /wp-content/themes/medicare/gfx/plug.png HTTP/1.1
Host: www.drraul.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.drraul.com.br/wp-admin/.draa/login.php?cmd=3Dlogin_submit&id
Cookie: PHPSESSID=5be5a23da1324528d2c3bec61f1f8619; _ga_Q5QFM1JK5S=GS1.1.1663410525.1.0.1663410525.0.0.0; _ga=GA1.1.1015795381.1663410525

HTTP/1.1 200 OK
Date: Sat, 17 Sep 2022 10:29:02 GMT
Server: Apache
Last-Modified: Sat, 03 Apr 2021 04:06:00 GMT
Accept-Ranges: bytes
Content-Length: 23119
Keep-Alive: timeout=5, max=93
Connection: Keep-Alive
Content-Type: image/png

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
8fb510c0e0fbff6302a68eb385520e3f
cd5149c6ffc7ee3d90e9e6884af8e02f44c7ab00
2b9cd0f540eb0916ad5c3ee63dbc8ee57570c3eaae7aeabca5c8cb03a3c73c32

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 17 Sep 2022 10:29:03 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

www.clinicaalameda.com.br/wp-content/uploads/2018/11/agora-sim-1.png

162.214.195.42

200 OK

18 kB

URL HTTP/1.1
www.clinicaalameda.com.br/wp-content/uploads/2018/11/agora-sim-1.png
IP
162.214.195.42:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
PNG image data, 212 x 55, 8-bit/color RGBA, non-interlaced\012- data
Size
18 kB (17557 bytes)
Hash
1fb283f529be59995dbd02a4fabb4f8d
3c615028e629274d8672d99297e714895b89d153
3962407172c50ad8ffc1ccdb6baca678b9d283d8f6f3c4aa327f9bc5a4cbc3e1

HTTP Headers

GET /wp-content/uploads/2018/11/agora-sim-1.png HTTP/1.1
Host: www.clinicaalameda.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.drraul.com.br/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Date: Sat, 17 Sep 2022 10:29:02 GMT
Server: Apache
Cache-Control: private
Last-Modified: Wed, 07 Nov 2018 17:36:54 GMT
Accept-Ranges: bytes
Content-Length: 17557
Vary: Accept
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: image/png

www.drraul.com.br/wp-content/themes/medicare/fonts/fontawesome-webfont.woff2?v=4.5.0

162.214.195.42

200 OK

77 kB

URL HTTP/1.1
www.drraul.com.br/wp-content/themes/medicare/fonts/fontawesome-webfont.woff2?v=4.5.0
IP
162.214.195.42:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
Web Open Font Format (Version 2), TrueType, length 77160, version 4.459\012- data
Size
77 kB (77160 bytes)
Hash
af7ae505a9eed503f8b8e6982036873e
d6f48cba7d076fb6f2fd6ba993a75b9dc1ecbf0c
2adefcbc041e7d18fcf2d417879dc5a09997aa64d675b7a3c4b6ce33da13f3fe

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/themes/medicare/fonts/fontawesome-webfont.woff2?v=4.5.0 HTTP/1.1
Host: www.drraul.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: http://www.drraul.com.br/wp-content/themes/medicare/style.css?ver=5.9.4
Cookie: PHPSESSID=5be5a23da1324528d2c3bec61f1f8619; _ga_Q5QFM1JK5S=GS1.1.1663410525.1.0.1663410525.0.0.0; _ga=GA1.1.1015795381.1663410525

HTTP/1.1 200 OK
Date: Sat, 17 Sep 2022 10:29:02 GMT
Server: Apache
Last-Modified: Sat, 03 Apr 2021 04:05:56 GMT
Accept-Ranges: bytes
Content-Length: 77160
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: font/woff2

www.drraul.com.br/wp-content/themes/medicare/fonts/Pe-icon-7-stroke.woff?d7yf1v

162.214.195.42

200 OK

59 kB

URL HTTP/1.1
www.drraul.com.br/wp-content/themes/medicare/fonts/Pe-icon-7-stroke.woff?d7yf1v
IP
162.214.195.42:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
Web Open Font Format, TrueType, length 58556, version 1.0\012- data
Size
59 kB (58556 bytes)
Hash
b38ef310874bdd008ac14ef3db939032
7e544bb11b7655998db6f324c612f7ffbf0ab66e
6fb4217048f333e23e0fd0ba2ab05e05fd7500f86a5a80a7cf04a2f94b257bec

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/themes/medicare/fonts/Pe-icon-7-stroke.woff?d7yf1v HTTP/1.1
Host: www.drraul.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: http://www.drraul.com.br/wp-content/themes/medicare/style.css?ver=5.9.4
Cookie: PHPSESSID=5be5a23da1324528d2c3bec61f1f8619; _ga_Q5QFM1JK5S=GS1.1.1663410525.1.0.1663410525.0.0.0; _ga=GA1.1.1015795381.1663410525

HTTP/1.1 200 OK
Date: Sat, 17 Sep 2022 10:29:02 GMT
Server: Apache
Last-Modified: Sat, 03 Apr 2021 04:05:56 GMT
Accept-Ranges: bytes
Content-Length: 58556
Keep-Alive: timeout=5, max=94
Connection: Keep-Alive
Content-Type: font/woff

www.drraul.com.br/wp-content/themes/medicare/fonts/Essential.ttf?ljkb42

162.214.195.42

200 OK

214 kB

URL HTTP/1.1
www.drraul.com.br/wp-content/themes/medicare/fonts/Essential.ttf?ljkb42
IP
162.214.195.42:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
TrueType Font data, 11 tables, 1st "OS/2", 14 names, Macintosh, type 1 string, Craft-essential\012- data
Size
214 kB (213756 bytes)
Hash
8059acd17dc4d02593ab5bfeece7ab1a
dcd35ad2c42b642d795b58439de84afdf36e90bc
0a7062f9894c0d7bcd4e0358cc75f943313b05a403db5a3176f2a4bdf4308617

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/themes/medicare/fonts/Essential.ttf?ljkb42 HTTP/1.1
Host: www.drraul.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.drraul.com.br/wp-content/themes/medicare/style.css?ver=5.9.4
Cookie: PHPSESSID=5be5a23da1324528d2c3bec61f1f8619; _ga_Q5QFM1JK5S=GS1.1.1663410525.1.0.1663410525.0.0.0; _ga=GA1.1.1015795381.1663410525

HTTP/1.1 200 OK
Date: Sat, 17 Sep 2022 10:29:02 GMT
Server: Apache
Last-Modified: Sat, 03 Apr 2021 04:05:54 GMT
Accept-Ranges: bytes
Content-Length: 213756
Keep-Alive: timeout=5, max=94
Connection: Keep-Alive
Content-Type: font/ttf

www.drraul.com.br/wp-content/uploads/2020/06/CHAT1.png

162.214.195.42

200 OK

5.9 kB

URL HTTP/1.1
www.drraul.com.br/wp-content/uploads/2020/06/CHAT1.png
IP
162.214.195.42:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
PNG image data, 218 x 33, 8-bit/color RGBA, non-interlaced\012- data
Size
5.9 kB (5884 bytes)
Hash
68c3d38197628d106e2f30919c917879
1fdf5b5b408f86d5e912f683dad82cf68c1eaf6a
15aecbcd23cf3632e33e09e46c1acb7ed6be377e0f1e2e670b637cf11634e473

HTTP Headers

GET /wp-content/uploads/2020/06/CHAT1.png HTTP/1.1
Host: www.drraul.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.drraul.com.br/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Date: Sat, 17 Sep 2022 10:29:02 GMT
Server: Apache
Last-Modified: Wed, 24 Jun 2020 16:36:55 GMT
Accept-Ranges: bytes
Content-Length: 5884
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: image/png

www.drraul.com.br/wp-content/uploads/2020/06/QR-CODE-CONTATO-1-160x160.jpg

162.214.195.42

200 OK

15 kB

URL HTTP/1.1
www.drraul.com.br/wp-content/uploads/2020/06/QR-CODE-CONTATO-1-160x160.jpg
IP
162.214.195.42:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 82", baseline, precision 8, 160x160, components 3\012- data
Size
15 kB (14767 bytes)
Hash
b165de856f53ebb7065f94aafa7c4eb9
ba865a9e3948777f3d34d27072ef54d7d8b14a3c
7516c7e6db7fb71fcbd6f599dd12b1811c6d937f5dd14183506d5052b54b1a42

HTTP Headers

GET /wp-content/uploads/2020/06/QR-CODE-CONTATO-1-160x160.jpg HTTP/1.1
Host: www.drraul.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.drraul.com.br/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Date: Sat, 17 Sep 2022 10:29:02 GMT
Server: Apache
Last-Modified: Wed, 24 Jun 2020 15:13:35 GMT
Accept-Ranges: bytes
Content-Length: 14767
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: image/jpeg

www.drraul.com.br/wp-content/uploads/2020/06/whats-160x160.jpg

162.214.195.42

200 OK

15 kB

URL HTTP/1.1
www.drraul.com.br/wp-content/uploads/2020/06/whats-160x160.jpg
IP
162.214.195.42:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 82", baseline, precision 8, 160x160, components 3\012- data
Size
15 kB (14843 bytes)
Hash
1a9cda1bd59936a8542588cb9cce5267
ddab78246094d05da91292fa21b58045a78dd647
4d2bf6136f19eb7ef76b4735d1618e06e5a168149bbd726997decb483533a33f

HTTP Headers

GET /wp-content/uploads/2020/06/whats-160x160.jpg HTTP/1.1
Host: www.drraul.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.drraul.com.br/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Date: Sat, 17 Sep 2022 10:29:02 GMT
Server: Apache
Last-Modified: Wed, 24 Jun 2020 15:56:51 GMT
Accept-Ranges: bytes
Content-Length: 14843
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: image/jpeg

v2.zopim.com/?4hGDIq3M8d0LeSlIIYm4sbDJzxwq0lQb

104.16.104.139

302 Moved Temporarily

0 B

URL HTTP/1.1
v2.zopim.com/?4hGDIq3M8d0LeSlIIYm4sbDJzxwq0lQb
IP
104.16.104.139:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /?4hGDIq3M8d0LeSlIIYm4sbDJzxwq0lQb HTTP/1.1
Host: v2.zopim.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.drraul.com.br/

