Report - museuolaria.pt/programassea/portugues-programas-para-grupos?lang=pt

Report Overview

Submitted URL
museuolaria.pt/programassea/portugues-programas-para-grupos?lang=pt
IP
89.115.244.164
ASN
#12353 Vodafone Portugal - Communicacoes Pessoais S.A.
Submitted
2024-04-24 14:10:14
Access
public
Website Title
Museu de Olaria | Município de Barcelos
Final URL
www.museuolaria.pt/programassea/portugues-programas-para-grupos/
Tags
urlquery detections
No alerts detected

Detections

urlquery
0
Network Intrusion Detection
0
Threat Detection Systems
62

Domain Summary

Domain / FQDN	Rank	Registered	First Seen	Last Seen	Sent	Received	IP
fonts.gstatic.com	unknown	2008-02-11	2014-09-09	2024-04-23	2.6 kB	105 kB	216.58.207.227
www.gstatic.com	unknown	2008-02-11	2016-07-26	2024-04-23	2.4 kB	649 kB	142.250.74.35
www.google.com	7	1997-09-15	2015-05-10	2024-03-23	4.0 kB	87 kB	142.250.74.100
museuolaria.pt	unknown	unknown	No data	No data	1.5 kB	1.4 kB	89.115.244.164
www.museuolaria.pt	unknown	unknown	No data	No data	17 kB	267 kB	89.115.244.164
code.jquery.com	634	2005-12-10	2012-05-21	2024-04-23	852 B	37 kB	151.101.130.137
fonts.googleapis.com	8877	2005-01-25	2013-06-10	2024-04-24	1.4 kB	17 kB	142.250.74.106

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

Public InfoSec YARA rules

No alerts detected

OpenPhish

No alerts detected

PhishTank

No alerts detected

mnemonic secure dns

No alerts detected

Quad9 DNS

Scan Date	Severity	Indicator	Alert
2024-04-24	medium	museuolaria.pt	Sinkholed
2024-04-24	medium	museuolaria.pt	Sinkholed
2024-04-24	medium	museuolaria.pt	Sinkholed
2024-04-24	medium	museuolaria.pt	Sinkholed
2024-04-24	medium	museuolaria.pt	Sinkholed
2024-04-24	medium	museuolaria.pt	Sinkholed
2024-04-24	medium	museuolaria.pt	Sinkholed
2024-04-24	medium	museuolaria.pt	Sinkholed
2024-04-24	medium	museuolaria.pt	Sinkholed
2024-04-24	medium	museuolaria.pt	Sinkholed
2024-04-24	medium	museuolaria.pt	Sinkholed
2024-04-24	medium	museuolaria.pt	Sinkholed
2024-04-24	medium	museuolaria.pt	Sinkholed
2024-04-24	medium	museuolaria.pt	Sinkholed
2024-04-24	medium	museuolaria.pt	Sinkholed
2024-04-24	medium	museuolaria.pt	Sinkholed
2024-04-24	medium	museuolaria.pt	Sinkholed
2024-04-24	medium	museuolaria.pt	Sinkholed
2024-04-24	medium	museuolaria.pt	Sinkholed
2024-04-24	medium	museuolaria.pt	Sinkholed
2024-04-24	medium	museuolaria.pt	Sinkholed
2024-04-24	medium	museuolaria.pt	Sinkholed
2024-04-24	medium	museuolaria.pt	Sinkholed
2024-04-24	medium	museuolaria.pt	Sinkholed
2024-04-24	medium	museuolaria.pt	Sinkholed
2024-04-24	medium	museuolaria.pt	Sinkholed
2024-04-24	medium	museuolaria.pt	Sinkholed
2024-04-24	medium	museuolaria.pt	Sinkholed
2024-04-24	medium	museuolaria.pt	Sinkholed
2024-04-24	medium	museuolaria.pt	Sinkholed
2024-04-24	medium	museuolaria.pt	Sinkholed

ThreatFox

No alerts detected

JavaScript (26)

	URL	Size	First Seen	Last Seen
	www.google.com/recaptcha/api2/anchor?ar=1&k=6LfMZIUUAAAAAB8Usnr4c71cZ3ha7JB9msvjHI8f&co=aHR0cHM6Ly93d3cubXVzZXVvbGFyaWEucHQ6NDQz&hl=en&v=QoukH5jSO3sKFzVEA7Vc8VgC&size=invisible&cb=qqwwxdxs8z2p	69 B	2023-03-07	2024-05-06
Pretty URL www.google.com/recaptcha/api2/anchor?ar=1&k=6LfMZIUUAAAAAB8Usnr4c71cZ3ha7JB9msvjHI8f&co=aHR0cHM6Ly93d3cubXVzZXVvbGFyaWEucHQ6NDQz&hl=en&v=QoukH5jSO3sKFzVEA7Vc8VgC&size=invisible&cb=qqwwxdxs8z2p IP 142.250.74.100 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-07 01:02:05 Last Seen2024-05-06 01:10:30 Times Seen100831 Hash 45ecf7458f42da80ac248ad42d610372 a5b3edf8328769bc754e6e616a957ceed4fdadd7 75867e75b209895995014b43c3d711476e3437481e5fbec91a4da674302558bf Loading...

	www.museuolaria.pt/programassea/portugues-programas-para-grupos/	8.0 kB	2024-04-24	2024-04-24
Pretty URL www.museuolaria.pt/programassea/portugues-programas-para-grupos/ IP 89.115.244.164 ASN #12353 Vodafone Portugal - Communicacoes Pessoais S.A. Introduced by scriptElement Embedded in HTML true Observations First Seen2024-04-24 16:10:21 Last Seen2024-04-24 16:10:21 Times Seen1 Hash ebb5dd77cf7cf07c569091b9f4e40d3b d3ed632387f61e31049c071ed5ae4b3761b92810 8479c0710797f3169b1a07804b1c5d155c6463940491b81388f14a1cba4c6a5f Loading...

	www.museuolaria.pt/programassea/portugues-programas-para-grupos/	513 B	2024-04-24	2024-04-24
Pretty URL www.museuolaria.pt/programassea/portugues-programas-para-grupos/ IP 89.115.244.164 ASN #12353 Vodafone Portugal - Communicacoes Pessoais S.A. Introduced by scriptElement Embedded in HTML true Observations First Seen2024-04-24 16:10:21 Last Seen2024-04-24 16:10:21 Times Seen1 Hash dd9aaf92cbc9b6b4bb6a9d79f6a01339 5c05f3e9b7362d923bf482b4e891148a26c60bfe f48a7636eb36ad2e3e4470778041ecf630af5ea85f6d0052aa16f73244f0a3fa Loading...

	www.museuolaria.pt/wp-content/plugins/contact-form-7/modules/recaptcha/index.js?ver=5.8.6	5.6 kB	2024-04-24	2024-04-24
Pretty URL www.museuolaria.pt/wp-content/plugins/contact-form-7/modules/recaptcha/index.js?ver=5.8.6 IP 89.115.244.164 ASN #12353 Vodafone Portugal - Communicacoes Pessoais S.A. Introduced by scriptElement Embedded in HTML false Observations First Seen2024-04-24 16:10:21 Last Seen2024-04-24 16:10:22 Times Seen2 Hash 663ca9467fe3d7d808bc64e08a1a676d 6d9d8eaa167732a4e5a2ee4e5db004ae8105b334 da210a85fb19aff78d6c6d4f0d9700daa1e889a811dc3b714312f0cab27b2fb5 Loading...

	www.gstatic.com/recaptcha/releases/QoukH5jSO3sKFzVEA7Vc8VgC/recaptcha__en.js	518 kB	2024-04-16	2024-04-24
Pretty URL www.gstatic.com/recaptcha/releases/QoukH5jSO3sKFzVEA7Vc8VgC/recaptcha__en.js IP 142.250.74.35 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2024-04-16 08:39:13 Last Seen2024-04-24 17:56:53 Times Seen2481 Hash 8326c23d6b3eed35bc3e62f3294587fd edda17e74e53e85073e5eac9cb6be2163dbfa23c 57f03d3ba66117edc152646341120dd3a1d7d71b9a98a3723af5a8ae61bcb3ab Loading...

	www.google.com/js/bg/Y9LiaqaJM7rIBAUMTg8Ck_H5fpJ61Keayeag6LMQ-3c.js	18 kB	2024-04-18	2024-04-27
Pretty URL www.google.com/js/bg/Y9LiaqaJM7rIBAUMTg8Ck_H5fpJ61Keayeag6LMQ-3c.js IP 142.250.74.100 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2024-04-18 11:26:44 Last Seen2024-04-27 08:11:03 Times Seen846 Hash a881e4c268e13ad20405ae80fca4c36b dee477906e2c92b4c7747029a2409069b9b676ad 63d2e26aa68933bac804050c4e0f0293f1f97e927ad4a79ac9e6a0e8b310fb77 Loading...

	www.museuolaria.pt/wp-includes/js/dist/vendor/wp-polyfill-inert.min.js?ver=3.1.2	13 kB	2024-02-16	2024-04-24
Pretty URL www.museuolaria.pt/wp-includes/js/dist/vendor/wp-polyfill-inert.min.js?ver=3.1.2 IP 89.115.244.164 ASN #12353 Vodafone Portugal - Communicacoes Pessoais S.A. Introduced by scriptElement Embedded in HTML false Observations First Seen2024-02-16 00:31:08 Last Seen2024-04-24 16:10:22 Times Seen16 Hash 45cd0595304d53ac92e9b786eda0f4e5 350bba1bb9aa5b3cab4b0dcc3286e0bcf34b362e 9ffdb975cd0567f1c6a5933b4d43d180b7c4b90dcef5e0c7872abf57e104d1c0 Loading...

	www.museuolaria.pt/wp-content/themes/museuolaria/js/jquery.bxslider.min.js	19 kB	2024-04-24	2024-04-24
Pretty URL www.museuolaria.pt/wp-content/themes/museuolaria/js/jquery.bxslider.min.js IP 89.115.244.164 ASN #12353 Vodafone Portugal - Communicacoes Pessoais S.A. Introduced by scriptElement Embedded in HTML false Observations First Seen2024-04-24 16:10:22 Last Seen2024-04-24 16:10:23 Times Seen2 Hash 80d1216b85da3623b7de66b8a96e337e f501a02873657c075512b0d89cbf42319f5350fc fc61c7463d54801dfcddc7506af6fd2c899819364b8a3482b4ef61b9c2440def Loading...

	www.museuolaria.pt/wp-content/plugins/contact-form-7/includes/js/index.js?ver=5.8.6	18 kB	2024-02-21	2024-04-24
Pretty URL www.museuolaria.pt/wp-content/plugins/contact-form-7/includes/js/index.js?ver=5.8.6 IP 89.115.244.164 ASN #12353 Vodafone Portugal - Communicacoes Pessoais S.A. Introduced by scriptElement Embedded in HTML false Observations First Seen2024-02-21 02:53:12 Last Seen2024-04-24 16:10:22 Times Seen8 Hash 943729001ff5eddc27d1cfa37953573a 86dab5071a55aeba65da9241d56656719dbb1f3c 8608d8d3e5e5c2b66e872496c495fade45e7f106ab39b4cb0bc6821a0bb2c405 Loading...

	www.google.com/recaptcha/api.js?render=6LfMZIUUAAAAAB8Usnr4c71cZ3ha7JB9msvjHI8f&ver=3.0	884 B	2024-04-24	2024-04-24
Pretty URL www.google.com/recaptcha/api.js?render=6LfMZIUUAAAAAB8Usnr4c71cZ3ha7JB9msvjHI8f&ver=3.0 IP 142.250.74.100 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2024-04-24 16:10:22 Last Seen2024-04-24 16:10:23 Times Seen2 Hash 489157ffe45aace75120f1e72ae2c65b c27bba0c84a68ab148ba7d35089144d6ed5f06c8 55df9d40bc1cfd10b4e239d24eaeebda58d1e32a66574c08d09606157bc5dd61 Loading...

	www.museuolaria.pt/wp-includes/js/dist/vendor/wp-polyfill.min.js?ver=3.15.0	120 kB	2024-02-16	2024-04-24
Pretty URL www.museuolaria.pt/wp-includes/js/dist/vendor/wp-polyfill.min.js?ver=3.15.0 IP 89.115.244.164 ASN #12353 Vodafone Portugal - Communicacoes Pessoais S.A. Introduced by scriptElement Embedded in HTML false Observations First Seen2024-02-16 00:31:09 Last Seen2024-04-24 16:10:22 Times Seen11 Hash 69c11e0978d86890f3c4de89ab614650 11e45004f4d03ff8bbea3e8fb2dcabb50ff28982 d3d88f14cc01130e7bcab6f93c62c9e143c0ff131b44cf5f66456b32cf4f0d4a Loading...

	www.museuolaria.pt/programassea/portugues-programas-para-grupos/	43 B	2024-04-24	2024-04-24
Pretty URL www.museuolaria.pt/programassea/portugues-programas-para-grupos/ IP 89.115.244.164 ASN #12353 Vodafone Portugal - Communicacoes Pessoais S.A. Introduced by scriptElement Embedded in HTML true Observations First Seen2024-04-24 16:10:22 Last Seen2024-04-24 16:10:22 Times Seen1 Hash b223f81d603943f68c5039b452935d3c 812bdc8e36841f87e5fd41ba51caf0421b22f074 6c30f31c5f1f91272958e443b91b7cd5d7922b731e5974f0b1c77c287798b43e Loading...

	www.museuolaria.pt/programassea/portugues-programas-para-grupos/	106 B	2024-04-24	2024-04-24
Pretty URL www.museuolaria.pt/programassea/portugues-programas-para-grupos/ IP 89.115.244.164 ASN #12353 Vodafone Portugal - Communicacoes Pessoais S.A. Introduced by scriptElement Embedded in HTML true Observations First Seen2024-04-24 16:10:22 Last Seen2024-04-24 16:10:22 Times Seen1 Hash 45aa9fbb1ed79dcb1f12ed839b49dba2 2cefecc66cb227141672b9f1e24e00b16d7da8bc 7d574761e2b9ee4d55b2d6db64308fae7b2956fd94843abc08956fe5cf49848d Loading...

	code.jquery.com/jquery-migrate-3.4.1.min.js?ver=3.4.1	14 kB	2023-05-09	2024-05-06
Pretty URL code.jquery.com/jquery-migrate-3.4.1.min.js?ver=3.4.1 IP 151.101.130.137 ASN #54113 FASTLY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-05-09 19:21:05 Last Seen2024-05-06 00:46:04 Times Seen82668 Hash 9ffeb32e2d9efbf8f70caabded242267 3ad0c10e501ac2a9bfa18f9cd7e700219b378738 5274f11e6fb32ae0cf2dfb9f8043272865c397a7c4223b4cfa7d50ea52fbde89 Loading...

	www.museuolaria.pt/wp-content/themes/twentyfourteen/js/functions.js?ver=20210122	11 kB	2024-04-24	2024-04-24
Pretty URL www.museuolaria.pt/wp-content/themes/twentyfourteen/js/functions.js?ver=20210122 IP 89.115.244.164 ASN #12353 Vodafone Portugal - Communicacoes Pessoais S.A. Introduced by scriptElement Embedded in HTML false Observations First Seen2024-04-24 16:10:22 Last Seen2024-04-24 16:10:22 Times Seen2 Hash 6c1b6352771b9fb506e0905b6afadfb4 1c5aa47152a98493e360f86837b0b36fd8a8f404 6177955d5a853139cb2468becd17cb3bf19d6454d788e1ca423fe2e38af6ef49 Loading...

	www.museuolaria.pt/wp-includes/js/dist/vendor/regenerator-runtime.min.js?ver=0.14.0	11 kB	2024-02-16	2024-04-24
Pretty URL www.museuolaria.pt/wp-includes/js/dist/vendor/regenerator-runtime.min.js?ver=0.14.0 IP 89.115.244.164 ASN #12353 Vodafone Portugal - Communicacoes Pessoais S.A. Introduced by scriptElement Embedded in HTML false Observations First Seen2024-02-16 00:31:09 Last Seen2024-04-24 16:10:22 Times Seen16 Hash c8c8882a86482731c23ff50ccbd142e1 41ce24e005e44593c29f8959356ba736b8ba7af4 bfedcd560cb0c0e14fe821d2d6708f80adab718ac6ace9b2260b6fac4f84642f Loading...

	www.google.com/recaptcha/api2/anchor?ar=1&k=6LfMZIUUAAAAAB8Usnr4c71cZ3ha7JB9msvjHI8f&co=aHR0cHM6Ly93d3cubXVzZXVvbGFyaWEucHQ6NDQz&hl=en&v=QoukH5jSO3sKFzVEA7Vc8VgC&size=invisible&cb=qqwwxdxs8z2p	36 kB	2024-04-24	2024-04-24
Pretty URL www.google.com/recaptcha/api2/anchor?ar=1&k=6LfMZIUUAAAAAB8Usnr4c71cZ3ha7JB9msvjHI8f&co=aHR0cHM6Ly93d3cubXVzZXVvbGFyaWEucHQ6NDQz&hl=en&v=QoukH5jSO3sKFzVEA7Vc8VgC&size=invisible&cb=qqwwxdxs8z2p IP 142.250.74.100 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML true Observations First Seen2024-04-24 16:10:22 Last Seen2024-04-24 16:10:22 Times Seen1 Hash b1bfb1918871575ab6ef9aab361c8941 7535f7cb1c3c8eb05df35a874e4d00c00a6bc98c 22d65787e177b17d91589ca960e3ccf9dabd918c4f553a6f601745c1d49859b3 Loading...

	www.museuolaria.pt/programassea/portugues-programas-para-grupos/	141 B	2024-04-24	2024-04-24
Pretty URL www.museuolaria.pt/programassea/portugues-programas-para-grupos/ IP 89.115.244.164 ASN #12353 Vodafone Portugal - Communicacoes Pessoais S.A. Introduced by scriptElement Embedded in HTML true Observations First Seen2024-04-24 16:10:22 Last Seen2024-04-24 16:10:22 Times Seen1 Hash 862644ed630ab81dea2c33c2397f337f 353ce790b4b4f3ca591c4cf0e352ca82e5808b57 66f137f3525e9fd71c0f014b6701515b306b9cdf0a5c55140ceec1e09867cd27 Loading...

	code.jquery.com/jquery-3.6.4.min.js?ver=3.6.4	90 kB	2023-03-26	2024-05-05
Pretty URL code.jquery.com/jquery-3.6.4.min.js?ver=3.6.4 IP 151.101.130.137 ASN #54113 FASTLY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-26 04:59:07 Last Seen2024-05-05 19:28:53 Times Seen8472 Hash 641dd14370106e992d352166f5a07e99 eda46747c71d38a880bee44f9a439c3858bb8f99 a0fe8723dcf55da64d06b25446d0a8513e52527c45afcb37073465f9c6f352af Loading...

	www.museuolaria.pt/wp-content/plugins/contact-form-7/includes/swv/js/index.js?ver=5.8.6	11 kB	2024-04-24	2024-04-24
Pretty URL www.museuolaria.pt/wp-content/plugins/contact-form-7/includes/swv/js/index.js?ver=5.8.6 IP 89.115.244.164 ASN #12353 Vodafone Portugal - Communicacoes Pessoais S.A. Introduced by scriptElement Embedded in HTML false Observations First Seen2024-04-24 16:10:22 Last Seen2024-04-24 16:10:22 Times Seen2 Hash 3dba2882683bb328ee394c19ad462e3c 0e49518faa1725e8b9f28e90c2c2c2ae5327e84a a07a64f51b89c5c77bea1a90b577b93f92282b3022bc312ac5b7a04ae014323f Loading...

	www.museuolaria.pt/wp-content/plugins/wordpress-bootstrap-css/resources/bootstrap-3.4.1/js/bootstrap.js?ver=3.4.1-0	78 kB	2023-03-10	2024-05-03
Pretty URL www.museuolaria.pt/wp-content/plugins/wordpress-bootstrap-css/resources/bootstrap-3.4.1/js/bootstrap.js?ver=3.4.1-0 IP 89.115.244.164 ASN #12353 Vodafone Portugal - Communicacoes Pessoais S.A. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-10 13:10:46 Last Seen2024-05-03 12:31:08 Times Seen59 Hash 342407180c3fd1b27dbd5f0e1c099621 74cecc6c2b438990f7b1d63832526365ffe14227 4f9ef836f25359cf8f6a7f210269d75dcd1e6458aa291a7bc50deccf942214e9 Loading...

	www.museuolaria.pt/wp-content/themes/museuolaria/js/scrollReveal.min.js	8.5 kB	2024-04-24	2024-04-24
Pretty URL www.museuolaria.pt/wp-content/themes/museuolaria/js/scrollReveal.min.js IP 89.115.244.164 ASN #12353 Vodafone Portugal - Communicacoes Pessoais S.A. Introduced by scriptElement Embedded in HTML false Observations First Seen2024-04-24 16:10:22 Last Seen2024-04-24 16:10:22 Times Seen2 Hash b97e86809a9b09ec884abb7ce3fa741c 758b3b7fbb46e30bad27481f0376860cf5c2ccf2 362d6f6380bb0fd723086f6e896cf81493501954077613144b381d91c0e9d6ff Loading...

		Size	First Seen	Last Seen
	#1 Eval - dd95094459ff8bdae8e11f444811dcf7	22 B	2024-04-18	2024-04-27
Pretty Observations First Seen2024-04-18 11:26:46 Last Seen2024-04-27 08:11:02 Times Seen406 Hash dd95094459ff8bdae8e11f444811dcf7 a49187eb695d35e32a5833e3b59e83037340c33d a22b47367f53b722417f75024b83a0555347d438ae490a9ed572ed9e9594d706 Loading...

	#2 Eval - 87ff6ea6ded216e0db7b5b2787a01101	22 B	2024-04-18	2024-04-27
Pretty Observations First Seen2024-04-18 11:26:46 Last Seen2024-04-27 08:11:02 Times Seen409 Hash 87ff6ea6ded216e0db7b5b2787a01101 b70a80d04d55507e62966a4db28171961d1e3fbd 27158427ea97ea33dddc4d03c32ba70abe0434692bbf7e8b8061c47dc519977c Loading...

	#3 Eval - 235b1ea563062d940b64743d6356632c	24 kB	2024-04-24	2024-04-24
Pretty Observations First Seen2024-04-24 16:10:22 Last Seen2024-04-24 16:10:22 Times Seen1 Hash 235b1ea563062d940b64743d6356632c 9961624af296bb5f62fdeed178dff47695221111 cd59c433ae6d57a0009a7f75c627618de475e60d5e81ff65a351f4b49bc0d50c Loading...

	#4 Eval - 690d5fccc0df707e9592226c90cd2e43	64 B	2024-04-18	2024-04-27
Pretty Observations First Seen2024-04-18 11:26:46 Last Seen2024-04-27 08:11:02 Times Seen408 Hash 690d5fccc0df707e9592226c90cd2e43 28cf77438278df313abfdead9e96fedb717326b2 e8a296e051765b406dda56024ee0ea00de306f3a5a41d372214ae18eedff2dce Loading...

HTTP Transactions (52)

URL IP Response Size

museuolaria.pt/programassea/portugues-programas-para-grupos?lang=pt

89.115.244.164

301 Moved Permanently

287 B

URL User Request GET HTTP/1.1
museuolaria.pt/programassea/portugues-programas-para-grupos?lang=pt
IP
89.115.244.164:443
ASN
#12353 Vodafone Portugal - Communicacoes Pessoais S.A.

Certificate
IssuerLet's Encrypt
Subjectmuseuolaria.pt
Fingerprint8D:89:69:14:74:37:43:7B:59:C3:DC:DB:54:BC:68:FE:53:2A:6D:3A
ValidityThu, 11 Jan 2024 13:20:58 GMT - Wed, 10 Apr 2024 13:20:57 GMT

File type
HTML document, ASCII text
Size
287 B (287 bytes)
Hash
5d6ab92460134b7337e35fa179b07951
be21fe6b7c443fcda185d0c3899aa458687d3457
49724ecf87dafda51eb8ffff226194b944b74e717829708cc00a8bd78ff5f8fa

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /programassea/portugues-programas-para-grupos?lang=pt HTTP/1.1
Host: museuolaria.pt
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 301 Moved Permanently
Date: Wed, 24 Apr 2024 14:09:47 GMT
Server: Apache
Location: https://museuolaria.pt:443/programassea/portugues-programas-para-grupos?lang=pt
Content-Length: 287
Keep-Alive: timeout=15, max=100
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1

museuolaria.pt/programassea/portugues-programas-para-grupos?lang=pt

89.115.244.164

301 Moved Permanently

1 B

URL User Request GET HTTP/1.1
museuolaria.pt/programassea/portugues-programas-para-grupos?lang=pt
IP
89.115.244.164:443
ASN
#12353 Vodafone Portugal - Communicacoes Pessoais S.A.

Certificate
IssuerLet's Encrypt
Subjectmuseuolaria.pt
Fingerprint8D:89:69:14:74:37:43:7B:59:C3:DC:DB:54:BC:68:FE:53:2A:6D:3A
ValidityThu, 11 Jan 2024 13:20:58 GMT - Wed, 10 Apr 2024 13:20:57 GMT

File type
very short file (no magic)
Size
1 B (1 bytes)
Hash
68b329da9893e34099c7d8ad5cb9c940
adc83b19e793491b1c6ea0fd8b46cd9f32e592fc
01ba4719c80b6fe911b091a7c05124b64eeece964e09c058ef8f9805daca546b

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /programassea/portugues-programas-para-grupos?lang=pt HTTP/1.1
Host: museuolaria.pt
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 301 Moved Permanently
Date: Wed, 24 Apr 2024 14:09:50 GMT
Server: Apache
X-Powered-By: PHP/7.4.33
X-Redirect-By: WordPress
Location: https://www.museuolaria.pt/programassea/portugues-programas-para-grupos/
Content-Type: text/html; charset=utf-8
Set-Cookie: qtrans_cookie_test=qTranslate%20Cookie%20Test; path=/; domain=museuolaria.pt
Content-Length: 1
Keep-Alive: timeout=15, max=100
Connection: Keep-Alive

museuolaria.pt/programassea/portugues-programas-para-grupos?lang=pt

89.115.244.164

301 Moved Permanently

1 B

URL User Request GET HTTP/1.1
museuolaria.pt/programassea/portugues-programas-para-grupos?lang=pt
IP
89.115.244.164:443
ASN
#12353 Vodafone Portugal - Communicacoes Pessoais S.A.

Certificate
IssuerLet's Encrypt
Subjectmuseuolaria.pt
Fingerprint8D:89:69:14:74:37:43:7B:59:C3:DC:DB:54:BC:68:FE:53:2A:6D:3A
ValidityThu, 11 Jan 2024 13:20:58 GMT - Wed, 10 Apr 2024 13:20:57 GMT

File type
very short file (no magic)
Size
1 B (1 bytes)
Hash
68b329da9893e34099c7d8ad5cb9c940
adc83b19e793491b1c6ea0fd8b46cd9f32e592fc
01ba4719c80b6fe911b091a7c05124b64eeece964e09c058ef8f9805daca546b

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /programassea/portugues-programas-para-grupos?lang=pt HTTP/1.1
Host: museuolaria.pt
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Cookie: qtrans_cookie_test=qTranslate%20Cookie%20Test
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 301 Moved Permanently
Date: Wed, 24 Apr 2024 14:09:54 GMT
Server: Apache
X-Powered-By: PHP/7.4.33
X-Redirect-By: WordPress
Location: https://www.museuolaria.pt/programassea/portugues-programas-para-grupos/
Content-Type: text/html; charset=utf-8
Set-Cookie: qtrans_cookie_test=qTranslate%20Cookie%20Test; path=/; domain=museuolaria.pt
Content-Length: 1
Keep-Alive: timeout=15, max=99
Connection: Keep-Alive

www.museuolaria.pt/programassea/portugues-programas-para-grupos/

89.115.244.164

200 OK

11 kB

URL User Request GET HTTP/1.1
www.museuolaria.pt/programassea/portugues-programas-para-grupos/
IP
89.115.244.164:443
ASN
#12353 Vodafone Portugal - Communicacoes Pessoais S.A.

Certificate
IssuerLet's Encrypt
Subjectmuseuolaria.pt
Fingerprint8D:89:69:14:74:37:43:7B:59:C3:DC:DB:54:BC:68:FE:53:2A:6D:3A
ValidityThu, 11 Jan 2024 13:20:58 GMT - Wed, 10 Apr 2024 13:20:57 GMT

File type
HTML document, Unicode text, UTF-8 text, with very long lines (9615)
Size
11 kB (11018 bytes)
Hash
7d0ba25547e73257ba586461571e768d
3edf36e5e8c5f266c9eb27a8dc1b3fb93a012239
6c122299b81c96948a6863b9b41151a61f580f47a555d45e16a500b93bfea589

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /programassea/portugues-programas-para-grupos/ HTTP/1.1
Host: www.museuolaria.pt
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Cookie: qtrans_cookie_test=qTranslate%20Cookie%20Test
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Wed, 24 Apr 2024 14:09:56 GMT
Server: Apache
X-Powered-By: PHP/7.4.33
Link: <https://www.museuolaria.pt/wp-json/>; rel="https://api.w.org/"
Vary: Accept-Encoding
Content-Type: text/html;charset=UTF-8
Set-Cookie: qtrans_cookie_test=qTranslate%20Cookie%20Test; path=/; domain=www.museuolaria.pt
Content-Encoding: gzip
Keep-Alive: timeout=15, max=100
Connection: Keep-Alive
Transfer-Encoding: chunked

code.jquery.com/jquery-migrate-3.4.1.min.js?ver=3.4.1

151.101.130.137

200 OK

4.9 kB

URL GET HTTP/2
code.jquery.com/jquery-migrate-3.4.1.min.js?ver=3.4.1
IP
151.101.130.137:443
ASN
#54113 FASTLY

Requested by
https://www.museuolaria.pt/programassea/portugues-programas-para-grupos/
Certificate
IssuerSectigo Limited
Subject*.jquery.com
FingerprintD2:19:0A:AD:CE:BB:9C:61:17:5D:29:4B:A2:54:E8:C6:91:B8:F9:8D
ValidityTue, 11 Jul 2023 00:00:00 GMT - Sun, 14 Jul 2024 23:59:59 GMT

File type
JavaScript source, ASCII text, with very long lines (13479)
Size
4.9 kB (4869 bytes)
Hash
9ffeb32e2d9efbf8f70caabded242267
3ad0c10e501ac2a9bfa18f9cd7e700219b378738
5274f11e6fb32ae0cf2dfb9f8043272865c397a7c4223b4cfa7d50ea52fbde89

HTTP Headers

GET /jquery-migrate-3.4.1.min.js?ver=3.4.1 HTTP/1.1
Host: code.jquery.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.museuolaria.pt/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx
content-type: application/javascript; charset=utf-8
last-modified: Fri, 18 Oct 1991 12:00:00 GMT
etag: W/"28feccc0-3509"
cache-control: public, max-age=31536000, stale-while-revalidate=604800
access-control-allow-origin: *
content-encoding: gzip
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Wed, 24 Apr 2024 14:09:56 GMT
age: 14531713
x-served-by: cache-lga21959-LGA, cache-hel1410022-HEL
x-cache: HIT, HIT
x-cache-hits: 9696, 168
x-timer: S1713967797.984145,VS0,VE0
vary: Accept-Encoding
content-length: 4869
X-Firefox-Spdy: h2

www.museuolaria.pt/wp-content/plugins/wordpress-bootstrap-css/resources/bootstrap-3.4.1/css/bootstrap.css

89.115.244.164

200 OK

22 kB

URL GET HTTP/1.1
www.museuolaria.pt/wp-content/plugins/wordpress-bootstrap-css/resources/bootstrap-3.4.1/css/bootstrap.css
IP
89.115.244.164:443
ASN
#12353 Vodafone Portugal - Communicacoes Pessoais S.A.

Requested by
https://www.museuolaria.pt/programassea/portugues-programas-para-grupos/
Certificate
IssuerLet's Encrypt
Subjectmuseuolaria.pt
Fingerprint8D:89:69:14:74:37:43:7B:59:C3:DC:DB:54:BC:68:FE:53:2A:6D:3A
ValidityThu, 11 Jan 2024 13:20:58 GMT - Wed, 10 Apr 2024 13:20:57 GMT

File type
ASCII text, with very long lines (376), with CRLF line terminators
Size
22 kB (21515 bytes)
Hash
af3f15bb4aba3eeb0c950faec501fbff
be47af7de20eb99c9fb187bec4d0a1d0195583f8
9abc502cd363ecd8fbce6abb7efdd2349b7ce0870f2859a8eded12c969baa763

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/plugins/wordpress-bootstrap-css/resources/bootstrap-3.4.1/css/bootstrap.css HTTP/1.1
Host: www.museuolaria.pt
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.museuolaria.pt/programassea/portugues-programas-para-grupos/
Cookie: qtrans_cookie_test=qTranslate%20Cookie%20Test; qtrans_cookie_test=qTranslate%20Cookie%20Test
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Wed, 24 Apr 2024 14:09:56 GMT
Server: Apache
Last-Modified: Wed, 10 Apr 2019 10:06:55 GMT
ETag: "254be-5862a3ab14dc0-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Type: text/css;charset=utf-8
Content-Encoding: gzip
Content-Length: 21515
Keep-Alive: timeout=15, max=99
Connection: Keep-Alive

code.jquery.com/jquery-3.6.4.min.js?ver=3.6.4

151.101.130.137

200 OK

31 kB

URL GET HTTP/2
code.jquery.com/jquery-3.6.4.min.js?ver=3.6.4
IP
151.101.130.137:443
ASN
#54113 FASTLY

Requested by
https://www.museuolaria.pt/programassea/portugues-programas-para-grupos/
Certificate
IssuerSectigo Limited
Subject*.jquery.com
FingerprintD2:19:0A:AD:CE:BB:9C:61:17:5D:29:4B:A2:54:E8:C6:91:B8:F9:8D
ValidityTue, 11 Jul 2023 00:00:00 GMT - Sun, 14 Jul 2024 23:59:59 GMT

File type
JavaScript source, ASCII text, with very long lines (65447)
Size
31 kB (31011 bytes)
Hash
641dd14370106e992d352166f5a07e99
eda46747c71d38a880bee44f9a439c3858bb8f99
a0fe8723dcf55da64d06b25446d0a8513e52527c45afcb37073465f9c6f352af

HTTP Headers

GET /jquery-3.6.4.min.js?ver=3.6.4 HTTP/1.1
Host: code.jquery.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.museuolaria.pt/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx
content-type: application/javascript; charset=utf-8
last-modified: Fri, 18 Oct 1991 12:00:00 GMT
etag: W/"28feccc0-15ec3"
cache-control: public, max-age=31536000, stale-while-revalidate=604800
access-control-allow-origin: *
content-encoding: gzip
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Wed, 24 Apr 2024 14:09:57 GMT
age: 19167189
x-served-by: cache-lga21953-LGA, cache-hel1410022-HEL
x-cache: HIT, HIT
x-cache-hits: 138, 5918
x-timer: S1713967797.018934,VS0,VE0
vary: Accept-Encoding
content-length: 31011
X-Firefox-Spdy: h2

www.museuolaria.pt/wp-content/plugins/contact-form-7/includes/css/styles.css?ver=5.8.6

89.115.244.164

200 OK

1.0 kB

URL GET HTTP/1.1
www.museuolaria.pt/wp-content/plugins/contact-form-7/includes/css/styles.css?ver=5.8.6
IP
89.115.244.164:443
ASN
#12353 Vodafone Portugal - Communicacoes Pessoais S.A.

Requested by
https://www.museuolaria.pt/programassea/portugues-programas-para-grupos/
Certificate
IssuerLet's Encrypt
Subjectmuseuolaria.pt
Fingerprint8D:89:69:14:74:37:43:7B:59:C3:DC:DB:54:BC:68:FE:53:2A:6D:3A
ValidityThu, 11 Jan 2024 13:20:58 GMT - Wed, 10 Apr 2024 13:20:57 GMT

File type
ASCII text
Size
1.0 kB (1015 bytes)
Hash
3fd2afa98866679439097f4ab102fe0a
dbc9c4139e49d0d9fb41b7191aad1a2db6c555fd
ccd31ffa708d025833f954b3e0560cedd58df9a0d2706b2ccee5f501c5b2467b

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/plugins/contact-form-7/includes/css/styles.css?ver=5.8.6 HTTP/1.1
Host: www.museuolaria.pt
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.museuolaria.pt/programassea/portugues-programas-para-grupos/
Cookie: qtrans_cookie_test=qTranslate%20Cookie%20Test; qtrans_cookie_test=qTranslate%20Cookie%20Test
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Wed, 24 Apr 2024 14:09:57 GMT
Server: Apache
Last-Modified: Mon, 15 Jan 2024 14:33:04 GMT
ETag: "b4e-60efce43cc800-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Type: text/css;charset=utf-8
Content-Encoding: gzip
Content-Length: 1015
Keep-Alive: timeout=15, max=98
Connection: Keep-Alive

www.museuolaria.pt/wp-content/plugins/download-attachments/css/frontend.css?ver=6.4.4

89.115.244.164

200 OK

473 B

URL GET HTTP/1.1
www.museuolaria.pt/wp-content/plugins/download-attachments/css/frontend.css?ver=6.4.4
IP
89.115.244.164:443
ASN
#12353 Vodafone Portugal - Communicacoes Pessoais S.A.

Requested by
https://www.museuolaria.pt/programassea/portugues-programas-para-grupos/
Certificate
IssuerLet's Encrypt
Subjectmuseuolaria.pt
Fingerprint8D:89:69:14:74:37:43:7B:59:C3:DC:DB:54:BC:68:FE:53:2A:6D:3A
ValidityThu, 11 Jan 2024 13:20:58 GMT - Wed, 10 Apr 2024 13:20:57 GMT

File type
ASCII text, with CRLF line terminators
Size
473 B (473 bytes)
Hash
7049cf9bdcc5242ce46f6539cc41dbe9
600ef1391becce9aeaa7dad342e13b9525db1017
97c412b211f07d9857ef2c3fa6ed665ea40addfdecaaa377b170e2105c731aba

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/plugins/download-attachments/css/frontend.css?ver=6.4.4 HTTP/1.1
Host: www.museuolaria.pt
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.museuolaria.pt/programassea/portugues-programas-para-grupos/
Cookie: qtrans_cookie_test=qTranslate%20Cookie%20Test; qtrans_cookie_test=qTranslate%20Cookie%20Test
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Wed, 24 Apr 2024 14:09:57 GMT
Server: Apache
Last-Modified: Mon, 13 Sep 2021 10:45:26 GMT
ETag: "52a-5cbde29adfd80-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Type: text/css;charset=utf-8
Content-Encoding: gzip
Content-Length: 473
Keep-Alive: timeout=15, max=97
Connection: Keep-Alive

www.museuolaria.pt/wp-content/plugins/qtranslate-slug/assets/css/qts-default.css?ver=6.4.4

89.115.244.164

200 OK

169 B

URL GET HTTP/1.1
www.museuolaria.pt/wp-content/plugins/qtranslate-slug/assets/css/qts-default.css?ver=6.4.4
IP
89.115.244.164:443
ASN
#12353 Vodafone Portugal - Communicacoes Pessoais S.A.

Requested by
https://www.museuolaria.pt/programassea/portugues-programas-para-grupos/
Certificate
IssuerLet's Encrypt
Subjectmuseuolaria.pt
Fingerprint8D:89:69:14:74:37:43:7B:59:C3:DC:DB:54:BC:68:FE:53:2A:6D:3A
ValidityThu, 11 Jan 2024 13:20:58 GMT - Wed, 10 Apr 2024 13:20:57 GMT

File type
ASCII text
Size
169 B (169 bytes)
Hash
b0adb422b576a6e84cae53965006d5e8
1924ce67728bcf2412d6cb6d40c077e44dd4e238
ed02b400feabdb78d093c78fcc0d3e80228d9a708de11f91b18bf75d07b5b1fd

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/plugins/qtranslate-slug/assets/css/qts-default.css?ver=6.4.4 HTTP/1.1
Host: www.museuolaria.pt
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.museuolaria.pt/programassea/portugues-programas-para-grupos/
Cookie: qtrans_cookie_test=qTranslate%20Cookie%20Test; qtrans_cookie_test=qTranslate%20Cookie%20Test
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Wed, 24 Apr 2024 14:09:57 GMT
Server: Apache
Last-Modified: Tue, 23 Oct 2018 10:40:43 GMT
ETag: "12e-578e30063c0c0-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Type: text/css;charset=utf-8
Content-Encoding: gzip
Content-Length: 169
Keep-Alive: timeout=15, max=96
Connection: Keep-Alive

www.museuolaria.pt/wp-content/themes/twentyfourteen/genericons/genericons.css?ver=3.0.3

89.115.244.164

200 OK

19 kB

URL GET HTTP/1.1
www.museuolaria.pt/wp-content/themes/twentyfourteen/genericons/genericons.css?ver=3.0.3
IP
89.115.244.164:443
ASN
#12353 Vodafone Portugal - Communicacoes Pessoais S.A.

Requested by
https://www.museuolaria.pt/programassea/portugues-programas-para-grupos/
Certificate
IssuerLet's Encrypt
Subjectmuseuolaria.pt
Fingerprint8D:89:69:14:74:37:43:7B:59:C3:DC:DB:54:BC:68:FE:53:2A:6D:3A
ValidityThu, 11 Jan 2024 13:20:58 GMT - Wed, 10 Apr 2024 13:20:57 GMT

File type
ASCII text, with very long lines (23046)
Size
19 kB (19326 bytes)
Hash
d3285ba8ec11af384a85e7b4a909a9ed
6acc2e406f76d188da6f02b7df860d9dbf9d8785
36a5cc076fae81645cce13c59b8c6a525d74b6bb48dc6e48a7af138d059d3518

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/themes/twentyfourteen/genericons/genericons.css?ver=3.0.3 HTTP/1.1
Host: www.museuolaria.pt
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.museuolaria.pt/programassea/portugues-programas-para-grupos/
Cookie: qtrans_cookie_test=qTranslate%20Cookie%20Test; qtrans_cookie_test=qTranslate%20Cookie%20Test
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Wed, 24 Apr 2024 14:09:57 GMT
Server: Apache
Last-Modified: Thu, 16 Mar 2023 16:53:24 GMT
ETag: "7945-5f7074c826900-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Type: text/css;charset=utf-8
Content-Encoding: gzip
Content-Length: 19326
Keep-Alive: timeout=15, max=95
Connection: Keep-Alive

www.museuolaria.pt/wp-content/themes/museuolaria/style.css?ver=20221101

89.115.244.164

200 OK

4.4 kB

URL GET HTTP/1.1
www.museuolaria.pt/wp-content/themes/museuolaria/style.css?ver=20221101
IP
89.115.244.164:443
ASN
#12353 Vodafone Portugal - Communicacoes Pessoais S.A.

Requested by
https://www.museuolaria.pt/programassea/portugues-programas-para-grupos/
Certificate
IssuerLet's Encrypt
Subjectmuseuolaria.pt
Fingerprint8D:89:69:14:74:37:43:7B:59:C3:DC:DB:54:BC:68:FE:53:2A:6D:3A
ValidityThu, 11 Jan 2024 13:20:58 GMT - Wed, 10 Apr 2024 13:20:57 GMT

File type
Unicode text, UTF-8 text
Size
4.4 kB (4352 bytes)
Hash
b1b1c5b9ec9cfd8c434a0cefaae2f11f
9cd9e75df7667f0deb9606d0c52f600d9a7b23c0
34f537d9d63928a3d1d8300c8007a0d47b33a408ffb0419df0aa9da35e767e0a

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/themes/museuolaria/style.css?ver=20221101 HTTP/1.1
Host: www.museuolaria.pt
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.museuolaria.pt/programassea/portugues-programas-para-grupos/
Cookie: qtrans_cookie_test=qTranslate%20Cookie%20Test; qtrans_cookie_test=qTranslate%20Cookie%20Test
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Wed, 24 Apr 2024 14:09:57 GMT
Server: Apache
Last-Modified: Fri, 22 May 2020 14:07:26 GMT
ETag: "453f-5a63d2619e380-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Type: text/css;charset=utf-8
Content-Encoding: gzip
Content-Length: 4352
Keep-Alive: timeout=15, max=94
Connection: Keep-Alive

www.museuolaria.pt/wp-content/themes/museuolaria/css/jquery.bxslider.css

89.115.244.164

200 OK

1.2 kB

URL GET HTTP/1.1
www.museuolaria.pt/wp-content/themes/museuolaria/css/jquery.bxslider.css
IP
89.115.244.164:443
ASN
#12353 Vodafone Portugal - Communicacoes Pessoais S.A.

Requested by
https://www.museuolaria.pt/programassea/portugues-programas-para-grupos/
Certificate
IssuerLet's Encrypt
Subjectmuseuolaria.pt
Fingerprint8D:89:69:14:74:37:43:7B:59:C3:DC:DB:54:BC:68:FE:53:2A:6D:3A
ValidityThu, 11 Jan 2024 13:20:58 GMT - Wed, 10 Apr 2024 13:20:57 GMT

File type
ASCII text
Size
1.2 kB (1157 bytes)
Hash
7fa919097044e55ff5cc4e1cf41a7ebf
e44043c2845737c063f47f6f643e955e8c98f7c6
33d65324d04690f42f1fdcc98804cec31dac72ba129d15d41438bdf1e51438ec

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/themes/museuolaria/css/jquery.bxslider.css HTTP/1.1
Host: www.museuolaria.pt
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.museuolaria.pt/programassea/portugues-programas-para-grupos/
Cookie: qtrans_cookie_test=qTranslate%20Cookie%20Test; qtrans_cookie_test=qTranslate%20Cookie%20Test
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Wed, 24 Apr 2024 14:09:56 GMT
Server: Apache
Last-Modified: Tue, 21 Jul 2015 13:07:33 GMT
ETag: "e49-51b6256596f40-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Type: text/css;charset=utf-8
Content-Encoding: gzip
Content-Length: 1157
Keep-Alive: timeout=15, max=100
Connection: Keep-Alive

www.museuolaria.pt/wp-content/plugins/wordpress-bootstrap-css/resources/bootstrap-3.4.1/js/bootstrap.js?ver=3.4.1-0

89.115.244.164

200 OK

16 kB

URL GET HTTP/1.1
www.museuolaria.pt/wp-content/plugins/wordpress-bootstrap-css/resources/bootstrap-3.4.1/js/bootstrap.js?ver=3.4.1-0
IP
89.115.244.164:443
ASN
#12353 Vodafone Portugal - Communicacoes Pessoais S.A.

Requested by
https://www.museuolaria.pt/programassea/portugues-programas-para-grupos/
Certificate
IssuerLet's Encrypt
Subjectmuseuolaria.pt
Fingerprint8D:89:69:14:74:37:43:7B:59:C3:DC:DB:54:BC:68:FE:53:2A:6D:3A
ValidityThu, 11 Jan 2024 13:20:58 GMT - Wed, 10 Apr 2024 13:20:57 GMT

File type
JavaScript source, ASCII text, with CRLF line terminators
Size
16 kB (16259 bytes)
Hash
342407180c3fd1b27dbd5f0e1c099621
74cecc6c2b438990f7b1d63832526365ffe14227
4f9ef836f25359cf8f6a7f210269d75dcd1e6458aa291a7bc50deccf942214e9

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/plugins/wordpress-bootstrap-css/resources/bootstrap-3.4.1/js/bootstrap.js?ver=3.4.1-0 HTTP/1.1
Host: www.museuolaria.pt
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.museuolaria.pt/programassea/portugues-programas-para-grupos/
Cookie: qtrans_cookie_test=qTranslate%20Cookie%20Test; qtrans_cookie_test=qTranslate%20Cookie%20Test
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Wed, 24 Apr 2024 14:09:57 GMT
Server: Apache
Last-Modified: Mon, 18 Mar 2024 15:03:04 GMT
ETag: "130f0-613f0a7873a00-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Type: application/javascript
Content-Encoding: gzip
Content-Length: 16259
Keep-Alive: timeout=15, max=93
Connection: Keep-Alive

www.museuolaria.pt/wp-content/plugins/all-in-one-event-calendar/public/themes-ai1ec/vortex/css/ai1ec_parsed_css.css?ver=3.0.0

89.115.244.164

200 OK

77 kB

URL GET HTTP/1.1
www.museuolaria.pt/wp-content/plugins/all-in-one-event-calendar/public/themes-ai1ec/vortex/css/ai1ec_parsed_css.css?ver=3.0.0
IP
89.115.244.164:443
ASN
#12353 Vodafone Portugal - Communicacoes Pessoais S.A.

Requested by
https://www.museuolaria.pt/programassea/portugues-programas-para-grupos/
Certificate
IssuerLet's Encrypt
Subjectmuseuolaria.pt
Fingerprint8D:89:69:14:74:37:43:7B:59:C3:DC:DB:54:BC:68:FE:53:2A:6D:3A
ValidityThu, 11 Jan 2024 13:20:58 GMT - Wed, 10 Apr 2024 13:20:57 GMT

File type
ASCII text, with very long lines (65536), with no line terminators
Size
77 kB (77257 bytes)
Hash
f3954b50e1024b84bf77459ea3a11801
c86c502b7d212a4beecbb8595b340974bb1d56ee
9b518c06a384acaefdef8ff86be1fe6deeb5d1baa6362095f753fdd46b75dad6

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/plugins/all-in-one-event-calendar/public/themes-ai1ec/vortex/css/ai1ec_parsed_css.css?ver=3.0.0 HTTP/1.1
Host: www.museuolaria.pt
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.museuolaria.pt/programassea/portugues-programas-para-grupos/
Cookie: qtrans_cookie_test=qTranslate%20Cookie%20Test; qtrans_cookie_test=qTranslate%20Cookie%20Test
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Wed, 24 Apr 2024 14:09:57 GMT
Server: Apache
Last-Modified: Tue, 19 Dec 2023 11:24:42 GMT
ETag: "413b6-60cdb1cded280-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Type: text/css;charset=utf-8
Content-Encoding: gzip
Keep-Alive: timeout=15, max=100
Connection: Keep-Alive
Transfer-Encoding: chunked

www.museuolaria.pt/wp-includes/css/dist/block-library/style.min.css?ver=6.4.4

89.115.244.164

200 OK

14 kB

URL GET HTTP/1.1
www.museuolaria.pt/wp-includes/css/dist/block-library/style.min.css?ver=6.4.4
IP
89.115.244.164:443
ASN
#12353 Vodafone Portugal - Communicacoes Pessoais S.A.

Requested by
https://www.museuolaria.pt/programassea/portugues-programas-para-grupos/
Certificate
IssuerLet's Encrypt
Subjectmuseuolaria.pt
Fingerprint8D:89:69:14:74:37:43:7B:59:C3:DC:DB:54:BC:68:FE:53:2A:6D:3A
ValidityThu, 11 Jan 2024 13:20:58 GMT - Wed, 10 Apr 2024 13:20:57 GMT

File type
ASCII text, with very long lines (57192)
Size
14 kB (14502 bytes)
Hash
960ab4fd609cb72ab56320d5f8f941be
013754072773547f4c13111a083d73b682cee098
8deaf9b8cc09d8c2c163ec18d5b2eff3efbda655243faca158893f39608f8cf5

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-includes/css/dist/block-library/style.min.css?ver=6.4.4 HTTP/1.1
Host: www.museuolaria.pt
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.museuolaria.pt/programassea/portugues-programas-para-grupos/
Cookie: qtrans_cookie_test=qTranslate%20Cookie%20Test; qtrans_cookie_test=qTranslate%20Cookie%20Test
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Wed, 24 Apr 2024 14:09:57 GMT
Server: Apache
Last-Modified: Tue, 30 Jan 2024 22:50:58 GMT
ETag: "1ae43-61031987c7880-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Type: text/css;charset=utf-8
Content-Encoding: gzip
Content-Length: 14502
Keep-Alive: timeout=15, max=100
Connection: Keep-Alive

www.museuolaria.pt/wp-content/themes/twentyfourteen/js/functions.js?ver=20210122

89.115.244.164

200 OK

4.4 kB

URL GET HTTP/1.1
www.museuolaria.pt/wp-content/themes/twentyfourteen/js/functions.js?ver=20210122
IP
89.115.244.164:443
ASN
#12353 Vodafone Portugal - Communicacoes Pessoais S.A.

Requested by
https://www.museuolaria.pt/programassea/portugues-programas-para-grupos/
Certificate
IssuerLet's Encrypt
Subjectmuseuolaria.pt
Fingerprint8D:89:69:14:74:37:43:7B:59:C3:DC:DB:54:BC:68:FE:53:2A:6D:3A
ValidityThu, 11 Jan 2024 13:20:58 GMT - Wed, 10 Apr 2024 13:20:57 GMT

File type
JavaScript source, ASCII text, with very long lines (4678)
Size
4.4 kB (4425 bytes)
Hash
6c1b6352771b9fb506e0905b6afadfb4
1c5aa47152a98493e360f86837b0b36fd8a8f404
6177955d5a853139cb2468becd17cb3bf19d6454d788e1ca423fe2e38af6ef49

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/themes/twentyfourteen/js/functions.js?ver=20210122 HTTP/1.1
Host: www.museuolaria.pt
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.museuolaria.pt/programassea/portugues-programas-para-grupos/
Cookie: qtrans_cookie_test=qTranslate%20Cookie%20Test; qtrans_cookie_test=qTranslate%20Cookie%20Test
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Wed, 24 Apr 2024 14:09:57 GMT
Server: Apache
Last-Modified: Thu, 16 Mar 2023 16:53:24 GMT
ETag: "29ec-5f7074c826900-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Type: application/javascript
Content-Encoding: gzip
Content-Length: 4425
Keep-Alive: timeout=15, max=99
Connection: Keep-Alive

www.museuolaria.pt/wp-content/plugins/contact-form-7/includes/swv/js/index.js?ver=5.8.6

89.115.244.164

200 OK

3.2 kB

URL GET HTTP/1.1
www.museuolaria.pt/wp-content/plugins/contact-form-7/includes/swv/js/index.js?ver=5.8.6
IP
89.115.244.164:443
ASN
#12353 Vodafone Portugal - Communicacoes Pessoais S.A.

Requested by
https://www.museuolaria.pt/programassea/portugues-programas-para-grupos/
Certificate
IssuerLet's Encrypt
Subjectmuseuolaria.pt
Fingerprint8D:89:69:14:74:37:43:7B:59:C3:DC:DB:54:BC:68:FE:53:2A:6D:3A
ValidityThu, 11 Jan 2024 13:20:58 GMT - Wed, 10 Apr 2024 13:20:57 GMT

File type
JavaScript source, ASCII text, with very long lines (11118), with CRLF line terminators
Size
3.2 kB (3218 bytes)
Hash
3dba2882683bb328ee394c19ad462e3c
0e49518faa1725e8b9f28e90c2c2c2ae5327e84a
a07a64f51b89c5c77bea1a90b577b93f92282b3022bc312ac5b7a04ae014323f

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/plugins/contact-form-7/includes/swv/js/index.js?ver=5.8.6 HTTP/1.1
Host: www.museuolaria.pt
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.museuolaria.pt/programassea/portugues-programas-para-grupos/
Cookie: qtrans_cookie_test=qTranslate%20Cookie%20Test; qtrans_cookie_test=qTranslate%20Cookie%20Test
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Wed, 24 Apr 2024 14:09:57 GMT
Server: Apache
Last-Modified: Mon, 18 Mar 2024 15:02:57 GMT
ETag: "2b70-613f0a71c6a40-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Type: application/javascript
Content-Encoding: gzip
Content-Length: 3218
Keep-Alive: timeout=15, max=92
Connection: Keep-Alive

www.museuolaria.pt/wp-content/plugins/contact-form-7/includes/js/index.js?ver=5.8.6

89.115.244.164

200 OK

6.5 kB

URL GET HTTP/1.1
www.museuolaria.pt/wp-content/plugins/contact-form-7/includes/js/index.js?ver=5.8.6
IP
89.115.244.164:443
ASN
#12353 Vodafone Portugal - Communicacoes Pessoais S.A.

Requested by
https://www.museuolaria.pt/programassea/portugues-programas-para-grupos/
Certificate
IssuerLet's Encrypt
Subjectmuseuolaria.pt
Fingerprint8D:89:69:14:74:37:43:7B:59:C3:DC:DB:54:BC:68:FE:53:2A:6D:3A
ValidityThu, 11 Jan 2024 13:20:58 GMT - Wed, 10 Apr 2024 13:20:57 GMT

File type
JavaScript source, ASCII text, with very long lines (17860), with no line terminators
Size
6.5 kB (6506 bytes)
Hash
943729001ff5eddc27d1cfa37953573a
86dab5071a55aeba65da9241d56656719dbb1f3c
8608d8d3e5e5c2b66e872496c495fade45e7f106ab39b4cb0bc6821a0bb2c405

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/plugins/contact-form-7/includes/js/index.js?ver=5.8.6 HTTP/1.1
Host: www.museuolaria.pt
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.museuolaria.pt/programassea/portugues-programas-para-grupos/
Cookie: qtrans_cookie_test=qTranslate%20Cookie%20Test; qtrans_cookie_test=qTranslate%20Cookie%20Test
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Wed, 24 Apr 2024 14:09:57 GMT
Server: Apache
Last-Modified: Mon, 15 Jan 2024 14:33:04 GMT
ETag: "45c4-60efce43cc800-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Type: application/javascript
Content-Encoding: gzip
Keep-Alive: timeout=15, max=99
Connection: Keep-Alive
Transfer-Encoding: chunked

www.museuolaria.pt/wp-content/themes/museuolaria/js/scrollReveal.min.js

89.115.244.164

200 OK

3.4 kB

URL GET HTTP/1.1
www.museuolaria.pt/wp-content/themes/museuolaria/js/scrollReveal.min.js
IP
89.115.244.164:443
ASN
#12353 Vodafone Portugal - Communicacoes Pessoais S.A.

Requested by
https://www.museuolaria.pt/programassea/portugues-programas-para-grupos/
Certificate
IssuerLet's Encrypt
Subjectmuseuolaria.pt
Fingerprint8D:89:69:14:74:37:43:7B:59:C3:DC:DB:54:BC:68:FE:53:2A:6D:3A
ValidityThu, 11 Jan 2024 13:20:58 GMT - Wed, 10 Apr 2024 13:20:57 GMT

File type
JavaScript source, ASCII text, with very long lines (8526), with CRLF line terminators
Size
3.4 kB (3444 bytes)
Hash
b97e86809a9b09ec884abb7ce3fa741c
758b3b7fbb46e30bad27481f0376860cf5c2ccf2
362d6f6380bb0fd723086f6e896cf81493501954077613144b381d91c0e9d6ff

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/themes/museuolaria/js/scrollReveal.min.js HTTP/1.1
Host: www.museuolaria.pt
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.museuolaria.pt/programassea/portugues-programas-para-grupos/
Cookie: qtrans_cookie_test=qTranslate%20Cookie%20Test; qtrans_cookie_test=qTranslate%20Cookie%20Test
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Wed, 24 Apr 2024 14:09:57 GMT
Server: Apache
Last-Modified: Mon, 18 Mar 2024 15:03:12 GMT
ETag: "2150-613f0a8014c00-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Type: application/javascript
Content-Encoding: gzip
Content-Length: 3444
Keep-Alive: timeout=15, max=99
Connection: Keep-Alive

www.museuolaria.pt/wp-includes/js/dist/vendor/wp-polyfill-inert.min.js?ver=3.1.2

89.115.244.164

200 OK

4.8 kB

URL GET HTTP/1.1
www.museuolaria.pt/wp-includes/js/dist/vendor/wp-polyfill-inert.min.js?ver=3.1.2
IP
89.115.244.164:443
ASN
#12353 Vodafone Portugal - Communicacoes Pessoais S.A.

Requested by
https://www.museuolaria.pt/programassea/portugues-programas-para-grupos/
Certificate
IssuerLet's Encrypt
Subjectmuseuolaria.pt
Fingerprint8D:89:69:14:74:37:43:7B:59:C3:DC:DB:54:BC:68:FE:53:2A:6D:3A
ValidityThu, 11 Jan 2024 13:20:58 GMT - Wed, 10 Apr 2024 13:20:57 GMT

File type
JavaScript source, ASCII text, with very long lines (12849), with no line terminators
Size
4.8 kB (4797 bytes)
Hash
45cd0595304d53ac92e9b786eda0f4e5
350bba1bb9aa5b3cab4b0dcc3286e0bcf34b362e
9ffdb975cd0567f1c6a5933b4d43d180b7c4b90dcef5e0c7872abf57e104d1c0

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-includes/js/dist/vendor/wp-polyfill-inert.min.js?ver=3.1.2 HTTP/1.1
Host: www.museuolaria.pt
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.museuolaria.pt/programassea/portugues-programas-para-grupos/
Cookie: qtrans_cookie_test=qTranslate%20Cookie%20Test; qtrans_cookie_test=qTranslate%20Cookie%20Test
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Wed, 24 Apr 2024 14:09:57 GMT
Server: Apache
Last-Modified: Tue, 19 Dec 2023 11:23:05 GMT
ETag: "3231-60cdb1716b840-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Type: application/javascript
Content-Encoding: gzip
Content-Length: 4797
Keep-Alive: timeout=15, max=98
Connection: Keep-Alive

www.museuolaria.pt/wp-includes/js/dist/vendor/regenerator-runtime.min.js?ver=0.14.0

89.115.244.164

200 OK

4.8 kB

URL GET HTTP/1.1
www.museuolaria.pt/wp-includes/js/dist/vendor/regenerator-runtime.min.js?ver=0.14.0
IP
89.115.244.164:443
ASN
#12353 Vodafone Portugal - Communicacoes Pessoais S.A.

Requested by
https://www.museuolaria.pt/programassea/portugues-programas-para-grupos/
Certificate
IssuerLet's Encrypt
Subjectmuseuolaria.pt
Fingerprint8D:89:69:14:74:37:43:7B:59:C3:DC:DB:54:BC:68:FE:53:2A:6D:3A
ValidityThu, 11 Jan 2024 13:20:58 GMT - Wed, 10 Apr 2024 13:20:57 GMT

File type
JavaScript source, ASCII text, with very long lines (11303), with no line terminators
Size
4.8 kB (4811 bytes)
Hash
c8c8882a86482731c23ff50ccbd142e1
41ce24e005e44593c29f8959356ba736b8ba7af4
bfedcd560cb0c0e14fe821d2d6708f80adab718ac6ace9b2260b6fac4f84642f

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-includes/js/dist/vendor/regenerator-runtime.min.js?ver=0.14.0 HTTP/1.1
Host: www.museuolaria.pt
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.museuolaria.pt/programassea/portugues-programas-para-grupos/
Cookie: qtrans_cookie_test=qTranslate%20Cookie%20Test; qtrans_cookie_test=qTranslate%20Cookie%20Test
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Wed, 24 Apr 2024 14:09:58 GMT
Server: Apache
Last-Modified: Tue, 19 Dec 2023 11:23:05 GMT
ETag: "2c27-60cdb1716b840-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Type: application/javascript
Content-Encoding: gzip
Content-Length: 4811
Keep-Alive: timeout=15, max=91
Connection: Keep-Alive

www.museuolaria.pt/wp-includes/js/dist/vendor/wp-polyfill.min.js?ver=3.15.0

89.115.244.164

200 OK

38 kB

URL GET HTTP/1.1
www.museuolaria.pt/wp-includes/js/dist/vendor/wp-polyfill.min.js?ver=3.15.0
IP
89.115.244.164:443
ASN
#12353 Vodafone Portugal - Communicacoes Pessoais S.A.

Requested by
https://www.museuolaria.pt/programassea/portugues-programas-para-grupos/
Certificate
IssuerLet's Encrypt
Subjectmuseuolaria.pt
Fingerprint8D:89:69:14:74:37:43:7B:59:C3:DC:DB:54:BC:68:FE:53:2A:6D:3A
ValidityThu, 11 Jan 2024 13:20:58 GMT - Wed, 10 Apr 2024 13:20:57 GMT

File type
JavaScript source, Unicode text, UTF-8 text, with very long lines (65533), with no line terminators
Size
38 kB (38198 bytes)
Hash
69c11e0978d86890f3c4de89ab614650
11e45004f4d03ff8bbea3e8fb2dcabb50ff28982
d3d88f14cc01130e7bcab6f93c62c9e143c0ff131b44cf5f66456b32cf4f0d4a

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-includes/js/dist/vendor/wp-polyfill.min.js?ver=3.15.0 HTTP/1.1
Host: www.museuolaria.pt
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.museuolaria.pt/programassea/portugues-programas-para-grupos/
Cookie: qtrans_cookie_test=qTranslate%20Cookie%20Test; qtrans_cookie_test=qTranslate%20Cookie%20Test
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Wed, 24 Apr 2024 14:09:58 GMT
Server: Apache
Last-Modified: Tue, 19 Dec 2023 11:23:05 GMT
ETag: "1d3fd-60cdb1716b840-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Type: application/javascript
Content-Encoding: gzip
Keep-Alive: timeout=15, max=97
Connection: Keep-Alive
Transfer-Encoding: chunked

www.museuolaria.pt/wp-content/plugins/contact-form-7/modules/recaptcha/index.js?ver=5.8.6

89.115.244.164

200 OK

2.7 kB

URL GET HTTP/1.1
www.museuolaria.pt/wp-content/plugins/contact-form-7/modules/recaptcha/index.js?ver=5.8.6
IP
89.115.244.164:443
ASN
#12353 Vodafone Portugal - Communicacoes Pessoais S.A.

Requested by
https://www.museuolaria.pt/programassea/portugues-programas-para-grupos/
Certificate
IssuerLet's Encrypt
Subjectmuseuolaria.pt
Fingerprint8D:89:69:14:74:37:43:7B:59:C3:DC:DB:54:BC:68:FE:53:2A:6D:3A
ValidityThu, 11 Jan 2024 13:20:58 GMT - Wed, 10 Apr 2024 13:20:57 GMT

File type
JavaScript source, ASCII text, with very long lines (5612), with no line terminators
Size
2.7 kB (2730 bytes)
Hash
663ca9467fe3d7d808bc64e08a1a676d
6d9d8eaa167732a4e5a2ee4e5db004ae8105b334
da210a85fb19aff78d6c6d4f0d9700daa1e889a811dc3b714312f0cab27b2fb5

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/plugins/contact-form-7/modules/recaptcha/index.js?ver=5.8.6 HTTP/1.1
Host: www.museuolaria.pt
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.museuolaria.pt/programassea/portugues-programas-para-grupos/
Cookie: qtrans_cookie_test=qTranslate%20Cookie%20Test; qtrans_cookie_test=qTranslate%20Cookie%20Test
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Wed, 24 Apr 2024 14:09:58 GMT
Server: Apache
Last-Modified: Mon, 15 Jan 2024 14:33:04 GMT
ETag: "15ec-60efce43cc800-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Type: application/javascript
Content-Encoding: gzip
Content-Length: 2730
Keep-Alive: timeout=15, max=90
Connection: Keep-Alive

www.museuolaria.pt/wp-content/themes/twentyfourteen/css/blocks.css?ver=20210622

89.115.244.164

200 OK

1.6 kB

URL GET HTTP/1.1
www.museuolaria.pt/wp-content/themes/twentyfourteen/css/blocks.css?ver=20210622
IP
89.115.244.164:443
ASN
#12353 Vodafone Portugal - Communicacoes Pessoais S.A.

Requested by
https://www.museuolaria.pt/programassea/portugues-programas-para-grupos/
Certificate
IssuerLet's Encrypt
Subjectmuseuolaria.pt
Fingerprint8D:89:69:14:74:37:43:7B:59:C3:DC:DB:54:BC:68:FE:53:2A:6D:3A
ValidityThu, 11 Jan 2024 13:20:58 GMT - Wed, 10 Apr 2024 13:20:57 GMT

File type
ASCII text
Size
1.6 kB (1649 bytes)
Hash
7c2b34301f88448c2391c86466963914
2e6213b198ce80a8907c1f5da44ee544f664bca8
fce7e9715dfeded3495e0d9c54966b1ff7b26a768ca2024c2cf097ee90015cd6

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/themes/twentyfourteen/css/blocks.css?ver=20210622 HTTP/1.1
Host: www.museuolaria.pt
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.museuolaria.pt/programassea/portugues-programas-para-grupos/
Cookie: qtrans_cookie_test=qTranslate%20Cookie%20Test; qtrans_cookie_test=qTranslate%20Cookie%20Test
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Wed, 24 Apr 2024 14:09:58 GMT
Server: Apache
Last-Modified: Thu, 16 Mar 2023 16:53:24 GMT
ETag: "1e0e-5f7074c826900-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Type: text/css;charset=utf-8
Content-Encoding: gzip
Content-Length: 1649
Keep-Alive: timeout=15, max=100
Connection: Keep-Alive

www.museuolaria.pt/wp-content/themes/museuolaria/js/jquery.bxslider.min.js

89.115.244.164

200 OK

5.1 kB

URL GET HTTP/1.1
www.museuolaria.pt/wp-content/themes/museuolaria/js/jquery.bxslider.min.js
IP
89.115.244.164:443
ASN
#12353 Vodafone Portugal - Communicacoes Pessoais S.A.

Requested by
https://www.museuolaria.pt/programassea/portugues-programas-para-grupos/
Certificate
IssuerLet's Encrypt
Subjectmuseuolaria.pt
Fingerprint8D:89:69:14:74:37:43:7B:59:C3:DC:DB:54:BC:68:FE:53:2A:6D:3A
ValidityThu, 11 Jan 2024 13:20:58 GMT - Wed, 10 Apr 2024 13:20:57 GMT

File type
JavaScript source, ASCII text, with very long lines (18805)
Size
5.1 kB (5126 bytes)
Hash
80d1216b85da3623b7de66b8a96e337e
f501a02873657c075512b0d89cbf42319f5350fc
fc61c7463d54801dfcddc7506af6fd2c899819364b8a3482b4ef61b9c2440def

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/themes/museuolaria/js/jquery.bxslider.min.js HTTP/1.1
Host: www.museuolaria.pt
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.museuolaria.pt/programassea/portugues-programas-para-grupos/
Cookie: qtrans_cookie_test=qTranslate%20Cookie%20Test; qtrans_cookie_test=qTranslate%20Cookie%20Test
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Wed, 24 Apr 2024 14:09:58 GMT
Server: Apache
Last-Modified: Mon, 18 Mar 2024 15:02:51 GMT
ETag: "4ab5-613f0a6c0dcc0-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Type: application/javascript
Content-Encoding: gzip
Content-Length: 5126
Keep-Alive: timeout=15, max=100
Connection: Keep-Alive

www.museuolaria.pt/wp-content/themes/museuolaria/images/museu_olaria_barcelos_logo.png

89.115.244.164

200 OK

5.5 kB

URL GET HTTP/1.1
www.museuolaria.pt/wp-content/themes/museuolaria/images/museu_olaria_barcelos_logo.png
IP
89.115.244.164:443
ASN
#12353 Vodafone Portugal - Communicacoes Pessoais S.A.

Requested by
https://www.museuolaria.pt/programassea/portugues-programas-para-grupos/
Certificate
IssuerLet's Encrypt
Subjectmuseuolaria.pt
Fingerprint8D:89:69:14:74:37:43:7B:59:C3:DC:DB:54:BC:68:FE:53:2A:6D:3A
ValidityThu, 11 Jan 2024 13:20:58 GMT - Wed, 10 Apr 2024 13:20:57 GMT

File type
PNG image data, 331 x 44, 8-bit/color RGBA, non-interlaced
Size
5.5 kB (5511 bytes)
Hash
707a29f332466cb9f6f2d6e1bdce48be
3b5ae135cc7ba457ed42e117f4d28333dce30003
397500a650c3eeadd38a728df8baa10478103ae096b338b6f4946d12aaf80528

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/themes/museuolaria/images/museu_olaria_barcelos_logo.png HTTP/1.1
Host: www.museuolaria.pt
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.museuolaria.pt/programassea/portugues-programas-para-grupos/
Cookie: qtrans_cookie_test=qTranslate%20Cookie%20Test; qtrans_cookie_test=qTranslate%20Cookie%20Test
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Wed, 24 Apr 2024 14:09:59 GMT
Server: Apache
Last-Modified: Tue, 21 Jul 2015 13:07:33 GMT
ETag: "1665-51b6256596f40-gzip"
Accept-Ranges: bytes
Content-Type: image/png
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 5511
Keep-Alive: timeout=15, max=96
Connection: Keep-Alive

www.museuolaria.pt/wp-content/themes/museuolaria/images/museu_apoios.png

89.115.244.164

200 OK

4.9 kB

URL GET HTTP/1.1
www.museuolaria.pt/wp-content/themes/museuolaria/images/museu_apoios.png
IP
89.115.244.164:443
ASN
#12353 Vodafone Portugal - Communicacoes Pessoais S.A.

Requested by
https://www.museuolaria.pt/programassea/portugues-programas-para-grupos/
Certificate
IssuerLet's Encrypt
Subjectmuseuolaria.pt
Fingerprint8D:89:69:14:74:37:43:7B:59:C3:DC:DB:54:BC:68:FE:53:2A:6D:3A
ValidityThu, 11 Jan 2024 13:20:58 GMT - Wed, 10 Apr 2024 13:20:57 GMT

File type
PNG image data, 363 x 30, 8-bit/color RGBA, non-interlaced
Size
4.9 kB (4876 bytes)
Hash
1a6a37b192e5c1473638f793be4459c4
2a426001e9708554d5d38b60d441668ddf9b8da9
f8f4873685d57e27a573c44e508f0455a158f75ba77c3f8e45914045fd484f49

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/themes/museuolaria/images/museu_apoios.png HTTP/1.1
Host: www.museuolaria.pt
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.museuolaria.pt/programassea/portugues-programas-para-grupos/
Cookie: qtrans_cookie_test=qTranslate%20Cookie%20Test; qtrans_cookie_test=qTranslate%20Cookie%20Test
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Wed, 24 Apr 2024 14:09:59 GMT
Server: Apache
Last-Modified: Tue, 21 Jul 2015 13:07:33 GMT
ETag: "12f5-51b6256596f40-gzip"
Accept-Ranges: bytes
Content-Type: image/png
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 4876
Keep-Alive: timeout=15, max=98
Connection: Keep-Alive

fonts.googleapis.com/css?family=Source+Sans+Pro:200,400,600,700&subset=latin

142.250.74.106

200 OK

9.3 kB

URL GET HTTP/2
fonts.googleapis.com/css?family=Source+Sans+Pro:200,400,600,700&subset=latin
IP
142.250.74.106:443
ASN
#15169 GOOGLE

Requested by
https://www.museuolaria.pt/programassea/portugues-programas-para-grupos/
Certificate
IssuerGoogle Trust Services LLC
Subjectupload.video.google.com
Fingerprint15:CB:F7:AC:18:3F:DC:1E:F9:4E:94:D1:98:40:40:61:53:17:28:F2
ValidityMon, 18 Mar 2024 20:35:28 GMT - Mon, 10 Jun 2024 20:35:27 GMT

File type
gzip compressed data, max compression
Size
9.3 kB (9297 bytes)
Hash
fb38287c37271b8f9421761a6d71baf3
c56762bf8c055c0b76c655a963fc9d87a05e22b2
733ca0b7b9d410c7a5478a0f2f917bddebf3d6dff2fc98923649b0068dbfcac2

HTTP Headers

GET /css?family=Source+Sans+Pro:200,400,600,700&subset=latin HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.museuolaria.pt/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Wed, 24 Apr 2024 14:09:56 GMT
date: Wed, 24 Apr 2024 14:09:56 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

fonts.gstatic.com/s/lato/v24/S6u9w4BMUTPHh7USSwiPGQ.woff2

216.58.207.227

200 OK

23 kB

URL GET HTTP/2
fonts.gstatic.com/s/lato/v24/S6u9w4BMUTPHh7USSwiPGQ.woff2
IP
216.58.207.227:443
ASN
#15169 GOOGLE

Requested by
https://www.museuolaria.pt/programassea/portugues-programas-para-grupos/
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintF5:5C:D9:68:C6:5F:A3:33:5A:73:C3:79:B6:83:FE:44:2E:A4:83:74
ValidityMon, 18 Mar 2024 20:34:25 GMT - Mon, 10 Jun 2024 20:34:24 GMT

File type
Web Open Font Format (Version 2), TrueType, length 23236, version 1.0
Size
23 kB (23236 bytes)
Hash
716309aab2bca045f9627f63ad79d0bf
38804233a29aaf975d557fe14e762c627bef76e0
115f6a626ca115d4ad5581b59275327e0e860b30330a52b0f785561332dd2429

HTTP Headers

GET /s/lato/v24/S6u9w4BMUTPHh7USSwiPGQ.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.museuolaria.pt
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 23236
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 18 Apr 2024 17:24:19 GMT
expires: Fri, 18 Apr 2025 17:24:19 GMT
cache-control: public, max-age=31536000
age: 506740
last-modified: Tue, 02 May 2023 15:08:26 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

fonts.gstatic.com/s/lato/v24/S6uyw4BMUTPHjx4wXg.woff2

216.58.207.227

200 OK

24 kB

URL GET HTTP/2
fonts.gstatic.com/s/lato/v24/S6uyw4BMUTPHjx4wXg.woff2
IP
216.58.207.227:443
ASN
#15169 GOOGLE

Requested by
https://www.museuolaria.pt/programassea/portugues-programas-para-grupos/
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintF5:5C:D9:68:C6:5F:A3:33:5A:73:C3:79:B6:83:FE:44:2E:A4:83:74
ValidityMon, 18 Mar 2024 20:34:25 GMT - Mon, 10 Jun 2024 20:34:24 GMT

File type
Web Open Font Format (Version 2), TrueType, length 23580, version 1.0
Size
24 kB (23580 bytes)
Hash
e1b3b5908c9cf23dfb2b9c52b9a023ab
fcd4136085f2a03481d9958cc6793a5ed98e714c
918b7dc3e2e2d015c16ce08b57bcb64d2253bafc1707658f361e72865498e537

HTTP Headers

GET /s/lato/v24/S6uyw4BMUTPHjx4wXg.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.museuolaria.pt
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 23580
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 18 Apr 2024 17:21:46 GMT
expires: Fri, 18 Apr 2025 17:21:46 GMT
cache-control: public, max-age=31536000
age: 506893
last-modified: Tue, 02 May 2023 15:17:22 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

www.museuolaria.pt/wp-content/themes/museuolaria/images/museu_olaria_barcelos_logo_camarabarcelos.png

89.115.244.164

200 OK

2.2 kB

URL GET HTTP/1.1
www.museuolaria.pt/wp-content/themes/museuolaria/images/museu_olaria_barcelos_logo_camarabarcelos.png
IP
89.115.244.164:443
ASN
#12353 Vodafone Portugal - Communicacoes Pessoais S.A.

Requested by
https://www.museuolaria.pt/programassea/portugues-programas-para-grupos/
Certificate
IssuerLet's Encrypt
Subjectmuseuolaria.pt
Fingerprint8D:89:69:14:74:37:43:7B:59:C3:DC:DB:54:BC:68:FE:53:2A:6D:3A
ValidityThu, 11 Jan 2024 13:20:58 GMT - Wed, 10 Apr 2024 13:20:57 GMT

File type
PNG image data, 135 x 35, 8-bit/color RGBA, non-interlaced
Size
2.2 kB (2226 bytes)
Hash
06094d0e70605309950fc944071c924f
5eb303a52d4218706155e79a68037d2ea4df1ac1
1326d5eeb2b5499a4e79c606db0eaab206df34cd7361e71c46aa5f2b634a6055

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/themes/museuolaria/images/museu_olaria_barcelos_logo_camarabarcelos.png HTTP/1.1
Host: www.museuolaria.pt
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.museuolaria.pt/programassea/portugues-programas-para-grupos/
Cookie: qtrans_cookie_test=qTranslate%20Cookie%20Test; qtrans_cookie_test=qTranslate%20Cookie%20Test
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Wed, 24 Apr 2024 14:09:59 GMT
Server: Apache
Last-Modified: Tue, 21 Jul 2015 13:07:33 GMT
ETag: "89b-51b6256596f40-gzip"
Accept-Ranges: bytes
Content-Type: image/png
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 2226
Keep-Alive: timeout=15, max=89
Connection: Keep-Alive

fonts.gstatic.com/s/lato/v24/S6u9w4BMUTPHh6UVSwiPGQ.woff2

216.58.207.227

200 OK

23 kB

URL GET HTTP/2
fonts.gstatic.com/s/lato/v24/S6u9w4BMUTPHh6UVSwiPGQ.woff2
IP
216.58.207.227:443
ASN
#15169 GOOGLE

Requested by
https://www.museuolaria.pt/programassea/portugues-programas-para-grupos/
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintF5:5C:D9:68:C6:5F:A3:33:5A:73:C3:79:B6:83:FE:44:2E:A4:83:74
ValidityMon, 18 Mar 2024 20:34:25 GMT - Mon, 10 Jun 2024 20:34:24 GMT

File type
Web Open Font Format (Version 2), TrueType, length 23040, version 1.0
Size
23 kB (23040 bytes)
Hash
de69cf9e514df447d1b0bb16f49d2457
2ac78601179c3a63ba3f3f3081556b12ddcaf655
c447dd7677b419db7b21dbdfc6277c7816a913ffda76fd2e52702df538de0e49

HTTP Headers

GET /s/lato/v24/S6u9w4BMUTPHh6UVSwiPGQ.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.museuolaria.pt
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 23040
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 23 Apr 2024 02:02:48 GMT
expires: Wed, 23 Apr 2025 02:02:48 GMT
cache-control: public, max-age=31536000
age: 130031
last-modified: Tue, 02 May 2023 15:07:25 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

www.museuolaria.pt/wp-content/plugins/qtranslate/flags/gb.png

89.115.244.164

200 OK

435 B

URL GET HTTP/1.1
www.museuolaria.pt/wp-content/plugins/qtranslate/flags/gb.png
IP
89.115.244.164:443
ASN
#12353 Vodafone Portugal - Communicacoes Pessoais S.A.

Requested by
https://www.museuolaria.pt/programassea/portugues-programas-para-grupos/
Certificate
IssuerLet's Encrypt
Subjectmuseuolaria.pt
Fingerprint8D:89:69:14:74:37:43:7B:59:C3:DC:DB:54:BC:68:FE:53:2A:6D:3A
ValidityThu, 11 Jan 2024 13:20:58 GMT - Wed, 10 Apr 2024 13:20:57 GMT

File type
PNG image data, 18 x 12, 8-bit colormap, non-interlaced
Size
435 B (435 bytes)
Hash
5aa384574c7b2400535544cb4c713aaa
ebe6af374e49ee3f18dea50c9d10a38d674fb32b
dacba462755401390e29421314a2855a12cb5ab1d020f0036e2e2d3fc9b6e582

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/plugins/qtranslate/flags/gb.png HTTP/1.1
Host: www.museuolaria.pt
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.museuolaria.pt/programassea/portugues-programas-para-grupos/
Cookie: qtrans_cookie_test=qTranslate%20Cookie%20Test; qtrans_cookie_test=qTranslate%20Cookie%20Test
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Wed, 24 Apr 2024 14:09:59 GMT
Server: Apache
Last-Modified: Tue, 21 Jul 2015 11:02:20 GMT
ETag: "19c-51b60968a2700-gzip"
Accept-Ranges: bytes
Content-Type: image/png
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 435
Keep-Alive: timeout=15, max=99
Connection: Keep-Alive

www.museuolaria.pt/wp-content/plugins/qtranslate/flags/pt.png

89.115.244.164

200 OK

412 B

URL GET HTTP/1.1
www.museuolaria.pt/wp-content/plugins/qtranslate/flags/pt.png
IP
89.115.244.164:443
ASN
#12353 Vodafone Portugal - Communicacoes Pessoais S.A.

Requested by
https://www.museuolaria.pt/programassea/portugues-programas-para-grupos/
Certificate
IssuerLet's Encrypt
Subjectmuseuolaria.pt
Fingerprint8D:89:69:14:74:37:43:7B:59:C3:DC:DB:54:BC:68:FE:53:2A:6D:3A
ValidityThu, 11 Jan 2024 13:20:58 GMT - Wed, 10 Apr 2024 13:20:57 GMT

File type
PNG image data, 18 x 12, 8-bit/color RGB, non-interlaced
Size
412 B (412 bytes)
Hash
88bc22be7faf61bc8db3847637c5e3dc
81a290ae71d9abb58584a8531bf45584639e9884
98f69bf492b0bc367355ae10eb93ee7d720d0541a0b22af598fdc4908f36f543

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/plugins/qtranslate/flags/pt.png HTTP/1.1
Host: www.museuolaria.pt
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.museuolaria.pt/programassea/portugues-programas-para-grupos/
Cookie: qtrans_cookie_test=qTranslate%20Cookie%20Test; qtrans_cookie_test=qTranslate%20Cookie%20Test
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Wed, 24 Apr 2024 14:09:59 GMT
Server: Apache
Last-Modified: Tue, 21 Jul 2015 11:02:19 GMT
ETag: "185-51b60967ae4c0-gzip"
Accept-Ranges: bytes
Content-Type: image/png
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 412
Keep-Alive: timeout=15, max=98
Connection: Keep-Alive

www.museuolaria.pt/wp-content/themes/museuolaria/images/museu_olaria_barcelos_icon_colecaoonline.png

89.115.244.164

200 OK

498 B

URL GET HTTP/1.1
www.museuolaria.pt/wp-content/themes/museuolaria/images/museu_olaria_barcelos_icon_colecaoonline.png
IP
89.115.244.164:443
ASN
#12353 Vodafone Portugal - Communicacoes Pessoais S.A.

Requested by
https://www.museuolaria.pt/programassea/portugues-programas-para-grupos/
Certificate
IssuerLet's Encrypt
Subjectmuseuolaria.pt
Fingerprint8D:89:69:14:74:37:43:7B:59:C3:DC:DB:54:BC:68:FE:53:2A:6D:3A
ValidityThu, 11 Jan 2024 13:20:58 GMT - Wed, 10 Apr 2024 13:20:57 GMT

File type
PNG image data, 30 x 30, 8-bit/color RGBA, non-interlaced
Size
498 B (498 bytes)
Hash
c5768adcf7863a601192b1f960f73a36
d5df1db83f5e4012653c2143e2e0e8d093f62248
e1c93e0f6d2c9af5780159b1c262d5156422eac72e62b7863fae34b1af3fee87

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/themes/museuolaria/images/museu_olaria_barcelos_icon_colecaoonline.png HTTP/1.1
Host: www.museuolaria.pt
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.museuolaria.pt/wp-content/themes/museuolaria/style.css?ver=20221101
Cookie: qtrans_cookie_test=qTranslate%20Cookie%20Test; qtrans_cookie_test=qTranslate%20Cookie%20Test
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Wed, 24 Apr 2024 14:09:59 GMT
Server: Apache
Last-Modified: Tue, 21 Jul 2015 13:07:33 GMT
ETag: "1db-51b6256596f40-gzip"
Accept-Ranges: bytes
Content-Type: image/png
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 498
Keep-Alive: timeout=15, max=99
Connection: Keep-Alive

www.gstatic.com/recaptcha/releases/QoukH5jSO3sKFzVEA7Vc8VgC/recaptcha__en.js

142.250.74.35

200 OK

206 kB

URL GET HTTP/3
www.gstatic.com/recaptcha/releases/QoukH5jSO3sKFzVEA7Vc8VgC/recaptcha__en.js
IP
142.250.74.35:443
ASN
#15169 GOOGLE

Requested by
https://www.google.com/recaptcha/api2/webworker.js?hl=en&v=QoukH5jSO3sKFzVEA7Vc8VgC
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintF5:5C:D9:68:C6:5F:A3:33:5A:73:C3:79:B6:83:FE:44:2E:A4:83:74
ValidityMon, 18 Mar 2024 20:34:25 GMT - Mon, 10 Jun 2024 20:34:24 GMT

File type
JavaScript source, ASCII text, with very long lines (597)
Size
206 kB (206057 bytes)
Hash
8326c23d6b3eed35bc3e62f3294587fd
edda17e74e53e85073e5eac9cb6be2163dbfa23c
57f03d3ba66117edc152646341120dd3a1d7d71b9a98a3723af5a8ae61bcb3ab

HTTP Headers

GET /recaptcha/releases/QoukH5jSO3sKFzVEA7Vc8VgC/recaptcha__en.js HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.museuolaria.pt
DNT: 1
Connection: keep-alive
Referer: https://www.museuolaria.pt/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/recaptcha
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups; report-to="recaptcha"
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
content-length: 206057
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sun, 21 Apr 2024 20:38:39 GMT
expires: Mon, 21 Apr 2025 20:38:39 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 15 Apr 2024 02:01:04 GMT
content-type: text/javascript
vary: Accept-Encoding
age: 235880
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

www.museuolaria.pt/favicon.ico

89.115.244.164

200 OK

2.1 kB

URL GET HTTP/1.1
www.museuolaria.pt/favicon.ico
IP
89.115.244.164:443
ASN
#12353 Vodafone Portugal - Communicacoes Pessoais S.A.

Requested by
https://www.museuolaria.pt/programassea/portugues-programas-para-grupos/
Certificate
IssuerLet's Encrypt
Subjectmuseuolaria.pt
Fingerprint8D:89:69:14:74:37:43:7B:59:C3:DC:DB:54:BC:68:FE:53:2A:6D:3A
ValidityThu, 11 Jan 2024 13:20:58 GMT - Wed, 10 Apr 2024 13:20:57 GMT

File type
MS Windows icon resource - 1 icon, 48x48, 24 bits/pixel
Size
2.1 kB (2145 bytes)
Hash
40eb4ffd48c93baf112e066f62108616
c49fb3956c9c51ae645f6ddd567de0c02dca3db4
5b910f8369fc6cf04503c24748de67ce38b01d95acca02c730e47abca4226e76

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /favicon.ico HTTP/1.1
Host: www.museuolaria.pt
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.museuolaria.pt/programassea/portugues-programas-para-grupos/
Cookie: qtrans_cookie_test=qTranslate%20Cookie%20Test; qtrans_cookie_test=qTranslate%20Cookie%20Test
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Wed, 24 Apr 2024 14:09:59 GMT
Server: Apache
Last-Modified: Wed, 25 Oct 2023 05:03:07 GMT
ETag: "1cbe-608835ef338c0-gzip"
Accept-Ranges: bytes
Content-Type: image/vnd.microsoft.icon
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 2145
Keep-Alive: timeout=15, max=95
Connection: Keep-Alive

www.gstatic.com/recaptcha/releases/QoukH5jSO3sKFzVEA7Vc8VgC/styles__ltr.css

142.250.74.35

200 OK

25 kB

URL GET HTTP/3
www.gstatic.com/recaptcha/releases/QoukH5jSO3sKFzVEA7Vc8VgC/styles__ltr.css
IP
142.250.74.35:443
ASN
#15169 GOOGLE

Requested by
https://www.google.com/recaptcha/api2/anchor?ar=1&k=6LfMZIUUAAAAAB8Usnr4c71cZ3ha7JB9msvjHI8f&co=aHR0cHM6Ly93d3cubXVzZXVvbGFyaWEucHQ6NDQz&hl=en&v=QoukH5jSO3sKFzVEA7Vc8VgC&size=invisible&cb=qqwwxdxs8z2p
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintF5:5C:D9:68:C6:5F:A3:33:5A:73:C3:79:B6:83:FE:44:2E:A4:83:74
ValidityMon, 18 Mar 2024 20:34:25 GMT - Mon, 10 Jun 2024 20:34:24 GMT

File type
ASCII text, with very long lines (56412), with no line terminators
Size
25 kB (24617 bytes)
Hash
2c00b9f417b688224937053cd0c284a5
17b4c18ebc129055dd25f214c3f11e03e9df2d82
1e754b107428162c65a26d399b66db3daaea09616bf8620d9de4bc689ce48eed

HTTP Headers

GET /recaptcha/releases/QoukH5jSO3sKFzVEA7Vc8VgC/styles__ltr.css HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.google.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
accept-ranges: bytes
content-encoding: gzip
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/recaptcha
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups; report-to="recaptcha"
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
content-length: 24617
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sun, 21 Apr 2024 20:38:41 GMT
expires: Mon, 21 Apr 2025 20:38:41 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 15 Apr 2024 02:01:04 GMT
content-type: text/css
vary: Accept-Encoding
age: 235879
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

www.gstatic.com/recaptcha/releases/QoukH5jSO3sKFzVEA7Vc8VgC/recaptcha__en.js

142.250.74.35

200 OK

206 kB

URL GET HTTP/3
www.gstatic.com/recaptcha/releases/QoukH5jSO3sKFzVEA7Vc8VgC/recaptcha__en.js
IP
142.250.74.35:443
ASN
#15169 GOOGLE

Requested by
https://www.google.com/recaptcha/api2/webworker.js?hl=en&v=QoukH5jSO3sKFzVEA7Vc8VgC
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintF5:5C:D9:68:C6:5F:A3:33:5A:73:C3:79:B6:83:FE:44:2E:A4:83:74
ValidityMon, 18 Mar 2024 20:34:25 GMT - Mon, 10 Jun 2024 20:34:24 GMT

File type
JavaScript source, ASCII text, with very long lines (597)
Size
206 kB (206057 bytes)
Hash
8326c23d6b3eed35bc3e62f3294587fd
edda17e74e53e85073e5eac9cb6be2163dbfa23c
57f03d3ba66117edc152646341120dd3a1d7d71b9a98a3723af5a8ae61bcb3ab

HTTP Headers

GET /recaptcha/releases/QoukH5jSO3sKFzVEA7Vc8VgC/recaptcha__en.js HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.google.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
accept-ranges: bytes
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/recaptcha
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups; report-to="recaptcha"
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
content-length: 206057
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sun, 21 Apr 2024 20:38:39 GMT
expires: Mon, 21 Apr 2025 20:38:39 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 15 Apr 2024 02:01:04 GMT
content-type: text/javascript
vary: Accept-Encoding
age: 235881
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

fonts.gstatic.com/s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2

216.58.207.227

200 OK

15 kB

URL GET HTTP/2
fonts.gstatic.com/s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2
IP
216.58.207.227:443
ASN
#15169 GOOGLE

Requested by
https://www.google.com/recaptcha/api2/anchor?ar=1&k=6LfMZIUUAAAAAB8Usnr4c71cZ3ha7JB9msvjHI8f&co=aHR0cHM6Ly93d3cubXVzZXVvbGFyaWEucHQ6NDQz&hl=en&v=QoukH5jSO3sKFzVEA7Vc8VgC&size=invisible&cb=qqwwxdxs8z2p
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintF5:5C:D9:68:C6:5F:A3:33:5A:73:C3:79:B6:83:FE:44:2E:A4:83:74
ValidityMon, 18 Mar 2024 20:34:25 GMT - Mon, 10 Jun 2024 20:34:24 GMT

File type
Web Open Font Format (Version 2), TrueType, length 15344, version 1.0
Size
15 kB (15344 bytes)
Hash
5d4aeb4e5f5ef754e307d7ffaef688bd
06db651cdf354c64a7383ea9c77024ef4fb4cef8
3e253b66056519aa065b00a453bac37ac5ed8f3e6fe7b542e93a9dcdcc11d0bc

HTTP Headers

GET /s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.google.com
DNT: 1
Connection: keep-alive
Referer: https://www.google.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15344
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 18 Apr 2024 02:43:03 GMT
expires: Fri, 18 Apr 2025 02:43:03 GMT
cache-control: public, max-age=31536000
age: 559617
last-modified: Mon, 16 Oct 2017 17:32:55 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

fonts.gstatic.com/s/roboto/v18/KFOlCnqEu92Fr1MmEU9fBBc4.woff2

216.58.207.227

200 OK

16 kB

URL GET HTTP/2
fonts.gstatic.com/s/roboto/v18/KFOlCnqEu92Fr1MmEU9fBBc4.woff2
IP
216.58.207.227:443
ASN
#15169 GOOGLE

Requested by
https://www.google.com/recaptcha/api2/anchor?ar=1&k=6LfMZIUUAAAAAB8Usnr4c71cZ3ha7JB9msvjHI8f&co=aHR0cHM6Ly93d3cubXVzZXVvbGFyaWEucHQ6NDQz&hl=en&v=QoukH5jSO3sKFzVEA7Vc8VgC&size=invisible&cb=qqwwxdxs8z2p
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintF5:5C:D9:68:C6:5F:A3:33:5A:73:C3:79:B6:83:FE:44:2E:A4:83:74
ValidityMon, 18 Mar 2024 20:34:25 GMT - Mon, 10 Jun 2024 20:34:24 GMT

File type
Web Open Font Format (Version 2), TrueType, length 15552, version 1.0
Size
16 kB (15552 bytes)
Hash
285467176f7fe6bb6a9c6873b3dad2cc
ea04e4ff5142ddd69307c183def721a160e0a64e
5a8c1e7681318caa29e9f44e8a6e271f6a4067a2703e9916dfd4fe9099241db7

HTTP Headers

GET /s/roboto/v18/KFOlCnqEu92Fr1MmEU9fBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.google.com
DNT: 1
Connection: keep-alive
Referer: https://www.google.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15552
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 18 Apr 2024 17:25:07 GMT
expires: Fri, 18 Apr 2025 17:25:07 GMT
cache-control: public, max-age=31536000
age: 506693
last-modified: Mon, 16 Oct 2017 17:33:02 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

www.google.com/recaptcha/api2/webworker.js?hl=en&v=QoukH5jSO3sKFzVEA7Vc8VgC

142.250.74.100

200 OK

7.6 kB

URL GET HTTP/3
www.google.com/recaptcha/api2/webworker.js?hl=en&v=QoukH5jSO3sKFzVEA7Vc8VgC
IP
142.250.74.100:443
ASN
#15169 GOOGLE

Requested by
https://www.google.com/recaptcha/api2/anchor?ar=1&k=6LfMZIUUAAAAAB8Usnr4c71cZ3ha7JB9msvjHI8f&co=aHR0cHM6Ly93d3cubXVzZXVvbGFyaWEucHQ6NDQz&hl=en&v=QoukH5jSO3sKFzVEA7Vc8VgC&size=invisible&cb=qqwwxdxs8z2p
Certificate
IssuerGoogle Trust Services LLC
Subject*.google.com
Fingerprint70:CC:1A:8A:58:6C:1F:6D:43:AE:66:75:89:F7:99:7B:BC:7A:74:2D
ValidityMon, 18 Mar 2024 19:37:19 GMT - Mon, 10 Jun 2024 19:37:18 GMT

File type
gzip compressed data
Size
7.6 kB (7559 bytes)
Hash
7ebe198d74ab4c76d01db0376ae50416
70233803eff7de6654abdd0f8b7eab3664cb3f42
dc6aac40a1c9c56780c4f0171a79ed6f2a65341b3155edbc0adeaea89ca7f8a3

HTTP Headers

GET /recaptcha/api2/webworker.js?hl=en&v=QoukH5jSO3sKFzVEA7Vc8VgC HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.google.com/recaptcha/api2/anchor?ar=1&k=6LfMZIUUAAAAAB8Usnr4c71cZ3ha7JB9msvjHI8f&co=aHR0cHM6Ly93d3cubXVzZXVvbGFyaWEucHQ6NDQz&hl=en&v=QoukH5jSO3sKFzVEA7Vc8VgC&size=invisible&cb=qqwwxdxs8z2p
Sec-Fetch-Dest: worker
Sec-Fetch-Mode: same-origin
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
content-type: text/javascript; charset=utf-8
cross-origin-embedder-policy: require-corp
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
expires: Wed, 24 Apr 2024 14:10:00 GMT
date: Wed, 24 Apr 2024 14:10:00 GMT
cache-control: private, max-age=300
content-encoding: gzip
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
content-security-policy: frame-ancestors 'self'
x-xss-protection: 1; mode=block
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

www.gstatic.com/recaptcha/api2/logo_48.png

142.250.74.35

200 OK

2.2 kB

URL GET HTTP/3
www.gstatic.com/recaptcha/api2/logo_48.png
IP
142.250.74.35:443
ASN
#15169 GOOGLE

Requested by
https://www.google.com/recaptcha/api2/anchor?ar=1&k=6LfMZIUUAAAAAB8Usnr4c71cZ3ha7JB9msvjHI8f&co=aHR0cHM6Ly93d3cubXVzZXVvbGFyaWEucHQ6NDQz&hl=en&v=QoukH5jSO3sKFzVEA7Vc8VgC&size=invisible&cb=qqwwxdxs8z2p
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintF5:5C:D9:68:C6:5F:A3:33:5A:73:C3:79:B6:83:FE:44:2E:A4:83:74
ValidityMon, 18 Mar 2024 20:34:25 GMT - Mon, 10 Jun 2024 20:34:24 GMT

File type
PNG image data, 48 x 48, 8-bit/color RGBA, non-interlaced
Size
2.2 kB (2228 bytes)
Hash
ef9941290c50cd3866e2ba6b793f010d
4736508c795667dcea21f8d864233031223b7832
1b9efb22c938500971aac2b2130a475fa23684dd69e43103894968df83145b8a

HTTP Headers

GET /recaptcha/api2/logo_48.png HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.gstatic.com/recaptcha/releases/QoukH5jSO3sKFzVEA7Vc8VgC/styles__ltr.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
accept-ranges: bytes
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/recaptcha
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups; report-to="recaptcha"
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
content-length: 2228
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 18 Apr 2024 02:54:07 GMT
expires: Thu, 25 Apr 2024 02:54:07 GMT
cache-control: public, max-age=604800
age: 558953
last-modified: Tue, 03 Mar 2020 20:15:00 GMT
content-type: image/png
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

www.gstatic.com/recaptcha/releases/QoukH5jSO3sKFzVEA7Vc8VgC/recaptcha__en.js

142.250.74.35

200 OK

206 kB

URL GET HTTP/3
www.gstatic.com/recaptcha/releases/QoukH5jSO3sKFzVEA7Vc8VgC/recaptcha__en.js
IP
142.250.74.35:443
ASN
#15169 GOOGLE

Requested by
https://www.google.com/recaptcha/api2/webworker.js?hl=en&v=QoukH5jSO3sKFzVEA7Vc8VgC
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintF5:5C:D9:68:C6:5F:A3:33:5A:73:C3:79:B6:83:FE:44:2E:A4:83:74
ValidityMon, 18 Mar 2024 20:34:25 GMT - Mon, 10 Jun 2024 20:34:24 GMT

File type
JavaScript source, ASCII text, with very long lines (597)
Size
206 kB (206057 bytes)
Hash
8326c23d6b3eed35bc3e62f3294587fd
edda17e74e53e85073e5eac9cb6be2163dbfa23c
57f03d3ba66117edc152646341120dd3a1d7d71b9a98a3723af5a8ae61bcb3ab

HTTP Headers

GET /recaptcha/releases/QoukH5jSO3sKFzVEA7Vc8VgC/recaptcha__en.js HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.google.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
accept-ranges: bytes
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/recaptcha
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups; report-to="recaptcha"
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
content-length: 206057
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sun, 21 Apr 2024 20:38:39 GMT
expires: Mon, 21 Apr 2025 20:38:39 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 15 Apr 2024 02:01:04 GMT
content-type: text/javascript
vary: Accept-Encoding
age: 235881
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

www.google.com/recaptcha/api2/clr?k=6LfMZIUUAAAAAB8Usnr4c71cZ3ha7JB9msvjHI8f

142.250.74.100

200 OK

0 B

URL POST HTTP/3
www.google.com/recaptcha/api2/clr?k=6LfMZIUUAAAAAB8Usnr4c71cZ3ha7JB9msvjHI8f
IP
142.250.74.100:443
ASN
#15169 GOOGLE

Requested by
https://www.google.com/recaptcha/api2/anchor?ar=1&k=6LfMZIUUAAAAAB8Usnr4c71cZ3ha7JB9msvjHI8f&co=aHR0cHM6Ly93d3cubXVzZXVvbGFyaWEucHQ6NDQz&hl=en&v=QoukH5jSO3sKFzVEA7Vc8VgC&size=invisible&cb=qqwwxdxs8z2p
Certificate
IssuerGoogle Trust Services LLC
Subject*.google.com
Fingerprint70:CC:1A:8A:58:6C:1F:6D:43:AE:66:75:89:F7:99:7B:BC:7A:74:2D
ValidityMon, 18 Mar 2024 19:37:19 GMT - Mon, 10 Jun 2024 19:37:18 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

POST /recaptcha/api2/clr?k=6LfMZIUUAAAAAB8Usnr4c71cZ3ha7JB9msvjHI8f HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-protobuf
Content-Length: 1479
Origin: https://www.google.com
DNT: 1
Connection: keep-alive
Referer: https://www.google.com/recaptcha/api2/anchor?ar=1&k=6LfMZIUUAAAAAB8Usnr4c71cZ3ha7JB9msvjHI8f&co=aHR0cHM6Ly93d3cubXVzZXVvbGFyaWEucHQ6NDQz&hl=en&v=QoukH5jSO3sKFzVEA7Vc8VgC&size=invisible&cb=qqwwxdxs8z2p
Cookie: _GRECAPTCHA=09AKPP-6fOc5rdu1jlL52cQFs-t1wp8H9DcMomBVbrsXEKE2P_Cul0YIE1ECodZLDuIy9NN5r3vdUpazxh7LIR4z8
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
content-type: application/binary
date: Wed, 24 Apr 2024 14:10:01 GMT
expires: Wed, 24 Apr 2024 14:10:01 GMT
cache-control: private, max-age=0
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
content-security-policy: frame-ancestors 'self'
x-xss-protection: 1; mode=block
content-length: 0
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

www.google.com/recaptcha/api.js?render=6LfMZIUUAAAAAB8Usnr4c71cZ3ha7JB9msvjHI8f&ver=3.0

142.250.74.100

200 OK

884 B

URL GET HTTP/2
www.google.com/recaptcha/api.js?render=6LfMZIUUAAAAAB8Usnr4c71cZ3ha7JB9msvjHI8f&ver=3.0
IP
142.250.74.100:443
ASN
#15169 GOOGLE

Requested by
https://www.museuolaria.pt/programassea/portugues-programas-para-grupos/
Certificate
IssuerGoogle Trust Services LLC
Subjectwww.google.com
FingerprintCD:48:2A:0C:60:1D:37:5A:D4:D5:A9:F7:DE:A0:2B:5E:2F:29:76:73
ValidityMon, 18 Mar 2024 20:38:49 GMT - Mon, 10 Jun 2024 20:38:48 GMT

File type
JavaScript source, ASCII text, with very long lines (884), with no line terminators
Size
884 B (884 bytes)
Hash
489157ffe45aace75120f1e72ae2c65b
c27bba0c84a68ab148ba7d35089144d6ed5f06c8
55df9d40bc1cfd10b4e239d24eaeebda58d1e32a66574c08d09606157bc5dd61

HTTP Headers

GET /recaptcha/api.js?render=6LfMZIUUAAAAAB8Usnr4c71cZ3ha7JB9msvjHI8f&ver=3.0 HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.museuolaria.pt/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: text/javascript; charset=utf-8
expires: Wed, 24 Apr 2024 14:09:56 GMT
date: Wed, 24 Apr 2024 14:09:56 GMT
cache-control: private, max-age=300
cross-origin-resource-policy: cross-origin
content-encoding: gzip
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
content-security-policy: frame-ancestors 'self'
x-xss-protection: 1; mode=block
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

fonts.googleapis.com/css?family=Lato%3A300%2C400%2C700%2C900%2C300italic%2C400italic%2C700italic&subset=latin%2Clatin-ext&display=fallback

142.250.74.106

200 OK

5.4 kB

URL GET HTTP/2
fonts.googleapis.com/css?family=Lato%3A300%2C400%2C700%2C900%2C300italic%2C400italic%2C700italic&subset=latin%2Clatin-ext&display=fallback
IP
142.250.74.106:443
ASN
#15169 GOOGLE

Requested by
https://www.museuolaria.pt/programassea/portugues-programas-para-grupos/
Certificate
IssuerGoogle Trust Services LLC
Subjectupload.video.google.com
Fingerprint15:CB:F7:AC:18:3F:DC:1E:F9:4E:94:D1:98:40:40:61:53:17:28:F2
ValidityMon, 18 Mar 2024 20:35:28 GMT - Mon, 10 Jun 2024 20:35:27 GMT

File type
ASCII text, with very long lines (5564), with no line terminators
Size
5.4 kB (5438 bytes)
Hash
6b76c516f58f612b2bbbb150005d4e38
943556fd803dd5179af64a89f5c30424cb564137
2fef26b75635563729c4b33e3268f4400908c73e8f02b6cc2b3c16ad3d7a3411

HTTP Headers

GET /css?family=Lato%3A300%2C400%2C700%2C900%2C300italic%2C400italic%2C700italic&subset=latin%2Clatin-ext&display=fallback HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.museuolaria.pt/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Wed, 24 Apr 2024 14:09:56 GMT
date: Wed, 24 Apr 2024 14:09:56 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

www.google.com/js/bg/Y9LiaqaJM7rIBAUMTg8Ck_H5fpJ61Keayeag6LMQ-3c.js

142.250.74.100

200 OK

18 kB

URL GET HTTP/3
www.google.com/js/bg/Y9LiaqaJM7rIBAUMTg8Ck_H5fpJ61Keayeag6LMQ-3c.js
IP
142.250.74.100:443
ASN
#15169 GOOGLE

Requested by
https://www.google.com/recaptcha/api2/anchor?ar=1&k=6LfMZIUUAAAAAB8Usnr4c71cZ3ha7JB9msvjHI8f&co=aHR0cHM6Ly93d3cubXVzZXVvbGFyaWEucHQ6NDQz&hl=en&v=QoukH5jSO3sKFzVEA7Vc8VgC&size=invisible&cb=qqwwxdxs8z2p
Certificate
IssuerGoogle Trust Services LLC
Subject*.google.com
Fingerprint70:CC:1A:8A:58:6C:1F:6D:43:AE:66:75:89:F7:99:7B:BC:7A:74:2D
ValidityMon, 18 Mar 2024 19:37:19 GMT - Mon, 10 Jun 2024 19:37:18 GMT

File type
JavaScript source, ASCII text, with very long lines (17602)
Size
18 kB (18197 bytes)
Hash
a881e4c268e13ad20405ae80fca4c36b
dee477906e2c92b4c7747029a2409069b9b676ad
63d2e26aa68933bac804050c4e0f0293f1f97e927ad4a79ac9e6a0e8b310fb77

HTTP Headers

GET /js/bg/Y9LiaqaJM7rIBAUMTg8Ck_H5fpJ61Keayeag6LMQ-3c.js HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.google.com/recaptcha/api2/anchor?ar=1&k=6LfMZIUUAAAAAB8Usnr4c71cZ3ha7JB9msvjHI8f&co=aHR0cHM6Ly93d3cubXVzZXVvbGFyaWEucHQ6NDQz&hl=en&v=QoukH5jSO3sKFzVEA7Vc8VgC&size=invisible&cb=qqwwxdxs8z2p
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
accept-ranges: bytes
content-encoding: br
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/botguard-scs
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="botguard-scs"
report-to: {"group":"botguard-scs","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/botguard-scs"}]}
content-length: 7447
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 24 Apr 2024 05:05:57 GMT
expires: Thu, 24 Apr 2025 05:05:57 GMT
cache-control: public, max-age=31536000
age: 32643
last-modified: Tue, 16 Apr 2024 13:30:00 GMT
content-type: text/javascript
vary: Accept-Encoding
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

www.google.com/recaptcha/api2/reload?k=6LfMZIUUAAAAAB8Usnr4c71cZ3ha7JB9msvjHI8f

142.250.74.100

200 OK

12 kB

URL POST HTTP/3
www.google.com/recaptcha/api2/reload?k=6LfMZIUUAAAAAB8Usnr4c71cZ3ha7JB9msvjHI8f
IP
142.250.74.100:443
ASN
#15169 GOOGLE

Requested by
https://www.google.com/recaptcha/api2/anchor?ar=1&k=6LfMZIUUAAAAAB8Usnr4c71cZ3ha7JB9msvjHI8f&co=aHR0cHM6Ly93d3cubXVzZXVvbGFyaWEucHQ6NDQz&hl=en&v=QoukH5jSO3sKFzVEA7Vc8VgC&size=invisible&cb=qqwwxdxs8z2p
Certificate
IssuerGoogle Trust Services LLC
Subject*.google.com
Fingerprint70:CC:1A:8A:58:6C:1F:6D:43:AE:66:75:89:F7:99:7B:BC:7A:74:2D
ValidityMon, 18 Mar 2024 19:37:19 GMT - Mon, 10 Jun 2024 19:37:18 GMT

File type
ASCII text, with very long lines (12413)
Size
12 kB (12418 bytes)
Hash
4784b72e68c5c49d54d1c323360938bd
762dd8012808061aa01b7cff612c6de36d70e7d1
1d62e7398589bb349ba7fe8efe2cfc0694b754e2d2b1eae17128fdb823c7108b

HTTP Headers

POST /recaptcha/api2/reload?k=6LfMZIUUAAAAAB8Usnr4c71cZ3ha7JB9msvjHI8f HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-protobuffer
Content-Length: 6574
Origin: https://www.google.com
DNT: 1
Connection: keep-alive
Referer: https://www.google.com/recaptcha/api2/anchor?ar=1&k=6LfMZIUUAAAAAB8Usnr4c71cZ3ha7JB9msvjHI8f&co=aHR0cHM6Ly93d3cubXVzZXVvbGFyaWEucHQ6NDQz&hl=en&v=QoukH5jSO3sKFzVEA7Vc8VgC&size=invisible&cb=qqwwxdxs8z2p
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
content-type: application/json; charset=utf-8
content-encoding: gzip
date: Wed, 24 Apr 2024 14:10:01 GMT
expires: Wed, 24 Apr 2024 14:10:01 GMT
cache-control: private, max-age=0
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
content-security-policy: frame-ancestors 'self'
x-xss-protection: 1; mode=block
server: GSE
set-cookie: _GRECAPTCHA=09AKPP-6fOc5rdu1jlL52cQFs-t1wp8H9DcMomBVbrsXEKE2P_Cul0YIE1ECodZLDuIy9NN5r3vdUpazxh7LIR4z8;Path=/recaptcha;Expires=Mon, 21-Oct-2024 14:10:01 GMT;Secure;HttpOnly;Priority=HIGH;SameSite=none
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

www.google.com/recaptcha/api2/anchor?ar=1&k=6LfMZIUUAAAAAB8Usnr4c71cZ3ha7JB9msvjHI8f&co=aHR0cHM6Ly93d3cubXVzZXVvbGFyaWEucHQ6NDQz&hl=en&v=QoukH5jSO3sKFzVEA7Vc8VgC&size=invisible&cb=qqwwxdxs8z2p

142.250.74.100

200 OK

45 kB

URL GET HTTP/3
www.google.com/recaptcha/api2/anchor?ar=1&k=6LfMZIUUAAAAAB8Usnr4c71cZ3ha7JB9msvjHI8f&co=aHR0cHM6Ly93d3cubXVzZXVvbGFyaWEucHQ6NDQz&hl=en&v=QoukH5jSO3sKFzVEA7Vc8VgC&size=invisible&cb=qqwwxdxs8z2p
IP
142.250.74.100:443
ASN
#15169 GOOGLE

Requested by
https://www.museuolaria.pt/programassea/portugues-programas-para-grupos/
Certificate
IssuerGoogle Trust Services LLC
Subject*.google.com
Fingerprint70:CC:1A:8A:58:6C:1F:6D:43:AE:66:75:89:F7:99:7B:BC:7A:74:2D
ValidityMon, 18 Mar 2024 19:37:19 GMT - Mon, 10 Jun 2024 19:37:18 GMT

File type
HTML document, ASCII text, with very long lines (35976)
Size
45 kB (44681 bytes)
Hash
2c81c1b2f39c16431c43237cef0c6f03
be1e42162d9adc7a1a8bd26ca33cf283a6ba058e
46f1cef1804fe350364d5b86bd8670a65842f409709f175e803fc1d2bc4a126e

HTTP Headers

GET /recaptcha/api2/anchor?ar=1&k=6LfMZIUUAAAAAB8Usnr4c71cZ3ha7JB9msvjHI8f&co=aHR0cHM6Ly93d3cubXVzZXVvbGFyaWEucHQ6NDQz&hl=en&v=QoukH5jSO3sKFzVEA7Vc8VgC&size=invisible&cb=qqwwxdxs8z2p HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.museuolaria.pt/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
content-type: text/html; charset=utf-8
cross-origin-resource-policy: cross-origin
cross-origin-embedder-policy: require-corp
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Wed, 24 Apr 2024 14:09:59 GMT
content-security-policy: script-src 'nonce-IuZbqcfupKSa3Yq3h9E4KA' 'unsafe-inline' 'strict-dynamic' https: http: 'unsafe-eval';object-src 'none';base-uri 'self';report-uri https://csp.withgoogle.com/csp/recaptcha/1
content-encoding: gzip
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

fonts.googleapis.com/css?family=Lato

142.250.74.106

200 OK

717 B

URL GET HTTP/2
fonts.googleapis.com/css?family=Lato
IP
142.250.74.106:443
ASN
#15169 GOOGLE

Requested by
https://www.museuolaria.pt/programassea/portugues-programas-para-grupos/
Certificate
IssuerGoogle Trust Services LLC
Subjectupload.video.google.com
Fingerprint15:CB:F7:AC:18:3F:DC:1E:F9:4E:94:D1:98:40:40:61:53:17:28:F2
ValidityMon, 18 Mar 2024 20:35:28 GMT - Mon, 10 Jun 2024 20:35:27 GMT

File type
ASCII text, with very long lines (733), with no line terminators
Size
717 B (717 bytes)
Hash
c9c62a38769c1a58126a2f8fa7f66d66
08590fc53991e4690ec26e433dcd606675acabad
2030b72bdbbd77f2a506d3860622158b427d727086ca5a4cf774830152fe64aa

HTTP Headers

GET /css?family=Lato HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.museuolaria.pt/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Wed, 24 Apr 2024 14:09:56 GMT
date: Wed, 24 Apr 2024 14:09:56 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

Public InfoSec YARA rules

OpenPhish

PhishTank

mnemonic secure dns

Quad9 DNS

ThreatFox

JavaScript (26)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML