Report - agenciainfluencer.pt/so/index.php?qbot.zip

Report Overview

Submitted URL
agenciainfluencer.pt/so/index.php?qbot.zip
IP
185.32.188.5
ASN
#62416 Sampling Line-servicos E Internet, Lda
Submitted
2022-11-18 21:55:44
Access
Website Title
Final URL
Tags
None
urlquery detections
No alerts detected

Detections

urlquery
0
Network Intrusion Detection
0
Threat Detection Systems
424

Domain Summary

Domain / FQDN	Rank	First Seen	Last Seen	Sent	Received	IP
ocsp.digicert.com	86	2012-05-21T09:02:23Z	2023-03-10T13:49:44Z	682 B	1.6 kB	93.184.220.29
push.services.mozilla.com	2140	2014-10-24T10:27:06Z	2023-03-10T05:10:02Z	606 B	127 B	35.165.176.211
img-getpocket.cdn.mozilla.net	1631	2018-06-22T01:36:00Z	2023-03-10T05:10:04Z	3.3 kB	52 kB	34.120.237.76
www.google.no	25607	2016-04-05T21:50:59Z	2023-03-10T07:09:08Z	697 B	757 B	142.250.74.35
googleads.g.doubleclick.net	42	2021-02-20T16:43:32Z	2023-03-10T16:21:16Z	717 B	1.8 kB	142.250.74.130
www.google.com	7	2015-05-10T13:11:19Z	2023-03-10T12:19:40Z	698 B	757 B	142.250.74.164
firefox.settings.services.mozilla.com	867	2020-06-04T22:08:41Z	2023-03-10T05:10:00Z	782 B	2.4 kB	34.102.187.140
contile.services.mozilla.com	1114	2021-05-27T20:32:35Z	2023-03-10T05:10:00Z	333 B	229 B	34.117.237.239
agenciainfluencer.pt	unknown	2021-09-04T05:20:55Z	2022-12-26T11:25:53Z	40 kB	2.2 MB	185.32.188.5
fonts.googleapis.com	8877	2013-06-10T22:14:26Z	2023-03-10T12:25:49Z	435 B	7.4 kB	142.250.74.10
www.googleoptimize.com	1604	2019-07-16T12:17:19Z	2023-03-10T14:53:38Z	389 B	45 kB	142.250.74.78
www.google-analytics.com	40	2012-10-03T03:04:21Z	2023-03-10T13:35:34Z	377 B	21 kB	142.250.74.174
r3.o.lencr.org	344	2020-12-02T09:52:13Z	2023-03-10T05:09:10Z	1.0 kB	2.7 kB	23.36.77.32
content-signature-2.cdn.mozilla.net	1152	2020-11-03T13:26:46Z	2023-03-10T05:12:35Z	413 B	5.8 kB	34.160.144.191
fonts.gstatic.com	unknown	2014-09-09T02:40:21Z	2023-03-10T14:37:36Z	482 B	34 kB	216.58.207.195
ocsp.pki.goog	175	2018-07-01T08:43:07Z	2023-03-10T05:11:10Z	5.1 kB	10 kB	142.250.74.35
www.googletagmanager.com	75	2013-05-22T04:07:37Z	2023-03-10T13:03:15Z	390 B	44 kB	142.250.74.168

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

OpenPhish

No alerts detected

PhishTank

No alerts detected

Fortinet's Web Filter

Scan Date	Severity	Indicator	Alert
2022-11-18	medium	agenciainfluencer.pt/so/index.php?qbot.zip	Malware
2022-11-18	medium	agenciainfluencer.pt/so/?qbot.zip	Malware
2022-11-18	medium	agenciainfluencer.pt/wp-content/plugins/chaty/css/chaty-front.min.css?ver=1645843367	Malware
2022-11-18	medium	agenciainfluencer.pt/wp-content/uploads/masterslider/custom.css?ver=1.1	Malware
2022-11-18	medium	agenciainfluencer.pt/wp-content/themes/seowp/iconfont/social-share-icons.css?ver=2.2.2	Malware
2022-11-18	medium	agenciainfluencer.pt/wp-content/plugins/WP_Estimation_Form/assets/js/lfb_frontend.min.js?ver=9.727	Malware
2022-11-18	medium	agenciainfluencer.pt/wp-content/plugins/cookie-law-info/legacy/public/css/cookie-law-info-public.css?ver=3.0.5	Malware
2022-11-18	medium	agenciainfluencer.pt/wp-content/themes/seowp/gutenberg.css?ver=1644513974	Malware
2022-11-18	medium	agenciainfluencer.pt/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2	Malware
2022-11-18	medium	agenciainfluencer.pt/wp-content/plugins/live-composer-page-builder/css/dist/frontend.plugins.min.css?ver=1.5.22	Malware
2022-11-18	medium	agenciainfluencer.pt/wp-content/plugins/lc-extensions/extensions/openstreetmap/css/leaflet.css?ver=6.1.1	Malware
2022-11-18	medium	agenciainfluencer.pt/wp-content/plugins/lc-extensions/extensions/menu/css/main.css?ver=6.1.1	Malware
2022-11-18	medium	agenciainfluencer.pt/wp-includes/js/dist/vendor/wp-polyfill.min.js?ver=3.15.0	Malware
2022-11-18	medium	agenciainfluencer.pt/wp-includes/css/dist/block-library/style.min.css?ver=6.1.1	Malware
2022-11-18	medium	agenciainfluencer.pt/wp-content/themes/seowp/iconfont/style.css?ver=2.2.2	Malware
2022-11-18	medium	agenciainfluencer.pt/wp-content/plugins/live-composer-page-builder/css/font-awesome.css?ver=1.5.22	Malware
2022-11-18	medium	agenciainfluencer.pt/wp-content/themes/seowp/style.css?ver=1644513974	Malware
2022-11-18	medium	agenciainfluencer.pt/wp-content/plugins/live-composer-page-builder/js/dist/client_plugins.min.js?ver=1.5.22	Malware
2022-11-18	medium	agenciainfluencer.pt/wp-content/plugins/easy-social-share-buttons3/assets/css/essb-subscribe.min.css?ver=60.2.9	Malware
2022-11-18	medium	agenciainfluencer.pt/wp-content/uploads/icon-globe-cogs-database.webp	Malware
2022-11-18	medium	agenciainfluencer.pt/wp-content/plugins/woocommerce/assets/css/woocommerce.css?ver=7.1.0	Malware
2022-11-18	medium	agenciainfluencer.pt/wp-content/plugins/woocommerce-google-adwords-conversion-tracking-tag/js/public/wpm-public.p1.min.js?ver=1.26.0	Malware
2022-11-18	medium	agenciainfluencer.pt/wp-content/plugins/woocommerce/packages/woocommerce-blocks/build/wc-blocks-style.css?ver=8.7.5	Malware
2022-11-18	medium	agenciainfluencer.pt/wp-includes/css/dashicons.min.css?ver=6.1.1	Malware
2022-11-18	medium	agenciainfluencer.pt/wp-content/plugins/masterslider/public/assets/js/jquery.easing.min.js?ver=30.2.14	Malware
2022-11-18	medium	agenciainfluencer.pt/wp-includes/js/backbone.min.js?ver=1.4.1	Malware
2022-11-18	medium	agenciainfluencer.pt/wp-content/plugins/ninja-forms-mailchimp-optins/js/mailchimp.min.js?ver=6.1.1	Malware
2022-11-18	medium	agenciainfluencer.pt/wp-includes/js/mediaelement/mediaelement-migrate.min.js?ver=6.1.1	Malware
2022-11-18	medium	agenciainfluencer.pt/wp-includes/js/imagesloaded.min.js?ver=4.1.4	Malware
2022-11-18	medium	agenciainfluencer.pt/wp-includes/js/jquery/jquery.masonry.min.js?ver=3.1.2b	Malware
2022-11-18	medium	agenciainfluencer.pt/wp-content/plugins/woocommerce/assets/js/js-cookie/js.cookie.min.js?ver=2.1.4-wc.7.1.0	Malware
2022-11-18	medium	agenciainfluencer.pt/wp-content/plugins/live-composer-page-builder/js/dist/client_frontend.min.js?ver=1.5.22	Malware
2022-11-18	medium	agenciainfluencer.pt/wp-content/themes/seowp/javascripts/jquery.formalize.js?ver=1644513975	Malware
2022-11-18	medium	agenciainfluencer.pt/wp-content/plugins/woocommerce/assets/js/jquery-cookie/jquery.cookie.min.js?ver=1.4.1-wc.7.1.0	Malware
2022-11-18	medium	agenciainfluencer.pt/wp-content/plugins/mega_main_menu/src/js/frontend.js?ver=20.1.8	Malware
2022-11-18	medium	agenciainfluencer.pt/wp-content/themes/seowp/javascripts/custom.modernizr.js?ver=1644513975	Malware
2022-11-18	medium	agenciainfluencer.pt/wp-content/themes/seowp/javascripts/scripts.js?ver=1644513975	Malware
2022-11-18	medium	agenciainfluencer.pt/wp-content/plugins/easy-social-share-buttons3/assets/js/essb-core.min.js?ver=60.2.9	Malware
2022-11-18	medium	agenciainfluencer.pt/wp-content/plugins/easy-social-share-buttons3/assets/css/easy-social-share-buttons.min.css?ver=60.2.9	Malware
2022-11-18	medium	agenciainfluencer.pt/wp-content/plugins/live-composer-page-builder/css/font/fontawesome-webfont.woff?v=4.7.0	Malware
2022-11-18	medium	agenciainfluencer.pt/wp-content/plugins/woocommerce/assets/css/woocommerce-smallscreen.css?ver=7.1.0	Malware
2022-11-18	medium	agenciainfluencer.pt/sorteios/60682	Malware
2022-11-18	medium	agenciainfluencer.pt/wp-content/plugins/woocommerce/assets/css/woocommerce-layout.css?ver=7.1.0	Malware
2022-11-18	medium	agenciainfluencer.pt/sorteios/?qbot_zip	Malware
2022-11-18	medium	agenciainfluencer.pt/wp-includes/js/mediaelement/mediaelement-and-player.min.js?ver=4.2.17	Malware
2022-11-18	medium	agenciainfluencer.pt/wp-content/plugins/ninja-forms/assets/js/min/front-end.js?ver=3.6.11	Malware

mnemonic secure dns

Scan Date	Severity	Indicator	Alert
2022-11-18	medium	agenciainfluencer.pt	Sinkholed
2022-11-18	medium	agenciainfluencer.pt	Sinkholed
2022-11-18	medium	agenciainfluencer.pt	Sinkholed
2022-11-18	medium	agenciainfluencer.pt	Sinkholed
2022-11-18	medium	agenciainfluencer.pt	Sinkholed
2022-11-18	medium	agenciainfluencer.pt	Sinkholed
2022-11-18	medium	agenciainfluencer.pt	Sinkholed
2022-11-18	medium	agenciainfluencer.pt	Sinkholed
2022-11-18	medium	agenciainfluencer.pt	Sinkholed
2022-11-18	medium	agenciainfluencer.pt	Sinkholed
2022-11-18	medium	agenciainfluencer.pt	Sinkholed
2022-11-18	medium	agenciainfluencer.pt	Sinkholed
2022-11-18	medium	agenciainfluencer.pt	Sinkholed
2022-11-18	medium	agenciainfluencer.pt	Sinkholed
2022-11-18	medium	agenciainfluencer.pt	Sinkholed
2022-11-18	medium	agenciainfluencer.pt	Sinkholed
2022-11-18	medium	agenciainfluencer.pt	Sinkholed
2022-11-18	medium	agenciainfluencer.pt	Sinkholed
2022-11-18	medium	agenciainfluencer.pt	Sinkholed
2022-11-18	medium	agenciainfluencer.pt	Sinkholed
2022-11-18	medium	agenciainfluencer.pt	Sinkholed
2022-11-18	medium	agenciainfluencer.pt	Sinkholed
2022-11-18	medium	agenciainfluencer.pt	Sinkholed
2022-11-18	medium	agenciainfluencer.pt	Sinkholed
2022-11-18	medium	agenciainfluencer.pt	Sinkholed
2022-11-18	medium	agenciainfluencer.pt	Sinkholed
2022-11-18	medium	agenciainfluencer.pt	Sinkholed
2022-11-18	medium	agenciainfluencer.pt	Sinkholed
2022-11-18	medium	agenciainfluencer.pt	Sinkholed
2022-11-18	medium	agenciainfluencer.pt	Sinkholed
2022-11-18	medium	agenciainfluencer.pt	Sinkholed
2022-11-18	medium	agenciainfluencer.pt	Sinkholed
2022-11-18	medium	agenciainfluencer.pt	Sinkholed
2022-11-18	medium	agenciainfluencer.pt	Sinkholed
2022-11-18	medium	agenciainfluencer.pt	Sinkholed
2022-11-18	medium	agenciainfluencer.pt	Sinkholed
2022-11-18	medium	agenciainfluencer.pt	Sinkholed
2022-11-18	medium	agenciainfluencer.pt	Sinkholed
2022-11-18	medium	agenciainfluencer.pt	Sinkholed
2022-11-18	medium	agenciainfluencer.pt	Sinkholed
2022-11-18	medium	agenciainfluencer.pt	Sinkholed
2022-11-18	medium	agenciainfluencer.pt	Sinkholed
2022-11-18	medium	agenciainfluencer.pt	Sinkholed
2022-11-18	medium	agenciainfluencer.pt	Sinkholed
2022-11-18	medium	agenciainfluencer.pt	Sinkholed
2022-11-18	medium	agenciainfluencer.pt	Sinkholed
2022-11-18	medium	agenciainfluencer.pt	Sinkholed
2022-11-18	medium	agenciainfluencer.pt	Sinkholed
2022-11-18	medium	agenciainfluencer.pt	Sinkholed
2022-11-18	medium	agenciainfluencer.pt	Sinkholed
2022-11-18	medium	agenciainfluencer.pt	Sinkholed
2022-11-18	medium	agenciainfluencer.pt	Sinkholed
2022-11-18	medium	agenciainfluencer.pt	Sinkholed
2022-11-18	medium	agenciainfluencer.pt	Sinkholed
2022-11-18	medium	agenciainfluencer.pt	Sinkholed
2022-11-18	medium	agenciainfluencer.pt	Sinkholed
2022-11-18	medium	agenciainfluencer.pt	Sinkholed
2022-11-18	medium	agenciainfluencer.pt	Sinkholed
2022-11-18	medium	agenciainfluencer.pt	Sinkholed
2022-11-18	medium	agenciainfluencer.pt	Sinkholed
2022-11-18	medium	agenciainfluencer.pt	Sinkholed
2022-11-18	medium	agenciainfluencer.pt	Sinkholed
2022-11-18	medium	agenciainfluencer.pt	Sinkholed
2022-11-18	medium	agenciainfluencer.pt	Sinkholed
2022-11-18	medium	agenciainfluencer.pt	Sinkholed
2022-11-18	medium	agenciainfluencer.pt	Sinkholed
2022-11-18	medium	agenciainfluencer.pt	Sinkholed
2022-11-18	medium	agenciainfluencer.pt	Sinkholed
2022-11-18	medium	agenciainfluencer.pt	Sinkholed
2022-11-18	medium	agenciainfluencer.pt	Sinkholed
2022-11-18	medium	agenciainfluencer.pt	Sinkholed
2022-11-18	medium	agenciainfluencer.pt	Sinkholed
2022-11-18	medium	agenciainfluencer.pt	Sinkholed
2022-11-18	medium	agenciainfluencer.pt	Sinkholed
2022-11-18	medium	agenciainfluencer.pt	Sinkholed
2022-11-18	medium	agenciainfluencer.pt	Sinkholed
2022-11-18	medium	agenciainfluencer.pt	Sinkholed
2022-11-18	medium	agenciainfluencer.pt	Sinkholed
2022-11-18	medium	agenciainfluencer.pt	Sinkholed
2022-11-18	medium	agenciainfluencer.pt	Sinkholed
2022-11-18	medium	agenciainfluencer.pt	Sinkholed
2022-11-18	medium	agenciainfluencer.pt	Sinkholed
2022-11-18	medium	agenciainfluencer.pt	Sinkholed

Quad9 DNS

Scan Date	Severity	Indicator	Alert
2022-11-18	medium	agenciainfluencer.pt	Sinkholed
2022-11-18	medium	agenciainfluencer.pt	Sinkholed
2022-11-18	medium	agenciainfluencer.pt	Sinkholed
2022-11-18	medium	agenciainfluencer.pt	Sinkholed
2022-11-18	medium	agenciainfluencer.pt	Sinkholed
2022-11-18	medium	agenciainfluencer.pt	Sinkholed
2022-11-18	medium	agenciainfluencer.pt	Sinkholed
2022-11-18	medium	agenciainfluencer.pt	Sinkholed
2022-11-18	medium	agenciainfluencer.pt	Sinkholed
2022-11-18	medium	agenciainfluencer.pt	Sinkholed
2022-11-18	medium	agenciainfluencer.pt	Sinkholed
2022-11-18	medium	agenciainfluencer.pt	Sinkholed
2022-11-18	medium	agenciainfluencer.pt	Sinkholed
2022-11-18	medium	agenciainfluencer.pt	Sinkholed
2022-11-18	medium	agenciainfluencer.pt	Sinkholed
2022-11-18	medium	agenciainfluencer.pt	Sinkholed
2022-11-18	medium	agenciainfluencer.pt	Sinkholed
2022-11-18	medium	agenciainfluencer.pt	Sinkholed
2022-11-18	medium	agenciainfluencer.pt	Sinkholed
2022-11-18	medium	agenciainfluencer.pt	Sinkholed
2022-11-18	medium	agenciainfluencer.pt	Sinkholed
2022-11-18	medium	agenciainfluencer.pt	Sinkholed
2022-11-18	medium	agenciainfluencer.pt	Sinkholed
2022-11-18	medium	agenciainfluencer.pt	Sinkholed
2022-11-18	medium	agenciainfluencer.pt	Sinkholed
2022-11-18	medium	agenciainfluencer.pt	Sinkholed
2022-11-18	medium	agenciainfluencer.pt	Sinkholed
2022-11-18	medium	agenciainfluencer.pt	Sinkholed
2022-11-18	medium	agenciainfluencer.pt	Sinkholed
2022-11-18	medium	agenciainfluencer.pt	Sinkholed
2022-11-18	medium	agenciainfluencer.pt	Sinkholed
2022-11-18	medium	agenciainfluencer.pt	Sinkholed
2022-11-18	medium	agenciainfluencer.pt	Sinkholed
2022-11-18	medium	agenciainfluencer.pt	Sinkholed
2022-11-18	medium	agenciainfluencer.pt	Sinkholed
2022-11-18	medium	agenciainfluencer.pt	Sinkholed
2022-11-18	medium	agenciainfluencer.pt	Sinkholed
2022-11-18	medium	agenciainfluencer.pt	Sinkholed
2022-11-18	medium	agenciainfluencer.pt	Sinkholed
2022-11-18	medium	agenciainfluencer.pt	Sinkholed
2022-11-18	medium	agenciainfluencer.pt	Sinkholed
2022-11-18	medium	agenciainfluencer.pt	Sinkholed
2022-11-18	medium	agenciainfluencer.pt	Sinkholed
2022-11-18	medium	agenciainfluencer.pt	Sinkholed
2022-11-18	medium	agenciainfluencer.pt	Sinkholed
2022-11-18	medium	agenciainfluencer.pt	Sinkholed
2022-11-18	medium	agenciainfluencer.pt	Sinkholed
2022-11-18	medium	agenciainfluencer.pt	Sinkholed
2022-11-18	medium	agenciainfluencer.pt	Sinkholed
2022-11-18	medium	agenciainfluencer.pt	Sinkholed
2022-11-18	medium	agenciainfluencer.pt	Sinkholed
2022-11-18	medium	agenciainfluencer.pt	Sinkholed
2022-11-18	medium	agenciainfluencer.pt	Sinkholed
2022-11-18	medium	agenciainfluencer.pt	Sinkholed
2022-11-18	medium	agenciainfluencer.pt	Sinkholed
2022-11-18	medium	agenciainfluencer.pt	Sinkholed
2022-11-18	medium	agenciainfluencer.pt	Sinkholed
2022-11-18	medium	agenciainfluencer.pt	Sinkholed
2022-11-18	medium	agenciainfluencer.pt	Sinkholed
2022-11-18	medium	agenciainfluencer.pt	Sinkholed
2022-11-18	medium	agenciainfluencer.pt	Sinkholed
2022-11-18	medium	agenciainfluencer.pt	Sinkholed
2022-11-18	medium	agenciainfluencer.pt	Sinkholed
2022-11-18	medium	agenciainfluencer.pt	Sinkholed
2022-11-18	medium	agenciainfluencer.pt	Sinkholed
2022-11-18	medium	agenciainfluencer.pt	Sinkholed
2022-11-18	medium	agenciainfluencer.pt	Sinkholed
2022-11-18	medium	agenciainfluencer.pt	Sinkholed
2022-11-18	medium	agenciainfluencer.pt	Sinkholed
2022-11-18	medium	agenciainfluencer.pt	Sinkholed
2022-11-18	medium	agenciainfluencer.pt	Sinkholed
2022-11-18	medium	agenciainfluencer.pt	Sinkholed
2022-11-18	medium	agenciainfluencer.pt	Sinkholed
2022-11-18	medium	agenciainfluencer.pt	Sinkholed
2022-11-18	medium	agenciainfluencer.pt	Sinkholed
2022-11-18	medium	agenciainfluencer.pt	Sinkholed
2022-11-18	medium	agenciainfluencer.pt	Sinkholed
2022-11-18	medium	agenciainfluencer.pt	Sinkholed
2022-11-18	medium	agenciainfluencer.pt	Sinkholed
2022-11-18	medium	agenciainfluencer.pt	Sinkholed
2022-11-18	medium	agenciainfluencer.pt	Sinkholed
2022-11-18	medium	agenciainfluencer.pt	Sinkholed
2022-11-18	medium	agenciainfluencer.pt	Sinkholed

JavaScript (56)

	URL	Size	First Seen	Last Seen
	agenciainfluencer.pt/wp-content/plugins/masterslider/public/assets/js/jquery.easing.min.js?ver=30.2.14	5.6 kB	2023-03-07	2024-05-10
Pretty URL agenciainfluencer.pt/wp-content/plugins/masterslider/public/assets/js/jquery.easing.min.js?ver=30.2.14 IP 185.32.188.5 ASN #62416 Sampling Line-servicos E Internet, Lda Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:07:08 Last Seen2024-05-10 22:13:46 Times Seen2716 Hash 3eac3c72434a0945b92dd4a01f7b6b4e 7767b356530e39cd76ec259320b0b2774b4097a8 ac3f3a757bfbfc9d92bc8f5e6e6362e5d4ae41dbf3cebacdda9b8f71afc82e5b Loading...

	agenciainfluencer.pt/wp-includes/js/imagesloaded.min.js?ver=4.1.4	5.6 kB	2023-03-07	2024-05-10
Pretty URL agenciainfluencer.pt/wp-includes/js/imagesloaded.min.js?ver=4.1.4 IP 185.32.188.5 ASN #62416 Sampling Line-servicos E Internet, Lda Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:40 Last Seen2024-05-10 18:21:16 Times Seen31136 Hash 3a56752b736635bf69cb069b8818cbfd 42e0951fe74bb3f56a30f51291823bcd4a84d76e ff4bd34aa98a0214833619d3d751838db015722dfbbec15cd14dadc66cd67869 Loading...

	agenciainfluencer.pt/sorteios/?qbot_zip	271 B	2023-03-11	2023-03-11
Pretty URL agenciainfluencer.pt/sorteios/?qbot_zip IP 185.32.188.5 ASN #62416 Sampling Line-servicos E Internet, Lda Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-11 14:13:22 Last Seen2023-03-11 14:13:22 Times Seen1 Hash 83e94a2e7d62a30418cd9543ee3a3695 b4b115293ef1b1c3a3272d024cc102937c4f11a5 e5c51d91bfa912848f79e698bb51d677ff2c9d61fd0c8eb9c091355ea9e99994 Loading...

	agenciainfluencer.pt/wp-content/plugins/live-composer-page-builder/js/dist/client_plugins.min.js?ver=1.5.22	46 kB	2023-03-08	2024-04-29
Pretty URL agenciainfluencer.pt/wp-content/plugins/live-composer-page-builder/js/dist/client_plugins.min.js?ver=1.5.22 IP 185.32.188.5 ASN #62416 Sampling Line-servicos E Internet, Lda Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 07:58:47 Last Seen2024-04-29 13:32:16 Times Seen64 Hash 4fd6a0362b1e359d7c5e07cacc458f48 59370301272ca49d27e3dc0f6a6142c42c60ac9b d7641f4149eebcb76a616275977b7374ef9f8b4686fd50b34824b623331589f1 Loading...

	agenciainfluencer.pt/sorteios/?qbot_zip	152 B	2023-03-07	2024-05-10
Pretty URL agenciainfluencer.pt/sorteios/?qbot_zip IP 185.32.188.5 ASN #62416 Sampling Line-servicos E Internet, Lda Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:09 Last Seen2024-05-10 23:57:02 Times Seen20200 Hash b8c40bf7c92768058d743847cccdb147 4fbbbcb2dda4d05e2e58bf43330c559b4165fc0b 7872ff233c7b2bfa962f491d0575e71f0b0b487bc63899ff4c72c7c9d5197688 Loading...

	agenciainfluencer.pt/sorteios/?qbot_zip	2.6 kB	2023-03-07	2024-04-26
Pretty URL agenciainfluencer.pt/sorteios/?qbot_zip IP 185.32.188.5 ASN #62416 Sampling Line-servicos E Internet, Lda Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 15:17:59 Last Seen2024-04-26 01:04:11 Times Seen52 Hash 7920d0b0d6bc7f15b3ebf295e28bed24 4b911f0c6a6cef8b711cc84d5ff474f3ef6ac63b 213004c837d7e4e76c9bd2636d36804820a924302af05425b50a5da03924693a Loading...

	agenciainfluencer.pt/wp-content/plugins/woocommerce/assets/js/frontend/add-to-cart.min.js?ver=7.1.0	3.0 kB	2023-03-08	2024-05-10
Pretty URL agenciainfluencer.pt/wp-content/plugins/woocommerce/assets/js/frontend/add-to-cart.min.js?ver=7.1.0 IP 185.32.188.5 ASN #62416 Sampling Line-servicos E Internet, Lda Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 14:24:31 Last Seen2024-05-10 20:32:53 Times Seen11438 Hash f449e3e4a7c058f7c48f57e05c788fb0 e7b0c58a1a14c14a92e452cc544b312ed91fa52e bfd861dc2936299f52adca1da826c273dced7c77ad4c33d31916ad55ab354e89 Loading...

	www.googleoptimize.com/optimize.js?id=OPT-N7SKGZW	112 kB	2023-03-11	2023-03-11
Pretty URL www.googleoptimize.com/optimize.js?id=OPT-N7SKGZW IP 142.250.74.78 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-11 14:13:22 Last Seen2023-03-11 14:13:22 Times Seen1 Hash f4fc6e952298cf50ac993cf104ca8c78 1c5e5ec080a7dea3022f70e8abb8a273cc33596f b22c9cf42c2b17997999432a5fedc42272fa69e4d9bccb66dba97ebd290769cb Loading...

	www.googletagmanager.com/gtag/js?id=AW-7128745641&l=dataLayer&cx=c	138 kB	2023-03-11	2023-03-11
Pretty URL www.googletagmanager.com/gtag/js?id=AW-7128745641&l=dataLayer&cx=c IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-11 14:13:22 Last Seen2023-03-11 14:13:22 Times Seen1 Hash 501fed3a71560d1a2a39813af86f3016 6af9f51a99ac11627f912f246cacd9f6fc054e20 bc507a098636f095f9622135a2efe1bcde314c18da24d59e1e6b62ff4ed64a0e Loading...

	agenciainfluencer.pt/sorteios/?qbot_zip	12 kB	2023-03-11	2023-03-11
Pretty URL agenciainfluencer.pt/sorteios/?qbot_zip IP 185.32.188.5 ASN #62416 Sampling Line-servicos E Internet, Lda Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-11 14:13:22 Last Seen2023-03-11 14:13:22 Times Seen1 Hash 3e7e08707155bc38ced76781929dc184 401acaa0617f2225dbaef61e5951413f148a8fdf 7c582eb90f4583ceaa9d75dc141ff69cc6cdf8944dd304c9401a588e2eae2625 Loading...

	agenciainfluencer.pt/sorteios/?qbot_zip	149 B	2023-03-07	2024-05-10
Pretty URL agenciainfluencer.pt/sorteios/?qbot_zip IP 185.32.188.5 ASN #62416 Sampling Line-servicos E Internet, Lda Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:03:22 Last Seen2024-05-10 19:35:31 Times Seen2877 Hash 931deb2e7bef82d78d1c1b0a3fe4fe32 2a468d77a19124c4bcd1745b7f51eff01b269ade afb2b21f29cd5d7fc5b63a8ea02ece9649603b9e63a2afa55927c508345e1ee7 Loading...

	agenciainfluencer.pt/wp-includes/js/underscore.min.js?ver=1.13.4	19 kB	2023-03-08	2024-05-11
Pretty URL agenciainfluencer.pt/wp-includes/js/underscore.min.js?ver=1.13.4 IP 185.32.188.5 ASN #62416 Sampling Line-servicos E Internet, Lda Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 14:26:29 Last Seen2024-05-11 01:54:13 Times Seen42306 Hash f88d5720bb454ed5d204cbdb56901f6b f1952292fde4b15936e9aac16b2b9896684db95b 726b820e44f6ab90ad991d30a4bf26d3a5d71493cbcd1fb1efd0d14e89b9df2a Loading...

	agenciainfluencer.pt/wp-content/plugins/ninja-forms-mailchimp-optins/js/mailchimp.min.js?ver=6.1.1	539 B	2023-03-11	2023-07-16
Pretty URL agenciainfluencer.pt/wp-content/plugins/ninja-forms-mailchimp-optins/js/mailchimp.min.js?ver=6.1.1 IP 185.32.188.5 ASN #62416 Sampling Line-servicos E Internet, Lda Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-11 14:13:22 Last Seen2023-07-16 13:46:53 Times Seen3 Hash 793f0281b49c50aba6e4b8c242cd149b 21fc808537a80bd203de10f0fc0f472aaba5ad70 6dbf0d0b5239617b15f7a92eb3f115436df31796b3ff819b050c6abe638e81bc Loading...

	agenciainfluencer.pt/wp-includes/js/mediaelement/wp-mediaelement.min.js?ver=6.1.1	906 B	2023-03-07	2024-05-10
Pretty URL agenciainfluencer.pt/wp-includes/js/mediaelement/wp-mediaelement.min.js?ver=6.1.1 IP 185.32.188.5 ASN #62416 Sampling Line-servicos E Internet, Lda Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:03:59 Last Seen2024-05-10 04:43:18 Times Seen3904 Hash 2c6d3b562a48e0df5474999dd47e58fb 945220e990eb176c14e53cc663fb01e04e31b59f 3e6131330963c472b950b8aaf544ba3829735b8ccb103d614ba7793e3a786550 Loading...

	www.googletagmanager.com/gtag/js?id=UA-222149420-1	112 kB	2023-03-11	2023-03-11
Pretty URL www.googletagmanager.com/gtag/js?id=UA-222149420-1 IP 142.250.74.168 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-11 14:13:22 Last Seen2023-03-11 14:13:22 Times Seen1 Hash ebc15fe6fa1948f8a897b16a67e4c405 3031c0cef16232e6ebbe2fce41ca067716dfd285 eeaa4b06223bf26a47305569f9d7a50d55f06016bfa2d2c54e1dd1d5f0099db4 Loading...

	agenciainfluencer.pt/wp-content/plugins/cookie-law-info/legacy/public/js/cookie-law-info-public.js?ver=3.0.5	34 kB	2023-03-07	2024-05-10
Pretty URL agenciainfluencer.pt/wp-content/plugins/cookie-law-info/legacy/public/js/cookie-law-info-public.js?ver=3.0.5 IP 185.32.188.5 ASN #62416 Sampling Line-servicos E Internet, Lda Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:03:28 Last Seen2024-05-10 21:19:04 Times Seen7310 Hash dffa195b546cf1dfd52f2206955eb892 a3d48e8f126eb96d12191d76ed71ad2bc8651d59 6c52384c7b0641dd1ead85d079c22d39bcc6dc5f2537afb1e6396bb619771a3f Loading...

	agenciainfluencer.pt/wp-content/plugins/WP_Estimation_Form/assets/js/lfb_frontend.min.js?ver=9.727	1.5 kB	2023-03-07	2024-03-12
Pretty URL agenciainfluencer.pt/wp-content/plugins/WP_Estimation_Form/assets/js/lfb_frontend.min.js?ver=9.727 IP 185.32.188.5 ASN #62416 Sampling Line-servicos E Internet, Lda Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:11:14 Last Seen2024-03-12 14:39:20 Times Seen4 Hash b936388dcf1fd7889dd18991a1ff227f 893f944e76a914936ef60bf8a85b4a28893381ff 9fee6bfaf91ed523799b04cd332f58d5c5e9351f169324b8e0172da948af5fb8 Loading...

	agenciainfluencer.pt/wp-content/plugins/woocommerce/assets/js/jquery-blockui/jquery.blockUI.min.js?ver=2.7.0-wc.7.1.0	9.5 kB	2023-03-08	2024-05-10
Pretty URL agenciainfluencer.pt/wp-content/plugins/woocommerce/assets/js/jquery-blockui/jquery.blockUI.min.js?ver=2.7.0-wc.7.1.0 IP 185.32.188.5 ASN #62416 Sampling Line-servicos E Internet, Lda Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 14:24:31 Last Seen2024-05-10 23:57:06 Times Seen14462 Hash 4ffc462852340d9e6b5b7b29276fcb71 5e04050e09e3f7d8107ef3b9aa9313be618c460e 18336635cd5e9edf2aff3ae18b67250684311c2a459457091b063dafba57d526 Loading...

	agenciainfluencer.pt/sorteios/?qbot_zip	114 B	2023-03-11	2023-03-11
Pretty URL agenciainfluencer.pt/sorteios/?qbot_zip IP 185.32.188.5 ASN #62416 Sampling Line-servicos E Internet, Lda Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-11 14:13:22 Last Seen2023-03-11 14:13:22 Times Seen1 Hash 13db11556fb0826f33a5b9cab7a8c257 ae590c7866edcea11410e14ae3263d82a3a3e4ba 5f88b013cf812fc796b5a05de96dc48cc7dd056f47ac34833e7e4b362e73b3d7 Loading...

	agenciainfluencer.pt/wp-content/plugins/woocommerce/assets/js/frontend/woocommerce.min.js?ver=7.1.0	2.1 kB	2023-03-07	2024-05-10
Pretty URL agenciainfluencer.pt/wp-content/plugins/woocommerce/assets/js/frontend/woocommerce.min.js?ver=7.1.0 IP 185.32.188.5 ASN #62416 Sampling Line-servicos E Internet, Lda Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:35 Last Seen2024-05-10 23:57:06 Times Seen22537 Hash b72c1cbb1530a011a27bd9800f26765a 27b825c5d8255f33b8427a059d4545ebd65e1746 a256fccecac3b32ab73c91d79a18747519a1a18023be05465c933b03523a82e8 Loading...

	agenciainfluencer.pt/sorteios/?qbot_zip	294 B	2023-03-11	2023-03-11
Pretty URL agenciainfluencer.pt/sorteios/?qbot_zip IP 185.32.188.5 ASN #62416 Sampling Line-servicos E Internet, Lda Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-11 14:13:22 Last Seen2023-03-11 14:13:22 Times Seen1 Hash c65fbad7ffc5686df43f6054fdaa5647 e583a26ff902181695c71406f298abe5f08868a6 1b99cf1455e4501d9bde8d7a5e9b6a26fa47b7f7f97499cb1e56294c8fddcb1d Loading...

	agenciainfluencer.pt/wp-includes/js/wp-emoji-release.min.js?ver=6.1.1	19 kB	2023-03-07	2024-05-10
Pretty URL agenciainfluencer.pt/wp-includes/js/wp-emoji-release.min.js?ver=6.1.1 IP 185.32.188.5 ASN #62416 Sampling Line-servicos E Internet, Lda Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:08 Last Seen2024-05-10 20:32:53 Times Seen38257 Hash 32beb68a374e3aeac00abdf9e12b84ea b5d18aa625e8696dd9d07cd0869337717b211ae0 5aad5fbd4238981a9ff5e2772ff1353dfe1a801fb49542fe157418c1438f7782 Loading...

	agenciainfluencer.pt/wp-includes/js/jquery/jquery.masonry.min.js?ver=3.1.2b	1.8 kB	2023-03-07	2024-05-11
Pretty URL agenciainfluencer.pt/wp-includes/js/jquery/jquery.masonry.min.js?ver=3.1.2b IP 185.32.188.5 ASN #62416 Sampling Line-servicos E Internet, Lda Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:07:32 Last Seen2024-05-11 00:02:46 Times Seen6771 Hash cd0eb3406096ff80266e7c9d7d419186 0e3709691bf96233766de30e2fd473b84166c5b6 c2e606e1fc82ea3a554aad5d0520e25d2677b89a891dc5c49e7ace08fce92e25 Loading...

	agenciainfluencer.pt/sorteios/?qbot_zip	1.2 kB	2023-03-11	2023-03-11
Pretty URL agenciainfluencer.pt/sorteios/?qbot_zip IP 185.32.188.5 ASN #62416 Sampling Line-servicos E Internet, Lda Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-11 14:13:22 Last Seen2023-03-11 14:13:22 Times Seen1 Hash afedd7e4134ef0bbd3110de4ab7d7e29 13b4f5d42d05361b40cb00f5ca1c80910faa05a0 4cf417f2ef3cc0f05c829f0652892fc03e4924cfdd4b65a2b61d676ecb9c62d4 Loading...

	agenciainfluencer.pt/wp-content/plugins/lc-extensions/extensions/openstreetmap/js/leaflet.js?ver=6.1.1	140 kB	2023-03-07	2024-05-07
Pretty URL agenciainfluencer.pt/wp-content/plugins/lc-extensions/extensions/openstreetmap/js/leaflet.js?ver=6.1.1 IP 185.32.188.5 ASN #62416 Sampling Line-servicos E Internet, Lda Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:01:57 Last Seen2024-05-07 11:24:12 Times Seen374 Hash 8a6ca7e8a00960f59e265e8a79e8559e 869977e7c60b77f9cce8a4d75530a992429d6864 640c1fd9cb20ebea970346bca291af465e46d0cc81b8f450c79723d21b6df692 Loading...

	agenciainfluencer.pt/wp-includes/js/backbone.min.js?ver=1.4.1	24 kB	2023-03-08	2024-05-07
Pretty URL agenciainfluencer.pt/wp-includes/js/backbone.min.js?ver=1.4.1 IP 185.32.188.5 ASN #62416 Sampling Line-servicos E Internet, Lda Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 14:28:12 Last Seen2024-05-07 03:49:53 Times Seen376 Hash 3946486d524bca0329b4572f273e0fc4 c5d80848f05dee7165529b34c67d52164ef23531 a714d3e7cd0751a5f1428881d65043743826415dbdcf7b3f3bc3f938180f18da Loading...

	agenciainfluencer.pt/wp-content/plugins/live-composer-page-builder/js/dist/client_frontend.min.js?ver=1.5.22	24 kB	2023-03-08	2024-04-29
Pretty URL agenciainfluencer.pt/wp-content/plugins/live-composer-page-builder/js/dist/client_frontend.min.js?ver=1.5.22 IP 185.32.188.5 ASN #62416 Sampling Line-servicos E Internet, Lda Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 07:58:47 Last Seen2024-04-29 13:32:17 Times Seen64 Hash 62de4b34d554f31ee7c515d24cba9af9 75974cac104b5ef5f2879e013722fe89e73ed199 746721cf3744701ea14b1d385ed5bcce4b9b93570007a9ecba5547844081843e Loading...

	www.google-analytics.com/analytics.js	50 kB	2023-03-08	2024-05-10
Pretty URL www.google-analytics.com/analytics.js IP 142.250.74.174 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 05:22:31 Last Seen2024-05-10 19:48:26 Times Seen1646 Hash fda30e8a22c9bcd954fd8d0fadd0e77c ae47cd34cbde081a48d7f92fc80aaf06a1381193 b42e4a056cb5b80c5a315040826866445ec9332f0749e184509ab2d9d3b86719 Loading...

	agenciainfluencer.pt/sorteios/?qbot_zip	2.2 kB	2023-03-11	2023-03-11
Pretty URL agenciainfluencer.pt/sorteios/?qbot_zip IP 185.32.188.5 ASN #62416 Sampling Line-servicos E Internet, Lda Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-11 14:13:22 Last Seen2023-03-11 14:13:22 Times Seen1 Hash 2bfce4fc5b7cd9518803d3ebcfdc4762 364a2f08938a48330e7f6d6672645ab5718eb719 aa4b29a1f7ae26c3ccbaaf66e8216bdcebe53529fad9779b280b3b491c07696c Loading...

	agenciainfluencer.pt/wp-content/plugins/mega_main_menu/src/js/frontend.js?ver=20.1.8	13 kB	2023-03-10	2023-11-26
Pretty URL agenciainfluencer.pt/wp-content/plugins/mega_main_menu/src/js/frontend.js?ver=20.1.8 IP 185.32.188.5 ASN #62416 Sampling Line-servicos E Internet, Lda Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-10 14:25:55 Last Seen2023-11-26 04:54:55 Times Seen45 Hash 6e75321dee791c61e7be2128a0fa10ef 7204d2ede19a2b30cd54e964f2e0390cae78c805 9a3f2b8e3bf5062136fab9ac00d5ad7321b3676410b3318766e6b4fa9b50c325 Loading...

	agenciainfluencer.pt/wp-content/plugins/woocommerce/assets/js/js-cookie/js.cookie.min.js?ver=2.1.4-wc.7.1.0	1.8 kB	2023-03-07	2024-05-10
Pretty URL agenciainfluencer.pt/wp-content/plugins/woocommerce/assets/js/js-cookie/js.cookie.min.js?ver=2.1.4-wc.7.1.0 IP 185.32.188.5 ASN #62416 Sampling Line-servicos E Internet, Lda Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:35 Last Seen2024-05-10 23:57:06 Times Seen21736 Hash d0a6d8547c66b0d7b0172466558d1208 ff93916519c7b9483251f609e4d29f38c30a66e3 3b1384ff918d4b7f95f9ee5c8fc388203dedff7344d3d96598c9562162788612 Loading...

	agenciainfluencer.pt/wp-content/plugins/lc-extensions/extensions/menu/js/main.js?ver=1.3.2	4.0 kB	2023-03-08	2023-07-16
Pretty URL agenciainfluencer.pt/wp-content/plugins/lc-extensions/extensions/menu/js/main.js?ver=1.3.2 IP 185.32.188.5 ASN #62416 Sampling Line-servicos E Internet, Lda Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 02:20:46 Last Seen2023-07-16 13:46:53 Times Seen18 Hash 8ec2eea07e30c584a8c1197e2b49f49a cd5a94f30d76d519f1f54fd85a321d6f4424ab6b 293f3300d1cbee6db0dfaaa28f7005df347fbf1bdefa2f75397e70fda5b15206 Loading...

	unknown	0 B	2023-03-07	2024-05-11
Pretty Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:01:59 Last Seen2024-05-11 03:39:59 Times Seen37534299 Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 Loading...

	agenciainfluencer.pt/wp-content/plugins/easy-social-share-buttons3/assets/js/essb-core.min.js?ver=60.2.9	39 kB	2023-03-07	2024-01-09
Pretty URL agenciainfluencer.pt/wp-content/plugins/easy-social-share-buttons3/assets/js/essb-core.min.js?ver=60.2.9 IP 185.32.188.5 ASN #62416 Sampling Line-servicos E Internet, Lda Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 14:37:55 Last Seen2024-01-09 12:38:56 Times Seen36 Hash 43a3e377127322feabe42874ad2a7b3e fb40a7f9456fde9471a3c573776d02372ae9b084 e01bab644b63a182fe0238c9f9eb829b9d3f56b84a97e1c568978edec9c77b84 Loading...

	agenciainfluencer.pt/wp-includes/js/masonry.min.js?ver=4.2.2	24 kB	2023-03-07	2024-05-11
Pretty URL agenciainfluencer.pt/wp-includes/js/masonry.min.js?ver=4.2.2 IP 185.32.188.5 ASN #62416 Sampling Line-servicos E Internet, Lda Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:57 Last Seen2024-05-11 00:02:47 Times Seen15519 Hash 3b3fc826e58fc554108e4a651c9c7848 76778fd446e2ff2377588a7b4ac4d79f258427c9 e00add38134eac2fb8e8e9c09cbfff7bbe57952b210322eb2eecb0a21fc055eb Loading...

	agenciainfluencer.pt/sorteios/?qbot_zip	135 B	2023-03-07	2024-05-11
Pretty URL agenciainfluencer.pt/sorteios/?qbot_zip IP 185.32.188.5 ASN #62416 Sampling Line-servicos E Internet, Lda Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:50 Last Seen2024-05-11 01:54:49 Times Seen26808 Hash 3f82b089cf163a5417b3edb4687151f7 28436f92ab540ff08b12fdefddc7da67ba0f04f7 5ba9af6f12e99663f8f04285ef3d4ffd4cdbca820bccbc2dda9c40f805b5a850 Loading...

	agenciainfluencer.pt/sorteios/?qbot_zip	84 B	2023-03-07	2023-12-01
Pretty URL agenciainfluencer.pt/sorteios/?qbot_zip IP 185.32.188.5 ASN #62416 Sampling Line-servicos E Internet, Lda Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 14:37:55 Last Seen2023-12-01 15:13:28 Times Seen27 Hash 141448f7b78069a98071c60db8d72fcd 78a914c493b4c43776abfcba63a6f9cdb61751ce fb0eb2d19973799d39c7deb5cba8eceb90605af0016ba912090cddfd0bb1458c Loading...

	agenciainfluencer.pt/sorteios/?qbot_zip	236 B	2023-03-11	2023-03-11
Pretty URL agenciainfluencer.pt/sorteios/?qbot_zip IP 185.32.188.5 ASN #62416 Sampling Line-servicos E Internet, Lda Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-11 14:13:22 Last Seen2023-03-11 14:13:22 Times Seen1 Hash ccef7fc07c5249b63c63eed4b50771cd bd7c8220bf49542daab65b5536eea468e4d8f6de 8a00884b0fa1c0613fdcce3ab3d858163dd1c45afcc3e6840630edc2c29dfe75 Loading...

	agenciainfluencer.pt/wp-content/plugins/ninja-forms/assets/js/min/front-end-deps.js?ver=3.6.11	63 kB	2023-03-11	2024-01-27
Pretty URL agenciainfluencer.pt/wp-content/plugins/ninja-forms/assets/js/min/front-end-deps.js?ver=3.6.11 IP 185.32.188.5 ASN #62416 Sampling Line-servicos E Internet, Lda Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-11 08:36:55 Last Seen2024-01-27 04:30:56 Times Seen18 Hash 2d35dc40681cdad8d366df8e6f3286d6 010e661020d1953eeb02fd182cfa5ec8fab589d8 f0b7629902d7f320b61dd5d8c7c8e069dd66fc607eb03a77a7d720c7a1140421 Loading...

	agenciainfluencer.pt/wp-content/themes/seowp/javascripts/jquery.formalize.js?ver=1644513975	5.3 kB	2023-03-07	2023-11-20
Pretty URL agenciainfluencer.pt/wp-content/themes/seowp/javascripts/jquery.formalize.js?ver=1644513975 IP 185.32.188.5 ASN #62416 Sampling Line-servicos E Internet, Lda Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 14:37:55 Last Seen2023-11-20 02:03:59 Times Seen34 Hash 72ca069acf2a863414209462b73dcc04 8f331d3214d70f39c3d4449b7c7dd4f26d4ee60f fa5dab8a2fa70b5978a719d749438e7c368a1b729054b9c1e7c1dc7d99b96456 Loading...

	agenciainfluencer.pt/wp-content/themes/seowp/javascripts/custom.modernizr.js?ver=1644513975	9.3 kB	2023-03-07	2024-05-09
Pretty URL agenciainfluencer.pt/wp-content/themes/seowp/javascripts/custom.modernizr.js?ver=1644513975 IP 185.32.188.5 ASN #62416 Sampling Line-servicos E Internet, Lda Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 13:00:02 Last Seen2024-05-09 21:49:18 Times Seen176 Hash 692789fedf79bf48689051f4c1bada2c 55a32a05ade94bd098f64d973eba54d79ad54068 f56dff20f3b4f45e54be41bea34ee24b5ed2e43c5ceaf90400ddcb1ba495b48c Loading...

	agenciainfluencer.pt/wp-content/themes/seowp/javascripts/jquery.fitvids.js?ver=1644513975	3.3 kB	2023-03-07	2023-11-20
Pretty URL agenciainfluencer.pt/wp-content/themes/seowp/javascripts/jquery.fitvids.js?ver=1644513975 IP 185.32.188.5 ASN #62416 Sampling Line-servicos E Internet, Lda Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 14:37:55 Last Seen2023-11-20 02:03:58 Times Seen33 Hash 167b1a36204755b7e4d8c3edc1ca54ec bd1de59d5b6e3f0c2db6bc35633183f4e8282350 11c6214457bfe0b031d13024211b5565795ff368b303c1c0ef6e49598b3e76da Loading...

