Report - www.waterstone.pt/11/adobe/index.htm/

Report Overview

URL

www.waterstone.pt/11/adobe/index.htm/
IP

172.67.198.123

ASN

#13335 CLOUDFLARENET
Submitted

2023-06-03T01:36:28Z

Access

public
Tags

None
urlquery detections

No alerts detected

Detections

urlquery

0
Network Intrusion Detection

6
Threat Detection Systems

0

Domain Summary

Domain	Rank	First Seen	Last Seen	Sent	Received	IP
fonts.googleapis.com (1)	8877	2013-06-10 22:14:26	2023-06-02 22:31:04	609	38388	142.250.74.106
waterstone.pt (24)	unknown	2015-03-13 23:51:08	2023-04-30 06:17:03	11633	794402	172.67.198.123
embed.tawk.to (18)	8650	2014-03-19 22:03:49	2023-06-02 19:22:16	7926	844604	104.22.24.131
s.w.org (1)	748	2017-01-30 05:56:16	2023-06-02 18:14:49	441	979	192.0.77.48
cdn.jsdelivr.net (1)	439	2012-09-30 02:15:09	2023-06-02 18:13:04	428	42011	151.101.65.229
ocsp.globalsign.com (1)	2075	2012-07-20 19:46:16	2023-06-02 18:17:45	358	1920	104.18.21.226
www.waterstone.pt (1)	unknown	2014-11-30 17:24:26	2023-06-03 03:22:14	495	35189	188.114.97.1
ocsp.pki.goog (6)	175	2018-07-01 08:43:07	2023-06-02 18:12:05	1998	4194	142.250.74.131
fonts.gstatic.com (5)	unknown	2014-09-09 02:40:21	2023-06-03 00:31:03	2630	176523	216.58.207.227
www.google.com (4)	7	2015-05-10 13:11:19	2023-06-02 22:22:18	2526	50314	142.250.74.132
va.tawk.to (5)	8297	2017-01-30 05:20:46	2023-06-02 19:22:18	2535	6423	104.22.24.131
vsb12.tawk.to (2)	116842	2020-04-04 07:10:01	2023-06-02 15:56:06	2132	832	172.67.38.66
www.gstatic.com (5)	unknown	2016-07-26 11:37:06	2023-06-02 20:40:44	2399	530302	142.250.74.35
matomo.waterstone.pt (2)	unknown	2022-06-02 22:40:49	2023-02-21 07:06:10	1222	66559	75.119.142.91

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Timestamp	Severity	Source IP	Destination IP	Alert
2023-06-03T01:36:08Z	medium	Client IP	Internal IP	ET DNS Query for .to TLD
2023-06-03T01:36:08Z	medium	Client IP	Internal IP	ET DNS Query for .to TLD
2023-06-03T01:36:10Z	medium	Client IP	Internal IP	ET DNS Query for .to TLD
2023-06-03T01:36:10Z	medium	Client IP	Internal IP	ET DNS Query for .to TLD
2023-06-03T01:36:11Z	medium	Client IP	Internal IP	ET DNS Query for .to TLD
2023-06-03T01:36:11Z	medium	Client IP	Internal IP	ET DNS Query for .to TLD

Threat Detection Systems

OpenPhish

No alerts detected

PhishTank

No alerts detected

Fortinet's Web Filter

No alerts detected

mnemonic secure dns

No alerts detected

Quad9 DNS

No alerts detected

ThreatFox

No alerts detected

HTTP Transactions (76)

	URL	IP	Response	Size
	waterstone.pt/11/adobe/index.htm/	172.67.198.123	404 Not Found	162
Search urlquery URL waterstone.pt/11/adobe/index.htm/ DOMAIN waterstone.pt FQDN waterstone.pt IP 172.67.198.123 Hash 4f8e702cc244ec5d4de32740c0ecbd97 External sources Mnemonic PDNS FQDN waterstone.pt DOMAIN waterstone.pt IP 172.67.198.123 VirusTotal HASH 3adb1f02d5b6054de0046e367c1d687b6cdf7aff FQDN waterstone.pt DOMAIN waterstone.pt IP 172.67.198.123 crt.sh FQDN waterstone.pt DOMAIN waterstone.pt Fingerprint FC:23:70:B0:5C:24:8B:D2:F1:D7:B2:BB:DB:9F:0F:E9:EF:A8:4C:8D URL User Request GET HTTP/3 waterstone.pt/11/adobe/index.htm/ IP 172.67.198.123:443 ASN #13335 CLOUDFLARENET Certificate IssuerLet's Encrypt Subjectwaterstone.pt FingerprintFC:23:70:B0:5C:24:8B:D2:F1:D7:B2:BB:DB:9F:0F:E9:EF:A8:4C:8D ValidityWed, 10 May 2023 03:06:30 GMT - Tue, 08 Aug 2023 03:06:29 GMT Magic HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators Size 162 Hash 4f8e702cc244ec5d4de32740c0ecbd97 3adb1f02d5b6054de0046e367c1d687b6cdf7aff 9e17cb15dd75bbbd5dbb984eda674863c3b10ab72613cf8a39a00c3e11a8492a HTTP Headers `GET /11/adobe/index.htm/ HTTP/1.1 Host: waterstone.pt User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate DNT: 1 Connection: keep-alive Upgrade-Insecure-Requests: 1 Pragma: no-cache Cache-Control: no-cache` HTTP/1.1 301 Moved Permanently Date: Sat, 03 Jun 2023 01:36:08 GMT Content-Type: text/html Transfer-Encoding: chunked Connection: keep-alive Location: https://waterstone.pt/11/adobe/index.htm/ X-Frame-Options: SAMEORIGIN X-Content-Type-Options: nosniff X-XSS-Protection: 1; mode=block X-Permitted-Cross-Domain-Policies: master-only Referrer-Policy: same-origin CF-Cache-Status: DYNAMIC Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=n9f93KN5PgQNQiG3bfoJG386ot8LIT9qtL9XQaBECMShxik2ZC3GTrSb06b%2F4MlSpc%2FTwaNeAXghRvdHyeIAyVbBKKuZ8yN5SH%2FmRcTFKRg7SYyGQOyH%2Bszm85wFS%2FMu"}],"group":"cf-nel","max_age":604800} NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800} Server: cloudflare CF-RAY: 7d1434155ae00b61-OSL alt-svc: h2=":443"; ma=60

	waterstone.pt/wp-content/themes/onepress/assets/js/bootstrap.min.js?ver=2.3.2	104.21.52.113	200 OK	12944
Search urlquery URL waterstone.pt/wp-content/themes/onepress/assets/js/bootstrap.min.js?ver=2.3.2 DOMAIN waterstone.pt FQDN waterstone.pt IP 104.21.52.113 Hash 583cfe88e1fa0e182d10399f45d21283 External sources Mnemonic PDNS FQDN waterstone.pt DOMAIN waterstone.pt IP 104.21.52.113 VirusTotal HASH b77c781d04390299898878dcadced624ff50a90b FQDN waterstone.pt DOMAIN waterstone.pt IP 104.21.52.113 crt.sh FQDN waterstone.pt DOMAIN waterstone.pt Fingerprint FC:23:70:B0:5C:24:8B:D2:F1:D7:B2:BB:DB:9F:0F:E9:EF:A8:4C:8D URL GET HTTP/3 waterstone.pt/wp-content/themes/onepress/assets/js/bootstrap.min.js?ver=2.3.2 IP 104.21.52.113:443 ASN #13335 CLOUDFLARENET Requested by https://waterstone.pt/11/adobe/index.htm/ Certificate IssuerLet's Encrypt Subjectwaterstone.pt FingerprintFC:23:70:B0:5C:24:8B:D2:F1:D7:B2:BB:DB:9F:0F:E9:EF:A8:4C:8D ValidityWed, 10 May 2023 03:06:30 GMT - Tue, 08 Aug 2023 03:06:29 GMT Magic ASCII text, with very long lines (32075) Size 12944 Hash 583cfe88e1fa0e182d10399f45d21283 b77c781d04390299898878dcadced624ff50a90b 9f5aacd2c120fd4d3e730e2290001de3abf9cdec6309f36844807b74183f266b HTTP Headers `GET /wp-content/themes/onepress/assets/js/bootstrap.min.js?ver=2.3.2 HTTP/1.1 Host: waterstone.pt User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://waterstone.pt/11/adobe/index.htm/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache TE: trailers` HTTP/3 200 OK date: Sat, 03 Jun 2023 01:36:09 GMT content-type: application/javascript last-modified: Mon, 14 Nov 2022 23:57:40 GMT vary: Accept-Encoding etag: W/"6372d5f4-b641" expires: Thu, 31 Dec 2037 23:55:55 GMT cache-control: max-age=315360000 access-control-allow-origin: * cf-cache-status: HIT age: 817 report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Kyy2vb6bGz%2Fkfry9cicgcuB0xhCD9UYkBxcc%2BEnzu05Mw7L65hlqHJfwq1FP2FonTd374oqh2UJuKzaHMy%2FrS2F3lKbYb30S2YSi1XruJACmKsxR9nmrg%2BgjgzrCc3NF"}],"group":"cf-nel","max_age":604800} nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800} server: cloudflare cf-ray: 7d1434185b7db50b-OSL content-encoding: br alt-svc: h3=":443"; ma=86400

	waterstone.pt/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2	104.21.52.113	200 OK	4756
Search urlquery URL waterstone.pt/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2 DOMAIN waterstone.pt FQDN waterstone.pt IP 104.21.52.113 Hash 79b4956b7ec478ec10244b5e2d33ac7d External sources Mnemonic PDNS FQDN waterstone.pt DOMAIN waterstone.pt IP 104.21.52.113 VirusTotal HASH a46025b9d05e3df30d610a8aef14f392c7058dc9 FQDN waterstone.pt DOMAIN waterstone.pt IP 104.21.52.113 crt.sh FQDN waterstone.pt DOMAIN waterstone.pt Fingerprint FC:23:70:B0:5C:24:8B:D2:F1:D7:B2:BB:DB:9F:0F:E9:EF:A8:4C:8D URL GET HTTP/3 waterstone.pt/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2 IP 104.21.52.113:443 ASN #13335 CLOUDFLARENET Requested by https://waterstone.pt/11/adobe/index.htm/ Certificate IssuerLet's Encrypt Subjectwaterstone.pt FingerprintFC:23:70:B0:5C:24:8B:D2:F1:D7:B2:BB:DB:9F:0F:E9:EF:A8:4C:8D ValidityWed, 10 May 2023 03:06:30 GMT - Tue, 08 Aug 2023 03:06:29 GMT Magic ASCII text, with very long lines (11126) Size 4756 Hash 79b4956b7ec478ec10244b5e2d33ac7d a46025b9d05e3df30d610a8aef14f392c7058dc9 029e0a2e809fd6b5dbe76abe8b7a74936be306c9a8c27c814c4d44aa54623300 HTTP Headers `GET /wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2 HTTP/1.1 Host: waterstone.pt User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://waterstone.pt/11/adobe/index.htm/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache TE: trailers` HTTP/3 200 OK date: Sat, 03 Jun 2023 01:36:09 GMT content-type: application/javascript last-modified: Sun, 26 Dec 2021 15:07:37 GMT vary: Accept-Encoding etag: W/"61c88539-2bd8" expires: Thu, 31 Dec 2037 23:55:55 GMT cache-control: max-age=315360000 access-control-allow-origin: * cf-cache-status: HIT age: 817 report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=s5DyOp9p2xCGwHNCSz8y1GefiuqEsppgL3dw1V6wZUIhqr44Dz9OGE%2Fwn3x6tprwsip7xPUnjFn3QqGZpmyYlLWpr7Y4kUp91e%2BhUja18kFwBEb7IwD%2FyvxsrCv2cbzz"}],"group":"cf-nel","max_age":604800} nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800} server: cloudflare cf-ray: 7d1434184b76b50b-OSL content-encoding: br alt-svc: h3=":443"; ma=86400

	www.google.com/recaptcha/api.js?render=6LdiqY4UAAAAANoEmuhitWab52nJiUKJDVKM0Ga0&ver=3.0	142.250.74.132	200 OK	586
Search urlquery URL www.google.com/recaptcha/api.js?render=6LdiqY4UAAAAANoEmuhitWab52nJiUKJDVKM0Ga0&ver=3.0 DOMAIN google.com FQDN www.google.com IP 142.250.74.132 Hash 3e4a9947fe3699c4d48ff6486043d237 External sources Mnemonic PDNS FQDN www.google.com DOMAIN google.com IP 142.250.74.132 VirusTotal HASH 7143da43323e24ef833ddc0c69263dc3bded2cbf FQDN www.google.com DOMAIN google.com IP 142.250.74.132 crt.sh FQDN www.google.com DOMAIN google.com Fingerprint A8:95:C3:CB:D6:3F:BC:0A:7D:FF:36:72:5E:2F:56:26:9F:EB:77:0E URL GET HTTP/2 www.google.com/recaptcha/api.js?render=6LdiqY4UAAAAANoEmuhitWab52nJiUKJDVKM0Ga0&ver=3.0 IP 142.250.74.132:443 ASN #15169 GOOGLE Requested by https://waterstone.pt/11/adobe/index.htm/ Certificate IssuerGoogle Trust Services LLC Subjectwww.google.com FingerprintA8:95:C3:CB:D6:3F:BC:0A:7D:FF:36:72:5E:2F:56:26:9F:EB:77:0E ValidityFri, 19 May 2023 12:58:13 GMT - Fri, 11 Aug 2023 12:58:12 GMT Magic ASCII text, with very long lines (884), with no line terminators Size 586 Hash 3e4a9947fe3699c4d48ff6486043d237 7143da43323e24ef833ddc0c69263dc3bded2cbf 9a08776a98d7dd5cff9b2d5b2372f0478c3e473a4735cdeebfb4a6494df95b40 HTTP Headers `GET /recaptcha/api.js?render=6LdiqY4UAAAAANoEmuhitWab52nJiUKJDVKM0Ga0&ver=3.0 HTTP/1.1 Host: www.google.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://waterstone.pt/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` `HTTP/2 200 OK expires: Sat, 03 Jun 2023 01:36:09 GMT date: Sat, 03 Jun 2023 01:36:09 GMT cache-control: private, max-age=300 content-type: text/javascript; charset=UTF-8 cross-origin-resource-policy: cross-origin content-encoding: gzip x-content-type-options: nosniff x-frame-options: SAMEORIGIN content-security-policy: frame-ancestors 'self' x-xss-protection: 1; mode=block content-length: 586 server: GSE alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000 X-Firefox-Spdy: h2`

	ocsp.pki.goog/gts1c3	142.250.74.131		471
Search urlquery URL ocsp.pki.goog/gts1c3 DOMAIN pki.goog FQDN ocsp.pki.goog IP 142.250.74.131 Hash fb4f137ffaa414632ee6d79358ca7663 External sources Mnemonic PDNS FQDN ocsp.pki.goog DOMAIN pki.goog IP 142.250.74.131 VirusTotal HASH 738174c00230645a31d26ab956eaed98f1c7eb44 FQDN ocsp.pki.goog DOMAIN pki.goog IP 142.250.74.131 crt.sh FQDN ocsp.pki.goog DOMAIN pki.goog URL ocsp.pki.goog/gts1c3 IP 142.250.74.131:0 ASN #15169 GOOGLE Magic data Size 471 Hash fb4f137ffaa414632ee6d79358ca7663 738174c00230645a31d26ab956eaed98f1c7eb44 8820e77977fcf5b5ff317aa91f5792369e4241204d3b2e8cc41a3cfa8e4b476d HTTP Headers `POST /gts1c3 HTTP/1.1 Host: ocsp.pki.goog User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Content-Type: application/ocsp-response Date: Sat, 03 Jun 2023 01:36:09 GMT Cache-Control: public, max-age=14400 Server: ocsp_responder Content-Length: 471 X-XSS-Protection: 0 X-Frame-Options: SAMEORIGIN`

	waterstone.pt/wp-content/plugins/contact-form-7/modules/recaptcha/index.js?ver=5.7.3	104.21.52.113	200 OK	953
Search urlquery URL waterstone.pt/wp-content/plugins/contact-form-7/modules/recaptcha/index.js?ver=5.7.3 DOMAIN waterstone.pt FQDN waterstone.pt IP 104.21.52.113 Hash 6a0e8318d42803736d2fafcc12238026 External sources Mnemonic PDNS FQDN waterstone.pt DOMAIN waterstone.pt IP 104.21.52.113 VirusTotal HASH c955314a7e0a9a9871329b0f042c8f0b5df49a78 FQDN waterstone.pt DOMAIN waterstone.pt IP 104.21.52.113 crt.sh FQDN waterstone.pt DOMAIN waterstone.pt Fingerprint FC:23:70:B0:5C:24:8B:D2:F1:D7:B2:BB:DB:9F:0F:E9:EF:A8:4C:8D URL GET HTTP/3 waterstone.pt/wp-content/plugins/contact-form-7/modules/recaptcha/index.js?ver=5.7.3 IP 104.21.52.113:443 ASN #13335 CLOUDFLARENET Requested by https://waterstone.pt/11/adobe/index.htm/ Certificate IssuerLet's Encrypt Subjectwaterstone.pt FingerprintFC:23:70:B0:5C:24:8B:D2:F1:D7:B2:BB:DB:9F:0F:E9:EF:A8:4C:8D ValidityWed, 10 May 2023 03:06:30 GMT - Tue, 08 Aug 2023 03:06:29 GMT Magic ASCII text, with very long lines (999), with no line terminators Size 953 Hash 6a0e8318d42803736d2fafcc12238026 c955314a7e0a9a9871329b0f042c8f0b5df49a78 2648a1333fa24d383fd73a6beaac17156ae78f4267ff7407ad60e05a788df44c HTTP Headers `GET /wp-content/plugins/contact-form-7/modules/recaptcha/index.js?ver=5.7.3 HTTP/1.1 Host: waterstone.pt User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://waterstone.pt/11/adobe/index.htm/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache TE: trailers` HTTP/3 200 OK date: Sat, 03 Jun 2023 01:36:09 GMT content-type: application/javascript last-modified: Sun, 05 Feb 2023 22:58:21 GMT vary: Accept-Encoding etag: W/"63e0348d-3e7" expires: Thu, 31 Dec 2037 23:55:55 GMT cache-control: max-age=315360000 access-control-allow-origin: * cf-cache-status: HIT age: 817 report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=3YdMdA8UDVLoCA3TmWz0wS6HHwxeP4LxdIvhHd0UYMF%2F70ObWiKQHkMjVd5rCvkiRbeijfjOltlITajQ3uaj3xpVGs4JnGPhbzY3W%2FmNHlzhyKskfPpSrF%2BkmtpdcLD%2B"}],"group":"cf-nel","max_age":604800} nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800} server: cloudflare cf-ray: 7d1434186b83b50b-OSL content-encoding: br alt-svc: h3=":443"; ma=86400

	waterstone.pt/wp-content/themes/onepress/assets/fonts/fontawesome-webfont.woff2?v=4.7.0	104.21.52.113	200 OK	77160
Search urlquery URL waterstone.pt/wp-content/themes/onepress/assets/fonts/fontawesome-webfont.woff2?v=4.7.0 DOMAIN waterstone.pt FQDN waterstone.pt IP 104.21.52.113 Hash af7ae505a9eed503f8b8e6982036873e External sources Mnemonic PDNS FQDN waterstone.pt DOMAIN waterstone.pt IP 104.21.52.113 VirusTotal HASH d6f48cba7d076fb6f2fd6ba993a75b9dc1ecbf0c FQDN waterstone.pt DOMAIN waterstone.pt IP 104.21.52.113 crt.sh FQDN waterstone.pt DOMAIN waterstone.pt Fingerprint FC:23:70:B0:5C:24:8B:D2:F1:D7:B2:BB:DB:9F:0F:E9:EF:A8:4C:8D URL GET HTTP/3 waterstone.pt/wp-content/themes/onepress/assets/fonts/fontawesome-webfont.woff2?v=4.7.0 IP 104.21.52.113:443 ASN #13335 CLOUDFLARENET Requested by https://waterstone.pt/11/adobe/index.htm/ Certificate IssuerLet's Encrypt Subjectwaterstone.pt FingerprintFC:23:70:B0:5C:24:8B:D2:F1:D7:B2:BB:DB:9F:0F:E9:EF:A8:4C:8D ValidityWed, 10 May 2023 03:06:30 GMT - Tue, 08 Aug 2023 03:06:29 GMT Magic Web Open Font Format (Version 2), TrueType, length 77160, version 4.459\012- data Size 77160 Hash af7ae505a9eed503f8b8e6982036873e d6f48cba7d076fb6f2fd6ba993a75b9dc1ecbf0c 2adefcbc041e7d18fcf2d417879dc5a09997aa64d675b7a3c4b6ce33da13f3fe HTTP Headers GET /wp-content/themes/onepress/assets/fonts/fontawesome-webfont.woff2?v=4.7.0 HTTP/1.1 Host: waterstone.pt User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: identity DNT: 1 Connection: keep-alive Referer: https://waterstone.pt/wp-content/themes/onepress/assets/css/font-awesome.min.css?ver=4.7.0 Sec-Fetch-Dest: font Sec-Fetch-Mode: cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache TE: trailers HTTP/3 200 OK date: Sat, 03 Jun 2023 01:36:09 GMT content-type: application/octet-stream content-length: 77160 last-modified: Mon, 14 Nov 2022 23:57:40 GMT vary: Accept-Encoding etag: "6372d5f4-12d68" expires: Thu, 31 Dec 2037 23:55:55 GMT cache-control: max-age=315360000 access-control-allow-origin: * cf-cache-status: HIT age: 817 accept-ranges: bytes report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=tHPGuKyBUt7nhzvZzpBDxLOa%2BAtzLTNer9CI2AMBwArD6OlVIerz6ctREtmBPyiALTtqAX9ffv2jfMsG7Fd%2Bd4%2B0uD52F8aKeWzWR0SZuFy2sCwoD%2BZU1b0Q3DyBt9vP"}],"group":"cf-nel","max_age":604800} nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800} server: cloudflare cf-ray: 7d14341a8c94b50b-OSL alt-svc: h3=":443"; ma=86400

	ocsp.pki.goog/gts1c3	142.250.74.131		471
Search urlquery URL ocsp.pki.goog/gts1c3 DOMAIN pki.goog FQDN ocsp.pki.goog IP 142.250.74.131 Hash 4657e1301201c546b03bf8a42be0e1a4 External sources Mnemonic PDNS FQDN ocsp.pki.goog DOMAIN pki.goog IP 142.250.74.131 VirusTotal HASH 561ed76fd2c38e8107da101d54546e44b219e539 FQDN ocsp.pki.goog DOMAIN pki.goog IP 142.250.74.131 crt.sh FQDN ocsp.pki.goog DOMAIN pki.goog URL ocsp.pki.goog/gts1c3 IP 142.250.74.131:0 ASN #15169 GOOGLE Magic data Size 471 Hash 4657e1301201c546b03bf8a42be0e1a4 561ed76fd2c38e8107da101d54546e44b219e539 b7c25875352ba1d913c952fc778770209c663f8b7bb3a33b40532b1910938c73 HTTP Headers `POST /gts1c3 HTTP/1.1 Host: ocsp.pki.goog User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Content-Type: application/ocsp-response Date: Sat, 03 Jun 2023 01:36:09 GMT Cache-Control: public, max-age=14400 Server: ocsp_responder Content-Length: 471 X-XSS-Protection: 0 X-Frame-Options: SAMEORIGIN`

	ocsp.pki.goog/gts1c3	142.250.74.131		471
Search urlquery URL ocsp.pki.goog/gts1c3 DOMAIN pki.goog FQDN ocsp.pki.goog IP 142.250.74.131 Hash a94a6bf69a5bda20a5a497cff9a93636 External sources Mnemonic PDNS FQDN ocsp.pki.goog DOMAIN pki.goog IP 142.250.74.131 VirusTotal HASH fa3de38b0755fc024d6d35dfd833ac95eb79a5f3 FQDN ocsp.pki.goog DOMAIN pki.goog IP 142.250.74.131 crt.sh FQDN ocsp.pki.goog DOMAIN pki.goog URL ocsp.pki.goog/gts1c3 IP 142.250.74.131:0 ASN #15169 GOOGLE Magic data Size 471 Hash a94a6bf69a5bda20a5a497cff9a93636 fa3de38b0755fc024d6d35dfd833ac95eb79a5f3 64a989eaabc52262e244b627bbc4efd123a8079b8d2499f2f7cf80fa914c801e HTTP Headers `POST /gts1c3 HTTP/1.1 Host: ocsp.pki.goog User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Content-Type: application/ocsp-response Date: Sat, 03 Jun 2023 01:36:09 GMT Cache-Control: public, max-age=14400 Server: ocsp_responder Content-Length: 471 X-XSS-Protection: 0 X-Frame-Options: SAMEORIGIN`

	ocsp.pki.goog/gts1c3	142.250.74.131		471
Search urlquery URL ocsp.pki.goog/gts1c3 DOMAIN pki.goog FQDN ocsp.pki.goog IP 142.250.74.131 Hash 4657e1301201c546b03bf8a42be0e1a4 External sources Mnemonic PDNS FQDN ocsp.pki.goog DOMAIN pki.goog IP 142.250.74.131 VirusTotal HASH 561ed76fd2c38e8107da101d54546e44b219e539 FQDN ocsp.pki.goog DOMAIN pki.goog IP 142.250.74.131 crt.sh FQDN ocsp.pki.goog DOMAIN pki.goog URL ocsp.pki.goog/gts1c3 IP 142.250.74.131:0 ASN #15169 GOOGLE Magic data Size 471 Hash 4657e1301201c546b03bf8a42be0e1a4 561ed76fd2c38e8107da101d54546e44b219e539 b7c25875352ba1d913c952fc778770209c663f8b7bb3a33b40532b1910938c73 HTTP Headers `POST /gts1c3 HTTP/1.1 Host: ocsp.pki.goog User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Content-Type: application/ocsp-response Date: Sat, 03 Jun 2023 01:36:09 GMT Cache-Control: public, max-age=14400 Server: ocsp_responder Content-Length: 471 X-XSS-Protection: 0 X-Frame-Options: SAMEORIGIN`

	ocsp.pki.goog/gts1c3	142.250.74.131		471
Search urlquery URL ocsp.pki.goog/gts1c3 DOMAIN pki.goog FQDN ocsp.pki.goog IP 142.250.74.131 Hash a94a6bf69a5bda20a5a497cff9a93636 External sources Mnemonic PDNS FQDN ocsp.pki.goog DOMAIN pki.goog IP 142.250.74.131 VirusTotal HASH fa3de38b0755fc024d6d35dfd833ac95eb79a5f3 FQDN ocsp.pki.goog DOMAIN pki.goog IP 142.250.74.131 crt.sh FQDN ocsp.pki.goog DOMAIN pki.goog URL ocsp.pki.goog/gts1c3 IP 142.250.74.131:0 ASN #15169 GOOGLE Magic data Size 471 Hash a94a6bf69a5bda20a5a497cff9a93636 fa3de38b0755fc024d6d35dfd833ac95eb79a5f3 64a989eaabc52262e244b627bbc4efd123a8079b8d2499f2f7cf80fa914c801e HTTP Headers `POST /gts1c3 HTTP/1.1 Host: ocsp.pki.goog User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Content-Type: application/ocsp-response Date: Sat, 03 Jun 2023 01:36:09 GMT Cache-Control: public, max-age=14400 Server: ocsp_responder Content-Length: 471 X-XSS-Protection: 0 X-Frame-Options: SAMEORIGIN`

	fonts.gstatic.com/s/opensans/v35/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2	216.58.207.227	200 OK	48412
Search urlquery URL fonts.gstatic.com/s/opensans/v35/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2 DOMAIN gstatic.com FQDN fonts.gstatic.com IP 216.58.207.227 Hash 31a8297826cdcea344698ff952694a7f External sources Mnemonic PDNS FQDN fonts.gstatic.com DOMAIN gstatic.com IP 216.58.207.227 VirusTotal HASH 4fa1ee4c471d1c05e9141855eec5ee09b898d594 FQDN fonts.gstatic.com DOMAIN gstatic.com IP 216.58.207.227 crt.sh FQDN fonts.gstatic.com DOMAIN gstatic.com Fingerprint C8:5A:9A:D9:6A:F5:00:15:5B:5D:99:FE:FE:CA:1D:7C:19:4D:F8:D5 URL GET HTTP/2 fonts.gstatic.com/s/opensans/v35/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2 IP 216.58.207.227:443 ASN #15169 GOOGLE Requested by https://waterstone.pt/11/adobe/index.htm/ Certificate IssuerGoogle Trust Services LLC Subject.gstatic.com FingerprintC8:5A:9A:D9:6A:F5:00:15:5B:5D:99:FE:FE:CA:1D:7C:19:4D:F8:D5 ValidityFri, 19 May 2023 12:57:42 GMT - Fri, 11 Aug 2023 12:57:41 GMT Magic Web Open Font Format (Version 2), TrueType, length 48412, version 1.0\012- data Size 48412 Hash 31a8297826cdcea344698ff952694a7f 4fa1ee4c471d1c05e9141855eec5ee09b898d594 7c7818c25a18e8a38553fcbcbc2ad0b5e964103a7d2e494f82815e3f70bf3fc5 HTTP Headers GET /s/opensans/v35/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2 HTTP/1.1 Host: fonts.gstatic.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: identity Origin: https://waterstone.pt DNT: 1 Connection: keep-alive Referer: https://fonts.googleapis.com/ Sec-Fetch-Dest: font Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache HTTP/2 200 OK accept-ranges: bytes access-control-allow-origin: content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes cross-origin-resource-policy: cross-origin cross-origin-opener-policy: same-origin; report-to="apps-themes" report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]} timing-allow-origin: * content-length: 48412 x-content-type-options: nosniff server: sffe x-xss-protection: 0 date: Thu, 01 Jun 2023 11:49:35 GMT expires: Fri, 31 May 2024 11:49:35 GMT cache-control: public, max-age=31536000 age: 135994 last-modified: Tue, 02 May 2023 15:08:53 GMT content-type: font/woff2 alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000 X-Firefox-Spdy: h2

	fonts.gstatic.com/s/raleway/v28/1Ptug8zYS_SKggPNyC0ITw.woff2	216.58.207.227	200 OK	46524
Search urlquery URL fonts.gstatic.com/s/raleway/v28/1Ptug8zYS_SKggPNyC0ITw.woff2 DOMAIN gstatic.com FQDN fonts.gstatic.com IP 216.58.207.227 Hash c1fd378f54921c75e4ae1821e7b8fff6 External sources Mnemonic PDNS FQDN fonts.gstatic.com DOMAIN gstatic.com IP 216.58.207.227 VirusTotal HASH 2ce96e97783b2f154d07f4464ca6f8eb2469f2c1 FQDN fonts.gstatic.com DOMAIN gstatic.com IP 216.58.207.227 crt.sh FQDN fonts.gstatic.com DOMAIN gstatic.com Fingerprint C8:5A:9A:D9:6A:F5:00:15:5B:5D:99:FE:FE:CA:1D:7C:19:4D:F8:D5 URL GET HTTP/2 fonts.gstatic.com/s/raleway/v28/1Ptug8zYS_SKggPNyC0ITw.woff2 IP 216.58.207.227:443 ASN #15169 GOOGLE Requested by https://waterstone.pt/11/adobe/index.htm/ Certificate IssuerGoogle Trust Services LLC Subject.gstatic.com FingerprintC8:5A:9A:D9:6A:F5:00:15:5B:5D:99:FE:FE:CA:1D:7C:19:4D:F8:D5 ValidityFri, 19 May 2023 12:57:42 GMT - Fri, 11 Aug 2023 12:57:41 GMT Magic Web Open Font Format (Version 2), TrueType, length 46524, version 1.0\012- data Size 46524 Hash c1fd378f54921c75e4ae1821e7b8fff6 2ce96e97783b2f154d07f4464ca6f8eb2469f2c1 405ceee1c2f5c31f1cb94ebc63d49a43fddd1471c2c7401a01c7c11bb1d93826 HTTP Headers GET /s/raleway/v28/1Ptug8zYS_SKggPNyC0ITw.woff2 HTTP/1.1 Host: fonts.gstatic.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: identity Origin: https://waterstone.pt DNT: 1 Connection: keep-alive Referer: https://fonts.googleapis.com/ Sec-Fetch-Dest: font Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache HTTP/2 200 OK accept-ranges: bytes access-control-allow-origin: content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes cross-origin-resource-policy: cross-origin cross-origin-opener-policy: same-origin; report-to="apps-themes" report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]} timing-allow-origin: * content-length: 46524 x-content-type-options: nosniff server: sffe x-xss-protection: 0 date: Tue, 30 May 2023 10:39:52 GMT expires: Wed, 29 May 2024 10:39:52 GMT cache-control: public, max-age=31536000 age: 312977 last-modified: Mon, 18 Jul 2022 19:58:01 GMT content-type: font/woff2 alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000 X-Firefox-Spdy: h2

	fonts.gstatic.com/s/raleway/v28/1Ptug8zYS_SKggPNyC0ITw.woff2	216.58.207.227	200 OK	46524
Search urlquery URL fonts.gstatic.com/s/raleway/v28/1Ptug8zYS_SKggPNyC0ITw.woff2 DOMAIN gstatic.com FQDN fonts.gstatic.com IP 216.58.207.227 Hash c1fd378f54921c75e4ae1821e7b8fff6 External sources Mnemonic PDNS FQDN fonts.gstatic.com DOMAIN gstatic.com IP 216.58.207.227 VirusTotal HASH 2ce96e97783b2f154d07f4464ca6f8eb2469f2c1 FQDN fonts.gstatic.com DOMAIN gstatic.com IP 216.58.207.227 crt.sh FQDN fonts.gstatic.com DOMAIN gstatic.com Fingerprint C8:5A:9A:D9:6A:F5:00:15:5B:5D:99:FE:FE:CA:1D:7C:19:4D:F8:D5 URL GET HTTP/2 fonts.gstatic.com/s/raleway/v28/1Ptug8zYS_SKggPNyC0ITw.woff2 IP 216.58.207.227:443 ASN #15169 GOOGLE Requested by https://waterstone.pt/11/adobe/index.htm/ Certificate IssuerGoogle Trust Services LLC Subject.gstatic.com FingerprintC8:5A:9A:D9:6A:F5:00:15:5B:5D:99:FE:FE:CA:1D:7C:19:4D:F8:D5 ValidityFri, 19 May 2023 12:57:42 GMT - Fri, 11 Aug 2023 12:57:41 GMT Magic Web Open Font Format (Version 2), TrueType, length 46524, version 1.0\012- data Size 46524 Hash c1fd378f54921c75e4ae1821e7b8fff6 2ce96e97783b2f154d07f4464ca6f8eb2469f2c1 405ceee1c2f5c31f1cb94ebc63d49a43fddd1471c2c7401a01c7c11bb1d93826 HTTP Headers GET /s/raleway/v28/1Ptug8zYS_SKggPNyC0ITw.woff2 HTTP/1.1 Host: fonts.gstatic.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: identity Origin: https://waterstone.pt DNT: 1 Connection: keep-alive Referer: https://fonts.googleapis.com/ Sec-Fetch-Dest: font Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache HTTP/2 200 OK accept-ranges: bytes access-control-allow-origin: content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes cross-origin-resource-policy: cross-origin cross-origin-opener-policy: same-origin; report-to="apps-themes" report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]} timing-allow-origin: * content-length: 46524 x-content-type-options: nosniff server: sffe x-xss-protection: 0 date: Tue, 30 May 2023 10:39:52 GMT expires: Wed, 29 May 2024 10:39:52 GMT cache-control: public, max-age=31536000 age: 312977 last-modified: Mon, 18 Jul 2022 19:58:01 GMT content-type: font/woff2 alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000 X-Firefox-Spdy: h2

	waterstone.pt/wp-content/plugins/contact-form-7/includes/swv/js/index.js?ver=5.7.3	104.21.52.113	200 OK	51459
Search urlquery URL waterstone.pt/wp-content/plugins/contact-form-7/includes/swv/js/index.js?ver=5.7.3 DOMAIN waterstone.pt FQDN waterstone.pt IP 104.21.52.113 Hash 7f0734e228d3f1a255a8b817a5005b8e External sources Mnemonic PDNS FQDN waterstone.pt DOMAIN waterstone.pt IP 104.21.52.113 VirusTotal HASH 3dfca70a7a3e298fc392f2393ca60d350eebb5fd FQDN waterstone.pt DOMAIN waterstone.pt IP 104.21.52.113 crt.sh FQDN waterstone.pt DOMAIN waterstone.pt Fingerprint FC:23:70:B0:5C:24:8B:D2:F1:D7:B2:BB:DB:9F:0F:E9:EF:A8:4C:8D URL GET HTTP/3 waterstone.pt/wp-content/plugins/contact-form-7/includes/swv/js/index.js?ver=5.7.3 IP 104.21.52.113:443 ASN #13335 CLOUDFLARENET Requested by https://waterstone.pt/11/adobe/index.htm/ Certificate IssuerLet's Encrypt Subjectwaterstone.pt FingerprintFC:23:70:B0:5C:24:8B:D2:F1:D7:B2:BB:DB:9F:0F:E9:EF:A8:4C:8D ValidityWed, 10 May 2023 03:06:30 GMT - Tue, 08 Aug 2023 03:06:29 GMT Magic ASCII text, with very long lines (10565), with no line terminators Size 51459 Hash 7f0734e228d3f1a255a8b817a5005b8e 3dfca70a7a3e298fc392f2393ca60d350eebb5fd 23bb39b607b39a93d953762d2a618a3cbc69c52ceaf70d96890137ca1d2b0228 HTTP Headers `GET /wp-content/plugins/contact-form-7/includes/swv/js/index.js?ver=5.7.3 HTTP/1.1 Host: waterstone.pt User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://waterstone.pt/11/adobe/index.htm/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache TE: trailers` HTTP/3 200 OK date: Sat, 03 Jun 2023 01:36:09 GMT content-type: application/javascript last-modified: Sun, 05 Feb 2023 22:58:21 GMT vary: Accept-Encoding etag: W/"63e0348d-2945" expires: Thu, 31 Dec 2037 23:55:55 GMT cache-control: max-age=315360000 access-control-allow-origin: * cf-cache-status: HIT age: 817 report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=oeRmcvSEI%2FwvKlN%2FFmO0dT86FDl2gu5gZC%2FYD0YAgIlM9gb8zYAKgxDWDGMyh2sbR3tRU2yft6h7lZTZQlbIinVLrTaUgQb5BGgN8B6n9LIZwlER2KiAxFjqoWJKuB2I"}],"group":"cf-nel","max_age":604800} nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800} server: cloudflare cf-ray: 7d1434184b77b50b-OSL content-encoding: br alt-svc: h3=":443"; ma=86400

	s.w.org/images/core/emoji/14.0.0/svg/1f642.svg	192.0.77.48	200 OK	525
Search urlquery URL s.w.org/images/core/emoji/14.0.0/svg/1f642.svg DOMAIN w.org FQDN s.w.org IP 192.0.77.48 Hash da3651e59d6006dfa5fa07ec3102d1f3 External sources Mnemonic PDNS FQDN s.w.org DOMAIN w.org IP 192.0.77.48 VirusTotal HASH 682e14ed012f6da166aa1658921caf3482245903 FQDN s.w.org DOMAIN w.org IP 192.0.77.48 crt.sh FQDN s.w.org DOMAIN w.org Fingerprint B2:4C:20:97:37:FE:82:F3:56:5E:3B:F9:5C:EA:7F:81:14:89:D7:0E URL GET HTTP/2 s.w.org/images/core/emoji/14.0.0/svg/1f642.svg IP 192.0.77.48:443 ASN #2635 AUTOMATTIC Requested by https://waterstone.pt/11/adobe/index.htm/ Certificate IssuerSectigo Limited Subject.w.org FingerprintB2:4C:20:97:37:FE:82:F3:56:5E:3B:F9:5C:EA:7F:81:14:89:D7:0E ValidityTue, 06 Dec 2022 00:00:00 GMT - Sat, 06 Jan 2024 23:59:59 GMT Magic SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (525), with no line terminators Size 525 Hash da3651e59d6006dfa5fa07ec3102d1f3 682e14ed012f6da166aa1658921caf3482245903 943c44a0f3dc1aba84f5fbe8465baadbb90af66cd7be9f37ca07a39260357ad2 HTTP Headers `GET /images/core/emoji/14.0.0/svg/1f642.svg HTTP/1.1 Host: s.w.org User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: image/avif,image/webp,/* Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://waterstone.pt/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` `HTTP/2 200 OK server: nginx date: Sat, 03 Jun 2023 01:36:09 GMT content-type: image/svg+xml content-length: 525 last-modified: Tue, 12 Apr 2022 03:53:43 GMT vary: Accept-Encoding x-frame-options: SAMEORIGIN expires: Thu, 31 Dec 2037 23:55:55 GMT cache-control: max-age=315360000 access-control-allow-methods: GET, HEAD access-control-allow-origin: * x-nc: HIT arn 2 x-content-type-options: nosniff accept-ranges: bytes X-Firefox-Spdy: h2`

	ocsp.pki.goog/gts1c3	142.250.74.131		471
Search urlquery URL ocsp.pki.goog/gts1c3 DOMAIN pki.goog FQDN ocsp.pki.goog IP 142.250.74.131 Hash a94a6bf69a5bda20a5a497cff9a93636 External sources Mnemonic PDNS FQDN ocsp.pki.goog DOMAIN pki.goog IP 142.250.74.131 VirusTotal HASH fa3de38b0755fc024d6d35dfd833ac95eb79a5f3 FQDN ocsp.pki.goog DOMAIN pki.goog IP 142.250.74.131 crt.sh FQDN ocsp.pki.goog DOMAIN pki.goog URL ocsp.pki.goog/gts1c3 IP 142.250.74.131:0 ASN #15169 GOOGLE Magic data Size 471 Hash a94a6bf69a5bda20a5a497cff9a93636 fa3de38b0755fc024d6d35dfd833ac95eb79a5f3 64a989eaabc52262e244b627bbc4efd123a8079b8d2499f2f7cf80fa914c801e HTTP Headers `POST /gts1c3 HTTP/1.1 Host: ocsp.pki.goog User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Content-Type: application/ocsp-response Date: Sat, 03 Jun 2023 01:36:09 GMT Cache-Control: public, max-age=14400 Server: ocsp_responder Content-Length: 471 X-XSS-Protection: 0 X-Frame-Options: SAMEORIGIN`

	www.gstatic.com/recaptcha/releases/CDFvp7CXAHw7k3HxO47Gm1O9/recaptcha__en.js	142.250.74.35	200 OK	166449
Search urlquery URL www.gstatic.com/recaptcha/releases/CDFvp7CXAHw7k3HxO47Gm1O9/recaptcha__en.js DOMAIN gstatic.com FQDN www.gstatic.com IP 142.250.74.35 Hash 95a32a4d8f8be968bc15d6ab9b9491d1 External sources Mnemonic PDNS FQDN www.gstatic.com DOMAIN gstatic.com IP 142.250.74.35 VirusTotal HASH fbfbcb40c8d8997096cd2ea3d8cfc3dee1981015 FQDN www.gstatic.com DOMAIN gstatic.com IP 142.250.74.35 crt.sh FQDN www.gstatic.com DOMAIN gstatic.com Fingerprint C8:5A:9A:D9:6A:F5:00:15:5B:5D:99:FE:FE:CA:1D:7C:19:4D:F8:D5 URL GET HTTP/3 www.gstatic.com/recaptcha/releases/CDFvp7CXAHw7k3HxO47Gm1O9/recaptcha__en.js IP 142.250.74.35:443 ASN #15169 GOOGLE Requested by https://www.google.com/recaptcha/api2/webworker.js?hl=en&v=CDFvp7CXAHw7k3HxO47Gm1O9 Certificate IssuerGoogle Trust Services LLC Subject.gstatic.com FingerprintC8:5A:9A:D9:6A:F5:00:15:5B:5D:99:FE:FE:CA:1D:7C:19:4D:F8:D5 ValidityFri, 19 May 2023 12:57:42 GMT - Fri, 11 Aug 2023 12:57:41 GMT Magic ASCII text, with very long lines (660) Size 166449 Hash 95a32a4d8f8be968bc15d6ab9b9491d1 fbfbcb40c8d8997096cd2ea3d8cfc3dee1981015 a41096fbcf982d79bf075bf2378c9c0c2e8ada5bdc94bd7cc794454135ccf981 HTTP Headers `GET /recaptcha/releases/CDFvp7CXAHw7k3HxO47Gm1O9/recaptcha__en.js HTTP/1.1 Host: www.gstatic.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: /* Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: https://waterstone.pt DNT: 1 Connection: keep-alive Referer: https://waterstone.pt/ Sec-Fetch-Dest: script Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` HTTP/2 200 OK accept-ranges: bytes content-encoding: gzip access-control-allow-origin: * content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/recaptcha cross-origin-resource-policy: cross-origin cross-origin-opener-policy: same-origin-allow-popups; report-to="recaptcha" report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]} content-length: 166449 x-content-type-options: nosniff server: sffe x-xss-protection: 0 date: Fri, 02 Jun 2023 13:27:11 GMT expires: Sat, 01 Jun 2024 13:27:11 GMT cache-control: public, max-age=31536000 last-modified: Mon, 22 May 2023 20:58:33 GMT content-type: text/javascript vary: Accept-Encoding age: 43738 alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000 X-Firefox-Spdy: h2

	www.google.com/recaptcha/api2/anchor?ar=1&k=6LdiqY4UAAAAANoEmuhitWab52nJiUKJDVKM0Ga0&co=aHR0cHM6Ly93YXRlcnN0b25lLnB0OjQ0Mw..&hl=en&v=CDFvp7CXAHw7k3HxO47Gm1O9&size=invisible&cb=9irtnlrbke2l	142.250.74.132	200 OK	27710
Search urlquery URL www.google.com/recaptcha/api2/anchor?ar=1&k=6LdiqY4UAAAAANoEmuhitWab52nJiUKJDVKM0Ga0&co=aHR0cHM6Ly93YXRlcnN0b25lLnB0OjQ0Mw..&hl=en&v=CDFvp7CXAHw7k3HxO47Gm1O9&size=invisible&cb=9irtnlrbke2l DOMAIN google.com FQDN www.google.com IP 142.250.74.132 Hash fff98947f2f448c15f85f7f43f06d32a External sources Mnemonic PDNS FQDN www.google.com DOMAIN google.com IP 142.250.74.132 VirusTotal HASH d84fb6a746c66564bb689fe22b01de74042625b7 FQDN www.google.com DOMAIN google.com IP 142.250.74.132 crt.sh FQDN www.google.com DOMAIN google.com Fingerprint 55:5E:E6:33:AF:71:86:C2:88:4A:36:5F:68:1D:97:9D:9B:9D:2A:1D URL GET HTTP/3 www.google.com/recaptcha/api2/anchor?ar=1&k=6LdiqY4UAAAAANoEmuhitWab52nJiUKJDVKM0Ga0&co=aHR0cHM6Ly93YXRlcnN0b25lLnB0OjQ0Mw..&hl=en&v=CDFvp7CXAHw7k3HxO47Gm1O9&size=invisible&cb=9irtnlrbke2l IP 142.250.74.132:443 ASN #15169 GOOGLE Requested by https://waterstone.pt/11/adobe/index.htm/ Certificate IssuerGoogle Trust Services LLC Subject.google.com Fingerprint55:5E:E6:33:AF:71:86:C2:88:4A:36:5F:68:1D:97:9D:9B:9D:2A:1D ValidityFri, 19 May 2023 12:53:06 GMT - Fri, 11 Aug 2023 12:53:05 GMT Magic HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (42532) Size 27710 Hash fff98947f2f448c15f85f7f43f06d32a d84fb6a746c66564bb689fe22b01de74042625b7 03b5450a95f9ff78f0dbfd2c1d0b7cbe0110b098e2133c72f2730222eca27cae HTTP Headers GET /recaptcha/api2/anchor?ar=1&k=6LdiqY4UAAAAANoEmuhitWab52nJiUKJDVKM0Ga0&co=aHR0cHM6Ly93YXRlcnN0b25lLnB0OjQ0Mw..&hl=en&v=CDFvp7CXAHw7k3HxO47Gm1O9&size=invisible&cb=9irtnlrbke2l HTTP/1.1 Host: www.google.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/*;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://waterstone.pt/ Upgrade-Insecure-Requests: 1 Sec-Fetch-Dest: iframe Sec-Fetch-Mode: navigate Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache TE: trailers HTTP/3 200 OK cross-origin-resource-policy: cross-origin cross-origin-embedder-policy: require-corp report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]} content-type: text/html; charset=utf-8 cache-control: no-cache, no-store, max-age=0, must-revalidate pragma: no-cache expires: Mon, 01 Jan 1990 00:00:00 GMT date: Sat, 03 Jun 2023 01:36:09 GMT content-security-policy: script-src 'nonce-goWn6rPncCJsaT6ywWfxBg' 'unsafe-inline' 'strict-dynamic' https: http: 'unsafe-eval';object-src 'none';base-uri 'self';report-uri https://csp.withgoogle.com/csp/recaptcha/1 content-encoding: gzip x-content-type-options: nosniff x-xss-protection: 1; mode=block content-length: 27710 server: GSE alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

	matomo.waterstone.pt/matomo.php?action_name=Page%20not%20found%20-%20Waterstone&idsite=4&rec=1&r=056966&h=1&m=36&s=9&url=https%3A%2F%2Fwaterstone.pt%2F11%2Fadobe%2Findex.htm%2F&_id=f9035b94980417f3&_idn=1&send_image=0&_refts=0&pdf=1&qt=0&realp=0&wma=0&fla=0&java=0&ag=0&cookie=1&res=1280x1024&pv_id=gM19dp&pf_net=0&pf_srv=275&pf_tfr=0&pf_dm1=446&uadata=%7B%7D	75.119.142.91	204 No Content	0
Search urlquery URL matomo.waterstone.pt/matomo.php?action_name=Page%20not%20found%20-%20Waterstone&idsite=4&rec=1&r=056966&h=1&m=36&s=9&url=https%3A%2F%2Fwaterstone.pt%2F11%2Fadobe%2Findex.htm%2F&_id=f9035b94980417f3&_idn=1&send_image=0&_refts=0&pdf=1&qt=0&realp=0&wma=0&fla=0&java=0&ag=0&cookie=1&res=1280x1024&pv_id=gM19dp&pf_net=0&pf_srv=275&pf_tfr=0&pf_dm1=446&uadata=%7B%7D DOMAIN waterstone.pt FQDN matomo.waterstone.pt IP 75.119.142.91 Hash d41d8cd98f00b204e9800998ecf8427e External sources Mnemonic PDNS FQDN matomo.waterstone.pt DOMAIN waterstone.pt IP 75.119.142.91 VirusTotal HASH da39a3ee5e6b4b0d3255bfef95601890afd80709 FQDN matomo.waterstone.pt DOMAIN waterstone.pt IP 75.119.142.91 crt.sh FQDN matomo.waterstone.pt DOMAIN waterstone.pt Fingerprint 4B:2F:83:9B:4A:84:8E:C9:E1:C7:63:43:AD:68:D7:D5:32:F1:DA:83 URL POST HTTP/2 matomo.waterstone.pt/matomo.php?action_name=Page%20not%20found%20-%20Waterstone&idsite=4&rec=1&r=056966&h=1&m=36&s=9&url=https%3A%2F%2Fwaterstone.pt%2F11%2Fadobe%2Findex.htm%2F&_id=f9035b94980417f3&_idn=1&send_image=0&_refts=0&pdf=1&qt=0&realp=0&wma=0&fla=0&java=0&ag=0&cookie=1&res=1280x1024&pv_id=gM19dp&pf_net=0&pf_srv=275&pf_tfr=0&pf_dm1=446&uadata=%7B%7D IP 75.119.142.91:443 ASN #51167 Contabo GmbH Requested by https://waterstone.pt/11/adobe/index.htm/ Certificate IssuerLet's Encrypt Subjectmatomo.waterstone.pt Fingerprint4B:2F:83:9B:4A:84:8E:C9:E1:C7:63:43:AD:68:D7:D5:32:F1:DA:83 ValidityMon, 15 May 2023 03:15:26 GMT - Sun, 13 Aug 2023 03:15:25 GMT Magic Size 0 Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers POST /matomo.php?action_name=Page%20not%20found%20-%20Waterstone&idsite=4&rec=1&r=056966&h=1&m=36&s=9&url=https%3A%2F%2Fwaterstone.pt%2F11%2Fadobe%2Findex.htm%2F&_id=f9035b94980417f3&_idn=1&send_image=0&_refts=0&pdf=1&qt=0&realp=0&wma=0&fla=0&java=0&ag=0&cookie=1&res=1280x1024&pv_id=gM19dp&pf_net=0&pf_srv=275&pf_tfr=0&pf_dm1=446&uadata=%7B%7D HTTP/1.1 Host: matomo.waterstone.pt User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Content-Type: application/x-www-form-urlencoded; charset=utf-8 Content-Length: 0 Origin: https://waterstone.pt DNT: 1 Connection: keep-alive Referer: https://waterstone.pt/ Sec-Fetch-Dest: empty Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-site TE: trailers `HTTP/2 204 No Content server: nginx date: Sat, 03 Jun 2023 01:36:09 GMT tk: N access-control-allow-origin: https://waterstone.pt access-control-allow-credentials: true x-frame-options: SAMEORIGIN x-content-type-options: nosniff x-xss-protection: 1; mode=block x-permitted-cross-domain-policies: master-only referrer-policy: same-origin X-Firefox-Spdy: h2`

	www.gstatic.com/recaptcha/releases/CDFvp7CXAHw7k3HxO47Gm1O9/styles__ltr.css	142.250.74.35	200 OK	24605
Search urlquery URL www.gstatic.com/recaptcha/releases/CDFvp7CXAHw7k3HxO47Gm1O9/styles__ltr.css DOMAIN gstatic.com FQDN www.gstatic.com IP 142.250.74.35 Hash 83f90c5a4c20afb44429fa346fbadc10 External sources Mnemonic PDNS FQDN www.gstatic.com DOMAIN gstatic.com IP 142.250.74.35 VirusTotal HASH 7c278ec721d3880fbafaadeba9ee80bdf294b014 FQDN www.gstatic.com DOMAIN gstatic.com IP 142.250.74.35 crt.sh FQDN www.gstatic.com DOMAIN gstatic.com Fingerprint C8:5A:9A:D9:6A:F5:00:15:5B:5D:99:FE:FE:CA:1D:7C:19:4D:F8:D5 URL GET HTTP/3 www.gstatic.com/recaptcha/releases/CDFvp7CXAHw7k3HxO47Gm1O9/styles__ltr.css IP 142.250.74.35:443 ASN #15169 GOOGLE Requested by https://www.google.com/recaptcha/api2/anchor?ar=1&k=6LdiqY4UAAAAANoEmuhitWab52nJiUKJDVKM0Ga0&co=aHR0cHM6Ly93YXRlcnN0b25lLnB0OjQ0Mw..&hl=en&v=CDFvp7CXAHw7k3HxO47Gm1O9&size=invisible&cb=9irtnlrbke2l Certificate IssuerGoogle Trust Services LLC Subject.gstatic.com FingerprintC8:5A:9A:D9:6A:F5:00:15:5B:5D:99:FE:FE:CA:1D:7C:19:4D:F8:D5 ValidityFri, 19 May 2023 12:57:42 GMT - Fri, 11 Aug 2023 12:57:41 GMT Magic ASCII text, with very long lines (56403), with no line terminators Size 24605 Hash 83f90c5a4c20afb44429fa346fbadc10 7c278ec721d3880fbafaadeba9ee80bdf294b014 952833e41ba7a4b64c31a2d7b07dde81bf5bbacf5cbb967821cfe459d0c4a0d8 HTTP Headers `GET /recaptcha/releases/CDFvp7CXAHw7k3HxO47Gm1O9/styles__ltr.css HTTP/1.1 Host: www.gstatic.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: text/css,/*;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://www.google.com/ Sec-Fetch-Dest: style Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache TE: trailers` HTTP/3 200 OK accept-ranges: bytes content-encoding: gzip content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/recaptcha cross-origin-resource-policy: cross-origin cross-origin-opener-policy: same-origin-allow-popups; report-to="recaptcha" report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]} content-length: 24605 x-content-type-options: nosniff server: sffe x-xss-protection: 0 date: Fri, 02 Jun 2023 13:27:11 GMT expires: Sat, 01 Jun 2024 13:27:11 GMT cache-control: public, max-age=31536000 last-modified: Mon, 22 May 2023 20:58:33 GMT content-type: text/css vary: Accept-Encoding age: 43739 alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

	www.gstatic.com/recaptcha/releases/CDFvp7CXAHw7k3HxO47Gm1O9/recaptcha__en.js	142.250.74.35	200 OK	166449
Search urlquery URL www.gstatic.com/recaptcha/releases/CDFvp7CXAHw7k3HxO47Gm1O9/recaptcha__en.js DOMAIN gstatic.com FQDN www.gstatic.com IP 142.250.74.35 Hash 95a32a4d8f8be968bc15d6ab9b9491d1 External sources Mnemonic PDNS FQDN www.gstatic.com DOMAIN gstatic.com IP 142.250.74.35 VirusTotal HASH fbfbcb40c8d8997096cd2ea3d8cfc3dee1981015 FQDN www.gstatic.com DOMAIN gstatic.com IP 142.250.74.35 crt.sh FQDN www.gstatic.com DOMAIN gstatic.com Fingerprint C8:5A:9A:D9:6A:F5:00:15:5B:5D:99:FE:FE:CA:1D:7C:19:4D:F8:D5 URL GET HTTP/3 www.gstatic.com/recaptcha/releases/CDFvp7CXAHw7k3HxO47Gm1O9/recaptcha__en.js IP 142.250.74.35:443 ASN #15169 GOOGLE Requested by https://www.google.com/recaptcha/api2/webworker.js?hl=en&v=CDFvp7CXAHw7k3HxO47Gm1O9 Certificate IssuerGoogle Trust Services LLC Subject.gstatic.com FingerprintC8:5A:9A:D9:6A:F5:00:15:5B:5D:99:FE:FE:CA:1D:7C:19:4D:F8:D5 ValidityFri, 19 May 2023 12:57:42 GMT - Fri, 11 Aug 2023 12:57:41 GMT Magic ASCII text, with very long lines (660) Size 166449 Hash 95a32a4d8f8be968bc15d6ab9b9491d1 fbfbcb40c8d8997096cd2ea3d8cfc3dee1981015 a41096fbcf982d79bf075bf2378c9c0c2e8ada5bdc94bd7cc794454135ccf981 HTTP Headers `GET /recaptcha/releases/CDFvp7CXAHw7k3HxO47Gm1O9/recaptcha__en.js HTTP/1.1 Host: www.gstatic.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: /* Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://www.google.com/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache TE: trailers` HTTP/3 200 OK accept-ranges: bytes content-encoding: gzip access-control-allow-origin: * content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/recaptcha cross-origin-resource-policy: cross-origin cross-origin-opener-policy: same-origin-allow-popups; report-to="recaptcha" report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]} content-length: 166449 x-content-type-options: nosniff server: sffe x-xss-protection: 0 date: Fri, 02 Jun 2023 13:27:11 GMT expires: Sat, 01 Jun 2024 13:27:11 GMT cache-control: public, max-age=31536000 last-modified: Mon, 22 May 2023 20:58:33 GMT content-type: text/javascript vary: Accept-Encoding age: 43739 alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

	waterstone.pt/wp-content/themes/onepress/assets/css/bootstrap.min.css?ver=2.3.2	104.21.52.113	200 OK	35696
Search urlquery URL waterstone.pt/wp-content/themes/onepress/assets/css/bootstrap.min.css?ver=2.3.2 DOMAIN waterstone.pt FQDN waterstone.pt IP 104.21.52.113 Hash fbc5f82aac64915adbc338e843564701 External sources Mnemonic PDNS FQDN waterstone.pt DOMAIN waterstone.pt IP 104.21.52.113 VirusTotal HASH dff7b7d773e83419aabb6a763acff861ab0f875b FQDN waterstone.pt DOMAIN waterstone.pt IP 104.21.52.113 crt.sh FQDN waterstone.pt DOMAIN waterstone.pt Fingerprint FC:23:70:B0:5C:24:8B:D2:F1:D7:B2:BB:DB:9F:0F:E9:EF:A8:4C:8D URL GET HTTP/3 waterstone.pt/wp-content/themes/onepress/assets/css/bootstrap.min.css?ver=2.3.2 IP 104.21.52.113:443 ASN #13335 CLOUDFLARENET Requested by https://waterstone.pt/11/adobe/index.htm/ Certificate IssuerLet's Encrypt Subjectwaterstone.pt FingerprintFC:23:70:B0:5C:24:8B:D2:F1:D7:B2:BB:DB:9F:0F:E9:EF:A8:4C:8D ValidityWed, 10 May 2023 03:06:30 GMT - Tue, 08 Aug 2023 03:06:29 GMT Magic ASCII text, with very long lines (65317) Size 35696 Hash fbc5f82aac64915adbc338e843564701 dff7b7d773e83419aabb6a763acff861ab0f875b 9f58b2c2ce7858f4254c5edd6e3c747bc139248f25ccdf6bcb6c0053cd199538 HTTP Headers `GET /wp-content/themes/onepress/assets/css/bootstrap.min.css?ver=2.3.2 HTTP/1.1 Host: waterstone.pt User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://waterstone.pt/11/adobe/index.htm/ Sec-Fetch-Dest: style Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache TE: trailers` HTTP/3 200 OK date: Sat, 03 Jun 2023 01:36:09 GMT content-type: text/css last-modified: Mon, 14 Nov 2022 23:57:40 GMT vary: Accept-Encoding etag: W/"6372d5f4-1f915" expires: Thu, 31 Dec 2037 23:55:55 GMT cache-control: max-age=315360000 access-control-allow-origin: * cf-cache-status: HIT age: 817 report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=2eQ7MdxbfnJRcOauTDhnT9zSX74tqy8b7zwvVTnLw8lHq%2FoiTFy4QJbrNJaIBI9B2t5dzp3kZnfiFSwH0tGOJnvaOgmd3d52mZ1qeAavbjTcrzmQSHtubqREPZFqY8e4"}],"group":"cf-nel","max_age":604800} nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800} server: cloudflare cf-ray: 7d1434184b6fb50b-OSL content-encoding: br alt-svc: h3=":443"; ma=86400

	fonts.gstatic.com/s/roboto/v18/KFOlCnqEu92Fr1MmEU9fBBc4.woff2	216.58.207.227	200 OK	15552
Search urlquery URL fonts.gstatic.com/s/roboto/v18/KFOlCnqEu92Fr1MmEU9fBBc4.woff2 DOMAIN gstatic.com FQDN fonts.gstatic.com IP 216.58.207.227 Hash 285467176f7fe6bb6a9c6873b3dad2cc External sources Mnemonic PDNS FQDN fonts.gstatic.com DOMAIN gstatic.com IP 216.58.207.227 VirusTotal HASH ea04e4ff5142ddd69307c183def721a160e0a64e FQDN fonts.gstatic.com DOMAIN gstatic.com IP 216.58.207.227 crt.sh FQDN fonts.gstatic.com DOMAIN gstatic.com Fingerprint C8:5A:9A:D9:6A:F5:00:15:5B:5D:99:FE:FE:CA:1D:7C:19:4D:F8:D5 URL GET HTTP/2 fonts.gstatic.com/s/roboto/v18/KFOlCnqEu92Fr1MmEU9fBBc4.woff2 IP 216.58.207.227:443 ASN #15169 GOOGLE Requested by https://www.google.com/recaptcha/api2/anchor?ar=1&k=6LdiqY4UAAAAANoEmuhitWab52nJiUKJDVKM0Ga0&co=aHR0cHM6Ly93YXRlcnN0b25lLnB0OjQ0Mw..&hl=en&v=CDFvp7CXAHw7k3HxO47Gm1O9&size=invisible&cb=9irtnlrbke2l Certificate IssuerGoogle Trust Services LLC Subject.gstatic.com FingerprintC8:5A:9A:D9:6A:F5:00:15:5B:5D:99:FE:FE:CA:1D:7C:19:4D:F8:D5 ValidityFri, 19 May 2023 12:57:42 GMT - Fri, 11 Aug 2023 12:57:41 GMT Magic Web Open Font Format (Version 2), TrueType, length 15552, version 1.0\012- data Size 15552 Hash 285467176f7fe6bb6a9c6873b3dad2cc ea04e4ff5142ddd69307c183def721a160e0a64e 5a8c1e7681318caa29e9f44e8a6e271f6a4067a2703e9916dfd4fe9099241db7 HTTP Headers GET /s/roboto/v18/KFOlCnqEu92Fr1MmEU9fBBc4.woff2 HTTP/1.1 Host: fonts.gstatic.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: identity Origin: https://www.google.com DNT: 1 Connection: keep-alive Referer: https://www.google.com/ Sec-Fetch-Dest: font Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache TE: trailers HTTP/2 200 OK accept-ranges: bytes access-control-allow-origin: content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes cross-origin-resource-policy: cross-origin cross-origin-opener-policy: same-origin; report-to="apps-themes" report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]} timing-allow-origin: * content-length: 15552 x-content-type-options: nosniff server: sffe x-xss-protection: 0 date: Tue, 30 May 2023 21:40:21 GMT expires: Wed, 29 May 2024 21:40:21 GMT cache-control: public, max-age=31536000 age: 273349 last-modified: Mon, 16 Oct 2017 17:33:02 GMT content-type: font/woff2 alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000 X-Firefox-Spdy: h2

	www.google.com/recaptcha/api2/webworker.js?hl=en&v=CDFvp7CXAHw7k3HxO47Gm1O9	142.250.74.132	200 OK	112
Search urlquery URL www.google.com/recaptcha/api2/webworker.js?hl=en&v=CDFvp7CXAHw7k3HxO47Gm1O9 DOMAIN google.com FQDN www.google.com IP 142.250.74.132 Hash ffdfcf8fae84f7684f006bf5af012c06 External sources Mnemonic PDNS FQDN www.google.com DOMAIN google.com IP 142.250.74.132 VirusTotal HASH b31182bbb1c60a114919bf05e698805b61f76aba FQDN www.google.com DOMAIN google.com IP 142.250.74.132 crt.sh FQDN www.google.com DOMAIN google.com Fingerprint 55:5E:E6:33:AF:71:86:C2:88:4A:36:5F:68:1D:97:9D:9B:9D:2A:1D URL GET HTTP/3 www.google.com/recaptcha/api2/webworker.js?hl=en&v=CDFvp7CXAHw7k3HxO47Gm1O9 IP 142.250.74.132:443 ASN #15169 GOOGLE Requested by https://www.google.com/recaptcha/api2/anchor?ar=1&k=6LdiqY4UAAAAANoEmuhitWab52nJiUKJDVKM0Ga0&co=aHR0cHM6Ly93YXRlcnN0b25lLnB0OjQ0Mw..&hl=en&v=CDFvp7CXAHw7k3HxO47Gm1O9&size=invisible&cb=9irtnlrbke2l Certificate IssuerGoogle Trust Services LLC Subject.google.com Fingerprint55:5E:E6:33:AF:71:86:C2:88:4A:36:5F:68:1D:97:9D:9B:9D:2A:1D ValidityFri, 19 May 2023 12:53:06 GMT - Fri, 11 Aug 2023 12:53:05 GMT Magic ASCII text, with no line terminators Size 112 Hash ffdfcf8fae84f7684f006bf5af012c06 b31182bbb1c60a114919bf05e698805b61f76aba 1bf768716a75b7620d341f775d10d79ee73a3a47f6609a24ca25dd88e4aeda95 HTTP Headers GET /recaptcha/api2/webworker.js?hl=en&v=CDFvp7CXAHw7k3HxO47Gm1O9 HTTP/1.1 Host: www.google.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: /* Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://www.google.com/recaptcha/api2/anchor?ar=1&k=6LdiqY4UAAAAANoEmuhitWab52nJiUKJDVKM0Ga0&co=aHR0cHM6Ly93YXRlcnN0b25lLnB0OjQ0Mw..&hl=en&v=CDFvp7CXAHw7k3HxO47Gm1O9&size=invisible&cb=9irtnlrbke2l Sec-Fetch-Dest: worker Sec-Fetch-Mode: same-origin Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache TE: trailers HTTP/3 200 OK expires: Sat, 03 Jun 2023 01:36:10 GMT date: Sat, 03 Jun 2023 01:36:10 GMT cache-control: private, max-age=300 cross-origin-embedder-policy: require-corp report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]} content-type: text/javascript; charset=UTF-8 content-encoding: gzip x-content-type-options: nosniff x-frame-options: SAMEORIGIN content-security-policy: frame-ancestors 'self' x-xss-protection: 1; mode=block content-length: 112 server: GSE alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

	www.gstatic.com/recaptcha/api2/logo_48.png	142.250.74.35	200 OK	2228
Search urlquery URL www.gstatic.com/recaptcha/api2/logo_48.png DOMAIN gstatic.com FQDN www.gstatic.com IP 142.250.74.35 Hash ef9941290c50cd3866e2ba6b793f010d External sources Mnemonic PDNS FQDN www.gstatic.com DOMAIN gstatic.com IP 142.250.74.35 VirusTotal HASH 4736508c795667dcea21f8d864233031223b7832 FQDN www.gstatic.com DOMAIN gstatic.com IP 142.250.74.35 crt.sh FQDN www.gstatic.com DOMAIN gstatic.com Fingerprint C8:5A:9A:D9:6A:F5:00:15:5B:5D:99:FE:FE:CA:1D:7C:19:4D:F8:D5 URL GET HTTP/3 www.gstatic.com/recaptcha/api2/logo_48.png IP 142.250.74.35:443 ASN #15169 GOOGLE Requested by https://www.google.com/recaptcha/api2/anchor?ar=1&k=6LdiqY4UAAAAANoEmuhitWab52nJiUKJDVKM0Ga0&co=aHR0cHM6Ly93YXRlcnN0b25lLnB0OjQ0Mw..&hl=en&v=CDFvp7CXAHw7k3HxO47Gm1O9&size=invisible&cb=9irtnlrbke2l Certificate IssuerGoogle Trust Services LLC Subject.gstatic.com FingerprintC8:5A:9A:D9:6A:F5:00:15:5B:5D:99:FE:FE:CA:1D:7C:19:4D:F8:D5 ValidityFri, 19 May 2023 12:57:42 GMT - Fri, 11 Aug 2023 12:57:41 GMT Magic PNG image data, 48 x 48, 8-bit/color RGBA, non-interlaced\012- data Size 2228 Hash ef9941290c50cd3866e2ba6b793f010d 4736508c795667dcea21f8d864233031223b7832 1b9efb22c938500971aac2b2130a475fa23684dd69e43103894968df83145b8a HTTP Headers `GET /recaptcha/api2/logo_48.png HTTP/1.1 Host: www.gstatic.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: image/avif,image/webp,/* Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://www.gstatic.com/recaptcha/releases/CDFvp7CXAHw7k3HxO47Gm1O9/styles__ltr.css Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache TE: trailers` HTTP/3 200 OK accept-ranges: bytes content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/recaptcha cross-origin-resource-policy: cross-origin cross-origin-opener-policy: same-origin-allow-popups; report-to="recaptcha" report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]} content-length: 2228 x-content-type-options: nosniff server: sffe x-xss-protection: 0 date: Mon, 29 May 2023 21:48:58 GMT expires: Mon, 05 Jun 2023 21:48:58 GMT cache-control: public, max-age=604800 age: 359232 last-modified: Tue, 03 Mar 2020 20:15:00 GMT content-type: image/png alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

	www.gstatic.com/recaptcha/releases/CDFvp7CXAHw7k3HxO47Gm1O9/recaptcha__en.js	142.250.74.35	200 OK	166449
Search urlquery URL www.gstatic.com/recaptcha/releases/CDFvp7CXAHw7k3HxO47Gm1O9/recaptcha__en.js DOMAIN gstatic.com FQDN www.gstatic.com IP 142.250.74.35 Hash 95a32a4d8f8be968bc15d6ab9b9491d1 External sources Mnemonic PDNS FQDN www.gstatic.com DOMAIN gstatic.com IP 142.250.74.35 VirusTotal HASH fbfbcb40c8d8997096cd2ea3d8cfc3dee1981015 FQDN www.gstatic.com DOMAIN gstatic.com IP 142.250.74.35 crt.sh FQDN www.gstatic.com DOMAIN gstatic.com Fingerprint C8:5A:9A:D9:6A:F5:00:15:5B:5D:99:FE:FE:CA:1D:7C:19:4D:F8:D5 URL GET HTTP/3 www.gstatic.com/recaptcha/releases/CDFvp7CXAHw7k3HxO47Gm1O9/recaptcha__en.js IP 142.250.74.35:443 ASN #15169 GOOGLE Requested by https://www.google.com/recaptcha/api2/webworker.js?hl=en&v=CDFvp7CXAHw7k3HxO47Gm1O9 Certificate IssuerGoogle Trust Services LLC Subject.gstatic.com FingerprintC8:5A:9A:D9:6A:F5:00:15:5B:5D:99:FE:FE:CA:1D:7C:19:4D:F8:D5 ValidityFri, 19 May 2023 12:57:42 GMT - Fri, 11 Aug 2023 12:57:41 GMT Magic ASCII text, with very long lines (660) Size 166449 Hash 95a32a4d8f8be968bc15d6ab9b9491d1 fbfbcb40c8d8997096cd2ea3d8cfc3dee1981015 a41096fbcf982d79bf075bf2378c9c0c2e8ada5bdc94bd7cc794454135ccf981 HTTP Headers `GET /recaptcha/releases/CDFvp7CXAHw7k3HxO47Gm1O9/recaptcha__en.js HTTP/1.1 Host: www.gstatic.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: /* Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://www.google.com/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache TE: trailers` HTTP/3 200 OK accept-ranges: bytes content-encoding: gzip access-control-allow-origin: * content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/recaptcha cross-origin-resource-policy: cross-origin cross-origin-opener-policy: same-origin-allow-popups; report-to="recaptcha" report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]} content-length: 166449 x-content-type-options: nosniff server: sffe x-xss-protection: 0 date: Fri, 02 Jun 2023 13:27:11 GMT expires: Sat, 01 Jun 2024 13:27:11 GMT cache-control: public, max-age=31536000 last-modified: Mon, 22 May 2023 20:58:33 GMT content-type: text/javascript vary: Accept-Encoding age: 43739 alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

	www.google.com/recaptcha/api2/reload?k=6LdiqY4UAAAAANoEmuhitWab52nJiUKJDVKM0Ga0	142.250.74.132	200 OK	19328
Search urlquery URL www.google.com/recaptcha/api2/reload?k=6LdiqY4UAAAAANoEmuhitWab52nJiUKJDVKM0Ga0 DOMAIN google.com FQDN www.google.com IP 142.250.74.132 Hash 7e53bb4f9b2c7dc5e1707d52d2391123 External sources Mnemonic PDNS FQDN www.google.com DOMAIN google.com IP 142.250.74.132 VirusTotal HASH b9543f9afa374b7dee320f2234b2b376f94ea88f FQDN www.google.com DOMAIN google.com IP 142.250.74.132 crt.sh FQDN www.google.com DOMAIN google.com Fingerprint 55:5E:E6:33:AF:71:86:C2:88:4A:36:5F:68:1D:97:9D:9B:9D:2A:1D URL POST HTTP/3 www.google.com/recaptcha/api2/reload?k=6LdiqY4UAAAAANoEmuhitWab52nJiUKJDVKM0Ga0 IP 142.250.74.132:443 ASN #15169 GOOGLE Requested by https://www.google.com/recaptcha/api2/anchor?ar=1&k=6LdiqY4UAAAAANoEmuhitWab52nJiUKJDVKM0Ga0&co=aHR0cHM6Ly93YXRlcnN0b25lLnB0OjQ0Mw..&hl=en&v=CDFvp7CXAHw7k3HxO47Gm1O9&size=invisible&cb=9irtnlrbke2l Certificate IssuerGoogle Trust Services LLC Subject.google.com Fingerprint55:5E:E6:33:AF:71:86:C2:88:4A:36:5F:68:1D:97:9D:9B:9D:2A:1D ValidityFri, 19 May 2023 12:53:06 GMT - Fri, 11 Aug 2023 12:53:05 GMT Magic ASCII text, with very long lines (33705) Size 19328 Hash 7e53bb4f9b2c7dc5e1707d52d2391123 b9543f9afa374b7dee320f2234b2b376f94ea88f 934ba04133eeb4f21d53c6be0f322be60490b01eb2b20e0f4bcd851f6000311c HTTP Headers POST /recaptcha/api2/reload?k=6LdiqY4UAAAAANoEmuhitWab52nJiUKJDVKM0Ga0 HTTP/1.1 Host: www.google.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: /* Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Content-Type: application/x-protobuffer Content-Length: 6519 Origin: https://www.google.com DNT: 1 Connection: keep-alive Referer: https://www.google.com/recaptcha/api2/anchor?ar=1&k=6LdiqY4UAAAAANoEmuhitWab52nJiUKJDVKM0Ga0&co=aHR0cHM6Ly93YXRlcnN0b25lLnB0OjQ0Mw..&hl=en&v=CDFvp7CXAHw7k3HxO47Gm1O9&size=invisible&cb=9irtnlrbke2l Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache TE: trailers HTTP/3 200 OK content-type: application/json; charset=utf-8 content-encoding: gzip date: Sat, 03 Jun 2023 01:36:10 GMT expires: Sat, 03 Jun 2023 01:36:10 GMT cache-control: private, max-age=0 x-content-type-options: nosniff x-frame-options: SAMEORIGIN content-security-policy: frame-ancestors 'self' x-xss-protection: 1; mode=block content-length: 19328 server: GSE set-cookie: _GRECAPTCHA=09ALyjir-8BGYoXU5eJOHeD4fsvpjRBwQLci5XOiuG66ynp_URxjnXbtjXe_j0sSRZxMjK_mTeEtJz5hxx6LRLwXs;Path=/recaptcha;Expires=Thu, 30-Nov-2023 01:36:10 GMT;Secure;HttpOnly;Priority=HIGH;SameSite=none alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

	cdn.jsdelivr.net/emojione/2.2.7/lib/js/emojione.min.js	151.101.65.229	200 OK	41275
Search urlquery URL cdn.jsdelivr.net/emojione/2.2.7/lib/js/emojione.min.js DOMAIN jsdelivr.net FQDN cdn.jsdelivr.net IP 151.101.65.229 Hash 7bb7aac0cac89a90304af1c72eb4f50d External sources Mnemonic PDNS FQDN cdn.jsdelivr.net DOMAIN jsdelivr.net IP 151.101.65.229 VirusTotal HASH 729f6f8ca5787d89743b0ed7eb27fd76406bf985 FQDN cdn.jsdelivr.net DOMAIN jsdelivr.net IP 151.101.65.229 crt.sh FQDN cdn.jsdelivr.net DOMAIN jsdelivr.net Fingerprint 88:D1:D3:FA:BE:69:45:71:5A:74:78:14:1A:E8:F3:5A:88:69:9C:7F URL GET HTTP/2 cdn.jsdelivr.net/emojione/2.2.7/lib/js/emojione.min.js IP 151.101.65.229:443 ASN #54113 FASTLY Requested by https://waterstone.pt/11/adobe/index.htm/ Certificate IssuerGlobalSign nv-sa Subjectjsdelivr.net Fingerprint88:D1:D3:FA:BE:69:45:71:5A:74:78:14:1A:E8:F3:5A:88:69:9C:7F ValidityFri, 23 Dec 2022 10:55:14 GMT - Wed, 24 Jan 2024 10:55:13 GMT Magic ASCII text, with very long lines (32014) Size 41275 Hash 7bb7aac0cac89a90304af1c72eb4f50d 729f6f8ca5787d89743b0ed7eb27fd76406bf985 f5c06455e539dcd889f7f05d709b5adc76c444099fe57f431365af2fc57e803b HTTP Headers `GET /emojione/2.2.7/lib/js/emojione.min.js HTTP/1.1 Host: cdn.jsdelivr.net User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://waterstone.pt/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` HTTP/2 200 OK access-control-allow-origin: * access-control-expose-headers: * timing-allow-origin: * cache-control: public, max-age=31536000, s-maxage=31536000, immutable cross-origin-resource-policy: cross-origin x-content-type-options: nosniff strict-transport-security: max-age=31536000; includeSubDomains; preload content-type: application/javascript; charset=utf-8 etag: W/"49dda-cp9vjKV4fYl0Ow7X6yf9dkBr+YU" content-encoding: br accept-ranges: bytes date: Sat, 03 Jun 2023 01:36:11 GMT age: 5179063 x-served-by: cache-fra-eddf8230136-FRA, cache-bma1648-BMA x-cache: HIT, HIT vary: Accept-Encoding alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400 content-length: 41275 X-Firefox-Spdy: h2

	embed.tawk.to/_s/v4/app/64795e77f7f/js/twk-chunk-48f46bef.js	104.22.24.131	200 OK	46490
Search urlquery URL embed.tawk.to/_s/v4/app/64795e77f7f/js/twk-chunk-48f46bef.js DOMAIN tawk.to FQDN embed.tawk.to IP 104.22.24.131 Hash cf46dbd8781936ac4cada7e90d8bd7d5 External sources Mnemonic PDNS FQDN embed.tawk.to DOMAIN tawk.to IP 104.22.24.131 VirusTotal HASH b9d821bc13a46c181ccc8b68b15a352d9e3a3cd6 FQDN embed.tawk.to DOMAIN tawk.to IP 104.22.24.131 crt.sh FQDN embed.tawk.to DOMAIN tawk.to Fingerprint 61:E8:BF:90:FC:F6:AA:AD:96:84:8C:EE:A7:5A:5E:1A:AA:60:57:E3 URL GET HTTP/3 embed.tawk.to/_s/v4/app/64795e77f7f/js/twk-chunk-48f46bef.js IP 104.22.24.131:443 ASN #13335 CLOUDFLARENET Requested by https://waterstone.pt/11/adobe/index.htm/ Certificate IssuerCloudflare, Inc. Subjectsni.cloudflaressl.com Fingerprint61:E8:BF:90:FC:F6:AA:AD:96:84:8C:EE:A7:5A:5E:1A:AA:60:57:E3 ValidityFri, 28 Apr 2023 00:00:00 GMT - Sat, 27 Apr 2024 23:59:59 GMT Magic ASCII text, with very long lines (19655), with no line terminators Size 46490 Hash cf46dbd8781936ac4cada7e90d8bd7d5 b9d821bc13a46c181ccc8b68b15a352d9e3a3cd6 fb3c890c14210dcec97b3e6dda3a28b4632a1a63a0bea29e421a18a612583031 HTTP Headers `GET /_s/v4/app/64795e77f7f/js/twk-chunk-48f46bef.js HTTP/1.1 Host: embed.tawk.to User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://waterstone.pt/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache TE: trailers` HTTP/3 200 OK date: Sat, 03 Jun 2023 01:36:11 GMT content-type: application/javascript last-modified: Fri, 02 Jun 2023 03:15:39 GMT etag: W/"cf46dbd8781936ac4cada7e90d8bd7d5" access-control-allow-origin: * cache-control: public, max-age=2592000, immutable x-cache-status: HIT strict-transport-security: max-age=0; includeSubDomains; preload cf-cache-status: HIT age: 77426 vary: Accept-Encoding x-content-type-options: nosniff server: cloudflare cf-ray: 7d1434292d4bb517-OSL content-encoding: br alt-svc: h3=":443"; ma=86400

	ocsp.globalsign.com/ca/gsatlasr3dvtlsca2022q4	104.18.21.226		1462
Search urlquery URL ocsp.globalsign.com/ca/gsatlasr3dvtlsca2022q4 DOMAIN globalsign.com FQDN ocsp.globalsign.com IP 104.18.21.226 Hash e93894944eb4eb8a48be03fcbe27a271 External sources Mnemonic PDNS FQDN ocsp.globalsign.com DOMAIN globalsign.com IP 104.18.21.226 VirusTotal HASH 6a8af79cdd3f5a172d5f8e66cc3818dce46d5a93 FQDN ocsp.globalsign.com DOMAIN globalsign.com IP 104.18.21.226 crt.sh FQDN ocsp.globalsign.com DOMAIN globalsign.com URL ocsp.globalsign.com/ca/gsatlasr3dvtlsca2022q4 IP 104.18.21.226:0 ASN #13335 CLOUDFLARENET Magic data Size 1462 Hash e93894944eb4eb8a48be03fcbe27a271 6a8af79cdd3f5a172d5f8e66cc3818dce46d5a93 2892b9a954e99906ff4b2ff085e64683cd728d8ac7045b6267e5ccbb8b62c41a HTTP Headers `POST /ca/gsatlasr3dvtlsca2022q4 HTTP/1.1 Host: ocsp.globalsign.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Date: Sat, 03 Jun 2023 01:36:12 GMT Content-Type: application/ocsp-response Transfer-Encoding: chunked Connection: keep-alive Etag: "3034E2D13202D0C5B0DB79E104083D4C649A89A3" Expires: Sat, 03 Jun 2023 12:00:00 GMT Last-Modified: Sat, 03 Jun 2023 00:00:00 UTC Cache-Control: s-maxage=3600, public, no-transform, must-revalidate CF-Cache-Status: HIT Age: 1643 Vary: Accept-Encoding Server: cloudflare CF-RAY: 7d14342b0b4fb51e-OSL`

	vsb12.tawk.to/s/?k=647a990b3a6a4684572ae389&cver=0&pop=false&asver=4&tkn=eyJhbGciOiJFUzI1NiIsInR5cCI6IkpXVCIsImtpZCI6InZpc2l0b3ItYXBwbGljYXRpb24tc2VydmVyLTIwMjEwMjIifQ.eyJwaWQiOiI2NDE4N2Q4ZjQyNDdmMjBmZWZlNmY4NDciLCJ2aWQiOiI2NDE4N2Q4ZjQyNDdmMjBmZWZlNmY4NDctSmhkVGZzaU9kY1pVMXlmQXBoSEZ1Iiwic2lkIjoiNjQ3YTk5MGIzYTZhNDY4NDU3MmFlMzg5IiwiaWF0IjoxNjg1NzU2MTcxLCJleHAiOjE2ODU3NTc5NzEsImp0aSI6InZwOGNKSE5WVVN0eEhmVXhaUUdXbSJ9.LKQBt1CBFB5-3ttd7Sceg_wixm05VwtVCmbSoY4Dw-KoRk_nyUsGHvV6ZM_9OgVqA2-08WXPp4RLUQFODEOeDA&EIO=3&transport=websocket&__t=OX-vTFq	172.67.38.66		0
Search urlquery URL vsb12.tawk.to/s/?k=647a990b3a6a4684572ae389&cver=0&pop=false&asver=4&tkn=eyJhbGciOiJFUzI1NiIsInR5cCI6IkpXVCIsImtpZCI6InZpc2l0b3ItYXBwbGljYXRpb24tc2VydmVyLTIwMjEwMjIifQ.eyJwaWQiOiI2NDE4N2Q4ZjQyNDdmMjBmZWZlNmY4NDciLCJ2aWQiOiI2NDE4N2Q4ZjQyNDdmMjBmZWZlNmY4NDctSmhkVGZzaU9kY1pVMXlmQXBoSEZ1Iiwic2lkIjoiNjQ3YTk5MGIzYTZhNDY4NDU3MmFlMzg5IiwiaWF0IjoxNjg1NzU2MTcxLCJleHAiOjE2ODU3NTc5NzEsImp0aSI6InZwOGNKSE5WVVN0eEhmVXhaUUdXbSJ9.LKQBt1CBFB5-3ttd7Sceg_wixm05VwtVCmbSoY4Dw-KoRk_nyUsGHvV6ZM_9OgVqA2-08WXPp4RLUQFODEOeDA&EIO=3&transport=websocket&__t=OX-vTFq DOMAIN tawk.to FQDN vsb12.tawk.to IP 172.67.38.66 Hash d41d8cd98f00b204e9800998ecf8427e External sources Mnemonic PDNS FQDN vsb12.tawk.to DOMAIN tawk.to IP 172.67.38.66 VirusTotal HASH da39a3ee5e6b4b0d3255bfef95601890afd80709 FQDN vsb12.tawk.to DOMAIN tawk.to IP 172.67.38.66 crt.sh FQDN vsb12.tawk.to DOMAIN tawk.to URL vsb12.tawk.to/s/?k=647a990b3a6a4684572ae389&cver=0&pop=false&asver=4&tkn=eyJhbGciOiJFUzI1NiIsInR5cCI6IkpXVCIsImtpZCI6InZpc2l0b3ItYXBwbGljYXRpb24tc2VydmVyLTIwMjEwMjIifQ.eyJwaWQiOiI2NDE4N2Q4ZjQyNDdmMjBmZWZlNmY4NDciLCJ2aWQiOiI2NDE4N2Q4ZjQyNDdmMjBmZWZlNmY4NDctSmhkVGZzaU9kY1pVMXlmQXBoSEZ1Iiwic2lkIjoiNjQ3YTk5MGIzYTZhNDY4NDU3MmFlMzg5IiwiaWF0IjoxNjg1NzU2MTcxLCJleHAiOjE2ODU3NTc5NzEsImp0aSI6InZwOGNKSE5WVVN0eEhmVXhaUUdXbSJ9.LKQBt1CBFB5-3ttd7Sceg_wixm05VwtVCmbSoY4Dw-KoRk_nyUsGHvV6ZM_9OgVqA2-08WXPp4RLUQFODEOeDA&EIO=3&transport=websocket&__t=OX-vTFq IP 172.67.38.66:0 ASN #13335 CLOUDFLARENET Magic Size 0 Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers GET /s/?k=647a990b3a6a4684572ae389&cver=0&pop=false&asver=4&tkn=eyJhbGciOiJFUzI1NiIsInR5cCI6IkpXVCIsImtpZCI6InZpc2l0b3ItYXBwbGljYXRpb24tc2VydmVyLTIwMjEwMjIifQ.eyJwaWQiOiI2NDE4N2Q4ZjQyNDdmMjBmZWZlNmY4NDciLCJ2aWQiOiI2NDE4N2Q4ZjQyNDdmMjBmZWZlNmY4NDctSmhkVGZzaU9kY1pVMXlmQXBoSEZ1Iiwic2lkIjoiNjQ3YTk5MGIzYTZhNDY4NDU3MmFlMzg5IiwiaWF0IjoxNjg1NzU2MTcxLCJleHAiOjE2ODU3NTc5NzEsImp0aSI6InZwOGNKSE5WVVN0eEhmVXhaUUdXbSJ9.LKQBt1CBFB5-3ttd7Sceg_wixm05VwtVCmbSoY4Dw-KoRk_nyUsGHvV6ZM_9OgVqA2-08WXPp4RLUQFODEOeDA&EIO=3&transport=websocket&__t=OX-vTFq HTTP/1.1 Host: vsb12.tawk.to User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Sec-WebSocket-Version: 13 Origin: https://waterstone.pt Sec-WebSocket-Extensions: permessage-deflate Sec-WebSocket-Key: hdrvBwAKj7AZC8npI9ewcw== DNT: 1 Connection: keep-alive, Upgrade Sec-Fetch-Dest: websocket Sec-Fetch-Mode: websocket Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache Upgrade: websocket `HTTP/1.1 101 Switching Protocols Date: Sat, 03 Jun 2023 01:36:12 GMT Connection: upgrade upgrade: websocket sec-websocket-accept: jNrlEZh47fCInjj8LOkZyL5mBh8= sec-websocket-extensions: permessage-deflate strict-transport-security: max-age=0; includeSubDomains; preload CF-Cache-Status: DYNAMIC X-Content-Type-Options: nosniff Server: cloudflare CF-RAY: 7d1434299c460b69-OSL alt-svc: h3=":443"; ma=86400`

	fonts.googleapis.com/css?family=Raleway%3A400%2C500%2C600%2C700%2C300%2C100%2C800%2C900%7COpen+Sans%3A400%2C300%2C300italic%2C400italic%2C600%2C600italic%2C700%2C700italic&subset=latin%2Clatin-ext&display=swap&ver=2.3.2	142.250.74.106	200 OK	37756
Search urlquery URL fonts.googleapis.com/css?family=Raleway%3A400%2C500%2C600%2C700%2C300%2C100%2C800%2C900%7COpen+Sans%3A400%2C300%2C300italic%2C400italic%2C600%2C600italic%2C700%2C700italic&subset=latin%2Clatin-ext&display=swap&ver=2.3.2 DOMAIN fonts.googleapis.com FQDN fonts.googleapis.com IP 142.250.74.106 Hash 1add38090e875ec2f9f36c283f676cdc External sources Mnemonic PDNS FQDN fonts.googleapis.com DOMAIN fonts.googleapis.com IP 142.250.74.106 VirusTotal HASH f9f2e1c19f9697c614cf96a1e1bbd16b382eac3a FQDN fonts.googleapis.com DOMAIN fonts.googleapis.com IP 142.250.74.106 crt.sh FQDN fonts.googleapis.com DOMAIN fonts.googleapis.com Fingerprint 3F:94:23:08:F7:DB:8B:36:93:90:93:F4:9E:46:A6:6A:93:75:15:C0 URL GET HTTP/2 fonts.googleapis.com/css?family=Raleway%3A400%2C500%2C600%2C700%2C300%2C100%2C800%2C900%7COpen+Sans%3A400%2C300%2C300italic%2C400italic%2C600%2C600italic%2C700%2C700italic&subset=latin%2Clatin-ext&display=swap&ver=2.3.2 IP 142.250.74.106:443 ASN #15169 GOOGLE Requested by https://waterstone.pt/11/adobe/index.htm/ Certificate IssuerGoogle Trust Services LLC Subjectupload.video.google.com Fingerprint3F:94:23:08:F7:DB:8B:36:93:90:93:F4:9E:46:A6:6A:93:75:15:C0 ValidityFri, 19 May 2023 12:57:42 GMT - Fri, 11 Aug 2023 12:57:41 GMT Magic ASCII text Size 37756 Hash 1add38090e875ec2f9f36c283f676cdc f9f2e1c19f9697c614cf96a1e1bbd16b382eac3a 64d828290ecbcb4e1a42da98165b1c07eb06cc14d7b491d94cf8c36c43b14dc1 HTTP Headers GET /css?family=Raleway%3A400%2C500%2C600%2C700%2C300%2C100%2C800%2C900%7COpen+Sans%3A400%2C300%2C300italic%2C400italic%2C600%2C600italic%2C700%2C700italic&subset=latin%2Clatin-ext&display=swap&ver=2.3.2 HTTP/1.1 Host: fonts.googleapis.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://waterstone.pt/ Sec-Fetch-Dest: style Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache HTTP/2 200 OK content-type: text/css; charset=utf-8 access-control-allow-origin: * timing-allow-origin: * link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin strict-transport-security: max-age=31536000 expires: Sat, 03 Jun 2023 01:36:09 GMT date: Sat, 03 Jun 2023 01:36:09 GMT cache-control: private, max-age=86400 cross-origin-resource-policy: cross-origin cross-origin-opener-policy: same-origin-allow-popups content-encoding: gzip server: ESF x-xss-protection: 0 x-frame-options: SAMEORIGIN x-content-type-options: nosniff alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000 X-Firefox-Spdy: h2

	embed.tawk.to/_s/v4/app/64795e77f7f/js/twk-app.js	104.22.24.131	200 OK	151
Search urlquery URL embed.tawk.to/_s/v4/app/64795e77f7f/js/twk-app.js DOMAIN tawk.to FQDN embed.tawk.to IP 104.22.24.131 Hash 04a9862af6efaf787bc8fb8e99ba6987 External sources Mnemonic PDNS FQDN embed.tawk.to DOMAIN tawk.to IP 104.22.24.131 VirusTotal HASH a57bb8f258eb1a60dc3b288a608ad8ef9fbecef3 FQDN embed.tawk.to DOMAIN tawk.to IP 104.22.24.131 crt.sh FQDN embed.tawk.to DOMAIN tawk.to Fingerprint 61:E8:BF:90:FC:F6:AA:AD:96:84:8C:EE:A7:5A:5E:1A:AA:60:57:E3 URL GET HTTP/3 embed.tawk.to/_s/v4/app/64795e77f7f/js/twk-app.js IP 104.22.24.131:443 ASN #13335 CLOUDFLARENET Requested by https://waterstone.pt/11/adobe/index.htm/ Certificate IssuerCloudflare, Inc. Subjectsni.cloudflaressl.com Fingerprint61:E8:BF:90:FC:F6:AA:AD:96:84:8C:EE:A7:5A:5E:1A:AA:60:57:E3 ValidityFri, 28 Apr 2023 00:00:00 GMT - Sat, 27 Apr 2024 23:59:59 GMT Magic ASCII text, with no line terminators Size 151 Hash 04a9862af6efaf787bc8fb8e99ba6987 a57bb8f258eb1a60dc3b288a608ad8ef9fbecef3 ecc74c329a700e3e6ca29aed5ffe3c166cf39670c8b11573fa7f837f79a71b5c HTTP Headers `GET /_s/v4/app/64795e77f7f/js/twk-app.js HTTP/1.1 Host: embed.tawk.to User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: https://waterstone.pt DNT: 1 Connection: keep-alive Referer: https://waterstone.pt/ Sec-Fetch-Dest: script Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` HTTP/3 200 OK date: Sat, 03 Jun 2023 01:36:10 GMT content-type: application/javascript last-modified: Fri, 02 Jun 2023 03:15:39 GMT etag: W/"e736e189edb5d0d9d5b8e7f23dd9114a" access-control-allow-origin: * cache-control: public, max-age=2592000, immutable x-cache-status: HIT strict-transport-security: max-age=0; includeSubDomains; preload cf-cache-status: HIT age: 816 vary: Accept-Encoding x-content-type-options: nosniff server: cloudflare cf-ray: 7d1434244ad01c0a-OSL content-encoding: br alt-svc: h3=":443"; ma=86400

	embed.tawk.to/_s/v4/app/64795e77f7f/js/twk-chunk-4fe9d5dd.js	104.22.24.131	200 OK	906
Search urlquery URL embed.tawk.to/_s/v4/app/64795e77f7f/js/twk-chunk-4fe9d5dd.js DOMAIN tawk.to FQDN embed.tawk.to IP 104.22.24.131 Hash 7b31fafdf609238b7f4574e44057af5b External sources Mnemonic PDNS FQDN embed.tawk.to DOMAIN tawk.to IP 104.22.24.131 VirusTotal HASH f4f849145e5beaff38b9e47e3c5c3e7e4945d70a FQDN embed.tawk.to DOMAIN tawk.to IP 104.22.24.131 crt.sh FQDN embed.tawk.to

Report Overview

URL

IP

ASN

Submitted

Access

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

OpenPhish

PhishTank

Fortinet's Web Filter

mnemonic secure dns

Quad9 DNS

ThreatFox

JavaScript (44)

#1 JS:Script (size: 2123)

#2 JS:Script (size: 416807)

#3 JS:Script (size: 2147)

#4 JS:Script (size: 11224)

#5 JS:Script (size: 10565)

#6 JS:Script (size: 17823)

#7 JS:Script (size: 324)

#8 JS:Script (size: 121)

#9 JS:Script (size: 7271)

#10 JS:Script (size: 19655)

#11 JS:Script (size: 93981)

#12 JS:Script (size: 6475)

#13 JS:Script (size: 65842)

#14 JS:Script (size: 689)

#15 JS:Script (size: 17930)

#16 JS:Script (size: 96908)

#17 JS:Script (size: 82665)

#18 JS:Script (size: 151)

#19 JS:Script (size: 906)

#20 JS:Script (size: 511)

#21 JS:Script (size: 12761)

#22 JS:Script (size: 884)

#23 JS:Script (size: 2306)

#24 JS:Script (size: 302554)

#25 JS:Script (size: 27145)

#26 JS:Script (size: 69)

#27 JS:Script (size: 210377)

#28 JS:Script (size: 18617)

#29 JS:Script (size: 89684)

#30 JS:Script (size: 365)

#31 JS:Script (size: 535)

#32 JS:Script (size: 127)

#33 JS:Script (size: 364)

#34 JS:Script (size: 46657)

#35 JS:Script (size: 214782)

#36 JS:Script (size: 167)

#37 JS:Script (size: 999)

#38 JS:Script (size: 42538)

#39 JS:Script (size: 16983)

#1 JS:Eval (size: 16181)

#2 JS:Eval (size: 22)

#3 JS:Eval (size: 21102)

#4 JS:Eval (size: 22)

#5 JS:Eval (size: 62)

HTTP Transactions (76)

URL User Request GET HTTP/3

IP

ASN

Certificate

Magic

Size

Hash

HTTP Headers

URL GET HTTP/3

IP

ASN