| r3.o.lencr.org/ | 95.101.11.115 | 200 OK | 503 B |
IP95.101.11.115:0 ASN#20940 Akamai International B.V.
Hash1965860f5630f7dda817a236cb72ea24 beec8147d48911a007287014564ce544d296a5fd 00b4aafe530f6ceb3d6d4de42fffdaee0cb4e0a60834c85b1d21e42e5db2ef91
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "00B4AAFE530F6CEB3D6D4DE42FFFDAEE0CB4E0A60834C85B1D21E42E5DB2EF91"
Last-Modified: Mon, 03 Apr 2023 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=14823
Expires: Tue, 04 Apr 2023 11:40:34 GMT
Date: Tue, 04 Apr 2023 07:33:31 GMT
Connection: keep-alive
|
|
| r3.o.lencr.org/ | 95.101.11.115 | 200 OK | 503 B |
IP95.101.11.115:0 ASN#20940 Akamai International B.V.
Hash0c17f530e6db706fa5f9eb36a6cca4a4 446b60a425aae47b0adf5abd7e18e9f90f52c0bc ccf1a90e945a18fb951654d29f128acdb3916d4dca315b0fad44ae8cc95be48e
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "CCF1A90E945A18FB951654D29F128ACDB3916D4DCA315B0FAD44AE8CC95BE48E"
Last-Modified: Mon, 03 Apr 2023 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3089
Expires: Tue, 04 Apr 2023 08:25:00 GMT
Date: Tue, 04 Apr 2023 07:33:31 GMT
Connection: keep-alive
|
|
| lutea.xyz/ | 3.64.163.50 | 301 Moved Permanently | 84 B |
IP3.64.163.50:0
File typeHTML document text\012- HTML document, ASCII text, with no line terminators Hashd6237d5133a3d3a49d912a9c7927e8c0 98e2693fbf52f9bf0c178410c1312e5f9c5347a7 a2435ed87847d798679c83c19d33a3a37bba208efe770fc51857664230a9c67e
Analyzer | Verdict | Alert | fortinet | Malware | | quad9 | Sinkholed | |
GET / HTTP/1.1
Host: lutea.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Server: openresty
Date: Tue, 04 Apr 2023 07:33:31 GMT
Content-Type: text/html; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
X-Frame-Options: SAMEORIGIN
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
X-Download-Options: noopen
X-Permitted-Cross-Domain-Policies: none
Referrer-Policy: strict-origin-when-cross-origin
Location: https://lutea.xyz/
Cache-Control: no-cache
X-Request-Id: f3b8056e-817e-4503-9f73-398430f79ef9
X-Runtime: 0.145031
|
|
| firefox.settings.services.mozilla.com/v1/ | 35.241.9.150 | 200 OK | 939 B |
URL HTTP/2firefox.settings.services.mozilla.com/v1/ IP35.241.9.150:0
File typeJSON data\012- , ASCII text, with very long lines (939), with no line terminators Hash29fdbcd53b5646cfcdd46510063734c4 85e3ceda5ef130219f4fe8a31e52e2690c8f7d8e 24c27586332c016685e6231fec5836e921048d8aaefbcd4cd6f88969f9d91e18
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Retry-After, Alert, Backoff, Content-Length, Content-Type
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Tue, 04 Apr 2023 07:28:44 GMT
content-type: application/json
age: 287
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| r3.o.lencr.org/ | 95.101.11.115 | 200 OK | 503 B |
IP95.101.11.115:0 ASN#20940 Akamai International B.V.
Hash903ed2d58f1f33d069b70c4b53f1cb1f 0ef89cd6eb79a2ddd74434f9233cf486fffc1142 d8c984b50f04fcdb1ebc99d982502d85193302c85239ee7497666247edfc0061
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D8C984B50F04FCDB1EBC99D982502D85193302C85239EE7497666247EDFC0061"
Last-Modified: Sun, 02 Apr 2023 16:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=18373
Expires: Tue, 04 Apr 2023 12:39:44 GMT
Date: Tue, 04 Apr 2023 07:33:31 GMT
Connection: keep-alive
|
|
| content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-05-20-17-04-38.chain | 34.160.144.191 | 200 OK | 5.3 kB |
URL HTTP/2content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-05-20-17-04-38.chain IP34.160.144.191:0
File typePEM certificate\012- , ASCII text Hash95f61d351f5fc9533cc78e255ce9bc06 fba284117f347782ac23c51d141d7e3ec15a867e 7fcc5f9e52e389d8d7c6df7f1f2a1291ae0aaae8e554f3022239ab092b2ef3c3
GET /chains/remote-settings.content-signature.mozilla.org-2023-05-20-17-04-38.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: Sg4fKSOpabs+7XOJWCs1IRX8/CboriyDdcmF2LOYREjEoIl9Qsj7+l/8orEX4fTOOkmcP39gdSE=
x-amz-request-id: H778GKWN8PD0Z0N3
x-amz-server-side-encryption: AES256
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Tue, 04 Apr 2023 06:53:03 GMT
age: 2428
last-modified: Fri, 31 Mar 2023 17:04:39 GMT
etag: "95f61d351f5fc9533cc78e255ce9bc06"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| contile.services.mozilla.com/v1/tiles | 34.117.237.239 | 200 OK | 12 B |
URL HTTP/2contile.services.mozilla.com/v1/tiles IP34.117.237.239:0
File typeJSON data\012- , ASCII text, with no line terminators Hash23e88fb7b99543fb33315b29b1fad9d6 a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce 7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Tue, 04 Apr 2023 07:33:31 GMT
content-type: application/json
content-length: 12
access-control-allow-credentials: true
access-control-expose-headers: content-type
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| r3.o.lencr.org/ | 95.101.11.115 | 200 OK | 503 B |
IP95.101.11.115:0 ASN#20940 Akamai International B.V.
Hash27326a64990c6f698a83600491674790 a6bdb4743ace6be80673f6899605bf9177a75b69 e4a8d3c3016130e47580098183bcea5ae369697b7907eafd65ac3450dc2eb265
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "E4A8D3C3016130E47580098183BCEA5AE369697B7907EAFD65AC3450DC2EB265"
Last-Modified: Mon, 03 Apr 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=18811
Expires: Tue, 04 Apr 2023 12:47:02 GMT
Date: Tue, 04 Apr 2023 07:33:31 GMT
Connection: keep-alive
|
|
| cdn3.dan.com/packs/js/public/fonts-35cf21af5c115d4ac0cb.chunk.js | 143.204.55.5 | 200 OK | 437 B |
URL HTTP/2cdn3.dan.com/packs/js/public/fonts-35cf21af5c115d4ac0cb.chunk.js IP143.204.55.5:0
File typeASCII text, with very long lines (622) Hashc2c016fd1056f2c2320838f8cc460b50 dab613af796283cf6f493783469a78a181a03099 e280f50fad3788c60aa33e9a64d723e12afb86e0bc46f6020dce6e135dcbf922
GET /packs/js/public/fonts-35cf21af5c115d4ac0cb.chunk.js HTTP/1.1
Host: cdn3.dan.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://lutea.xyz/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript
content-length: 437
server: openresty
date: Mon, 03 Apr 2023 13:33:06 GMT
last-modified: Mon, 03 Apr 2023 13:20:59 GMT
content-encoding: gzip
strict-transport-security: max-age=63072000; includeSubDomains
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000, public
access-control-allow-origin: *
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 f46f7100ad6fc83a021f62212f945830.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: WrT_51agV7ggKIc5TIaY2MASeGmbxQb-oJV-8BlRyIUn3DXzSu33rA==
age: 64825
X-Firefox-Spdy: h2
|
|
| cdn2.dan.com/packs/js/runtime~public/product-c65bfa3764bffa252c98.js | 143.204.55.5 | 200 OK | 790 B |
URL HTTP/2cdn2.dan.com/packs/js/runtime~public/product-c65bfa3764bffa252c98.js IP143.204.55.5:0
File typeASCII text, with very long lines (1516) Hashd88ffb17ab99053667006c8883d5e450 4373074213f211ee8abf6644b4e4597158330bbc 5577ef30226735b167e13addab55661ffcb4f5e262f879c4f8fa23ef74266bad
GET /packs/js/runtime~public/product-c65bfa3764bffa252c98.js HTTP/1.1
Host: cdn2.dan.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://lutea.xyz/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
content-length: 790
server: openresty
date: Sun, 26 Mar 2023 08:24:06 GMT
last-modified: Fri, 24 Mar 2023 13:55:22 GMT
content-encoding: gzip
strict-transport-security: max-age=63072000; includeSubDomains
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000, public
access-control-allow-origin: *
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 f46f7100ad6fc83a021f62212f945830.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: sR2kgeGWfScDqLtJ4Pp_LMlCyai7DEG0ZE7JSlAIrX8Ix0Fi18GQmA==
age: 774565
X-Firefox-Spdy: h2
|
|
| cdn2.dan.com/packs/js/5-80e764b55b93b80460ba.chunk.js | 143.204.55.5 | 200 OK | 66 kB |
URL HTTP/2cdn2.dan.com/packs/js/5-80e764b55b93b80460ba.chunk.js IP143.204.55.5:0
File typeASCII text, with very long lines (65536), with no line terminators Hash2893f8b5c5211a6477d9086b0bb62b9f 17d07446174b64f53b10653ec643ac6bf7e75a39 6f156adf146e108e02cd0b8a9ac971c650cf06bdb6559339d50782739124e197
GET /packs/js/5-80e764b55b93b80460ba.chunk.js HTTP/1.1
Host: cdn2.dan.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://lutea.xyz/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
content-length: 65505
server: openresty
date: Mon, 03 Apr 2023 13:31:08 GMT
last-modified: Mon, 03 Apr 2023 13:20:59 GMT
content-encoding: gzip
strict-transport-security: max-age=63072000; includeSubDomains
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000, public
access-control-allow-origin: *
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 f46f7100ad6fc83a021f62212f945830.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: cnX-tccvyxFST7ZU5yiC-BlBMDHOVckXfqxB-gwf6jd3o1v4AeWgNA==
age: 64943
X-Firefox-Spdy: h2
|
|
| cdn2.dan.com/packs/js/public/product-04785fac3c26488c8594.chunk.js | 143.204.55.5 | 200 OK | 65 kB |
URL HTTP/2cdn2.dan.com/packs/js/public/product-04785fac3c26488c8594.chunk.js IP143.204.55.5:0
File typeASCII text, with very long lines (65536), with no line terminators Hash00881d81a2177b1037e877dded3e8f4c b31b7c1b44f7991dc23041a8b581ebdfdd2e8a9b cd1b1492614a2d449b60433827baf6e94b2c2510f8dc2f7799120abb2b22e570
GET /packs/js/public/product-04785fac3c26488c8594.chunk.js HTTP/1.1
Host: cdn2.dan.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://lutea.xyz/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
content-length: 65443
server: openresty
date: Mon, 03 Apr 2023 13:27:21 GMT
last-modified: Mon, 03 Apr 2023 13:20:59 GMT
content-encoding: gzip
strict-transport-security: max-age=63072000; includeSubDomains
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000, public
access-control-allow-origin: *
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 f46f7100ad6fc83a021f62212f945830.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: zmVy2biryB4g2tKKUey1oy9-83skddz6HrK9Yy831gLK5ZkcV2oh_g==
age: 65170
X-Firefox-Spdy: h2
|
|
| cdn2.dan.com/assets/vendor/svg4everybody-1f5a41bf858a5454d7923542e3380530fc2c4faaaf6ab58f29da7c6b2ebe2313.js | 143.204.55.5 | 200 OK | 982 B |
URL HTTP/2cdn2.dan.com/assets/vendor/svg4everybody-1f5a41bf858a5454d7923542e3380530fc2c4faaaf6ab58f29da7c6b2ebe2313.js IP143.204.55.5:0
File typeASCII text, with very long lines (1896), with no line terminators Hash7a32766f88f930804d6e293eca162c97 07393045684497b9c7c482af8bc6ea0909eaa6c1 5ccd098c90b550d5aea2d6ade393850d7f8a2d20db75595c1012af78fc002cb8
GET /assets/vendor/svg4everybody-1f5a41bf858a5454d7923542e3380530fc2c4faaaf6ab58f29da7c6b2ebe2313.js HTTP/1.1
Host: cdn2.dan.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://lutea.xyz/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
content-length: 982
server: openresty
date: Wed, 29 Mar 2023 01:06:30 GMT
last-modified: Tue, 21 Feb 2023 14:00:40 GMT
content-encoding: gzip
strict-transport-security: max-age=63072000; includeSubDomains
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000, public
access-control-allow-origin: *
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 f46f7100ad6fc83a021f62212f945830.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: 0hoU1drQ14jNcwG93gBthAoxe0w_LPPfZphGzhZ55a0wXwOmkcDpUw==
age: 541621
X-Firefox-Spdy: h2
|
|
| cdn2.dan.com/packs/js/runtime~public/shared-1b01634fd7ca21c7761f.js | 143.204.55.5 | 200 OK | 791 B |
URL HTTP/2cdn2.dan.com/packs/js/runtime~public/shared-1b01634fd7ca21c7761f.js IP143.204.55.5:0
File typeASCII text, with very long lines (1516) Hashd18255e3cc9ecfa4f5c70d603a3c8fed 4de182dd29bc01585447226e2f1c70398e356602 b61a2b54e8af031bd5c36a6b586aba19bbc704cf9a9431dd2c377257c4b64079
GET /packs/js/runtime~public/shared-1b01634fd7ca21c7761f.js HTTP/1.1
Host: cdn2.dan.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://lutea.xyz/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
content-length: 791
server: openresty
date: Fri, 17 Mar 2023 01:45:07 GMT
last-modified: Thu, 16 Mar 2023 13:30:32 GMT
content-encoding: gzip
strict-transport-security: max-age=63072000; includeSubDomains
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000, public
access-control-allow-origin: *
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 f46f7100ad6fc83a021f62212f945830.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: hAKEDswYI-g2I9CVbpd_2LjwKyurXoqgImBntflsD34zZwZEqaoV2Q==
age: 1576104
X-Firefox-Spdy: h2
|
|
| cdn2.dan.com/packs/js/public/shared-47096d6b7b3ac9b51a33.chunk.js | 143.204.55.5 | 200 OK | 479 B |
URL HTTP/2cdn2.dan.com/packs/js/public/shared-47096d6b7b3ac9b51a33.chunk.js IP143.204.55.5:0
File typeASCII text, with very long lines (1221) Hash08cf462f1aa8b0518c4f6a860507b664 c44d0485c51fc0ed1747f92e912ae7a067a2a967 98cef57852c353290e856aa93c0fe49028c625dda0f260da517dfda5915a613c
GET /packs/js/public/shared-47096d6b7b3ac9b51a33.chunk.js HTTP/1.1
Host: cdn2.dan.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://lutea.xyz/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
content-length: 479
server: openresty
date: Mon, 03 Apr 2023 13:31:40 GMT
last-modified: Mon, 03 Apr 2023 13:20:59 GMT
content-encoding: gzip
strict-transport-security: max-age=63072000; includeSubDomains
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000, public
access-control-allow-origin: *
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 f46f7100ad6fc83a021f62212f945830.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: ExhgIOj5H77JXNyem-kjDBMF8HYL8Y-tJJStCQEDIC6XzxfTIZPFdw==
age: 64911
X-Firefox-Spdy: h2
|
|
| cdn2.dan.com/assets/public/trustpilot-logo-0c24ebada3a61a0fbab3ad699317a1224d0d7cb662136acbaf3411d0efa9f66b.png | 143.204.55.5 | 200 OK | 4.2 kB |
URL HTTP/2cdn2.dan.com/assets/public/trustpilot-logo-0c24ebada3a61a0fbab3ad699317a1224d0d7cb662136acbaf3411d0efa9f66b.png IP143.204.55.5:0
File typePNG image data, 270 x 66, 8-bit/color RGBA, non-interlaced\012- data Hash18907774a48bbf9c3e0a1cc915a0d870 7c434b9d7e66d861c54aa7805b7abaaa6d18bcf9 008df92415278c07b98aab23d543867b3eb67c71c794afef0a84823cd7cc0df2
GET /assets/public/trustpilot-logo-0c24ebada3a61a0fbab3ad699317a1224d0d7cb662136acbaf3411d0efa9f66b.png HTTP/1.1
Host: cdn2.dan.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://lutea.xyz/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/png
content-length: 4185
server: openresty
date: Sat, 01 Apr 2023 01:09:03 GMT
last-modified: Tue, 21 Feb 2023 14:00:39 GMT
strict-transport-security: max-age=63072000; includeSubDomains
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000, public
access-control-allow-origin: *
x-cache: Hit from cloudfront
via: 1.1 f46f7100ad6fc83a021f62212f945830.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: dpxRNFSC7_Vu7KpTaGDRM-L4Gd5MyAYBmlB2iXpOvCAu194DK0CJrg==
age: 282268
X-Firefox-Spdy: h2
|
|
| cdn3.dan.com/assets/public/i18n-5cb6b07d5b73faf36a127e2ae39b1a6549e699600bfdf97bc9fa3164861062fc.js | 143.204.55.5 | 200 OK | 4.4 kB |
URL HTTP/2cdn3.dan.com/assets/public/i18n-5cb6b07d5b73faf36a127e2ae39b1a6549e699600bfdf97bc9fa3164861062fc.js IP143.204.55.5:0
File typeASCII text, with very long lines (15400), with no line terminators Hash237460200745329a05f5d23b00feeec9 730d45ece2a03e9641d3a510872d84233b62ae12 b273cc553f8153e5e7702cdb182e19d87680740716a1ec1642cb6284818acacc
GET /assets/public/i18n-5cb6b07d5b73faf36a127e2ae39b1a6549e699600bfdf97bc9fa3164861062fc.js HTTP/1.1
Host: cdn3.dan.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://lutea.xyz/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript
content-length: 4434
server: openresty
date: Thu, 30 Mar 2023 01:27:17 GMT
last-modified: Tue, 21 Feb 2023 14:00:40 GMT
content-encoding: gzip
strict-transport-security: max-age=63072000; includeSubDomains
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000, public
access-control-allow-origin: *
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 f46f7100ad6fc83a021f62212f945830.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: WOdVqgdSSlVMOtTFqDypfj9654h3LXQV-3O8g49zRLh9gZalVXR-Zg==
age: 453974
X-Firefox-Spdy: h2
|
|
| cdn3.dan.com/packs/js/3-481b9ae95468e439dec2.chunk.js | 143.204.55.5 | 200 OK | 56 kB |
URL HTTP/2cdn3.dan.com/packs/js/3-481b9ae95468e439dec2.chunk.js IP143.204.55.5:0
File typeASCII text, with very long lines (65450) Hash9c729357aa83eb5b1feec857030cb120 abf0d18b46e5516cc2a4ecd149f8bdbaada0bfba 34f393bfec1192e6492e78088f7291786e54281eab35fe239359847e71379744
GET /packs/js/3-481b9ae95468e439dec2.chunk.js HTTP/1.1
Host: cdn3.dan.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://lutea.xyz/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript
content-length: 55649
server: openresty
date: Mon, 03 Apr 2023 13:29:47 GMT
last-modified: Mon, 03 Apr 2023 13:20:59 GMT
content-encoding: gzip
strict-transport-security: max-age=63072000; includeSubDomains
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000, public
access-control-allow-origin: *
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 f46f7100ad6fc83a021f62212f945830.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: 621f4FH1rW43Ypd4naRGhYFDeS5CgovQEcRUnNuqSftvF11FnQG2cw==
age: 65024
X-Firefox-Spdy: h2
|
|
| widget.trustpilot.com/bootstrap/v5/tp.widget.bootstrap.min.js | 143.204.55.110 | 200 OK | 6.1 kB |
URL HTTP/2widget.trustpilot.com/bootstrap/v5/tp.widget.bootstrap.min.js IP143.204.55.110:0
File typeUnicode text, UTF-8 (with BOM) text, with very long lines (19239) Hash5add60196e5f96a414fb4b9586764e5d 633f471b3c2fcedeef9cad90cb5bf56f5fe55588 5370f4ba91dda790c7cae92817b812fcbd1ab367cbb4862f5669960ae4e2c9e0
GET /bootstrap/v5/tp.widget.bootstrap.min.js HTTP/1.1
Host: widget.trustpilot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://lutea.xyz/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/x-javascript
content-length: 6124
last-modified: Mon, 30 May 2022 14:38:02 GMT
x-amz-server-side-encryption: AES256
content-encoding: gzip
accept-ranges: bytes
server: AmazonS3
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000
date: Tue, 04 Apr 2023 01:27:03 GMT
cache-control: max-age=86400
etag: "5add60196e5f96a414fb4b9586764e5d"
x-cache: Hit from cloudfront
via: 1.1 aac54e3fe9825ce24d51e0204433c2c0.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: HA2CcI-fYglcqXDdw3dQ001U0HHbjk3xyRE_HQsZ-SNJlObz57QVFQ==
age: 21988
X-Firefox-Spdy: h2
|
|
| push.services.mozilla.com/ | 34.117.65.55 | 101 Switching Protocols | 0 B |
URL HTTP/1.1push.services.mozilla.com/ IP34.117.65.55:0
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: xx6z6ir2B/CmrQ6gkw6tfg==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: bch0ScLEJ5Q+aLdmghHVYkHoS2o=
Date: Tue, 04 Apr 2023 07:33:31 GMT
Via: 1.1 google
Alt-Svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| cdn0.dan.com/packs/js/runtime~public/fonts-2fe2dda32aa2d2a2aa67.js | 143.204.55.5 | 200 OK | 786 B |
URL HTTP/2cdn0.dan.com/packs/js/runtime~public/fonts-2fe2dda32aa2d2a2aa67.js IP143.204.55.5:0
File typeASCII text, with very long lines (1516) Hashb4464e4bebd8bf1006970b2339df46bd cf15b2248586735b8fdd81e49f13ec5c9e3193c3 fdaf7679528d5a78e2f74b0bbf1072113cef66f31303156c26333f1de1f58ad8
GET /packs/js/runtime~public/fonts-2fe2dda32aa2d2a2aa67.js HTTP/1.1
Host: cdn0.dan.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://lutea.xyz/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript
content-length: 786
server: openresty
date: Wed, 22 Mar 2023 00:53:06 GMT
last-modified: Tue, 21 Mar 2023 14:14:15 GMT
content-encoding: gzip
strict-transport-security: max-age=63072000; includeSubDomains
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000, public
access-control-allow-origin: *
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 f46f7100ad6fc83a021f62212f945830.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: hx7-jKodeYL6THlM5J2kXevnYEUjo8oUR1tStqIckyVgM5T-CdfdCg==
age: 1147225
X-Firefox-Spdy: h2
|
|
| cdn0.dan.com/packs/js/8-86be82eea8a939b48bf4.chunk.js | 143.204.55.5 | 200 OK | 3.8 kB |
URL HTTP/2cdn0.dan.com/packs/js/8-86be82eea8a939b48bf4.chunk.js IP143.204.55.5:0
File typeASCII text, with very long lines (10731) Hash44f2f8c0adc5cddda3fc2f64e59efaa1 c193e2137abf980f83786c0cfa594a52bfb209c7 7584067bebb85eafff0be2c7c474f27c25ffec9651263343f72e2a941f1860ea
GET /packs/js/8-86be82eea8a939b48bf4.chunk.js HTTP/1.1
Host: cdn0.dan.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://lutea.xyz/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript
content-length: 3848
server: openresty
date: Wed, 22 Mar 2023 00:53:06 GMT
last-modified: Tue, 21 Mar 2023 14:14:15 GMT
content-encoding: gzip
strict-transport-security: max-age=63072000; includeSubDomains
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000, public
access-control-allow-origin: *
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 f46f7100ad6fc83a021f62212f945830.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: 37CI2VYb4MRvnYEdeTRHPenSsXFX0pLfa4pOdy0PJeKcO02E9CBA6Q==
age: 1147225
X-Firefox-Spdy: h2
|
|
| cdn0.dan.com/assets/public-38aca3fa401d5672ddf67270ebc0394e2d374a7c6c745c452acf7c3afb141df5.css | 143.204.55.5 | 200 OK | 70 kB |
URL HTTP/2cdn0.dan.com/assets/public-38aca3fa401d5672ddf67270ebc0394e2d374a7c6c745c452acf7c3afb141df5.css IP143.204.55.5:0
File typeUnicode text, UTF-8 (with BOM) text, with very long lines (65533), with no line terminators Hashcf06a8939ac69589b09bcf427edccc63 d532196523124c3641cf97d40f23b0e631e3d220 b8bfc44c659a58f335f88468a7b29dd967580d34b8f28e32bcc30dc518af5b4a
GET /assets/public-38aca3fa401d5672ddf67270ebc0394e2d374a7c6c745c452acf7c3afb141df5.css HTTP/1.1
Host: cdn0.dan.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://lutea.xyz/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css
content-length: 70423
server: openresty
date: Wed, 29 Mar 2023 00:37:39 GMT
last-modified: Tue, 21 Mar 2023 14:12:22 GMT
content-encoding: gzip
strict-transport-security: max-age=63072000; includeSubDomains
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000, public
access-control-allow-origin: *
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 f46f7100ad6fc83a021f62212f945830.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: PsHCr1zCXez1RJUUGAUwpRZ8G0VsWhZy7DmYyJfeQ6jtcbID5PTJmw==
age: 543352
X-Firefox-Spdy: h2
|
|
| firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US | 35.241.9.150 | 200 OK | 329 B |
URL HTTP/2firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US IP35.241.9.150:0
File typeJSON data\012- , ASCII text, with very long lines (329), with no line terminators Hash0333b0655111aa68de771adfcc4db243 63f295a144ac87a7c8e23417626724eeca68a7eb 60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: ETag, Last-Modified, Expires, Retry-After, Cache-Control, Alert, Backoff, Pragma, Content-Length, Content-Type
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Tue, 04 Apr 2023 07:14:45 GMT
age: 1126
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| ocsp.pki.goog/gts1c3 | 142.250.74.131 | 200 OK | 472 B |
IP142.250.74.131:0
Hashda501e2a330785bb2a626a8b64beda12 a98f4428f627249686e244657af1dd3fccbeeb96 55689103661d491905bab1470071b28adc1037fdbaf7291a2cf9d5d5e24e69e5
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 04 Apr 2023 07:33:32 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| ocsp.pki.goog/gts1c3 | 142.250.74.131 | 200 OK | 472 B |
IP142.250.74.131:0
Hashda501e2a330785bb2a626a8b64beda12 a98f4428f627249686e244657af1dd3fccbeeb96 55689103661d491905bab1470071b28adc1037fdbaf7291a2cf9d5d5e24e69e5
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 04 Apr 2023 07:33:32 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| www.googletagmanager.com/gtm.js?id=GTM-SXRF&l=_gaDataLayer | 142.250.74.168 | 200 OK | 40 kB |
URL HTTP/2www.googletagmanager.com/gtm.js?id=GTM-SXRF&l=_gaDataLayer IP142.250.74.168:0
File typeASCII text, with very long lines (3336) Hashd1c63373d6bf10a2d4813bfb30b3545a 18b70e0889e5227f2f3296191aa42b76bb776f22 53c37f4505d05901af75689c44b6eadafe2b5a64ad5eb7340e8b308a9f3d1284
GET /gtm.js?id=GTM-SXRF&l=_gaDataLayer HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://lutea.xyz/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Tue, 04 Apr 2023 07:33:32 GMT
expires: Tue, 04 Apr 2023 07:33:32 GMT
cache-control: private, max-age=900
last-modified: Tue, 04 Apr 2023 06:00:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 40387
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| www.googletagmanager.com/gtm.js?id=G-3K6H374GJN&l=_combinedDataLayer | 142.250.74.168 | 200 OK | 84 kB |
URL HTTP/2www.googletagmanager.com/gtm.js?id=G-3K6H374GJN&l=_combinedDataLayer IP142.250.74.168:0
File typeASCII text, with very long lines (30260) Hash00e13074f65f4afc1a452c366905b21a ee470807f23be34f7280d1e770fabff2a9452d70 e1e264a46a0c1d129e547e6b2beadf3b644ff221460088bce308932cb00d55bc
GET /gtm.js?id=G-3K6H374GJN&l=_combinedDataLayer HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://lutea.xyz/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Tue, 04 Apr 2023 07:33:32 GMT
expires: Tue, 04 Apr 2023 07:33:32 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 83896
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| ocsp.pki.goog/gts1c3 | 142.250.74.131 | 200 OK | 472 B |
IP142.250.74.131:0
Hashda501e2a330785bb2a626a8b64beda12 a98f4428f627249686e244657af1dd3fccbeeb96 55689103661d491905bab1470071b28adc1037fdbaf7291a2cf9d5d5e24e69e5
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 04 Apr 2023 07:33:32 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| cdn3.dan.com/assets/logos/Main@2x-46c106d351853c036fe1a9ea927f19ae6e199c26272c60c71dad4077ba5bf335.svg | 143.204.55.5 | 200 OK | 12 kB |
URL HTTP/2cdn3.dan.com/assets/logos/Main@2x-46c106d351853c036fe1a9ea927f19ae6e199c26272c60c71dad4077ba5bf335.svg IP143.204.55.5:0
File typeSVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (4396) Hash386fcff0359a238feae3616089163f60 3861370145d1176cdbeb8d44c70638efd49507e7 0d2a786abd69d2da0f8ab1f105c0da3b8e1baf5c46c13169d6aa5b4c5fea7379
GET /assets/logos/Main@2x-46c106d351853c036fe1a9ea927f19ae6e199c26272c60c71dad4077ba5bf335.svg HTTP/1.1
Host: cdn3.dan.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://cdn0.dan.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
content-type: image/svg+xml
content-length: 11658
server: openresty
date: Sat, 18 Mar 2023 01:54:25 GMT
last-modified: Tue, 21 Feb 2023 14:00:38 GMT
strict-transport-security: max-age=63072000; includeSubDomains
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000, public
access-control-allow-origin: *
x-cache: Hit from cloudfront
via: 1.1 f46f7100ad6fc83a021f62212f945830.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: S-g3UYoYk50vKL4Vv7lqFOo3V-b_eojbO1fdbP-tmGQib6gD8dIqpA==
age: 1489147
X-Firefox-Spdy: h2
|
|
| cdn0.dan.com/assets/public/payment_logos-59054f5b1680bf22696ff46e8efca71737c0e19a2be88d040f2b45ac1343567d.png | 143.204.55.5 | 200 OK | 3.2 kB |
URL HTTP/2cdn0.dan.com/assets/public/payment_logos-59054f5b1680bf22696ff46e8efca71737c0e19a2be88d040f2b45ac1343567d.png IP143.204.55.5:0
File typePNG image data, 272 x 32, 8-bit/color RGBA, non-interlaced\012- data Hash1a20ff7a7df04a852f968c5c988dd6fa 260328a70eeb31d942e6bf3afdc3ba0abf9534f7 5e4dce7612e404dab090fbee14ac1eddd1c710bfce7d22ee87411662934a7387
GET /assets/public/payment_logos-59054f5b1680bf22696ff46e8efca71737c0e19a2be88d040f2b45ac1343567d.png HTTP/1.1
Host: cdn0.dan.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://cdn0.dan.com/assets/public-38aca3fa401d5672ddf67270ebc0394e2d374a7c6c745c452acf7c3afb141df5.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: image/png
content-length: 3181
server: openresty
date: Tue, 28 Mar 2023 09:59:15 GMT
last-modified: Tue, 21 Feb 2023 14:00:39 GMT
strict-transport-security: max-age=63072000; includeSubDomains
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000, public
access-control-allow-origin: *
x-cache: Hit from cloudfront
via: 1.1 f46f7100ad6fc83a021f62212f945830.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: xdeo7Ji7nMsF0X4wyos4mFgyB0WC_QTxVxYVLE3ggFgZBy8fw8YHlA==
age: 596057
X-Firefox-Spdy: h2
|
|
| cdn0.dan.com/assets/public/benefits-protection-35783a7942078c7f52db520328136efe3fae314f34eca2a6e24bddcebb44d766.svg | 143.204.55.5 | 200 OK | 4.3 kB |
URL HTTP/2cdn0.dan.com/assets/public/benefits-protection-35783a7942078c7f52db520328136efe3fae314f34eca2a6e24bddcebb44d766.svg IP143.204.55.5:0
File typeSVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (898) Hashb4a9f0ba344eb285f99ea324daeab7d0 82020383fea04966c27241f53e7aad2a74eab53a 523634d05d9535c060cf03d228ff4df6bc4e3a82547bb5320daf91df16d6352f
GET /assets/public/benefits-protection-35783a7942078c7f52db520328136efe3fae314f34eca2a6e24bddcebb44d766.svg HTTP/1.1
Host: cdn0.dan.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://cdn0.dan.com/assets/public-38aca3fa401d5672ddf67270ebc0394e2d374a7c6c745c452acf7c3afb141df5.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: image/svg+xml
content-length: 4277
server: openresty
date: Wed, 29 Mar 2023 01:10:09 GMT
last-modified: Tue, 21 Feb 2023 14:00:38 GMT
strict-transport-security: max-age=63072000; includeSubDomains
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000, public
access-control-allow-origin: *
x-cache: Hit from cloudfront
via: 1.1 f46f7100ad6fc83a021f62212f945830.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: AeEo1T9hn-iTqB2RiYUOPj0lu-yyYEmPhk75Txzke60NswOhXAU3oA==
age: 541403
X-Firefox-Spdy: h2
|
|
| cdn3.dan.com/assets/public/benefits-transfers-58058430be3633f64a6da7c8ad0613f1f5206aaa4624a55072477955e0a240c8.svg | 143.204.55.5 | 200 OK | 2.5 kB |
URL HTTP/2cdn3.dan.com/assets/public/benefits-transfers-58058430be3633f64a6da7c8ad0613f1f5206aaa4624a55072477955e0a240c8.svg IP143.204.55.5:0
File typeSVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (2008) Hash60377485c532698023ddb3324aafaff7 9fa2b7b0ee6792bdf3641cb45446b6d72496de1a 374cef9ae50af8a199e7054cfe5092643d1c7659965fb9480022e0487d467606
GET /assets/public/benefits-transfers-58058430be3633f64a6da7c8ad0613f1f5206aaa4624a55072477955e0a240c8.svg HTTP/1.1
Host: cdn3.dan.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://cdn0.dan.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
content-type: image/svg+xml
content-length: 2452
server: openresty
date: Wed, 29 Mar 2023 01:10:09 GMT
last-modified: Tue, 21 Feb 2023 14:00:38 GMT
strict-transport-security: max-age=63072000; includeSubDomains
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000, public
access-control-allow-origin: *
x-cache: Hit from cloudfront
via: 1.1 f46f7100ad6fc83a021f62212f945830.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: KKLwduWW6qr7NP2lQsGhkMMZ3l2Knqt3_LVrWAHVHnzFHDLti9V1HQ==
age: 541403
X-Firefox-Spdy: h2
|
|
| cdn3.dan.com/assets/public/benefits-payments-bb2d8b276c8d958972b69b9cfab875c8949e11307648285cecee28ba54bb2edf.svg | 143.204.55.5 | 200 OK | 4.3 kB |
URL HTTP/2cdn3.dan.com/assets/public/benefits-payments-bb2d8b276c8d958972b69b9cfab875c8949e11307648285cecee28ba54bb2edf.svg IP143.204.55.5:0
File typeSVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (633) Hash4663788bd6ea455409d8d873a1a67005 96bb83e405812d18655e9211ad390d0fbde6a7b1 fcd4b0fd72963bb6eb6404128536393529f0f4f7b5be664067d679777011b851
GET /assets/public/benefits-payments-bb2d8b276c8d958972b69b9cfab875c8949e11307648285cecee28ba54bb2edf.svg HTTP/1.1
Host: cdn3.dan.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://cdn0.dan.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
content-type: image/svg+xml
content-length: 4341
server: openresty
date: Tue, 14 Mar 2023 02:02:54 GMT
last-modified: Tue, 21 Feb 2023 14:00:38 GMT
strict-transport-security: max-age=63072000; includeSubDomains
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000, public
access-control-allow-origin: *
x-cache: Hit from cloudfront
via: 1.1 f46f7100ad6fc83a021f62212f945830.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: rdiie4TOkAgiuH6ch3iLTt8T332T2fog_DIfaeC-qU-tXBvzUXCjaw==
age: 1834238
X-Firefox-Spdy: h2
|
|
| cdn3.dan.com/assets/GraphikDan-Semibold-Web-0f41cae3a242b38a760ec60c3d0c3882d4c2bc318a8fb0dea97e362bc5e009fe.woff2 | 143.204.55.5 | 200 OK | 42 kB |
URL HTTP/2cdn3.dan.com/assets/GraphikDan-Semibold-Web-0f41cae3a242b38a760ec60c3d0c3882d4c2bc318a8fb0dea97e362bc5e009fe.woff2 IP143.204.55.5:0
File typeWeb Open Font Format (Version 2), TrueType, length 42052, version 1.0\012- data Hash7d992431ee5e40d98d9ab99cb5cde954 3e82b380c81c2f83e143e4bb1a4437903c689f05 560a9afe1c7efc78932e5a841e202476c7af320d0aec9d916cc2f065243cfcfc
GET /assets/GraphikDan-Semibold-Web-0f41cae3a242b38a760ec60c3d0c3882d4c2bc318a8fb0dea97e362bc5e009fe.woff2 HTTP/1.1
Host: cdn3.dan.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://lutea.xyz
Connection: keep-alive
Referer: https://cdn0.dan.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/font-woff2
content-length: 42052
server: openresty
date: Wed, 22 Mar 2023 00:11:38 GMT
last-modified: Tue, 21 Feb 2023 14:00:40 GMT
strict-transport-security: max-age=63072000; includeSubDomains
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000, public
access-control-allow-origin: *
x-cache: Hit from cloudfront
via: 1.1 f46f7100ad6fc83a021f62212f945830.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: _ONGQ1chHsBcZcfIPQkeOWqdR59IeprwKWSdSMDi6UnFp6oHkeZ70Q==
age: 1149714
X-Firefox-Spdy: h2
|
|
| cdn3.dan.com/assets/GraphikDan-Bold-Web-eac93a2bef84e2b8c9c68c73a18e42867ba0de882874c00483dc28c328622b2f.woff2 | 143.204.55.5 | 200 OK | 39 kB |
URL HTTP/2cdn3.dan.com/assets/GraphikDan-Bold-Web-eac93a2bef84e2b8c9c68c73a18e42867ba0de882874c00483dc28c328622b2f.woff2 IP143.204.55.5:0
File typeWeb Open Font Format (Version 2), TrueType, length 38556, version 1.0\012- data Hash15e0a4e9b6fc2834eec6ccba1973aa45 080a7126b7fb4063ea36c06beca3ebfdc4cc63ef 11f7002d7b0e45f73367bf8e4f5763dc6a7f8f7d6be4f29f26650f13480a5f6a
GET /assets/GraphikDan-Bold-Web-eac93a2bef84e2b8c9c68c73a18e42867ba0de882874c00483dc28c328622b2f.woff2 HTTP/1.1
Host: cdn3.dan.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://lutea.xyz
Connection: keep-alive
Referer: https://cdn0.dan.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/font-woff2
content-length: 38556
server: openresty
date: Wed, 29 Mar 2023 01:23:26 GMT
last-modified: Tue, 21 Feb 2023 14:00:40 GMT
strict-transport-security: max-age=63072000; includeSubDomains
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000, public
access-control-allow-origin: *
x-cache: Hit from cloudfront
via: 1.1 f46f7100ad6fc83a021f62212f945830.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: DQ24XJH6akFiMoYo3lZwtPUPHjLPVutIArzYzTCheIRGW8Uj2wDRBA==
age: 540606
X-Firefox-Spdy: h2
|
|
| cdn2.dan.com/assets/GraphikDan-Medium-Web-f6517986e1663e1d662e482993a3c08363c352936be7ccfac953c7674304d71e.woff2 | 143.204.55.5 | 200 OK | 36 kB |
URL HTTP/2cdn2.dan.com/assets/GraphikDan-Medium-Web-f6517986e1663e1d662e482993a3c08363c352936be7ccfac953c7674304d71e.woff2 IP143.204.55.5:0
File typeWeb Open Font Format (Version 2), TrueType, length 36308, version 1.0\012- data Hash47f09a78e5d17d771fb06bc91e174499 b335fe0226d224782678ff7bea49773993e6f052 cf2e4f4feea57b2fb89e83ed56fc49bc0bf21a4f1fa20afe2e83d745c8890fc3
GET /assets/GraphikDan-Medium-Web-f6517986e1663e1d662e482993a3c08363c352936be7ccfac953c7674304d71e.woff2 HTTP/1.1
Host: cdn2.dan.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://lutea.xyz
Connection: keep-alive
Referer: https://cdn0.dan.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/font-woff2
content-length: 36308
server: openresty
date: Wed, 29 Mar 2023 17:03:26 GMT
last-modified: Tue, 21 Feb 2023 14:00:40 GMT
strict-transport-security: max-age=63072000; includeSubDomains
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000, public
access-control-allow-origin: *
x-cache: Hit from cloudfront
via: 1.1 f46f7100ad6fc83a021f62212f945830.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: uLodRb8jF5wf_kZwOgT1U2B1hHGuLHtimBw4q0_aGBYWorUH-qjYag==
age: 484206
X-Firefox-Spdy: h2
|
|
| lutea.xyz/packs/spritemap.svg | 3.64.163.50 | 200 OK | 60 kB |
URL HTTP/2lutea.xyz/packs/spritemap.svg IP3.64.163.50:0
File typeSVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (60423), with no line terminators Hash70d06b16f5602f37a72554e7be28beea 630c495fc861cdcdffb85a0160dcef93c2578e0e 75fff758e1a3f745402819f4c9941966e0938e0fd475c7d7111c1ed61f39fbd8
Analyzer | Verdict | Alert | fortinet | Malware | | quad9 | Sinkholed | |
GET /packs/spritemap.svg HTTP/1.1
Host: lutea.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://lutea.xyz/
Connection: keep-alive
Cookie: bc9bd58fe1b6ef954d6d794db6d30e25e8ff50634d24346cf8006ef422e3c05c6e48b07678e34d08c97ad3f91012c80ac690b50f51fbd49b16e301de58d9c5ca=h6st5FreVa1KHRR7Np1ESijxfSya5OzujS6i2oRVNtjsn6o91M4zWNlR2RXGp8E%2Bbx7RJjeCWj23Hmu3PQ5NpNh3izbPLVCETbf192HNV4OaiCY2mifuANDdm2lAI9LF8kmgs0s2AMsVA9DOpS7p1LIJo0mW8YNfyM4t5ZCCJuxPz1hK7HU%2F7xqlDWQx%2B4V7iHcBEq2fTAV3W%2BEPRQKCbQZkRP3rVqh7B5j8q09liNlvDDdpTupiPgQNH9dWX4ip7CsJ7z%2B4E2j%2F%2BH1ulHeU%2FhSmgr0IlbQBflBpgJL8jgbvf1yTLV528jbHOtn84gVBNmNmc6fiGwGzoEAgu7LyZDdvRaaQdP9B%2Fz5Jaq4SVoml8nEyV749hEBsoJWSKTwa6EQ%2FERGBWY1aXH35h6occE%2Bec9F05goax7bh3ne3kkSXyBo2ImgK%2FCzp496RAARlcQqP7AAIRiecXE6HFc9ppw%3D%3D--4%2BMYa8fB09OnGxYE--Cg%2BiQwLM3UPNvHGE%2Fk9UfA%3D%3D; time_zone_offset=0
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: same-origin
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: openresty
date: Tue, 04 Apr 2023 07:33:32 GMT
content-type: image/svg+xml
content-length: 60423
last-modified: Mon, 03 Apr 2023 13:20:59 GMT
X-Firefox-Spdy: h2
|
|
| cdn1.dan.com/assets/GraphikDan-Regular-Web-3d6859522e94ea684004514b5a900f8a0219dbb06be9271a359abd95c4f1df0a.woff2 | 143.204.55.83 | 200 OK | 37 kB |
URL HTTP/2cdn1.dan.com/assets/GraphikDan-Regular-Web-3d6859522e94ea684004514b5a900f8a0219dbb06be9271a359abd95c4f1df0a.woff2 IP143.204.55.83:0
File typeWeb Open Font Format (Version 2), TrueType, length 37172, version 1.0\012- data Hash6b2f88dd1fc37ad2228bc4b0e12bb011 088cd68a9ce402835ff00e8e2c8ef2ccf4081a3b 1b23e0d886e0602443c35df66f69cf1560710913bf88b512ed9cea147fccf0b6
GET /assets/GraphikDan-Regular-Web-3d6859522e94ea684004514b5a900f8a0219dbb06be9271a359abd95c4f1df0a.woff2 HTTP/1.1
Host: cdn1.dan.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://lutea.xyz
Connection: keep-alive
Referer: https://cdn0.dan.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/font-woff2
content-length: 37172
server: openresty
date: Fri, 31 Mar 2023 00:53:11 GMT
last-modified: Tue, 21 Feb 2023 14:00:40 GMT
strict-transport-security: max-age=63072000; includeSubDomains
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000, public
access-control-allow-origin: *
x-cache: Hit from cloudfront
via: 1.1 185768229530368be94556dcab1c486a.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: 059FgW05ZHCFZd70Iho3I-57D07OnUU7KhYqo8JRvR2T_VOosv9mFw==
age: 369621
X-Firefox-Spdy: h2
|
|
| cdn1.dan.com/assets/GraphikDan-Light-Web-fc582b515686a456805ed816f59bc30ed5415460f1ee248c62efbcf1d90c8b9a.woff2 | 143.204.55.83 | 200 OK | 34 kB |
URL HTTP/2cdn1.dan.com/assets/GraphikDan-Light-Web-fc582b515686a456805ed816f59bc30ed5415460f1ee248c62efbcf1d90c8b9a.woff2 IP143.204.55.83:0
File typeWeb Open Font Format (Version 2), TrueType, length 34092, version 1.0\012- data Hash9e90e7eccd164bdeee5ae1e9331316d5 4a8c44ec681947f676ee97f33aab743a079eff7b 683068589a2fceaee125c3a3fd83a27a28f90ce37c099777eb89a4629d9fad3e
GET /assets/GraphikDan-Light-Web-fc582b515686a456805ed816f59bc30ed5415460f1ee248c62efbcf1d90c8b9a.woff2 HTTP/1.1
Host: cdn1.dan.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://lutea.xyz
Connection: keep-alive
Referer: https://cdn0.dan.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/font-woff2
content-length: 34092
server: openresty
date: Mon, 27 Mar 2023 00:12:09 GMT
last-modified: Tue, 21 Feb 2023 14:00:40 GMT
strict-transport-security: max-age=63072000; includeSubDomains
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000, public
access-control-allow-origin: *
x-cache: Hit from cloudfront
via: 1.1 185768229530368be94556dcab1c486a.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: rawgmTBe3WYuTtmiq09n95FzjUqRUjtK9M1EDmnpZRwZ27jPbyEQaA==
age: 717683
X-Firefox-Spdy: h2
|
|
| cdn3.dan.com/assets/icons/touch-icon-ipad-retina-84ac34f64df88dd80da5e4aafaec29e3416f6a1d65f0f7e57e1cab3c64aba363.png | 143.204.55.5 | 200 OK | 3.1 kB |
URL HTTP/2cdn3.dan.com/assets/icons/touch-icon-ipad-retina-84ac34f64df88dd80da5e4aafaec29e3416f6a1d65f0f7e57e1cab3c64aba363.png IP143.204.55.5:0
File typePNG image data, 152 x 152, 8-bit/color RGBA, non-interlaced\012- data Hash0c59777f5725af9a1d2d9153da1d7176 bc06fbcbf2170fe049279b7a1b6003eef8d6986a 56a8f2519ed554a55e6084d77c1ab7ef3511f8ed5e7877db50a9865621a79290
GET /assets/icons/touch-icon-ipad-retina-84ac34f64df88dd80da5e4aafaec29e3416f6a1d65f0f7e57e1cab3c64aba363.png HTTP/1.1
Host: cdn3.dan.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://lutea.xyz/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/png
content-length: 3054
server: openresty
date: Sat, 25 Mar 2023 01:23:28 GMT
last-modified: Tue, 21 Feb 2023 14:00:38 GMT
strict-transport-security: max-age=63072000; includeSubDomains
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000, public
access-control-allow-origin: *
x-cache: Hit from cloudfront
via: 1.1 f46f7100ad6fc83a021f62212f945830.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: G74VVrWSR8SSfsKc6ojbqiE1MgKz2PMdvGeCSaiOiwD8Tlu7H13zvw==
age: 886204
X-Firefox-Spdy: h2
|
|
| cdn0.dan.com/assets/icons/favicon-8f8be32076803305bd39913d14e9f28567adc474d60a95af6e0d21282302ce6a.ico | 143.204.55.5 | 200 OK | 15 kB |
URL HTTP/2cdn0.dan.com/assets/icons/favicon-8f8be32076803305bd39913d14e9f28567adc474d60a95af6e0d21282302ce6a.ico IP143.204.55.5:0
File typeMS Windows icon resource - 3 icons, 16x16, 32 bits/pixel, 32x32, 32 bits/pixel\012- data Hash91b5b75e4f52df43982200873c1feef6 8a01193959229d10a361d4965e305490544c428c 17cae8213bf0fbeae27b644f0616b74981f348af943f27b73abf8e7b3a557b8f
GET /assets/icons/favicon-8f8be32076803305bd39913d14e9f28567adc474d60a95af6e0d21282302ce6a.ico HTTP/1.1
Host: cdn0.dan.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://lutea.xyz/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/vnd.microsoft.icon
content-length: 15406
server: openresty
date: Sat, 25 Mar 2023 07:28:35 GMT
last-modified: Tue, 21 Feb 2023 14:00:38 GMT
strict-transport-security: max-age=63072000; includeSubDomains
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000, public
access-control-allow-origin: *
x-cache: Hit from cloudfront
via: 1.1 f46f7100ad6fc83a021f62212f945830.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: PNKjNGKdGiCB64JngaXv0ZJTDycY3saZPse3MpwMCnsTDJbDa2KJ6Q==
age: 864296
X-Firefox-Spdy: h2
|
|
| d1lr4y73neawid.cloudfront.net/clients/pictures/000/010/358/thumb/LOGO_noBorder.jpg?1647512209 | 54.230.245.44 | 200 OK | 5.2 kB |
URL HTTP/2d1lr4y73neawid.cloudfront.net/clients/pictures/000/010/358/thumb/LOGO_noBorder.jpg?1647512209 IP54.230.245.44:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 100x100, components 3\012- data Hashbe705019a186900462e9f2e23611fe31 a2ead12019c655453f40b2f790a91074fe63fc4f fe2824609dce40e0991cb9bd1f3176078f76e41b8b0715891dd7a2936adc444b
GET /clients/pictures/000/010/358/thumb/LOGO_noBorder.jpg?1647512209 HTTP/1.1
Host: d1lr4y73neawid.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://lutea.xyz/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: image/jpeg
content-length: 5236
date: Mon, 03 Apr 2023 15:48:15 GMT
last-modified: Thu, 17 Mar 2022 10:16:50 GMT
etag: "be705019a186900462e9f2e23611fe31"
accept-ranges: bytes
server: AmazonS3
x-cache: Hit from cloudfront
via: 1.1 b053873243f91b1bb6dc406ce0c67db4.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: skDnqso6ywZZBGS2sbTqqfYCSkZ5bYIujEubg43OIDcakF3HCiOTWg==
age: 56718
X-Firefox-Spdy: h2
|
|
| www.google-analytics.com/analytics.js | 142.250.74.110 | 200 OK | 20 kB |
URL HTTP/2www.google-analytics.com/analytics.js IP142.250.74.110:0
File typeASCII text, with very long lines (1490) Hashca7fbbfd120e3e329633044190bbf134 d17f81e03dd827554ddd207ea081fb46b3415445 847004cefb32f85a9cc16b0b1eb77529ff5753680c145bfcb23f651d214737db
GET /analytics.js HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://lutea.xyz/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
strict-transport-security: max-age=10886400; includeSubDomains; preload
x-content-type-options: nosniff
content-encoding: gzip
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 20085
date: Tue, 04 Apr 2023 06:05:12 GMT
expires: Tue, 04 Apr 2023 08:05:12 GMT
cache-control: public, max-age=7200
age: 5300
last-modified: Tue, 10 Jan 2023 21:29:14 GMT
content-type: text/javascript
vary: Accept-Encoding
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| img6.wsimg.com/wrhs/bfce28b11f6e2a6eb5450a872f4c6cc2/tcc.min.js | 95.101.10.131 | 200 OK | 30 kB |
URL HTTP/2img6.wsimg.com/wrhs/bfce28b11f6e2a6eb5450a872f4c6cc2/tcc.min.js IP95.101.10.131:0 ASN#20940 Akamai International B.V.
File typeASCII text, with very long lines (65536), with no line terminators Hash30993c84124390a5d81aae27645fe3c5 14a44407bd6198c0eeb39cb26627b27352c91e48 36381d6afee58dbfbbf943399699561524f190d6bdcf431071311e79e899abbd
GET /wrhs/bfce28b11f6e2a6eb5450a872f4c6cc2/tcc.min.js HTTP/1.1
Host: img6.wsimg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://lutea.xyz/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript
accept-ranges: bytes
content-encoding: br
etag: "bfce28b11f6e2a6eb5450a872f4c6cc2"
last-modified: Wed, 08 Mar 2023 20:24:49 GMT
vary: Accept-Encoding
x-amz-id-2: jWn6gtvOGi/5SElB52RWz9NyTh2WikZffBcILG9a4HUPT5GIH9Wb4zwpoWL07WXK59AwBb9lXW4=
x-amz-request-id: ZS4YPHJ2B4CD2C7D
x-amz-server-side-encryption: AES256
x-amz-version-id: rQ_p4yIgE_QHqAdSBRiu6yCLzBO9O8Zi
content-length: 29758
cache-control: max-age=31536000
date: Tue, 04 Apr 2023 07:33:32 GMT
server-timing: cdn-cache; desc=HIT, edge; dur=1, ak_p; desc="466831_1600457343_1065114756_25_1271_1_0";dur=1
timing-allow-origin: *
access-control-allow-origin: *
X-Firefox-Spdy: h2
|
|
| ocsp.pki.goog/gts1c3 | 142.250.74.131 | 200 OK | 471 B |
IP142.250.74.131:0
Hash8a07d5641831d569df8afc101ade4999 762e0ba34872c6244ee7aed321a85ef2773bb1d2 4cb46e0db39844d918179e7f1b42a16dbac407742b15ed63919b052b23029469
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 04 Apr 2023 07:33:32 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| stats.g.doubleclick.net/j/collect?t=dc&aip=1&_r=3&v=1&_v=j99&tid=UA-47793354-3&cid=2102642353.1680593612&jid=433419047&gjid=868330454&_gid=1506745783.1680593612&_u=YGBAgEABAAAAAEAAI~&z=767725662 | 64.233.161.156 | 200 OK | 4 B |
URL HTTP/2stats.g.doubleclick.net/j/collect?t=dc&aip=1&_r=3&v=1&_v=j99&tid=UA-47793354-3&cid=2102642353.1680593612&jid=433419047&gjid=868330454&_gid=1506745783.1680593612&_u=YGBAgEABAAAAAEAAI~&z=767725662 IP64.233.161.156:0
File typeASCII text, with no line terminators Hash48c0473b7821185d937e685216e2168b 3743e47f8a429a5e87b86cb582d78940733d9d2e 570c4d4674fd20602189c548c145ba1f8ac34bc2e4599a71471969028aa1e25a
POST /j/collect?t=dc&aip=1&_r=3&v=1&_v=j99&tid=UA-47793354-3&cid=2102642353.1680593612&jid=433419047&gjid=868330454&_gid=1506745783.1680593612&_u=YGBAgEABAAAAAEAAI~&z=767725662 HTTP/1.1
Host: stats.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://lutea.xyz/
Content-Type: text/plain
Content-Length: 0
Origin: https://lutea.xyz
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: https://lutea.xyz
strict-transport-security: max-age=10886400; includeSubDomains; preload
date: Tue, 04 Apr 2023 07:33:32 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
last-modified: Sun, 17 May 1998 03:00:00 GMT
access-control-allow-credentials: true
x-content-type-options: nosniff
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 4
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| ocsp.pki.goog/gts1c3 | 142.250.74.131 | 200 OK | 471 B |
IP142.250.74.131:0
Hash8a07d5641831d569df8afc101ade4999 762e0ba34872c6244ee7aed321a85ef2773bb1d2 4cb46e0db39844d918179e7f1b42a16dbac407742b15ed63919b052b23029469
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 04 Apr 2023 07:33:32 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| tags.tiqcdn.com/utag/tiqapp/utag.v.js?a=gpl/main/202212210441&nocookie=1 | 54.230.111.11 | 200 OK | 2 B |
URL HTTP/2tags.tiqcdn.com/utag/tiqapp/utag.v.js?a=gpl/main/202212210441&nocookie=1 IP54.230.111.11:0
File typeASCII text, with no line terminators Hash7bc0ee636b3b83484fc3b9348863bd22 ebbffb7d7ea5362a22bfa1bab0bfdeb1617cd610 a2c2339691fc48fbd14fb307292dff3e21222712d9240810742d7df0c6d74dfb
GET /utag/tiqapp/utag.v.js?a=gpl/main/202212210441&nocookie=1 HTTP/1.1
Host: tags.tiqcdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://lutea.xyz/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
content-length: 2
last-modified: Sat, 11 Mar 2023 06:57:46 GMT
x-amz-server-side-encryption: AES256
x-amz-version-id: 2XUX04X5QEw0.xFya64khU._sHTRl_Pz
accept-ranges: bytes
server: AmazonS3
date: Tue, 04 Apr 2023 07:30:01 GMT
etag: "7bc0ee636b3b83484fc3b9348863bd22"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 193a8c13b6e0a6b90db7172f6358335e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: Ufn-L3_z378AgNUjHirVvcIhwx-YOhnaj1KXDVEZsu94YMpAb31Vmg==
age: 212
X-Firefox-Spdy: h2
|
|
| events.api.secureserver.net/image.aspx?referrer=&trace_id=1e6da3d0341a53f0acb1b9c649551f4a×tamp=1680593612436&corrid=1932208991&vs=visible&rand=1749190372&sitename=lutea.xyz&page=%2F&location=https%3A%2F%2Flutea.xyz%2F&agent=false&delegated=false&salessite=false&event=gtm.dom&ap=dan-parking&loadSource=gtm&page_level_properties=ap%2CloadSource&event_type=page.request&hw=1&browx=1280&browy=939&resx=1280&resy=1024&cdepth=24&hit_id=bc69b2fd-a4cc-57b6-a4df-bd4c31cfb517&visitor_guid=84760e52-7708-5229-89dd-1ca1b766b07b&visit_guid=84760e52-7708-5229-89dd-1ca1b766b07b&page_count=1&has_consent=0&cv=3.39.1&client_name=tcc&same_site=none | 95.101.10.130 | 302 Found | 0 B |
URL HTTP/2events.api.secureserver.net/image.aspx?referrer=&trace_id=1e6da3d0341a53f0acb1b9c649551f4a×tamp=1680593612436&corrid=1932208991&vs=visible&rand=1749190372&sitename=lutea.xyz&page=%2F&location=https%3A%2F%2Flutea.xyz%2F&agent=false&delegated=false&salessite=false&event=gtm.dom&ap=dan-parking&loadSource=gtm&page_level_properties=ap%2CloadSource&event_type=page.request&hw=1&browx=1280&browy=939&resx=1280&resy=1024&cdepth=24&hit_id=bc69b2fd-a4cc-57b6-a4df-bd4c31cfb517&visitor_guid=84760e52-7708-5229-89dd-1ca1b766b07b&visit_guid=84760e52-7708-5229-89dd-1ca1b766b07b&page_count=1&has_consent=0&cv=3.39.1&client_name=tcc&same_site=none IP95.101.10.130:0 ASN#20940 Akamai International B.V.
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /image.aspx?referrer=&trace_id=1e6da3d0341a53f0acb1b9c649551f4a×tamp=1680593612436&corrid=1932208991&vs=visible&rand=1749190372&sitename=lutea.xyz&page=%2F&location=https%3A%2F%2Flutea.xyz%2F&agent=false&delegated=false&salessite=false&event=gtm.dom&ap=dan-parking&loadSource=gtm&page_level_properties=ap%2CloadSource&event_type=page.request&hw=1&browx=1280&browy=939&resx=1280&resy=1024&cdepth=24&hit_id=bc69b2fd-a4cc-57b6-a4df-bd4c31cfb517&visitor_guid=84760e52-7708-5229-89dd-1ca1b766b07b&visit_guid=84760e52-7708-5229-89dd-1ca1b766b07b&page_count=1&has_consent=0&cv=3.39.1&client_name=tcc&same_site=none HTTP/1.1
Host: events.api.secureserver.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://lutea.xyz/
Origin: https://lutea.xyz
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
content-length: 0
access-control-allow-origin: https://lutea.xyz
access-control-allow-credentials: true
x-robots-tag: noindex, nofollow
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: 0
strict-transport-security: max-age=31536000 ; includeSubDomains
x-frame-options: DENY
location: https://events.api.secureserver.net/image.aspx?referrer=&trace_id=1e6da3d0341a53f0acb1b9c649551f4a×tamp=1680593612436&corrid=1932208991&vs=visible&rand=1749190372&sitename=lutea.xyz&page=%2F&location=https%3A%2F%2Flutea.xyz%2F&agent=false&delegated=false&salessite=false&event=gtm.dom&ap=dan-parking&loadSource=gtm&page_level_properties=ap%2CloadSource&event_type=page.request&hw=1&browx=1280&browy=939&resx=1280&resy=1024&cdepth=24&hit_id=bc69b2fd-a4cc-57b6-a4df-bd4c31cfb517&visitor_guid=84760e52-7708-5229-89dd-1ca1b766b07b&visit_guid=84760e52-7708-5229-89dd-1ca1b766b07b&page_count=1&has_consent=0&cv=3.39.1&client_name=tcc&same_site=none&CookieTest=1
date: Tue, 04 Apr 2023 07:33:32 GMT
set-cookie: traffic=; domain=.secureserver.net; path=/;
X-Firefox-Spdy: h2
|
|
| events.api.secureserver.net/image.aspx?referrer=&trace_id=1e6da3d0341a53f0acb1b9c649551f4a×tamp=1680593612436&corrid=1932208991&vs=visible&rand=1749190372&sitename=lutea.xyz&page=%2F&location=https%3A%2F%2Flutea.xyz%2F&agent=false&delegated=false&salessite=false&event=gtm.dom&ap=dan-parking&loadSource=gtm&page_level_properties=ap%2CloadSource&event_type=page.request&hw=1&browx=1280&browy=939&resx=1280&resy=1024&cdepth=24&hit_id=bc69b2fd-a4cc-57b6-a4df-bd4c31cfb517&visitor_guid=84760e52-7708-5229-89dd-1ca1b766b07b&visit_guid=84760e52-7708-5229-89dd-1ca1b766b07b&page_count=1&has_consent=0&cv=3.39.1&client_name=tcc&same_site=none&CookieTest=1 | 95.101.10.130 | 200 OK | 43 B |
URL HTTP/2events.api.secureserver.net/image.aspx?referrer=&trace_id=1e6da3d0341a53f0acb1b9c649551f4a×tamp=1680593612436&corrid=1932208991&vs=visible&rand=1749190372&sitename=lutea.xyz&page=%2F&location=https%3A%2F%2Flutea.xyz%2F&agent=false&delegated=false&salessite=false&event=gtm.dom&ap=dan-parking&loadSource=gtm&page_level_properties=ap%2CloadSource&event_type=page.request&hw=1&browx=1280&browy=939&resx=1280&resy=1024&cdepth=24&hit_id=bc69b2fd-a4cc-57b6-a4df-bd4c31cfb517&visitor_guid=84760e52-7708-5229-89dd-1ca1b766b07b&visit_guid=84760e52-7708-5229-89dd-1ca1b766b07b&page_count=1&has_consent=0&cv=3.39.1&client_name=tcc&same_site=none&CookieTest=1 IP95.101.10.130:0 ASN#20940 Akamai International B.V.
File typeGIF image data, version 89a, 1 x 1\012- data Hash325472601571f31e1bf00674c368d335 2daeaa8b5f19f0bc209d976c02bd6acb51b00b0a b1442e85b03bdcaf66dc58c7abb98745dd2687d86350be9a298a1d9382ac849b
GET /image.aspx?referrer=&trace_id=1e6da3d0341a53f0acb1b9c649551f4a×tamp=1680593612436&corrid=1932208991&vs=visible&rand=1749190372&sitename=lutea.xyz&page=%2F&location=https%3A%2F%2Flutea.xyz%2F&agent=false&delegated=false&salessite=false&event=gtm.dom&ap=dan-parking&loadSource=gtm&page_level_properties=ap%2CloadSource&event_type=page.request&hw=1&browx=1280&browy=939&resx=1280&resy=1024&cdepth=24&hit_id=bc69b2fd-a4cc-57b6-a4df-bd4c31cfb517&visitor_guid=84760e52-7708-5229-89dd-1ca1b766b07b&visit_guid=84760e52-7708-5229-89dd-1ca1b766b07b&page_count=1&has_consent=0&cv=3.39.1&client_name=tcc&same_site=none&CookieTest=1 HTTP/1.1
Host: events.api.secureserver.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://lutea.xyz
Referer: https://lutea.xyz/
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/gif
content-length: 43
access-control-allow-origin: https://lutea.xyz
access-control-allow-credentials: true
x-robots-tag: noindex, nofollow
cache-control: private
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
strict-transport-security: max-age=31536000 ; includeSubDomains
x-frame-options: DENY
date: Tue, 04 Apr 2023 07:33:32 GMT
X-Firefox-Spdy: h2
|
|
| ocsp.pki.goog/gts1c3 | 142.250.74.131 | 200 OK | 472 B |
IP142.250.74.131:0
Hash3e18ab4ca97f7339957b43db660cfd1a 762deec33262d66e27a74faa8e4c894f56204559 492dc3540f5c32f203158d75df28bf7da92b30f650307d6756ad11a44126752a
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 04 Apr 2023 07:33:32 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| ocsp.pki.goog/gts1c3 | 142.250.74.131 | 200 OK | 472 B |
IP142.250.74.131:0
Hash1498f625c657d89b347a16c58e1e6673 c40fca500f1cbe2c9887c329a992dffacc4c6c5e 48f97612acea62b842bd8f977c9d44e2d1809376218a8112889f3e69be9961b6
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 04 Apr 2023 07:33:32 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| www.google.com/ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j99&tid=UA-47793354-3&cid=2102642353.1680593612&jid=433419047&_u=YGBAgEABAAAAAEAAI~&z=1173012045 | 142.250.74.132 | 200 OK | 42 B |
URL HTTP/2www.google.com/ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j99&tid=UA-47793354-3&cid=2102642353.1680593612&jid=433419047&_u=YGBAgEABAAAAAEAAI~&z=1173012045 IP142.250.74.132:0
File typeGIF image data, version 89a, 1 x 1\012- data Hashd89746888da2d9510b64a9f031eaecd5 d5fceb6532643d0d84ffe09c40c481ecdf59e15a ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j99&tid=UA-47793354-3&cid=2102642353.1680593612&jid=433419047&_u=YGBAgEABAAAAAEAAI~&z=1173012045 HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://lutea.xyz/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Tue, 04 Apr 2023 07:33:32 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| www.google.no/ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j99&tid=UA-47793354-3&cid=2102642353.1680593612&jid=433419047&_u=YGBAgEABAAAAAEAAI~&z=1173012045 | 142.250.74.163 | 200 OK | 42 B |
URL HTTP/2www.google.no/ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j99&tid=UA-47793354-3&cid=2102642353.1680593612&jid=433419047&_u=YGBAgEABAAAAAEAAI~&z=1173012045 IP142.250.74.163:0
File typeGIF image data, version 89a, 1 x 1\012- data Hashd89746888da2d9510b64a9f031eaecd5 d5fceb6532643d0d84ffe09c40c481ecdf59e15a ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j99&tid=UA-47793354-3&cid=2102642353.1680593612&jid=433419047&_u=YGBAgEABAAAAAEAAI~&z=1173012045 HTTP/1.1
Host: www.google.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://lutea.xyz/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Tue, 04 Apr 2023 07:33:32 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| img6.wsimg.com/wrhs/ce554d2333f3801abafb32da18213ff7/tti.min.js | 95.101.10.131 | 200 OK | 7.5 kB |
URL HTTP/2img6.wsimg.com/wrhs/ce554d2333f3801abafb32da18213ff7/tti.min.js IP95.101.10.131:0 ASN#20940 Akamai International B.V.
File typeASCII text, with very long lines (24676) Hashb8a5a228a358454084c34dd1cf431c61 37aa5fe6e083b8147156ca66a1993a7bd74e8a61 06fae5ccf58a27a8e2ae6a0e7722f42db507c1873751f587cddd090810d94492
GET /wrhs/ce554d2333f3801abafb32da18213ff7/tti.min.js HTTP/1.1
Host: img6.wsimg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://lutea.xyz/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
accept-ranges: bytes
content-encoding: br
etag: "ce554d2333f3801abafb32da18213ff7"
last-modified: Mon, 17 Jan 2022 17:21:37 GMT
vary: Accept-Encoding
x-edgeconnect-midmile-rtt: 8
x-edgeconnect-origin-mex-latency: 357
x-amz-id-2: nldPfdb2FYbpxPRfMYRSd83AOL7ZmlBdZQSm5hguJELKdfn8+sza0oLEpTYjiKd2JeD3gDplFHw=
x-amz-request-id: RJ3J3PMANG6125DE
x-amz-server-side-encryption: AES256
x-amz-version-id: F4fYptXBkP0fCCCWFLfVGE1HXlZmORny
content-length: 7498
x-edgeconnect-cache-status: 1
cache-control: max-age=31536000
date: Tue, 04 Apr 2023 07:33:32 GMT
server-timing: cdn-cache; desc=HIT, edge; dur=1, ak_p; desc="466831_1600457343_1065115184_24_1104_1_0";dur=1
timing-allow-origin: *
access-control-allow-origin: *
X-Firefox-Spdy: h2
|
|
| tags.tiqcdn.com/utag/gpl/main/prod/utag.js | 54.230.111.11 | 200 OK | 44 kB |
URL HTTP/2tags.tiqcdn.com/utag/gpl/main/prod/utag.js IP54.230.111.11:0
File typeHTML document, Unicode text, UTF-8 text, with very long lines (26214) Hash4d4cf6b5fbb5d078293cf765b9c884c5 71bccf489031cb72c8f7503fd9f65d8efa7cb9e0 16333b3360d752c69d3f3e72a81199460c27ea6fa51e193440ee2bffaa882b30
GET /utag/gpl/main/prod/utag.js HTTP/1.1
Host: tags.tiqcdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://lutea.xyz/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript
last-modified: Wed, 08 Mar 2023 11:30:17 GMT
x-amz-server-side-encryption: AES256
x-amz-version-id: O2_fgL_0QJeLzwA5uxDNmajhsu2_BbgO
server: AmazonS3
content-encoding: br
date: Tue, 04 Apr 2023 07:33:32 GMT
etag: W/"57224d9a9707a839ae4d94757696d852"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 193a8c13b6e0a6b90db7172f6358335e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: hliD5fhEs3xQ_1BRk6TVqXNQrXI3dl3zySQk1pkeFwnKo-eT9a8qKw==
age: 43
X-Firefox-Spdy: h2
|
|
| ocsp.pki.goog/gts1c3 | 142.250.74.131 | 200 OK | 471 B |
IP142.250.74.131:0
Hashd5ba0d24586872fbb887f9ace5b204a6 748b10c9a747a90adf10b8f8dedefe59a22ed072 5d50fe5859a98b867ef22fd65c4ab3652d46188813256d43ba7ac61e2b7c9a18
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 04 Apr 2023 07:33:32 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| events.api.secureserver.net/b.aspx?timestamp=1680593612861&corrid=1932208991&referrer=&vs=visible&rand=415042040&sitename=lutea.xyz&page=%2F&location=https%3A%2F%2Flutea.xyz%2F&agent=false&delegated=false&salessite=false&event=gtm.load&ap=dan-parking&loadSource=gtm&page_level_properties=ap%2CloadSource&event_type=page.log&eventdate=2023-04-04T07%3A33%3A32.862Z&eventtype=pageperf&nav_type=hard&tccin=auto&connectEnd=1680593611275&connectStart=1680593611210&domComplete=1680593612853&domContentLoadedEventEnd=1680593612224&domContentLoadedEventStart=1680593612221&domInteractive=1680593612186&domLoading=1680593611543&domainLookupEnd=1680593611210&domainLookupStart=1680593611208&fetchStart=1680593611202&navigationStart=1680593610804&requestStart=1680593611275&responseEnd=1680593611535&responseStart=1680593611534&loadEventStart=1680593612853&loadEventEnd=0&transferSize=14988&encodedBodySize=11462&decodedBodySize=38169&navigationType=navigate&fcp=1402&hit_id=829724d6-2fef-5929-9518-91411b715137&visitor_guid=84760e52-7708-5229-89dd-1ca1b766b07b&visit_guid=84760e52-7708-5229-89dd-1ca1b766b07b&page_count=1&has_consent=0&cv=3.39.1&client_name=tcc&same_site=none&trace_id=1e6da3d0341a53f0acb1b9c649551f4a | 95.101.10.130 | 200 OK | 43 B |
URL HTTP/2events.api.secureserver.net/b.aspx?timestamp=1680593612861&corrid=1932208991&referrer=&vs=visible&rand=415042040&sitename=lutea.xyz&page=%2F&location=https%3A%2F%2Flutea.xyz%2F&agent=false&delegated=false&salessite=false&event=gtm.load&ap=dan-parking&loadSource=gtm&page_level_properties=ap%2CloadSource&event_type=page.log&eventdate=2023-04-04T07%3A33%3A32.862Z&eventtype=pageperf&nav_type=hard&tccin=auto&connectEnd=1680593611275&connectStart=1680593611210&domComplete=1680593612853&domContentLoadedEventEnd=1680593612224&domContentLoadedEventStart=1680593612221&domInteractive=1680593612186&domLoading=1680593611543&domainLookupEnd=1680593611210&domainLookupStart=1680593611208&fetchStart=1680593611202&navigationStart=1680593610804&requestStart=1680593611275&responseEnd=1680593611535&responseStart=1680593611534&loadEventStart=1680593612853&loadEventEnd=0&transferSize=14988&encodedBodySize=11462&decodedBodySize=38169&navigationType=navigate&fcp=1402&hit_id=829724d6-2fef-5929-9518-91411b715137&visitor_guid=84760e52-7708-5229-89dd-1ca1b766b07b&visit_guid=84760e52-7708-5229-89dd-1ca1b766b07b&page_count=1&has_consent=0&cv=3.39.1&client_name=tcc&same_site=none&trace_id=1e6da3d0341a53f0acb1b9c649551f4a IP95.101.10.130:0 ASN#20940 Akamai International B.V.
File typeGIF image data, version 89a, 1 x 1\012- data Hash325472601571f31e1bf00674c368d335 2daeaa8b5f19f0bc209d976c02bd6acb51b00b0a b1442e85b03bdcaf66dc58c7abb98745dd2687d86350be9a298a1d9382ac849b
GET /b.aspx?timestamp=1680593612861&corrid=1932208991&referrer=&vs=visible&rand=415042040&sitename=lutea.xyz&page=%2F&location=https%3A%2F%2Flutea.xyz%2F&agent=false&delegated=false&salessite=false&event=gtm.load&ap=dan-parking&loadSource=gtm&page_level_properties=ap%2CloadSource&event_type=page.log&eventdate=2023-04-04T07%3A33%3A32.862Z&eventtype=pageperf&nav_type=hard&tccin=auto&connectEnd=1680593611275&connectStart=1680593611210&domComplete=1680593612853&domContentLoadedEventEnd=1680593612224&domContentLoadedEventStart=1680593612221&domInteractive=1680593612186&domLoading=1680593611543&domainLookupEnd=1680593611210&domainLookupStart=1680593611208&fetchStart=1680593611202&navigationStart=1680593610804&requestStart=1680593611275&responseEnd=1680593611535&responseStart=1680593611534&loadEventStart=1680593612853&loadEventEnd=0&transferSize=14988&encodedBodySize=11462&decodedBodySize=38169&navigationType=navigate&fcp=1402&hit_id=829724d6-2fef-5929-9518-91411b715137&visitor_guid=84760e52-7708-5229-89dd-1ca1b766b07b&visit_guid=84760e52-7708-5229-89dd-1ca1b766b07b&page_count=1&has_consent=0&cv=3.39.1&client_name=tcc&same_site=none&trace_id=1e6da3d0341a53f0acb1b9c649551f4a HTTP/1.1
Host: events.api.secureserver.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://lutea.xyz/
Origin: https://lutea.xyz
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/gif
content-length: 43
access-control-allow-origin: https://lutea.xyz
access-control-allow-credentials: true
x-robots-tag: noindex, nofollow
cache-control: private
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
strict-transport-security: max-age=31536000 ; includeSubDomains
x-frame-options: DENY
date: Tue, 04 Apr 2023 07:33:33 GMT
X-Firefox-Spdy: h2
|
|
| region1.google-analytics.com/g/collect?v=2&tid=G-3K6H374GJN>m=45He3430&_p=1929789213&cid=2102642353.1680593612&ul=en-us&sr=1280x1024&_s=1&sid=1680593612&sct=1&seg=0&dl=https%3A%2F%2Flutea.xyz%2F&dt=The%20domain%20name%20Lutea.xyz%20is%20for%20sale&en=page_view&_fv=1&_ss=1&_ee=1 | 216.239.32.36 | 204 No Content | 0 B |
URL HTTP/2region1.google-analytics.com/g/collect?v=2&tid=G-3K6H374GJN>m=45He3430&_p=1929789213&cid=2102642353.1680593612&ul=en-us&sr=1280x1024&_s=1&sid=1680593612&sct=1&seg=0&dl=https%3A%2F%2Flutea.xyz%2F&dt=The%20domain%20name%20Lutea.xyz%20is%20for%20sale&en=page_view&_fv=1&_ss=1&_ee=1 IP216.239.32.36:0
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /g/collect?v=2&tid=G-3K6H374GJN>m=45He3430&_p=1929789213&cid=2102642353.1680593612&ul=en-us&sr=1280x1024&_s=1&sid=1680593612&sct=1&seg=0&dl=https%3A%2F%2Flutea.xyz%2F&dt=The%20domain%20name%20Lutea.xyz%20is%20for%20sale&en=page_view&_fv=1&_ss=1&_ee=1 HTTP/1.1
Host: region1.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://lutea.xyz/
Origin: https://lutea.xyz
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0
HTTP/2 204 No Content
access-control-allow-origin: https://lutea.xyz
date: Tue, 04 Apr 2023 07:33:33 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
access-control-allow-credentials: true
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| csp.secureserver.net/eventbus | 104.110.14.92 | 200 OK | 0 B |
URL HTTP/1.1csp.secureserver.net/eventbus IP104.110.14.92:0
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /eventbus HTTP/1.1
Host: csp.secureserver.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: authorization,content-type
Referer: https://lutea.xyz/
Origin: https://lutea.xyz
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 0
x-amzn-requestid: f0d7181c-c93d-4670-9084-6c6163f6eeff
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: content-type,authorization
x-amz-apigw-id: C13gIFQZoAMFW8g=
Access-Control-Allow-Methods: OPTIONS,POST
x-amzn-trace-id: Root=1-642bd2cd-270605b94007de8c04ec705f
x-envoy-upstream-service-time: 90
Expires: Tue, 04 Apr 2023 07:33:33 GMT
Cache-Control: max-age=0, no-cache, no-store
Pragma: no-cache
Date: Tue, 04 Apr 2023 07:33:33 GMT
Connection: keep-alive
Strict-Transport-Security: max-age=86400 ; includeSubDomains ; preload
|
|
| r3.o.lencr.org/ | 95.101.11.115 | 200 OK | 503 B |
IP95.101.11.115:0 ASN#20940 Akamai International B.V.
Hashf06399875b2b1c6a0afe8a1d791f5a4a f2ce36c5d6599e57e4df8f08a030e8cb00ebe830 2eef24cc1ae135e7e1687c3e56cd7be21530e2aa7612e686a829d2c204ab532e
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "2EEF24CC1AE135E7E1687C3E56CD7BE21530E2AA7612E686A829D2C204AB532E"
Last-Modified: Mon, 03 Apr 2023 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5154
Expires: Tue, 04 Apr 2023 08:59:27 GMT
Date: Tue, 04 Apr 2023 07:33:33 GMT
Connection: keep-alive
|
|
| r3.o.lencr.org/ | 95.101.11.115 | 200 OK | 503 B |
IP95.101.11.115:0 ASN#20940 Akamai International B.V.
Hashf06399875b2b1c6a0afe8a1d791f5a4a f2ce36c5d6599e57e4df8f08a030e8cb00ebe830 2eef24cc1ae135e7e1687c3e56cd7be21530e2aa7612e686a829d2c204ab532e
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "2EEF24CC1AE135E7E1687C3E56CD7BE21530E2AA7612E686A829D2C204AB532E"
Last-Modified: Mon, 03 Apr 2023 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5154
Expires: Tue, 04 Apr 2023 08:59:27 GMT
Date: Tue, 04 Apr 2023 07:33:33 GMT
Connection: keep-alive
|
|
| r3.o.lencr.org/ | 95.101.11.115 | 200 OK | 503 B |
IP95.101.11.115:0 ASN#20940 Akamai International B.V.
Hashf06399875b2b1c6a0afe8a1d791f5a4a f2ce36c5d6599e57e4df8f08a030e8cb00ebe830 2eef24cc1ae135e7e1687c3e56cd7be21530e2aa7612e686a829d2c204ab532e
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "2EEF24CC1AE135E7E1687C3E56CD7BE21530E2AA7612E686A829D2C204AB532E"
Last-Modified: Mon, 03 Apr 2023 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5154
Expires: Tue, 04 Apr 2023 08:59:27 GMT
Date: Tue, 04 Apr 2023 07:33:33 GMT
Connection: keep-alive
|
|
| r3.o.lencr.org/ | 95.101.11.115 | 200 OK | 503 B |
IP95.101.11.115:0 ASN#20940 Akamai International B.V.
Hashf06399875b2b1c6a0afe8a1d791f5a4a f2ce36c5d6599e57e4df8f08a030e8cb00ebe830 2eef24cc1ae135e7e1687c3e56cd7be21530e2aa7612e686a829d2c204ab532e
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "2EEF24CC1AE135E7E1687C3E56CD7BE21530E2AA7612E686A829D2C204AB532E"
Last-Modified: Mon, 03 Apr 2023 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5154
Expires: Tue, 04 Apr 2023 08:59:27 GMT
Date: Tue, 04 Apr 2023 07:33:33 GMT
Connection: keep-alive
|
|
| r3.o.lencr.org/ | 95.101.11.115 | 200 OK | 503 B |
IP95.101.11.115:0 ASN#20940 Akamai International B.V.
Hashf06399875b2b1c6a0afe8a1d791f5a4a f2ce36c5d6599e57e4df8f08a030e8cb00ebe830 2eef24cc1ae135e7e1687c3e56cd7be21530e2aa7612e686a829d2c204ab532e
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "2EEF24CC1AE135E7E1687C3E56CD7BE21530E2AA7612E686A829D2C204AB532E"
Last-Modified: Mon, 03 Apr 2023 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5154
Expires: Tue, 04 Apr 2023 08:59:27 GMT
Date: Tue, 04 Apr 2023 07:33:33 GMT
Connection: keep-alive
|
|
| img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb6eccc3c-84ad-4e21-956c-e1be89a82cfa.jpeg | 34.120.237.76 | 200 OK | 4.8 kB |
URL HTTP/2img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb6eccc3c-84ad-4e21-956c-e1be89a82cfa.jpeg IP34.120.237.76:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Hashbc87aa979c0767120514f1e4b758ff17 67f5976f5c3664fdddf0df409fd06c6654f2f844 6933b54d13aba860ff4e8c5978ffa4a2e546b15a17c783fcf5d87bfb817a28f7
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb6eccc3c-84ad-4e21-956c-e1be89a82cfa.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 4815
x-amzn-requestid: 9f83c9c3-43ef-4753-8407-8592386870f9
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: CvNUVHDcoAMFtNw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-642928e8-733f938a34d9987746b87996;Sampled=0;lineage=69363f46:0
x-amzn-remapped-date: Sun, 02 Apr 2023 07:04:08 GMT
x-amz-cf-pop: SEA19-C1
x-cache: Miss from cloudfront
x-amz-cf-id: 8wCg8bQNt6yeUlVHBIt-tM9O95EOd5eGYE50UIkWGZQ7ni6y1FC4ew==
via: 1.1 c28e01aa413e9ea602538ccda1511062.cloudfront.net (CloudFront), 1.1 331202b5b8aab67acbf389883133f256.cloudfront.net (CloudFront), 1.1 google
date: Tue, 04 Apr 2023 07:21:34 GMT
age: 719
etag: "67f5976f5c3664fdddf0df409fd06c6654f2f844"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7bfb42fa-a742-48e1-9e04-5a6dd253e7c3.jpeg | 34.120.237.76 | 200 OK | 8.7 kB |
URL HTTP/2img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7bfb42fa-a742-48e1-9e04-5a6dd253e7c3.jpeg IP34.120.237.76:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Hashaa38adb609929dd640969cf7fdac34e0 2f6376d861ae95e83cd65f47f0ad99f73ecc519b f83c9e3dd084b6148accb41f7b234e93d4e53a12f0a92846a1a7234159f6567e
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7bfb42fa-a742-48e1-9e04-5a6dd253e7c3.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8717
x-amzn-requestid: 18f7e80a-b9df-4ece-86f2-59330cbda055
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: C0fpsGk6IAMFbdw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-642b463d-37906ba06871532364672b8a;Sampled=0;lineage=69363f46:0
x-amzn-remapped-date: Mon, 03 Apr 2023 21:33:49 GMT
x-amz-cf-pop: HIO52-P1, SEA19-C3
x-cache: Miss from cloudfront
x-amz-cf-id: Xi_8Yg97BKFIwPUNBvWnQGvSntLzEmdJj_draypXTq0zRQ-QykfssQ==
via: 1.1 88a7ff956a5b49ec3a35abfc0027af12.cloudfront.net (CloudFront), 1.1 6af3b573d8970d5db2a4d03354335b84.cloudfront.net (CloudFront), 1.1 google
date: Mon, 03 Apr 2023 21:33:50 GMT
etag: "2f6376d861ae95e83cd65f47f0ad99f73ecc519b"
content-type: image/jpeg
age: 35983
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F16318447-1c81-4525-becf-32a77c9030e1.jpeg | 34.120.237.76 | 200 OK | 4.3 kB |
URL HTTP/2img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F16318447-1c81-4525-becf-32a77c9030e1.jpeg IP34.120.237.76:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Hash5c226ea23c670c61a42a6d94959e10dc e4a946d93a63ad9fcf751fbb8e55ab18466197e2 b95c03169121047006cdab960d5564c683c6ef8755ba9ca143e0c87bcca9ed92
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F16318447-1c81-4525-becf-32a77c9030e1.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 4265
x-amzn-requestid: c4bfc599-63fb-4953-b39b-45c059c99070
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: CopBKHO1IAMF10A=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6426886d-7adcee9a3a8156542d555ccf;Sampled=0;lineage=69363f46:0
x-amzn-remapped-date: Fri, 31 Mar 2023 07:14:53 GMT
x-amz-cf-pop: SEA19-C1
x-cache: Hit from cloudfront
x-amz-cf-id: Yx9_tqAFKR9hYmdjG7q3Z27fk9-StzSDP9Pjpz6tbDygWUFBHplGiA==
via: 1.1 22ea0ab0881473261b786ecbb5e00f54.cloudfront.net (CloudFront), 1.1 4d8620b80ebe37d366388e117039aa8e.cloudfront.net (CloudFront), 1.1 google
date: Mon, 03 Apr 2023 12:50:38 GMT
age: 67375
etag: "e4a946d93a63ad9fcf751fbb8e55ab18466197e2"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd5a64c6f-4f76-4a92-92c4-1fa8cb48142e.jpeg | 34.120.237.76 | 200 OK | 6.8 kB |
URL HTTP/2img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd5a64c6f-4f76-4a92-92c4-1fa8cb48142e.jpeg IP34.120.237.76:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Hashfde7605b95c3ac6b8de339dbd12e17b1 b44d521b31be7b3fe378a0e070c49379a6eab26e 5496cf7c705ccc67dd13f86a07d9a352424d58591aa67afe1e1361c640f8d510
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd5a64c6f-4f76-4a92-92c4-1fa8cb48142e.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6803
x-amzn-requestid: 6c78179f-0d11-4a23-8e86-e4f05d7c7f90
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: C0fq3HrioAMF7ww=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-642b4645-758850e07ef9b1512b684c35;Sampled=0;lineage=69363f46:0
x-amzn-remapped-date: Mon, 03 Apr 2023 21:33:57 GMT
x-amz-cf-pop: HIO52-P1, SEA19-C3
x-cache: Miss from cloudfront
x-amz-cf-id: TvDTtH9ZqXuvomWMYiB8g8N0JKjRrHIXF1SxfCRJfwZS-7pGLAPrVw==
via: 1.1 ee32c7a76e2727d565413cc6c352ef48.cloudfront.net (CloudFront), 1.1 29a825d8a219984d47bec4350779b558.cloudfront.net (CloudFront), 1.1 google
date: Mon, 03 Apr 2023 21:33:57 GMT
etag: "b44d521b31be7b3fe378a0e070c49379a6eab26e"
content-type: image/jpeg
age: 35976
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff838f439-251e-4305-a247-7eee5ff2979a.jpeg | 34.120.237.76 | 200 OK | 7.6 kB |
URL HTTP/2img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff838f439-251e-4305-a247-7eee5ff2979a.jpeg IP34.120.237.76:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Hashb3ec7e8040ccdee79cfffb3ac02a6f67 b380133cc00dab11730bdfe2150ea33028dfef80 494eab2d0cdb17311e6a208d9fad2a7ae93ffd2ca6c4b6cb971ab4a2fa8ec91b
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff838f439-251e-4305-a247-7eee5ff2979a.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7576
x-amzn-requestid: d444fbfc-9097-41f9-bfb9-3d21bdaabd13
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Cyg9hHbqoAMF1tA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-642a7b89-69920adf612134e02eb45552;Sampled=0;lineage=69363f46:0
x-amzn-remapped-date: Mon, 03 Apr 2023 07:08:57 GMT
x-amz-cf-pop: HIO52-P1, SEA19-C3
x-cache: Hit from cloudfront
x-amz-cf-id: QhhrSn6SHlMaLQQJGfKx8t3CRwil7m_vpBxYCOMtVDOf0bsxQPQ6eg==
via: 1.1 e92cc925fc8895560cd0628c67f58828.cloudfront.net (CloudFront), 1.1 1d000d0dfe9d69b4983f619fdc5499d6.cloudfront.net (CloudFront), 1.1 google
date: Mon, 03 Apr 2023 07:48:46 GMT
age: 85487
etag: "b380133cc00dab11730bdfe2150ea33028dfef80"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa5f70c40-8b38-48db-b482-a5cc8f1580ef.jpeg | 34.120.237.76 | 200 OK | 6.9 kB |
URL HTTP/2img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa5f70c40-8b38-48db-b482-a5cc8f1580ef.jpeg IP34.120.237.76:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Hash9d1360ec3cb182322e0a0c445f57e5b7 9f71e3cd002ca8116d917c3b7fb57291099269d1 e3d216e879d771bf2507928ba1b26465c87a4202a4cdc03483f002c2826a81b2
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa5f70c40-8b38-48db-b482-a5cc8f1580ef.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6912
x-amzn-requestid: 53fcdc8a-e064-4e81-b5ac-5d0ae4bcfdb9
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: C0fpuEZ-IAMFxaA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-642b463d-3b7b43f30dd66fae5dc9ea6a;Sampled=0;lineage=69363f46:0
x-amzn-remapped-date: Mon, 03 Apr 2023 21:33:49 GMT
x-amz-cf-pop: HIO52-P1, SEA19-C3
x-cache: Miss from cloudfront
x-amz-cf-id: GZgHaJIuhgJevaSQVWPEZ-U5S-OGbnM_ZSvlcmim_e5Fsi6P_7TISA==
via: 1.1 59456abf79b201034ab5c9cfef7355e2.cloudfront.net (CloudFront), 1.1 29a825d8a219984d47bec4350779b558.cloudfront.net (CloudFront), 1.1 google
date: Mon, 03 Apr 2023 21:33:50 GMT
etag: "9f71e3cd002ca8116d917c3b7fb57291099269d1"
content-type: image/jpeg
age: 35983
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| csp.secureserver.net/eventbus | 104.110.14.92 | 202 Accepted | 0 B |
URL HTTP/1.1csp.secureserver.net/eventbus IP104.110.14.92:0
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /eventbus HTTP/1.1
Host: csp.secureserver.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://lutea.xyz/
Authorization: api-key b18ef4f046435b64a469b32c3c1c20a3
Content-Type: application/json
Content-Length: 1048
Origin: https://lutea.xyz
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 202 Accepted
Content-Type: application/json
Content-Length: 0
x-amzn-requestid: d69852d6-caf9-45aa-a7cb-7c715867637c
Access-Control-Allow-Origin: *
x-amz-apigw-id: C13gKErEoAMFajw=
x-amzn-trace-id: Root=1-642bd2cd-7aa0f42f798077c332b339e7
x-envoy-upstream-service-time: 188
Expires: Tue, 04 Apr 2023 07:33:33 GMT
Cache-Control: max-age=0, no-cache, no-store
Pragma: no-cache
Date: Tue, 04 Apr 2023 07:33:33 GMT
Connection: keep-alive
Strict-Transport-Security: max-age=86400 ; includeSubDomains ; preload
|
|
| lutea.xyz/ | 3.64.163.50 | 200 OK | 0 B |
IP3.64.163.50:0
Analyzer | Verdict | Alert | fortinet | Malware | | quad9 | Sinkholed | |
GET / HTTP/1.1
Host: lutea.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 200 OK
server: openresty
date: Tue, 04 Apr 2023 07:33:31 GMT
content-type: text/html; charset=utf-8
vary: Accept-Encoding
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
x-download-options: noopen
x-permitted-cross-domain-policies: none
referrer-policy: strict-origin-when-cross-origin
link: <https://cdn3.dan.com/assets/public/i18n-5cb6b07d5b73faf36a127e2ae39b1a6549e699600bfdf97bc9fa3164861062fc.js>; rel=preload; as=script; nopush,<https://cdn2.dan.com/packs/js/runtime~public/product-c65bfa3764bffa252c98.js>; rel=preload; as=script; nopush,<https://cdn3.dan.com/packs/js/3-481b9ae95468e439dec2.chunk.js>; rel=preload; as=script; nopush,<https://cdn2.dan.com/packs/js/5-80e764b55b93b80460ba.chunk.js>; rel=preload; as=script; nopush,<https://cdn2.dan.com/packs/js/public/product-04785fac3c26488c8594.chunk.js>; rel=preload; as=script; nopush,<https://cdn3.dan.com/assets/GraphikDan-Semibold-Web-0f41cae3a242b38a760ec60c3d0c3882d4c2bc318a8fb0dea97e362bc5e009fe.woff2>; rel=preload; as=; type=application/font-woff2,<https://cdn1.dan.com/assets/GraphikDan-Regular-Web-3d6859522e94ea684004514b5a900f8a0219dbb06be9271a359abd95c4f1df0a.woff2>; rel=preload; as=; type=application/font-woff2,<https://cdn3.dan.com/assets/GraphikDan-Bold-Web-eac93a2bef84e2b8c9c68c73a18e42867ba0de882874c00483dc28c328622b2f.woff2>; rel=preload; as=; type=application/font-woff2,<https://cdn2.dan.com/assets/GraphikDan-Medium-Web-f6517986e1663e1d662e482993a3c08363c352936be7ccfac953c7674304d71e.woff2>; rel=preload; as=; type=application/font-woff2,<https://cdn1.dan.com/assets/GraphikDan-Light-Web-fc582b515686a456805ed816f59bc30ed5415460f1ee248c62efbcf1d90c8b9a.woff2>; rel=preload; as=; type=application/font-woff2,<https://cdn0.dan.com/assets/public-38aca3fa401d5672ddf67270ebc0394e2d374a7c6c745c452acf7c3afb141df5.css>; rel=preload; as=style; nopush,<https://cdn2.dan.com/assets/vendor/svg4everybody-1f5a41bf858a5454d7923542e3380530fc2c4faaaf6ab58f29da7c6b2ebe2313.js>; rel=preload; as=script; nopush,<https://cdn0.dan.com/packs/js/runtime~public/fonts-2fe2dda32aa2d2a2aa67.js>; rel=preload; as=script; nopush,<https://cdn3.dan.com/packs/js/public/fonts-35cf21af5c115d4ac0cb.chunk.js>; rel=preload; as=script; nopush,<https://cdn2.dan.com/packs/js/runtime~public/shared-1b01634fd7ca21c7761f.js>; rel=preload; as=script; nopush,<https://cdn0.dan.com/packs/js/8-86be82eea8a939b48bf4.chunk.js>; rel=preload; as=script; nopush,<https://cdn2.dan.com/packs/js/public/shared-47096d6b7b3ac9b51a33.chunk.js>; rel=preload; as=script; nopush
etag: W/"4700693aba1d18447ff8daf80b8cf6b3"
cache-control: max-age=0, private, must-revalidate
set-cookie: bc9bd58fe1b6ef954d6d794db6d30e25e8ff50634d24346cf8006ef422e3c05c6e48b07678e34d08c97ad3f91012c80ac690b50f51fbd49b16e301de58d9c5ca=h6st5FreVa1KHRR7Np1ESijxfSya5OzujS6i2oRVNtjsn6o91M4zWNlR2RXGp8E%2Bbx7RJjeCWj23Hmu3PQ5NpNh3izbPLVCETbf192HNV4OaiCY2mifuANDdm2lAI9LF8kmgs0s2AMsVA9DOpS7p1LIJo0mW8YNfyM4t5ZCCJuxPz1hK7HU%2F7xqlDWQx%2B4V7iHcBEq2fTAV3W%2BEPRQKCbQZkRP3rVqh7B5j8q09liNlvDDdpTupiPgQNH9dWX4ip7CsJ7z%2B4E2j%2F%2BH1ulHeU%2FhSmgr0IlbQBflBpgJL8jgbvf1yTLV528jbHOtn84gVBNmNmc6fiGwGzoEAgu7LyZDdvRaaQdP9B%2Fz5Jaq4SVoml8nEyV749hEBsoJWSKTwa6EQ%2FERGBWY1aXH35h6occE%2Bec9F05goax7bh3ne3kkSXyBo2ImgK%2FCzp496RAARlcQqP7AAIRiecXE6HFc9ppw%3D%3D--4%2BMYa8fB09OnGxYE--Cg%2BiQwLM3UPNvHGE%2Fk9UfA%3D%3D; path=/; secure; HttpOnly; SameSite=Lax
x-request-id: ce018a3a-710c-4f7f-986c-35678b40e3a8
x-runtime: 0.181811
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| lutea.xyz/domain_views | 3.64.163.50 | 200 OK | 0 B |
IP3.64.163.50:0
Analyzer | Verdict | Alert | fortinet | Malware | | quad9 | Sinkholed | |
POST /domain_views HTTP/1.1
Host: lutea.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://lutea.xyz/
Content-Type: application/x-www-form-urlencoded; charset=UTF-8
X-Requested-With: XMLHttpRequest
Content-Length: 127
Origin: https://lutea.xyz
Connection: keep-alive
Cookie: bc9bd58fe1b6ef954d6d794db6d30e25e8ff50634d24346cf8006ef422e3c05c6e48b07678e34d08c97ad3f91012c80ac690b50f51fbd49b16e301de58d9c5ca=h6st5FreVa1KHRR7Np1ESijxfSya5OzujS6i2oRVNtjsn6o91M4zWNlR2RXGp8E%2Bbx7RJjeCWj23Hmu3PQ5NpNh3izbPLVCETbf192HNV4OaiCY2mifuANDdm2lAI9LF8kmgs0s2AMsVA9DOpS7p1LIJo0mW8YNfyM4t5ZCCJuxPz1hK7HU%2F7xqlDWQx%2B4V7iHcBEq2fTAV3W%2BEPRQKCbQZkRP3rVqh7B5j8q09liNlvDDdpTupiPgQNH9dWX4ip7CsJ7z%2B4E2j%2F%2BH1ulHeU%2FhSmgr0IlbQBflBpgJL8jgbvf1yTLV528jbHOtn84gVBNmNmc6fiGwGzoEAgu7LyZDdvRaaQdP9B%2Fz5Jaq4SVoml8nEyV749hEBsoJWSKTwa6EQ%2FERGBWY1aXH35h6occE%2Bec9F05goax7bh3ne3kkSXyBo2ImgK%2FCzp496RAARlcQqP7AAIRiecXE6HFc9ppw%3D%3D--4%2BMYa8fB09OnGxYE--Cg%2BiQwLM3UPNvHGE%2Fk9UfA%3D%3D; time_zone_offset=0; _ga=GA1.1.2102642353.1680593612; _gid=GA1.2.1506745783.1680593612; _gat=1; _ga_3K6H374GJN=GS1.1.1680593612.1.0.1680593612.0.0.0; traffic=; _policy=%7B%22restricted_market%22:true,%22tracking_market%22:%22explicit%22%7D; pathway=84760e52-7708-5229-89dd-1ca1b766b07b; fb_sessiontraffic=C_TOUCH=2023-04-04T07:33:32.436Z&pathway=84760e52-7708-5229-89dd-1ca1b766b07b&V_DATE=2023-04-04T07:33:32.434Z&pc=1; visitor=vid=84760e52-7708-5229-89dd-1ca1b766b07b; OPTOUTMULTI=0:1%7Cc3:1%7Cc2:1%7Cc4:1; utag_main=v_id:01874b2f6f0f000a7f4b886c0b1800050001200900918$_sn:1$_ss:1$_st:1680595412560$ses_id:1680593612560%3Bexp-session$_pn:1%3Bexp-session; expBannerSplit=B; _consentBImpression=1
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: openresty
date: Tue, 04 Apr 2023 07:33:32 GMT
content-type: text/html
vary: Accept-Encoding
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
x-download-options: noopen
x-permitted-cross-domain-policies: none
referrer-policy: strict-origin-when-cross-origin
cache-control: no-cache
set-cookie: bc9bd58fe1b6ef954d6d794db6d30e25e8ff50634d24346cf8006ef422e3c05c6e48b07678e34d08c97ad3f91012c80ac690b50f51fbd49b16e301de58d9c5ca=cVAIy7dOF36R77V7YS7qSfulmwXtxLX8ZjqWaKafjGysB2%2FksRu1A%2B2TV3OOiU%2BCb4IkuigpCpuHA%2B5714iEPXKgbTIpiVlKF8Q0nEFHIfGgSkTyT7R0PPtTzOh9bm8u7INq1o0GHsP5nBLh9G0Vr0gUTsSfzUG181kW%2Fg2ZZ5%2FeirIjoLGX6MngMQGhwIMoiPZvCsaoOtE44iC884EL9HgUOrrh08HqEDJ91ZWFARO8FYzarammR4c%2Fi9bgnegQzxKRugE2a9csX%2BymQD16beHu%2FDe92ujp0DJT5qsP1DcqS4YQwEtsCMpONYC0N0uw1e7gBNUIIBR8pp%2FYn7NJM1W8ZtYOr3HXShtB6bQCIVjFAMI2Q3SmQ1gubVv30tXeD0%2Ff974z%2FYAvk3ICcWr2fbfccNK6hst2FWre13hR5El5vbW0DkC7aDkmOPUcySa6bLuEfwsZpsDLncTVVLg94JHA3uQnDQOfImqNK9prdWDiBpixt0I9q2YHqpsqm0vn15nJV1XnetetvQQe--s%2BllXJDrtexxFRDY--MshgPqgLRgHkb%2FDKfT9sxg%3D%3D; path=/; secure; HttpOnly; SameSite=Lax
x-request-id: 97623fc0-b079-4148-a4cf-02e5269296dc
x-runtime: 0.065874
content-encoding: gzip
X-Firefox-Spdy: h2
|
|