	agenciainfluencer.pt/sorteios/?qbot_zip	1.9 kB	2023-03-11	2023-03-11
Pretty URL agenciainfluencer.pt/sorteios/?qbot_zip IP 185.32.188.5 ASN #62416 Sampling Line-servicos E Internet, Lda Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-11 14:13:23 Last Seen2023-03-11 14:13:23 Times Seen1 Hash 321a92c7e68e370777f25a33527c8f62 8384a56a8c4d121412e0fbe9d8966dd8a82c50bc f1c461966c9fab1862898b908801e242b86cf02dce4d7bbd5962944de1558f3b Loading...

	agenciainfluencer.pt/sorteios/?qbot_zip	372 B	2023-03-11	2023-03-11
Pretty URL agenciainfluencer.pt/sorteios/?qbot_zip IP 185.32.188.5 ASN #62416 Sampling Line-servicos E Internet, Lda Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-11 14:13:23 Last Seen2023-03-11 14:13:23 Times Seen1 Hash 93c61812d6f011cadec7c9a88c28531c af243e5878a7e962ebf6abf91b9341b126d86abb f38aaa757f20802dab93267f13ad489ec31b198bf4a2b829b45997395d10ff4d Loading...

	agenciainfluencer.pt/wp-content/plugins/woocommerce/assets/js/frontend/cart-fragments.min.js?ver=7.1.0	2.9 kB	2023-03-07	2024-05-10
Pretty URL agenciainfluencer.pt/wp-content/plugins/woocommerce/assets/js/frontend/cart-fragments.min.js?ver=7.1.0 IP 185.32.188.5 ASN #62416 Sampling Line-servicos E Internet, Lda Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:35 Last Seen2024-05-10 23:57:06 Times Seen14055 Hash 0fd625c3991a4015814cffdc88e2fc82 d7c2f53e058210ff3ea773297641008bab71a5f3 2d022db650d194d935faea46a40e5512235b43bc3f8b181e32ce6d3dd745f4e1 Loading...

	agenciainfluencer.pt/sorteios/?qbot_zip	5.6 kB	2023-03-11	2023-03-11
Pretty URL agenciainfluencer.pt/sorteios/?qbot_zip IP 185.32.188.5 ASN #62416 Sampling Line-servicos E Internet, Lda Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-11 14:13:23 Last Seen2023-03-11 14:13:23 Times Seen1 Hash aef88e9b90860060f32461db2dd02890 f05a1219c232bca595cca9cf8f2e893bb4861665 a2ce409923742d5cd7a1032baf32bda4b3409220c42d19a72d30ec438ebaddc5 Loading...

	agenciainfluencer.pt/wp-content/plugins/woocommerce/assets/js/jquery-cookie/jquery.cookie.min.js?ver=1.4.1-wc.7.1.0	1.4 kB	2023-03-07	2024-05-08
Pretty URL agenciainfluencer.pt/wp-content/plugins/woocommerce/assets/js/jquery-cookie/jquery.cookie.min.js?ver=1.4.1-wc.7.1.0 IP 185.32.188.5 ASN #62416 Sampling Line-servicos E Internet, Lda Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:19:17 Last Seen2024-05-08 21:43:21 Times Seen839 Hash 5dc9897cc1411b13f193806a5fcb498c d0460d4aed2af636761b80ea87f2a075b6f79de8 fff09637c3bdbb4988240901f1ae70e3245cbc4ba4aff028fb1053c7064b0c6c Loading...

	agenciainfluencer.pt/wp-includes/js/mediaelement/mediaelement-and-player.min.js?ver=4.2.17	158 kB	2023-03-08	2024-05-11
Pretty URL agenciainfluencer.pt/wp-includes/js/mediaelement/mediaelement-and-player.min.js?ver=4.2.17 IP 185.32.188.5 ASN #62416 Sampling Line-servicos E Internet, Lda Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 14:26:25 Last Seen2024-05-11 00:58:36 Times Seen10394 Hash e53ec3d6e21be78115810135f5e956fe 523892839b88351523e0498ba881c4431197b54e b15c3ea03d50c2430490e7416733a254feea4237bb60b54181bd3473ebe4149f Loading...

	agenciainfluencer.pt/wp-content/plugins/woocommerce-google-adwords-conversion-tracking-tag/js/public/wpm-public.p1.min.js?ver=1.26.0	70 kB	2023-03-10	2023-03-11
Pretty URL agenciainfluencer.pt/wp-content/plugins/woocommerce-google-adwords-conversion-tracking-tag/js/public/wpm-public.p1.min.js?ver=1.26.0 IP 185.32.188.5 ASN #62416 Sampling Line-servicos E Internet, Lda Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-10 01:07:27 Last Seen2023-03-11 14:13:23 Times Seen1 Hash 540e064630fbb29ae7c086e26b581ef0 d37a9c838dbdb83e6a87c520ad562ae51d4bf553 d1f30d10c94e2d00669ef3445a4fb9cbe66fd18eed6c18e15be11a863bb98bb0 Loading...

	agenciainfluencer.pt/sorteios/?qbot_zip	161 B	2023-03-11	2023-03-11
Pretty URL agenciainfluencer.pt/sorteios/?qbot_zip IP 185.32.188.5 ASN #62416 Sampling Line-servicos E Internet, Lda Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-11 14:13:23 Last Seen2023-03-11 14:13:23 Times Seen1 Hash 44b9f2912d6d7d7169d2bdedd686f5ad 1b4dc3553d7ea0ed5818c8619affdba14b9e075b b52bbd5c6260327dcefdbffdfa8666b23ec2336a43c45f6606784c05f6820c39 Loading...

	agenciainfluencer.pt/wp-content/plugins/masterslider/public/assets/js/masterslider.min.js?ver=30.2.14	167 kB	2023-03-07	2024-05-02
Pretty URL agenciainfluencer.pt/wp-content/plugins/masterslider/public/assets/js/masterslider.min.js?ver=30.2.14 IP 185.32.188.5 ASN #62416 Sampling Line-servicos E Internet, Lda Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 14:07:07 Last Seen2024-05-02 12:52:59 Times Seen32 Hash 5273101dff7a370c4e55b13336adfc57 5eab83c284f6a034ec19c178665911d0c3c4fea1 8c301227c7caf72a3fa8281870ed77b1784f3a72d340e634c43a03c3786fcb19 Loading...

	agenciainfluencer.pt/wp-content/plugins/ninja-forms/assets/js/min/front-end.js?ver=3.6.11	97 kB	2023-03-11	2024-01-27
Pretty URL agenciainfluencer.pt/wp-content/plugins/ninja-forms/assets/js/min/front-end.js?ver=3.6.11 IP 185.32.188.5 ASN #62416 Sampling Line-servicos E Internet, Lda Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-11 08:36:55 Last Seen2024-01-27 04:30:56 Times Seen19 Hash f3862905f28e86e71cb86096019a72fa 5324a67db1ad9569415f88273dae73dce5a7733f 49069a3e08353462b30e67389c80d02a7796435879f72154e41462f5f040d6fb Loading...

	agenciainfluencer.pt/wp-content/themes/seowp/javascripts/scripts.js?ver=1644513975	12 kB	2023-03-07	2023-11-20
Pretty URL agenciainfluencer.pt/wp-content/themes/seowp/javascripts/scripts.js?ver=1644513975 IP 185.32.188.5 ASN #62416 Sampling Line-servicos E Internet, Lda Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 14:37:55 Last Seen2023-11-20 02:03:59 Times Seen34 Hash 3adf7341b03d0f7baf1b4eaef7dd7e4c 771e8d8971f403da645b5dc7a0478864b7a8e833 37b1d617ebb0f44d8433a48e5d82928a185f78bea908a1c966f047f97df268ed Loading...

	agenciainfluencer.pt/wp-includes/js/mediaelement/mediaelement-migrate.min.js?ver=6.1.1	1.2 kB	2023-03-07	2024-05-11
Pretty URL agenciainfluencer.pt/wp-includes/js/mediaelement/mediaelement-migrate.min.js?ver=6.1.1 IP 185.32.188.5 ASN #62416 Sampling Line-servicos E Internet, Lda Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:06:59 Last Seen2024-05-11 00:58:36 Times Seen9361 Hash 51300497928562f8c86c7aaba99237cd e5826832b85c6afc6502b74cbb8ac5394b04c363 6d161e98e47ae150b51211443eef37040fb6269dcf85ad2048548066dca99e6f Loading...

	googleads.g.doubleclick.net/pagead/viewthroughconversion/7128745641/?random=1668808539374&cv=11&fst=1668808539374&bg=ffffff&guid=ON&async=1&gtm=2oab90&u_w=1280&u_h=1024&hn=www.googleadservices.com&frm=0&url=https%3A%2F%2Fagenciainfluencer.pt%2Fsorteios%2F%3Fqbot_zip&tiba=Sorteios%20-%20Ag%C3%AAncia%20Influenciar&auid=699094726.1668808539&data=event%3Dgtag.config&rfmt=3&fmt=4	1.9 kB	2023-03-11	2023-03-11
Pretty URL googleads.g.doubleclick.net/pagead/viewthroughconversion/7128745641/?random=1668808539374&cv=11&fst=1668808539374&bg=ffffff&guid=ON&async=1&gtm=2oab90&u_w=1280&u_h=1024&hn=www.googleadservices.com&frm=0&url=https%3A%2F%2Fagenciainfluencer.pt%2Fsorteios%2F%3Fqbot_zip&tiba=Sorteios%20-%20Ag%C3%AAncia%20Influenciar&auid=699094726.1668808539&data=event%3Dgtag.config&rfmt=3&fmt=4 IP 142.250.74.130 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-11 14:13:23 Last Seen2023-03-11 14:13:23 Times Seen1 Hash 647dd14870c8b95346d967e62991a5d8 ff13373880ad6f4899720e4214965feb1e74de2c d3e7e82e6d3d011e50a38d781539171a1e26f42fa4422f593b34326ee9f1ef54 Loading...

	agenciainfluencer.pt/wp-includes/js/dist/vendor/regenerator-runtime.min.js?ver=0.13.9	6.5 kB	2023-03-07	2024-05-10
Pretty URL agenciainfluencer.pt/wp-includes/js/dist/vendor/regenerator-runtime.min.js?ver=0.13.9 IP 185.32.188.5 ASN #62416 Sampling Line-servicos E Internet, Lda Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:08 Last Seen2024-05-10 20:32:53 Times Seen15578 Hash 61449413a42d2daaa79dbe7298b40e21 d86c474164c603084397bdc50fb0e469d28b5772 f30769ea0b80a5d900c5f0de30b1aad1ab461195e69223d5ef63c2c5de8b6c1a Loading...

HTTP Transactions (122)

URL IP Response Size

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
30c30d01178fc74ac5266ee64c3ee85b
c0c2af8a864c00aa85a8775d55f85ab107150a3b
c15644f69fbfeb99074c7e9711dfc9452ee164fa78eb981b6bae4fb7e3585f2a

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C15644F69FBFEB99074C7E9711DFC9452EE164FA78EB981B6BAE4FB7E3585F2A"
Last-Modified: Wed, 16 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=12866
Expires: Sat, 19 Nov 2022 01:29:59 GMT
Date: Fri, 18 Nov 2022 21:55:33 GMT
Connection: keep-alive

ocsp.digicert.com/

93.184.220.29

200 OK

471 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
471 B (471 bytes)
Hash
67f53a639d57dd6237b5be86fe4f6c1b
287f09532dc331228d09c20b75f4160e91e9800a
41913a8af366685c42af59e9d8e02fccedbe68a3313d2d9fe353deb0c1019075

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2853
Cache-Control: max-age=134587
Content-Type: application/ocsp-response
Date: Fri, 18 Nov 2022 21:55:33 GMT
Etag: "63775eeb-1d7"
Expires: Sun, 20 Nov 2022 11:18:40 GMT
Last-Modified: Fri, 18 Nov 2022 10:31:07 GMT
Server: ECS (ska/F71B)
X-Cache: HIT
Content-Length: 471

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
3a38b6dd8a4cc335c026aebf2ed348b6
8a386e0ccb0ca4dc502746c45b2ebc3aa3f83cf8
8b4040a645cec1841a00a22765eb3a74978559daf15c54bd4b41b6b48aab7f95

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "8B4040A645CEC1841A00A22765EB3A74978559DAF15C54BD4B41B6B48AAB7F95"
Last-Modified: Wed, 16 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10801
Expires: Sat, 19 Nov 2022 00:55:34 GMT
Date: Fri, 18 Nov 2022 21:55:33 GMT
Connection: keep-alive

firefox.settings.services.mozilla.com/v1/

34.102.187.140

200 OK

939 B

URL HTTP/2
firefox.settings.services.mozilla.com/v1/
IP
34.102.187.140:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Size
939 B (939 bytes)
Hash
567df7db606cf5d0871aa5bc9311b6da
4263faac7cbab2fcaf6661911dcad5091c06be17
e9650e1fdc46fc8678708ddcc37ab369c7a6d50489a004be896f20c7a3a644b0

HTTP Headers

GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Type, Retry-After, Content-Length, Alert, Backoff
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Fri, 18 Nov 2022 21:45:03 GMT
cache-control: public,max-age=3600
content-type: application/json
age: 630
alt-svc: clear
X-Firefox-Spdy: h2

content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain

34.160.144.191

200 OK

5.3 kB

URL HTTP/2
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain
IP
34.160.144.191:0
ASN
#15169 GOOGLE

File type
PEM certificate\012- , ASCII text
Size
5.3 kB (5348 bytes)
Hash
67d5a988edcda47bc3b3b3f65d32b4b6
d4f0e0da8b3690cc7da925026d3414b68c7d954f
55e4848e3ec682e808ce7ee70950f86179c43af4f81926d826a95edfda395a78

HTTP Headers

GET /chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
x-amz-id-2: LVTtBew4VeqBNK2D83H3E+kBbJMyf/7WB6Ki1AW0WcgFiYN3/pESVrTH80nx8ezDOSX1g4JaY88=
x-amz-request-id: QXQGE772SXEAKPV6
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Fri, 18 Nov 2022 21:15:45 GMT
age: 2388
last-modified: Fri, 30 Sep 2022 18:50:55 GMT
etag: "67d5a988edcda47bc3b3b3f65d32b4b6"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2

contile.services.mozilla.com/v1/tiles

34.117.237.239

200 OK

12 B

URL HTTP/2
contile.services.mozilla.com/v1/tiles
IP
34.117.237.239:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with no line terminators
Size
12 B (12 bytes)
Hash
23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3

HTTP Headers

GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
date: Fri, 18 Nov 2022 21:55:33 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2

firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US

34.102.187.140

200 OK

329 B

URL HTTP/2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP
34.102.187.140:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Size
329 B (329 bytes)
Hash
0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300

HTTP Headers

GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Type, Retry-After, Content-Length, Alert, Cache-Control, ETag, Pragma, Expires, Backoff, Last-Modified
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Fri, 18 Nov 2022 21:44:49 GMT
cache-control: public,max-age=3600
age: 644
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
alt-svc: clear
X-Firefox-Spdy: h2

ocsp.digicert.com/

93.184.220.29

200 OK

471 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
471 B (471 bytes)
Hash
fe40cc6ea871d80382b6082111393fbe
281f75d0a35dc8ef908bb0500e57abd86bd5388e
6d15422cdf7a6d72d06497188f27af893682314e82ac8a189a0ee2d798cb62d7

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6091
Cache-Control: max-age=132773
Content-Type: application/ocsp-response
Date: Fri, 18 Nov 2022 21:55:34 GMT
Etag: "63774b30-1d7"
Expires: Sun, 20 Nov 2022 10:48:27 GMT
Last-Modified: Fri, 18 Nov 2022 09:06:56 GMT
Server: ECS (ska/F71B)
X-Cache: HIT
Content-Length: 471

push.services.mozilla.com/

35.165.176.211

101 Switching Protocols

0 B

URL HTTP/1.1
push.services.mozilla.com/
IP
35.165.176.211:0
ASN
#16509 AMAZON-02

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: Oc6AbB5ry72OcbooVO3aRA==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket

HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: 8uWMGn1UiWaHy5Y1zjbunvGCmJk=

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
17af07b019100dc8adb529ce85f827bd
602adaa722e9a3ee89600ebe40cea7033c435483
aec801578f867078e0a82d90e78290f0a3ef4f1f4936eb763801b869e0fae747

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "AEC801578F867078E0A82D90E78290F0A3EF4F1F4936EB763801B869E0FAE747"
Last-Modified: Wed, 16 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=15085
Expires: Sat, 19 Nov 2022 02:07:00 GMT
Date: Fri, 18 Nov 2022 21:55:35 GMT
Connection: keep-alive

img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5e567bc1-d4b1-4dd2-b17e-3595ad1753e5.jpeg

34.120.237.76

200 OK

10 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5e567bc1-d4b1-4dd2-b17e-3595ad1753e5.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
10 kB (10281 bytes)
Hash
35da1192dcadc6e329a9e60c16904301
90a146aef85765630a5e09e46a0a8682e204bec1
816d1387a3a91a82f0bdaa2b703b45aa30be206d30d4dd1e8ac5deca13de57ad

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5e567bc1-d4b1-4dd2-b17e-3595ad1753e5.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
server: nginx
content-length: 10281
x-amzn-requestid: 11dffc4e-71d7-4195-8890-62c8a2092728
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: bw-77EWaIAMF3WA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6376ab7f-3c0dc7e43023af827ac26958;Sampled=0
x-amzn-remapped-date: Thu, 17 Nov 2022 21:45:35 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: Xbau-BXu_W5Hu8QaCg3tvwfYMb_8L8F_muNp4gVukeNTmiDW4BAXhA==
via: 1.1 4d7fa73f804f1c93f20cfc24c4b1266e.cloudfront.net (CloudFront), 1.1 cd64decb1403270c914848213601a674.cloudfront.net (CloudFront), 1.1 google
date: Thu, 17 Nov 2022 22:24:03 GMT
age: 84692
etag: "90a146aef85765630a5e09e46a0a8682e204bec1"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

6.0 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0dd26f9e-1666-47e7-91b0-4b371ede5e61.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
6.0 kB (5955 bytes)
Hash
30ad43f65949e7e22e73292e3d684f3d
9404b0071027ac7ec0055a9edfbd607e3a8ae501
b97961cbd2245f9927c1c0406451449d28cca24c98c534cace78321ac62eeeb2

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0dd26f9e-1666-47e7-91b0-4b371ede5e61.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 5955
x-amzn-requestid: fe915fbe-b1dc-4fbd-8a10-1cb46e08f56c
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: btqPjHloIAMFidw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63755730-16deb73f48305b0139b1d9bd;Sampled=0
x-amzn-remapped-date: Wed, 16 Nov 2022 21:33:36 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: w5oaYWJSVOeVrPbXHuSb8rPM2oERM4FwKdVBcdRazSjV28c6quIeYw==
via: 1.1 86b676273517904f44af31586adb06ae.cloudfront.net (CloudFront), 1.1 9c675215120a4ade8754c4357ef2f3ea.cloudfront.net (CloudFront), 1.1 google
date: Fri, 18 Nov 2022 21:39:45 GMT
age: 950
etag: "9404b0071027ac7ec0055a9edfbd607e3a8ae501"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

7.6 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3007b4f3-f5db-4eb7-b71a-f9f854ae287e.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
7.6 kB (7631 bytes)
Hash
b2b393e36ee2c9649d90db136aa49542
e88c5832ff0c49bab181d948c3a510d88343bb6f
8b524701df43bff56ac52a021ff0fbd964e06f00e84b4861aa557ec6ae6b4ffd

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3007b4f3-f5db-4eb7-b71a-f9f854ae287e.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
server: nginx
content-length: 7631
x-amzn-requestid: b47e545d-1fb6-4a62-ab45-28cdb9d3f0b6
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: bw-vQE0XoAMFS3w=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6376ab2e-56365eed3d4c082c53b172b3;Sampled=0
x-amzn-remapped-date: Thu, 17 Nov 2022 21:44:14 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: qpoQa1Lhe-h27dGooXDCtujesSTg7Tb0Ov-PNLnUP0288ZofwHxkhQ==
via: 1.1 446313511980eb02f28ff5a9a4147c0a.cloudfront.net (CloudFront), 1.1 b36bf2c460ac693ce304817aed073112.cloudfront.net (CloudFront), 1.1 google
date: Thu, 17 Nov 2022 22:24:12 GMT
age: 84683
etag: "e88c5832ff0c49bab181d948c3a510d88343bb6f"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

3.8 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1e93b023-2729-4761-a4ea-05612c0917fb.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
3.8 kB (3759 bytes)
Hash
5d0b6106f00f9fd8b89c2d484a559a1a
399ac393209dcdac7d2188d7aa8d95f04570ef7c
5d8151c9eb558f4a2b8bd2952c6845606ddb0c27e36f6e49aca7e60908cd9fe4

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1e93b023-2729-4761-a4ea-05612c0917fb.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
server: nginx
content-length: 3759
x-amzn-requestid: 8c91ac59-89dc-4218-b69f-0cebb29f301b
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: bw-wJHgxoAMF-hQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6376ab33-4dac305614a92bc52c038222;Sampled=0
x-amzn-remapped-date: Thu, 17 Nov 2022 21:44:19 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: Mb2-PTjNmt06Wd5jOjQ5WoLY-0NgI80CKPXtwgzBt4n5km8Pu_WN0Q==
via: 1.1 d1151317ba32afe0e6370fd69fed222e.cloudfront.net (CloudFront), 1.1 6396e88c437c096ef98930ce29f731a2.cloudfront.net (CloudFront), 1.1 google
date: Thu, 17 Nov 2022 22:08:54 GMT
age: 85601
etag: "399ac393209dcdac7d2188d7aa8d95f04570ef7c"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

6.3 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3f1b43b0-5ba1-4c6c-9a53-bfae9befdd7d.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
6.3 kB (6344 bytes)
Hash
a9d32fa3866dd741de610a61a93ad893
4cb2141b1ef1e5bf19a3b355995dcd8fa36f695e
4492338de536cfae6fb42fd37170c60f4fbc281a2a924efe6d2b5af352cd102c

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3f1b43b0-5ba1-4c6c-9a53-bfae9befdd7d.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 6344
x-amzn-requestid: cac35b04-be3b-4ae1-bb5e-8cedcd7a7db4
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: btqOVFCXIAMFcOg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63755728-45c28fa333b748520be29b57;Sampled=0
x-amzn-remapped-date: Wed, 16 Nov 2022 21:33:28 GMT
x-amz-cf-pop: SEA19-C1
x-cache: Hit from cloudfront
x-amz-cf-id: mhgNSp1_LsVmn00ULm116flMHpnfE6G6JABrJwXH5i4q-isv_W1-Ig==
via: 1.1 5a1753718d8b33365e5f693dd338c510.cloudfront.net (CloudFront), 1.1 f313d3df80c4dab8f5399614116801cc.cloudfront.net (CloudFront), 1.1 google
date: Fri, 18 Nov 2022 21:34:05 GMT
age: 1290
etag: "4cb2141b1ef1e5bf19a3b355995dcd8fa36f695e"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

12 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F92501a28-163f-4c6e-aed7-d31c29354d1e.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
12 kB (11667 bytes)
Hash
032386e5c9dffff1ba1ee5e8a322d438
dd4fd6c803a9b333bace9a541c6bd183d0c56bb9
0e9f559a0aa7e114c5810a27ba243c0da7b44dc0bf7aec2b7ab32b8f0e2b536c

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F92501a28-163f-4c6e-aed7-d31c29354d1e.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 11667
x-amzn-requestid: 4778d1bd-28c3-4665-89da-046e356087f0
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: bjyD1HE-oAMF0QQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-637163b1-53c7330c5fd36d3c4d9e6aed;Sampled=0
x-amzn-remapped-date: Sun, 13 Nov 2022 21:37:53 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: CHi9V7-WaWmG6Y0249CZJnhe_RjvleaGFVXoOnJ62cjrcXoLLKwzgw==
via: 1.1 e5af640ced3aa8764b82c4bc3f7af38e.cloudfront.net (CloudFront), 1.1 02d90bf99fd6253b329a53c82f19e224.cloudfront.net (CloudFront), 1.1 google
date: Fri, 18 Nov 2022 07:20:30 GMT
age: 52505
etag: "dd4fd6c803a9b333bace9a541c6bd183d0c56bb9"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

agenciainfluencer.pt/so/index.php?qbot.zip

185.32.188.5

301 Moved Permanently

0 B

URL HTTP/2
agenciainfluencer.pt/so/index.php?qbot.zip
IP
185.32.188.5:0
ASN
#62416 Sampling Line-servicos E Internet, Lda

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
fortinet	Malware
mnemonic_dns	Sinkholed
quad9	Sinkholed

HTTP Headers

GET /so/index.php?qbot.zip HTTP/1.1
Host: agenciainfluencer.pt
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1

HTTP/2 301 Moved Permanently
x-powered-by: PHP/7.4.33
expires: Wed, 11 Jan 1984 05:00:00 GMT
cache-control: no-cache, must-revalidate, max-age=0
x-redirect-by: WordPress
location: https://agenciainfluencer.pt/so/?qbot.zip
content-length: 0
content-type: text/html; charset=UTF-8
date: Fri, 18 Nov 2022 21:55:28 GMT
server: Apache
X-Firefox-Spdy: h2

agenciainfluencer.pt/so/?qbot.zip

185.32.188.5

301 Moved Permanently

0 B

URL HTTP/2
agenciainfluencer.pt/so/?qbot.zip
IP
185.32.188.5:0
ASN
#62416 Sampling Line-servicos E Internet, Lda

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
fortinet	Malware
mnemonic_dns	Sinkholed
quad9	Sinkholed

HTTP Headers

GET /so/?qbot.zip HTTP/1.1
Host: agenciainfluencer.pt
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
TE: trailers

HTTP/2 301 Moved Permanently
x-powered-by: PHP/7.4.33
expires: Wed, 11 Jan 1984 05:00:00 GMT
cache-control: no-cache, must-revalidate, max-age=0
x-redirect-by: WordPress
location: https://agenciainfluencer.pt/sorteios/?qbot_zip
content-length: 0
content-type: text/html; charset=UTF-8
date: Fri, 18 Nov 2022 21:55:30 GMT
server: Apache
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.35

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.35:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
feaeba711c7421b074e726f89ff34e0b
c590c0b76a7a78ab51a4dabcd8f20a1b172b02fb
ebe6e312ea7116713547fbd756805843b1c242ad22269158a79305f1819fa990

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 18 Nov 2022 21:55:39 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

agenciainfluencer.pt/wp-content/plugins/chaty/css/chaty-front.min.css?ver=1645843367

185.32.188.5

200 OK

26 kB

URL HTTP/2
agenciainfluencer.pt/wp-content/plugins/chaty/css/chaty-front.min.css?ver=1645843367
IP
185.32.188.5:0
ASN
#62416 Sampling Line-servicos E Internet, Lda

File type
ASCII text, with very long lines (26296), with no line terminators
Size
26 kB (26296 bytes)
Hash
b60e67d6024d87e77929fcf88f9fd1b8
c5d810774621d101a1b2b58a500ae6c400082b3f
82fe88ec82cd8b980192492865fd97fe1a9b3ab39b965172f4a4b1d5aa26c65e

Detections

Analyzer	Verdict	Alert
fortinet	Malware
mnemonic_dns	Sinkholed
quad9	Sinkholed

HTTP Headers

GET /wp-content/plugins/chaty/css/chaty-front.min.css?ver=1645843367 HTTP/1.1
Host: agenciainfluencer.pt
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://agenciainfluencer.pt/sorteios/?qbot_zip
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Sat, 26 Feb 2022 02:34:58 GMT
accept-ranges: bytes
content-length: 26296
content-type: text/css
date: Fri, 18 Nov 2022 21:55:34 GMT
server: Apache
X-Firefox-Spdy: h2

agenciainfluencer.pt/wp-includes/css/classic-themes.min.css?ver=1

185.32.188.5

200 OK

217 B

URL HTTP/2
agenciainfluencer.pt/wp-includes/css/classic-themes.min.css?ver=1
IP
185.32.188.5:0
ASN
#62416 Sampling Line-servicos E Internet, Lda

File type
ASCII text
Size
217 B (217 bytes)
Hash
95e891f28e44a9b314c09545d86be2b7
f9b13a8bd47273b086a0a07df15f314e0af0bc3e
5a5f39391fbf5b06db84b8f9716d53de575ee97a627d2c5f12f79a991a671eb5

Detections

Analyzer	Verdict	Alert
mnemonic_dns	Sinkholed
quad9	Sinkholed

HTTP Headers

GET /wp-includes/css/classic-themes.min.css?ver=1 HTTP/1.1
Host: agenciainfluencer.pt
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://agenciainfluencer.pt/sorteios/?qbot_zip
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Mon, 07 Nov 2022 21:18:06 GMT
accept-ranges: bytes
content-length: 217
content-type: text/css
date: Fri, 18 Nov 2022 21:55:34 GMT
server: Apache
X-Firefox-Spdy: h2

agenciainfluencer.pt/wp-content/uploads/masterslider/custom.css?ver=1.1

185.32.188.5

200 OK

266 B

URL HTTP/2
agenciainfluencer.pt/wp-content/uploads/masterslider/custom.css?ver=1.1
IP
185.32.188.5:0
ASN
#62416 Sampling Line-servicos E Internet, Lda

File type
ASCII text
Size
266 B (266 bytes)
Hash
48a9f5734939f50e785f554f2ceb6cb8
5d42633b640833ebf15fd09f6b15b2d74536aa94
1b4e2c3b84fe75916b109ac323d0eb39e3881a892f7b7a21970a0cb9e694b3d7

Detections

Analyzer	Verdict	Alert
fortinet	Malware
mnemonic_dns	Sinkholed
quad9	Sinkholed

HTTP Headers

GET /wp-content/uploads/masterslider/custom.css?ver=1.1 HTTP/1.1
Host: agenciainfluencer.pt
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://agenciainfluencer.pt/sorteios/?qbot_zip
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Thu, 10 Feb 2022 17:04:05 GMT
accept-ranges: bytes
content-length: 266
content-type: text/css
date: Fri, 18 Nov 2022 21:55:34 GMT
server: Apache
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.35

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.35:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
feaeba711c7421b074e726f89ff34e0b
c590c0b76a7a78ab51a4dabcd8f20a1b172b02fb
ebe6e312ea7116713547fbd756805843b1c242ad22269158a79305f1819fa990

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 18 Nov 2022 21:55:39 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

agenciainfluencer.pt/wp-includes/js/wp-emoji-release.min.js?ver=6.1.1

185.32.188.5

200 OK

19 kB

URL HTTP/2
agenciainfluencer.pt/wp-includes/js/wp-emoji-release.min.js?ver=6.1.1
IP
185.32.188.5:0
ASN
#62416 Sampling Line-servicos E Internet, Lda

File type
ASCII text, with very long lines (15660)
Size
19 kB (18617 bytes)
Hash
32beb68a374e3aeac00abdf9e12b84ea
b5d18aa625e8696dd9d07cd0869337717b211ae0
5aad5fbd4238981a9ff5e2772ff1353dfe1a801fb49542fe157418c1438f7782

Detections

Analyzer	Verdict	Alert
mnemonic_dns	Sinkholed
quad9	Sinkholed

HTTP Headers

GET /wp-includes/js/wp-emoji-release.min.js?ver=6.1.1 HTTP/1.1
Host: agenciainfluencer.pt
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://agenciainfluencer.pt/sorteios/?qbot_zip
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Mon, 07 Nov 2022 21:18:05 GMT
accept-ranges: bytes
content-length: 18617
content-type: application/javascript
date: Fri, 18 Nov 2022 21:55:34 GMT
server: Apache
X-Firefox-Spdy: h2

agenciainfluencer.pt/wp-content/themes/seowp/iconfont/social-share-icons.css?ver=2.2.2

185.32.188.5

200 OK

2.6 kB

URL HTTP/2
agenciainfluencer.pt/wp-content/themes/seowp/iconfont/social-share-icons.css?ver=2.2.2
IP
185.32.188.5:0
ASN
#62416 Sampling Line-servicos E Internet, Lda

File type
CSV text\012- , ASCII text
Size
2.6 kB (2559 bytes)
Hash
f06335d596bdab224be47bdf2c015869
25b8c23b4601930484beb508527a13f979b9dda4
c2fc3f5fdee4592a7d3dcb2066bf95f5d492cf9b8bfb8c3362e7caa37c89e243

Detections

Analyzer	Verdict	Alert
fortinet	Malware
mnemonic_dns	Sinkholed
quad9	Sinkholed

HTTP Headers

GET /wp-content/themes/seowp/iconfont/social-share-icons.css?ver=2.2.2 HTTP/1.1
Host: agenciainfluencer.pt
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://agenciainfluencer.pt/sorteios/?qbot_zip
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Thu, 10 Feb 2022 17:26:15 GMT
accept-ranges: bytes
content-length: 2559
content-type: text/css
date: Fri, 18 Nov 2022 21:55:34 GMT
server: Apache
X-Firefox-Spdy: h2

agenciainfluencer.pt/wp-content/plugins/WP_Estimation_Form/assets/js/lfb_frontend.min.js?ver=9.727

185.32.188.5

200 OK

1.5 kB

URL HTTP/2
agenciainfluencer.pt/wp-content/plugins/WP_Estimation_Form/assets/js/lfb_frontend.min.js?ver=9.727
IP
185.32.188.5:0
ASN
#62416 Sampling Line-servicos E Internet, Lda

File type
ASCII text, with very long lines (1484), with no line terminators
Size
1.5 kB (1484 bytes)
Hash
b936388dcf1fd7889dd18991a1ff227f
893f944e76a914936ef60bf8a85b4a28893381ff
9fee6bfaf91ed523799b04cd332f58d5c5e9351f169324b8e0172da948af5fb8

Detections

Analyzer	Verdict	Alert
fortinet	Malware
mnemonic_dns	Sinkholed
quad9	Sinkholed

HTTP Headers

GET /wp-content/plugins/WP_Estimation_Form/assets/js/lfb_frontend.min.js?ver=9.727 HTTP/1.1
Host: agenciainfluencer.pt
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://agenciainfluencer.pt/sorteios/?qbot_zip
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Fri, 11 Feb 2022 13:49:31 GMT
accept-ranges: bytes
content-length: 1484
content-type: application/javascript
date: Fri, 18 Nov 2022 21:55:34 GMT
server: Apache
X-Firefox-Spdy: h2

agenciainfluencer.pt/wp-content/plugins/cookie-law-info/legacy/public/css/cookie-law-info-public.css?ver=3.0.5

185.32.188.5

200 OK

3.1 kB

URL HTTP/2
agenciainfluencer.pt/wp-content/plugins/cookie-law-info/legacy/public/css/cookie-law-info-public.css?ver=3.0.5
IP
185.32.188.5:0
ASN
#62416 Sampling Line-servicos E Internet, Lda

File type
ASCII text
Size
3.1 kB (3106 bytes)
Hash
20e8490fab0dcf7557a5c8b54494db6f
285db746dfc0d43b9ca42f8d65b69c908ff72ca5
fbe820b6140ad28e86f34ffae507d807cf591a22697a05b71958f2014e96a9e4

Detections

Analyzer	Verdict	Alert
fortinet	Malware
mnemonic_dns	Sinkholed
quad9	Sinkholed

HTTP Headers

GET /wp-content/plugins/cookie-law-info/legacy/public/css/cookie-law-info-public.css?ver=3.0.5 HTTP/1.1
Host: agenciainfluencer.pt
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://agenciainfluencer.pt/sorteios/?qbot_zip
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Mon, 07 Nov 2022 21:28:25 GMT
accept-ranges: bytes
content-length: 3106
content-type: text/css
date: Fri, 18 Nov 2022 21:55:34 GMT
server: Apache
X-Firefox-Spdy: h2

agenciainfluencer.pt/wp-content/themes/seowp/gutenberg.css?ver=1644513974

185.32.188.5

200 OK

5.0 kB

URL HTTP/2
agenciainfluencer.pt/wp-content/themes/seowp/gutenberg.css?ver=1644513974
IP
185.32.188.5:0
ASN
#62416 Sampling Line-servicos E Internet, Lda

File type
ASCII text, with very long lines (4995)
Size
5.0 kB (5038 bytes)
Hash
bc5436f1fae2f3267c6ea447889d91e6
5151ce24716bf0af5aacd2cea6be6284c52806d8
b37c4b34693add35923e939e3405ef40602ab5e8db6173bbd874d1b751b5ff8b

Detections

Analyzer	Verdict	Alert
fortinet	Malware
mnemonic_dns	Sinkholed
quad9	Sinkholed

HTTP Headers

GET /wp-content/themes/seowp/gutenberg.css?ver=1644513974 HTTP/1.1
Host: agenciainfluencer.pt
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://agenciainfluencer.pt/sorteios/?qbot_zip
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Thu, 10 Feb 2022 17:26:14 GMT
accept-ranges: bytes
content-length: 5038
content-type: text/css
date: Fri, 18 Nov 2022 21:55:34 GMT
server: Apache
X-Firefox-Spdy: h2

agenciainfluencer.pt/wp-includes/js/dist/hooks.min.js?ver=4169d3cf8e8d95a3d6d5

185.32.188.5

200 OK

4.9 kB

URL HTTP/2
agenciainfluencer.pt/wp-includes/js/dist/hooks.min.js?ver=4169d3cf8e8d95a3d6d5
IP
185.32.188.5:0
ASN
#62416 Sampling Line-servicos E Internet, Lda

File type
ASCII text, with very long lines (4875)
Size
4.9 kB (4910 bytes)
Hash
b33ab4d5dcf02436276a717e9d1b7c18
f47b9a9c41b3b11c9dffabca22945727c3ec6566
9bd82960d99b3a76f4af77a88a346bd61f87bac5ff2f385ee28cd669d8f22134

Detections

Analyzer	Verdict	Alert
mnemonic_dns	Sinkholed
quad9	Sinkholed

HTTP Headers

GET /wp-includes/js/dist/hooks.min.js?ver=4169d3cf8e8d95a3d6d5 HTTP/1.1
Host: agenciainfluencer.pt
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://agenciainfluencer.pt/sorteios/?qbot_zip
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Mon, 07 Nov 2022 21:18:05 GMT
accept-ranges: bytes
content-length: 4910
content-type: application/javascript
date: Fri, 18 Nov 2022 21:55:34 GMT
server: Apache
X-Firefox-Spdy: h2

agenciainfluencer.pt/wp-includes/js/dist/vendor/regenerator-runtime.min.js?ver=0.13.9

185.32.188.5

200 OK

6.5 kB

URL HTTP/2
agenciainfluencer.pt/wp-includes/js/dist/vendor/regenerator-runtime.min.js?ver=0.13.9
IP
185.32.188.5:0
ASN
#62416 Sampling Line-servicos E Internet, Lda

File type
ASCII text, with very long lines (6475), with no line terminators
Size
6.5 kB (6475 bytes)
Hash
61449413a42d2daaa79dbe7298b40e21
d86c474164c603084397bdc50fb0e469d28b5772
f30769ea0b80a5d900c5f0de30b1aad1ab461195e69223d5ef63c2c5de8b6c1a

Detections

Analyzer	Verdict	Alert
mnemonic_dns	Sinkholed
quad9	Sinkholed

HTTP Headers

GET /wp-includes/js/dist/vendor/regenerator-runtime.min.js?ver=0.13.9 HTTP/1.1
Host: agenciainfluencer.pt
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://agenciainfluencer.pt/sorteios/?qbot_zip
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Mon, 07 Nov 2022 21:18:05 GMT
accept-ranges: bytes
content-length: 6475
content-type: application/javascript
date: Fri, 18 Nov 2022 21:55:34 GMT
server: Apache
X-Firefox-Spdy: h2

agenciainfluencer.pt/wp-content/plugins/woocommerce/packages/woocommerce-blocks/build/wc-blocks-vendors-style.css?ver=8.7.5

185.32.188.5

200 OK

10 kB

URL HTTP/2
agenciainfluencer.pt/wp-content/plugins/woocommerce/packages/woocommerce-blocks/build/wc-blocks-vendors-style.css?ver=8.7.5
IP
185.32.188.5:0
ASN
#62416 Sampling Line-servicos E Internet, Lda

File type
ASCII text, with very long lines (10435), with no line terminators
Size
10 kB (10435 bytes)
Hash
27a91498e22d4778e559dd13a12c6ab6
9868807cc628fab1cc5ccb6f6c53934e6e9303b4
4a25eb6972f4a513da7ead5d8c0f74832ed42b1ae5e1f13ed3ea36f0865a59c9

Detections

Analyzer	Verdict	Alert
mnemonic_dns	Sinkholed
quad9	Sinkholed

HTTP Headers

GET /wp-content/plugins/woocommerce/packages/woocommerce-blocks/build/wc-blocks-vendors-style.css?ver=8.7.5 HTTP/1.1
Host: agenciainfluencer.pt
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://agenciainfluencer.pt/sorteios/?qbot_zip
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Tue, 08 Nov 2022 20:41:41 GMT
accept-ranges: bytes
content-length: 10435
content-type: text/css
date: Fri, 18 Nov 2022 21:55:34 GMT
server: Apache
X-Firefox-Spdy: h2

agenciainfluencer.pt/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2

185.32.188.5

200 OK

11 kB

URL HTTP/2
agenciainfluencer.pt/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2
IP
185.32.188.5:0
ASN
#62416 Sampling Line-servicos E Internet, Lda

File type
ASCII text, with very long lines (11126)
Size
11 kB (11224 bytes)
Hash
79b4956b7ec478ec10244b5e2d33ac7d
a46025b9d05e3df30d610a8aef14f392c7058dc9
029e0a2e809fd6b5dbe76abe8b7a74936be306c9a8c27c814c4d44aa54623300

Detections

Analyzer	Verdict	Alert
fortinet	Malware
mnemonic_dns	Sinkholed
quad9	Sinkholed

HTTP Headers

GET /wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2 HTTP/1.1
Host: agenciainfluencer.pt
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://agenciainfluencer.pt/sorteios/?qbot_zip
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Mon, 07 Nov 2022 21:18:05 GMT
accept-ranges: bytes
content-length: 11224
content-type: application/javascript
date: Fri, 18 Nov 2022 21:55:34 GMT
server: Apache
X-Firefox-Spdy: h2

agenciainfluencer.pt/wp-content/plugins/live-composer-page-builder/css/dist/frontend.plugins.min.css?ver=1.5.22

185.32.188.5

200 OK

12 kB

URL HTTP/2
agenciainfluencer.pt/wp-content/plugins/live-composer-page-builder/css/dist/frontend.plugins.min.css?ver=1.5.22
IP
185.32.188.5:0
ASN
#62416 Sampling Line-servicos E Internet, Lda

File type
ASCII text, with very long lines (11672), with no line terminators
Size
12 kB (11672 bytes)
Hash
e140deaaea2802c9a592038e5b577db8
38253d97271a062e8f19ba3f46d1ee3541ba73a1
030e357ed6275a5709f87176b84f4ecfa4bf778479b792813e4ffac56d3c6293

Detections

Analyzer	Verdict	Alert
fortinet	Malware
mnemonic_dns	Sinkholed
quad9	Sinkholed

HTTP Headers

GET /wp-content/plugins/live-composer-page-builder/css/dist/frontend.plugins.min.css?ver=1.5.22 HTTP/1.1
Host: agenciainfluencer.pt
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://agenciainfluencer.pt/sorteios/?qbot_zip
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Mon, 07 Nov 2022 21:27:26 GMT
accept-ranges: bytes
content-length: 11672
content-type: text/css
date: Fri, 18 Nov 2022 21:55:34 GMT
server: Apache
X-Firefox-Spdy: h2

agenciainfluencer.pt/wp-content/plugins/lc-extensions/extensions/openstreetmap/css/leaflet.css?ver=6.1.1

185.32.188.5

200 OK

14 kB

URL HTTP/2
agenciainfluencer.pt/wp-content/plugins/lc-extensions/extensions/openstreetmap/css/leaflet.css?ver=6.1.1
IP
185.32.188.5:0
ASN
#62416 Sampling Line-servicos E Internet, Lda

File type
ASCII text
Size
14 kB (13472 bytes)
Hash
740653c6719801b765db1484f704ccae
0de3b21c89596e7a00ad903fada17ec79798f5d2
23fdecd118c0421f9b880ee1cf17d3360035adb8fdb2d2d4c8d09ffeb5e395e3

Detections

Analyzer	Verdict	Alert
fortinet	Malware
mnemonic_dns	Sinkholed
quad9	Sinkholed

HTTP Headers

GET /wp-content/plugins/lc-extensions/extensions/openstreetmap/css/leaflet.css?ver=6.1.1 HTTP/1.1
Host: agenciainfluencer.pt
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://agenciainfluencer.pt/sorteios/?qbot_zip
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Fri, 11 Feb 2022 13:48:38 GMT
accept-ranges: bytes
content-length: 13472
content-type: text/css
date: Fri, 18 Nov 2022 21:55:34 GMT
server: Apache
X-Firefox-Spdy: h2

agenciainfluencer.pt/wp-content/plugins/lc-extensions/extensions/menu/css/main.css?ver=6.1.1

185.32.188.5

200 OK

15 kB

URL HTTP/2
agenciainfluencer.pt/wp-content/plugins/lc-extensions/extensions/menu/css/main.css?ver=6.1.1
IP
185.32.188.5:0
ASN
#62416 Sampling Line-servicos E Internet, Lda

File type
Unicode text, UTF-8 text, with CRLF line terminators
Size
15 kB (14605 bytes)
Hash
9726ac427cad6de274d70ef2e60c88af
7888862cc29bce97c0d405697e66df789bea9655
482fd41358a2a6d75984edabe1bb19ca3c5cd261913c45ca52ddefeab48fd1c8

Detections

Analyzer	Verdict	Alert
fortinet	Malware
mnemonic_dns	Sinkholed
quad9	Sinkholed

HTTP Headers

GET /wp-content/plugins/lc-extensions/extensions/menu/css/main.css?ver=6.1.1 HTTP/1.1
Host: agenciainfluencer.pt
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://agenciainfluencer.pt/sorteios/?qbot_zip
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Fri, 11 Feb 2022 13:48:38 GMT
accept-ranges: bytes
content-length: 14605
content-type: text/css
date: Fri, 18 Nov 2022 21:55:34 GMT
server: Apache
X-Firefox-Spdy: h2

agenciainfluencer.pt/wp-includes/js/dist/vendor/wp-polyfill.min.js?ver=3.15.0

185.32.188.5

200 OK

18 kB

URL HTTP/2
agenciainfluencer.pt/wp-includes/js/dist/vendor/wp-polyfill.min.js?ver=3.15.0
IP
185.32.188.5:0
ASN
#62416 Sampling Line-servicos E Internet, Lda

File type
Unicode text, UTF-8 text, with very long lines (17819), with no line terminators
Size
18 kB (17823 bytes)
Hash
e495a4709e3eae31c67f8263f25d2d39
d43ba6a092e4823a71f3bff75d5ed279a481636b
1c1fef6e6b4f9832603850b9b6562e74d9a6a3700ba836efe88facc577121e8b

Detections

Analyzer	Verdict	Alert
fortinet	Malware
mnemonic_dns	Sinkholed
quad9	Sinkholed

HTTP Headers

GET /wp-includes/js/dist/vendor/wp-polyfill.min.js?ver=3.15.0 HTTP/1.1
Host: agenciainfluencer.pt
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://agenciainfluencer.pt/sorteios/?qbot_zip
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Mon, 07 Nov 2022 21:18:05 GMT
accept-ranges: bytes
content-length: 17823
content-type: application/javascript
date: Fri, 18 Nov 2022 21:55:34 GMT
server: Apache
X-Firefox-Spdy: h2

agenciainfluencer.pt/wp-content/plugins/cookie-law-info/legacy/public/css/cookie-law-info-gdpr.css?ver=3.0.5

185.32.188.5

200 OK

27 kB

URL HTTP/2
agenciainfluencer.pt/wp-content/plugins/cookie-law-info/legacy/public/css/cookie-law-info-gdpr.css?ver=3.0.5
IP
185.32.188.5:0
ASN
#62416 Sampling Line-servicos E Internet, Lda

File type
ASCII text
Size
27 kB (27249 bytes)
Hash
359aca8a88b2331aa34ac505acad9911
800a4f56bb87049e1f0d45cf93c4e8ef79144b45
655ae452d922f501b62c7028fc35e238138de989387381cc1ed9cea9085864db

Detections

Analyzer	Verdict	Alert
mnemonic_dns	Sinkholed
quad9	Sinkholed

HTTP Headers

GET /wp-content/plugins/cookie-law-info/legacy/public/css/cookie-law-info-gdpr.css?ver=3.0.5 HTTP/1.1
Host: agenciainfluencer.pt
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://agenciainfluencer.pt/sorteios/?qbot_zip
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Mon, 07 Nov 2022 21:28:25 GMT
accept-ranges: bytes
content-length: 27249
content-type: text/css
date: Fri, 18 Nov 2022 21:55:34 GMT
server: Apache
X-Firefox-Spdy: h2

agenciainfluencer.pt/wp-includes/css/dist/block-library/style.min.css?ver=6.1.1

185.32.188.5

200 OK

95 kB

URL HTTP/2
agenciainfluencer.pt/wp-includes/css/dist/block-library/style.min.css?ver=6.1.1
IP
185.32.188.5:0
ASN
#62416 Sampling Line-servicos E Internet, Lda

File type
ASCII text, with very long lines (47826)
Size
95 kB (94889 bytes)
Hash
71d925864153f0edf91037f3d31048e8
cc16a0524ac63b5ce29f703a66412224f0dd771a
c324ef26b20264369e4568dc9ef1c5cb1f325f6bc4e8b7c01f7fe93fa353276a

Detections

Analyzer	Verdict	Alert
fortinet	Malware
mnemonic_dns	Sinkholed
quad9	Sinkholed

HTTP Headers

GET /wp-includes/css/dist/block-library/style.min.css?ver=6.1.1 HTTP/1.1
Host: agenciainfluencer.pt
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://agenciainfluencer.pt/sorteios/?qbot_zip
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Wed, 16 Nov 2022 05:28:03 GMT
accept-ranges: bytes
content-length: 94889
content-type: text/css
date: Fri, 18 Nov 2022 21:55:34 GMT
server: Apache
X-Firefox-Spdy: h2

agenciainfluencer.pt/wp-content/themes/seowp/iconfont/style.css?ver=2.2.2

185.32.188.5

200 OK

38 kB

URL HTTP/2
agenciainfluencer.pt/wp-content/themes/seowp/iconfont/style.css?ver=2.2.2
IP
185.32.188.5:0
ASN
#62416 Sampling Line-servicos E Internet, Lda

File type
ASCII text
Size
38 kB (38418 bytes)
Hash
bce269f6cf94c960d18347f393ac066f
e9130e9ee811ff2e22f8b090ddcf3aa03f26d900
45bbccd8d360ebc0907b5981f3a6a7a687ede57663e0e323c0d8726d7ea7fd17

Detections

Analyzer	Verdict	Alert
fortinet	Malware
mnemonic_dns	Sinkholed
quad9	Sinkholed

HTTP Headers

GET /wp-content/themes/seowp/iconfont/style.css?ver=2.2.2 HTTP/1.1
Host: agenciainfluencer.pt
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://agenciainfluencer.pt/sorteios/?qbot_zip
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Thu, 10 Feb 2022 17:26:15 GMT
accept-ranges: bytes
content-length: 38418
content-type: text/css
date: Fri, 18 Nov 2022 21:55:34 GMT
server: Apache
X-Firefox-Spdy: h2

agenciainfluencer.pt/wp-content/plugins/cookie-law-info/legacy/public/js/cookie-law-info-public.js?ver=3.0.5

185.32.188.5

200 OK

34 kB

URL HTTP/2
agenciainfluencer.pt/wp-content/plugins/cookie-law-info/legacy/public/js/cookie-law-info-public.js?ver=3.0.5
IP
185.32.188.5:0
ASN
#62416 Sampling Line-servicos E Internet, Lda

File type
ASCII text
Size
34 kB (34179 bytes)
Hash
dffa195b546cf1dfd52f2206955eb892
a3d48e8f126eb96d12191d76ed71ad2bc8651d59
6c52384c7b0641dd1ead85d079c22d39bcc6dc5f2537afb1e6396bb619771a3f

Detections

Analyzer	Verdict	Alert
mnemonic_dns	Sinkholed
quad9	Sinkholed

HTTP Headers

GET /wp-content/plugins/cookie-law-info/legacy/public/js/cookie-law-info-public.js?ver=3.0.5 HTTP/1.1
Host: agenciainfluencer.pt
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://agenciainfluencer.pt/sorteios/?qbot_zip
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Mon, 07 Nov 2022 21:28:25 GMT
accept-ranges: bytes
content-length: 34179
content-type: application/javascript
date: Fri, 18 Nov 2022 21:55:34 GMT
server: Apache
X-Firefox-Spdy: h2

agenciainfluencer.pt/wp-content/plugins/live-composer-page-builder/css/dist/frontend.min.css?ver=1.5.22

185.32.188.5

200 OK

56 kB

URL HTTP/2
agenciainfluencer.pt/wp-content/plugins/live-composer-page-builder/css/dist/frontend.min.css?ver=1.5.22
IP
185.32.188.5:0
ASN
#62416 Sampling Line-servicos E Internet, Lda

File type
ASCII text, with very long lines (55476), with CRLF line terminators
Size
56 kB (55478 bytes)
Hash
4c05f5ed5d08ded8cb88597dd3625ad6
44da6d0c35a7cca153cbdb6670523410c55f370c
9580f593915a6b9a511c6938641c1541840d07f07043ff71f44203bcb48b4674

Detections

Analyzer	Verdict	Alert
mnemonic_dns	Sinkholed
quad9	Sinkholed

HTTP Headers

GET /wp-content/plugins/live-composer-page-builder/css/dist/frontend.min.css?ver=1.5.22 HTTP/1.1
Host: agenciainfluencer.pt
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://agenciainfluencer.pt/sorteios/?qbot_zip
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Mon, 07 Nov 2022 21:27:26 GMT
accept-ranges: bytes
content-length: 55478
content-type: text/css
date: Fri, 18 Nov 2022 21:55:34 GMT
server: Apache
X-Firefox-Spdy: h2

agenciainfluencer.pt/wp-content/plugins/live-composer-page-builder/css/font-awesome.css?ver=1.5.22

185.32.188.5

200 OK

54 kB

URL HTTP/2
agenciainfluencer.pt/wp-content/plugins/live-composer-page-builder/css/font-awesome.css?ver=1.5.22
IP
185.32.188.5:0
ASN
#62416 Sampling Line-servicos E Internet, Lda

File type
ASCII text, with CRLF line terminators
Size
54 kB (54374 bytes)
Hash
1de67b411300aa9b55b39a988ff9021b
fc31f8f1cdbcb8e196429599e358da7148e341c8
27f73f5201939dead73bb840b89ef9255dfa50a01b2b63d83670571a010cba4b

Detections

Analyzer	Verdict	Alert
fortinet	Malware
mnemonic_dns	Sinkholed
quad9	Sinkholed

HTTP Headers

GET /wp-content/plugins/live-composer-page-builder/css/font-awesome.css?ver=1.5.22 HTTP/1.1
Host: agenciainfluencer.pt
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://agenciainfluencer.pt/sorteios/?qbot_zip
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Mon, 07 Nov 2022 21:27:26 GMT
accept-ranges: bytes
content-length: 54374
content-type: text/css
date: Fri, 18 Nov 2022 21:55:34 GMT
server: Apache
X-Firefox-Spdy: h2

agenciainfluencer.pt/wp-content/themes/seowp/style.css?ver=1644513974

185.32.188.5

200 OK

57 kB

URL HTTP/2
agenciainfluencer.pt/wp-content/themes/seowp/style.css?ver=1644513974
IP
185.32.188.5:0
ASN
#62416 Sampling Line-servicos E Internet, Lda

File type
ASCII text, with very long lines (41236)
Size
57 kB (57334 bytes)
Hash
38ec7b8ebc77f1c9d64198e090f8530e
cc108f8c60de04801c666ebab6709afe5465ba12
fa1cfdebd3454c79c2cbc48df9edf07b866f0c6bd092a1d4864138292417a3cc

Detections

Analyzer	Verdict	Alert
fortinet	Malware
mnemonic_dns	Sinkholed
quad9	Sinkholed

HTTP Headers

GET /wp-content/themes/seowp/style.css?ver=1644513974 HTTP/1.1
Host: agenciainfluencer.pt
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://agenciainfluencer.pt/sorteios/?qbot_zip
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Thu, 10 Feb 2022 17:26:14 GMT
accept-ranges: bytes
content-length: 57334
content-type: text/css
date: Fri, 18 Nov 2022 21:55:34 GMT
server: Apache
X-Firefox-Spdy: h2

agenciainfluencer.pt/wp-content/plugins/live-composer-page-builder/js/dist/client_plugins.min.js?ver=1.5.22

185.32.188.5

200 OK

46 kB

URL HTTP/2
agenciainfluencer.pt/wp-content/plugins/live-composer-page-builder/js/dist/client_plugins.min.js?ver=1.5.22
IP
185.32.188.5:0
ASN
#62416 Sampling Line-servicos E Internet, Lda

File type
ASCII text, with very long lines (23084), with CRLF line terminators
Size
46 kB (46547 bytes)
Hash
4fd6a0362b1e359d7c5e07cacc458f48
59370301272ca49d27e3dc0f6a6142c42c60ac9b
d7641f4149eebcb76a616275977b7374ef9f8b4686fd50b34824b623331589f1

Detections

Analyzer	Verdict	Alert
fortinet	Malware
mnemonic_dns	Sinkholed
quad9	Sinkholed

HTTP Headers

GET /wp-content/plugins/live-composer-page-builder/js/dist/client_plugins.min.js?ver=1.5.22 HTTP/1.1
Host: agenciainfluencer.pt
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://agenciainfluencer.pt/sorteios/?qbot_zip
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Mon, 07 Nov 2022 21:27:26 GMT
accept-ranges: bytes
content-length: 46547
content-type: application/javascript
date: Fri, 18 Nov 2022 21:55:34 GMT
server: Apache
X-Firefox-Spdy: h2

agenciainfluencer.pt/wp-content/plugins/easy-social-share-buttons3/assets/css/essb-subscribe.min.css?ver=60.2.9

185.32.188.5

200 OK

55 kB

URL HTTP/2
agenciainfluencer.pt/wp-content/plugins/easy-social-share-buttons3/assets/css/essb-subscribe.min.css?ver=60.2.9
IP
185.32.188.5:0
ASN
#62416 Sampling Line-servicos E Internet, Lda

File type
ASCII text, with very long lines (55448), with no line terminators
Size
55 kB (55448 bytes)
Hash
ef080e89a3c54b32bb031fa21a22641d
76685db0f44825e402bcbd6fd6bfef8712850978
178692918d91434ec517894129959032cbc182d87b29a604f56f3692bfab6cff

Detections

Analyzer	Verdict	Alert
fortinet	Malware
mnemonic_dns	Sinkholed
quad9	Sinkholed

HTTP Headers

GET /wp-content/plugins/easy-social-share-buttons3/assets/css/essb-subscribe.min.css?ver=60.2.9 HTTP/1.1
Host: agenciainfluencer.pt
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://agenciainfluencer.pt/sorteios/?qbot_zip
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Fri, 11 Feb 2022 13:47:58 GMT
accept-ranges: bytes
content-length: 55448
content-type: text/css
date: Fri, 18 Nov 2022 21:55:34 GMT
server: Apache
X-Firefox-Spdy: h2

agenciainfluencer.pt/wp-content/uploads/icon-globe-cogs-database.webp

185.32.188.5

200 OK

14 kB

URL HTTP/2
agenciainfluencer.pt/wp-content/uploads/icon-globe-cogs-database.webp
IP
185.32.188.5:0
ASN
#62416 Sampling Line-servicos E Internet, Lda

File type
RIFF (little-endian) data, Web/P image\012- data
Size
14 kB (14400 bytes)
Hash
73562d29ac4eac914be90e44af4edea3
57b5c34680b72096902c5d88e19f73448d1ff375
91d6956ed28fa92665ecb6e72574fb586b30f367f1c9a37255fe079a12ea8a45

Detections

Analyzer	Verdict	Alert
fortinet	Malware
mnemonic_dns	Sinkholed
quad9	Sinkholed

HTTP Headers

GET /wp-content/uploads/icon-globe-cogs-database.webp HTTP/1.1
Host: agenciainfluencer.pt
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://agenciainfluencer.pt/sorteios/?qbot_zip
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Fri, 18 Feb 2022 10:31:52 GMT
accept-ranges: bytes
content-length: 14400
content-type: image/webp
date: Fri, 18 Nov 2022 21:55:34 GMT
server: Apache
X-Firefox-Spdy: h2

agenciainfluencer.pt/wp-content/plugins/woocommerce/assets/css/woocommerce.css?ver=7.1.0

185.32.188.5

200 OK

63 kB

URL HTTP/2
agenciainfluencer.pt/wp-content/plugins/woocommerce/assets/css/woocommerce.css?ver=7.1.0
IP
185.32.188.5:0
ASN
#62416 Sampling Line-servicos E Internet, Lda

File type
Unicode text, UTF-8 text, with very long lines (62781), with no line terminators
Size
63 kB (62783 bytes)
Hash
4911ee48036e51ae4980b7be957d899f
e577252607817c3fdc773123f41220c8a910d95a
a831fbad3ff846921596056c21beb9c77328927cc84403156ec0fcfa330d338a

Detections

Analyzer	Verdict	Alert
fortinet	Malware
mnemonic_dns	Sinkholed
quad9	Sinkholed

HTTP Headers

GET /wp-content/plugins/woocommerce/assets/css/woocommerce.css?ver=7.1.0 HTTP/1.1
Host: agenciainfluencer.pt
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://agenciainfluencer.pt/sorteios/?qbot_zip
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Tue, 08 Nov 2022 20:41:43 GMT
accept-ranges: bytes
content-length: 62783
content-type: text/css
date: Fri, 18 Nov 2022 21:55:34 GMT
server: Apache
X-Firefox-Spdy: h2

agenciainfluencer.pt/wp-content/plugins/woocommerce-google-adwords-conversion-tracking-tag/js/public/wpm-public.p1.min.js?ver=1.26.0

185.32.188.5

200 OK

70 kB

URL HTTP/2
agenciainfluencer.pt/wp-content/plugins/woocommerce-google-adwords-conversion-tracking-tag/js/public/wpm-public.p1.min.js?ver=1.26.0
IP
185.32.188.5:0
ASN
#62416 Sampling Line-servicos E Internet, Lda

File type
ASCII text, with very long lines (65536), with no line terminators
Size
70 kB (69618 bytes)
Hash
540e064630fbb29ae7c086e26b581ef0
d37a9c838dbdb83e6a87c520ad562ae51d4bf553
d1f30d10c94e2d00669ef3445a4fb9cbe66fd18eed6c18e15be11a863bb98bb0

Detections

Analyzer	Verdict	Alert
fortinet	Malware
mnemonic_dns	Sinkholed
quad9	Sinkholed

HTTP Headers

GET /wp-content/plugins/woocommerce-google-adwords-conversion-tracking-tag/js/public/wpm-public.p1.min.js?ver=1.26.0 HTTP/1.1
Host: agenciainfluencer.pt
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://agenciainfluencer.pt/sorteios/?qbot_zip
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Mon, 07 Nov 2022 21:29:29 GMT
accept-ranges: bytes
content-length: 69618
content-type: application/javascript
date: Fri, 18 Nov 2022 21:55:34 GMT
server: Apache
X-Firefox-Spdy: h2

agenciainfluencer.pt/wp-content/plugins/masterslider/public/assets/css/masterslider.main.css?ver=30.2.14

185.32.188.5

200 OK

81 kB

URL HTTP/2
agenciainfluencer.pt/wp-content/plugins/masterslider/public/assets/css/masterslider.main.css?ver=30.2.14
IP
185.32.188.5:0
ASN
#62416 Sampling Line-servicos E Internet, Lda

File type
Unicode text, UTF-8 text, with CRLF, LF line terminators
Size
81 kB (81249 bytes)
Hash
a268097794c650a0d7b3eeea6f9e1594
9aaf6c0c2b6f6950ffd4d645a94c669655068963
89b3bb667432bca678f0d2529dafe50eb8670bfdc4d5ce12f91d314b087508b8

Detections

Analyzer	Verdict	Alert
mnemonic_dns	Sinkholed
quad9	Sinkholed

HTTP Headers

GET /wp-content/plugins/masterslider/public/assets/css/masterslider.main.css?ver=30.2.14 HTTP/1.1
Host: agenciainfluencer.pt
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://agenciainfluencer.pt/sorteios/?qbot_zip
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Fri, 11 Feb 2022 13:46:05 GMT
accept-ranges: bytes
content-length: 81249
content-type: text/css
date: Fri, 18 Nov 2022 21:55:34 GMT
server: Apache
X-Firefox-Spdy: h2

agenciainfluencer.pt/wp-includes/js/jquery/jquery.min.js?ver=3.6.1

185.32.188.5

200 OK

90 kB

URL HTTP/2
agenciainfluencer.pt/wp-includes/js/jquery/jquery.min.js?ver=3.6.1
IP
185.32.188.5:0
ASN
#62416 Sampling Line-servicos E Internet, Lda

File type
ASCII text, with very long lines (65447)
Size
90 kB (89684 bytes)
Hash
17738318d61d394f1de8890d589afaec
f6d0c4dc1399cf02d53f5753ad46573a8bbc2ac3
cc7403bab52ed166e24ea9324241045af370be482f5b594468f4a6ac6e7e7981

Detections

Analyzer	Verdict	Alert
mnemonic_dns	Sinkholed
quad9	Sinkholed

HTTP Headers

GET /wp-includes/js/jquery/jquery.min.js?ver=3.6.1 HTTP/1.1
Host: agenciainfluencer.pt
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://agenciainfluencer.pt/sorteios/?qbot_zip
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Mon, 07 Nov 2022 21:18:05 GMT
accept-ranges: bytes
content-length: 89684
content-type: application/javascript
date: Fri, 18 Nov 2022 21:55:34 GMT
server: Apache
X-Firefox-Spdy: h2

agenciainfluencer.pt/wp-content/plugins/chaty/js/cht-front-script.js?ver=1645843367

185.32.188.5

200 OK

79 kB

URL HTTP/2
agenciainfluencer.pt/wp-content/plugins/chaty/js/cht-front-script.js?ver=1645843367
IP
185.32.188.5:0
ASN
#62416 Sampling Line-servicos E Internet, Lda

File type
ASCII text, with very long lines (1670), with CRLF line terminators
Size
79 kB (79448 bytes)
Hash
023b3688d315424aacd828d8b71e9733
9e6df13c429d8a4e4beda9b9e2e42ddf7b4524d0
484dbcb4dd673b9b91990d44bae142f1331f2398dc64ec2d3339465844687303

Detections

Analyzer	Verdict	Alert
mnemonic_dns	Sinkholed
quad9	Sinkholed

HTTP Headers

GET /wp-content/plugins/chaty/js/cht-front-script.js?ver=1645843367 HTTP/1.1
Host: agenciainfluencer.pt
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://agenciainfluencer.pt/sorteios/?qbot_zip
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Sat, 26 Feb 2022 02:34:58 GMT
accept-ranges: bytes
content-length: 79448
content-type: application/javascript
date: Fri, 18 Nov 2022 21:55:34 GMT
server: Apache
X-Firefox-Spdy: h2

agenciainfluencer.pt/wp-content/plugins/lc-extensions/extensions/openstreetmap/js/leaflet.js?ver=6.1.1

185.32.188.5

200 OK

140 kB

URL HTTP/2
agenciainfluencer.pt/wp-content/plugins/lc-extensions/extensions/openstreetmap/js/leaflet.js?ver=6.1.1
IP
185.32.188.5:0
ASN
#62416 Sampling Line-servicos E Internet, Lda

File type
ASCII text, with very long lines (65325)
Size
140 kB (140540 bytes)
Hash
8a6ca7e8a00960f59e265e8a79e8559e
869977e7c60b77f9cce8a4d75530a992429d6864
640c1fd9cb20ebea970346bca291af465e46d0cc81b8f450c79723d21b6df692

Detections

Analyzer	Verdict	Alert
mnemonic_dns	Sinkholed
quad9	Sinkholed

HTTP Headers

GET /wp-content/plugins/lc-extensions/extensions/openstreetmap/js/leaflet.js?ver=6.1.1 HTTP/1.1
Host: agenciainfluencer.pt
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://agenciainfluencer.pt/sorteios/?qbot_zip
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Fri, 11 Feb 2022 13:48:38 GMT
accept-ranges: bytes
content-length: 140540
content-type: application/javascript
date: Fri, 18 Nov 2022 21:55:34 GMT
server: Apache
X-Firefox-Spdy: h2

agenciainfluencer.pt/wp-content/plugins/woocommerce/packages/woocommerce-blocks/build/wc-blocks-style.css?ver=8.7.5

185.32.188.5

200 OK

236 kB

URL HTTP/2
agenciainfluencer.pt/wp-content/plugins/woocommerce/packages/woocommerce-blocks/build/wc-blocks-style.css?ver=8.7.5
IP
185.32.188.5:0
ASN
#62416 Sampling Line-servicos E Internet, Lda

File type
Unicode text, UTF-8 text, with very long lines (65527), with no line terminators
Size
236 kB (235926 bytes)
Hash
1f7f24d802dda3c86486d768519911d4
cd5408ee57e21aa1c6cdd92b56ecc27e5ac8e714
ed9766c9f4ce4f6851e3d8416e9bec35b425dfc2b817b7647b1db8ff1a96c731

Detections

Analyzer	Verdict	Alert
fortinet	Malware
mnemonic_dns	Sinkholed
quad9	Sinkholed

HTTP Headers

GET /wp-content/plugins/woocommerce/packages/woocommerce-blocks/build/wc-blocks-style.css?ver=8.7.5 HTTP/1.1
Host: agenciainfluencer.pt
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://agenciainfluencer.pt/sorteios/?qbot_zip
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Tue, 08 Nov 2022 20:41:41 GMT
accept-ranges: bytes
content-length: 235926
content-type: text/css
date: Fri, 18 Nov 2022 21:55:34 GMT
server: Apache
X-Firefox-Spdy: h2

agenciainfluencer.pt/wp-content/uploads/digital-agency-logo-white.png

185.32.188.5

200 OK

5.6 kB

URL HTTP/2
agenciainfluencer.pt/wp-content/uploads/digital-agency-logo-white.png
IP
185.32.188.5:0
ASN
#62416 Sampling Line-servicos E Internet, Lda

File type
PNG image data, 541 x 95, 8-bit colormap, non-interlaced\012- data
Size
5.6 kB (5627 bytes)
Hash
3014516667fcd09f5c1208ed6c6b0c84
9a285bef3fea95c760f61c0893f58f7f2b020b01
3d5d2600de8c37619a60fdd0996bc229e6e0113d55b199afe9626d91c126f316

Detections

Analyzer	Verdict	Alert
mnemonic_dns	Sinkholed
quad9	Sinkholed

HTTP Headers

GET /wp-content/uploads/digital-agency-logo-white.png HTTP/1.1
Host: agenciainfluencer.pt
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://agenciainfluencer.pt/sorteios/?qbot_zip
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Fri, 18 Feb 2022 10:07:15 GMT
accept-ranges: bytes
content-length: 5627
content-type: image/png
date: Fri, 18 Nov 2022 21:55:34 GMT
server: Apache
X-Firefox-Spdy: h2

agenciainfluencer.pt/wp-content/uploads/digital-agency-logo.png

185.32.188.5

200 OK

5.7 kB

URL HTTP/2
agenciainfluencer.pt/wp-content/uploads/digital-agency-logo.png
IP
185.32.188.5:0
ASN
#62416 Sampling Line-servicos E Internet, Lda

File type
PNG image data, 541 x 95, 8-bit colormap, non-interlaced\012- data
Size
5.7 kB (5720 bytes)
Hash
6b6e9f27d43d0e54f3158d48ab2e5388
3e72515493d1c373158be4f54d739a3a47b50f93
fbe8a8f602da77fde720585854a7391f9807a5bcda5406583d7239d0e15c9651

Detections

Analyzer	Verdict	Alert
mnemonic_dns	Sinkholed
quad9	Sinkholed

HTTP Headers

GET /wp-content/uploads/digital-agency-logo.png HTTP/1.1
Host: agenciainfluencer.pt
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://agenciainfluencer.pt/sorteios/?qbot_zip
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Fri, 18 Feb 2022 09:40:25 GMT
accept-ranges: bytes
content-length: 5720
content-type: image/png
date: Fri, 18 Nov 2022 21:55:34 GMT
server: Apache
X-Firefox-Spdy: h2

agenciainfluencer.pt/wp-content/uploads/icon-laptop-skyscrapers-large-400x255.png

185.32.188.5

200 OK

38 kB

URL HTTP/2
agenciainfluencer.pt/wp-content/uploads/icon-laptop-skyscrapers-large-400x255.png
IP
185.32.188.5:0
ASN
#62416 Sampling Line-servicos E Internet, Lda

File type
PNG image data, 400 x 255, 8-bit/color RGBA, non-interlaced\012- data
Size
38 kB (37662 bytes)
Hash
e82fa5d0df3baa38696aba21595a8303
14abd521eeeee1dee46f4bf9e9f367fe5c8f1a1b
f7c9f2f48e81b459c61b0647d51091098895316994227c8656aaf2fe57d9333a

Detections

Analyzer	Verdict	Alert
mnemonic_dns	Sinkholed
quad9	Sinkholed

HTTP Headers

GET /wp-content/uploads/icon-laptop-skyscrapers-large-400x255.png HTTP/1.1
Host: agenciainfluencer.pt
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://agenciainfluencer.pt/sorteios/?qbot_zip
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Mon, 21 Feb 2022 11:10:14 GMT
accept-ranges: bytes
content-length: 37662
content-type: image/png
date: Fri, 18 Nov 2022 21:55:34 GMT
server: Apache
X-Firefox-Spdy: h2

agenciainfluencer.pt/wp-content/uploads/illustrations-like-startup-400x255.png

185.32.188.5

200 OK

39 kB

URL HTTP/2
agenciainfluencer.pt/wp-content/uploads/illustrations-like-startup-400x255.png
IP
185.32.188.5:0
ASN
#62416 Sampling Line-servicos E Internet, Lda

File type
PNG image data, 400 x 255, 8-bit/color RGBA, non-interlaced\012- data
Size
39 kB (39428 bytes)
Hash
a095d7063a9a39783ef4720ff07f4ee1
3e6929be42fd49ec0ea7a0276b8c4ea1318d7b8a
db97093a2172d4ef69d715ed02e635c96750a02cd69bbc9897e31c7677208022

Detections

Analyzer	Verdict	Alert
mnemonic_dns	Sinkholed
quad9	Sinkholed

HTTP Headers

GET /wp-content/uploads/illustrations-like-startup-400x255.png HTTP/1.1
Host: agenciainfluencer.pt
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://agenciainfluencer.pt/sorteios/?qbot_zip
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Mon, 21 Feb 2022 11:10:14 GMT
accept-ranges: bytes
content-length: 39428
content-type: image/png
date: Fri, 18 Nov 2022 21:55:34 GMT
server: Apache
X-Firefox-Spdy: h2

agenciainfluencer.pt/wp-content/uploads/icon-coins-graph-charts-large-400x255.png

185.32.188.5

200 OK

41 kB

URL HTTP/2
agenciainfluencer.pt/wp-content/uploads/icon-coins-graph-charts-large-400x255.png
IP
185.32.188.5:0
ASN
#62416 Sampling Line-servicos E Internet, Lda

File type
PNG image data, 400 x 255, 8-bit/color RGBA, non-interlaced\012- data
Size
41 kB (41071 bytes)
Hash
1afaa3eac8da380b51695dff92af17f5
9859ad8999f39e39be47e77d073ab44ec9794b0c
d9ea803f68efcb1bbb93440daca2bd8ec7c112d1aac80b879c89806717c422fe

Detections

Analyzer	Verdict	Alert
mnemonic_dns	Sinkholed
quad9	Sinkholed

HTTP Headers

GET /wp-content/uploads/icon-coins-graph-charts-large-400x255.png HTTP/1.1
Host: agenciainfluencer.pt
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://agenciainfluencer.pt/sorteios/?qbot_zip
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Mon, 21 Feb 2022 11:10:13 GMT
accept-ranges: bytes
content-length: 41071
content-type: image/png
date: Fri, 18 Nov 2022 21:55:34 GMT
server: Apache
X-Firefox-Spdy: h2

agenciainfluencer.pt/wp-content/uploads/illustrations-like-startup.png

185.32.188.5

200 OK

58 kB

URL HTTP/2
agenciainfluencer.pt/wp-content/uploads/illustrations-like-startup.png
IP
185.32.188.5:0
ASN
#62416 Sampling Line-servicos E Internet, Lda

File type
PNG image data, 1440 x 1024, 8-bit colormap, non-interlaced\012- data
Size
58 kB (58306 bytes)
Hash
2926cdf3e40a4b9736faeab838ca022e
c81f1341e4d42ed1e57cc87c75ca406a6ac9c7a9
ab052b29152b35dfaebba89f00742f91877b9e911daca9051a1cab6d8435f390

Detections

Analyzer	Verdict	Alert
mnemonic_dns	Sinkholed
quad9	Sinkholed

HTTP Headers

GET /wp-content/uploads/illustrations-like-startup.png HTTP/1.1
Host: agenciainfluencer.pt
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://agenciainfluencer.pt/sorteios/?qbot_zip
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Fri, 18 Feb 2022 10:29:16 GMT
accept-ranges: bytes
content-length: 58306
content-type: image/png
date: Fri, 18 Nov 2022 21:55:34 GMT
server: Apache
X-Firefox-Spdy: h2

agenciainfluencer.pt/wp-includes/css/dashicons.min.css?ver=6.1.1

185.32.188.5

200 OK

59 kB

URL HTTP/2
agenciainfluencer.pt/wp-includes/css/dashicons.min.css?ver=6.1.1
IP
185.32.188.5:0
ASN
#62416 Sampling Line-servicos E Internet, Lda

File type
ASCII text, with very long lines (58981)
Size
59 kB (59016 bytes)
Hash
d68d6bf519169d86e155bad0bed833f8
27ba9c67d0e775fc4e6dd62011daf4c3902698fc
c21e5a2b32c47bc5f9d9efc97bc0e29fd081946d1d3ebffc5621cfafb1d3960e

Detections

Analyzer	Verdict	Alert
fortinet	Malware
mnemonic_dns	Sinkholed
quad9	Sinkholed

HTTP Headers

GET /wp-includes/css/dashicons.min.css?ver=6.1.1 HTTP/1.1
Host: agenciainfluencer.pt
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://agenciainfluencer.pt/sorteios/?qbot_zip
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Mon, 07 Nov 2022 21:18:06 GMT
accept-ranges: bytes
content-length: 59016
content-type: text/css
date: Fri, 18 Nov 2022 21:55:34 GMT
server: Apache
X-Firefox-Spdy: h2

agenciainfluencer.pt/wp-content/plugins/ninja-forms/assets/css/font-awesome.min.css?ver=6.1.1

185.32.188.5

200 OK

28 kB

URL HTTP/2
agenciainfluencer.pt/wp-content/plugins/ninja-forms/assets/css/font-awesome.min.css?ver=6.1.1
IP
185.32.188.5:0
ASN
#62416 Sampling Line-servicos E Internet, Lda

File type
ASCII text, with very long lines (27303)
Size
28 kB (27466 bytes)
Hash
4fbd15cb6047af93373f4f895639c8bf
12d6861075de8e293265ff6ff03b1f3adcb44c76
ddd92f10ad162c7449eff0acaf40598c05b1111739587edb75e5326b6697c5d5

Detections

Analyzer	Verdict	Alert
mnemonic_dns	Sinkholed
quad9	Sinkholed

HTTP Headers

GET /wp-content/plugins/ninja-forms/assets/css/font-awesome.min.css?ver=6.1.1 HTTP/1.1
Host: agenciainfluencer.pt
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://agenciainfluencer.pt/sorteios/?qbot_zip
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Wed, 15 Jun 2022 07:06:20 GMT
accept-ranges: bytes
content-length: 27466
content-type: text/css
date: Fri, 18 Nov 2022 21:55:34 GMT
server: Apache
X-Firefox-Spdy: h2

agenciainfluencer.pt/wp-content/plugins/ninja-forms/assets/css/display-opinions-light.css?ver=6.1.1

185.32.188.5

200 OK

45 kB

URL HTTP/2
agenciainfluencer.pt/wp-content/plugins/ninja-forms/assets/css/display-opinions-light.css?ver=6.1.1
IP
185.32.188.5:0
ASN
#62416 Sampling Line-servicos E Internet, Lda

File type
ASCII text, with very long lines (44627)
Size
45 kB (44683 bytes)
Hash
eb0f31bb0da73ba1ea9b3c4b13a27f15
9233aadf1fd5912175d94f138ee1ad0b981d58f3
3f5ab26f1b91b1a610d792c54a9545194a8651e6b6e6dfd9e440dd5d75c2c966

Detections

Analyzer	Verdict	Alert
mnemonic_dns	Sinkholed
quad9	Sinkholed

HTTP Headers

GET /wp-content/plugins/ninja-forms/assets/css/display-opinions-light.css?ver=6.1.1 HTTP/1.1
Host: agenciainfluencer.pt
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://agenciainfluencer.pt/sorteios/?qbot_zip
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Wed, 15 Jun 2022 07:06:20 GMT
accept-ranges: bytes
content-length: 44683
content-type: text/css
date: Fri, 18 Nov 2022 21:55:34 GMT
server: Apache
X-Firefox-Spdy: h2

fonts.googleapis.com/css?family=Rubik%3A300%2Cregular%2C500%2C700%2C900&ver=2.2.2

142.250.74.10

200 OK

6.7 kB

URL HTTP/2
fonts.googleapis.com/css?family=Rubik%3A300%2Cregular%2C500%2C700%2C900&ver=2.2.2
IP
142.250.74.10:0
ASN
#15169 GOOGLE

File type
data
Size
6.7 kB (6685 bytes)
Hash
4062de4727ec9712dfb4dfb434a14185
a33c1657c3bd56f3451d83d427960d720db22e06
2d7ec263f89ea23ec1a78166d33e5380646adbfde09da62245ce1bef8d76fb3c

HTTP Headers

GET /css?family=Rubik%3A300%2Cregular%2C500%2C700%2C900&ver=2.2.2 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://agenciainfluencer.pt/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Fri, 18 Nov 2022 21:55:39 GMT
date: Fri, 18 Nov 2022 21:55:39 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

agenciainfluencer.pt/wp-content/plugins/masterslider/public/assets/js/jquery.easing.min.js?ver=30.2.14

185.32.188.5

200 OK

5.6 kB

URL HTTP/2
agenciainfluencer.pt/wp-content/plugins/masterslider/public/assets/js/jquery.easing.min.js?ver=30.2.14
IP
185.32.188.5:0
ASN
#62416 Sampling Line-servicos E Internet, Lda

File type
Unicode text, UTF-8 text, with very long lines (3601)
Size
5.6 kB (5555 bytes)
Hash
3eac3c72434a0945b92dd4a01f7b6b4e
7767b356530e39cd76ec259320b0b2774b4097a8
ac3f3a757bfbfc9d92bc8f5e6e6362e5d4ae41dbf3cebacdda9b8f71afc82e5b

Detections

Analyzer	Verdict	Alert
fortinet	Malware
mnemonic_dns	Sinkholed
quad9	Sinkholed

HTTP Headers

GET /wp-content/plugins/masterslider/public/assets/js/jquery.easing.min.js?ver=30.2.14 HTTP/1.1
Host: agenciainfluencer.pt
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://agenciainfluencer.pt/sorteios/?qbot_zip
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Fri, 11 Feb 2022 13:46:05 GMT
accept-ranges: bytes
content-length: 5555
content-type: application/javascript
date: Fri, 18 Nov 2022 21:55:34 GMT
server: Apache
X-Firefox-Spdy: h2

agenciainfluencer.pt/wp-includes/js/underscore.min.js?ver=1.13.4

185.32.188.5

200 OK

19 kB

URL HTTP/2
agenciainfluencer.pt/wp-includes/js/underscore.min.js?ver=1.13.4
IP
185.32.188.5:0
ASN
#62416 Sampling Line-servicos E Internet, Lda

File type
ASCII text, with very long lines (18798)
Size
19 kB (18833 bytes)
Hash
f88d5720bb454ed5d204cbdb56901f6b
f1952292fde4b15936e9aac16b2b9896684db95b
726b820e44f6ab90ad991d30a4bf26d3a5d71493cbcd1fb1efd0d14e89b9df2a

Detections

Analyzer	Verdict	Alert
mnemonic_dns	Sinkholed
quad9	Sinkholed

HTTP Headers

GET /wp-includes/js/underscore.min.js?ver=1.13.4 HTTP/1.1
Host: agenciainfluencer.pt
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://agenciainfluencer.pt/sorteios/?qbot_zip
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Mon, 07 Nov 2022 21:18:05 GMT
accept-ranges: bytes
content-length: 18833
content-type: application/javascript
date: Fri, 18 Nov 2022 21:55:34 GMT
server: Apache
X-Firefox-Spdy: h2

agenciainfluencer.pt/wp-includes/js/backbone.min.js?ver=1.4.1

185.32.188.5

200 OK

24 kB

URL HTTP/2
agenciainfluencer.pt/wp-includes/js/backbone.min.js?ver=1.4.1
IP
185.32.188.5:0
ASN
#62416 Sampling Line-servicos E Internet, Lda

File type
ASCII text, with very long lines (23813)
Size
24 kB (23848 bytes)
Hash
3946486d524bca0329b4572f273e0fc4
c5d80848f05dee7165529b34c67d52164ef23531
a714d3e7cd0751a5f1428881d65043743826415dbdcf7b3f3bc3f938180f18da

Detections

Analyzer	Verdict	Alert
fortinet	Malware
mnemonic_dns	Sinkholed
quad9	Sinkholed

HTTP Headers

GET /wp-includes/js/backbone.min.js?ver=1.4.1 HTTP/1.1
Host: agenciainfluencer.pt
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://agenciainfluencer.pt/sorteios/?qbot_zip
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Mon, 07 Nov 2022 21:18:05 GMT
accept-ranges: bytes
content-length: 23848
content-type: application/javascript
date: Fri, 18 Nov 2022 21:55:34 GMT
server: Apache
X-Firefox-Spdy: h2

agenciainfluencer.pt/wp-content/plugins/ninja-forms/assets/js/min/front-end-deps.js?ver=3.6.11

185.32.188.5

200 OK

63 kB

URL HTTP/2
agenciainfluencer.pt/wp-content/plugins/ninja-forms/assets/js/min/front-end-deps.js?ver=3.6.11
IP
185.32.188.5:0
ASN
#62416 Sampling Line-servicos E Internet, Lda

File type
ASCII text, with very long lines (32153)
Size
63 kB (63132 bytes)
Hash
2d35dc40681cdad8d366df8e6f3286d6
010e661020d1953eeb02fd182cfa5ec8fab589d8
f0b7629902d7f320b61dd5d8c7c8e069dd66fc607eb03a77a7d720c7a1140421

Detections

Analyzer	Verdict	Alert
mnemonic_dns	Sinkholed
quad9	Sinkholed

HTTP Headers

GET /wp-content/plugins/ninja-forms/assets/js/min/front-end-deps.js?ver=3.6.11 HTTP/1.1
Host: agenciainfluencer.pt
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://agenciainfluencer.pt/sorteios/?qbot_zip
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Wed, 15 Jun 2022 07:06:20 GMT
accept-ranges: bytes
content-length: 63132
content-type: application/javascript
date: Fri, 18 Nov 2022 21:55:34 GMT
server: Apache
X-Firefox-Spdy: h2

agenciainfluencer.pt/wp-content/plugins/ninja-forms-mailchimp-optins/js/mailchimp.min.js?ver=6.1.1

185.32.188.5

200 OK

539 B

URL HTTP/2
agenciainfluencer.pt/wp-content/plugins/ninja-forms-mailchimp-optins/js/mailchimp.min.js?ver=6.1.1
IP
185.32.188.5:0
ASN
#62416 Sampling Line-servicos E Internet, Lda

File type
ASCII text, with very long lines (439)
Size
539 B (539 bytes)
Hash
793f0281b49c50aba6e4b8c242cd149b
21fc808537a80bd203de10f0fc0f472aaba5ad70
6dbf0d0b5239617b15f7a92eb3f115436df31796b3ff819b050c6abe638e81bc

Detections

Analyzer	Verdict	Alert
fortinet	Malware
mnemonic_dns	Sinkholed
quad9	Sinkholed

HTTP Headers

GET /wp-content/plugins/ninja-forms-mailchimp-optins/js/mailchimp.min.js?ver=6.1.1 HTTP/1.1
Host: agenciainfluencer.pt
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://agenciainfluencer.pt/sorteios/?qbot_zip
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Fri, 11 Feb 2022 13:47:12 GMT
accept-ranges: bytes
content-length: 539
content-type: application/javascript
date: Fri, 18 Nov 2022 21:55:34 GMT
server: Apache
X-Firefox-Spdy: h2

agenciainfluencer.pt/wp-includes/js/mediaelement/mediaelement-migrate.min.js?ver=6.1.1

185.32.188.5

200 OK

1.2 kB

URL HTTP/2
agenciainfluencer.pt/wp-includes/js/mediaelement/mediaelement-migrate.min.js?ver=6.1.1
IP
185.32.188.5:0
ASN
#62416 Sampling Line-servicos E Internet, Lda

File type
ASCII text, with very long lines (1191), with no line terminators
Size
1.2 kB (1191 bytes)
Hash
51300497928562f8c86c7aaba99237cd
e5826832b85c6afc6502b74cbb8ac5394b04c363
6d161e98e47ae150b51211443eef37040fb6269dcf85ad2048548066dca99e6f

Detections

Analyzer	Verdict	Alert
fortinet	Malware
mnemonic_dns	Sinkholed
quad9	Sinkholed

HTTP Headers

GET /wp-includes/js/mediaelement/mediaelement-migrate.min.js?ver=6.1.1 HTTP/1.1
Host: agenciainfluencer.pt
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://agenciainfluencer.pt/sorteios/?qbot_zip
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Mon, 07 Nov 2022 21:18:05 GMT
accept-ranges: bytes
content-length: 1191
content-type: application/javascript
date: Fri, 18 Nov 2022 21:55:34 GMT
server: Apache
X-Firefox-Spdy: h2

agenciainfluencer.pt/wp-includes/js/mediaelement/wp-mediaelement.min.js?ver=6.1.1

185.32.188.5

200 OK

906 B

URL HTTP/2
agenciainfluencer.pt/wp-includes/js/mediaelement/wp-mediaelement.min.js?ver=6.1.1
IP
185.32.188.5:0
ASN
#62416 Sampling Line-servicos E Internet, Lda

File type
HTML document, ASCII text, with very long lines (906), with no line terminators
Size
906 B (906 bytes)
Hash
2c6d3b562a48e0df5474999dd47e58fb
945220e990eb176c14e53cc663fb01e04e31b59f
3e6131330963c472b950b8aaf544ba3829735b8ccb103d614ba7793e3a786550

Detections

Analyzer	Verdict	Alert
mnemonic_dns	Sinkholed
quad9	Sinkholed

HTTP Headers

GET /wp-includes/js/mediaelement/wp-mediaelement.min.js?ver=6.1.1 HTTP/1.1
Host: agenciainfluencer.pt
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://agenciainfluencer.pt/sorteios/?qbot_zip
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Mon, 07 Nov 2022 21:18:05 GMT
accept-ranges: bytes
content-length: 906
content-type: application/javascript
date: Fri, 18 Nov 2022 21:55:34 GMT
server: Apache
X-Firefox-Spdy: h2

agenciainfluencer.pt/wp-includes/js/imagesloaded.min.js?ver=4.1.4

185.32.188.5

200 OK

5.6 kB

URL HTTP/2
agenciainfluencer.pt/wp-includes/js/imagesloaded.min.js?ver=4.1.4
IP
185.32.188.5:0
ASN
#62416 Sampling Line-servicos E Internet, Lda

File type
ASCII text, with very long lines (5477)
Size
5.6 kB (5629 bytes)
Hash
3a56752b736635bf69cb069b8818cbfd
42e0951fe74bb3f56a30f51291823bcd4a84d76e
ff4bd34aa98a0214833619d3d751838db015722dfbbec15cd14dadc66cd67869

Detections

Analyzer	Verdict	Alert
fortinet	Malware
mnemonic_dns	Sinkholed
quad9	Sinkholed

HTTP Headers

GET /wp-includes/js/imagesloaded.min.js?ver=4.1.4 HTTP/1.1
Host: agenciainfluencer.pt
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://agenciainfluencer.pt/sorteios/?qbot_zip
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Mon, 07 Nov 2022 21:18:05 GMT
accept-ranges: bytes
content-length: 5629
content-type: application/javascript
date: Fri, 18 Nov 2022 21:55:34 GMT
server: Apache
X-Firefox-Spdy: h2

agenciainfluencer.pt/wp-includes/js/jquery/jquery.masonry.min.js?ver=3.1.2b

185.32.188.5

200 OK

1.8 kB

URL HTTP/2
agenciainfluencer.pt/wp-includes/js/jquery/jquery.masonry.min.js?ver=3.1.2b
IP
185.32.188.5:0
ASN
#62416 Sampling Line-servicos E Internet, Lda

File type
ASCII text, with very long lines (1626)
Size
1.8 kB (1819 bytes)
Hash
cd0eb3406096ff80266e7c9d7d419186
0e3709691bf96233766de30e2fd473b84166c5b6
c2e606e1fc82ea3a554aad5d0520e25d2677b89a891dc5c49e7ace08fce92e25

Detections

Analyzer	Verdict	Alert
fortinet	Malware
mnemonic_dns	Sinkholed
quad9	Sinkholed

HTTP Headers

GET /wp-includes/js/jquery/jquery.masonry.min.js?ver=3.1.2b HTTP/1.1
Host: agenciainfluencer.pt
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://agenciainfluencer.pt/sorteios/?qbot_zip
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Mon, 07 Nov 2022 21:18:05 GMT
accept-ranges: bytes
content-length: 1819
content-type: application/javascript
date: Fri, 18 Nov 2022 21:55:34 GMT
server: Apache
X-Firefox-Spdy: h2

agenciainfluencer.pt/wp-includes/js/masonry.min.js?ver=4.2.2

185.32.188.5

200 OK

24 kB

URL HTTP/2
agenciainfluencer.pt/wp-includes/js/masonry.min.js?ver=4.2.2
IP
185.32.188.5:0
ASN
#62416 Sampling Line-servicos E Internet, Lda

File type
ASCII text, with very long lines (23966)
Size
24 kB (24138 bytes)
Hash
3b3fc826e58fc554108e4a651c9c7848
76778fd446e2ff2377588a7b4ac4d79f258427c9
e00add38134eac2fb8e8e9c09cbfff7bbe57952b210322eb2eecb0a21fc055eb

Detections

Analyzer	Verdict	Alert
mnemonic_dns	Sinkholed
quad9	Sinkholed

HTTP Headers

GET /wp-includes/js/masonry.min.js?ver=4.2.2 HTTP/1.1
Host: agenciainfluencer.pt
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://agenciainfluencer.pt/sorteios/?qbot_zip
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Mon, 07 Nov 2022 21:18:05 GMT
accept-ranges: bytes
content-length: 24138
content-type: application/javascript
date: Fri, 18 Nov 2022 21:55:34 GMT
server: Apache
X-Firefox-Spdy: h2

agenciainfluencer.pt/wp-content/plugins/woocommerce/assets/js/jquery-blockui/jquery.blockUI.min.js?ver=2.7.0-wc.7.1.0

185.32.188.5

200 OK

9.5 kB

URL HTTP/2
agenciainfluencer.pt/wp-content/plugins/woocommerce/assets/js/jquery-blockui/jquery.blockUI.min.js?ver=2.7.0-wc.7.1.0
IP
185.32.188.5:0
ASN
#62416 Sampling Line-servicos E Internet, Lda

File type
ASCII text, with very long lines (9111)
Size
9.5 kB (9505 bytes)
Hash
4ffc462852340d9e6b5b7b29276fcb71
5e04050e09e3f7d8107ef3b9aa9313be618c460e
18336635cd5e9edf2aff3ae18b67250684311c2a459457091b063dafba57d526

Detections

Analyzer	Verdict	Alert
mnemonic_dns	Sinkholed
quad9	Sinkholed

HTTP Headers

GET /wp-content/plugins/woocommerce/assets/js/jquery-blockui/jquery.blockUI.min.js?ver=2.7.0-wc.7.1.0 HTTP/1.1
Host: agenciainfluencer.pt
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://agenciainfluencer.pt/sorteios/?qbot_zip
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Tue, 08 Nov 2022 20:41:43 GMT
accept-ranges: bytes
content-length: 9505
content-type: application/javascript
date: Fri, 18 Nov 2022 21:55:34 GMT
server: Apache
X-Firefox-Spdy: h2

agenciainfluencer.pt/wp-content/plugins/woocommerce/assets/js/frontend/add-to-cart.min.js?ver=7.1.0

185.32.188.5

200 OK

3.0 kB

URL HTTP/2
agenciainfluencer.pt/wp-content/plugins/woocommerce/assets/js/frontend/add-to-cart.min.js?ver=7.1.0
IP
185.32.188.5:0
ASN
#62416 Sampling Line-servicos E Internet, Lda

File type
HTML document, ASCII text, with very long lines (3029), with no line terminators
Size
3.0 kB (3029 bytes)
Hash
f449e3e4a7c058f7c48f57e05c788fb0
e7b0c58a1a14c14a92e452cc544b312ed91fa52e
bfd861dc2936299f52adca1da826c273dced7c77ad4c33d31916ad55ab354e89

Detections

Analyzer	Verdict	Alert
mnemonic_dns	Sinkholed
quad9	Sinkholed

HTTP Headers

GET /wp-content/plugins/woocommerce/assets/js/frontend/add-to-cart.min.js?ver=7.1.0 HTTP/1.1
Host: agenciainfluencer.pt
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://agenciainfluencer.pt/sorteios/?qbot_zip
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Tue, 08 Nov 2022 20:41:43 GMT
accept-ranges: bytes
content-length: 3029
content-type: application/javascript
date: Fri, 18 Nov 2022 21:55:34 GMT
server: Apache
X-Firefox-Spdy: h2

agenciainfluencer.pt/wp-content/plugins/woocommerce/assets/js/frontend/cart-fragments.min.js?ver=7.1.0

185.32.188.5

200 OK

2.9 kB

URL HTTP/2
agenciainfluencer.pt/wp-content/plugins/woocommerce/assets/js/frontend/cart-fragments.min.js?ver=7.1.0
IP
185.32.188.5:0
ASN
#62416 Sampling Line-servicos E Internet, Lda

File type
ASCII text, with very long lines (2938), with no line terminators
Size
2.9 kB (2938 bytes)
Hash
0fd625c3991a4015814cffdc88e2fc82
d7c2f53e058210ff3ea773297641008bab71a5f3
2d022db650d194d935faea46a40e5512235b43bc3f8b181e32ce6d3dd745f4e1

Detections

Analyzer	Verdict	Alert
mnemonic_dns	Sinkholed
quad9	Sinkholed

HTTP Headers

GET /wp-content/plugins/woocommerce/assets/js/frontend/cart-fragments.min.js?ver=7.1.0 HTTP/1.1
Host: agenciainfluencer.pt
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://agenciainfluencer.pt/sorteios/?qbot_zip
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Tue, 08 Nov 2022 20:41:43 GMT
accept-ranges: bytes
content-length: 2938
content-type: application/javascript
date: Fri, 18 Nov 2022 21:55:34 GMT
server: Apache
X-Firefox-Spdy: h2

agenciainfluencer.pt/wp-content/plugins/woocommerce/assets/js/js-cookie/js.cookie.min.js?ver=2.1.4-wc.7.1.0

185.32.188.5

200 OK

1.8 kB

URL HTTP/2
agenciainfluencer.pt/wp-content/plugins/woocommerce/assets/js/js-cookie/js.cookie.min.js?ver=2.1.4-wc.7.1.0
IP
185.32.188.5:0
ASN
#62416 Sampling Line-servicos E Internet, Lda

File type
ASCII text, with very long lines (1668)
Size
1.8 kB (1834 bytes)
Hash
d0a6d8547c66b0d7b0172466558d1208
ff93916519c7b9483251f609e4d29f38c30a66e3
3b1384ff918d4b7f95f9ee5c8fc388203dedff7344d3d96598c9562162788612

Detections

Analyzer	Verdict	Alert
fortinet	Malware
mnemonic_dns	Sinkholed
quad9	Sinkholed

HTTP Headers

GET /wp-content/plugins/woocommerce/assets/js/js-cookie/js.cookie.min.js?ver=2.1.4-wc.7.1.0 HTTP/1.1
Host: agenciainfluencer.pt
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://agenciainfluencer.pt/sorteios/?qbot_zip
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Tue, 08 Nov 2022 20:41:43 GMT
accept-ranges: bytes
content-length: 1834
content-type: application/javascript
date: Fri, 18 Nov 2022 21:55:34 GMT
server: Apache
X-Firefox-Spdy: h2

agenciainfluencer.pt/wp-content/plugins/woocommerce/assets/js/frontend/woocommerce.min.js?ver=7.1.0

185.32.188.5

200 OK

2.1 kB

URL HTTP/2
agenciainfluencer.pt/wp-content/plugins/woocommerce/assets/js/frontend/woocommerce.min.js?ver=7.1.0
IP
185.32.188.5:0
ASN
#62416 Sampling Line-servicos E Internet, Lda

File type
ASCII text, with very long lines (2139), with no line terminators
Size
2.1 kB (2139 bytes)
Hash
b72c1cbb1530a011a27bd9800f26765a
27b825c5d8255f33b8427a059d4545ebd65e1746
a256fccecac3b32ab73c91d79a18747519a1a18023be05465c933b03523a82e8

Detections

Analyzer	Verdict	Alert
mnemonic_dns	Sinkholed
quad9	Sinkholed

HTTP Headers

GET /wp-content/plugins/woocommerce/assets/js/frontend/woocommerce.min.js?ver=7.1.0 HTTP/1.1
Host: agenciainfluencer.pt
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://agenciainfluencer.pt/sorteios/?qbot_zip
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Tue, 08 Nov 2022 20:41:43 GMT
accept-ranges: bytes
content-length: 2139
content-type: application/javascript
date: Fri, 18 Nov 2022 21:55:34 GMT
server: Apache
X-Firefox-Spdy: h2

agenciainfluencer.pt/wp-content/plugins/lc-extensions/extensions/menu/js/main.js?ver=1.3.2

185.32.188.5

200 OK

4.0 kB

URL HTTP/2
agenciainfluencer.pt/wp-content/plugins/lc-extensions/extensions/menu/js/main.js?ver=1.3.2
IP
185.32.188.5:0
ASN
#62416 Sampling Line-servicos E Internet, Lda

File type
ASCII text, with CRLF line terminators
Size
4.0 kB (4033 bytes)
Hash
8ec2eea07e30c584a8c1197e2b49f49a
cd5a94f30d76d519f1f54fd85a321d6f4424ab6b
293f3300d1cbee6db0dfaaa28f7005df347fbf1bdefa2f75397e70fda5b15206

Detections

Analyzer	Verdict	Alert
mnemonic_dns	Sinkholed
quad9	Sinkholed

HTTP Headers

GET /wp-content/plugins/lc-extensions/extensions/menu/js/main.js?ver=1.3.2 HTTP/1.1
Host: agenciainfluencer.pt
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://agenciainfluencer.pt/sorteios/?qbot_zip
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Fri, 11 Feb 2022 13:48:38 GMT
accept-ranges: bytes
content-length: 4033
content-type: application/javascript
date: Fri, 18 Nov 2022 21:55:34 GMT
server: Apache
X-Firefox-Spdy: h2

agenciainfluencer.pt/wp-content/plugins/live-composer-page-builder/js/dist/client_frontend.min.js?ver=1.5.22

185.32.188.5

200 OK

24 kB

URL HTTP/2
agenciainfluencer.pt/wp-content/plugins/live-composer-page-builder/js/dist/client_frontend.min.js?ver=1.5.22
IP
185.32.188.5:0
ASN
#62416 Sampling Line-servicos E Internet, Lda

File type
ASCII text, with very long lines (24087), with CRLF line terminators
Size
24 kB (24136 bytes)
Hash
62de4b34d554f31ee7c515d24cba9af9
75974cac104b5ef5f2879e013722fe89e73ed199
746721cf3744701ea14b1d385ed5bcce4b9b93570007a9ecba5547844081843e

Detections

Analyzer	Verdict	Alert
fortinet	Malware
mnemonic_dns	Sinkholed
quad9	Sinkholed

HTTP Headers

GET /wp-content/plugins/live-composer-page-builder/js/dist/client_frontend.min.js?ver=1.5.22 HTTP/1.1
Host: agenciainfluencer.pt
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://agenciainfluencer.pt/sorteios/?qbot_zip
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Mon, 07 Nov 2022 21:27:26 GMT
accept-ranges: bytes
content-length: 24136
content-type: application/javascript
date: Fri, 18 Nov 2022 21:55:34 GMT
server: Apache
X-Firefox-Spdy: h2

agenciainfluencer.pt/wp-content/themes/seowp/javascripts/jquery.formalize.js?ver=1644513975

185.32.188.5

200 OK

5.3 kB

URL HTTP/2
agenciainfluencer.pt/wp-content/themes/seowp/javascripts/jquery.formalize.js?ver=1644513975
IP
185.32.188.5:0
ASN
#62416 Sampling Line-servicos E Internet, Lda

File type
exported SGML document, ASCII text
Size
5.3 kB (5331 bytes)
Hash
72ca069acf2a863414209462b73dcc04
8f331d3214d70f39c3d4449b7c7dd4f26d4ee60f
fa5dab8a2fa70b5978a719d749438e7c368a1b729054b9c1e7c1dc7d99b96456

Detections

Analyzer	Verdict	Alert
fortinet	Malware
mnemonic_dns	Sinkholed
quad9	Sinkholed

HTTP Headers

GET /wp-content/themes/seowp/javascripts/jquery.formalize.js?ver=1644513975 HTTP/1.1
Host: agenciainfluencer.pt
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://agenciainfluencer.pt/sorteios/?qbot_zip
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Thu, 10 Feb 2022 17:26:15 GMT
accept-ranges: bytes
content-length: 5331
content-type: application/javascript
date: Fri, 18 Nov 2022 21:55:34 GMT
server: Apache
X-Firefox-Spdy: h2

agenciainfluencer.pt/wp-content/plugins/woocommerce/assets/js/jquery-cookie/jquery.cookie.min.js?ver=1.4.1-wc.7.1.0

185.32.188.5

200 OK

1.4 kB

URL HTTP/2
agenciainfluencer.pt/wp-content/plugins/woocommerce/assets/js/jquery-cookie/jquery.cookie.min.js?ver=1.4.1-wc.7.1.0
IP
185.32.188.5:0
ASN
#62416 Sampling Line-servicos E Internet, Lda

File type
ASCII text, with very long lines (1241)
Size
1.4 kB (1392 bytes)
Hash
5dc9897cc1411b13f193806a5fcb498c
d0460d4aed2af636761b80ea87f2a075b6f79de8
fff09637c3bdbb4988240901f1ae70e3245cbc4ba4aff028fb1053c7064b0c6c

Detections

Analyzer	Verdict	Alert
fortinet	Malware
mnemonic_dns	Sinkholed
quad9	Sinkholed

HTTP Headers

GET /wp-content/plugins/woocommerce/assets/js/jquery-cookie/jquery.cookie.min.js?ver=1.4.1-wc.7.1.0 HTTP/1.1
Host: agenciainfluencer.pt
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://agenciainfluencer.pt/sorteios/?qbot_zip
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Tue, 08 Nov 2022 20:41:43 GMT
accept-ranges: bytes
content-length: 1392
content-type: application/javascript
date: Fri, 18 Nov 2022 21:55:34 GMT
server: Apache
X-Firefox-Spdy: h2

agenciainfluencer.pt/wp-content/plugins/mega_main_menu/src/js/frontend.js?ver=20.1.8

185.32.188.5

200 OK

13 kB

URL HTTP/2
agenciainfluencer.pt/wp-content/plugins/mega_main_menu/src/js/frontend.js?ver=20.1.8
IP
185.32.188.5:0
ASN
#62416 Sampling Line-servicos E Internet, Lda

File type
ASCII text, with very long lines (364), with CRLF line terminators
Size
13 kB (12958 bytes)
Hash
6e75321dee791c61e7be2128a0fa10ef
7204d2ede19a2b30cd54e964f2e0390cae78c805
9a3f2b8e3bf5062136fab9ac00d5ad7321b3676410b3318766e6b4fa9b50c325

Detections

Analyzer	Verdict	Alert
fortinet	Malware
mnemonic_dns	Sinkholed
quad9	Sinkholed

HTTP Headers

GET /wp-content/plugins/mega_main_menu/src/js/frontend.js?ver=20.1.8 HTTP/1.1
Host: agenciainfluencer.pt
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://agenciainfluencer.pt/sorteios/?qbot_zip
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Thu, 10 Feb 2022 17:27:14 GMT
accept-ranges: bytes
content-length: 12958
content-type: application/javascript
date: Fri, 18 Nov 2022 21:55:34 GMT
server: Apache
X-Firefox-Spdy: h2

agenciainfluencer.pt/wp-content/themes/seowp/javascripts/custom.modernizr.js?ver=1644513975

185.32.188.5

200 OK

9.3 kB

URL HTTP/2
agenciainfluencer.pt/wp-content/themes/seowp/javascripts/custom.modernizr.js?ver=1644513975
IP
185.32.188.5:0
ASN
#62416 Sampling Line-servicos E Internet, Lda

File type
HTML document text\012- HTML document, ASCII text, with very long lines (9108)
Size
9.3 kB (9287 bytes)
Hash
692789fedf79bf48689051f4c1bada2c
55a32a05ade94bd098f64d973eba54d79ad54068
f56dff20f3b4f45e54be41bea34ee24b5ed2e43c5ceaf90400ddcb1ba495b48c

Detections

Analyzer	Verdict	Alert
fortinet	Malware
mnemonic_dns	Sinkholed
quad9	Sinkholed

HTTP Headers

GET /wp-content/themes/seowp/javascripts/custom.modernizr.js?ver=1644513975 HTTP/1.1
Host: agenciainfluencer.pt
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://agenciainfluencer.pt/sorteios/?qbot_zip
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Thu, 10 Feb 2022 17:26:15 GMT
accept-ranges: bytes
content-length: 9287
content-type: application/javascript
date: Fri, 18 Nov 2022 21:55:34 GMT
server: Apache
X-Firefox-Spdy: h2

agenciainfluencer.pt/wp-content/plugins/easy-social-share-buttons3/lib/modules/click-to-tweet/assets/css/styles.min.css

185.32.188.5

200 OK

2.3 kB

URL HTTP/2
agenciainfluencer.pt/wp-content/plugins/easy-social-share-buttons3/lib/modules/click-to-tweet/assets/css/styles.min.css
IP
185.32.188.5:0
ASN
#62416 Sampling Line-servicos E Internet, Lda

File type
ASCII text, with very long lines (2296), with no line terminators
Size
2.3 kB (2296 bytes)
Hash
19868491373cda37a19e73aeaf0066d3
cd37ffb72dcf20c613690c107312c0ced41debdc
d52e10d214677156a8e37521572036a96b6f0ab66566f44c68fbd1eff9746c6a

Detections

Analyzer	Verdict	Alert
mnemonic_dns	Sinkholed
quad9	Sinkholed

HTTP Headers

GET /wp-content/plugins/easy-social-share-buttons3/lib/modules/click-to-tweet/assets/css/styles.min.css HTTP/1.1
Host: agenciainfluencer.pt
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://agenciainfluencer.pt/sorteios/?qbot_zip
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Fri, 11 Feb 2022 13:47:58 GMT
accept-ranges: bytes
content-length: 2296
content-type: text/css
date: Fri, 18 Nov 2022 21:55:34 GMT
server: Apache
X-Firefox-Spdy: h2

agenciainfluencer.pt/wp-content/themes/seowp/javascripts/jquery.fitvids.js?ver=1644513975

185.32.188.5

200 OK

3.3 kB

URL HTTP/2
agenciainfluencer.pt/wp-content/themes/seowp/javascripts/jquery.fitvids.js?ver=1644513975
IP
185.32.188.5:0
ASN
#62416 Sampling Line-servicos E Internet, Lda

File type
HTML document, ASCII text
Size
3.3 kB (3301 bytes)
Hash
167b1a36204755b7e4d8c3edc1ca54ec
bd1de59d5b6e3f0c2db6bc35633183f4e8282350
11c6214457bfe0b031d13024211b5565795ff368b303c1c0ef6e49598b3e76da

Detections

Analyzer	Verdict	Alert
mnemonic_dns	Sinkholed
quad9	Sinkholed

HTTP Headers

GET /wp-content/themes/seowp/javascripts/jquery.fitvids.js?ver=1644513975 HTTP/1.1
Host: agenciainfluencer.pt
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://agenciainfluencer.pt/sorteios/?qbot_zip
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Thu, 10 Feb 2022 17:26:15 GMT
accept-ranges: bytes
content-length: 3301
content-type: application/javascript
date: Fri, 18 Nov 2022 21:55:34 GMT
server: Apache
X-Firefox-Spdy: h2

agenciainfluencer.pt/wp-content/themes/seowp/javascripts/scripts.js?ver=1644513975

185.32.188.5

200 OK

12 kB

URL HTTP/2
agenciainfluencer.pt/wp-content/themes/seowp/javascripts/scripts.js?ver=1644513975
IP
185.32.188.5:0
ASN
#62416 Sampling Line-servicos E Internet, Lda

File type
ASCII text
Size
12 kB (11697 bytes)
Hash
3adf7341b03d0f7baf1b4eaef7dd7e4c
771e8d8971f403da645b5dc7a0478864b7a8e833
37b1d617ebb0f44d8433a48e5d82928a185f78bea908a1c966f047f97df268ed

Detections

Analyzer	Verdict	Alert
fortinet	Malware
mnemonic_dns	Sinkholed
quad9	Sinkholed

HTTP Headers

GET /wp-content/themes/seowp/javascripts/scripts.js?ver=1644513975 HTTP/1.1
Host: agenciainfluencer.pt
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://agenciainfluencer.pt/sorteios/?qbot_zip
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Thu, 10 Feb 2022 17:26:15 GMT
accept-ranges: bytes
content-length: 11697
content-type: application/javascript
date: Fri, 18 Nov 2022 21:55:34 GMT
server: Apache
X-Firefox-Spdy: h2

agenciainfluencer.pt/wp-content/plugins/easy-social-share-buttons3/assets/js/essb-core.min.js?ver=60.2.9

185.32.188.5

200 OK

39 kB

URL HTTP/2
agenciainfluencer.pt/wp-content/plugins/easy-social-share-buttons3/assets/js/essb-core.min.js?ver=60.2.9
IP
185.32.188.5:0
ASN
#62416 Sampling Line-servicos E Internet, Lda

File type
ASCII text, with very long lines (38970), with no line terminators
Size
39 kB (38970 bytes)
Hash
43a3e377127322feabe42874ad2a7b3e
fb40a7f9456fde9471a3c573776d02372ae9b084
e01bab644b63a182fe0238c9f9eb829b9d3f56b84a97e1c568978edec9c77b84

Detections

Analyzer	Verdict	Alert
fortinet	Malware
mnemonic_dns	Sinkholed
quad9	Sinkholed

HTTP Headers

GET /wp-content/plugins/easy-social-share-buttons3/assets/js/essb-core.min.js?ver=60.2.9 HTTP/1.1
Host: agenciainfluencer.pt
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://agenciainfluencer.pt/sorteios/?qbot_zip
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Fri, 11 Feb 2022 13:47:58 GMT
accept-ranges: bytes
content-length: 38970
content-type: application/javascript
date: Fri, 18 Nov 2022 21:55:34 GMT
server: Apache
X-Firefox-Spdy: h2

agenciainfluencer.pt/wp-content/plugins/easy-social-share-buttons3/assets/css/easy-social-share-buttons.min.css?ver=60.2.9

185.32.188.5

200 OK

472 B

URL HTTP/2
agenciainfluencer.pt/wp-content/plugins/easy-social-share-buttons3/assets/css/easy-social-share-buttons.min.css?ver=60.2.9
IP
185.32.188.5:0
ASN
#62416 Sampling Line-servicos E Internet, Lda

File type
data
Size
472 B (472 bytes)
Hash
71821131fa0825a241bb6f95ad63a26a
4c676dbf861c2fca225bd1b9620237246ddfc724
f2dbe2a5c73657c35a660931a44cda1c1641c5b277ceea3d8fd7b4bfcacaf5ce

Detections

Analyzer	Verdict	Alert
fortinet	Malware
mnemonic_dns	Sinkholed
quad9	Sinkholed

HTTP Headers

GET /wp-content/plugins/easy-social-share-buttons3/assets/css/easy-social-share-buttons.min.css?ver=60.2.9 HTTP/1.1
Host: agenciainfluencer.pt
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://agenciainfluencer.pt/sorteios/?qbot_zip
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Fri, 11 Feb 2022 13:47:58 GMT
accept-ranges: bytes
content-length: 122581
content-type: text/css
date: Fri, 18 Nov 2022 21:55:34 GMT
server: Apache
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.35

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.35:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
71821131fa0825a241bb6f95ad63a26a
4c676dbf861c2fca225bd1b9620237246ddfc724
f2dbe2a5c73657c35a660931a44cda1c1641c5b277ceea3d8fd7b4bfcacaf5ce

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 18 Nov 2022 21:55:40 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

agenciainfluencer.pt/wp-content/themes/seowp/images/preloader.gif

185.32.188.5

200 OK

21 kB

URL HTTP/2
agenciainfluencer.pt/wp-content/themes/seowp/images/preloader.gif
IP
185.32.188.5:0
ASN
#62416 Sampling Line-servicos E Internet, Lda

File type
gzip compressed data, max compression\012- data
Size
21 kB (21420 bytes)
Hash
a3276f7796157b68851dcda71dbd9e53
b4f1c884887bf137796ed9d453a6fc8fda25c05e
9922d9b3f7a5ae30b4b5a5c8a70d784925e5b777da7a90532368ed69d13ecfd0

Detections

Analyzer	Verdict	Alert
mnemonic_dns	Sinkholed
quad9	Sinkholed

HTTP Headers

GET /wp-content/themes/seowp/images/preloader.gif HTTP/1.1
Host: agenciainfluencer.pt
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://agenciainfluencer.pt/sorteios/?qbot_zip
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Thu, 10 Feb 2022 17:26:15 GMT
accept-ranges: bytes
content-length: 20496
content-type: image/gif
date: Fri, 18 Nov 2022 21:55:35 GMT
server: Apache
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.35

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.35:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
71821131fa0825a241bb6f95ad63a26a
4c676dbf861c2fca225bd1b9620237246ddfc724
f2dbe2a5c73657c35a660931a44cda1c1641c5b277ceea3d8fd7b4bfcacaf5ce

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 18 Nov 2022 21:55:40 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

agenciainfluencer.pt/wp-content/themes/seowp/iconfont/fonts/iconfont.woff2?7alsci

185.32.188.5

200 OK

64 kB

URL HTTP/2
agenciainfluencer.pt/wp-content/themes/seowp/iconfont/fonts/iconfont.woff2?7alsci
IP
185.32.188.5:0
ASN
#62416 Sampling Line-servicos E Internet, Lda

File type
Web Open Font Format (Version 2), TrueType, length 63488, version 1.13107\012- data
Size
64 kB (63488 bytes)
Hash
12a1935bca71b14e454e5cbf9e6781c5
41d7db14274aaa5dc9f3b392a7030c6032bfa9fd
00d6e8e54d95cf7bf7342a5c82d8a5b99b757b8a00e06e0f855fadc985cfa4cd

Detections

Analyzer	Verdict	Alert
mnemonic_dns	Sinkholed
quad9	Sinkholed

HTTP Headers

GET /wp-content/themes/seowp/iconfont/fonts/iconfont.woff2?7alsci HTTP/1.1
Host: agenciainfluencer.pt
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://agenciainfluencer.pt/wp-content/themes/seowp/iconfont/style.css?ver=2.2.2
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Thu, 10 Feb 2022 17:26:16 GMT
accept-ranges: bytes
content-length: 63488
content-type: font/woff2
date: Fri, 18 Nov 2022 21:55:35 GMT
server: Apache
X-Firefox-Spdy: h2

fonts.gstatic.com/s/rubik/v21/iJWKBXyIfDnIV7nBrXw.woff2

216.58.207.195

200 OK

34 kB

URL HTTP/2
fonts.gstatic.com/s/rubik/v21/iJWKBXyIfDnIV7nBrXw.woff2
IP
216.58.207.195:0
ASN
#15169 GOOGLE

File type
Web Open Font Format (Version 2), TrueType, length 33580, version 1.0\012- data
Size
34 kB (33580 bytes)
Hash
848cd2ecd011428969dc6b90431bc482
6b1a7b562a56bd54510e0f6f95e26babca331a1b
981307dcbbd348f6fb4e3eab184077392f9ee15097ea868f630debefad9044e9

HTTP Headers

GET /s/rubik/v21/iJWKBXyIfDnIV7nBrXw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://agenciainfluencer.pt
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 33580
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 17 Nov 2022 21:38:57 GMT
expires: Fri, 17 Nov 2023 21:38:57 GMT
cache-control: public, max-age=31536000
age: 87403
last-modified: Mon, 18 Jul 2022 19:32:55 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

agenciainfluencer.pt/wp-content/plugins/live-composer-page-builder/css/font/fontawesome-webfont.woff?v=4.7.0

185.32.188.5

200 OK

98 kB

URL HTTP/2
agenciainfluencer.pt/wp-content/plugins/live-composer-page-builder/css/font/fontawesome-webfont.woff?v=4.7.0
IP
185.32.188.5:0
ASN
#62416 Sampling Line-servicos E Internet, Lda

File type
Web Open Font Format, TrueType, length 98024, version 4.7\012- data
Size
98 kB (98024 bytes)
Hash
fee66e712a8a08eef5805a46892932ad
28b782240b3e76db824e12c02754a9731a167527
ba0c59deb5450f5cb41b3f93609ee2d0d995415877ddfa223e8a8a7533474f07

Detections

Analyzer	Verdict	Alert
fortinet	Malware
mnemonic_dns	Sinkholed
quad9	Sinkholed

HTTP Headers

GET /wp-content/plugins/live-composer-page-builder/css/font/fontawesome-webfont.woff?v=4.7.0 HTTP/1.1
Host: agenciainfluencer.pt
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://agenciainfluencer.pt/wp-content/plugins/live-composer-page-builder/css/font-awesome.css?ver=1.5.22
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Mon, 07 Nov 2022 21:27:26 GMT
accept-ranges: bytes
content-length: 98024
content-type: font/woff
date: Fri, 18 Nov 2022 21:55:35 GMT
server: Apache
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.35

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.35:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
71821131fa0825a241bb6f95ad63a26a
4c676dbf861c2fca225bd1b9620237246ddfc724
f2dbe2a5c73657c35a660931a44cda1c1641c5b277ceea3d8fd7b4bfcacaf5ce

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 18 Nov 2022 21:55:40 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

agenciainfluencer.pt/wp-content/plugins/woocommerce/assets/css/woocommerce-smallscreen.css?ver=7.1.0

185.32.188.5

200 OK

7.0 kB

URL HTTP/2
agenciainfluencer.pt/wp-content/plugins/woocommerce/assets/css/woocommerce-smallscreen.css?ver=7.1.0
IP
185.32.188.5:0
ASN
#62416 Sampling Line-servicos E Internet, Lda

File type
ASCII text, with very long lines (7043), with no line terminators
Size
7.0 kB (7043 bytes)
Hash
456663a286a204386735fd775542a59e
0a61620b88f4ae0fa7d71e2c7a014ea2c3ab5749
a7a83e60e7e3b8cadeed69327ba498b4cd68605db6e408729fa1b946758e7501

Detections

Analyzer	Verdict	Alert
fortinet	Malware
mnemonic_dns	Sinkholed
quad9	Sinkholed

HTTP Headers

GET /wp-content/plugins/woocommerce/assets/css/woocommerce-smallscreen.css?ver=7.1.0 HTTP/1.1
Host: agenciainfluencer.pt
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://agenciainfluencer.pt/sorteios/?qbot_zip
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Tue, 08 Nov 2022 20:41:43 GMT
accept-ranges: bytes
content-length: 7043
content-type: text/css
date: Fri, 18 Nov 2022 21:55:35 GMT
server: Apache
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.35

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.35:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
16bbadb18616687351d4047aedc2ab45
979123c7ad6726befbbab2c07b50ecca31aa2d18
de8231c6ee426b7a76ebf574998dec11ce908efc0a745c2182fb7b61c5915e9a

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 18 Nov 2022 21:55:40 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/gts1c3

142.250.74.35

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.35:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
16bbadb18616687351d4047aedc2ab45
979123c7ad6726befbbab2c07b50ecca31aa2d18
de8231c6ee426b7a76ebf574998dec11ce908efc0a745c2182fb7b61c5915e9a

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 18 Nov 2022 21:55:40 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

www.googletagmanager.com/gtag/js?id=UA-222149420-1

142.250.74.168

200 OK

44 kB

URL HTTP/2
www.googletagmanager.com/gtag/js?id=UA-222149420-1
IP
142.250.74.168:0
ASN
#15169 GOOGLE

File type
ASCII text, with very long lines (1921)
Size
44 kB (43680 bytes)
Hash
ab009ac5a03677e8936fbb1d7e5c523e
451aef721b3da1af9c3de72d34335ee93947899e
cfe36f365e53607b3c2d3d0b7228f3b5037e1f3776387b906c62c292de1b776c

HTTP Headers

GET /gtag/js?id=UA-222149420-1 HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://agenciainfluencer.pt/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Fri, 18 Nov 2022 21:55:40 GMT
expires: Fri, 18 Nov 2022 21:55:40 GMT
cache-control: private, max-age=900
last-modified: Fri, 18 Nov 2022 21:00:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 43680
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

www.googleoptimize.com/optimize.js?id=OPT-N7SKGZW

142.250.74.78

200 OK

44 kB

URL HTTP/2
www.googleoptimize.com/optimize.js?id=OPT-N7SKGZW
IP
142.250.74.78:0
ASN
#15169 GOOGLE

File type
ASCII text, with very long lines (1921)
Size
44 kB (43977 bytes)
Hash
b3e51e2ba53fef16686b5070519fd9c9
d8ae378c6e25f692dac15f7e6d6ddf7f972ea83c
de35982d286809423ca3ace0c9586b7021cea7efb582d683a7ffe2956ab6b79a

HTTP Headers

GET /optimize.js?id=OPT-N7SKGZW HTTP/1.1
Host: www.googleoptimize.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://agenciainfluencer.pt/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Fri, 18 Nov 2022 21:55:40 GMT
expires: Fri, 18 Nov 2022 21:55:40 GMT
cache-control: private, max-age=900
last-modified: Fri, 18 Nov 2022 21:00:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 43977
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.35

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.35:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
16bbadb18616687351d4047aedc2ab45
979123c7ad6726befbbab2c07b50ecca31aa2d18
de8231c6ee426b7a76ebf574998dec11ce908efc0a745c2182fb7b61c5915e9a

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 18 Nov 2022 21:55:40 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/gts1c3

142.250.74.35

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.35:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
16bbadb18616687351d4047aedc2ab45
979123c7ad6726befbbab2c07b50ecca31aa2d18
de8231c6ee426b7a76ebf574998dec11ce908efc0a745c2182fb7b61c5915e9a

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 18 Nov 2022 21:55:40 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

www.google-analytics.com/analytics.js

142.250.74.174

200 OK

20 kB

URL HTTP/2
www.google-analytics.com/analytics.js
IP
142.250.74.174:0
ASN
#15169 GOOGLE

File type
ASCII text, with very long lines (1325)
Size
20 kB (20039 bytes)
Hash
47e6f374ca946fddd5b59871b325736c
baa9282efc8785e84d247c3bff518eaa45f101c4
16580b5c87c58e5702e411f1888fdef511094e4cd6d62bb47d16291ffb25985e

HTTP Headers

GET /analytics.js HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://agenciainfluencer.pt/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
strict-transport-security: max-age=10886400; includeSubDomains; preload
x-content-type-options: nosniff
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 20039
date: Fri, 18 Nov 2022 20:41:09 GMT
expires: Fri, 18 Nov 2022 22:41:09 GMT
cache-control: public, max-age=7200
age: 4472
last-modified: Tue, 27 Sep 2022 22:01:05 GMT
content-type: text/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.35

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.35:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
eaa6a3200eda9bf5788df6d9eb04d84c
12efbb66692df6d76c1103b152808d751c0e49f1
6d815027ae40ea2603c0ed5adac0821cd5526f11c2eeb0ada5294b6f2ec3492d

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 18 Nov 2022 21:55:41 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

googleads.g.doubleclick.net/pagead/viewthroughconversion/7128745641/?random=1668808539374&cv=11&fst=1668808539374&bg=ffffff&guid=ON&async=1&gtm=2oab90&u_w=1280&u_h=1024&hn=www.googleadservices.com&frm=0&url=https%3A%2F%2Fagenciainfluencer.pt%2Fsorteios%2F%3Fqbot_zip&tiba=Sorteios%20-%20Ag%C3%AAncia%20Influenciar&auid=699094726.1668808539&data=event%3Dgtag.config&rfmt=3&fmt=4

142.250.74.130

200 OK

901 B

URL HTTP/2
googleads.g.doubleclick.net/pagead/viewthroughconversion/7128745641/?random=1668808539374&cv=11&fst=1668808539374&bg=ffffff&guid=ON&async=1&gtm=2oab90&u_w=1280&u_h=1024&hn=www.googleadservices.com&frm=0&url=https%3A%2F%2Fagenciainfluencer.pt%2Fsorteios%2F%3Fqbot_zip&tiba=Sorteios%20-%20Ag%C3%AAncia%20Influenciar&auid=699094726.1668808539&data=event%3Dgtag.config&rfmt=3&fmt=4
IP
142.250.74.130:0
ASN
#15169 GOOGLE

File type
ASCII text, with very long lines (1937), with no line terminators
Size
901 B (901 bytes)
Hash
4318ffc15bd7d8e7975ca2d64734dd54
c28e84e3dfbf5830e4c8ccf0464776efb5d18573
6e4870cd0c520d23aa4ab4736ed4362390c72697d739405850166b0e67fb7e60

HTTP Headers

GET /pagead/viewthroughconversion/7128745641/?random=1668808539374&cv=11&fst=1668808539374&bg=ffffff&guid=ON&async=1&gtm=2oab90&u_w=1280&u_h=1024&hn=www.googleadservices.com&frm=0&url=https%3A%2F%2Fagenciainfluencer.pt%2Fsorteios%2F%3Fqbot_zip&tiba=Sorteios%20-%20Ag%C3%AAncia%20Influenciar&auid=699094726.1668808539&data=event%3Dgtag.config&rfmt=3&fmt=4 HTTP/1.1
Host: googleads.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://agenciainfluencer.pt/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Fri, 18 Nov 2022 21:55:41 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
content-type: text/javascript; charset=UTF-8
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: br
server: cafe
content-length: 901
x-xss-protection: 0
set-cookie: test_cookie=CheckForPermission; expires=Fri, 18-Nov-2022 22:10:41 GMT; path=/; domain=.doubleclick.net; Secure; SameSite=none
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

agenciainfluencer.pt/sorteios/60682

185.32.188.5

301 Moved Permanently

0 B

URL HTTP/2
agenciainfluencer.pt/sorteios/60682
IP
185.32.188.5:0
ASN
#62416 Sampling Line-servicos E Internet, Lda

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
fortinet	Malware
mnemonic_dns	Sinkholed
quad9	Sinkholed

HTTP Headers

GET /sorteios/60682 HTTP/1.1
Host: agenciainfluencer.pt
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://agenciainfluencer.pt/sorteios/?qbot_zip
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 301 Moved Permanently
x-powered-by: PHP/7.4.33
expires: Wed, 11 Jan 1984 05:00:00 GMT
cache-control: no-cache, must-revalidate, max-age=0
x-redirect-by: WordPress
location: https://agenciainfluencer.pt/sorteios/
content-length: 0
content-type: text/html; charset=UTF-8
date: Fri, 18 Nov 2022 21:55:34 GMT
server: Apache
X-Firefox-Spdy: h2

agenciainfluencer.pt/wp-content/uploads/cropped-digital-agency-logo-32x32.png

185.32.188.5

200 OK

1.2 kB

URL HTTP/2
agenciainfluencer.pt/wp-content/uploads/cropped-digital-agency-logo-32x32.png
IP
185.32.188.5:0
ASN
#62416 Sampling Line-servicos E Internet, Lda

File type
PNG image data, 32 x 32, 8-bit/color RGBA, non-interlaced\012- data
Size
1.2 kB (1189 bytes)
Hash
00ee721e6ae747aa72e16415b0740c0e
307d4601ecc4221cce346964a8604044659756a1
b578f8512dd4bba7c0b1c5111ef163ce0f78015ed5f101d1e6d12703389f8a67

Detections

Analyzer	Verdict	Alert
mnemonic_dns	Sinkholed
quad9	Sinkholed

HTTP Headers

GET /wp-content/uploads/cropped-digital-agency-logo-32x32.png HTTP/1.1
Host: agenciainfluencer.pt
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://agenciainfluencer.pt/sorteios/?qbot_zip
Cookie: cookielawinfo-checkbox-necessary=yes; cookielawinfo-checkbox-functional=no; cookielawinfo-checkbox-performance=no; cookielawinfo-checkbox-analytics=no; cookielawinfo-checkbox-advertisement=no; cookielawinfo-checkbox-others=no; chaty_settings=[{"k":"cta_widget_status","v":"2022-11-18T21:55:39.202Z"}]; _gcl_au=1.1.699094726.1668808539
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Fri, 18 Feb 2022 09:40:51 GMT
accept-ranges: bytes
content-length: 1189
content-type: image/png
date: Fri, 18 Nov 2022 21:55:36 GMT
server: Apache
X-Firefox-Spdy: h2

agenciainfluencer.pt/wp-content/uploads/cropped-digital-agency-logo-192x192.png

185.32.188.5

200 OK

19 kB

URL HTTP/2
agenciainfluencer.pt/wp-content/uploads/cropped-digital-agency-logo-192x192.png
IP
185.32.188.5:0
ASN
#62416 Sampling Line-servicos E Internet, Lda

File type
PNG image data, 192 x 192, 8-bit/color RGBA, non-interlaced\012- data
Size
19 kB (19022 bytes)
Hash
f36b2de0509b2caa677ea907a90176bc
f3b6d620214f4e9764e51be840ab706c7b64dbe4
e9e48a88e2925f0092c86ffe31f44ac575b546ceca9bbe000e6cae2b9d071402

Detections

Analyzer	Verdict	Alert
mnemonic_dns	Sinkholed
quad9	Sinkholed

HTTP Headers

GET /wp-content/uploads/cropped-digital-agency-logo-192x192.png HTTP/1.1
Host: agenciainfluencer.pt
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://agenciainfluencer.pt/sorteios/?qbot_zip
Cookie: cookielawinfo-checkbox-necessary=yes; cookielawinfo-checkbox-functional=no; cookielawinfo-checkbox-performance=no; cookielawinfo-checkbox-analytics=no; cookielawinfo-checkbox-advertisement=no; cookielawinfo-checkbox-others=no; chaty_settings=[{"k":"cta_widget_status","v":"2022-11-18T21:55:39.202Z"}]; _gcl_au=1.1.699094726.1668808539
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Fri, 18 Feb 2022 09:40:51 GMT
accept-ranges: bytes
content-length: 19022
content-type: image/png
date: Fri, 18 Nov 2022 21:55:36 GMT
server: Apache
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.35

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.35:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
eaa6a3200eda9bf5788df6d9eb04d84c
12efbb66692df6d76c1103b152808d751c0e49f1
6d815027ae40ea2603c0ed5adac0821cd5526f11c2eeb0ada5294b6f2ec3492d

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 18 Nov 2022 21:55:41 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/gts1c3

142.250.74.35

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.35:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
eb5405ca08a5b1038b26ae8f2e3788f3
3341c3d5bed51686ed6c8d85aa59c59a27c652a3
6ffea4a38a9fc074321b874bce4a78eefbf657f1f2a05897fb32d0a9bffa08a1

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 18 Nov 2022 21:55:41 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/gts1c3

142.250.74.35

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.35:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
d3ba0eba720a8e5904bee6e804873c24
df1f9c79e39f777ab12225af0af60b9f26af6485
76500b32cbac4ad40e3f42c7dfd46832f3854ba88c3a6d5a9d2b5633e8e1f27b

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 18 Nov 2022 21:55:41 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

www.google.no/pagead/1p-user-list/7128745641/?random=1668808539374&cv=11&fst=1668805200000&bg=ffffff&guid=ON&async=1&gtm=2oab90&u_w=1280&u_h=1024&frm=0&url=https%3A%2F%2Fagenciainfluencer.pt%2Fsorteios%2F%3Fqbot_zip&tiba=Sorteios%20-%20Ag%C3%AAncia%20Influenciar&data=event%3Dgtag.config&fmt=3&is_vtc=1&random=1137797363&rmt_tld=1&ipr=y

142.250.74.35

200 OK

42 B

URL HTTP/2
www.google.no/pagead/1p-user-list/7128745641/?random=1668808539374&cv=11&fst=1668805200000&bg=ffffff&guid=ON&async=1&gtm=2oab90&u_w=1280&u_h=1024&frm=0&url=https%3A%2F%2Fagenciainfluencer.pt%2Fsorteios%2F%3Fqbot_zip&tiba=Sorteios%20-%20Ag%C3%AAncia%20Influenciar&data=event%3Dgtag.config&fmt=3&is_vtc=1&random=1137797363&rmt_tld=1&ipr=y
IP
142.250.74.35:0
ASN
#15169 GOOGLE

File type
GIF image data, version 89a, 1 x 1\012- data
Size
42 B (42 bytes)
Hash
d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629

HTTP Headers

GET /pagead/1p-user-list/7128745641/?random=1668808539374&cv=11&fst=1668805200000&bg=ffffff&guid=ON&async=1&gtm=2oab90&u_w=1280&u_h=1024&frm=0&url=https%3A%2F%2Fagenciainfluencer.pt%2Fsorteios%2F%3Fqbot_zip&tiba=Sorteios%20-%20Ag%C3%AAncia%20Influenciar&data=event%3Dgtag.config&fmt=3&is_vtc=1&random=1137797363&rmt_tld=1&ipr=y HTTP/1.1
Host: www.google.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://agenciainfluencer.pt/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Fri, 18 Nov 2022 21:55:41 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
content-security-policy: script-src 'none'; object-src 'none'
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

www.google.com/pagead/1p-user-list/7128745641/?random=1668808539374&cv=11&fst=1668805200000&bg=ffffff&guid=ON&async=1&gtm=2oab90&u_w=1280&u_h=1024&frm=0&url=https%3A%2F%2Fagenciainfluencer.pt%2Fsorteios%2F%3Fqbot_zip&tiba=Sorteios%20-%20Ag%C3%AAncia%20Influenciar&data=event%3Dgtag.config&fmt=3&is_vtc=1&random=1137797363&rmt_tld=0&ipr=y

142.250.74.164

200 OK

42 B

URL HTTP/2
www.google.com/pagead/1p-user-list/7128745641/?random=1668808539374&cv=11&fst=1668805200000&bg=ffffff&guid=ON&async=1&gtm=2oab90&u_w=1280&u_h=1024&frm=0&url=https%3A%2F%2Fagenciainfluencer.pt%2Fsorteios%2F%3Fqbot_zip&tiba=Sorteios%20-%20Ag%C3%AAncia%20Influenciar&data=event%3Dgtag.config&fmt=3&is_vtc=1&random=1137797363&rmt_tld=0&ipr=y
IP
142.250.74.164:0
ASN
#15169 GOOGLE

File type
GIF image data, version 89a, 1 x 1\012- data
Size
42 B (42 bytes)
Hash
d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629

HTTP Headers

GET /pagead/1p-user-list/7128745641/?random=1668808539374&cv=11&fst=1668805200000&bg=ffffff&guid=ON&async=1&gtm=2oab90&u_w=1280&u_h=1024&frm=0&url=https%3A%2F%2Fagenciainfluencer.pt%2Fsorteios%2F%3Fqbot_zip&tiba=Sorteios%20-%20Ag%C3%AAncia%20Influenciar&data=event%3Dgtag.config&fmt=3&is_vtc=1&random=1137797363&rmt_tld=0&ipr=y HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://agenciainfluencer.pt/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Fri, 18 Nov 2022 21:55:41 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
content-security-policy: script-src 'none'; object-src 'none'
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.35

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.35:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
eb5405ca08a5b1038b26ae8f2e3788f3
3341c3d5bed51686ed6c8d85aa59c59a27c652a3
6ffea4a38a9fc074321b874bce4a78eefbf657f1f2a05897fb32d0a9bffa08a1

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 18 Nov 2022 21:55:41 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/gts1c3

142.250.74.35

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.35:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
c15be7bf1c6987951ddd348d6f6b4db1
9faac1fb81abc8fce6d4ae81777c76b8bc11e9b0
7f1d01e3fc0b69e331fd30326ea8fd9b1e3e06a0a93ae4768e7addd03a121025

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 18 Nov 2022 21:55:41 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

agenciainfluencer.pt/wp-content/plugins/woocommerce/assets/css/woocommerce-layout.css?ver=7.1.0

185.32.188.5

200 OK

0 B

URL HTTP/2
agenciainfluencer.pt/wp-content/plugins/woocommerce/assets/css/woocommerce-layout.css?ver=7.1.0
IP
185.32.188.5:0
ASN
#62416 Sampling Line-servicos E Internet, Lda

File type

Size
0 B (0 bytes)
Hash

Detections

Analyzer	Verdict	Alert
fortinet	Malware
mnemonic_dns	Sinkholed
quad9	Sinkholed

HTTP Headers

GET /wp-content/plugins/woocommerce/assets/css/woocommerce-layout.css?ver=7.1.0 HTTP/1.1
Host: agenciainfluencer.pt
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://agenciainfluencer.pt/sorteios/?qbot_zip
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Tue, 08 Nov 2022 20:41:43 GMT
accept-ranges: bytes
content-length: 17809
content-type: text/css
date: Fri, 18 Nov 2022 21:55:34 GMT
server: Apache
X-Firefox-Spdy: h2

agenciainfluencer.pt/sorteios/?qbot_zip

185.32.188.5

200 OK

0 B

URL HTTP/2
agenciainfluencer.pt/sorteios/?qbot_zip
IP
185.32.188.5:0
ASN
#62416 Sampling Line-servicos E Internet, Lda

File type

Size
0 B (0 bytes)
Hash

Detections

Analyzer	Verdict	Alert
fortinet	Malware
mnemonic_dns	Sinkholed
quad9	Sinkholed

HTTP Headers

GET /sorteios/?qbot_zip HTTP/1.1
Host: agenciainfluencer.pt
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
TE: trailers

HTTP/2 200 OK
x-powered-by: PHP/7.4.33
link: <https://agenciainfluencer.pt/wp-json/>; rel="https://api.w.org/", <https://agenciainfluencer.pt/wp-json/wp/v2/pages/4334>; rel="alternate"; type="application/json", <https://agenciainfluencer.pt/?p=4334>; rel=shortlink
content-type: text/html; charset=UTF-8
date: Fri, 18 Nov 2022 21:55:32 GMT
server: Apache
X-Firefox-Spdy: h2

agenciainfluencer.pt/wp-content/plugins/masterslider/public/assets/js/masterslider.min.js?ver=30.2.14

185.32.188.5

200 OK

0 B

URL HTTP/2
agenciainfluencer.pt/wp-content/plugins/masterslider/public/assets/js/masterslider.min.js?ver=30.2.14
IP
185.32.188.5:0
ASN
#62416 Sampling Line-servicos E Internet, Lda

File type

Size
0 B (0 bytes)
Hash

Detections

Analyzer	Verdict	Alert
mnemonic_dns	Sinkholed
quad9	Sinkholed

HTTP Headers

GET /wp-content/plugins/masterslider/public/assets/js/masterslider.min.js?ver=30.2.14 HTTP/1.1
Host: agenciainfluencer.pt
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://agenciainfluencer.pt/sorteios/?qbot_zip
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Fri, 11 Feb 2022 13:46:05 GMT
accept-ranges: bytes
content-length: 166566
content-type: application/javascript
date: Fri, 18 Nov 2022 21:55:34 GMT
server: Apache
X-Firefox-Spdy: h2

agenciainfluencer.pt/wp-includes/js/mediaelement/mediaelement-and-player.min.js?ver=4.2.17

185.32.188.5

200 OK

0 B

URL HTTP/2
agenciainfluencer.pt/wp-includes/js/mediaelement/mediaelement-and-player.min.js?ver=4.2.17
IP
185.32.188.5:0
ASN
#62416 Sampling Line-servicos E Internet, Lda

File type

Size
0 B (0 bytes)
Hash

Detections

Analyzer	Verdict	Alert
fortinet	Malware
mnemonic_dns	Sinkholed
quad9	Sinkholed

HTTP Headers

GET /wp-includes/js/mediaelement/mediaelement-and-player.min.js?ver=4.2.17 HTTP/1.1
Host: agenciainfluencer.pt
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://agenciainfluencer.pt/sorteios/?qbot_zip
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Mon, 07 Nov 2022 21:18:05 GMT
accept-ranges: bytes
content-length: 158005
content-type: application/javascript
date: Fri, 18 Nov 2022 21:55:34 GMT
server: Apache
X-Firefox-Spdy: h2

agenciainfluencer.pt/wp-content/plugins/mega_main_menu/src/css/cache.skin.css?ver=6.1.1

185.32.188.5

200 OK

0 B

URL HTTP/2
agenciainfluencer.pt/wp-content/plugins/mega_main_menu/src/css/cache.skin.css?ver=6.1.1
IP
185.32.188.5:0
ASN
#62416 Sampling Line-servicos E Internet, Lda

File type

Size
0 B (0 bytes)
Hash

Detections

Analyzer	Verdict	Alert
mnemonic_dns	Sinkholed
quad9	Sinkholed

HTTP Headers

GET /wp-content/plugins/mega_main_menu/src/css/cache.skin.css?ver=6.1.1 HTTP/1.1
Host: agenciainfluencer.pt
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://agenciainfluencer.pt/sorteios/?qbot_zip
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Thu, 10 Feb 2022 17:27:14 GMT
accept-ranges: bytes
content-length: 168056
content-type: text/css
date: Fri, 18 Nov 2022 21:55:34 GMT
server: Apache
X-Firefox-Spdy: h2

agenciainfluencer.pt/wp-content/plugins/ninja-forms/assets/js/min/front-end.js?ver=3.6.11

185.32.188.5

200 OK

0 B

URL HTTP/2
agenciainfluencer.pt/wp-content/plugins/ninja-forms/assets/js/min/front-end.js?ver=3.6.11
IP
185.32.188.5:0
ASN
#62416 Sampling Line-servicos E Internet, Lda

File type

Size
0 B (0 bytes)
Hash

Detections

Analyzer	Verdict	Alert
fortinet	Malware
mnemonic_dns	Sinkholed
quad9	Sinkholed

HTTP Headers

GET /wp-content/plugins/ninja-forms/assets/js/min/front-end.js?ver=3.6.11 HTTP/1.1
Host: agenciainfluencer.pt
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://agenciainfluencer.pt/sorteios/?qbot_zip
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Wed, 15 Jun 2022 07:06:20 GMT
accept-ranges: bytes
content-length: 97174
content-type: application/javascript
date: Fri, 18 Nov 2022 21:55:34 GMT
server: Apache
X-Firefox-Spdy: h2

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

OpenPhish

PhishTank

Fortinet's Web Filter

mnemonic secure dns

Quad9 DNS

JavaScript (56)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations