Report - covid19.pt/

Report Overview

Visited public
2023-12-09 01:50:38
Tags
URL
covid19.pt/
Finishing URL
covid19.pt/
IP / ASN
94.76.230.125
#29550 Simply Transit Ltd
Title
Covid-19

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Domain / FQDN	Rank	Registered	First Seen	Last Seen	Sent	Received	IP
mfmc.pt	unknown	2012-05-01	2016-07-02 06:19:35	2023-12-03 02:32:13	855 B	86 kB	94.76.230.125
fonts.gstatic.com	unknown	2008-02-11	2014-09-09 02:40:21	2023-12-08 07:46:22	566 B	20 kB	216.58.207.227
fonts.googleapis.com	8877	2005-01-25	2013-06-10 22:14:26	2023-12-08 07:43:19	451 B	3.7 kB	142.250.74.106
ajax.googleapis.com	12905	2005-01-25	2013-08-16 11:51:31	2023-12-08 08:34:59	876 B	116 kB	172.217.21.170
i.imgur.com	5110	2009-01-09	2012-05-21 10:09:36	2023-12-08 18:20:10	439 B	5.1 kB	151.101.244.193
covid19.pt	unknown	2020-02-24	2020-02-27 11:02:46	2023-10-31 02:47:08	14 kB	959 kB	94.76.230.125

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Timestamp	Severity	Source IP	Destination IP	Alert
2023-12-09 01:50:26	medium	Client IP	Internal IP	ET HUNTING Suspicious Domain Request for Possible COVID-19 Domain M1
2023-12-09 01:50:26	medium	Client IP	Internal IP	ET HUNTING Suspicious Domain Request for Possible COVID-19 Domain M1
2023-12-09 01:50:26	medium	Client IP	Internal IP	ET HUNTING Suspicious Domain Request for Possible COVID-19 Domain M1
2023-12-09 01:50:26	medium	Client IP	Internal IP	ET HUNTING Suspicious Domain Request for Possible COVID-19 Domain M1
2023-12-09 01:50:26	medium	Client IP	94.76.230.125	ET HUNTING Suspicious TLS SNI Request for Possible COVID-19 Domain M1
2023-12-09 01:50:26	medium	Client IP	Internal IP	ET HUNTING Suspicious Domain Request for Possible COVID-19 Domain M1
2023-12-09 01:50:26	medium	Client IP	Internal IP	ET HUNTING Suspicious Domain Request for Possible COVID-19 Domain M1
2023-12-09 01:50:26	medium	Client IP	Internal IP	ET HUNTING Suspicious Domain Request for Possible COVID-19 Domain M1
2023-12-09 01:50:26	medium	Client IP	Internal IP	ET HUNTING Suspicious Domain Request for Possible COVID-19 Domain M1
2023-12-09 01:50:26	medium	Client IP	Internal IP	ET HUNTING Suspicious Domain Request for Possible COVID-19 Domain M1
2023-12-09 01:50:26	medium	Client IP	Internal IP	ET HUNTING Suspicious Domain Request for Possible COVID-19 Domain M1
2023-12-09 01:50:26	medium	Client IP	Internal IP	ET HUNTING Suspicious Domain Request for Possible COVID-19 Domain M1
2023-12-09 01:50:26	medium	Client IP	Internal IP	ET HUNTING Suspicious Domain Request for Possible COVID-19 Domain M1
2023-12-09 01:50:26	medium	Client IP	Internal IP	ET HUNTING Suspicious Domain Request for Possible COVID-19 Domain M1
2023-12-09 01:50:26	medium	Client IP	Internal IP	ET HUNTING Suspicious Domain Request for Possible COVID-19 Domain M1
2023-12-09 01:50:26	medium	Client IP	Internal IP	ET HUNTING Suspicious Domain Request for Possible COVID-19 Domain M1
2023-12-09 01:50:26	medium	Client IP	Internal IP	ET HUNTING Suspicious Domain Request for Possible COVID-19 Domain M1
2023-12-09 01:50:27	medium	Client IP	Internal IP	ET HUNTING Suspicious Domain Request for Possible COVID-19 Domain M1
2023-12-09 01:50:27	medium	Client IP	Internal IP	ET HUNTING Suspicious Domain Request for Possible COVID-19 Domain M1
2023-12-09 01:50:27	medium	Client IP	Internal IP	ET HUNTING Suspicious Domain Request for Possible COVID-19 Domain M1
2023-12-09 01:50:27	medium	Client IP	Internal IP	ET HUNTING Suspicious Domain Request for Possible COVID-19 Domain M1
2023-12-09 01:50:27	medium	Client IP	Internal IP	ET HUNTING Suspicious Domain Request for Possible COVID-19 Domain M1
2023-12-09 01:50:27	medium	Client IP	Internal IP	ET HUNTING Suspicious Domain Request for Possible COVID-19 Domain M1

Threat Detection Systems

Public InfoSec YARA rules

No alerts detected

OpenPhish

No alerts detected

PhishTank

No alerts detected

mnemonic secure dns

No alerts detected

Quad9 DNS

No alerts detected

ThreatFox

No alerts detected

JavaScript (12)

	URL	From	Size	First Seen	Last Seen
	ajax.googleapis.com/ajax/libs/jquery/3.4.1/jquery.min.js	ScriptElement	88 kB	2023-03-07	2025-05-09
Pretty URL ajax.googleapis.com/ajax/libs/jquery/3.4.1/jquery.min.js IP 172.217.21.170 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02 Last Seen2025-05-09 12:23 Times Seen68114 Hash 220afd743d9e9643852e31a135a9f3ae 88523924351bac0b5d560fe0c5781e2556e7693d 0925e8ad7bd971391a8b1e98be8e87a6971919eb5b60c196485941c3c1df089a Loading...

	covid19.pt/Themes/default/scripts/script.js?fin20	ScriptElement	48 kB	2023-03-07	2025-01-28
Pretty URL covid19.pt/Themes/default/scripts/script.js?fin20 IP 94.76.230.125 ASN #29550 Simply Transit Ltd Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:55 Last Seen2025-01-28 09:42 Times Seen18 Hash e966171b7a873abdf5f1b0632f6e5e67 817ac462061baeea418750c357515e1c80cc2715 8766cade8e2b3c821d786954b01dc5a2e74a2e1cecf01c19158e3715249fe152 Loading...

	covid19.pt/Themes/MaviTheme/scripts/theme.js?fin20	ScriptElement	11 kB	2023-03-11	2024-08-29
Pretty URL covid19.pt/Themes/MaviTheme/scripts/theme.js?fin20 IP 94.76.230.125 ASN #29550 Simply Transit Ltd Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-11 10:02 Last Seen2024-08-29 18:12 Times Seen5 Hash 3f1e665d2d1ee51f0d2207e12b8f0de9 000b2b15487582ce369b9cccdbcf488384732ade bdc4ef08557eceda4c7a75aa1f3f6ad4f6eba74eaf50717b4d3465cd411ac78b Loading...

	covid19.pt/	ScriptElement	836 B	2024-08-20	2024-08-20
Pretty URL covid19.pt/ IP 94.76.230.125 ASN #29550 Simply Transit Ltd Introduced by scriptElement Embedded in HTML true Observations First Seen2024-08-20 16:18 Last Seen2024-08-20 16:18 Times Seen1 Hash 6374695e05ecc89c8ef75d7345b49be3 e261ccd9247ac33606fbc21984aa7616b6c3af64 1da516caebb2c9ee72bd69f3e3fd2a0807522d1d4ec161ba4a35568c44390398 Loading...

	covid19.pt/sachat/index.php?action=body	ScriptElement	5.6 kB	2023-03-11	2024-08-29
Pretty URL covid19.pt/sachat/index.php?action=body IP 94.76.230.125 ASN #29550 Simply Transit Ltd Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-11 10:02 Last Seen2024-08-29 18:12 Times Seen5 Hash 55aa8e2f38cd095cb1da22d78cfa1c65 4dcd0c8624ef9e46062c4a944e8bf5641f04c8ed 36b390c5bd416532f5bcad57ff265e8a23ba48b93fbe8619b6d416c104720975 Loading...

	ajax.googleapis.com/ajax/libs/jquery/2.0.3/jquery.min.js	ScriptElement	84 kB	2023-03-07	2025-05-08
Pretty URL ajax.googleapis.com/ajax/libs/jquery/2.0.3/jquery.min.js IP 172.217.21.170 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:16 Last Seen2025-05-08 12:28 Times Seen1871 Hash ccd0edd113b78697e04fb5c1b519a5cd a6eedf84389e1bc9f757bc2d19538f8c8d1cae9d a57b5242b9a9adc4c1ef846c365147b89c472b9cd770face331efcb965346b25 Loading...

	covid19.pt/Themes/MaviTheme/scripts/bootstrap.min.js	ScriptElement	90 kB	2023-03-11	2024-08-29
Pretty URL covid19.pt/Themes/MaviTheme/scripts/bootstrap.min.js IP 94.76.230.125 ASN #29550 Simply Transit Ltd Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-11 10:02 Last Seen2024-08-29 18:12 Times Seen5 Hash 09536cb8354a674fe2cd8736d89cf192 ba10e09f681b5148013e7038a8001982c8f14a38 d264f8cf8f205856ea22137668f060feb16619d4c6b7bf3ed49cf5029d8c3310 Loading...

	covid19.pt/Themes/MaviTheme/scripts/fontawesome.min.js	ScriptElement	37 kB	2023-03-07	2025-04-04
Pretty URL covid19.pt/Themes/MaviTheme/scripts/fontawesome.min.js IP 94.76.230.125 ASN #29550 Simply Transit Ltd Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 14:17 Last Seen2025-04-04 12:59 Times Seen9 Hash 9527114fc52c2e4b02d52691284c2883 ec88d10eff795d5c4cabe7efa7a515b5ae3a2b83 34ff4dba3744cd2e66e19c6f36a91c6f1c87074753472f611b5dd1c135411b0a Loading...

	covid19.pt/sachat/index.php?action=head	ScriptElement	133 kB	2023-03-11	2024-08-29
Pretty URL covid19.pt/sachat/index.php?action=head IP 94.76.230.125 ASN #29550 Simply Transit Ltd Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-11 10:02 Last Seen2024-08-29 18:12 Times Seen5 Hash ab42b3e5236ab4e0173f2511b951a51c 39390a196b30e79caae31302c421f0d09445a189 7966512d7424ae7ae6f576db586d75e2734a7a1de88dcc784066839b2ad9332b Loading...

	covid19.pt/	ScriptElement	3.4 kB	2023-03-11	2024-08-29
Pretty URL covid19.pt/ IP 94.76.230.125 ASN #29550 Simply Transit Ltd Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-11 10:02 Last Seen2024-08-29 18:12 Times Seen5 Hash 40118a906f7e250d3e1888cda66f12be de28054babc1ae1e59f87394d5932d7ac0b2209d 61f5cfba7db8d698846a0dd43ac9fc9bb073e9e55adb808ea2c98f3bae6ae74c Loading...

	covid19.pt/Themes/default/scripts/sha1.js	ScriptElement	5.5 kB	2023-03-07	2025-04-16
Pretty URL covid19.pt/Themes/default/scripts/sha1.js IP 94.76.230.125 ASN #29550 Simply Transit Ltd Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:21 Last Seen2025-04-16 02:47 Times Seen65 Hash e83257a6ddccc609576df4b4a0f4fb6c df36bedcbb5ddd01fc3442af5f39cbf594d64763 9d730e49718696077087b318c7cb20d0e97164ffacf3bd5d5f99c6763eaa39c6 Loading...

	covid19.pt/Themes/default/scripts/LikePosts/LikePosts.min.js	ScriptElement	20 kB	2023-03-11	2024-12-18
Pretty URL covid19.pt/Themes/default/scripts/LikePosts/LikePosts.min.js IP 94.76.230.125 ASN #29550 Simply Transit Ltd Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-11 10:02 Last Seen2024-12-18 07:12 Times Seen8 Hash f7b357b5d3e27427b82222aaef9f7d98 793fd65eb5a6d5b0c9e78f448511882cbc62c686 0e9fe5a4ab55e14aa6a4c61e0bb314850a42a24cd8494379e4f2a4e8aeb3a145 Loading...

HTTP Transactions (34)

	URL	IP	Response	Size
	ajax.googleapis.com/ajax/libs/jquery/3.4.1/jquery.min.js	172.217.21.170	200 OK	31 kB
URL GET HTTP/2 ajax.googleapis.com/ajax/libs/jquery/3.4.1/jquery.min.js IP 172.217.21.170:443 ASN #15169 GOOGLE Requested by https://covid19.pt/ Certificate IssuerGoogle Trust Services LLC Subjectupload.video.google.com Fingerprint10:D0:ED:9A:F4:53:C8:99:DE:B6:5E:5C:04:E6:20:0B:68:7D:46:EC ValidityMon, 20 Nov 2023 08:08:50 GMT - Mon, 12 Feb 2024 08:08:49 GMT File type ASCII text, with very long lines (65451) Size 31 kB (30774 bytes) Hash 220afd743d9e9643852e31a135a9f3ae 88523924351bac0b5d560fe0c5781e2556e7693d 0925e8ad7bd971391a8b1e98be8e87a6971919eb5b60c196485941c3c1df089a HTTP Headers `GET /ajax/libs/jquery/3.4.1/jquery.min.js HTTP/1.1 Host: ajax.googleapis.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://covid19.pt/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` HTTP/2 200 OK accept-ranges: bytes content-encoding: gzip access-control-allow-origin: * content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/hosted-libraries-pushers cross-origin-resource-policy: cross-origin cross-origin-opener-policy: same-origin; report-to="hosted-libraries-pushers" report-to: {"group":"hosted-libraries-pushers","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/hosted-libraries-pushers"}]} timing-allow-origin: * content-length: 30774 x-content-type-options: nosniff server: sffe x-xss-protection: 0 date: Thu, 07 Dec 2023 15:45:01 GMT expires: Fri, 06 Dec 2024 15:45:01 GMT cache-control: public, max-age=31536000, stale-while-revalidate=2592000 last-modified: Mon, 13 May 2019 14:37:17 GMT content-type: text/javascript; charset=UTF-8 vary: Accept-Encoding age: 122719 alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000 X-Firefox-Spdy: h2

	i.imgur.com/ryESuZ5.png	151.101.244.193	200 OK	4.5 kB
URL GET HTTP/2 i.imgur.com/ryESuZ5.png IP 151.101.244.193:443 ASN #54113 FASTLY Requested by https://covid19.pt/ Certificate IssuerSectigo Limited Subject.imgur.com FingerprintD6:4D:45:03:6D:38:F8:FD:EA:AF:E5:92:B3:4D:85:A5:6B:AF:5C:EC ValidityMon, 13 Mar 2023 00:00:00 GMT - Tue, 12 Mar 2024 23:59:59 GMT File type PNG image data, 80 x 80, 8-bit/color RGBA, non-interlaced\012- data Size 4.5 kB (4489 bytes) Hash 37ab695e678ddc525bdadde57a4de4d2 1d29d2abc0bdb272ca68847636f144b92c93d54e 072b737cbc5c52f38cd3ea217140d31a286f5c1a40b5e5287c3c1394046b772b HTTP Headers `GET /ryESuZ5.png HTTP/1.1 Host: i.imgur.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/* Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://covid19.pt/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache TE: trailers` HTTP/2 200 OK last-modified: Tue, 18 Jun 2019 20:39:51 GMT etag: "37ab695e678ddc525bdadde57a4de4d2" content-type: image/png cache-control: public, max-age=31536000 accept-ranges: bytes date: Sat, 09 Dec 2023 01:50:20 GMT age: 18475300 x-served-by: cache-iad-kcgs7200125-IAD, cache-hel1410022-HEL x-cache: HIT, HIT x-cache-hits: 40934, 1 x-timer: S1702086620.151453,VS0,VE1 strict-transport-security: max-age=300 access-control-allow-methods: GET, OPTIONS access-control-allow-origin: * server: cat factory 1.0 x-content-type-options: nosniff content-length: 4489 X-Firefox-Spdy: h2

	covid19.pt/banner/cruz.png	94.76.230.125	200 OK	35 kB
URL GET HTTP/2 covid19.pt/banner/cruz.png IP 94.76.230.125:443 ASN #29550 Simply Transit Ltd Requested by https://covid19.pt/ Certificate IssuerLet's Encrypt Subjectcovid19.pt FingerprintE9:29:5D:93:96:62:CF:33:54:34:02:19:97:48:2D:D9:C8:EE:42:00 ValidityThu, 26 Oct 2023 17:01:51 GMT - Wed, 24 Jan 2024 17:01:50 GMT File type PNG image data, 728 x 90, 8-bit/color RGB, non-interlaced\012- data Size 35 kB (34574 bytes) Hash cd7b87998db0a33935e19cecd2a892a6 fa5639d8674c6cca24a2c76ebf561af6151687e3 e51d3c28472689e835a6fca3e728c80aa00864f1ded91b6ba98f64465b418f97 HTTP Headers `GET /banner/cruz.png HTTP/1.1 Host: covid19.pt User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://covid19.pt/ Cookie: PHPSESSID=91247qbkasa2isc3fj0bo1o5g0 Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache TE: trailers` `HTTP/2 200 OK server: nginx date: Sat, 09 Dec 2023 01:50:20 GMT content-type: image/png content-length: 34574 last-modified: Tue, 23 Nov 2021 10:02:45 GMT etag: "619cbc45-870e" x-powered-by: PleskLin accept-ranges: bytes X-Firefox-Spdy: h2`

	covid19.pt/Themes/MaviTheme/images/off.png	94.76.230.125	200 OK	780 B
URL GET HTTP/2 covid19.pt/Themes/MaviTheme/images/off.png IP 94.76.230.125:443 ASN #29550 Simply Transit Ltd Requested by https://covid19.pt/ Certificate IssuerLet's Encrypt Subjectcovid19.pt FingerprintE9:29:5D:93:96:62:CF:33:54:34:02:19:97:48:2D:D9:C8:EE:42:00 ValidityThu, 26 Oct 2023 17:01:51 GMT - Wed, 24 Jan 2024 17:01:50 GMT File type PNG image data, 38 x 41, 8-bit/color RGBA, non-interlaced\012- data Size 780 B (780 bytes) Hash c9841a3bd9c68e16268d00be2bfa0ce7 2741bff1c632105ea0f608ca097975ce1dbcc10e fbd221514ea97c4cfa803245925d9c1960222e29e03e6241c25e0c34a0b2adaf HTTP Headers `GET /Themes/MaviTheme/images/off.png HTTP/1.1 Host: covid19.pt User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://covid19.pt/ Cookie: PHPSESSID=91247qbkasa2isc3fj0bo1o5g0 Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache TE: trailers` `HTTP/2 200 OK server: nginx date: Sat, 09 Dec 2023 01:50:20 GMT content-type: image/png content-length: 780 x-accel-version: 0.01 last-modified: Tue, 23 Nov 2021 10:05:50 GMT etag: "30c-5d171e2cabb80" accept-ranges: bytes x-powered-by: PleskLin X-Firefox-Spdy: h2`

	covid19.pt/Themes/MaviTheme/images/new_none.png	94.76.230.125	200 OK	714 B
URL GET HTTP/2 covid19.pt/Themes/MaviTheme/images/new_none.png IP 94.76.230.125:443 ASN #29550 Simply Transit Ltd Requested by https://covid19.pt/ Certificate IssuerLet's Encrypt Subjectcovid19.pt FingerprintE9:29:5D:93:96:62:CF:33:54:34:02:19:97:48:2D:D9:C8:EE:42:00 ValidityThu, 26 Oct 2023 17:01:51 GMT - Wed, 24 Jan 2024 17:01:50 GMT File type PNG image data, 19 x 20, 8-bit/color RGBA, non-interlaced\012- data Size 714 B (714 bytes) Hash 1498e590a4cf4de7fffc6f052520bc13 3b00b08d2f8416f85b14321e61f677dcb4897818 b924a171e42dd63255fb2d4a9f958e622c6d6877e41454feaf33706de29ea843 HTTP Headers `GET /Themes/MaviTheme/images/new_none.png HTTP/1.1 Host: covid19.pt User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://covid19.pt/ Cookie: PHPSESSID=91247qbkasa2isc3fj0bo1o5g0 Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache TE: trailers` `HTTP/2 200 OK server: nginx date: Sat, 09 Dec 2023 01:50:20 GMT content-type: image/png content-length: 714 x-accel-version: 0.01 last-modified: Tue, 23 Nov 2021 10:05:50 GMT etag: "2ca-5d171e2cabb80" accept-ranges: bytes x-powered-by: PleskLin X-Firefox-Spdy: h2`

	covid19.pt/Themes/MaviTheme/images/redirect.png	94.76.230.125	200 OK	1.4 kB
URL GET HTTP/2 covid19.pt/Themes/MaviTheme/images/redirect.png IP 94.76.230.125:443 ASN #29550 Simply Transit Ltd Requested by https://covid19.pt/ Certificate IssuerLet's Encrypt Subjectcovid19.pt FingerprintE9:29:5D:93:96:62:CF:33:54:34:02:19:97:48:2D:D9:C8:EE:42:00 ValidityThu, 26 Oct 2023 17:01:51 GMT - Wed, 24 Jan 2024 17:01:50 GMT File type PNG image data, 38 x 42, 8-bit/color RGBA, non-interlaced\012- data Size 1.4 kB (1377 bytes) Hash 96d09b558a6793886c336ccb837513f0 5262c7a2764b3858f2c723d0848355c5b05e13d6 ac130f6b07fd0d05bcf455f7059c362a970ae05613e25f7ba03adf45193f5e97 HTTP Headers `GET /Themes/MaviTheme/images/redirect.png HTTP/1.1 Host: covid19.pt User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://covid19.pt/ Cookie: PHPSESSID=91247qbkasa2isc3fj0bo1o5g0 Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache TE: trailers` `HTTP/2 200 OK server: nginx date: Sat, 09 Dec 2023 01:50:20 GMT content-type: image/png content-length: 1377 last-modified: Tue, 23 Nov 2021 10:05:51 GMT etag: "619cbcff-561" x-powered-by: PleskLin accept-ranges: bytes X-Firefox-Spdy: h2`

	covid19.pt/Themes/MaviTheme/images/theme/noavatar.png	94.76.230.125	200 OK	6.3 kB
URL GET HTTP/2 covid19.pt/Themes/MaviTheme/images/theme/noavatar.png IP 94.76.230.125:443 ASN #29550 Simply Transit Ltd Requested by https://covid19.pt/ Certificate IssuerLet's Encrypt Subjectcovid19.pt FingerprintE9:29:5D:93:96:62:CF:33:54:34:02:19:97:48:2D:D9:C8:EE:42:00 ValidityThu, 26 Oct 2023 17:01:51 GMT - Wed, 24 Jan 2024 17:01:50 GMT File type PNG image data, 130 x 130, 8-bit/color RGBA, non-interlaced\012- data Size 6.3 kB (6310 bytes) Hash f6c7d5a70b0b9f5d657a67a21cdadb37 e9bdd81e0d19c0c99ccc2da632dac3fa1669ea72 ea28b89f4581fdc73871ab64dd84dd43f1ccd27b42221271cb850aaa460f2321 HTTP Headers `GET /Themes/MaviTheme/images/theme/noavatar.png HTTP/1.1 Host: covid19.pt User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://covid19.pt/ Cookie: PHPSESSID=91247qbkasa2isc3fj0bo1o5g0 Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache TE: trailers` `HTTP/2 200 OK server: nginx date: Sat, 09 Dec 2023 01:50:20 GMT content-type: image/png content-length: 6310 last-modified: Tue, 23 Nov 2021 10:08:35 GMT etag: "619cbda3-18a6" x-powered-by: PleskLin accept-ranges: bytes X-Firefox-Spdy: h2`

	covid19.pt/Themes/MaviTheme/images/new_redirect.png	94.76.230.125	200 OK	556 B
URL GET HTTP/2 covid19.pt/Themes/MaviTheme/images/new_redirect.png IP 94.76.230.125:443 ASN #29550 Simply Transit Ltd Requested by https://covid19.pt/ Certificate IssuerLet's Encrypt Subjectcovid19.pt FingerprintE9:29:5D:93:96:62:CF:33:54:34:02:19:97:48:2D:D9:C8:EE:42:00 ValidityThu, 26 Oct 2023 17:01:51 GMT - Wed, 24 Jan 2024 17:01:50 GMT File type PNG image data, 19 x 21, 8-bit colormap, non-interlaced\012- data Size 556 B (556 bytes) Hash edac77aff3f18196519fdc2dfaffe88d 3eb6b7d3188f4ccc05e8e5d18748e284e8aa041e f9c04cc8195b5b6763ed67f5ebd8bb11eae70b40714b0ae4a4494cc98da989f7 HTTP Headers `GET /Themes/MaviTheme/images/new_redirect.png HTTP/1.1 Host: covid19.pt User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://covid19.pt/ Cookie: PHPSESSID=91247qbkasa2isc3fj0bo1o5g0 Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache TE: trailers` `HTTP/2 200 OK server: nginx date: Sat, 09 Dec 2023 01:50:20 GMT content-type: image/png content-length: 556 x-accel-version: 0.01 last-modified: Tue, 23 Nov 2021 10:05:50 GMT etag: "22c-5d171e2cabb80" accept-ranges: bytes x-powered-by: PleskLin X-Firefox-Spdy: h2`

	covid19.pt/banner/dgs.png	94.76.230.125	200 OK	7.8 kB
URL GET HTTP/2 covid19.pt/banner/dgs.png IP 94.76.230.125:443 ASN #29550 Simply Transit Ltd Requested by https://covid19.pt/ Certificate IssuerLet's Encrypt Subjectcovid19.pt FingerprintE9:29:5D:93:96:62:CF:33:54:34:02:19:97:48:2D:D9:C8:EE:42:00 ValidityThu, 26 Oct 2023 17:01:51 GMT - Wed, 24 Jan 2024 17:01:50 GMT File type PNG image data, 446 x 113, 8-bit colormap, non-interlaced\012- data Size 7.8 kB (7849 bytes) Hash 52694e86dfc37514debe6e3ef4a06a92 3ffd331d805430a431d79d2d95b0bebe7c5a590c e2d906732a434cbbe4ecd241d495ebd7e19305b407c4339d383d351e006e100e HTTP Headers `GET /banner/dgs.png HTTP/1.1 Host: covid19.pt User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://covid19.pt/ Cookie: PHPSESSID=91247qbkasa2isc3fj0bo1o5g0 Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache TE: trailers` `HTTP/2 200 OK server: nginx date: Sat, 09 Dec 2023 01:50:20 GMT content-type: image/png content-length: 7849 last-modified: Tue, 23 Nov 2021 10:02:45 GMT etag: "619cbc45-1ea9" x-powered-by: PleskLin accept-ranges: bytes X-Firefox-Spdy: h2`

	mfmc.pt/banner/22bet10.jpg	94.76.230.125	200 OK	49 kB
URL GET HTTP/2 mfmc.pt/banner/22bet10.jpg IP 94.76.230.125:443 ASN #29550 Simply Transit Ltd Requested by https://covid19.pt/ Certificate IssuerLet's Encrypt Subjectmfmc.pt FingerprintFC:DF:4C:E7:5B:0F:2D:FE:51:53:AD:F3:8B:B1:4B:36:37:7F:CC:F0 ValiditySun, 29 Oct 2023 11:01:25 GMT - Sat, 27 Jan 2024 11:01:24 GMT File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 728x90, components 3\012- data Size 49 kB (49194 bytes) Hash 91eb746ef0f210a2806359be5be897c2 55f3a08062416445bf56525488db8cf7931b5d53 2683cf237bedf2d9d07cd4691e4fd149f7d496573cd2af26de0cf88733125964 HTTP Headers `GET /banner/22bet10.jpg HTTP/1.1 Host: mfmc.pt User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://covid19.pt/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` `HTTP/2 200 OK server: nginx date: Sat, 09 Dec 2023 01:50:20 GMT content-type: image/jpeg content-length: 49194 last-modified: Tue, 05 Dec 2023 00:04:07 GMT etag: "656e68f7-c02a" x-powered-by: PleskLin accept-ranges: bytes X-Firefox-Spdy: h2`

	mfmc.pt/banner/22bet1.gif	94.76.230.125	200 OK	37 kB
URL GET HTTP/2 mfmc.pt/banner/22bet1.gif IP 94.76.230.125:443 ASN #29550 Simply Transit Ltd Requested by https://covid19.pt/ Certificate IssuerLet's Encrypt Subjectmfmc.pt FingerprintFC:DF:4C:E7:5B:0F:2D:FE:51:53:AD:F3:8B:B1:4B:36:37:7F:CC:F0 ValiditySun, 29 Oct 2023 11:01:25 GMT - Sat, 27 Jan 2024 11:01:24 GMT File type GIF image data, version 89a, 728 x 90\012- data Size 37 kB (36730 bytes) Hash bfc4bb4c809bd4085080fdd4d88370bd 9514e4b7b80f1a30ee7e612f4fea9dd72f55955f 8be65949d3e21b21edb249105a20bb07ec8fb4a8d3ca63d7952b0c22deaa1339 HTTP Headers `GET /banner/22bet1.gif HTTP/1.1 Host: mfmc.pt User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://covid19.pt/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` `HTTP/2 200 OK server: nginx date: Sat, 09 Dec 2023 01:50:20 GMT content-type: image/gif content-length: 36730 last-modified: Tue, 05 Dec 2023 00:04:07 GMT etag: "656e68f7-8f7a" x-powered-by: PleskLin accept-ranges: bytes X-Firefox-Spdy: h2`

	covid19.pt/sachat/themes/default/images/balloon.png	94.76.230.125	200 OK	638 B
URL GET HTTP/2 covid19.pt/sachat/themes/default/images/balloon.png IP 94.76.230.125:443 ASN #29550 Simply Transit Ltd Requested by https://covid19.pt/ Certificate IssuerLet's Encrypt Subjectcovid19.pt FingerprintE9:29:5D:93:96:62:CF:33:54:34:02:19:97:48:2D:D9:C8:EE:42:00 ValidityThu, 26 Oct 2023 17:01:51 GMT - Wed, 24 Jan 2024 17:01:50 GMT File type PNG image data, 18 x 16, 8-bit/color RGBA, non-interlaced\012- data Size 638 B (638 bytes) Hash 318653d1538556dca637cd2777692a0d 9476348f63a92581fd061d72cd62c4dd548c51e3 4388900ac0a9ce81dbbbf3e2d2a9a313919eee2b10f700ad17e4874979642d38 HTTP Headers `GET /sachat/themes/default/images/balloon.png HTTP/1.1 Host: covid19.pt User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://covid19.pt/ Cookie: PHPSESSID=91247qbkasa2isc3fj0bo1o5g0 Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache TE: trailers` `HTTP/2 200 OK server: nginx date: Sat, 09 Dec 2023 01:50:20 GMT content-type: image/png content-length: 638 x-accel-version: 0.01 last-modified: Tue, 23 Nov 2021 10:03:24 GMT etag: "27e-5d171da16f300" accept-ranges: bytes x-powered-by: PleskLin X-Firefox-Spdy: h2`

	covid19.pt/sachat/themes/default/css/style.css?1702086627326	94.76.230.125	200 OK	32 kB
URL GET HTTP/2 covid19.pt/sachat/themes/default/css/style.css?1702086627326 IP 94.76.230.125:443 ASN #29550 Simply Transit Ltd Requested by https://covid19.pt/ Certificate IssuerLet's Encrypt Subjectcovid19.pt FingerprintE9:29:5D:93:96:62:CF:33:54:34:02:19:97:48:2D:D9:C8:EE:42:00 ValidityThu, 26 Oct 2023 17:01:51 GMT - Wed, 24 Jan 2024 17:01:50 GMT File type ASCII text Size 32 kB (31479 bytes) Hash c6a19a0d1a8afaedd319a6b3f785206b 82d8005cb21751296e6716773dd302a31130273d 9b02a1a69cba87fe406648356ea433b694cc8e333a08d476ddb5e220cdfccc25 HTTP Headers `GET /sachat/themes/default/css/style.css?1702086627326 HTTP/1.1 Host: covid19.pt User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://covid19.pt/ Cookie: PHPSESSID=91247qbkasa2isc3fj0bo1o5g0 Sec-Fetch-Dest: style Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache TE: trailers` `HTTP/2 200 OK server: nginx date: Sat, 09 Dec 2023 01:50:20 GMT content-type: text/css last-modified: Tue, 23 Nov 2021 10:03:22 GMT etag: W/"619cbc6a-46e8" x-powered-by: PleskLin content-encoding: br X-Firefox-Spdy: h2`

	covid19.pt/Themes/MaviTheme/webfonts/fa-solid-900.woff2	94.76.230.125	200 OK	79 kB
URL GET HTTP/2 covid19.pt/Themes/MaviTheme/webfonts/fa-solid-900.woff2 IP 94.76.230.125:443 ASN #29550 Simply Transit Ltd Requested by https://covid19.pt/ Certificate IssuerLet's Encrypt Subjectcovid19.pt FingerprintE9:29:5D:93:96:62:CF:33:54:34:02:19:97:48:2D:D9:C8:EE:42:00 ValidityThu, 26 Oct 2023 17:01:51 GMT - Wed, 24 Jan 2024 17:01:50 GMT File type Web Open Font Format (Version 2), TrueType, length 79444, version 331.524\012- data Size 79 kB (79444 bytes) Hash b15db15f746f29ffa02638cb455b8ec0 75a88815c47a249eadb5f0edc1675957f860cca7 7f4d3fd0a705dbf8403298aad91d5de6972e6b5d536068eba8b24954a5a0a8c7 HTTP Headers GET /Themes/MaviTheme/webfonts/fa-solid-900.woff2 HTTP/1.1 Host: covid19.pt User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: identity DNT: 1 Connection: keep-alive Referer: https://covid19.pt/Themes/MaviTheme/css/fontawesome.min.css Cookie: PHPSESSID=91247qbkasa2isc3fj0bo1o5g0 Sec-Fetch-Dest: font Sec-Fetch-Mode: cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache TE: trailers `HTTP/2 200 OK server: nginx date: Sat, 09 Dec 2023 01:50:20 GMT content-type: font/woff2 content-length: 79444 last-modified: Tue, 23 Nov 2021 10:06:03 GMT etag: "619cbd0b-13654" x-powered-by: PleskLin accept-ranges: bytes X-Firefox-Spdy: h2`

	covid19.pt/Themes/MaviTheme/webfonts/fa-regular-400.woff2	94.76.230.125	200 OK	14 kB
URL GET HTTP/2 covid19.pt/Themes/MaviTheme/webfonts/fa-regular-400.woff2 IP 94.76.230.125:443 ASN #29550 Simply Transit Ltd Requested by https://covid19.pt/ Certificate IssuerLet's Encrypt Subjectcovid19.pt FingerprintE9:29:5D:93:96:62:CF:33:54:34:02:19:97:48:2D:D9:C8:EE:42:00 ValidityThu, 26 Oct 2023 17:01:51 GMT - Wed, 24 Jan 2024 17:01:50 GMT File type Web Open Font Format (Version 2), TrueType, length 13584, version 331.524\012- data Size 14 kB (13584 bytes) Hash c20b5b7362d8d7bb7eddf94344ace33e 260bb01acd44d88dcb7f501a238ab968f86bef9e 6a8c8e9e1e7f692c21af1956de163f3d026778e6449fe93a09a671847ca1ae65 HTTP Headers GET /Themes/MaviTheme/webfonts/fa-regular-400.woff2 HTTP/1.1 Host: covid19.pt User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: identity DNT: 1 Connection: keep-alive Referer: https://covid19.pt/Themes/MaviTheme/css/fontawesome.min.css Cookie: PHPSESSID=91247qbkasa2isc3fj0bo1o5g0 Sec-Fetch-Dest: font Sec-Fetch-Mode: cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache TE: trailers `HTTP/2 200 OK server: nginx date: Sat, 09 Dec 2023 01:50:20 GMT content-type: font/woff2 content-length: 13584 last-modified: Tue, 23 Nov 2021 10:06:02 GMT etag: "619cbd0a-3510" x-powered-by: PleskLin accept-ranges: bytes X-Firefox-Spdy: h2`

	fonts.gstatic.com/s/opensans/v36/memSYaGs126MiZpBA-UvWbX2vVnXBbObj2OVZyOOSr4dVJWUgsjZ0B4gaVI.woff2	216.58.207.227	200 OK	19 kB
URL GET HTTP/2 fonts.gstatic.com/s/opensans/v36/memSYaGs126MiZpBA-UvWbX2vVnXBbObj2OVZyOOSr4dVJWUgsjZ0B4gaVI.woff2 IP 216.58.207.227:443 ASN #15169 GOOGLE Requested by https://covid19.pt/ Certificate IssuerGoogle Trust Services LLC Subject.gstatic.com Fingerprint5F:60:69:C9:59:6D:F1:B5:87:82:8D:B0:57:3C:D9:24:10:FD:74:D1 ValidityMon, 20 Nov 2023 08:08:49 GMT - Mon, 12 Feb 2024 08:08:48 GMT File type Web Open Font Format (Version 2), TrueType, length 18664, version 1.0\012- data Size 19 kB (18664 bytes) Hash 8d1c44b2bf75a4e6f1bd141f9a965f4f 1e5dfdb7ca5ee8e823f9f5787f84b18fbdc38434 441e23601fe7525a142857c98cbb2784997579d51a17f736d7964dceee609709 HTTP Headers GET /s/opensans/v36/memSYaGs126MiZpBA-UvWbX2vVnXBbObj2OVZyOOSr4dVJWUgsjZ0B4gaVI.woff2 HTTP/1.1 Host: fonts.gstatic.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: identity Origin: https://covid19.pt DNT: 1 Connection: keep-alive Referer: https://fonts.googleapis.com/ Sec-Fetch-Dest: font Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache HTTP/2 200 OK accept-ranges: bytes access-control-allow-origin: content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes cross-origin-resource-policy: cross-origin cross-origin-opener-policy: same-origin; report-to="apps-themes" report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]} timing-allow-origin: * content-length: 18664 x-content-type-options: nosniff server: sffe x-xss-protection: 0 date: Thu, 07 Dec 2023 15:47:16 GMT expires: Fri, 06 Dec 2024 15:47:16 GMT cache-control: public, max-age=31536000 last-modified: Thu, 14 Sep 2023 01:36:18 GMT content-type: font/woff2 age: 122584 alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000 X-Firefox-Spdy: h2

	covid19.pt/Themes/default/scripts/sha1.js	94.76.230.125	200 OK	2.5 kB
URL GET HTTP/2 covid19.pt/Themes/default/scripts/sha1.js IP 94.76.230.125:443 ASN #29550 Simply Transit Ltd Requested by https://covid19.pt/ Certificate IssuerLet's Encrypt Subjectcovid19.pt FingerprintE9:29:5D:93:96:62:CF:33:54:34:02:19:97:48:2D:D9:C8:EE:42:00 ValidityThu, 26 Oct 2023 17:01:51 GMT - Wed, 24 Jan 2024 17:01:50 GMT File type ASCII text Size 2.5 kB (2545 bytes) Hash e83257a6ddccc609576df4b4a0f4fb6c df36bedcbb5ddd01fc3442af5f39cbf594d64763 9d730e49718696077087b318c7cb20d0e97164ffacf3bd5d5f99c6763eaa39c6 HTTP Headers `GET /Themes/default/scripts/sha1.js HTTP/1.1 Host: covid19.pt User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://covid19.pt/ Cookie: PHPSESSID=91247qbkasa2isc3fj0bo1o5g0 Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache TE: trailers` `HTTP/2 200 OK server: nginx date: Sat, 09 Dec 2023 01:50:20 GMT content-type: application/javascript last-modified: Tue, 23 Nov 2021 10:05:40 GMT etag: W/"619cbcf4-154b" x-powered-by: PleskLin content-encoding: br X-Firefox-Spdy: h2`

	covid19.pt/Themes/MaviTheme/css/fontawesome.min.css	94.76.230.125	200 OK	58 kB
URL GET HTTP/2 covid19.pt/Themes/MaviTheme/css/fontawesome.min.css IP 94.76.230.125:443 ASN #29550 Simply Transit Ltd Requested by https://covid19.pt/ Certificate IssuerLet's Encrypt Subjectcovid19.pt FingerprintE9:29:5D:93:96:62:CF:33:54:34:02:19:97:48:2D:D9:C8:EE:42:00 ValidityThu, 26 Oct 2023 17:01:51 GMT - Wed, 24 Jan 2024 17:01:50 GMT File type ASCII text, with very long lines (57936) Size 58 kB (58118 bytes) Hash c083c16bff643764c4a61e684d216c6e 2957fad83b68925637449fe9c298306e0241760f b4f4d09a7c119c4e7ee231966c955ec4dc7eb7c08d889d74683ca7410b24825b HTTP Headers `GET /Themes/MaviTheme/css/fontawesome.min.css HTTP/1.1 Host: covid19.pt User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://covid19.pt/ Cookie: PHPSESSID=91247qbkasa2isc3fj0bo1o5g0 Sec-Fetch-Dest: style Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache` `HTTP/2 200 OK server: nginx date: Sat, 09 Dec 2023 01:50:20 GMT content-type: text/css last-modified: Tue, 23 Nov 2021 10:05:44 GMT etag: W/"619cbcf8-e306" x-powered-by: PleskLin content-encoding: br X-Firefox-Spdy: h2`

	covid19.pt/Themes/MaviTheme/css/bootstrap.min.css	94.76.230.125	200 OK	214 kB
URL GET HTTP/2 covid19.pt/Themes/MaviTheme/css/bootstrap.min.css IP 94.76.230.125:443 ASN #29550 Simply Transit Ltd Requested by https://covid19.pt/ Certificate IssuerLet's Encrypt Subjectcovid19.pt FingerprintE9:29:5D:93:96:62:CF:33:54:34:02:19:97:48:2D:D9:C8:EE:42:00 ValidityThu, 26 Oct 2023 17:01:51 GMT - Wed, 24 Jan 2024 17:01:50 GMT File type ASCII text, with very long lines (65324) Size 214 kB (213870 bytes) Hash f355748088ad68f279ade07df019c14f b9a36297d0ea6b960a6ec37c2b53c0cf9844ccd8 7ed5c409ab0c7d4fb8aa363adef8caba35a05a8d2bf487536404308b8a767fa2 HTTP Headers `GET /Themes/MaviTheme/css/bootstrap.min.css HTTP/1.1 Host: covid19.pt User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://covid19.pt/ Cookie: PHPSESSID=91247qbkasa2isc3fj0bo1o5g0 Sec-Fetch-Dest: style Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache` `HTTP/2 200 OK server: nginx date: Sat, 09 Dec 2023 01:50:20 GMT content-type: text/css last-modified: Tue, 23 Nov 2021 10:05:44 GMT etag: W/"619cbcf8-3436e" x-powered-by: PleskLin content-encoding: br X-Firefox-Spdy: h2`

	covid19.pt/Themes/MaviTheme/scripts/fontawesome.min.js	94.76.230.125	200 OK	37 kB
URL GET HTTP/2 covid19.pt/Themes/MaviTheme/scripts/fontawesome.min.js IP 94.76.230.125:443 ASN #29550 Simply Transit Ltd Requested by https://covid19.pt/ Certificate IssuerLet's Encrypt Subjectcovid19.pt FingerprintE9:29:5D:93:96:62:CF:33:54:34:02:19:97:48:2D:D9:C8:EE:42:00 ValidityThu, 26 Oct 2023 17:01:51 GMT - Wed, 24 Jan 2024 17:01:50 GMT File type ASCII text, with very long lines (37005) Size 37 kB (37191 bytes) Hash 9527114fc52c2e4b02d52691284c2883 ec88d10eff795d5c4cabe7efa7a515b5ae3a2b83 34ff4dba3744cd2e66e19c6f36a91c6f1c87074753472f611b5dd1c135411b0a HTTP Headers `GET /Themes/MaviTheme/scripts/fontawesome.min.js HTTP/1.1 Host: covid19.pt User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://covid19.pt/ Cookie: PHPSESSID=91247qbkasa2isc3fj0bo1o5g0 Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache` `HTTP/2 200 OK server: nginx date: Sat, 09 Dec 2023 01:50:20 GMT content-type: application/javascript last-modified: Tue, 23 Nov 2021 10:05:58 GMT etag: W/"619cbd06-9147" x-powered-by: PleskLin content-encoding: br X-Firefox-Spdy: h2`

	covid19.pt/Themes/default/css/LikePosts.css	94.76.230.125	200 OK	9.5 kB
URL GET HTTP/2 covid19.pt/Themes/default/css/LikePosts.css IP 94.76.230.125:443 ASN #29550 Simply Transit Ltd Requested by https://covid19.pt/ Certificate IssuerLet's Encrypt Subjectcovid19.pt FingerprintE9:29:5D:93:96:62:CF:33:54:34:02:19:97:48:2D:D9:C8:EE:42:00 ValidityThu, 26 Oct 2023 17:01:51 GMT - Wed, 24 Jan 2024 17:01:50 GMT File type ASCII text, with very long lines (10306), with no line terminators Size 9.5 kB (9541 bytes) Hash e95c970dffedb4f147c252fda60489ef 7cedc4d682e4c902ee42e21d46c9f5c427436390 ec95e866b994851c486afc407824a7891a643acb8ab29fe2e413cdf83dd724c4 HTTP Headers `GET /Themes/default/css/LikePosts.css HTTP/1.1 Host: covid19.pt User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://covid19.pt/ Cookie: PHPSESSID=91247qbkasa2isc3fj0bo1o5g0 Sec-Fetch-Dest: style Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache` `HTTP/2 200 OK server: nginx date: Sat, 09 Dec 2023 01:50:20 GMT content-type: text/css last-modified: Tue, 23 Nov 2021 10:05:05 GMT etag: W/"619cbcd1-2545" x-powered-by: PleskLin content-encoding: br X-Firefox-Spdy: h2`

	covid19.pt/Themes/MaviTheme/css/app.css?fin20	94.76.230.125	200 OK	36 kB
URL GET HTTP/2 covid19.pt/Themes/MaviTheme/css/app.css?fin20 IP 94.76.230.125:443 ASN #29550 Simply Transit Ltd Requested by https://covid19.pt/ Certificate IssuerLet's Encrypt Subjectcovid19.pt FingerprintE9:29:5D:93:96:62:CF:33:54:34:02:19:97:48:2D:D9:C8:EE:42:00 ValidityThu, 26 Oct 2023 17:01:51 GMT - Wed, 24 Jan 2024 17:01:50 GMT File type ASCII text Size 36 kB (36286 bytes) Hash e29b6b1752e388358587bd0b003234ba 8061f0a9573f6d222f55929fc252d20112798bb1 b625add7aff746c8a10bd739c2ce12aeddb065c0ced076c5648770913a3aed00 HTTP Headers `GET /Themes/MaviTheme/css/app.css?fin20 HTTP/1.1 Host: covid19.pt User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://covid19.pt/ Cookie: PHPSESSID=91247qbkasa2isc3fj0bo1o5g0 Sec-Fetch-Dest: style Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache` `HTTP/2 200 OK server: nginx date: Sat, 09 Dec 2023 01:50:20 GMT content-type: text/css last-modified: Tue, 23 Nov 2021 10:05:43 GMT etag: W/"619cbcf7-8dbe" x-powered-by: PleskLin content-encoding: br X-Firefox-Spdy: h2`

	covid19.pt/	94.76.230.125	200 OK	59 kB
URL User Request GET HTTP/2 covid19.pt/ IP 94.76.230.125:443 ASN #29550 Simply Transit Ltd Certificate IssuerLet's Encrypt Subjectcovid19.pt FingerprintE9:29:5D:93:96:62:CF:33:54:34:02:19:97:48:2D:D9:C8:EE:42:00 ValidityThu, 26 Oct 2023 17:01:51 GMT - Wed, 24 Jan 2024 17:01:50 GMT File type Size 59 kB (58826 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers `GET / HTTP/1.1 Host: covid19.pt User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Upgrade-Insecure-Requests: 1 Connection: keep-alive Sec-Fetch-Dest: document Sec-Fetch-Mode: navigate Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` `HTTP/2 200 OK server: nginx date: Sat, 09 Dec 2023 01:50:19 GMT content-type: text/html; charset=UTF-8 x-frame-options: SAMEORIGIN x-xss-protection: 1 x-content-type-options: nosniff pragma: no-cache cache-control: private expires: Mon, 26 Jul 1997 05:00:00 GMT content-encoding: gzip vary: Accept-Encoding set-cookie: PHPSESSID=91247qbkasa2isc3fj0bo1o5g0; path=/ last-modified: Sat, 09 Dec 2023 01:50:19 GMT x-powered-by: PHP/7.4.33, PleskLin X-Firefox-Spdy: h2`

	covid19.pt/Themes/MaviTheme/css/index.css?fin20	94.76.230.125	200 OK	41 kB
URL GET HTTP/2 covid19.pt/Themes/MaviTheme/css/index.css?fin20 IP 94.76.230.125:443 ASN #29550 Simply Transit Ltd Requested by https://covid19.pt/ Certificate IssuerLet's Encrypt Subjectcovid19.pt FingerprintE9:29:5D:93:96:62:CF:33:54:34:02:19:97:48:2D:D9:C8:EE:42:00 ValidityThu, 26 Oct 2023 17:01:51 GMT - Wed, 24 Jan 2024 17:01:50 GMT File type ASCII text, with very long lines (39851) Size 41 kB (40685 bytes) Hash 1e39ab10a8c50c2b442a625fc3105b2b 2750dfb58bc6805689849ee4393e5bc1423a5072 d608ea978ec28de6341c0159cb91c8476dc6f6e7fe8d5bb784be1b284de3eb63 HTTP Headers `GET /Themes/MaviTheme/css/index.css?fin20 HTTP/1.1 Host: covid19.pt User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://covid19.pt/ Cookie: PHPSESSID=91247qbkasa2isc3fj0bo1o5g0 Sec-Fetch-Dest: style Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache` `HTTP/2 200 OK server: nginx date: Sat, 09 Dec 2023 01:50:20 GMT content-type: text/css last-modified: Tue, 23 Nov 2021 10:05:44 GMT etag: W/"619cbcf8-9eed" x-powered-by: PleskLin content-encoding: br X-Firefox-Spdy: h2`

	covid19.pt/sachat/index.php?action=body	94.76.230.125	200 OK	5.6 kB
URL GET HTTP/2 covid19.pt/sachat/index.php?action=body IP 94.76.230.125:443 ASN #29550 Simply Transit Ltd Requested by https://covid19.pt/ Certificate IssuerLet's Encrypt Subjectcovid19.pt FingerprintE9:29:5D:93:96:62:CF:33:54:34:02:19:97:48:2D:D9:C8:EE:42:00 ValidityThu, 26 Oct 2023 17:01:51 GMT - Wed, 24 Jan 2024 17:01:50 GMT File type HTML document, ASCII text, with very long lines (6468), with no line terminators Size 5.6 kB (5565 bytes) Hash c4f34b06727bff539ca8a5166382c8eb af9d8626d6eb78fcc964c600aebbd41ba638ff4a 085ffc6d81b2c125d34525cf6c34e9ac666014db925f40b73fdb14413ad474ed HTTP Headers `GET /sachat/index.php?action=body HTTP/1.1 Host: covid19.pt User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://covid19.pt/ Cookie: PHPSESSID=91247qbkasa2isc3fj0bo1o5g0 Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache` `HTTP/2 200 OK server: nginx date: Sat, 09 Dec 2023 01:50:20 GMT content-type: application/x-javascript; text/javascript expires: Thu, 19 Nov 1981 08:52:00 GMT cache-control: no-store, no-cache, must-revalidate pragma: no-cache x-powered-by: PHP/7.4.33, PleskLin X-Firefox-Spdy: h2`

	ajax.googleapis.com/ajax/libs/jquery/2.0.3/jquery.min.js	172.217.21.170	200 OK	84 kB
URL GET HTTP/3 ajax.googleapis.com/ajax/libs/jquery/2.0.3/jquery.min.js IP 172.217.21.170:443 ASN #15169 GOOGLE Requested by https://covid19.pt/ Certificate IssuerGoogle Trust Services LLC Subjectupload.video.google.com Fingerprint10:D0:ED:9A:F4:53:C8:99:DE:B6:5E:5C:04:E6:20:0B:68:7D:46:EC ValidityMon, 20 Nov 2023 08:08:50 GMT - Mon, 12 Feb 2024 08:08:49 GMT File type ASCII text, with very long lines (32023) Size 84 kB (83606 bytes) Hash ccd0edd113b78697e04fb5c1b519a5cd a6eedf84389e1bc9f757bc2d19538f8c8d1cae9d a57b5242b9a9adc4c1ef846c365147b89c472b9cd770face331efcb965346b25 HTTP Headers `GET /ajax/libs/jquery/2.0.3/jquery.min.js HTTP/1.1 Host: ajax.googleapis.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://covid19.pt/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` HTTP/3 200 OK accept-ranges: bytes content-encoding: gzip access-control-allow-origin: * content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/hosted-libraries-pushers cross-origin-resource-policy: cross-origin cross-origin-opener-policy: same-origin; report-to="hosted-libraries-pushers" report-to: {"group":"hosted-libraries-pushers","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/hosted-libraries-pushers"}]} timing-allow-origin: * content-length: 29440 x-content-type-options: nosniff server: sffe x-xss-protection: 0 date: Thu, 07 Dec 2023 15:55:25 GMT expires: Fri, 06 Dec 2024 15:55:25 GMT cache-control: public, max-age=31536000, stale-while-revalidate=2592000 last-modified: Tue, 03 Mar 2020 19:15:00 GMT content-type: text/javascript; charset=UTF-8 vary: Accept-Encoding age: 122095 alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

	covid19.pt/Themes/default/scripts/script.js?fin20	94.76.230.125	200 OK	48 kB
URL GET HTTP/2 covid19.pt/Themes/default/scripts/script.js?fin20 IP 94.76.230.125:443 ASN #29550 Simply Transit Ltd Requested by https://covid19.pt/ Certificate IssuerLet's Encrypt Subjectcovid19.pt FingerprintE9:29:5D:93:96:62:CF:33:54:34:02:19:97:48:2D:D9:C8:EE:42:00 ValidityThu, 26 Oct 2023 17:01:51 GMT - Wed, 24 Jan 2024 17:01:50 GMT File type ASCII text, with very long lines (796) Size 48 kB (47617 bytes) Hash e966171b7a873abdf5f1b0632f6e5e67 817ac462061baeea418750c357515e1c80cc2715 8766cade8e2b3c821d786954b01dc5a2e74a2e1cecf01c19158e3715249fe152 HTTP Headers `GET /Themes/default/scripts/script.js?fin20 HTTP/1.1 Host: covid19.pt User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://covid19.pt/ Cookie: PHPSESSID=91247qbkasa2isc3fj0bo1o5g0 Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache` `HTTP/2 200 OK server: nginx date: Sat, 09 Dec 2023 01:50:20 GMT content-type: application/javascript last-modified: Tue, 23 Nov 2021 10:05:40 GMT etag: W/"619cbcf4-ba01" x-powered-by: PleskLin content-encoding: br X-Firefox-Spdy: h2`

	covid19.pt/favicon.ico	94.76.230.125	404 Not Found	209 B
URL GET HTTP/2 covid19.pt/favicon.ico IP 94.76.230.125:443 ASN #29550 Simply Transit Ltd Requested by https://covid19.pt/ Certificate IssuerLet's Encrypt Subjectcovid19.pt FingerprintE9:29:5D:93:96:62:CF:33:54:34:02:19:97:48:2D:D9:C8:EE:42:00 ValidityThu, 26 Oct 2023 17:01:51 GMT - Wed, 24 Jan 2024 17:01:50 GMT File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with no line terminators Size 209 B (209 bytes) Hash 8ace35f18ab1832bacfde13597767517 22e4ee51bbdba11b19a2d6879bc60126dc89eecd f87134d32dc903f27ed9c905bfd824f31192dac9e05887b2dedbb1ca416d1280 HTTP Headers `GET /favicon.ico HTTP/1.1 Host: covid19.pt User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://covid19.pt/ Cookie: PHPSESSID=91247qbkasa2isc3fj0bo1o5g0 Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache` `HTTP/2 404 Not Found server: nginx date: Sat, 09 Dec 2023 01:50:20 GMT content-type: text/html; charset=iso-8859-1 content-encoding: br X-Firefox-Spdy: h2`

	fonts.googleapis.com/css?family=Open+Sans&display=swap	142.250.74.106	200 OK	3.1 kB
URL GET HTTP/2 fonts.googleapis.com/css?family=Open+Sans&display=swap IP 142.250.74.106:443 ASN #15169 GOOGLE Requested by https://covid19.pt/ Certificate IssuerGoogle Trust Services LLC Subjectupload.video.google.com Fingerprint10:D0:ED:9A:F4:53:C8:99:DE:B6:5E:5C:04:E6:20:0B:68:7D:46:EC ValidityMon, 20 Nov 2023 08:08:50 GMT - Mon, 12 Feb 2024 08:08:49 GMT File type ASCII text, with very long lines (3151), with no line terminators Size 3.1 kB (3071 bytes) Hash 4fc21aadfc58ee9c99b3b02d3eba6a4b e1c98a88dd2b002efa414c06be2e3e7942e9c657 5db8d90fdd4593270cb2cc883cc26cf362fbc86ebab6b8382c0794b0335e9ec3 HTTP Headers `GET /css?family=Open+Sans&display=swap HTTP/1.1 Host: fonts.googleapis.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://covid19.pt/ Sec-Fetch-Dest: style Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` HTTP/2 200 OK content-type: text/css; charset=utf-8 access-control-allow-origin: * timing-allow-origin: * link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin strict-transport-security: max-age=31536000 expires: Sat, 09 Dec 2023 01:50:20 GMT date: Sat, 09 Dec 2023 01:50:20 GMT cache-control: private, max-age=86400 cross-origin-resource-policy: cross-origin cross-origin-opener-policy: same-origin-allow-popups content-encoding: gzip server: ESF x-xss-protection: 0 x-frame-options: SAMEORIGIN x-content-type-options: nosniff alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000 X-Firefox-Spdy: h2

	covid19.pt/Themes/MaviTheme/css/responsive.css	94.76.230.125	200 OK	11 kB
URL GET HTTP/2 covid19.pt/Themes/MaviTheme/css/responsive.css IP 94.76.230.125:443 ASN #29550 Simply Transit Ltd Requested by https://covid19.pt/ Certificate IssuerLet's Encrypt Subjectcovid19.pt FingerprintE9:29:5D:93:96:62:CF:33:54:34:02:19:97:48:2D:D9:C8:EE:42:00 ValidityThu, 26 Oct 2023 17:01:51 GMT - Wed, 24 Jan 2024 17:01:50 GMT File type ASCII text Size 11 kB (10852 bytes) Hash 3689f1dd322ab51ea6f6ead1856fa573 984df69f1e8d4ae63b0c50e86c0139265eea316a dc2d59e0de5c0bdd8b62324cfe15b8fee2d56d211d6127b04407d92d7d3c4830 HTTP Headers `GET /Themes/MaviTheme/css/responsive.css HTTP/1.1 Host: covid19.pt User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://covid19.pt/ Cookie: PHPSESSID=91247qbkasa2isc3fj0bo1o5g0 Sec-Fetch-Dest: style Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache` `HTTP/2 200 OK server: nginx date: Sat, 09 Dec 2023 01:50:20 GMT content-type: text/css last-modified: Tue, 23 Nov 2021 10:05:44 GMT etag: W/"619cbcf8-2a64" x-powered-by: PleskLin content-encoding: br X-Firefox-Spdy: h2`

	covid19.pt/Themes/MaviTheme/scripts/theme.js?fin20	94.76.230.125	200 OK	11 kB
URL GET HTTP/2 covid19.pt/Themes/MaviTheme/scripts/theme.js?fin20 IP 94.76.230.125:443 ASN #29550 Simply Transit Ltd Requested by https://covid19.pt/ Certificate IssuerLet's Encrypt Subjectcovid19.pt FingerprintE9:29:5D:93:96:62:CF:33:54:34:02:19:97:48:2D:D9:C8:EE:42:00 ValidityThu, 26 Oct 2023 17:01:51 GMT - Wed, 24 Jan 2024 17:01:50 GMT File type HTML document, ASCII text Size 11 kB (11274 bytes) Hash 3f1e665d2d1ee51f0d2207e12b8f0de9 000b2b15487582ce369b9cccdbcf488384732ade bdc4ef08557eceda4c7a75aa1f3f6ad4f6eba74eaf50717b4d3465cd411ac78b HTTP Headers `GET /Themes/MaviTheme/scripts/theme.js?fin20 HTTP/1.1 Host: covid19.pt User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://covid19.pt/ Cookie: PHPSESSID=91247qbkasa2isc3fj0bo1o5g0 Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache` `HTTP/2 200 OK server: nginx date: Sat, 09 Dec 2023 01:50:20 GMT content-type: application/javascript last-modified: Tue, 23 Nov 2021 10:05:58 GMT etag: W/"619cbd06-2c0a" x-powered-by: PleskLin content-encoding: br X-Firefox-Spdy: h2`

	covid19.pt/sachat/index.php?action=head	94.76.230.125	200 OK	133 kB
URL GET HTTP/2 covid19.pt/sachat/index.php?action=head IP 94.76.230.125:443 ASN #29550 Simply Transit Ltd Requested by https://covid19.pt/ Certificate IssuerLet's Encrypt Subjectcovid19.pt FingerprintE9:29:5D:93:96:62:CF:33:54:34:02:19:97:48:2D:D9:C8:EE:42:00 ValidityThu, 26 Oct 2023 17:01:51 GMT - Wed, 24 Jan 2024 17:01:50 GMT File type ASCII text, with very long lines (32099) Size 133 kB (132580 bytes) Hash ab42b3e5236ab4e0173f2511b951a51c 39390a196b30e79caae31302c421f0d09445a189 7966512d7424ae7ae6f576db586d75e2734a7a1de88dcc784066839b2ad9332b HTTP Headers `GET /sachat/index.php?action=head HTTP/1.1 Host: covid19.pt User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://covid19.pt/ Cookie: PHPSESSID=91247qbkasa2isc3fj0bo1o5g0 Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache` `HTTP/2 200 OK server: nginx date: Sat, 09 Dec 2023 01:50:20 GMT content-type: application/x-javascript; text/javascript expires: Thu, 19 Nov 1981 08:52:00 GMT cache-control: no-store, no-cache, must-revalidate pragma: no-cache x-powered-by: PHP/7.4.33, PleskLin X-Firefox-Spdy: h2`

	covid19.pt/Themes/default/scripts/LikePosts/LikePosts.min.js	94.76.230.125	200 OK	20 kB
URL GET HTTP/2 covid19.pt/Themes/default/scripts/LikePosts/LikePosts.min.js IP 94.76.230.125:443 ASN #29550 Simply Transit Ltd Requested by https://covid19.pt/ Certificate IssuerLet's Encrypt Subjectcovid19.pt FingerprintE9:29:5D:93:96:62:CF:33:54:34:02:19:97:48:2D:D9:C8:EE:42:00 ValidityThu, 26 Oct 2023 17:01:51 GMT - Wed, 24 Jan 2024 17:01:50 GMT File type ASCII text, with very long lines (19925), with no line terminators Size 20 kB (19925 bytes) Hash f7b357b5d3e27427b82222aaef9f7d98 793fd65eb5a6d5b0c9e78f448511882cbc62c686 0e9fe5a4ab55e14aa6a4c61e0bb314850a42a24cd8494379e4f2a4e8aeb3a145 HTTP Headers `GET /Themes/default/scripts/LikePosts/LikePosts.min.js HTTP/1.1 Host: covid19.pt User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://covid19.pt/ Cookie: PHPSESSID=91247qbkasa2isc3fj0bo1o5g0 Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache` `HTTP/2 200 OK server: nginx date: Sat, 09 Dec 2023 01:50:20 GMT content-type: application/javascript last-modified: Tue, 23 Nov 2021 10:08:04 GMT etag: W/"619cbd84-4dd5" x-powered-by: PleskLin content-encoding: br X-Firefox-Spdy: h2`

	covid19.pt/Themes/MaviTheme/scripts/bootstrap.min.js	94.76.230.125	200 OK	90 kB
URL GET HTTP/2 covid19.pt/Themes/MaviTheme/scripts/bootstrap.min.js IP 94.76.230.125:443 ASN #29550 Simply Transit Ltd Requested by https://covid19.pt/ Certificate IssuerLet's Encrypt Subjectcovid19.pt FingerprintE9:29:5D:93:96:62:CF:33:54:34:02:19:97:48:2D:D9:C8:EE:42:00 ValidityThu, 26 Oct 2023 17:01:51 GMT - Wed, 24 Jan 2024 17:01:50 GMT File type Size 90 kB (89930 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers `GET /Themes/MaviTheme/scripts/bootstrap.min.js HTTP/1.1 Host: covid19.pt User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://covid19.pt/ Cookie: PHPSESSID=91247qbkasa2isc3fj0bo1o5g0 Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache` `HTTP/2 200 OK server: nginx date: Sat, 09 Dec 2023 01:50:20 GMT content-type: application/javascript last-modified: Tue, 23 Nov 2021 10:05:58 GMT etag: W/"619cbd06-15f4a" x-powered-by: PleskLin content-encoding: br X-Firefox-Spdy: h2`

Report Overview

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

Public InfoSec YARA rules

OpenPhish

PhishTank

mnemonic secure dns

Quad9 DNS

ThreatFox

JavaScript (12)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by