HTTP/1.1 302 Moved Temporarily
Date: Sat, 17 Sep 2022 10:29:04 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Location: https://static.zdassets.com/ekr/asset_composer.js
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 74c1289d3eccb505-OSL

ocsp.digicert.com/

93.184.220.29

200 OK

471 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
471 B (471 bytes)
Hash
924cca70f1f5ba02eb6af21a65e0bdd1
3baa75b1ea32068f96cfd5060e4e1eda71c61da8
e55036d990bb7071b7e51e739b8650538ce67d821cc966b0baa99ff40220973b

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3702
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sat, 17 Sep 2022 10:29:04 GMT
Last-Modified: Sat, 17 Sep 2022 09:27:22 GMT
Server: ECS (ska/F712)
X-Cache: HIT
Content-Length: 471

www.google-analytics.com/analytics.js

142.250.74.174

200 OK

20 kB

URL HTTP/2
www.google-analytics.com/analytics.js
IP
142.250.74.174:0
ASN
#15169 GOOGLE

File type
ASCII text, with very long lines (1325)
Size
20 kB (20006 bytes)
Hash
56f5d7f608e25d64207135f045f988cb
901eb59372ae330ae85e1384da93479b21ae1082
1910daea79e5a9d04829a91e432dfa56f45a80a3e14a8cf667fec73af9fd3d29

HTTP Headers

GET /analytics.js HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.drraul.com.br/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
strict-transport-security: max-age=10886400; includeSubDomains; preload
x-content-type-options: nosniff
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 20006
date: Sat, 17 Sep 2022 08:41:12 GMT
expires: Sat, 17 Sep 2022 10:41:12 GMT
cache-control: public, max-age=7200
age: 6472
last-modified: Wed, 13 Apr 2022 21:02:38 GMT
content-type: text/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

connect.facebook.net/pt_BR/sdk.js

31.13.72.12

200 OK

1.7 kB

URL HTTP/2
connect.facebook.net/pt_BR/sdk.js
IP
31.13.72.12:0
ASN
#32934 FACEBOOK

File type
ASCII text, with very long lines (1961)
Size
1.7 kB (1686 bytes)
Hash
891f561f11110b5329ce1886a3af4f22
843eaa333eda4e57f018e1d12b5ba3b04d4665af
bebf31c04157ec47b72d9ccb2a1e1c140b850a06eedfaf6e67544be9f0580748

HTTP Headers

GET /pt_BR/sdk.js HTTP/1.1
Host: connect.facebook.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://www.drraul.com.br
Connection: keep-alive
Referer: http://www.drraul.com.br/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
vary: Accept-Encoding
content-encoding: gzip
access-control-expose-headers: X-FB-Content-MD5
x-fb-content-md5: 5b4679b97c52fbdb8a32d41874c223b7
etag: "d4dfeec070e51afaaa95d120a1935088"
content-type: application/x-javascript; charset=utf-8
timing-allow-origin: *
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
expires: Sat, 17 Sep 2022 10:38:05 GMT
cache-control: public,max-age=1200,stale-while-revalidate=3600
document-policy: force-load-at-top
cross-origin-opener-policy: same-origin-allow-popups
x-content-type-options: nosniff
x-fb-rlafr: 0
x-frame-options: DENY
strict-transport-security: max-age=31536000; preload; includeSubDomains
content-md5: iR9WHxERC1MpzhiGo69PIg==
x-fb-debug: sKxFNxNJednL+gEWZX33BxhH35LI8ZSBxSGGVLIhw3rbJiTROmFZ2N1tbwbHnIK7ue9j8/gtZtWH/1sgU/Z4tg==
content-length: 1686
x-fb-trip-id: 1904183273
date: Sat, 17 Sep 2022 10:29:04 GMT
alt-svc: h3=":443"; ma=86400,h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

ocsp.digicert.com/

93.184.220.29

200 OK

471 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
471 B (471 bytes)
Hash
924cca70f1f5ba02eb6af21a65e0bdd1
3baa75b1ea32068f96cfd5060e4e1eda71c61da8
e55036d990bb7071b7e51e739b8650538ce67d821cc966b0baa99ff40220973b

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3702
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sat, 17 Sep 2022 10:29:04 GMT
Last-Modified: Sat, 17 Sep 2022 09:27:22 GMT
Server: ECS (ska/F712)
X-Cache: HIT
Content-Length: 471

connect.facebook.net/pt_BR/sdk.js?hash=6f29d9d16ca8e3f18f620d0860def2db

31.13.72.12

200 OK

87 kB

URL HTTP/2
connect.facebook.net/pt_BR/sdk.js?hash=6f29d9d16ca8e3f18f620d0860def2db
IP
31.13.72.12:0
ASN
#32934 FACEBOOK

File type
ASCII text, with very long lines (13264)
Size
87 kB (87269 bytes)
Hash
788a3ed5c740b7c42935651992d215ee
298ba0376b4b3f8502fd240c118d6cb0f863ba79
5629f6eacaaf7b6605866756a510eea8b3de74b408cc9dd84bb13c0448973bef

HTTP Headers

GET /pt_BR/sdk.js?hash=6f29d9d16ca8e3f18f620d0860def2db HTTP/1.1
Host: connect.facebook.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://www.drraul.com.br
Connection: keep-alive
Referer: http://www.drraul.com.br/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
vary: Accept-Encoding
content-encoding: gzip
access-control-expose-headers: X-FB-Content-MD5
x-fb-content-md5: 933cbbb4a3af54ffe55905aaeb613529
etag: "b23f64603a82cd6d5b5cb4327267f970"
content-type: application/x-javascript; charset=utf-8
timing-allow-origin: *
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
expires: Sun, 17 Sep 2023 09:54:17 GMT
cache-control: public,max-age=31536000,stale-while-revalidate=3600,immutable
document-policy: force-load-at-top
cross-origin-opener-policy: same-origin-allow-popups
x-content-type-options: nosniff
x-fb-rlafr: 0
x-frame-options: DENY
strict-transport-security: max-age=31536000; preload; includeSubDomains
content-md5: eIo+1cdAt8QpNWUZktIV7g==
x-fb-debug: QnhbdglhMrCLSUR4Vf4TPAayvtnNlsZQBJ59x63VC/oHKd7jJ0qWRf0zA6WGGvf1KQj2wmdgNndHMgrOV4rOGA==
priority: u=3,i
content-length: 87269
x-fb-trip-id: 1904183273
date: Sat, 17 Sep 2022 10:29:04 GMT
alt-svc: h3=":443"; ma=86400,h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

www.drraul.com.br/wp-content/uploads/2018/11/cropped-favicon-32x32.png

162.214.195.42

200 OK

755 B

URL HTTP/1.1
www.drraul.com.br/wp-content/uploads/2018/11/cropped-favicon-32x32.png
IP
162.214.195.42:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
PNG image data, 32 x 32, 8-bit/color RGBA, non-interlaced\012- data
Size
755 B (755 bytes)
Hash
53accf84a8042664c994a90d44b6e9ef
e991cc9d266f022ec40ea589943ca1c8d016f44b
e057689eafb9ba3de0c2e4927909bfd0422da44b90bf65985a42c1430b7bed12

HTTP Headers

GET /wp-content/uploads/2018/11/cropped-favicon-32x32.png HTTP/1.1
Host: www.drraul.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.drraul.com.br/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Date: Sat, 17 Sep 2022 10:29:03 GMT
Server: Apache
Last-Modified: Wed, 07 Nov 2018 17:09:08 GMT
Accept-Ranges: bytes
Content-Length: 755
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: image/png

www.drraul.com.br/wp-content/uploads/2018/11/cropped-favicon-192x192.png

162.214.195.42

200 OK

4.4 kB

URL HTTP/1.1
www.drraul.com.br/wp-content/uploads/2018/11/cropped-favicon-192x192.png
IP
162.214.195.42:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
PNG image data, 192 x 192, 8-bit/color RGBA, non-interlaced\012- data
Size
4.4 kB (4389 bytes)
Hash
3ef78ed2a962981b9aae42916f42b70f
93a8b124918df4032c38963c12f29d1ad35371c9
87aeb6127f8246187b1b21ecdd3e170ab32b0f71dd88dc0485a3a726bcb94b32

HTTP Headers

GET /wp-content/uploads/2018/11/cropped-favicon-192x192.png HTTP/1.1
Host: www.drraul.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.drraul.com.br/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Date: Sat, 17 Sep 2022 10:29:03 GMT
Server: Apache
Last-Modified: Wed, 07 Nov 2018 17:09:08 GMT
Accept-Ranges: bytes
Content-Length: 4389
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: image/png

www.facebook.com/tr/?id=432505440829091&ev=fb_page_view&dl=http%3A%2F%2Fwww.drraul.com.br%2Fwp-admin%2F.draa%2Flogin.php%3Fcmd%3D3Dlogin_submit%26id&rl=&if=false&ts=1663410527265&sw=1280&sh=1024&at=

31.13.72.36

200 OK

44 B

URL HTTP/2
www.facebook.com/tr/?id=432505440829091&ev=fb_page_view&dl=http%3A%2F%2Fwww.drraul.com.br%2Fwp-admin%2F.draa%2Flogin.php%3Fcmd%3D3Dlogin_submit%26id&rl=&if=false&ts=1663410527265&sw=1280&sh=1024&at=
IP
31.13.72.36:0
ASN
#32934 FACEBOOK

File type
GIF image data, version 89a, 1 x 1\012- data
Size
44 B (44 bytes)
Hash
b798f4ce7359fd815df4bdf76503b295
f8cc6addf1707ad236ad9970b0a48f9733d07da5
10d8d42d73a02ddb877101e72fbfa15a0ec820224d97cedee4cf92d571be5caa

HTTP Headers

GET /tr/?id=432505440829091&ev=fb_page_view&dl=http%3A%2F%2Fwww.drraul.com.br%2Fwp-admin%2F.draa%2Flogin.php%3Fcmd%3D3Dlogin_submit%26id&rl=&if=false&ts=1663410527265&sw=1280&sh=1024&at= HTTP/1.1
Host: www.facebook.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.drraul.com.br/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
content-type: image/gif
date: Sat, 17 Sep 2022 10:29:04 GMT
expires: Sat, 17 Sep 2022 10:29:04 GMT
last-modified: Fri, 21 Dec 2012 00:00:01 GMT
cache-control: no-cache, must-revalidate, max-age=0
set-cookie: 
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
content-length: 44
server: proxygen-bolt
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

ocsp.digicert.com/

93.184.220.29

200 OK

279 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
279 B (279 bytes)
Hash
2e6258fbbfde228d45371a4379ce96ef
eda352a7b567b74a90dc99ea882476485e65a4c7
111ba608674425059b8d7476acd00eaaed53760e18b63b3dc887b5bc4859f25e

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5145
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sat, 17 Sep 2022 10:29:04 GMT
Last-Modified: Sat, 17 Sep 2022 09:03:20 GMT
Server: ECS (ska/F712)
X-Cache: HIT
Content-Length: 279

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
fa86a62c870c1ce23fd85f73e99d7964
81af6fd2507bb58c6b040fd5f494de01d22e7102
76bc6fffeb8593064820e909edc5e4991cb4a5c1b609916a6021974665b5286f

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 17 Sep 2022 10:29:04 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

stats.g.doubleclick.net/j/collect?t=dc&aip=1&_r=3&v=1&_v=j96&tid=UA-78561082-1&cid=1015795381.1663410525&jid=2024918824&gjid=1014567507&_gid=179232236.1663410527&_u=YADAAUAAAAAAAC~&z=518483099

142.251.1.155

200 OK

4 B

URL HTTP/2
stats.g.doubleclick.net/j/collect?t=dc&aip=1&_r=3&v=1&_v=j96&tid=UA-78561082-1&cid=1015795381.1663410525&jid=2024918824&gjid=1014567507&_gid=179232236.1663410527&_u=YADAAUAAAAAAAC~&z=518483099
IP
142.251.1.155:0
ASN
#15169 GOOGLE

File type
ASCII text, with no line terminators
Size
4 B (4 bytes)
Hash
48c0473b7821185d937e685216e2168b
3743e47f8a429a5e87b86cb582d78940733d9d2e
570c4d4674fd20602189c548c145ba1f8ac34bc2e4599a71471969028aa1e25a

HTTP Headers

POST /j/collect?t=dc&aip=1&_r=3&v=1&_v=j96&tid=UA-78561082-1&cid=1015795381.1663410525&jid=2024918824&gjid=1014567507&_gid=179232236.1663410527&_u=YADAAUAAAAAAAC~&z=518483099 HTTP/1.1
Host: stats.g.doubleclick.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 0
Origin: http://www.drraul.com.br
Connection: keep-alive
Referer: http://www.drraul.com.br/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
access-control-allow-origin: http://www.drraul.com.br
strict-transport-security: max-age=10886400; includeSubDomains; preload
date: Sat, 17 Sep 2022 10:29:04 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
last-modified: Sun, 17 May 1998 03:00:00 GMT
access-control-allow-credentials: true
x-content-type-options: nosniff
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 4
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

v2.zopim.com/w?4hGDIq3M8d0LeSlIIYm4sbDJzxwq0lQb

104.16.104.139

302 Found

0 B

URL HTTP/2
v2.zopim.com/w?4hGDIq3M8d0LeSlIIYm4sbDJzxwq0lQb
IP
104.16.104.139:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /w?4hGDIq3M8d0LeSlIIYm4sbDJzxwq0lQb HTTP/1.1
Host: v2.zopim.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.drraul.com.br/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 302 Found
date: Sat, 17 Sep 2022 10:29:04 GMT
content-type: application/octet-stream
content-length: 0
location: https://v2.zopim.com/bin/v/widget_v2.334.js
etag: "62e9bace-0"
expires: Sat, 17 Sep 2022 14:29:04 GMT
cache-control: max-age=14400, max-age=14400, public, must-revalidate, proxy-revalidate
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 74c1289f5c1bb52d-OSL
X-Firefox-Spdy: h2

static.xx.fbcdn.net/rsrc.php/v3/ys/l/0,cross/4_8X-2u0CDc.css?_nc_x=Ij3Wp8lg5Kz

31.13.72.12

200 OK

827 B

URL HTTP/2
static.xx.fbcdn.net/rsrc.php/v3/ys/l/0,cross/4_8X-2u0CDc.css?_nc_x=Ij3Wp8lg5Kz
IP
31.13.72.12:0
ASN
#32934 FACEBOOK

File type
ASCII text, with very long lines (724)
Size
827 B (827 bytes)
Hash
29973cf3b0ef9f16fe31ed981b2f6573
f22eb80b89b5e0ae9ace854aab6676d56eaef6a1
476822c80e0a0ee078edb7a74db59378f8b1d43d2de844e28a9e9c2f68a4c8d8

HTTP Headers

GET /rsrc.php/v3/ys/l/0,cross/4_8X-2u0CDc.css?_nc_x=Ij3Wp8lg5Kz HTTP/1.1
Host: static.xx.fbcdn.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.facebook.com
Connection: keep-alive
Referer: https://www.facebook.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
content-encoding: br
content-type: text/css; charset=utf-8
last-modified: Mon, 01 Jan 2001 08:00:00 GMT
expires: Sun, 17 Sep 2023 02:34:03 GMT
cache-control: public,max-age=31536000,immutable
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
timing-allow-origin: *
content-md5: KZc887Dvnxb+Me2YGy9lcw==
x-fb-debug: yHaVsWKUn5XaCek7JWQWqBHp73k4n7rZGOKYjUAlCOgsl3pJ5HBerO7+9gE7Ns+HF/UbPGzI6RNEuJW+jkzCFw==
priority: u=3,i
content-length: 827
x-fb-trip-id: 1904183273
date: Sat, 17 Sep 2022 10:29:04 GMT
access-control-allow-origin: https://www.facebook.com
vary: Origin
alt-svc: h3=":443"; ma=86400,h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

static.xx.fbcdn.net/rsrc.php/v3/yS/l/0,cross/y-fVScwktOf.css?_nc_x=Ij3Wp8lg5Kz

31.13.72.12

200 OK

5.2 kB

URL HTTP/2
static.xx.fbcdn.net/rsrc.php/v3/yS/l/0,cross/y-fVScwktOf.css?_nc_x=Ij3Wp8lg5Kz
IP
31.13.72.12:0
ASN
#32934 FACEBOOK

File type
ASCII text, with very long lines (4093)
Size
5.2 kB (5175 bytes)
Hash
8ada5acafea6596b8e90bf10bc000c46
8b07405e279aaaa7e10831e606d6da4571e5c8da
6c28becc9f55376dcbc55265c5ce4342816239c60c65e9c1b41cbb2106ff7e2c

HTTP Headers

GET /rsrc.php/v3/yS/l/0,cross/y-fVScwktOf.css?_nc_x=Ij3Wp8lg5Kz HTTP/1.1
Host: static.xx.fbcdn.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.facebook.com
Connection: keep-alive
Referer: https://www.facebook.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
content-encoding: br
content-type: text/css; charset=utf-8
last-modified: Mon, 01 Jan 2001 08:00:00 GMT
expires: Sun, 17 Sep 2023 02:44:33 GMT
cache-control: public,max-age=31536000,immutable
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
timing-allow-origin: *
content-md5: itpayv6mWWuOkL8QvAAMRg==
x-fb-debug: I7nrLw/M+PWM31t/qhRnG7aUiudZRnlD4tQmOGkBblfNWxWUDTF5j/mOifGxdPfmfPYFzsuIMQNsGaYs5WukDg==
content-length: 5175
x-fb-trip-id: 1904183273
date: Sat, 17 Sep 2022 10:29:04 GMT
access-control-allow-origin: https://www.facebook.com
vary: Origin
alt-svc: h3=":443"; ma=86400,h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
b4a24f9aebdfdb06d10cd53e92a70bb8
c4532479dbd9636d8f5206faa085c520651eb5f2
1d330af2b423e351355f710f14cb771fa9918e8b6638c5076aba7bcda6c30936

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 17 Sep 2022 10:29:04 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
13fec77b59dae4bb9410a06357423a2f
086b7b536283f0a18742c3e43397762f78cdccf8
66b85a264ec591ece4c49e1f6a5da676436319845540139888e0b5e4906c5f16

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 17 Sep 2022 10:29:04 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

static.xx.fbcdn.net/rsrc.php/v3/yF/l/0,cross/af7RGl7UScC.css?_nc_x=Ij3Wp8lg5Kz

31.13.72.12

200 OK

6.4 kB

URL HTTP/2
static.xx.fbcdn.net/rsrc.php/v3/yF/l/0,cross/af7RGl7UScC.css?_nc_x=Ij3Wp8lg5Kz
IP
31.13.72.12:0
ASN
#32934 FACEBOOK

File type
ASCII text, with very long lines (8976)
Size
6.4 kB (6428 bytes)
Hash
15106e76fd6a34c25ad1748d23627685
80cf381b8549495689f2fc5735e24f7b5dd3d41e
f91d4e9d86a2d290a9bc500e2bf3723b524a497b7c3eec83f03a60e4dff8367e

HTTP Headers

GET /rsrc.php/v3/yF/l/0,cross/af7RGl7UScC.css?_nc_x=Ij3Wp8lg5Kz HTTP/1.1
Host: static.xx.fbcdn.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.facebook.com
Connection: keep-alive
Referer: https://www.facebook.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
content-encoding: br
content-type: text/css; charset=utf-8
last-modified: Mon, 01 Jan 2001 08:00:00 GMT
expires: Sun, 17 Sep 2023 02:39:34 GMT
cache-control: public,max-age=31536000,immutable
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
timing-allow-origin: *
content-md5: FRBudv1qNMJa0XSNI2J2hQ==
x-fb-debug: TveWqeCnS4YVLazn8yBq/ZOB4YBOtWE9PUMwvJeqOXyhh/NFvLcxzQmkWJwzIV+E0ZG6axzKRHF/VLjgaT/u8g==
priority: u=2
content-length: 6428
x-fb-trip-id: 1904183273
date: Sat, 17 Sep 2022 10:29:04 GMT
access-control-allow-origin: https://www.facebook.com
vary: Origin
alt-svc: h3=":443"; ma=86400,h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

static.xx.fbcdn.net/rsrc.php/v3/yF/l/0,cross/I_DGZeWwnml.css?_nc_x=Ij3Wp8lg5Kz

31.13.72.12

200 OK

4.6 kB

URL HTTP/2
static.xx.fbcdn.net/rsrc.php/v3/yF/l/0,cross/I_DGZeWwnml.css?_nc_x=Ij3Wp8lg5Kz
IP
31.13.72.12:0
ASN
#32934 FACEBOOK

File type
assembler source, ASCII text, with very long lines (2642)
Size
4.6 kB (4606 bytes)
Hash
6ff0affb93acb3e210d68b50d67dd43c
932473e9c54275389c9ffd6bb3d088800e4f154a
064e887f9f9c30f3d45ce79a8d344a7cf6f83164ee979105f0d03088fe3626d2

HTTP Headers

GET /rsrc.php/v3/yF/l/0,cross/I_DGZeWwnml.css?_nc_x=Ij3Wp8lg5Kz HTTP/1.1
Host: static.xx.fbcdn.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.facebook.com
Connection: keep-alive
Referer: https://www.facebook.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
content-encoding: br
content-type: text/css; charset=utf-8
last-modified: Mon, 01 Jan 2001 08:00:00 GMT
expires: Sun, 17 Sep 2023 03:10:20 GMT
cache-control: public,max-age=31536000,immutable
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
timing-allow-origin: *
content-md5: b/Cv+5Oss+IQ1otQ1n3UPA==
x-fb-debug: 1k0YT61gEOsVo+gRLdCvZDZ+4jMl7aJP0BxpBHXfOn4A9E5meFGYePVhRdOUNi2wCow/hQZVxW5CdauFrCe1Fw==
content-length: 4606
x-fb-trip-id: 1904183273
date: Sat, 17 Sep 2022 10:29:04 GMT
access-control-allow-origin: https://www.facebook.com
vary: Origin
alt-svc: h3=":443"; ma=86400,h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

static.xx.fbcdn.net/rsrc.php/v3/yM/r/a3eZamQ9G_u.js?_nc_x=Ij3Wp8lg5Kz

31.13.72.12

200 OK

91 kB

URL HTTP/2
static.xx.fbcdn.net/rsrc.php/v3/yM/r/a3eZamQ9G_u.js?_nc_x=Ij3Wp8lg5Kz
IP
31.13.72.12:0
ASN
#32934 FACEBOOK

File type
ASCII text, with very long lines (18569)
Size
91 kB (91358 bytes)
Hash
449a21bbd17f4b28e209b62a520f28c0
b63a99e69f6ed688707a0f4851c0a88fe5cb6faa
dda01b644519466b782011bfbd33c652b8b7a691145ac1dfb314ba14ff86077d

HTTP Headers

GET /rsrc.php/v3/yM/r/a3eZamQ9G_u.js?_nc_x=Ij3Wp8lg5Kz HTTP/1.1
Host: static.xx.fbcdn.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.facebook.com
Connection: keep-alive
Referer: https://www.facebook.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
content-encoding: br
content-type: application/x-javascript; charset=utf-8
last-modified: Mon, 01 Jan 2001 08:00:00 GMT
expires: Sun, 17 Sep 2023 05:21:59 GMT
cache-control: public,max-age=31536000,immutable
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
timing-allow-origin: *
content-md5: RJohu9F/SyjiCbYqUg8owA==
x-fb-debug: RPqFTLB6D/1W7qsGayA95QbVPhrTQFbyYUcd7pWcCtM+mZ4B+1+ItcVxZPjJSSvrQ2fZ7CicO7y8aent1B6M0Q==
priority: u=3,i
content-length: 91358
x-fb-trip-id: 1904183273
date: Sat, 17 Sep 2022 10:29:04 GMT
access-control-allow-origin: https://www.facebook.com
vary: Origin
alt-svc: h3=":443"; ma=86400,h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
fa86a62c870c1ce23fd85f73e99d7964
81af6fd2507bb58c6b040fd5f494de01d22e7102
76bc6fffeb8593064820e909edc5e4991cb4a5c1b609916a6021974665b5286f

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 17 Sep 2022 10:29:04 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

static.xx.fbcdn.net/rsrc.php/v3/yI/r/p7aKdtolv_W.js?_nc_x=Ij3Wp8lg5Kz

31.13.72.12

200 OK

12 kB

URL HTTP/2
static.xx.fbcdn.net/rsrc.php/v3/yI/r/p7aKdtolv_W.js?_nc_x=Ij3Wp8lg5Kz
IP
31.13.72.12:0
ASN
#32934 FACEBOOK

File type
ASCII text, with very long lines (5329)
Size
12 kB (12252 bytes)
Hash
adcd01b197549ab05ed54746a81151f8
edb56528c008d8a431e350179ff6df1aa40c2ae6
e6456b195e1064b44db169404417d1c68777133c14d6188bd9ffdfc60e70393c

HTTP Headers

GET /rsrc.php/v3/yI/r/p7aKdtolv_W.js?_nc_x=Ij3Wp8lg5Kz HTTP/1.1
Host: static.xx.fbcdn.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.facebook.com
Connection: keep-alive
Referer: https://www.facebook.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
content-encoding: br
content-type: application/x-javascript; charset=utf-8
last-modified: Mon, 01 Jan 2001 08:00:00 GMT
expires: Sun, 17 Sep 2023 02:34:51 GMT
cache-control: public,max-age=31536000,immutable
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
timing-allow-origin: *
content-md5: rc0BsZdUmrBe1UdGqBFR+A==
x-fb-debug: fpTNZBpKRMFsnzhgp8xyAGY34RTkaBbMaboZKIoobjg1eW7U7IRW0/CQk6uUO+zNCL8BkDQ6pe8vq36rW8LbiQ==
content-length: 12252
x-fb-trip-id: 1904183273
date: Sat, 17 Sep 2022 10:29:04 GMT
access-control-allow-origin: https://www.facebook.com
vary: Origin
alt-svc: h3=":443"; ma=86400,h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

static.xx.fbcdn.net/rsrc.php/v3/yF/r/p55HfXW__mM.js?_nc_x=Ij3Wp8lg5Kz

31.13.72.12

200 OK

338 B

URL HTTP/2
static.xx.fbcdn.net/rsrc.php/v3/yF/r/p55HfXW__mM.js?_nc_x=Ij3Wp8lg5Kz
IP
31.13.72.12:0
ASN
#32934 FACEBOOK

File type
ASCII text, with very long lines (327)
Size
338 B (338 bytes)
Hash
76f593e842677f73cd0a06232874b2c3
25a13f79478d5a0e286a2299dca2f3b296463079
74dcbe026002f10b703960a500b50dabe518862e568a9e689dec7afa243fa44d

HTTP Headers

GET /rsrc.php/v3/yF/r/p55HfXW__mM.js?_nc_x=Ij3Wp8lg5Kz HTTP/1.1
Host: static.xx.fbcdn.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.facebook.com
Connection: keep-alive
Referer: https://www.facebook.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
content-encoding: br
content-type: application/x-javascript; charset=utf-8
last-modified: Mon, 01 Jan 2001 08:00:00 GMT
expires: Sun, 17 Sep 2023 03:04:23 GMT
cache-control: public,max-age=31536000,immutable
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
timing-allow-origin: *
content-md5: dvWT6EJnf3PNCgYjKHSyww==
x-fb-debug: 68Wuhrr/EaPU3YO8PiqIGC/PKS2j8tu7dBDGT1QnB2OwCsAQcuY9+JXdd1iTSPJyFyDBjgBauNDESiQbq8WYtA==
priority: u=3,i
content-length: 338
x-fb-trip-id: 1904183273
date: Sat, 17 Sep 2022 10:29:04 GMT
access-control-allow-origin: https://www.facebook.com
vary: Origin
alt-svc: h3=":443"; ma=86400,h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

static.xx.fbcdn.net/rsrc.php/v3/yC/r/5RJiTHn6lGN.js?_nc_x=Ij3Wp8lg5Kz

31.13.72.12

200 OK

9.1 kB

URL HTTP/2
static.xx.fbcdn.net/rsrc.php/v3/yC/r/5RJiTHn6lGN.js?_nc_x=Ij3Wp8lg5Kz
IP
31.13.72.12:0
ASN
#32934 FACEBOOK

File type
ASCII text, with very long lines (9954)
Size
9.1 kB (9071 bytes)
Hash
be64cd173090e3a98e38a422d5930c56
5c196fb94edb4d634bad160a99f3918260d23be3
0ffe4a73f2d08fa7dae5286e54d9e1f779422452cedfb44422a90ed24d409617

HTTP Headers

GET /rsrc.php/v3/yC/r/5RJiTHn6lGN.js?_nc_x=Ij3Wp8lg5Kz HTTP/1.1
Host: static.xx.fbcdn.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.facebook.com
Connection: keep-alive
Referer: https://www.facebook.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
content-encoding: br
content-type: application/x-javascript; charset=utf-8
last-modified: Mon, 01 Jan 2001 08:00:00 GMT
expires: Sun, 17 Sep 2023 00:05:18 GMT
cache-control: public,max-age=31536000,immutable
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
timing-allow-origin: *
content-md5: vmTNFzCQ46mOOKQi1ZMMVg==
x-fb-debug: +vySrWjEndZQFSjiEyL/F/9BW8CB1W+6NhMx0Yc2urSt5vAda/cN8Cve3Gz+MmDQ92vwoF3fff4adaprcucqqQ==
priority: u=3,i
content-length: 9071
x-fb-trip-id: 1904183273
date: Sat, 17 Sep 2022 10:29:04 GMT
access-control-allow-origin: https://www.facebook.com
vary: Origin
alt-svc: h3=":443"; ma=86400,h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

static.xx.fbcdn.net/rsrc.php/v3iL6L4/yT/l/pt_BR/FcvJBB0C3rJ.js?_nc_x=Ij3Wp8lg5Kz

31.13.72.12

200 OK

8.5 kB

URL HTTP/2
static.xx.fbcdn.net/rsrc.php/v3iL6L4/yT/l/pt_BR/FcvJBB0C3rJ.js?_nc_x=Ij3Wp8lg5Kz
IP
31.13.72.12:0
ASN
#32934 FACEBOOK

File type
ASCII text, with very long lines (2973)
Size
8.5 kB (8459 bytes)
Hash
157ade84d18f18a17cb9eae92691b1c5
51074d173c14254a98e3ff0f89e7a6193004391d
ff482b28124ad7fa65d0ef8039d0e09fcf586b06c7bc0566e41bdd1da00294d3

HTTP Headers

GET /rsrc.php/v3iL6L4/yT/l/pt_BR/FcvJBB0C3rJ.js?_nc_x=Ij3Wp8lg5Kz HTTP/1.1
Host: static.xx.fbcdn.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.facebook.com
Connection: keep-alive
Referer: https://www.facebook.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
content-encoding: br
content-type: application/x-javascript; charset=utf-8
last-modified: Mon, 01 Jan 2001 08:00:00 GMT
expires: Sun, 17 Sep 2023 02:06:24 GMT
cache-control: public,max-age=31536000,immutable
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
timing-allow-origin: *
content-md5: FXrehNGPGKF8uerpJpGxxQ==
x-fb-debug: 1RpBSyZ+jYniCeVRD8Cw8psI8Kr0xIH0q22zfJub5JoegdDPmadp5KQ6Ke1P1A9yHqeeQ/LGqmh82GqkzGLpMg==
content-length: 8459
x-fb-trip-id: 1904183273
date: Sat, 17 Sep 2022 10:29:04 GMT
access-control-allow-origin: https://www.facebook.com
vary: Origin
alt-svc: h3=":443"; ma=86400,h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

static.xx.fbcdn.net/rsrc.php/v3/yL/r/DJIek1tT3RT.js?_nc_x=Ij3Wp8lg5Kz

31.13.72.12

200 OK

1.7 kB

URL HTTP/2
static.xx.fbcdn.net/rsrc.php/v3/yL/r/DJIek1tT3RT.js?_nc_x=Ij3Wp8lg5Kz
IP
31.13.72.12:0
ASN
#32934 FACEBOOK

File type
ASCII text, with very long lines (2052)
Size
1.7 kB (1689 bytes)
Hash
883efc20b86990fd486fab545ffc08f4
da322dda14a98744e03655dcf0da9482b4b1e1d0
e207751970ef4bf6e0a64da5e9480ab3b1ee86408a7904796e2f6e225f8ee612

HTTP Headers

GET /rsrc.php/v3/yL/r/DJIek1tT3RT.js?_nc_x=Ij3Wp8lg5Kz HTTP/1.1
Host: static.xx.fbcdn.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.facebook.com
Connection: keep-alive
Referer: https://www.facebook.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
content-encoding: br
content-type: application/x-javascript; charset=utf-8
last-modified: Mon, 01 Jan 2001 08:00:00 GMT
expires: Sun, 17 Sep 2023 02:08:38 GMT
cache-control: public,max-age=31536000,immutable
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
timing-allow-origin: *
content-md5: iD78ILhpkP1Ib6tUX/wI9A==
x-fb-debug: 3xf2Hkdj8IkCq8Pu8zwE5lJgg7qX2npGWEdQ9NucX74XkugHYUBgbzsMG3Wt6wCtPAL0CQhW/876eiA1YZZwrw==
priority: u=3,i
content-length: 1689
x-fb-trip-id: 1904183273
date: Sat, 17 Sep 2022 10:29:04 GMT
access-control-allow-origin: https://www.facebook.com
vary: Origin
alt-svc: h3=":443"; ma=86400,h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

static.xx.fbcdn.net/rsrc.php/v3iM-F4/yI/l/pt_BR/aToexfaV0S1.js?_nc_x=Ij3Wp8lg5Kz

31.13.72.12

200 OK

23 kB

URL HTTP/2
static.xx.fbcdn.net/rsrc.php/v3iM-F4/yI/l/pt_BR/aToexfaV0S1.js?_nc_x=Ij3Wp8lg5Kz
IP
31.13.72.12:0
ASN
#32934 FACEBOOK

File type
ASCII text, with very long lines (42104)
Size
23 kB (23449 bytes)
Hash
6939dd314ff4986eff68ad5793cb9ca4
f315c717bcae7103c7e104aa81673a5a2ed839bb
5b8699e8518d45809e47d55de4ddfa1849f684c10c4d2c48aa01b3b7a2768171

HTTP Headers

GET /rsrc.php/v3iM-F4/yI/l/pt_BR/aToexfaV0S1.js?_nc_x=Ij3Wp8lg5Kz HTTP/1.1
Host: static.xx.fbcdn.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.facebook.com
Connection: keep-alive
Referer: https://www.facebook.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
content-encoding: br
content-type: application/x-javascript; charset=utf-8
last-modified: Mon, 01 Jan 2001 08:00:00 GMT
expires: Sun, 17 Sep 2023 02:37:02 GMT
cache-control: public,max-age=31536000,immutable
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
timing-allow-origin: *
content-md5: aTndMU/0mG7/aK1Xk8ucpA==
x-fb-debug: VDfKvjYjiTEFnW+bTc11NkV1nRst/rTv4l3HVGeYB2tsVRgijv5sl0gHNBwjK+QLFGW2JxFfTxAv8cLn2s4hmg==
content-length: 23449
x-fb-trip-id: 1904183273
date: Sat, 17 Sep 2022 10:29:04 GMT
access-control-allow-origin: https://www.facebook.com
vary: Origin
alt-svc: h3=":443"; ma=86400,h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

static.xx.fbcdn.net/rsrc.php/v3/yx/r/kl5QvbCz5Lo.js?_nc_x=Ij3Wp8lg5Kz

31.13.72.12

200 OK

7.3 kB

URL HTTP/2
static.xx.fbcdn.net/rsrc.php/v3/yx/r/kl5QvbCz5Lo.js?_nc_x=Ij3Wp8lg5Kz
IP
31.13.72.12:0
ASN
#32934 FACEBOOK

File type
ASCII text, with very long lines (4129)
Size
7.3 kB (7311 bytes)
Hash
7614efba617e235ae864911e15a63a27
5eb6ee4e1d2db3866ebcbc35b76352c719c36255
3c2783c57f48e1b749c1065ddcdf2f5184582a2bc799b1ee832fdf79c62b9557

HTTP Headers

GET /rsrc.php/v3/yx/r/kl5QvbCz5Lo.js?_nc_x=Ij3Wp8lg5Kz HTTP/1.1
Host: static.xx.fbcdn.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.facebook.com
Connection: keep-alive
Referer: https://www.facebook.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
content-encoding: br
content-type: application/x-javascript; charset=utf-8
last-modified: Mon, 01 Jan 2001 08:00:00 GMT
expires: Sun, 17 Sep 2023 02:42:02 GMT
cache-control: public,max-age=31536000,immutable
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
timing-allow-origin: *
content-md5: dhTvumF+I1roZJEeFaY6Jw==
x-fb-debug: JUQSsTOgvgS/yu+nkR0lT3EY38R8E050LHR0Y8iOpkFremGjdd9h3YPybVByjlhpO9DERjeMYTfmUXir2kSvpQ==
priority: u=3,i
content-length: 7311
x-fb-trip-id: 1904183273
date: Sat, 17 Sep 2022 10:29:04 GMT
access-control-allow-origin: https://www.facebook.com
vary: Origin
alt-svc: h3=":443"; ma=86400,h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

www.facebook.com/v7.0/plugins/page.php?adapt_container_width=true&app_id=432505440829091&channel=https%3A%2F%2Fstaticxx.facebook.com%2Fx%2Fconnect%2Fxd_arbiter%2F%3Fversion%3D46%23cb%3Df20cebd4bb90bb2%26domain%3Dwww.drraul.com.br%26is_canvas%3Dfalse%26origin%3Dhttp%253A%252F%252Fwww.drraul.com.br%252Ff950ff42247536%26relation%3Dparent.parent&container_width=347&height=200&hide_cover=false&href=https%3A%2F%2Fwww.facebook.com%2Fclinicalameda%2F&locale=pt_BR&sdk=joey&show_facepile=true&small_header=false&tabs=timeline&width=500

31.13.72.36

200 OK

47 kB

URL HTTP/2
www.facebook.com/v7.0/plugins/page.php?adapt_container_width=true&app_id=432505440829091&channel=https%3A%2F%2Fstaticxx.facebook.com%2Fx%2Fconnect%2Fxd_arbiter%2F%3Fversion%3D46%23cb%3Df20cebd4bb90bb2%26domain%3Dwww.drraul.com.br%26is_canvas%3Dfalse%26origin%3Dhttp%253A%252F%252Fwww.drraul.com.br%252Ff950ff42247536%26relation%3Dparent.parent&container_width=347&height=200&hide_cover=false&href=https%3A%2F%2Fwww.facebook.com%2Fclinicalameda%2F&locale=pt_BR&sdk=joey&show_facepile=true&small_header=false&tabs=timeline&width=500
IP
31.13.72.36:0
ASN
#32934 FACEBOOK

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (32566)
Size
47 kB (47436 bytes)
Hash
c422848e705429b33a97520333b584d7
56eb2e50fdc9998dfc8285f2753b1714e21fd3f1
b0ce1d25541b20cffce56f33acb58c6ec8b16cfd56c2b32258ded3ebf3c36f72

HTTP Headers

GET /v7.0/plugins/page.php?adapt_container_width=true&app_id=432505440829091&channel=https%3A%2F%2Fstaticxx.facebook.com%2Fx%2Fconnect%2Fxd_arbiter%2F%3Fversion%3D46%23cb%3Df20cebd4bb90bb2%26domain%3Dwww.drraul.com.br%26is_canvas%3Dfalse%26origin%3Dhttp%253A%252F%252Fwww.drraul.com.br%252Ff950ff42247536%26relation%3Dparent.parent&container_width=347&height=200&hide_cover=false&href=https%3A%2F%2Fwww.facebook.com%2Fclinicalameda%2F&locale=pt_BR&sdk=joey&show_facepile=true&small_header=false&tabs=timeline&width=500 HTTP/1.1
Host: www.facebook.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.drraul.com.br/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
vary: Accept-Encoding
content-encoding: br
report-to: {"max_age":259200,"endpoints":[{"url":"https:\/\/www.facebook.com\/ajax\/browser_error_reports\/?device_level=unknown"}]}
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-opener-policy: unsafe-none
pragma: no-cache
cache-control: private, no-cache, no-store, must-revalidate
expires: Sat, 01 Jan 2000 00:00:00 GMT
x-content-type-options: nosniff
x-xss-protection: 0
content-security-policy-report-only: default-src data: blob: 'self' https://*.fbsbx.com 'unsafe-inline' *.facebook.com 'unsafe-eval' *.fbcdn.net;script-src *.facebook.com *.fbcdn.net *.facebook.net *.google-analytics.com *.google.com 127.0.0.1:* 'unsafe-inline' 'unsafe-eval' blob: data: 'self' connect.facebook.net;style-src fonts.googleapis.com *.fbcdn.net data: *.facebook.com 'unsafe-inline';connect-src *.facebook.com facebook.com *.fbcdn.net *.facebook.net wss://*.facebook.com:* wss://*.whatsapp.com:* wss://*.fbcdn.net attachment.fbsbx.com ws://localhost:* blob: *.cdninstagram.com 'self' wss://gateway.facebook.com wss://edge-chat.facebook.com wss://snaptu-d.facebook.com wss://kaios-d.facebook.com/ v.whatsapp.net *.fbsbx.com *.fb.com;font-src data: *.gstatic.com *.facebook.com *.fbcdn.net *.fbsbx.com;img-src *.fbcdn.net *.facebook.com data: https://*.fbsbx.com *.tenor.co media.tenor.com facebook.com *.cdninstagram.com fbsbx.com fbcdn.net *.giphy.com connect.facebook.net *.carriersignal.info blob: android-webview-video-poster: googleads.g.doubleclick.net www.googleadservices.com *.whatsapp.net *.fb.com *.oculuscdn.com;media-src *.cdninstagram.com blob: *.fbcdn.net *.fbsbx.com www.facebook.com *.facebook.com https://*.giphy.com data:;frame-src *.doubleclick.net *.google.com *.facebook.com www.googleadservices.com *.fbsbx.com fbsbx.com data: www.instagram.com *.fbcdn.net https://paywithmybank.com;worker-src blob: *.facebook.com data:;report-uri https://www.facebook.com/csp/reporting/?minimize=0;
content-security-policy: default-src data: blob: 'self' https://*.fbsbx.com 'unsafe-inline' *.facebook.com 'unsafe-eval' *.fbcdn.net;script-src *.facebook.com *.fbcdn.net *.facebook.net *.google-analytics.com *.google.com 127.0.0.1:* 'unsafe-inline' 'unsafe-eval' blob: data: 'self' connect.facebook.net;style-src fonts.googleapis.com *.fbcdn.net data: *.facebook.com 'unsafe-inline';connect-src *.facebook.com facebook.com *.fbcdn.net *.facebook.net wss://*.facebook.com:* wss://*.whatsapp.com:* wss://*.fbcdn.net attachment.fbsbx.com ws://localhost:* blob: *.cdninstagram.com 'self' wss://gateway.facebook.com wss://edge-chat.facebook.com wss://snaptu-d.facebook.com wss://kaios-d.facebook.com/ v.whatsapp.net *.fbsbx.com *.fb.com;font-src data: *.gstatic.com *.facebook.com *.fbcdn.net *.fbsbx.com;img-src *.fbcdn.net *.facebook.com data: https://*.fbsbx.com *.tenor.co media.tenor.com facebook.com *.cdninstagram.com fbsbx.com fbcdn.net *.giphy.com connect.facebook.net *.carriersignal.info blob: android-webview-video-poster: googleads.g.doubleclick.net www.googleadservices.com *.whatsapp.net *.fb.com *.oculuscdn.com;media-src *.cdninstagram.com blob: *.fbcdn.net *.fbsbx.com www.facebook.com *.facebook.com https://*.giphy.com data:;frame-src *.doubleclick.net *.google.com *.facebook.com www.googleadservices.com *.fbsbx.com fbsbx.com data: www.instagram.com *.fbcdn.net https://paywithmybank.com;worker-src blob: *.facebook.com data:;block-all-mixed-content;upgrade-insecure-requests;
facebook-api-version: v8.0
strict-transport-security: max-age=15552000; preload
content-type: text/html; charset="utf-8"
x-fb-debug: UbgaTmlXd5FsD+p58yhEaQYLiXrrLGSZLwdFQzMUse89gB9f+7NDP48jfKuI4G8U3maqE2joO5n7KoCLU/FwfQ==
date: Sat, 17 Sep 2022 10:29:04 GMT
priority: u=3,i
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

www.google.com/ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j96&tid=UA-78561082-1&cid=1015795381.1663410525&jid=2024918824&_u=YADAAUAAAAAAAC~&z=1809984190

142.250.74.164

200 OK

42 B

URL HTTP/2
www.google.com/ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j96&tid=UA-78561082-1&cid=1015795381.1663410525&jid=2024918824&_u=YADAAUAAAAAAAC~&z=1809984190
IP
142.250.74.164:0
ASN
#15169 GOOGLE

File type
GIF image data, version 89a, 1 x 1\012- data
Size
42 B (42 bytes)
Hash
d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629

HTTP Headers

GET /ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j96&tid=UA-78561082-1&cid=1015795381.1663410525&jid=2024918824&_u=YADAAUAAAAAAAC~&z=1809984190 HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.drraul.com.br/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Sat, 17 Sep 2022 10:29:04 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

www.google.no/ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j96&tid=UA-78561082-1&cid=1015795381.1663410525&jid=2024918824&_u=YADAAUAAAAAAAC~&z=1809984190

142.250.74.3

200 OK

42 B

URL HTTP/2
www.google.no/ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j96&tid=UA-78561082-1&cid=1015795381.1663410525&jid=2024918824&_u=YADAAUAAAAAAAC~&z=1809984190
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
GIF image data, version 89a, 1 x 1\012- data
Size
42 B (42 bytes)
Hash
d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629

HTTP Headers

GET /ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j96&tid=UA-78561082-1&cid=1015795381.1663410525&jid=2024918824&_u=YADAAUAAAAAAAC~&z=1809984190 HTTP/1.1
Host: www.google.no
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.drraul.com.br/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Sat, 17 Sep 2022 10:29:04 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

static.xx.fbcdn.net/rsrc.php/v3iCHz4/yd/l/pt_BR/HCWiu2EtOt4.js?_nc_x=Ij3Wp8lg5Kz

31.13.72.12

200 OK

42 kB

URL HTTP/2
static.xx.fbcdn.net/rsrc.php/v3iCHz4/yd/l/pt_BR/HCWiu2EtOt4.js?_nc_x=Ij3Wp8lg5Kz
IP
31.13.72.12:0
ASN
#32934 FACEBOOK

File type
ASCII text, with very long lines (10866)
Size
42 kB (42515 bytes)
Hash
4380ebde2f1b569cf0bb3a2847fd0f49
66bc0daf809a0430698f4378c591e767bb01e8d2
437ef3c074253ea319f8fdb1bc2d4a9053318204b516e7f77da395ca8bc5a770

HTTP Headers

GET /rsrc.php/v3iCHz4/yd/l/pt_BR/HCWiu2EtOt4.js?_nc_x=Ij3Wp8lg5Kz HTTP/1.1
Host: static.xx.fbcdn.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.facebook.com
Connection: keep-alive
Referer: https://www.facebook.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
content-encoding: br
content-type: application/x-javascript; charset=utf-8
last-modified: Mon, 01 Jan 2001 08:00:00 GMT
expires: Sun, 17 Sep 2023 02:55:56 GMT
cache-control: public,max-age=31536000,immutable
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
timing-allow-origin: *
content-md5: Q4Dr3i8bVpzwuzooR/0PSQ==
x-fb-debug: /oymnJ0qEEKqK++QtBgRhzS3kXc0DVv/oh1shEXMUwYqTpVmmzEbHPXOFdu/DYRfjBGs++hpvmBXhoIvF+XisA==
priority: u=3,i
content-length: 42515
x-fb-trip-id: 1904183273
date: Sat, 17 Sep 2022 10:29:04 GMT
access-control-allow-origin: https://www.facebook.com
vary: Origin
alt-svc: h3=":443"; ma=86400,h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

static.xx.fbcdn.net/rsrc.php/v3/ye/r/XDHvEcqWdwa.js?_nc_x=Ij3Wp8lg5Kz

31.13.72.12

200 OK

5.3 kB

URL HTTP/2
static.xx.fbcdn.net/rsrc.php/v3/ye/r/XDHvEcqWdwa.js?_nc_x=Ij3Wp8lg5Kz
IP
31.13.72.12:0
ASN
#32934 FACEBOOK

File type
C source, ASCII text, with very long lines (10562)
Size
5.3 kB (5267 bytes)
Hash
ff2a5c78570dd3f57b351b1473818618
b6378367d0b395772cf66c56b50c13f485763423
920d6f47caa7ce805f20671eda2e0644046b173d912ca835ebb32dac6ba200b8

HTTP Headers

GET /rsrc.php/v3/ye/r/XDHvEcqWdwa.js?_nc_x=Ij3Wp8lg5Kz HTTP/1.1
Host: static.xx.fbcdn.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.facebook.com
Connection: keep-alive
Referer: https://www.facebook.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
content-encoding: br
content-type: application/x-javascript; charset=utf-8
last-modified: Mon, 01 Jan 2001 08:00:00 GMT
expires: Sat, 16 Sep 2023 23:57:32 GMT
cache-control: public,max-age=31536000,immutable
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
timing-allow-origin: *
content-md5: /ypceFcN0/V7NRsUc4GGGA==
x-fb-debug: WsIfWr2iECSuVYDDdCJF635w1GMivonw6bT0RVtTBuAJhcistrf/gf93egzo8CGh5VZ71myutgUJlcMQRHa/qg==
content-length: 5267
x-fb-trip-id: 1904183273
date: Sat, 17 Sep 2022 10:29:04 GMT
access-control-allow-origin: https://www.facebook.com
vary: Origin
alt-svc: h3=":443"; ma=86400,h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

static.xx.fbcdn.net/rsrc.php/v3/yu/r/tLeBibDCksM.js?_nc_x=Ij3Wp8lg5Kz

31.13.72.12

200 OK

5.6 kB

URL HTTP/2
static.xx.fbcdn.net/rsrc.php/v3/yu/r/tLeBibDCksM.js?_nc_x=Ij3Wp8lg5Kz
IP
31.13.72.12:0
ASN
#32934 FACEBOOK

File type
ASCII text, with very long lines (4556)
Size
5.6 kB (5589 bytes)
Hash
e9791087f4035c3f8d037646315b83af
5b7421cbf43e595c977ff0a3d779e6ce01be7b84
1bd85c51323cbed3a5b2ea32b5c587006d7f1fdfe79fa613358bab7409f3c174

HTTP Headers

GET /rsrc.php/v3/yu/r/tLeBibDCksM.js?_nc_x=Ij3Wp8lg5Kz HTTP/1.1
Host: static.xx.fbcdn.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.facebook.com
Connection: keep-alive
Referer: https://www.facebook.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
content-encoding: br
content-type: application/x-javascript; charset=utf-8
last-modified: Mon, 01 Jan 2001 08:00:00 GMT
expires: Sun, 17 Sep 2023 00:14:19 GMT
cache-control: public,max-age=31536000,immutable
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
timing-allow-origin: *
content-md5: 6XkQh/QDXD+NA3ZGMVuDrw==
x-fb-debug: MvXjV9/5gGdNaS36plzHbFplJPqAmNtDJi5ITRkToK3GqEB5kRsJrn1H9ye74hPy03uEvBncry3k+lCZFnlezQ==
priority: u=3,i
content-length: 5589
x-fb-trip-id: 1904183273
date: Sat, 17 Sep 2022 10:29:04 GMT
access-control-allow-origin: https://www.facebook.com
vary: Origin
alt-svc: h3=":443"; ma=86400,h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

static.zdassets.com/ekr/asset_composer.js

104.18.70.113

200 OK

12 kB

URL HTTP/2
static.zdassets.com/ekr/asset_composer.js
IP
104.18.70.113:0
ASN
#13335 CLOUDFLARENET

File type
ASCII text, with very long lines (23416), with no line terminators
Size
12 kB (11761 bytes)
Hash
a794c01045e2e43f4ad2d248e002a98d
52d95a080b124074860accf12faf2d67f13059f2
6e9726000b8ff4b5da4ae6ce6255c98c5dc69b2ff353bcdcc2d9afeae985c2d0

HTTP Headers

GET /ekr/asset_composer.js HTTP/1.1
Host: static.zdassets.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://www.drraul.com.br/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Sat, 17 Sep 2022 10:29:04 GMT
content-type: application/javascript
x-amz-id-2: dUZfshkH6s6HIQA7+U0tDhX+A5i1VSOF0AP1wrYwttudGl3FDx99SpKMnalxiwyFmxN4PZcqRnA=
x-amz-request-id: Y9E1NT7ZVNF7R3ZX
x-amz-replication-status: COMPLETED
last-modified: Thu, 28 Jul 2022 23:44:02 GMT
etag: W/"5cae6ce528dce0c327b2bcbaad459fdb"
x-amz-server-side-encryption: AES256
cache-control: public, max-age=3600, s-maxage=60
x-amz-version-id: 57KHzv0Z81imwMa0XxScJAmcLiHhq1Ku
cf-cache-status: HIT
age: 29
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=hZjSH4xVRwBpKJ8qkyyc%2FISjb4hpGzV%2B3b6cOJIvs23gTlHmz3vfKjhiJoq6RS%2F32%2BknsaaibgP7ORbyLBTQYGANfXAX3a5oTNIVojSXUllzdvH0e0Y3PG9Ilzl6xVwkTZcPRA4%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
strict-transport-security: max-age=0
server: cloudflare
cf-ray: 74c1289d8ba8b518-OSL
content-encoding: br
X-Firefox-Spdy: h2

static.xx.fbcdn.net/rsrc.php/v3/y3/r/vBeWiHjLom7.js?_nc_x=Ij3Wp8lg5Kz

31.13.72.12

200 OK

48 kB

URL HTTP/2
static.xx.fbcdn.net/rsrc.php/v3/y3/r/vBeWiHjLom7.js?_nc_x=Ij3Wp8lg5Kz
IP
31.13.72.12:0
ASN
#32934 FACEBOOK

File type
C source, ASCII text, with very long lines (5136)
Size
48 kB (48051 bytes)
Hash
0b0d83ddb46774a12eaa818d669b2e8f
078cabdf5c328d2a7caef352f88d684ab08cdad2
eea597b8160e332a65cd0dfa7d3091950fcd7ab1727e2cf42f907eb367f9b218

HTTP Headers

GET /rsrc.php/v3/y3/r/vBeWiHjLom7.js?_nc_x=Ij3Wp8lg5Kz HTTP/1.1
Host: static.xx.fbcdn.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.facebook.com
Connection: keep-alive
Referer: https://www.facebook.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
content-encoding: br
content-type: application/x-javascript; charset=utf-8
last-modified: Mon, 01 Jan 2001 08:00:00 GMT
expires: Sun, 17 Sep 2023 05:28:47 GMT
cache-control: public,max-age=31536000,immutable
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
timing-allow-origin: *
content-md5: Cw2D3bRndKEuqoGNZpsujw==
x-fb-debug: cawfZSAvVU7y3Ov7PVx4EAaBAYHl63RgTLm8jAnl6L7WCRdU0Jtn9T2UJrKmd3kDE2QPzaGg5ujzbdkoo89c3w==
content-length: 48051
x-fb-trip-id: 1904183273
date: Sat, 17 Sep 2022 10:29:04 GMT
access-control-allow-origin: https://www.facebook.com
vary: Origin
alt-svc: h3=":443"; ma=86400,h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

static.xx.fbcdn.net/rsrc.php/v3/yf/r/FLvtonlSna1.js?_nc_x=Ij3Wp8lg5Kz

31.13.72.12

200 OK

15 kB

URL HTTP/2
static.xx.fbcdn.net/rsrc.php/v3/yf/r/FLvtonlSna1.js?_nc_x=Ij3Wp8lg5Kz
IP
31.13.72.12:0
ASN
#32934 FACEBOOK

File type
ASCII text, with very long lines (56534)
Size
15 kB (15209 bytes)
Hash
e266a3ccc2395fbcb9ddc3e5cf3fe8a4
eb22fd1e27291f601742a4da697539e046b72de5
ea280deb9b1274ac87adf23d5b5f523079d776271b910ee945d0127a2dea806d

HTTP Headers

GET /rsrc.php/v3/yf/r/FLvtonlSna1.js?_nc_x=Ij3Wp8lg5Kz HTTP/1.1
Host: static.xx.fbcdn.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.facebook.com
Connection: keep-alive
Referer: https://www.facebook.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
content-encoding: br
content-type: application/x-javascript; charset=utf-8
last-modified: Mon, 01 Jan 2001 08:00:00 GMT
expires: Sun, 17 Sep 2023 01:51:38 GMT
cache-control: public,max-age=31536000,immutable
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
timing-allow-origin: *
content-md5: 4majzMI5X7y53cPlzz/opA==
x-fb-debug: BuXPjF9FGFiF1ldfh/dOIjnRA8eTZP4cPfRRpzSsz8TohTPpD7tbThcARYPFmehKQg8xW3ZbLYGiogbMxTAkzQ==
priority: u=3,i
content-length: 15209
x-fb-trip-id: 1904183273
date: Sat, 17 Sep 2022 10:29:04 GMT
access-control-allow-origin: https://www.facebook.com
vary: Origin
alt-svc: h3=":443"; ma=86400,h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
13fec77b59dae4bb9410a06357423a2f
086b7b536283f0a18742c3e43397762f78cdccf8
66b85a264ec591ece4c49e1f6a5da676436319845540139888e0b5e4906c5f16

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 17 Sep 2022 10:29:04 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
9730b7d7d5f0481f65712991a899f4b8
facb4df5e4a4ac98b9bdd126c7dbb531cf0fe1e7
15d7d8acbcd94d9ca8579cc31a9ec621e76408663bc4b047e5e127acb14334a6

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 17 Sep 2022 10:29:04 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

v2.zopim.com/lib/20220727.033422/__$$__stringtable_lang_pt_BR.js

104.16.104.139

200 OK

2.1 kB

URL HTTP/1.1
v2.zopim.com/lib/20220727.033422/__$$__stringtable_lang_pt_BR.js
IP
104.16.104.139:0
ASN
#13335 CLOUDFLARENET

File type
Unicode text, UTF-8 text, with very long lines (5516)
Size
2.1 kB (2102 bytes)
Hash
6c375eaae08e4a7a6615864b3490493a
aa0e68ec19f4bb3946fdbeb787172044a5117f43
4576620f46a9e8a55b09c4715106efa6f2be77461d1e9f811542f491f903880a

HTTP Headers

GET /lib/20220727.033422/__$$__stringtable_lang_pt_BR.js HTTP/1.1
Host: v2.zopim.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.drraul.com.br/

HTTP/1.1 200 OK
Date: Sat, 17 Sep 2022 10:29:04 GMT
Content-Type: application/javascript; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Wed, 27 Jul 2022 03:35:16 GMT
Vary: Accept-Encoding
ETag: W/"62e0b274-1652"
Expires: Tue, 14 Sep 2032 10:29:04 GMT
Cache-Control: public, max-age=315360000
Content-Encoding: gzip
CF-Cache-Status: HIT
Age: 201023
Server: cloudflare
CF-RAY: 74c128a1fbc2b505-OSL

ocsp.sca1b.amazontrust.com/

143.204.42.156

200 OK

471 B

URL HTTP/1.1
ocsp.sca1b.amazontrust.com/
IP
143.204.42.156:0
ASN
#16509 AMAZON-02

File type
data
Size
471 B (471 bytes)
Hash
9afca545e88ba6850c05d4f685c11f20
d41cc5c31d8d66589bf002e8b7cbad96856dadbe
5734ceee38160930ead3c1dbfece72d500615c995fffe28d1ad8f362f9ea6e50

HTTP Headers

POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Sat, 17 Sep 2022 10:29:05 GMT
Last-Modified: Sat, 17 Sep 2022 09:23:04 GMT
Server: ECS (nyb/1D2E)
X-Cache: Miss from cloudfront
Via: 1.1 9dd61138197a68f8d69f12574aab6930.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: z2hC6lDy5VAVlvsJLFRkNWSNRRl6A59uNkxjIeza4pTxAEi_t7u88w==
Age: 3961

widget-mediator.zopim.com/s/W/ws/-UdXDqcbtD7MOQNq/c/1663410527832

52.58.222.8

101 Switching Protocols

0 B

URL HTTP/1.1
widget-mediator.zopim.com/s/W/ws/-UdXDqcbtD7MOQNq/c/1663410527832
IP
52.58.222.8:0
ASN
#16509 AMAZON-02

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /s/W/ws/-UdXDqcbtD7MOQNq/c/1663410527832 HTTP/1.1
Host: widget-mediator.zopim.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: http://www.drraul.com.br
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: lXuSFQqqF/iOkOhv7peZJQ==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket

HTTP/1.1 101 Switching Protocols
Date: Sat, 17 Sep 2022 10:29:05 GMT
Connection: upgrade
Set-Cookie: AWSALB=S2cY/MuuR49FpgKxTrbr1wHMwAHwNL63oMtggCvNJi2uVDzJbioU+PSBPVO2h6kur45/tXooay1bOfCR10t5omlJS4pzF9+L4SFFrWXnqjA5Yl9jDsXr6bpHNkKU; Expires=Sat, 24 Sep 2022 10:29:05 GMT; Path=/
AWSALBCORS=S2cY/MuuR49FpgKxTrbr1wHMwAHwNL63oMtggCvNJi2uVDzJbioU+PSBPVO2h6kur45/tXooay1bOfCR10t5omlJS4pzF9+L4SFFrWXnqjA5Yl9jDsXr6bpHNkKU; Expires=Sat, 24 Sep 2022 10:29:05 GMT; Path=/; SameSite=None; Secure
Upgrade: websocket
Sec-WebSocket-Accept: 0aOwbsa1lN8OeiS3JSmSc1Z4D6I=
Sec-WebSocket-Version: 13
WebSocket-Server: uWebSockets

scontent-arn2-2.xx.fbcdn.net/v/t39.30808-6/305400682_5532384553450404_8305674644139155849_n.png?stp=dst-png_p235x350&_nc_cat=105&ccb=1-7&_nc_sid=8024bb&_nc_ohc=awP1Y5QEbIAAX_Q_aHq&_nc_ht=scontent-arn2-2.xx&oh=00_AT9b9PKrMpzVgGunXLU-Y7F_Lnv4sWrL-I2p6DztPj05Kg&oe=6329E948

157.240.194.27

200 OK

64 kB

URL HTTP/2
scontent-arn2-2.xx.fbcdn.net/v/t39.30808-6/305400682_5532384553450404_8305674644139155849_n.png?stp=dst-png_p235x350&_nc_cat=105&ccb=1-7&_nc_sid=8024bb&_nc_ohc=awP1Y5QEbIAAX_Q_aHq&_nc_ht=scontent-arn2-2.xx&oh=00_AT9b9PKrMpzVgGunXLU-Y7F_Lnv4sWrL-I2p6DztPj05Kg&oe=6329E948
IP
157.240.194.27:0
ASN
#32934 FACEBOOK

File type
PNG image data, 350 x 350, 8-bit/color RGB, non-interlaced\012- data
Size
64 kB (64423 bytes)
Hash
9a16961a1b5b7eadb15c333bd1edf8a2
d3778cf5224077830e5e1c551d56804ea77944d2
168b9e76dde485209947d6048215fe492181cd963b52f49c8cbc4cbdb3633468

HTTP Headers

GET /v/t39.30808-6/305400682_5532384553450404_8305674644139155849_n.png?stp=dst-png_p235x350&_nc_cat=105&ccb=1-7&_nc_sid=8024bb&_nc_ohc=awP1Y5QEbIAAX_Q_aHq&_nc_ht=scontent-arn2-2.xx&oh=00_AT9b9PKrMpzVgGunXLU-Y7F_Lnv4sWrL-I2p6DztPj05Kg&oe=6329E948 HTTP/1.1
Host: scontent-arn2-2.xx.fbcdn.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.facebook.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
x-storage-error-category: dfs:none;hs_p:200:HS_ESUCCESS
last-modified: Thu, 08 Sep 2022 14:46:00 GMT
x-haystack-needlechecksum: 1658244576
x-needle-checksum: 1996606455
content-type: image/png
content-digest: adler32=1738713443
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
cache-control: max-age=1209600, no-transform
content-length: 64423
x-fb-trip-id: 1904183273
date: Sat, 17 Sep 2022 10:29:05 GMT
alt-svc: h3=":443"; ma=86400,h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

scontent-arn2-2.xx.fbcdn.net/v/t45.1600-4/296800142_6296309691238_5982310474003769377_n.jpg?stp=cp0_dst-jpg_p480x480_q75_spS444&_nc_cat=108&ccb=1-7&_nc_sid=67cdda&_nc_ohc=oBHKTELsuPYAX-ulnIC&_nc_ht=scontent-arn2-2.xx&oh=00_AT_v5PKOn18Cl_R8Gk3pPeyvG4PXT7NixPXPqfQjnK-e1w&oe=6329A120

157.240.194.27

200 OK

40 kB

URL HTTP/2
scontent-arn2-2.xx.fbcdn.net/v/t45.1600-4/296800142_6296309691238_5982310474003769377_n.jpg?stp=cp0_dst-jpg_p480x480_q75_spS444&_nc_cat=108&ccb=1-7&_nc_sid=67cdda&_nc_ohc=oBHKTELsuPYAX-ulnIC&_nc_ht=scontent-arn2-2.xx&oh=00_AT_v5PKOn18Cl_R8Gk3pPeyvG4PXT7NixPXPqfQjnK-e1w&oe=6329A120
IP
157.240.194.27:0
ASN
#32934 FACEBOOK

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 480x480, components 3\012- data
Size
40 kB (39772 bytes)
Hash
533247a034f560351ddc6f8d8a7529cd
b16d31c1f49a2755a7486dc02856ee5c208b9900
08ee9f186d378634a3557984da1760ebe268b4eaedce60bf63629db7413f547d

HTTP Headers

GET /v/t45.1600-4/296800142_6296309691238_5982310474003769377_n.jpg?stp=cp0_dst-jpg_p480x480_q75_spS444&_nc_cat=108&ccb=1-7&_nc_sid=67cdda&_nc_ohc=oBHKTELsuPYAX-ulnIC&_nc_ht=scontent-arn2-2.xx&oh=00_AT_v5PKOn18Cl_R8Gk3pPeyvG4PXT7NixPXPqfQjnK-e1w&oe=6329A120 HTTP/1.1
Host: scontent-arn2-2.xx.fbcdn.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.facebook.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
x-storage-error-category: dfs:none;hs_p:200:HS_ESUCCESS
last-modified: Fri, 02 Sep 2022 18:29:58 GMT
accept-ranges: bytes
x-haystack-needlechecksum: 2258865248
x-needle-checksum: 215891458
content-type: image/jpeg
content-digest: adler32=3183504046
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
cache-control: max-age=1209600, no-transform
content-length: 39772
x-fb-trip-id: 1904183273
date: Sat, 17 Sep 2022 10:29:05 GMT
alt-svc: h3=":443"; ma=86400,h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

ekr.zdassets.com/compose/zopim_chat/4hGDIq3M8d0LeSlIIYm4sbDJzxwq0lQb

104.18.70.113

200 OK

0 B

URL HTTP/2
ekr.zdassets.com/compose/zopim_chat/4hGDIq3M8d0LeSlIIYm4sbDJzxwq0lQb
IP
104.18.70.113:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /compose/zopim_chat/4hGDIq3M8d0LeSlIIYm4sbDJzxwq0lQb HTTP/1.1
Host: ekr.zdassets.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://www.drraul.com.br
Connection: keep-alive
Referer: http://www.drraul.com.br/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Sat, 17 Sep 2022 10:29:04 GMT
content-type: application/json; charset=utf-8
status: 200 OK
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
access-control-expose-headers: 
access-control-max-age: 7200
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
x-download-options: noopen
x-permitted-cross-domain-policies: none
referrer-policy: strict-origin-when-cross-origin
cache-control: max-age=600, public, s-maxage=60, stale-while-revalidate=600, stale-if-error=3600
etag: W/"99bbde62d6c9bc58d7b90921cfac8baa"
x-request-id: 2cf8aa96e972b486eb25d503968a8c8e, 2cf8aa96e972b486eb25d503968a8c8e
x-runtime: 0.002427
vary: Origin, Accept-Encoding
x-zendesk-zorg: yes
cf-cache-status: REVALIDATED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=6Xl7KcsYIqbADg4LPbjS81p62iJiZkNvUfvnjkceL5ISG%2BN202fkbVsqtXEXIrK8W2di7q5FcLIMlQFmNw1k8Q%2FSPQ%2BMDtYit71UDsENN9KUdMyuq5AEuRIiQ3aGdc3ArkQ%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=0
server: cloudflare
cf-ray: 74c1289ded910b55-OSL
content-encoding: br
X-Firefox-Spdy: h2

v2.zopim.com/bin/v/widget_v2.334.js

104.16.104.139

200 OK

0 B

URL HTTP/2
v2.zopim.com/bin/v/widget_v2.334.js
IP
104.16.104.139:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /bin/v/widget_v2.334.js HTTP/1.1
Host: v2.zopim.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://www.drraul.com.br/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
date: Sat, 17 Sep 2022 10:29:04 GMT
content-type: application/javascript; charset=UTF-8
last-modified: Wed, 27 Jul 2022 03:35:19 GMT
vary: Accept-Encoding
etag: W/"62e0b277-10301f"
expires: Tue, 14 Sep 2032 10:29:04 GMT
cache-control: public, max-age=315360000
content-encoding: gzip
cf-cache-status: HIT
age: 201098
server: cloudflare
cf-ray: 74c128a03d50b52d-OSL
X-Firefox-Spdy: h2

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

OpenPhish

PhishTank

Fortinet's Web Filter

mnemonic secure dns

Quad9 DNS

JavaScript (74)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations