Report - idehm.org/responsabilidade-ambiental/3215

Report Overview

Visited public
2024-07-07 07:40:02
Tags
URL
idehm.org/responsabilidade-ambiental/3215
Finishing URL
redfiretobind.com/go/gmzdkzdfmq5dcobygyza?sub1=severs&sub3=carlos
IP / ASN
107.180.12.114
#400754 GO-DADDY-COM-LLC
Title
Проверка браузера

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Domain / FQDN	Rank	Registered	First Seen	Last Seen	Sent	Received	IP
fonts.googleapis.com	8877	2005-01-25	2013-06-10 22:14:26	2024-07-07 02:44:20	1.3 kB	3.3 kB	142.250.74.74
www.idehm.org	unknown	2020-03-03	2020-09-10 19:09:13	2020-09-10 19:09:13	14 kB	579 kB	107.180.12.114
fonts.gstatic.com	unknown	2008-02-11	2014-09-09 02:40:21	2024-07-07 00:22:11	2.2 kB	83 kB	216.58.207.227
bind.bestresulttostart.com	unknown	2024-03-04	2024-03-22 10:31:16	2024-04-26 11:17:55	404 B	15 kB	193.163.7.113
ready.followtosfinishline.com	unknown	2024-05-23	2024-06-24 19:13:04	2024-06-24 19:13:04	522 B	5.8 kB	172.67.144.237
idehm.org	unknown	2020-03-03	2020-09-10 19:09:12	2020-09-15 08:44:58	411 B	402 B	107.180.12.114
background.apistatexperience.com	unknown	2024-03-01	2024-06-24 19:13:02	2024-06-26 18:52:43	417 B	57 kB	104.21.71.231
cdn.rdntocdns.com	unknown	unknown	No data	No data	496 B	6.4 kB	45.9.149.210
redfiretobind.com	unknown	unknown	No data	No data	1.1 kB	11 kB	172.67.175.133
go.followtosfinishline.com	unknown	2024-05-23	2024-06-24 19:13:05	2024-06-24 19:13:05	551 B	8.7 kB	172.67.144.237
r10.o.lencr.org	unknown	2020-06-29	2024-06-06 21:45:11	2024-07-06 18:12:32	2.9 kB	8.0 kB	23.36.76.226

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Timestamp	Severity	Source IP	Destination IP	Alert
2024-07-07 07:39:38	low	107.180.12.114	Client IP	ET HUNTING [TW] Likely Javascript-Obfuscator Usage Observed M1
2024-07-07 07:39:38	low	107.180.12.114	Client IP	ET HUNTING [TW] Likely Javascript-Obfuscator Usage Observed M2
2024-07-07 07:39:38	low	107.180.12.114	Client IP	ET HUNTING [TW] Likely Javascript-Obfuscator Usage Observed M3
2024-07-07 07:39:39	high	107.180.12.114	Client IP	ET HUNTING Possible Obfuscator io JavaScript Obfuscation
2024-07-07 07:39:40	high	Client IP	193.163.7.113	ET EXPLOIT_KIT Balada Domain in TLS SNI (bestresulttostart .com)
2024-07-07 07:39:40	medium	45.9.149.210	Client IP	ET DROP Spamhaus DROP Listed Traffic Inbound group 3
2024-07-07 07:39:40	high	Client IP	45.9.149.210	ET EXPLOIT_KIT Balada Domain in TLS SNI (rdntocdns .com)

Threat Detection Systems

Public InfoSec YARA rules

No alerts detected

OpenPhish

No alerts detected

PhishTank

No alerts detected

mnemonic secure dns

Scan Date	Severity	Indicator	Alert
2024-07-07	medium	bestresulttostart.com	Sinkholed
2024-07-06	medium	rdntocdns.com	Sinkholed

Quad9 DNS

Scan Date	Severity	Indicator	Alert
2024-07-07	medium	bestresulttostart.com	Sinkholed
2024-07-06	medium	apistatexperience.com	Sinkholed
2024-07-06	medium	rdntocdns.com	Sinkholed
2024-07-07	medium	redfiretobind.com	Sinkholed
2024-07-07	medium	followtosfinishline.com	Sinkholed
2024-07-07	medium	followtosfinishline.com	Sinkholed
2024-07-07	medium	redfiretobind.com	Sinkholed

ThreatFox

Scan Date	Severity	Indicator	Alert
2024-06-08	medium	cdn.rdntocdns.com	Unknown malware

JavaScript (2)

	URL	From	Size	First Seen	Last Seen
	redfiretobind.com/go/gmzdkzdfmq5dcobygyza?sub1=severs&sub3=carlos	ScriptElement	0 B	0001-01-01	2025-06-01
Pretty URL redfiretobind.com/go/gmzdkzdfmq5dcobygyza?sub1=severs&sub3=carlos IP 172.67.175.133 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen0001-01-01 00:00 Last Seen2025-06-01 09:55 Times Seen4813494 Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 Loading...

		Size	First Seen	Last Seen
	#1 Eval - 9bd9f92209fd6a6bd82037e383501e2b	8.0 kB	2024-08-19 17:44	2024-08-19 17:44
Pretty Observations First Seen2024-08-19 17:44 Last Seen2024-08-19 17:44 Times Seen1 Hash 9bd9f92209fd6a6bd82037e383501e2b a7150df030b1cb5ac99db6e702a4076abe9827f9 f6f8f1066b66bbd7bc6261d2c6e5cb743ff4fa9c83fd62deeddf213c310c5c54 Loading...

HTTP Transactions (59)

URL IP Response Size

r10.o.lencr.org/

23.36.76.226

504 B

URL
r10.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
504 B (504 bytes)
Hash
f63e8d9e64abf0e5b2784ca051160e84
d15d17504ed5c584ba42145060cf745fdb41c1d0
652ee033c72bc8eadcf29c25a5387bc303bf86e6c57f262c576117f659f15eab

HTTP Headers

POST / HTTP/1.1
Host: r10.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 504
ETag: "652EE033C72BC8EADCF29C25A5387BC303BF86E6C57F262C576117F659F15EAB"
Last-Modified: Fri, 05 Jul 2024 13:53:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7016
Expires: Sun, 07 Jul 2024 09:36:32 GMT
Date: Sun, 07 Jul 2024 07:39:36 GMT
Connection: keep-alive

r10.o.lencr.org/

23.36.76.226

504 B

URL
r10.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
504 B (504 bytes)
Hash
e9a839fbbf2a5bc4f1a01cd5fca04d5e
ff4396bb2dcc9211b70f2e3266720172ee2ce085
3bb2a3698d452f1de2ff4f283a89fc427d9fe01c02ad968f215bee1834b1c1e3

HTTP Headers

POST / HTTP/1.1
Host: r10.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 504
ETag: "3BB2A3698D452F1DE2FF4F283A89FC427D9FE01C02AD968F215BEE1834B1C1E3"
Last-Modified: Thu, 04 Jul 2024 15:27:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4320
Expires: Sun, 07 Jul 2024 08:51:36 GMT
Date: Sun, 07 Jul 2024 07:39:36 GMT
Connection: keep-alive

r10.o.lencr.org/

23.36.76.226

504 B

URL
r10.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
504 B (504 bytes)
Hash
508d0867e7982df7cfa6ad58e05ce470
6f4e15b94e527d02e8dd38f8b69b493cfae84c56
376a5286b71a4a7e90b3eece9b39480f50435d5ef3c7793828481f590d04bc77

HTTP Headers

POST / HTTP/1.1
Host: r10.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 504
ETag: "376A5286B71A4A7E90B3EECE9B39480F50435D5EF3C7793828481F590D04BC77"
Last-Modified: Thu, 04 Jul 2024 23:47:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=15269
Expires: Sun, 07 Jul 2024 11:54:06 GMT
Date: Sun, 07 Jul 2024 07:39:37 GMT
Connection: keep-alive

r10.o.lencr.org/

23.36.76.226

504 B

URL
r10.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
504 B (504 bytes)
Hash
223ffc40cc96a2aa59687065c089ccfc
6bc7fa694691bdca752335ecf0f7268bf2c908d5
1a1d7236b0738f65d98e772f67be883f477ac175767f971800a6bb3997399811

HTTP Headers

POST / HTTP/1.1
Host: r10.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 504
ETag: "1A1D7236B0738F65D98E772F67BE883F477AC175767F971800A6BB3997399811"
Last-Modified: Thu, 04 Jul 2024 16:18:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3358
Expires: Sun, 07 Jul 2024 08:35:35 GMT
Date: Sun, 07 Jul 2024 07:39:37 GMT
Connection: keep-alive

idehm.org/responsabilidade-ambiental/3215

107.180.12.114

0 B

URL
idehm.org/responsabilidade-ambiental/3215
IP
107.180.12.114:0
ASN
#400754 GO-DADDY-COM-LLC

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /responsabilidade-ambiental/3215 HTTP/1.1
Host: idehm.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 301 Moved Permanently
Date: Sun, 07 Jul 2024 07:39:37 GMT
Server: Apache
X-Powered-By: PHP/8.1.29
X-Pingback: http://www.idehm.org/xmlrpc.php
X-Redirect-By: WordPress
Upgrade: h2,h2c
Connection: Upgrade, Keep-Alive
Location: http://www.idehm.org/responsabilidade-ambiental/3215/
Vary: Accept-Encoding
Content-Length: 0
Keep-Alive: timeout=5
Content-Type: text/html; charset=UTF-8

fonts.googleapis.com/css?family=Oswald%3A400&display=swap&ver=6.3.5

142.250.74.74

539 B

URL
fonts.googleapis.com/css?family=Oswald%3A400&display=swap&ver=6.3.5
IP
142.250.74.74:0
ASN
#15169 GOOGLE

File type
ASCII text
Size
539 B (539 bytes)
Hash
452e678d1836f32d70b9e08f70608fc8
14b680faca9aaca0e427a235f309abe97491f2f1
46469f9860364a29782b7ed5a04ff158692618845fd16e0cd2b5ffb2d796ee2a

HTTP Headers

GET /css?family=Oswald%3A400&display=swap&ver=6.3.5 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://www.idehm.org/
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: text/css; charset=utf-8
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
Link: <http://fonts.gstatic.com>; rel=preconnect; crossorigin
Expires: Sun, 07 Jul 2024 07:39:39 GMT
Date: Sun, 07 Jul 2024 07:39:39 GMT
Cache-Control: private, max-age=86400
Cross-Origin-Opener-Policy: same-origin-allow-popups
Cross-Origin-Resource-Policy: cross-origin
Content-Encoding: gzip
Transfer-Encoding: chunked
Server: ESF
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
X-Content-Type-Options: nosniff

www.idehm.org/responsabilidade-ambiental/3215/

107.180.12.114

23 kB

URL
www.idehm.org/responsabilidade-ambiental/3215/
IP
107.180.12.114:0
ASN
#400754 GO-DADDY-COM-LLC

File type
HTML document, Unicode text, UTF-8 text, with very long lines (28616), with CRLF, LF line terminators
Size
23 kB (22948 bytes)
Hash
56ad226c2d1815045dbf3fe1950b97d3
f7c39301044575208f04654fb3751996e6cbbb10
5842b8dd2c47a89bc31f11df23747ff543eb39db6068f45e136ee696462b8ed1

Detections

NIDS	Severity	Alert
suricata	low	ET HUNTING [TW] Likely Javascript-Obfuscator Usage Observed M1
suricata	low	ET HUNTING [TW] Likely Javascript-Obfuscator Usage Observed M2
suricata	low	ET HUNTING [TW] Likely Javascript-Obfuscator Usage Observed M3
suricata	high	ET HUNTING Possible Obfuscator io JavaScript Obfuscation

HTTP Headers

GET /responsabilidade-ambiental/3215/ HTTP/1.1
Host: www.idehm.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Sun, 07 Jul 2024 07:39:38 GMT
Server: Apache
X-Powered-By: PHP/8.1.29
X-Pingback: http://www.idehm.org/xmlrpc.php
Link: <http://www.idehm.org/wp-json/>; rel="https://api.w.org/", <http://www.idehm.org/wp-json/wp/v2/posts/3215>; rel="alternate"; type="application/json", <http://www.idehm.org/?p=3215>; rel=shortlink
Upgrade: h2,h2c
Connection: Upgrade, Keep-Alive
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 22948
Keep-Alive: timeout=5
Content-Type: text/html; charset=UTF-8

fonts.googleapis.com/css?family=PT+Serif%3A300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C700%2C700italic%2C800%2C800italic%7CPlayfair+Display+SC%3A300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C700%2C700italic%2C800%2C800italic%7CMontserrat%3A300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C700%2C700italic%2C800%2C800italic%7CPoppins%3A300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C700%2C700italic%2C800%2C800italic%7CQuicksand%3A300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%26subset%3Dlatin%2Ccyrillic%2Ccyrillic-ext%2Cgreek%2Cgreek-ext%2Clatin-ext&display=swap&ver=8.0.6

142.250.74.74

1.7 kB

URL
fonts.googleapis.com/css?family=PT+Serif%3A300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C700%2C700italic%2C800%2C800italic%7CPlayfair+Display+SC%3A300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C700%2C700italic%2C800%2C800italic%7CMontserrat%3A300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C700%2C700italic%2C800%2C800italic%7CPoppins%3A300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C700%2C700italic%2C800%2C800italic%7CQuicksand%3A300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%26subset%3Dlatin%2Ccyrillic%2Ccyrillic-ext%2Cgreek%2Cgreek-ext%2Clatin-ext&display=swap&ver=8.0.6
IP
142.250.74.74:0
ASN
#15169 GOOGLE

File type
ASCII text
Size
1.7 kB (1706 bytes)
Hash
48129429852615ddf5e4e808ac2a8bcf
c61524ec5503331ad92a0fdc84531c7516904238
80d0244deb5a7916d1c6f44a988b23dc97d1191f197cd6ce6cb8fc0b5759631c

HTTP Headers

GET /css?family=PT+Serif%3A300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C700%2C700italic%2C800%2C800italic%7CPlayfair+Display+SC%3A300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C700%2C700italic%2C800%2C800italic%7CMontserrat%3A300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C700%2C700italic%2C800%2C800italic%7CPoppins%3A300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C700%2C700italic%2C800%2C800italic%7CQuicksand%3A300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%26subset%3Dlatin%2Ccyrillic%2Ccyrillic-ext%2Cgreek%2Cgreek-ext%2Clatin-ext&display=swap&ver=8.0.6 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://www.idehm.org/
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: text/css; charset=utf-8
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
Link: <http://fonts.gstatic.com>; rel=preconnect; crossorigin
Expires: Sun, 07 Jul 2024 07:39:39 GMT
Date: Sun, 07 Jul 2024 07:39:39 GMT
Cache-Control: private, max-age=86400
Cross-Origin-Resource-Policy: cross-origin
Cross-Origin-Opener-Policy: same-origin-allow-popups
Content-Encoding: gzip
Transfer-Encoding: chunked
Server: ESF
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
X-Content-Type-Options: nosniff

www.idehm.org/wp-content/plugins/contact-form-7/includes/swv/js/index.js?ver=5.9.5

107.180.12.114

3.4 kB

URL
www.idehm.org/wp-content/plugins/contact-form-7/includes/swv/js/index.js?ver=5.9.5
IP
107.180.12.114:0
ASN
#400754 GO-DADDY-COM-LLC

File type
JavaScript source, ASCII text, with very long lines (11513), with no line terminators
Size
3.4 kB (3354 bytes)
Hash
efc27e253fae1b7b891fb5a40e687768
ad12044651ffac0badcd0e42f32edef91678b1ff
46e36dd6ca93014e4915c723632bf180d27cc96ccfb7c26e69213e1a82129a62

HTTP Headers

GET /wp-content/plugins/contact-form-7/includes/swv/js/index.js?ver=5.9.5 HTTP/1.1
Host: www.idehm.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://www.idehm.org/responsabilidade-ambiental/3215/
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Sun, 07 Jul 2024 07:39:39 GMT
Server: Apache
Last-Modified: Fri, 07 Jun 2024 12:55:16 GMT
ETag: "dc22ed-2cf9-61a4c4fa9b95f-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 3354
Keep-Alive: timeout=5
Connection: Keep-Alive
Content-Type: text/javascript

www.idehm.org/wp-content/plugins/penci-recipe/fonts/ficon.woff2

107.180.12.114

3.5 kB

URL
www.idehm.org/wp-content/plugins/penci-recipe/fonts/ficon.woff2
IP
107.180.12.114:0
ASN
#400754 GO-DADDY-COM-LLC

File type
Web Open Font Format (Version 2), TrueType, length 3488, version 1.0
Size
3.5 kB (3488 bytes)
Hash
832155d06d67fe7f65eb5d9a83491c05
a9bd30e6cc52244170a6b09c9b5e1b2e6fc10d99
f94d9efd86bc37c97e8d75b5264e8f6d27aad47e01707576de2e0952521fdde8

HTTP Headers

GET /wp-content/plugins/penci-recipe/fonts/ficon.woff2 HTTP/1.1
Host: www.idehm.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://www.idehm.org/responsabilidade-ambiental/3215/
DNT: 1
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Sun, 07 Jul 2024 07:39:39 GMT
Server: Apache
Upgrade: h2,h2c
Connection: Upgrade, Keep-Alive
Last-Modified: Fri, 17 Dec 2021 20:35:57 GMT
ETag: "7809e5-da0-5d35d7c805951"
Accept-Ranges: bytes
Content-Length: 3488
Vary: Accept-Encoding
Keep-Alive: timeout=5
Content-Type: font/woff2

r10.o.lencr.org/

23.36.76.226

504 B

URL
r10.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
504 B (504 bytes)
Hash
861cce1bf441610f1dfbb14264d55122
1596b2c44fcdb5f7a49c73da766e4ab48b6bd064
f67d59f3fddbcaf61f9f1aa87eca02a320f59402bb412687a4db4d8aa81867d2

HTTP Headers

POST / HTTP/1.1
Host: r10.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 504
ETag: "F67D59F3FDDBCAF61F9F1AA87ECA02A320F59402BB412687A4DB4D8AA81867D2"
Last-Modified: Fri, 05 Jul 2024 17:32:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3661
Expires: Sun, 07 Jul 2024 08:40:40 GMT
Date: Sun, 07 Jul 2024 07:39:39 GMT
Connection: keep-alive

www.idehm.org/wp-content/plugins/contact-form-7/includes/css/styles.css?ver=5.9.5

107.180.12.114

1.0 kB

URL
www.idehm.org/wp-content/plugins/contact-form-7/includes/css/styles.css?ver=5.9.5
IP
107.180.12.114:0
ASN
#400754 GO-DADDY-COM-LLC

File type
ASCII text
Size
1.0 kB (1015 bytes)
Hash
3fd2afa98866679439097f4ab102fe0a
dbc9c4139e49d0d9fb41b7191aad1a2db6c555fd
ccd31ffa708d025833f954b3e0560cedd58df9a0d2706b2ccee5f501c5b2467b

HTTP Headers

GET /wp-content/plugins/contact-form-7/includes/css/styles.css?ver=5.9.5 HTTP/1.1
Host: www.idehm.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://www.idehm.org/responsabilidade-ambiental/3215/
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Sun, 07 Jul 2024 07:39:39 GMT
Server: Apache
Upgrade: h2,h2c
Connection: Upgrade, Keep-Alive
Last-Modified: Fri, 07 Jun 2024 12:55:16 GMT
ETag: "dc0d85-b4e-61a4c4fa9a1ee-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 1015
Keep-Alive: timeout=5
Content-Type: text/css

www.idehm.org/wp-includes/css/dist/block-library/style.min.css?ver=6.3.5

107.180.12.114

14 kB

URL
www.idehm.org/wp-includes/css/dist/block-library/style.min.css?ver=6.3.5
IP
107.180.12.114:0
ASN
#400754 GO-DADDY-COM-LLC

File type
ASCII text, with very long lines (53449)
Size
14 kB (13841 bytes)
Hash
03c0f2128c8dd615b1691c168f1d4456
defa44bed1f35ec899cfd358ca911390bca53e67
67447c3656caad630373253691f3e8f64467eafd6e7305c9b0e98111b0b41694

HTTP Headers

GET /wp-includes/css/dist/block-library/style.min.css?ver=6.3.5 HTTP/1.1
Host: www.idehm.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://www.idehm.org/responsabilidade-ambiental/3215/
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Sun, 07 Jul 2024 07:39:39 GMT
Server: Apache
Upgrade: h2,h2c
Connection: Upgrade, Keep-Alive
Last-Modified: Wed, 19 Jul 2023 11:13:55 GMT
ETag: "9a29e7-19824-600d5209602c0-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 13841
Keep-Alive: timeout=5
Content-Type: text/css

r10.o.lencr.org/

23.36.76.226

504 B

URL
r10.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
504 B (504 bytes)
Hash
861cce1bf441610f1dfbb14264d55122
1596b2c44fcdb5f7a49c73da766e4ab48b6bd064
f67d59f3fddbcaf61f9f1aa87eca02a320f59402bb412687a4db4d8aa81867d2

HTTP Headers

POST / HTTP/1.1
Host: r10.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 504
ETag: "F67D59F3FDDBCAF61F9F1AA87ECA02A320F59402BB412687A4DB4D8AA81867D2"
Last-Modified: Fri, 05 Jul 2024 17:32:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3661
Expires: Sun, 07 Jul 2024 08:40:40 GMT
Date: Sun, 07 Jul 2024 07:39:39 GMT
Connection: keep-alive

www.idehm.org/wp-content/themes/soledad/css/font-awesome.4.7.0.swap.min.css?ver=4.7.0

107.180.12.114

7.1 kB

URL
www.idehm.org/wp-content/themes/soledad/css/font-awesome.4.7.0.swap.min.css?ver=4.7.0
IP
107.180.12.114:0
ASN
#400754 GO-DADDY-COM-LLC

File type
ASCII text, with very long lines (30855), with CRLF line terminators
Size
7.1 kB (7070 bytes)
Hash
27dc6bf6c0bf71a70f3910eeb2dfe8e7
aeb8553011faafc83939c174836ea021ccffcfa4
582c413cbd7988d2047f667ccda947fcb5b1df3505ff0506fe9fd90188236b1b

HTTP Headers

GET /wp-content/themes/soledad/css/font-awesome.4.7.0.swap.min.css?ver=4.7.0 HTTP/1.1
Host: www.idehm.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://www.idehm.org/responsabilidade-ambiental/3215/
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Sun, 07 Jul 2024 07:39:39 GMT
Server: Apache
Upgrade: h2,h2c
Connection: Upgrade, Keep-Alive
Last-Modified: Fri, 17 Dec 2021 19:43:13 GMT
ETag: "84680e-793f-5d35cbfe2ee32-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 7070
Keep-Alive: timeout=5
Content-Type: text/css

r10.o.lencr.org/

23.36.76.226

504 B

URL
r10.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
504 B (504 bytes)
Hash
861cce1bf441610f1dfbb14264d55122
1596b2c44fcdb5f7a49c73da766e4ab48b6bd064
f67d59f3fddbcaf61f9f1aa87eca02a320f59402bb412687a4db4d8aa81867d2

HTTP Headers

POST / HTTP/1.1
Host: r10.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 504
ETag: "F67D59F3FDDBCAF61F9F1AA87ECA02A320F59402BB412687A4DB4D8AA81867D2"
Last-Modified: Fri, 05 Jul 2024 17:32:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3661
Expires: Sun, 07 Jul 2024 08:40:40 GMT
Date: Sun, 07 Jul 2024 07:39:39 GMT
Connection: keep-alive

r10.o.lencr.org/

23.36.76.226

504 B

URL
r10.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
504 B (504 bytes)
Hash
861cce1bf441610f1dfbb14264d55122
1596b2c44fcdb5f7a49c73da766e4ab48b6bd064
f67d59f3fddbcaf61f9f1aa87eca02a320f59402bb412687a4db4d8aa81867d2

HTTP Headers

POST / HTTP/1.1
Host: r10.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 504
ETag: "F67D59F3FDDBCAF61F9F1AA87ECA02A320F59402BB412687A4DB4D8AA81867D2"
Last-Modified: Fri, 05 Jul 2024 17:32:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3661
Expires: Sun, 07 Jul 2024 08:40:40 GMT
Date: Sun, 07 Jul 2024 07:39:39 GMT
Connection: keep-alive

r10.o.lencr.org/

23.36.76.226

504 B

URL
r10.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
504 B (504 bytes)
Hash
861cce1bf441610f1dfbb14264d55122
1596b2c44fcdb5f7a49c73da766e4ab48b6bd064
f67d59f3fddbcaf61f9f1aa87eca02a320f59402bb412687a4db4d8aa81867d2

HTTP Headers

POST / HTTP/1.1
Host: r10.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 504
ETag: "F67D59F3FDDBCAF61F9F1AA87ECA02A320F59402BB412687A4DB4D8AA81867D2"
Last-Modified: Fri, 05 Jul 2024 17:32:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3661
Expires: Sun, 07 Jul 2024 08:40:40 GMT
Date: Sun, 07 Jul 2024 07:39:39 GMT
Connection: keep-alive

www.idehm.org/wp-content/themes/soledad/css/weather-icon.swap.css?ver=2.0

107.180.12.114

471 B

URL
www.idehm.org/wp-content/themes/soledad/css/weather-icon.swap.css?ver=2.0
IP
107.180.12.114:0
ASN
#400754 GO-DADDY-COM-LLC

File type
ASCII text, with very long lines (1218), with CRLF line terminators
Size
471 B (471 bytes)
Hash
62ed523657bd32db433f2451f217a8e5
d90f0fc500c6c787e94c4fee021c6a84fa624950
2ab07a1e0cc7ae9a58af3aec47b945353d1fca8f4f5c1816416c82dfa1cf543b

HTTP Headers

GET /wp-content/themes/soledad/css/weather-icon.swap.css?ver=2.0 HTTP/1.1
Host: www.idehm.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://www.idehm.org/responsabilidade-ambiental/3215/
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Sun, 07 Jul 2024 07:39:39 GMT
Server: Apache
Last-Modified: Fri, 17 Dec 2021 19:43:13 GMT
ETag: "846815-51a-5d35cbfe382a2-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 471
Keep-Alive: timeout=5
Connection: Keep-Alive
Content-Type: text/css

www.idehm.org/wp-content/themes/soledad/css/font-awesome.5.11.2.swap.min.css?ver=5.11.2

107.180.12.114

12 kB

URL
www.idehm.org/wp-content/themes/soledad/css/font-awesome.5.11.2.swap.min.css?ver=5.11.2
IP
107.180.12.114:0
ASN
#400754 GO-DADDY-COM-LLC

File type
ASCII text, with very long lines (56656), with CRLF line terminators
Size
12 kB (12354 bytes)
Hash
beea0055757924680a20647a754d2f64
be5b21cb9e167089e9062b9556fe112d9a9cd917
4e566a76b2bff02050d3c344709b69ae656578dad033d8ebce4931867f8af507

HTTP Headers

GET /wp-content/themes/soledad/css/font-awesome.5.11.2.swap.min.css?ver=5.11.2 HTTP/1.1
Host: www.idehm.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://www.idehm.org/responsabilidade-ambiental/3215/
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Sun, 07 Jul 2024 07:39:39 GMT
Server: Apache
Last-Modified: Fri, 17 Dec 2021 19:43:13 GMT
ETag: "84680f-de0e-5d35cbfe3480a-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 12354
Keep-Alive: timeout=5
Connection: Keep-Alive
Content-Type: text/css

www.idehm.org/wp-content/themes/soledad/css/penci-icon.css?ver=8.0.6

107.180.12.114

1.3 kB

URL
www.idehm.org/wp-content/themes/soledad/css/penci-icon.css?ver=8.0.6
IP
107.180.12.114:0
ASN
#400754 GO-DADDY-COM-LLC

File type
ASCII text, with very long lines (5915), with no line terminators
Size
1.3 kB (1255 bytes)
Hash
e442451aecf06444b02ba1bebe170a62
ab6f44615f0d14bc388bf45f016247a97903aeea
ca96d3a33e406d441f08dcf60685468eb3b09c5e813382b2650ea5e95227d6b2

HTTP Headers

GET /wp-content/themes/soledad/css/penci-icon.css?ver=8.0.6 HTTP/1.1
Host: www.idehm.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://www.idehm.org/responsabilidade-ambiental/3215/
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Sun, 07 Jul 2024 07:39:39 GMT
Server: Apache
Last-Modified: Fri, 17 Dec 2021 19:43:13 GMT
ETag: "846813-171b-5d35cbfe39242-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 1255
Keep-Alive: timeout=5
Connection: Keep-Alive
Content-Type: text/css

www.idehm.org/wp-content/themes/soledad/style.css?ver=8.0.6

107.180.12.114

435 B

URL
www.idehm.org/wp-content/themes/soledad/style.css?ver=8.0.6
IP
107.180.12.114:0
ASN
#400754 GO-DADDY-COM-LLC

File type
ASCII text, with CRLF line terminators
Size
435 B (435 bytes)
Hash
927e60f791a6977b9a26225bfdefbd83
decb1943d04c981a8a659fed2954518f8a5f66c4
ee141b9107ecbf59f18ec51b71bd5e409fc7613541d201e608ddddd901c57807

HTTP Headers

GET /wp-content/themes/soledad/style.css?ver=8.0.6 HTTP/1.1
Host: www.idehm.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://www.idehm.org/responsabilidade-ambiental/3215/
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Sun, 07 Jul 2024 07:39:39 GMT
Server: Apache
Last-Modified: Fri, 17 Dec 2021 19:42:57 GMT
ETag: "803c91-2d7-5d35cbeec50bb-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 435
Keep-Alive: timeout=5
Connection: Keep-Alive
Content-Type: text/css

www.idehm.org/wp-content/themes/soledad/css/social-counter.css?ver=8.0.6

107.180.12.114

849 B

URL
www.idehm.org/wp-content/themes/soledad/css/social-counter.css?ver=8.0.6
IP
107.180.12.114:0
ASN
#400754 GO-DADDY-COM-LLC

File type
ASCII text
Size
849 B (849 bytes)
Hash
02e90e545e4be371b8549be507fab078
2b9af0d998a50169b8f5216c77d797deb2bc70eb
7873ef043aed77bb98070e33d312db10715f24ccd97d6771f901a7cc9ffd62b4

HTTP Headers

GET /wp-content/themes/soledad/css/social-counter.css?ver=8.0.6 HTTP/1.1
Host: www.idehm.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://www.idehm.org/responsabilidade-ambiental/3215/
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Sun, 07 Jul 2024 07:39:39 GMT
Server: Apache
Last-Modified: Fri, 17 Dec 2021 19:43:13 GMT
ETag: "846814-113e-5d35cbfe2d2da-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 849
Keep-Alive: timeout=5
Connection: Keep-Alive
Content-Type: text/css

www.idehm.org/wp-content/plugins/penci-recipe/css/recipe.css?ver=3.2

107.180.12.114

4.0 kB

URL
www.idehm.org/wp-content/plugins/penci-recipe/css/recipe.css?ver=3.2
IP
107.180.12.114:0
ASN
#400754 GO-DADDY-COM-LLC

File type
ASCII text, with CRLF line terminators
Size
4.0 kB (3999 bytes)
Hash
c66070d15a76808fed69a090e96f2f69
a3fbec16d53f6d01289846d422583290be5a1bdd
834619f071e37fd4b396c70c32c74d00f2b7e92f8c1839b7e09093157784d64c

HTTP Headers

GET /wp-content/plugins/penci-recipe/css/recipe.css?ver=3.2 HTTP/1.1
Host: www.idehm.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://www.idehm.org/responsabilidade-ambiental/3215/
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Sun, 07 Jul 2024 07:39:39 GMT
Server: Apache
Last-Modified: Fri, 17 Dec 2021 20:35:57 GMT
ETag: "7809e0-5962-5d35d7c814b82-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 3999
Keep-Alive: timeout=5
Connection: Keep-Alive
Content-Type: text/css

www.idehm.org/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.4.1

107.180.12.114

4.9 kB

URL
www.idehm.org/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.4.1
IP
107.180.12.114:0
ASN
#400754 GO-DADDY-COM-LLC

File type
JavaScript source, ASCII text, with very long lines (13479)
Size
4.9 kB (4872 bytes)
Hash
9ffeb32e2d9efbf8f70caabded242267
3ad0c10e501ac2a9bfa18f9cd7e700219b378738
5274f11e6fb32ae0cf2dfb9f8043272865c397a7c4223b4cfa7d50ea52fbde89

HTTP Headers

GET /wp-includes/js/jquery/jquery-migrate.min.js?ver=3.4.1 HTTP/1.1
Host: www.idehm.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://www.idehm.org/responsabilidade-ambiental/3215/
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Sun, 07 Jul 2024 07:39:39 GMT
Server: Apache
Last-Modified: Fri, 09 Jun 2023 05:49:24 GMT
ETag: "9a318d-3509-5fdabee5f2100-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 4872
Keep-Alive: timeout=5
Connection: Keep-Alive
Content-Type: text/javascript

www.idehm.org/wp-content/plugins/contact-form-7/includes/js/index.js?ver=5.9.5

107.180.12.114

4.2 kB

URL
www.idehm.org/wp-content/plugins/contact-form-7/includes/js/index.js?ver=5.9.5
IP
107.180.12.114:0
ASN
#400754 GO-DADDY-COM-LLC

File type
JavaScript source, ASCII text, with very long lines (13054), with no line terminators
Size
4.2 kB (4169 bytes)
Hash
917602d642f84a211838f0c1757c4dc1
392df3fb4b0ec96ce4ebb5616e6b2a5c55a54bf8
d702e5ed1e573918d912775ac1e88987fc177aa51efe1253a08f71ab54f96516

HTTP Headers

GET /wp-content/plugins/contact-form-7/includes/js/index.js?ver=5.9.5 HTTP/1.1
Host: www.idehm.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://www.idehm.org/responsabilidade-ambiental/3215/
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Sun, 07 Jul 2024 07:39:39 GMT
Server: Apache
Last-Modified: Fri, 07 Jun 2024 12:55:16 GMT
ETag: "dc22d3-32fe-61a4c4fa9a9be-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 4169
Keep-Alive: timeout=5
Connection: Keep-Alive
Content-Type: text/javascript

www.idehm.org/wp-content/plugins/penci-review/js/jquery.easypiechart.min.js?ver=1.0

107.180.12.114

1.7 kB

URL
www.idehm.org/wp-content/plugins/penci-review/js/jquery.easypiechart.min.js?ver=1.0
IP
107.180.12.114:0
ASN
#400754 GO-DADDY-COM-LLC

File type
JavaScript source, ASCII text, with very long lines (3765)
Size
1.7 kB (1691 bytes)
Hash
eac43429f465cc28ab77b033b7e0686e
add547d05e8c9ce8d3ddab731a133421416bb30b
f73f452b5961dbe04bffdc40586dc8c689e172c2dcbfa90353d92acb7a08c444

HTTP Headers

GET /wp-content/plugins/penci-review/js/jquery.easypiechart.min.js?ver=1.0 HTTP/1.1
Host: www.idehm.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://www.idehm.org/responsabilidade-ambiental/3215/
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Sun, 07 Jul 2024 07:39:39 GMT
Server: Apache
Last-Modified: Fri, 17 Dec 2021 20:35:58 GMT
ETag: "7809fb-f96-5d35d7c8815cf-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 1691
Keep-Alive: timeout=5
Connection: Keep-Alive
Content-Type: text/javascript

www.idehm.org/wp-content/plugins/penci-review/js/review.js?ver=1.0

107.180.12.114

363 B

URL
www.idehm.org/wp-content/plugins/penci-review/js/review.js?ver=1.0
IP
107.180.12.114:0
ASN
#400754 GO-DADDY-COM-LLC

File type
JavaScript source, ASCII text
Size
363 B (363 bytes)
Hash
138f50212db62f22d59f42caa411b85e
e5ca597bcd93b10f897334fd9bd33e69d2c7a574
26b5a9446c18da1563178cd30d379a3b569420d1ab17f8f8282430de8b8482b6

HTTP Headers

GET /wp-content/plugins/penci-review/js/review.js?ver=1.0 HTTP/1.1
Host: www.idehm.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://www.idehm.org/responsabilidade-ambiental/3215/
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Sun, 07 Jul 2024 07:39:39 GMT
Server: Apache
Last-Modified: Fri, 17 Dec 2021 20:35:58 GMT
ETag: "7809fc-315-5d35d7c87e307-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 363
Keep-Alive: timeout=5
Connection: Keep-Alive
Content-Type: text/javascript

www.idehm.org/wp-includes/js/jquery/jquery.min.js?ver=3.7.0

107.180.12.114

30 kB

URL
www.idehm.org/wp-includes/js/jquery/jquery.min.js?ver=3.7.0
IP
107.180.12.114:0
ASN
#400754 GO-DADDY-COM-LLC

File type
JavaScript source, ASCII text, with very long lines (65447)
Size
30 kB (30343 bytes)
Hash
ff04dd1ef5c67998d8652330c0441689
5e6ff5bd5240181a8bdea983837f39ac231dac4d
5c93f77799d122fb5255ee24da285f9f228cc118cba11e6ceb2b6bda8cdf4164

HTTP Headers

GET /wp-includes/js/jquery/jquery.min.js?ver=3.7.0 HTTP/1.1
Host: www.idehm.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://www.idehm.org/responsabilidade-ambiental/3215/
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Sun, 07 Jul 2024 07:39:39 GMT
Server: Apache
Last-Modified: Fri, 26 May 2023 11:33:35 GMT
ETag: "9a3195-155ba-5fc971b7d21c0-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 30343
Keep-Alive: timeout=5
Connection: Keep-Alive
Content-Type: text/javascript

www.idehm.org/wp-content/themes/soledad/js/main.js?ver=8.0.6

107.180.12.114

13 kB

URL
www.idehm.org/wp-content/themes/soledad/js/main.js?ver=8.0.6
IP
107.180.12.114:0
ASN
#400754 GO-DADDY-COM-LLC

File type
JavaScript source, ASCII text
Size
13 kB (13260 bytes)
Hash
47fbaca0282965961e81627b588240dc
52098c835e6aa7c5eced0bc521315db583d4ea02
561082a2eefd28d51a274665cb76ce74a4af25cc4e7fa5a2fd7c736683fae0c7

HTTP Headers

GET /wp-content/themes/soledad/js/main.js?ver=8.0.6 HTTP/1.1
Host: www.idehm.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://www.idehm.org/responsabilidade-ambiental/3215/
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Sun, 07 Jul 2024 07:39:39 GMT
Server: Apache
Last-Modified: Fri, 17 Dec 2021 19:43:13 GMT
ETag: "dc0c72-154f1-5d35cbfe8aaf6-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 13260
Keep-Alive: timeout=5
Connection: Keep-Alive
Content-Type: text/javascript

www.idehm.org/wp-content/themes/soledad/main.css?ver=8.0.6

107.180.12.114

114 kB

URL
www.idehm.org/wp-content/themes/soledad/main.css?ver=8.0.6
IP
107.180.12.114:0
ASN
#400754 GO-DADDY-COM-LLC

File type
ASCII text, with CRLF line terminators
Size
114 kB (113491 bytes)
Hash
8ebc4aef7f24e26d621e988680b68261
c4a6acfbe633f04daea7a4a6db5ee3301a4f0e55
73dfa75162f452d25f63f4a3131a475d99315ee1ed9bc2dabd21716f3ac8e281

HTTP Headers

GET /wp-content/themes/soledad/main.css?ver=8.0.6 HTTP/1.1
Host: www.idehm.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://www.idehm.org/responsabilidade-ambiental/3215/
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Sun, 07 Jul 2024 07:39:39 GMT
Server: Apache
Upgrade: h2,h2c
Connection: Upgrade, Keep-Alive
Last-Modified: Fri, 17 Dec 2021 19:42:56 GMT
ETag: "803c7c-dc77c-5d35cbee328f5-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Keep-Alive: timeout=5
Transfer-Encoding: chunked
Content-Type: text/css

www.idehm.org/wp-content/themes/soledad/js/post-like.js?ver=8.0.6

107.180.12.114

465 B

URL
www.idehm.org/wp-content/themes/soledad/js/post-like.js?ver=8.0.6
IP
107.180.12.114:0
ASN
#400754 GO-DADDY-COM-LLC

File type
ASCII text, with CRLF line terminators
Size
465 B (465 bytes)
Hash
d0ed44f72c84972b9a0be09fadd87e34
5cf54cfe4e9c3f6eb32d28af9f6a534719dfcfab
012f916c0da7df9f2f60c07ecac0fb5112fca218ae271b22f976aeb4ae811d02

HTTP Headers

GET /wp-content/themes/soledad/js/post-like.js?ver=8.0.6 HTTP/1.1
Host: www.idehm.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://www.idehm.org/responsabilidade-ambiental/3215/
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Sun, 07 Jul 2024 07:39:39 GMT
Server: Apache
Last-Modified: Fri, 17 Dec 2021 19:43:13 GMT
ETag: "dc0c7d-459-5d35cbfe7012d-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 465
Keep-Alive: timeout=5
Connection: Keep-Alive
Content-Type: text/javascript

www.idehm.org/wp-includes/js/comment-reply.min.js?ver=6.3.5

107.180.12.114

1.4 kB

URL
www.idehm.org/wp-includes/js/comment-reply.min.js?ver=6.3.5
IP
107.180.12.114:0
ASN
#400754 GO-DADDY-COM-LLC

File type
ASCII text, with very long lines (2946)
Size
1.4 kB (1351 bytes)
Hash
492f2c1a7ea7eb83fe42e0ff7cb51aa2
db36a77f6aaa2063bfbec02c2c0e967438c5a245
e174a58a503ab84b3d1b9de12fd3895788204485170f1289e445f7b5b98ec789

HTTP Headers

GET /wp-includes/js/comment-reply.min.js?ver=6.3.5 HTTP/1.1
Host: www.idehm.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://www.idehm.org/responsabilidade-ambiental/3215/
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Sun, 07 Jul 2024 07:39:39 GMT
Server: Apache
Last-Modified: Fri, 08 Apr 2022 20:07:18 GMT
ETag: "9a3048-ba5-5dc2a2438e980-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 1351
Keep-Alive: timeout=5
Connection: Keep-Alive
Content-Type: text/javascript

www.idehm.org/wp-content/plugins/penci-recipe/js/jquery.rateyo.min.js?ver=3.2

107.180.12.114

4.3 kB

URL
www.idehm.org/wp-content/plugins/penci-recipe/js/jquery.rateyo.min.js?ver=3.2
IP
107.180.12.114:0
ASN
#400754 GO-DADDY-COM-LLC

File type
JavaScript source, ASCII text, with very long lines (9050)
Size
4.3 kB (4292 bytes)
Hash
08fd62b88edd0a34d794624736d3c9d3
25ce9945d8023fc8e3a7e41cda05270dfca8dea0
b5d02f2185ebaa449c168561a1900a1540c68aee0241feadb3c75a545900fff7

HTTP Headers

GET /wp-content/plugins/penci-recipe/js/jquery.rateyo.min.js?ver=3.2 HTTP/1.1
Host: www.idehm.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://www.idehm.org/responsabilidade-ambiental/3215/
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Sun, 07 Jul 2024 07:39:39 GMT
Server: Apache
Last-Modified: Fri, 17 Dec 2021 20:35:57 GMT
ETag: "7809ea-23c4-5d35d7c81a942-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 4292
Keep-Alive: timeout=5
Connection: Keep-Alive
Content-Type: text/javascript

www.idehm.org/wp-content/plugins/penci-recipe/js/rating_recipe.js?ver=3.2

107.180.12.114

523 B

URL
www.idehm.org/wp-content/plugins/penci-recipe/js/rating_recipe.js?ver=3.2
IP
107.180.12.114:0
ASN
#400754 GO-DADDY-COM-LLC

File type
ASCII text, with CRLF line terminators
Size
523 B (523 bytes)
Hash
0a4a8d65fbcc93b183941518310089f7
996c9e9bce19c6b7cd2442402ad5fd11f13e6e7f
e7a9aaef125713e5b57733e89b419b2dc7145efb1301fadc6eb312f21fbe0838

HTTP Headers

GET /wp-content/plugins/penci-recipe/js/rating_recipe.js?ver=3.2 HTTP/1.1
Host: www.idehm.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://www.idehm.org/responsabilidade-ambiental/3215/
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Sun, 07 Jul 2024 07:39:39 GMT
Server: Apache
Last-Modified: Fri, 17 Dec 2021 20:35:57 GMT
ETag: "7809ed-4cc-5d35d7c8199a2-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 523
Keep-Alive: timeout=5
Connection: Keep-Alive
Content-Type: text/javascript

www.idehm.org/wp-content/plugins/penci-portfolio/js/penci-portfolio.js?ver=1.0

107.180.12.114

435 B

URL
www.idehm.org/wp-content/plugins/penci-portfolio/js/penci-portfolio.js?ver=1.0
IP
107.180.12.114:0
ASN
#400754 GO-DADDY-COM-LLC

File type
JavaScript source, ASCII text
Size
435 B (435 bytes)
Hash
7a72bd3b79f3909aaca6d99c90c28ede
af6ce757184c050b79b237c4685d8d1d6fec6926
32e092aeb78ab1755b68404b12f3e60807633957e2847d89793a57cf123d3668

HTTP Headers

GET /wp-content/plugins/penci-portfolio/js/penci-portfolio.js?ver=1.0 HTTP/1.1
Host: www.idehm.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://www.idehm.org/responsabilidade-ambiental/3215/
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Sun, 07 Jul 2024 07:39:39 GMT
Server: Apache
Last-Modified: Fri, 17 Dec 2021 19:47:29 GMT
ETag: "7809dd-4b0-5d35ccf2abea0-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 435
Keep-Alive: timeout=5
Connection: Keep-Alive
Content-Type: text/javascript

www.idehm.org/wp-content/uploads/2022/02/logo_idehm.png

107.180.12.114

17 kB

URL
www.idehm.org/wp-content/uploads/2022/02/logo_idehm.png
IP
107.180.12.114:0
ASN
#400754 GO-DADDY-COM-LLC

File type
PNG image data, 702 x 367, 8-bit/color RGBA, non-interlaced
Size
17 kB (16910 bytes)
Hash
116ba0de67303234c8f317cdcc356de0
5c5c23d16b1ae2ad7492a1675e06affddc0553d3
cc6c59e0c877c8fdf39bb0de9c40a8b7a8ae6587ac522a74ccb85f9b9c090bfd

HTTP Headers

GET /wp-content/uploads/2022/02/logo_idehm.png HTTP/1.1
Host: www.idehm.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://www.idehm.org/responsabilidade-ambiental/3215/
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Sun, 07 Jul 2024 07:39:39 GMT
Server: Apache
Last-Modified: Fri, 18 Feb 2022 13:38:15 GMT
ETag: "dc10ac-420e-5d84afeaf56bd"
Accept-Ranges: bytes
Content-Length: 16910
Keep-Alive: timeout=5
Connection: Keep-Alive
Content-Type: image/png

www.idehm.org/wp-content/themes/soledad/images/penci-holder.png

107.180.12.114

125 B

URL
www.idehm.org/wp-content/themes/soledad/images/penci-holder.png
IP
107.180.12.114:0
ASN
#400754 GO-DADDY-COM-LLC

File type
PNG image data, 6 x 4, 8-bit colormap, non-interlaced
Size
125 B (125 bytes)
Hash
39e5ebeccbad32a5f86755ab32bcb536
28010c803b52aec8f3b68bf5ffef0961996fccac
5afae4fdead31c173a0ae121f7cb84909b3f7729fd7235930f22758f297910f2

HTTP Headers

GET /wp-content/themes/soledad/images/penci-holder.png HTTP/1.1
Host: www.idehm.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://www.idehm.org/responsabilidade-ambiental/3215/
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Sun, 07 Jul 2024 07:39:39 GMT
Server: Apache
Last-Modified: Fri, 17 Dec 2021 19:42:56 GMT
ETag: "dc0842-7d-5d35cbee474fd"
Accept-Ranges: bytes
Content-Length: 125
Keep-Alive: timeout=5
Connection: Keep-Alive
Content-Type: image/png

fonts.gstatic.com/s/poppins/v21/pxiByp8kv8JHgFVrLGT9Z1xlFQ.woff2

216.58.207.227

7.7 kB

URL
fonts.gstatic.com/s/poppins/v21/pxiByp8kv8JHgFVrLGT9Z1xlFQ.woff2
IP
216.58.207.227:0
ASN
#15169 GOOGLE

File type
Web Open Font Format (Version 2), TrueType, length 7748, version 1.0
Size
7.7 kB (7748 bytes)
Hash
a09f2fccfee35b7247b08a1a266f0328
0da2d17e738f46d2a09e6fb7969da451719a9820
cd36de204aca2d5fa263a731f7c20009b5e3d754ba1f1e03c33e93a48f3e7446

HTTP Headers

GET /s/poppins/v21/pxiByp8kv8JHgFVrLGT9Z1xlFQ.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://www.idehm.org
DNT: 1
Connection: keep-alive
Referer: http://fonts.googleapis.com/
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Access-Control-Allow-Origin: *
Content-Security-Policy-Report-Only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
Cross-Origin-Resource-Policy: cross-origin
Cross-Origin-Opener-Policy: same-origin; report-to="apps-themes"
Report-To: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
Timing-Allow-Origin: *
Content-Length: 7748
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 0
Date: Fri, 05 Jul 2024 08:41:20 GMT
Expires: Sat, 05 Jul 2025 08:41:20 GMT
Cache-Control: public, max-age=31536000
Age: 169100
Last-Modified: Fri, 22 Mar 2024 00:01:14 GMT
Content-Type: font/woff2

www.idehm.org/wp-content/themes/soledad/js/libs-script.min.js?ver=8.0.6

107.180.12.114

48 kB

URL
www.idehm.org/wp-content/themes/soledad/js/libs-script.min.js?ver=8.0.6
IP
107.180.12.114:0
ASN
#400754 GO-DADDY-COM-LLC

File type
JavaScript source, ASCII text, with very long lines (25374), with CRLF line terminators
Size
48 kB (47719 bytes)
Hash
8d6f0cbf97e9de138a060ea4869af0b0
993dc6f65ea6b9fdea3d42a617b835047cb36f97
73f506f01b38bc4bd93b6f40df99b44f540f352a98f2f9d0a0d1b1566b44a2eb

HTTP Headers

GET /wp-content/themes/soledad/js/libs-script.min.js?ver=8.0.6 HTTP/1.1
Host: www.idehm.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://www.idehm.org/responsabilidade-ambiental/3215/
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Sun, 07 Jul 2024 07:39:39 GMT
Server: Apache
Last-Modified: Fri, 17 Dec 2021 19:43:13 GMT
ETag: "dc0c70-2a675-5d35cbfe7c47d-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 47719
Keep-Alive: timeout=5
Connection: Keep-Alive
Content-Type: text/javascript

fonts.gstatic.com/s/quicksand/v31/6xKtdSZaM9iE8KbpRA_hK1QN.woff2

216.58.207.227

28 kB

URL
fonts.gstatic.com/s/quicksand/v31/6xKtdSZaM9iE8KbpRA_hK1QN.woff2
IP
216.58.207.227:0
ASN
#15169 GOOGLE

File type
Web Open Font Format (Version 2), TrueType, length 28064, version 1.0
Size
28 kB (28064 bytes)
Hash
314d6364bbee6681d0b2364ee3555e2e
c5aab803abe36bf664d7b7e2a3731cd849337006
5a42c91e1ecc9b09346a1520d9a6f98074c13eebfb1cc87c4e82e5992beb685b

HTTP Headers

GET /s/quicksand/v31/6xKtdSZaM9iE8KbpRA_hK1QN.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://www.idehm.org
DNT: 1
Connection: keep-alive
Referer: http://fonts.googleapis.com/
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Access-Control-Allow-Origin: *
Content-Security-Policy-Report-Only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
Cross-Origin-Resource-Policy: cross-origin
Cross-Origin-Opener-Policy: same-origin; report-to="apps-themes"
Report-To: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
Timing-Allow-Origin: *
Content-Length: 28064
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 0
Date: Thu, 04 Jul 2024 11:52:18 GMT
Expires: Fri, 04 Jul 2025 11:52:18 GMT
Cache-Control: public, max-age=31536000
Last-Modified: Wed, 13 Sep 2023 23:22:14 GMT
Content-Type: font/woff2
Age: 244042

fonts.gstatic.com/s/poppins/v21/pxiByp8kv8JHgFVrLCz7Z1xlFQ.woff2

216.58.207.227

7.8 kB

URL
fonts.gstatic.com/s/poppins/v21/pxiByp8kv8JHgFVrLCz7Z1xlFQ.woff2
IP
216.58.207.227:0
ASN
#15169 GOOGLE

File type
Web Open Font Format (Version 2), TrueType, length 7816, version 1.0
Size
7.8 kB (7816 bytes)
Hash
25b0e113ca7cce3770d542736db26368
cb726212d5d525021752a1d8470a0fb593e0c49e
9338e65fc077355c7a87ae0d64cc101e23b9bf8ad78ae65f0f319c857311b526

HTTP Headers

GET /s/poppins/v21/pxiByp8kv8JHgFVrLCz7Z1xlFQ.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://www.idehm.org
DNT: 1
Connection: keep-alive
Referer: http://fonts.googleapis.com/
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Access-Control-Allow-Origin: *
Content-Security-Policy-Report-Only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
Cross-Origin-Resource-Policy: cross-origin
Cross-Origin-Opener-Policy: same-origin; report-to="apps-themes"
Report-To: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
Timing-Allow-Origin: *
Content-Length: 7816
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 0
Date: Wed, 03 Jul 2024 21:59:07 GMT
Expires: Thu, 03 Jul 2025 21:59:07 GMT
Cache-Control: public, max-age=31536000
Last-Modified: Fri, 22 Mar 2024 00:00:32 GMT
Content-Type: font/woff2
Age: 294033

fonts.gstatic.com/s/quicksand/v31/6xKtdSZaM9iE8KbpRA_hK1QN.woff2

216.58.207.227

28 kB

URL
fonts.gstatic.com/s/quicksand/v31/6xKtdSZaM9iE8KbpRA_hK1QN.woff2
IP
216.58.207.227:0
ASN
#15169 GOOGLE

File type
Web Open Font Format (Version 2), TrueType, length 28064, version 1.0
Size
28 kB (28064 bytes)
Hash
314d6364bbee6681d0b2364ee3555e2e
c5aab803abe36bf664d7b7e2a3731cd849337006
5a42c91e1ecc9b09346a1520d9a6f98074c13eebfb1cc87c4e82e5992beb685b

HTTP Headers

GET /s/quicksand/v31/6xKtdSZaM9iE8KbpRA_hK1QN.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://www.idehm.org
DNT: 1
Connection: keep-alive
Referer: http://fonts.googleapis.com/
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Access-Control-Allow-Origin: *
Content-Security-Policy-Report-Only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
Cross-Origin-Resource-Policy: cross-origin
Cross-Origin-Opener-Policy: same-origin; report-to="apps-themes"
Report-To: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
Timing-Allow-Origin: *
Content-Length: 28064
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 0
Date: Thu, 04 Jul 2024 11:52:18 GMT
Expires: Fri, 04 Jul 2025 11:52:18 GMT
Cache-Control: public, max-age=31536000
Last-Modified: Wed, 13 Sep 2023 23:22:14 GMT
Content-Type: font/woff2
Age: 244042

fonts.gstatic.com/s/poppins/v21/pxiEyp8kv8JHgFVrJJfecg.woff2

216.58.207.227

7.9 kB

URL
fonts.gstatic.com/s/poppins/v21/pxiEyp8kv8JHgFVrJJfecg.woff2
IP
216.58.207.227:0
ASN
#15169 GOOGLE

File type
Web Open Font Format (Version 2), TrueType, length 7884, version 1.0
Size
7.9 kB (7884 bytes)
Hash
9212f6f9860f9fc6c69b02fedf6db8c3
ac6d71b4d5fdd2b3dabc9a06ff6c001e4251da0b
7d93459d86585bfcdbb7e0376056226adb25821ee54b96236fe2123e9560929f

HTTP Headers

GET /s/poppins/v21/pxiEyp8kv8JHgFVrJJfecg.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://www.idehm.org
DNT: 1
Connection: keep-alive
Referer: http://fonts.googleapis.com/
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Access-Control-Allow-Origin: *
Content-Security-Policy-Report-Only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
Cross-Origin-Resource-Policy: cross-origin
Cross-Origin-Opener-Policy: same-origin; report-to="apps-themes"
Report-To: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
Timing-Allow-Origin: *
Content-Length: 7884
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 0
Date: Wed, 03 Jul 2024 19:32:21 GMT
Expires: Thu, 03 Jul 2025 19:32:21 GMT
Cache-Control: public, max-age=31536000
Last-Modified: Fri, 22 Mar 2024 00:00:38 GMT
Content-Type: font/woff2
Age: 302839

bind.bestresulttostart.com/xf4mKQ

193.163.7.113

15 kB

URL
bind.bestresulttostart.com/xf4mKQ
IP
193.163.7.113:0
ASN
#204601 Zomro B.V.

File type
JavaScript source, ASCII text, with very long lines (36986), with no line terminators
Size
15 kB (14956 bytes)
Hash
67931d4afa6241cb9dcd43f372d11eb6
873e636f1e1190156d1eda637092f0ea607dc6af
f0045fac6f511f58f5aa2600ddcecc0e60bc47cda0851d856e648270b658fa61

Detections

Analyzer	Verdict	Alert
mnemonic secure dns	malicious	Sinkholed
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /xf4mKQ HTTP/1.1
Host: bind.bestresulttostart.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://www.idehm.org/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx
date: Sun, 07 Jul 2024 07:39:40 GMT
content-type: application/javascript; charset=utf-8
content-length: 14956
access-control-allow-origin: *
access-control-allow-methods: GET, POST
access-control-allow-headers: X-Requested-With
vary: Accept-Encoding
content-encoding: gzip
strict-transport-security: max-age=31536000;
X-Firefox-Spdy: h2

background.apistatexperience.com/starts/see.js

104.21.71.231

56 kB

URL
background.apistatexperience.com/starts/see.js
IP
104.21.71.231:0
ASN
#13335 CLOUDFLARENET

File type
gzip compressed data, from Unix
Size
56 kB (56448 bytes)
Hash
c6d66184d7469bb5bb27d29781824d6a
eda11506b239d71e3caa12a738c9c1f93efdf875
a387f8d660a413819a8ae5a3be8748fe860372b2d257a0f5fc2461ad1c9e435a

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /starts/see.js HTTP/1.1
Host: background.apistatexperience.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://www.idehm.org/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Sun, 07 Jul 2024 07:39:39 GMT
content-type: application/javascript; charset=utf-8
last-modified: Thu, 20 Jun 2024 10:08:06 GMT
vary: Accept-Encoding
etag: W/"6673ff86-7df9"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
content-encoding: gzip
cf-cache-status: HIT
age: 168862
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=EWfc40EJGyNjiE0oUjKvWIT2iV%2BWLEM5usQhfAdKYsw1M%2F6TLyu26XgxSEP4cjpJsS9hpUXo7mRJSczUfaSbA9EU%2F%2BtOgdE6nu3HP5bmNMp%2FTBJ%2Bq%2FT1tgO5ZMfqwVg1JfPnXYdo7ZrEeX4xY8XdbZxVpw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 89f62e96dd2f56a4-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

www.idehm.org/wp-content/themes/soledad/webfonts/fa-regular-400.woff2

107.180.12.114

14 kB

URL
www.idehm.org/wp-content/themes/soledad/webfonts/fa-regular-400.woff2
IP
107.180.12.114:0
ASN
#400754 GO-DADDY-COM-LLC

File type
Web Open Font Format (Version 2), TrueType, length 13584, version 330.32636
Size
14 kB (13584 bytes)
Hash
f5f2566b93e89391da4db79462b8078b
be142af0f56062f6e864de121b98054c7b5954fd
0fc0a22e5e67c95d02c389a1454acc67df53e2f6a46af739f3eac7e352644751

HTTP Headers

GET /wp-content/themes/soledad/webfonts/fa-regular-400.woff2 HTTP/1.1
Host: www.idehm.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
DNT: 1
Connection: keep-alive
Referer: http://www.idehm.org/wp-content/themes/soledad/css/font-awesome.5.11.2.swap.min.css?ver=5.11.2
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Sun, 07 Jul 2024 07:39:40 GMT
Server: Apache
Last-Modified: Fri, 17 Dec 2021 19:43:14 GMT
ETag: "dc0cef-3510-5d35cbfeebdaa"
Accept-Ranges: bytes
Content-Length: 13584
Vary: Accept-Encoding
Keep-Alive: timeout=5
Connection: Keep-Alive
Content-Type: font/woff2

www.idehm.org/wp-content/themes/soledad/webfonts/fa-brands-400.woff2

107.180.12.114

75 kB

URL
www.idehm.org/wp-content/themes/soledad/webfonts/fa-brands-400.woff2
IP
107.180.12.114:0
ASN
#400754 GO-DADDY-COM-LLC

File type
Web Open Font Format (Version 2), TrueType, length 75336, version 330.32636
Size
75 kB (75336 bytes)
Hash
cccc9d29470e879e40eb70249d9a2705
5fe986cda635681b4b6bbd6111df2f26d7fca286
d3caf12591d194712facd10bca14f0a924edb59c24447a3fd994a48286db8843

HTTP Headers

GET /wp-content/themes/soledad/webfonts/fa-brands-400.woff2 HTTP/1.1
Host: www.idehm.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
DNT: 1
Connection: keep-alive
Referer: http://www.idehm.org/wp-content/themes/soledad/css/font-awesome.5.11.2.swap.min.css?ver=5.11.2
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Sun, 07 Jul 2024 07:39:40 GMT
Server: Apache
Last-Modified: Fri, 17 Dec 2021 19:43:14 GMT
ETag: "dc0cea-12648-5d35cbfee1d82"
Accept-Ranges: bytes
Content-Length: 75336
Vary: Accept-Encoding
Keep-Alive: timeout=5
Connection: Keep-Alive
Content-Type: font/woff2

www.idehm.org/wp-content/themes/soledad/webfonts/fa-solid-900.woff2

107.180.12.114

76 kB

URL
www.idehm.org/wp-content/themes/soledad/webfonts/fa-solid-900.woff2
IP
107.180.12.114:0
ASN
#400754 GO-DADDY-COM-LLC

File type
Web Open Font Format (Version 2), TrueType, length 75728, version 330.32636
Size
76 kB (75728 bytes)
Hash
44d537ab79f921fde5a28b2c1636f397
b2879f9e1d0985a96842bf7f55a2b2cc4c636d04
3d1080625d3030e88357b3ac9aa377dcec23f1b529c4ad03f7a9a435ccae04be

HTTP Headers

GET /wp-content/themes/soledad/webfonts/fa-solid-900.woff2 HTTP/1.1
Host: www.idehm.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
DNT: 1
Connection: keep-alive
Referer: http://www.idehm.org/wp-content/themes/soledad/css/font-awesome.5.11.2.swap.min.css?ver=5.11.2
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Sun, 07 Jul 2024 07:39:40 GMT
Server: Apache
Last-Modified: Fri, 17 Dec 2021 19:43:14 GMT
ETag: "dc0cf4-127d0-5d35cbfee9a82"
Accept-Ranges: bytes
Content-Length: 75728
Vary: Accept-Encoding
Keep-Alive: timeout=5
Connection: Keep-Alive
Content-Type: font/woff2

www.idehm.org/wp-content/uploads/2023/02/Apresentacao1-2-585x390.jpg

107.180.12.114

15 kB

URL
www.idehm.org/wp-content/uploads/2023/02/Apresentacao1-2-585x390.jpg
IP
107.180.12.114:0
ASN
#400754 GO-DADDY-COM-LLC

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, baseline, precision 8, 585x390, components 3
Size
15 kB (15071 bytes)
Hash
817bd90dfc264957f2b1e2dbdd6d554f
519b730e4c6196e0b77de4142e3f6e253021c7b7
3aa4b3f5f89ce4df6f2420ea7cc0faaa8bc0dabdadd0e1b0a8b08f431c17f38a

HTTP Headers

GET /wp-content/uploads/2023/02/Apresentacao1-2-585x390.jpg HTTP/1.1
Host: www.idehm.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://www.idehm.org/responsabilidade-ambiental/3215/
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Sun, 07 Jul 2024 07:39:40 GMT
Server: Apache
Last-Modified: Wed, 22 Feb 2023 17:01:41 GMT
ETag: "7a18e2-3adf-5f54cd9a97634"
Accept-Ranges: bytes
Content-Length: 15071
Keep-Alive: timeout=5
Connection: Keep-Alive
Content-Type: image/jpeg

www.idehm.org/wp-content/uploads/2023/01/WhatsApp-Image-2023-01-10-at-14.57.04-585x390.jpeg

107.180.12.114

43 kB

URL
www.idehm.org/wp-content/uploads/2023/01/WhatsApp-Image-2023-01-10-at-14.57.04-585x390.jpeg
IP
107.180.12.114:0
ASN
#400754 GO-DADDY-COM-LLC

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 585x390, components 3
Size
43 kB (43262 bytes)
Hash
825877c65ed81e5060797ed1c23c76ad
76b7632416816d693d8bc7e517ec4b9a3e6465ff
693c3814ad5f48c445010f316a9e93d9a2fc2178d82b400047ca95b74fba24da

HTTP Headers

GET /wp-content/uploads/2023/01/WhatsApp-Image-2023-01-10-at-14.57.04-585x390.jpeg HTTP/1.1
Host: www.idehm.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://www.idehm.org/responsabilidade-ambiental/3215/
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Sun, 07 Jul 2024 07:39:40 GMT
Server: Apache
Last-Modified: Thu, 12 Jan 2023 11:36:03 GMT
ETag: "7a18c4-a8fe-5f20f859f4710"
Accept-Ranges: bytes
Content-Length: 43262
Keep-Alive: timeout=5
Connection: Keep-Alive
Content-Type: image/jpeg

www.idehm.org/wp-content/uploads/2022/11/CAPA-DA-PUBLICACAO-585x390.jpg

107.180.12.114

27 kB

URL
www.idehm.org/wp-content/uploads/2022/11/CAPA-DA-PUBLICACAO-585x390.jpg
IP
107.180.12.114:0
ASN
#400754 GO-DADDY-COM-LLC

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, baseline, precision 8, 585x390, components 3
Size
27 kB (27164 bytes)
Hash
4247668d35bd567095e144c352f6e170
172f3ba7d5814be23925f4868cbd46010d196b3e
756da1803b223027aa0aa4a9725b31aa49812303f57cf920c62b57d92f320747

HTTP Headers

GET /wp-content/uploads/2022/11/CAPA-DA-PUBLICACAO-585x390.jpg HTTP/1.1
Host: www.idehm.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://www.idehm.org/responsabilidade-ambiental/3215/
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Sun, 07 Jul 2024 07:39:40 GMT
Server: Apache
Last-Modified: Wed, 09 Nov 2022 18:27:49 GMT
ETag: "7a14e8-6a1c-5ed0dd060e7c9"
Accept-Ranges: bytes
Content-Length: 27164
Keep-Alive: timeout=5
Connection: Keep-Alive
Content-Type: image/jpeg

www.idehm.org/wp-content/uploads/2022/02/favicon.png

107.180.12.114

3.2 kB

URL
www.idehm.org/wp-content/uploads/2022/02/favicon.png
IP
107.180.12.114:0
ASN
#400754 GO-DADDY-COM-LLC

File type
PNG image data, 280 x 280, 8-bit/color RGBA, non-interlaced
Size
3.2 kB (3186 bytes)
Hash
524f3a2c75079d839e257979025320b2
ffb39385a9af3b2cd1ede2bf6b16014f2cef7be5
5df942dfc684349d67139c4bc34efef7c5664ae19fe37caab2900990a176b6e2

HTTP Headers

GET /wp-content/uploads/2022/02/favicon.png HTTP/1.1
Host: www.idehm.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://www.idehm.org/responsabilidade-ambiental/3215/
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Sun, 07 Jul 2024 07:39:40 GMT
Server: Apache
Last-Modified: Fri, 18 Feb 2022 13:50:47 GMT
ETag: "dc1094-c72-5d84b2b7ca2a8"
Accept-Ranges: bytes
Content-Length: 3186
Keep-Alive: timeout=5
Connection: Keep-Alive
Content-Type: image/png

www.idehm.org/wp-content/uploads/2022/02/favicon.png

107.180.12.114

3.2 kB

URL
www.idehm.org/wp-content/uploads/2022/02/favicon.png
IP
107.180.12.114:0
ASN
#400754 GO-DADDY-COM-LLC

File type
PNG image data, 280 x 280, 8-bit/color RGBA, non-interlaced
Size
3.2 kB (3186 bytes)
Hash
524f3a2c75079d839e257979025320b2
ffb39385a9af3b2cd1ede2bf6b16014f2cef7be5
5df942dfc684349d67139c4bc34efef7c5664ae19fe37caab2900990a176b6e2

HTTP Headers

GET /wp-content/uploads/2022/02/favicon.png HTTP/1.1
Host: www.idehm.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://www.idehm.org/responsabilidade-ambiental/3215/
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Sun, 07 Jul 2024 07:39:40 GMT
Server: Apache
Last-Modified: Fri, 18 Feb 2022 13:50:47 GMT
ETag: "dc1094-c72-5d84b2b7ca2a8"
Accept-Ranges: bytes
Content-Length: 3186
Keep-Alive: timeout=5
Connection: Keep-Alive
Content-Type: image/png

cdn.rdntocdns.com/rthrttu.php

45.9.149.210

6.0 kB

URL
cdn.rdntocdns.com/rthrttu.php
IP
45.9.149.210:0
ASN
#49447 Nice IT Services Group Inc.

File type
JavaScript source, ASCII text, with very long lines (14233), with no line terminators
Size
6.0 kB (6026 bytes)
Hash
6c899067b95977c68fc5f8501428d1bd
67700832cf8e0d6f21a57dbcdb315cedf7ff9504
99c8d8e412d2f42c88eb77204937bb8e92aad289d959618e507dee5dcb7bfea6

Detections

Analyzer	Verdict	Alert
ThreatFox	malicious	Unknown malware
mnemonic secure dns	malicious	Sinkholed
Quad9 DNS	malicious	Sinkholed

HTTP Headers

POST /rthrttu.php HTTP/1.1
Host: cdn.rdntocdns.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-www-form-urlencoded
Content-Length: 18
Origin: http://www.idehm.org
DNT: 1
Connection: keep-alive
Referer: http://www.idehm.org/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx
date: Sun, 07 Jul 2024 07:39:40 GMT
content-type: application/javascript; charset=utf-8
content-length: 6026
access-control-allow-origin: *
access-control-allow-methods: GET, POST
access-control-allow-headers: X-Requested-With
vary: Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2

redfiretobind.com/favicon.ico

172.67.175.133

204 No Content

0 B

URL GET HTTP/3
redfiretobind.com/favicon.ico
IP
172.67.175.133:443
ASN
#13335 CLOUDFLARENET

Requested by
https://redfiretobind.com/go/gmzdkzdfmq5dcobygyza?sub1=severs&sub3=carlos
Certificate
IssuerGoogle Trust Services
Subjectredfiretobind.com
Fingerprint56:E4:92:72:41:5E:BF:16:A7:15:AE:0A:00:8D:92:8D:0C:EC:69:B7
ValidityTue, 18 Jun 2024 15:58:15 GMT - Mon, 16 Sep 2024 15:58:14 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /favicon.ico HTTP/1.1
Host: redfiretobind.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://redfiretobind.com/go/gmzdkzdfmq5dcobygyza?sub1=severs&sub3=carlos
Cookie: uuid=c212f96e-057d-41ce-aecd-867fdcdadee3
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 204 No Content
date: Sun, 07 Jul 2024 07:39:41 GMT
cache-control: max-age=14400
cf-cache-status: HIT
age: 3756
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=jh93fz0e4mun3CSM2RpZQBfDguo7cQuZyU8aBBgWC9piPIO4YfTBo%2BTt18hbSQpr3gDjWeojamr%2FrtehDyjlHYeQrqRPK%2FKwXTNkLrfl9%2BOnIDZt%2FrPj2ZVtKNvRxMuvXBZx0g%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 89f62ea35fe9b4ed-OSL
alt-svc: h3=":443"; ma=86400

ready.followtosfinishline.com/Z5cmPh

172.67.144.237

5.1 kB

URL
ready.followtosfinishline.com/Z5cmPh
IP
172.67.144.237:0
ASN
#13335 CLOUDFLARENET

File type
HTML document, ASCII text
Size
5.1 kB (5104 bytes)
Hash
bef79b0c8886935004ba03150cd10f08
4324c388d9d28ffd7d9dd564751e8f17b67e1202
50f837593c804b928f2e2e0bcdea92ff87d12641ddf841249331c82ce540cd28

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /Z5cmPh HTTP/1.1
Host: ready.followtosfinishline.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://www.idehm.org/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Sun, 07 Jul 2024 07:39:41 GMT
content-type: text/html; charset=utf-8
cache-control: no-cache, no-store, must-revalidate
expires: Sun, 07 Jul 2024 07:39:41 GMT
vary: Accept-Encoding
access-control-allow-origin: *
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=TdbkImq8f6ExcF6w9lGsK94TY7iUGOdohsI77Or5r5I7wckQaQmajUDJA3aI6Rseg9w7aTPG6SB2Ee5ZjspQI0dbSUk1qG1aEJku8NeKAbER4WdD8NAiFylSeSoKUcFoFbJQzeuBnI%2B6Qgbs3%2Fq8oQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 89f62e9ee81e5684-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

go.followtosfinishline.com/HRT532se

172.67.144.237

8.0 kB

URL
go.followtosfinishline.com/HRT532se
IP
172.67.144.237:0
ASN
#13335 CLOUDFLARENET

File type
HTML document, ASCII text
Size
8.0 kB (7985 bytes)
Hash
a5e725ebf3c83bf57aff694564693350
01af3af199d625177bc488f88ea4897477165c84
cbb3a3f6271d947f745194b98fb790b8575b396826b3533e59a17439ed6202f7

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /HRT532se HTTP/1.1
Host: go.followtosfinishline.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://ready.followtosfinishline.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Sun, 07 Jul 2024 07:39:41 GMT
content-type: text/html; charset=utf-8
cache-control: no-cache, no-store, must-revalidate
expires: Sun, 07 Jul 2024 07:39:41 GMT
vary: Accept-Encoding
access-control-allow-origin: *
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=yQWy0YynyjTHVGXnxEYiXQBIxoZYpX7V9H0HsUR3onMbP6ESPKdCcy4EVOCrf8VXvjX9g4430Yzls8kJx0S6likhZ4blqIkCAf7vJZVXVK6NNJOSQCSuGDMf8G3S23X6IZXquysFIvspbJmpPQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 89f62ea05ddf0b3d-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

redfiretobind.com/go/gmzdkzdfmq5dcobygyza?sub1=severs&sub3=carlos

172.67.175.133

200 OK

9.9 kB

URL User Request GET HTTP/2
redfiretobind.com/go/gmzdkzdfmq5dcobygyza?sub1=severs&sub3=carlos
IP
172.67.175.133:443
ASN
#13335 CLOUDFLARENET

Certificate
IssuerGoogle Trust Services
Subjectredfiretobind.com
Fingerprint56:E4:92:72:41:5E:BF:16:A7:15:AE:0A:00:8D:92:8D:0C:EC:69:B7
ValidityTue, 18 Jun 2024 15:58:15 GMT - Mon, 16 Sep 2024 15:58:14 GMT

File type
HTML document, Unicode text, UTF-8 text, with very long lines (10056), with no line terminators
Size
9.9 kB (9922 bytes)
Hash
a16fcccaa6824a36419a24e431a2777c
24cf2241b922c54a5d40f9c16ff0181e19f81eac
881215ecfc52498ae35cd2b882ee3c77421c693a36eac9c543aaf5873b70286b

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /go/gmzdkzdfmq5dcobygyza?sub1=severs&sub3=carlos HTTP/1.1
Host: redfiretobind.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Sun, 07 Jul 2024 07:39:41 GMT
content-type: text/html; charset=UTF-8
access-control-allow-origin: *
set-cookie: uuid=c212f96e-057d-41ce-aecd-867fdcdadee3; expires=Tue, 06-Aug-2024 07:39:41 GMT; Max-Age=2592000; path=/; domain=redfiretobind.com
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=AR8ZldrsLs1gvpCGNMsu6JQYatHMlBPuAkW%2FxWigcGAz5I9KB2yXtl3mcX3pLmKhGLQWip6O7lA4yrayODxxghYsQhdwm7eZCxR5pGu6HClFL05vT8tpCpJ5s25kcaVlYeYL4A%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 89f62ea25b220b61-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

Report Overview

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

Public InfoSec YARA rules

OpenPhish

PhishTank

mnemonic secure dns

Quad9 DNS

ThreatFox

JavaScript (2)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

Observations

Hash

HTTP Transactions (59)

URL

IP

ASN

File type

Size

Hash

HTTP Headers

URL

IP

ASN

File type

Size

Hash

HTTP Headers

URL

IP

ASN

File type

Size

Hash

HTTP Headers

URL

IP

ASN

File type

Size

Hash

HTTP Headers

URL

IP

ASN

File type

Size

Hash

HTTP Headers

URL

IP

ASN

File type

Size

Hash

HTTP Headers

URL

IP

ASN

File type

Size

Hash

Detections

HTTP Headers

URL

IP

ASN

File type

Size

Hash

HTTP Headers