Report - luzytextura.com/marfinance/gdwyLku/

Report Overview

Submitted URL
luzytextura.com/marfinance/gdwyLku/
IP
185.37.226.48
ASN
#57286 Gigas Hosting S.A.
Submitted
2022-10-31 22:50:55
Access
Website Title
Final URL
Tags
None
urlquery detections
No alerts detected

Detections

urlquery
0
Network Intrusion Detection
0
Threat Detection Systems
108

Domain Summary

Domain / FQDN	Rank	First Seen	Last Seen	Sent	Received	IP
r3.o.lencr.org	344	2020-12-02T09:52:13Z	2023-03-10T05:09:10Z	2.7 kB	7.1 kB	23.36.77.32
ocsp.digicert.com	86	2012-05-21T09:02:23Z	2023-03-10T13:49:44Z	682 B	1.6 kB	93.184.220.29
contile.services.mozilla.com	1114	2021-05-27T20:32:35Z	2023-03-10T05:10:00Z	333 B	229 B	34.117.237.239
push.services.mozilla.com	2140	2014-10-24T10:27:06Z	2023-03-10T05:10:02Z	606 B	127 B	34.218.164.174
www.google-analytics.com	40	2012-10-03T03:04:21Z	2023-03-10T13:35:34Z	1.2 kB	21 kB	142.250.74.174
img-getpocket.cdn.mozilla.net	1631	2018-06-22T01:36:00Z	2023-03-10T05:10:04Z	3.8 kB	52 kB	34.120.237.76
luzytextura.com	unknown	2015-02-19T17:14:17Z	2023-02-28T03:16:11Z	13 kB	374 kB	185.37.226.48
content-signature-2.cdn.mozilla.net	1152	2020-11-03T13:26:46Z	2023-03-10T05:12:35Z	413 B	5.8 kB	34.160.144.191
ocsp.pki.goog	175	2018-07-01T08:43:07Z	2023-03-10T05:11:10Z	1.4 kB	2.8 kB	142.250.74.3
ajax.googleapis.com	12905	2013-08-16T11:51:31Z	2023-03-10T15:05:48Z	391 B	33 kB	142.250.74.74

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

OpenPhish

No alerts detected

PhishTank

No alerts detected

Fortinet's Web Filter

No alerts detected

mnemonic secure dns

Scan Date	Severity	Indicator	Alert
2022-10-31	medium	luzytextura.com	Sinkholed
2022-10-31	medium	luzytextura.com	Sinkholed
2022-10-31	medium	luzytextura.com	Sinkholed
2022-10-31	medium	luzytextura.com	Sinkholed
2022-10-31	medium	luzytextura.com	Sinkholed
2022-10-31	medium	luzytextura.com	Sinkholed
2022-10-31	medium	luzytextura.com	Sinkholed
2022-10-31	medium	luzytextura.com	Sinkholed
2022-10-31	medium	luzytextura.com	Sinkholed
2022-10-31	medium	luzytextura.com	Sinkholed
2022-10-31	medium	luzytextura.com	Sinkholed
2022-10-31	medium	luzytextura.com	Sinkholed
2022-10-31	medium	luzytextura.com	Sinkholed
2022-10-31	medium	luzytextura.com	Sinkholed
2022-10-31	medium	luzytextura.com	Sinkholed
2022-10-31	medium	luzytextura.com	Sinkholed
2022-10-31	medium	luzytextura.com	Sinkholed
2022-10-31	medium	luzytextura.com	Sinkholed
2022-10-31	medium	luzytextura.com	Sinkholed
2022-10-31	medium	luzytextura.com	Sinkholed
2022-10-31	medium	luzytextura.com	Sinkholed
2022-10-31	medium	luzytextura.com	Sinkholed
2022-10-31	medium	luzytextura.com	Sinkholed
2022-10-31	medium	luzytextura.com	Sinkholed
2022-10-31	medium	luzytextura.com	Sinkholed
2022-10-31	medium	luzytextura.com	Sinkholed
2022-10-31	medium	luzytextura.com	Sinkholed

Quad9 DNS

Scan Date	Severity	Indicator	Alert
2022-10-31	medium	luzytextura.com	Sinkholed
2022-10-31	medium	luzytextura.com	Sinkholed
2022-10-31	medium	luzytextura.com	Sinkholed
2022-10-31	medium	luzytextura.com	Sinkholed
2022-10-31	medium	luzytextura.com	Sinkholed
2022-10-31	medium	luzytextura.com	Sinkholed
2022-10-31	medium	luzytextura.com	Sinkholed
2022-10-31	medium	luzytextura.com	Sinkholed
2022-10-31	medium	luzytextura.com	Sinkholed
2022-10-31	medium	luzytextura.com	Sinkholed
2022-10-31	medium	luzytextura.com	Sinkholed
2022-10-31	medium	luzytextura.com	Sinkholed
2022-10-31	medium	luzytextura.com	Sinkholed
2022-10-31	medium	luzytextura.com	Sinkholed
2022-10-31	medium	luzytextura.com	Sinkholed
2022-10-31	medium	luzytextura.com	Sinkholed
2022-10-31	medium	luzytextura.com	Sinkholed
2022-10-31	medium	luzytextura.com	Sinkholed
2022-10-31	medium	luzytextura.com	Sinkholed
2022-10-31	medium	luzytextura.com	Sinkholed
2022-10-31	medium	luzytextura.com	Sinkholed
2022-10-31	medium	luzytextura.com	Sinkholed
2022-10-31	medium	luzytextura.com	Sinkholed
2022-10-31	medium	luzytextura.com	Sinkholed
2022-10-31	medium	luzytextura.com	Sinkholed
2022-10-31	medium	luzytextura.com	Sinkholed
2022-10-31	medium	luzytextura.com	Sinkholed

JavaScript (4)

	URL	Size	First Seen	Last Seen
	www.google-analytics.com/analytics.js	50 kB	2023-03-08	2024-04-24
Pretty URL www.google-analytics.com/analytics.js IP 142.250.74.174 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 05:22:31 Last Seen2024-04-24 18:41:20 Times Seen1526 Hash fda30e8a22c9bcd954fd8d0fadd0e77c ae47cd34cbde081a48d7f92fc80aaf06a1381193 b42e4a056cb5b80c5a315040826866445ec9332f0749e184509ab2d9d3b86719 Loading...

	ajax.googleapis.com/ajax/libs/jquery/1.6.1/jquery.min.js	91 kB	2023-03-07	2024-04-25
Pretty URL ajax.googleapis.com/ajax/libs/jquery/1.6.1/jquery.min.js IP 142.250.74.74 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:03:00 Last Seen2024-04-25 04:42:35 Times Seen1985 Hash a34f78c3aecd182144818eb4b7303fda 6fca78dac2797c02d86a4bf6514eda398b7dbe62 c784376960f3163dc760bc019e72e5fed78203745a5510c69992a39d1d8fe776 Loading...

	luzytextura.com/templates/luzytextura/js/scripts.js?v=20220915	52 kB	2023-03-08	2023-03-11
Pretty URL luzytextura.com/templates/luzytextura/js/scripts.js?v=20220915 IP 185.37.226.48 ASN #57286 Gigas Hosting S.A. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 23:57:48 Last Seen2023-03-11 19:47:15 Times Seen1 Hash 28221b53d5d82041bf58f542715cc4d5 038063a6bc1a8bbd655ebefabd8982c10906ff9a fb412cccc9cd70ac8117bd0e8c4a1517d316102c45de240038d205a3124d9d03 Loading...

	luzytextura.com/marfinance/gdwyLku/	391 B	2023-03-08	2023-03-11
Pretty URL luzytextura.com/marfinance/gdwyLku/ IP 185.37.226.48 ASN #57286 Gigas Hosting S.A. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 23:57:48 Last Seen2023-03-11 19:47:15 Times Seen1 Hash 8019dcc803836268b4b8a9a92a8bb8d9 6b08a4ef2635a711883c1ab27e74374208c85e47 8cf0036c69ec51997c789bbc05d33ec24b7f86bfb16e349d8c1887ad77082d21 Loading...

HTTP Transactions (54)

URL IP Response Size

luzytextura.com/marfinance/gdwyLku/

185.37.226.48

301 Moved Permanently

178 B

URL HTTP/1.1
luzytextura.com/marfinance/gdwyLku/
IP
185.37.226.48:0
ASN
#57286 Gigas Hosting S.A.

File type
HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Size
178 B (178 bytes)
Hash
cd2e0e43980a00fb6a2742d3afd803b8
81ffbd1712afe8cdf138b570c0fc9934742c33c1
bd9df047d51943acc4bc6cf55d88edb5b6785a53337ee2a0f74dd521aedde87d

Detections

Analyzer	Verdict	Alert
mnemonic_dns	Sinkholed
quad9	Sinkholed

HTTP Headers

GET /marfinance/gdwyLku/ HTTP/1.1
Host: luzytextura.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1

HTTP/1.1 301 Moved Permanently
Server: nginx
Date: Mon, 31 Oct 2022 22:50:44 GMT
Content-Type: text/html
Content-Length: 178
Connection: keep-alive
Location: https://luzytextura.com/marfinance/gdwyLku/

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
59be8dfdd6f4ab82f394d3d5b927e065
dc8e8f1bbae495f84322e5efd0c42a39ef5be56c
7f251408f64b28bebfe96f3db5c3dde3d5ad5febbaf2964b3516c114eaa51f4d

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "7F251408F64B28BEBFE96F3DB5C3DDE3D5AD5FEBBAF2964B3516C114EAA51F4D"
Last-Modified: Mon, 31 Oct 2022 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9074
Expires: Tue, 01 Nov 2022 01:21:58 GMT
Date: Mon, 31 Oct 2022 22:50:44 GMT
Connection: keep-alive

ocsp.digicert.com/

93.184.220.29

200 OK

471 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
471 B (471 bytes)
Hash
37c018b30f8ecbca9d4c0606287c01d8
9f1ce6e9b6ee40dc53da9f686c35c985485b2425
e16c2bf8d2e615c8fcd5adc5faf01cd9cc523d0ef7fa29b648b372d2ecdc95c3

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3615
Cache-Control: max-age=128436
Content-Type: application/ocsp-response
Date: Mon, 31 Oct 2022 22:50:44 GMT
Etag: "635f95d9-1d7"
Expires: Wed, 02 Nov 2022 10:31:20 GMT
Last-Modified: Mon, 31 Oct 2022 09:31:05 GMT
Server: ECS (ska/F71D)
X-Cache: HIT
Content-Length: 471

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
e59d16ee0744a08cb29d0f7e664a3827
f64722982e24ecc948f599edc76e36250ddf5112
2ef6e5bddd86663d50c9c66bc8b46f92534f4d0ef5e490a24fb876355ec006b9

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "2EF6E5BDDD86663D50C9C66BC8B46F92534F4D0EF5E490A24FB876355EC006B9"
Last-Modified: Sat, 29 Oct 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2518
Expires: Mon, 31 Oct 2022 23:32:42 GMT
Date: Mon, 31 Oct 2022 22:50:44 GMT
Connection: keep-alive

content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain

34.160.144.191

200 OK

5.3 kB

URL HTTP/2
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain
IP
34.160.144.191:0
ASN
#15169 GOOGLE

File type
PEM certificate\012- , ASCII text
Size
5.3 kB (5348 bytes)
Hash
67d5a988edcda47bc3b3b3f65d32b4b6
d4f0e0da8b3690cc7da925026d3414b68c7d954f
55e4848e3ec682e808ce7ee70950f86179c43af4f81926d826a95edfda395a78

HTTP Headers

GET /chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
x-amz-id-2: iD6KodhCqkV8Sutt9cu/FVqQGtEFpRYa41xIcObYm0tHYCX930z84ev1yxkuODyq4zpMRr37ggU=
x-amz-request-id: AQ8GF3MR838ERAEN
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Mon, 31 Oct 2022 22:11:43 GMT
age: 2341
last-modified: Fri, 30 Sep 2022 18:50:55 GMT
etag: "67d5a988edcda47bc3b3b3f65d32b4b6"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2

contile.services.mozilla.com/v1/tiles

34.117.237.239

200 OK

12 B

URL HTTP/2
contile.services.mozilla.com/v1/tiles
IP
34.117.237.239:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with no line terminators
Size
12 B (12 bytes)
Hash
23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3

HTTP Headers

GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
date: Mon, 31 Oct 2022 22:50:44 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
382f272794c7525b1a5ffd9409f64def
a56748c0dfcdc5a92eb8ac352dda9ba1c804af21
51a471beea1f6f959bd321ab9518e5bf8d587463eb70706637e91d3dc1d32b94

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "51A471BEEA1F6F959BD321AB9518E5BF8D587463EB70706637E91D3DC1D32B94"
Last-Modified: Mon, 31 Oct 2022 18:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21589
Expires: Tue, 01 Nov 2022 04:50:33 GMT
Date: Mon, 31 Oct 2022 22:50:44 GMT
Connection: keep-alive

luzytextura.com/marfinance/gdwyLku/

185.37.226.48

404 Not Found

2.5 kB

URL HTTP/1.1
luzytextura.com/marfinance/gdwyLku/
IP
185.37.226.48:0
ASN
#57286 Gigas Hosting S.A.

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (321), with CRLF, LF line terminators
Size
2.5 kB (2461 bytes)
Hash
1951bb7a9a2dc2b6407c8114dd21349f
6fddf138a0a1876e6d247a14c966315351badd51
571d49a8cc2bd09e6bdcad78a28004f7b05903e5fcbfbc09e8f59539d80e7c23

Detections

Analyzer	Verdict	Alert
mnemonic_dns	Sinkholed
quad9	Sinkholed

HTTP Headers

GET /marfinance/gdwyLku/ HTTP/1.1
Host: luzytextura.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1

HTTP/1.1 404 Not Found
Server: nginx
Date: Mon, 31 Oct 2022 22:50:44 GMT
Content-Type: text/html
Content-Length: 2461
Connection: keep-alive
Set-Cookie: PHPSESSID=5944qa62ad9k38g5l3kabhgmb6; path=/
LyT_regcode=deleted; expires=Thu, 01-Jan-1970 00:00:01 GMT; path=/
MS-Author-Via: DAV
Vary: Accept-Encoding
Content-Encoding: gzip

ocsp.digicert.com/

93.184.220.29

200 OK

471 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
471 B (471 bytes)
Hash
f646a3a97223c35e424ccb52d0ff73da
d88c49b4ac278348e6c669792334170911fb43dd
065a4e4db1b5f7d8231afbd3cb75ce74f0a74aee63bc12a79f5a8d050f55a05b

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5291
Cache-Control: max-age=125054
Content-Type: application/ocsp-response
Date: Mon, 31 Oct 2022 22:50:44 GMT
Etag: "635f8217-1d7"
Expires: Wed, 02 Nov 2022 09:34:58 GMT
Last-Modified: Mon, 31 Oct 2022 08:06:47 GMT
Server: ECS (ska/F71D)
X-Cache: HIT
Content-Length: 471

luzytextura.com/templates/luzytextura/css/estilos.css

185.37.226.48

200 OK

7.0 kB

URL HTTP/1.1
luzytextura.com/templates/luzytextura/css/estilos.css
IP
185.37.226.48:0
ASN
#57286 Gigas Hosting S.A.

File type
ASCII text, with very long lines (513)
Size
7.0 kB (7024 bytes)
Hash
8a03b330ff722ceef64b8f6ac49b340e
2b783eddbe67d888c5d2fb3ef59495f463442080
f928bb9b65640f59b0e9e53ff50c83f0d1b53fcf17ccfbbcca516f54dfc4b8b1

Detections

Analyzer	Verdict	Alert
mnemonic_dns	Sinkholed
quad9	Sinkholed

HTTP Headers

GET /templates/luzytextura/css/estilos.css HTTP/1.1
Host: luzytextura.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://luzytextura.com/marfinance/gdwyLku/
Cookie: PHPSESSID=5944qa62ad9k38g5l3kabhgmb6
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Server: nginx
Date: Mon, 31 Oct 2022 22:50:44 GMT
Content-Type: text/css
Last-Modified: Tue, 28 Oct 2014 18:14:52 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Cache-Control: max-age=604800
Expires: Mon, 07 Nov 2022 22:50:44 GMT
ETag: W/"544fdd1c-7449"
X-Powered-By: PleskLin
Content-Encoding: gzip

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
9c02f8cfeb5d8ec938bde86a8966f00d
7dc55d144bfbb789a8c7e5bf584697c2f2cd4e4f
55d5e19dccdd576ff492990021977abae84ee9acc24914f802880010c909f509

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 31 Oct 2022 22:50:45 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ajax.googleapis.com/ajax/libs/jquery/1.6.1/jquery.min.js

142.250.74.74

200 OK

32 kB

URL HTTP/2
ajax.googleapis.com/ajax/libs/jquery/1.6.1/jquery.min.js
IP
142.250.74.74:0
ASN
#15169 GOOGLE

File type
HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (32764)
Size
32 kB (32124 bytes)
Hash
34fb740c21fb2f4be218932988fe68f2
2e2ee722aa0902a96a2ed3bd1f51ab762b666b9f
9e0ec1faab0c671db34a814b74946659d86ec455b89b4efd638806a146cfa51a

HTTP Headers

GET /ajax/libs/jquery/1.6.1/jquery.min.js HTTP/1.1
Host: ajax.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://luzytextura.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/hosted-libraries-pushers
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="hosted-libraries-pushers"
report-to: {"group":"hosted-libraries-pushers","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/hosted-libraries-pushers"}]}
timing-allow-origin: *
content-length: 32124
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 26 Oct 2022 03:24:46 GMT
expires: Thu, 26 Oct 2023 03:24:46 GMT
cache-control: public, max-age=31536000, stale-while-revalidate=2592000
age: 501959
last-modified: Tue, 03 Mar 2020 19:15:00 GMT
content-type: text/javascript; charset=UTF-8
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

luzytextura.com/templates/luzytextura/images/logo-min.png

185.37.226.48

200 OK

4.1 kB

URL HTTP/1.1
luzytextura.com/templates/luzytextura/images/logo-min.png
IP
185.37.226.48:0
ASN
#57286 Gigas Hosting S.A.

File type
PNG image data, 100 x 112, 8-bit/color RGBA, non-interlaced\012- data
Size
4.1 kB (4078 bytes)
Hash
25652f952112c2671e05719f113d1960
3c21a9a1da6770959d46e276d5626bc2ac4fe5bc
1c2be07429c89c6bfc2ee43a667f0bb61676a1235aa7450ddd4b5425018d9dee

Detections

Analyzer	Verdict	Alert
mnemonic_dns	Sinkholed
quad9	Sinkholed

HTTP Headers

GET /templates/luzytextura/images/logo-min.png HTTP/1.1
Host: luzytextura.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://luzytextura.com/marfinance/gdwyLku/
Cookie: PHPSESSID=5944qa62ad9k38g5l3kabhgmb6
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Server: nginx
Date: Mon, 31 Oct 2022 22:50:45 GMT
Content-Type: image/png
Content-Length: 4078
Last-Modified: Sun, 08 Dec 2013 12:36:24 GMT
Connection: keep-alive
Cache-Control: max-age=604800
Expires: Mon, 07 Nov 2022 22:50:45 GMT
ETag: "52a467c8-fee"
X-Powered-By: PleskLin
Accept-Ranges: bytes

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
9c02f8cfeb5d8ec938bde86a8966f00d
7dc55d144bfbb789a8c7e5bf584697c2f2cd4e4f
55d5e19dccdd576ff492990021977abae84ee9acc24914f802880010c909f509

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 31 Oct 2022 22:50:45 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

luzytextura.com/templates/luzytextura/images/navigation-left.png

185.37.226.48

200 OK

2.2 kB

URL HTTP/1.1
luzytextura.com/templates/luzytextura/images/navigation-left.png
IP
185.37.226.48:0
ASN
#57286 Gigas Hosting S.A.

File type
PNG image data, 80 x 112, 8-bit/color RGBA, non-interlaced\012- data
Size
2.2 kB (2185 bytes)
Hash
4ab79fb2b0d5be81b2c7faafd2111e93
b33ae24cc92134666cfeae6bd44f780279a3c030
6f6acc06fa7fb73045a21354084001a2d41f9413bd48c24db414828cdd18b9f5

Detections

Analyzer	Verdict	Alert
mnemonic_dns	Sinkholed
quad9	Sinkholed

HTTP Headers

GET /templates/luzytextura/images/navigation-left.png HTTP/1.1
Host: luzytextura.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://luzytextura.com/marfinance/gdwyLku/
Cookie: PHPSESSID=5944qa62ad9k38g5l3kabhgmb6
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Server: nginx
Date: Mon, 31 Oct 2022 22:50:45 GMT
Content-Type: image/png
Content-Length: 2185
Last-Modified: Tue, 03 Dec 2013 21:08:02 GMT
Connection: keep-alive
Cache-Control: max-age=604800
Expires: Mon, 07 Nov 2022 22:50:45 GMT
ETag: "529e4832-889"
X-Powered-By: PleskLin
Accept-Ranges: bytes

luzytextura.com/templates/luzytextura/images/logo.png

185.37.226.48

200 OK

6.7 kB

URL HTTP/1.1
luzytextura.com/templates/luzytextura/images/logo.png
IP
185.37.226.48:0
ASN
#57286 Gigas Hosting S.A.

File type
PNG image data, 158 x 177, 8-bit/color RGBA, non-interlaced\012- data
Size
6.7 kB (6662 bytes)
Hash
befb75a986384c07564f6b95f65e71cb
1860cd55fc24f2e4567e6ff400e3704e14390c2e
c93ed82ed5a6ef94d4a7deba68a0bf3f216f4dcefdd08feeadd836f7cbf4f705

Detections

Analyzer	Verdict	Alert
mnemonic_dns	Sinkholed
quad9	Sinkholed

HTTP Headers

GET /templates/luzytextura/images/logo.png HTTP/1.1
Host: luzytextura.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://luzytextura.com/marfinance/gdwyLku/
Cookie: PHPSESSID=5944qa62ad9k38g5l3kabhgmb6
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Server: nginx
Date: Mon, 31 Oct 2022 22:50:45 GMT
Content-Type: image/png
Content-Length: 6662
Last-Modified: Fri, 13 Dec 2013 18:21:14 GMT
Connection: keep-alive
Cache-Control: max-age=604800
Expires: Mon, 07 Nov 2022 22:50:45 GMT
ETag: "52ab501a-1a06"
X-Powered-By: PleskLin
Accept-Ranges: bytes

luzytextura.com/templates/luzytextura/images/menu_3d.png

185.37.226.48

200 OK

2.0 kB

URL HTTP/1.1
luzytextura.com/templates/luzytextura/images/menu_3d.png
IP
185.37.226.48:0
ASN
#57286 Gigas Hosting S.A.

File type
PNG image data, 63 x 219, 8-bit/color RGBA, non-interlaced\012- data
Size
2.0 kB (1962 bytes)
Hash
e64594e3548261e8bf47bf6a53c00030
fd181ff6a166a19b9dd4eaaf3ed16e65ef9c194e
f34d160549dfe5cece6820f8002429580b549ba9e93b5a787535d73abfeb256a

Detections

Analyzer	Verdict	Alert
mnemonic_dns	Sinkholed
quad9	Sinkholed

HTTP Headers

GET /templates/luzytextura/images/menu_3d.png HTTP/1.1
Host: luzytextura.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://luzytextura.com/marfinance/gdwyLku/
Cookie: PHPSESSID=5944qa62ad9k38g5l3kabhgmb6
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Server: nginx
Date: Mon, 31 Oct 2022 22:50:45 GMT
Content-Type: image/png
Content-Length: 1962
Last-Modified: Fri, 13 Dec 2013 18:38:58 GMT
Connection: keep-alive
Cache-Control: max-age=604800
Expires: Mon, 07 Nov 2022 22:50:45 GMT
ETag: "52ab5442-7aa"
X-Powered-By: PleskLin
Accept-Ranges: bytes

luzytextura.com/templates/luzytextura/images/menu.png

185.37.226.48

200 OK

15 kB

URL HTTP/1.1
luzytextura.com/templates/luzytextura/images/menu.png
IP
185.37.226.48:0
ASN
#57286 Gigas Hosting S.A.

File type
PNG image data, 554 x 177, 8-bit/color RGBA, non-interlaced\012- data
Size
15 kB (14908 bytes)
Hash
5ad45e20bbe362ec4e243002ea929cbc
b21e0322f0e337752229c1b144b80aabaf936e0f
e2760b14af6c47c5d0b09b8b4b08f4e260137ab8c42d023f67b9afe9b977a415

Detections

Analyzer	Verdict	Alert
mnemonic_dns	Sinkholed
quad9	Sinkholed

HTTP Headers

GET /templates/luzytextura/images/menu.png HTTP/1.1
Host: luzytextura.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://luzytextura.com/templates/luzytextura/css/estilos.css
Cookie: PHPSESSID=5944qa62ad9k38g5l3kabhgmb6
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Server: nginx
Date: Mon, 31 Oct 2022 22:50:45 GMT
Content-Type: image/png
Content-Length: 14908
Last-Modified: Fri, 13 Dec 2013 18:26:38 GMT
Connection: keep-alive
Cache-Control: max-age=604800
Expires: Mon, 07 Nov 2022 22:50:45 GMT
ETag: "52ab515e-3a3c"
X-Powered-By: PleskLin
Accept-Ranges: bytes

luzytextura.com/templates/luzytextura/images/menu_foto.png

185.37.226.48

200 OK

2.5 kB

URL HTTP/1.1
luzytextura.com/templates/luzytextura/images/menu_foto.png
IP
185.37.226.48:0
ASN
#57286 Gigas Hosting S.A.

File type
PNG image data, 63 x 219, 8-bit/color RGBA, non-interlaced\012- data
Size
2.5 kB (2462 bytes)
Hash
0c36a408c7fe1cfa347a8ae61207d409
e43219853e7f6b6944823a46551d7c08281b2e4e
5ade8d88a3c1c4e07552e2f136aa6a2d0ced15acc5ec15c93a64d720e479befa

Detections

Analyzer	Verdict	Alert
mnemonic_dns	Sinkholed
quad9	Sinkholed

HTTP Headers

GET /templates/luzytextura/images/menu_foto.png HTTP/1.1
Host: luzytextura.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://luzytextura.com/marfinance/gdwyLku/
Cookie: PHPSESSID=5944qa62ad9k38g5l3kabhgmb6
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Server: nginx
Date: Mon, 31 Oct 2022 22:50:45 GMT
Content-Type: image/png
Content-Length: 2462
Last-Modified: Fri, 13 Dec 2013 18:45:32 GMT
Connection: keep-alive
Cache-Control: max-age=604800
Expires: Mon, 07 Nov 2022 22:50:45 GMT
ETag: "52ab55cc-99e"
X-Powered-By: PleskLin
Accept-Ranges: bytes

luzytextura.com/templates/luzytextura/images/menu_imagen.png

185.37.226.48

200 OK

3.3 kB

URL HTTP/1.1
luzytextura.com/templates/luzytextura/images/menu_imagen.png
IP
185.37.226.48:0
ASN
#57286 Gigas Hosting S.A.

File type
PNG image data, 63 x 219, 8-bit/color RGBA, non-interlaced\012- data
Size
3.3 kB (3297 bytes)
Hash
8538c0138c77633b6efb13d00538c3ef
72ff4ee124089dbc84a12019ea4eef1a2e4be4d4
d3e6f854f85833e66b92961640a64681d70f28ade09b8a7e8ecbe7e33ee296a4

Detections

Analyzer	Verdict	Alert
mnemonic_dns	Sinkholed
quad9	Sinkholed

HTTP Headers

GET /templates/luzytextura/images/menu_imagen.png HTTP/1.1
Host: luzytextura.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://luzytextura.com/marfinance/gdwyLku/
Cookie: PHPSESSID=5944qa62ad9k38g5l3kabhgmb6
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Server: nginx
Date: Mon, 31 Oct 2022 22:50:45 GMT
Content-Type: image/png
Content-Length: 3297
Last-Modified: Fri, 13 Dec 2013 18:46:24 GMT
Connection: keep-alive
Cache-Control: max-age=604800
Expires: Mon, 07 Nov 2022 22:50:45 GMT
ETag: "52ab5600-ce1"
X-Powered-By: PleskLin
Accept-Ranges: bytes

luzytextura.com/templates/luzytextura/js/scripts.js?v=20220915

185.37.226.48

200 OK

52 kB

URL HTTP/1.1
luzytextura.com/templates/luzytextura/js/scripts.js?v=20220915
IP
185.37.226.48:0
ASN
#57286 Gigas Hosting S.A.

File type
HTML document text\012- HTML document, Unicode text, UTF-8 text, with very long lines (3818), with CRLF line terminators
Size
52 kB (51680 bytes)
Hash
28221b53d5d82041bf58f542715cc4d5
038063a6bc1a8bbd655ebefabd8982c10906ff9a
fb412cccc9cd70ac8117bd0e8c4a1517d316102c45de240038d205a3124d9d03

Detections

Analyzer	Verdict	Alert
mnemonic_dns	Sinkholed
quad9	Sinkholed

HTTP Headers

GET /templates/luzytextura/js/scripts.js?v=20220915 HTTP/1.1
Host: luzytextura.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://luzytextura.com/marfinance/gdwyLku/
Cookie: PHPSESSID=5944qa62ad9k38g5l3kabhgmb6
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Server: nginx
Date: Mon, 31 Oct 2022 22:50:45 GMT
Content-Type: application/javascript
Content-Length: 51680
Last-Modified: Thu, 15 Sep 2022 16:51:12 GMT
Connection: keep-alive
Cache-Control: max-age=604800
Expires: Mon, 07 Nov 2022 22:50:45 GMT
ETag: "63235800-c9e0"
X-Powered-By: PleskLin
Accept-Ranges: bytes

luzytextura.com/templates/luzytextura/images/menu_web.png

185.37.226.48

200 OK

2.7 kB

URL HTTP/1.1
luzytextura.com/templates/luzytextura/images/menu_web.png
IP
185.37.226.48:0
ASN
#57286 Gigas Hosting S.A.

File type
PNG image data, 63 x 219, 8-bit/color RGBA, non-interlaced\012- data
Size
2.7 kB (2686 bytes)
Hash
bc9337baff81ceef98f103c4129a6fa0
fc1a8f015d61ec6323a3949ff1cac34ff99ebdbb
715f4a765092f7538c802b43ca60abfa451c3e95f93d3e870482bcf07434dda1

Detections

Analyzer	Verdict	Alert
mnemonic_dns	Sinkholed
quad9	Sinkholed

HTTP Headers

GET /templates/luzytextura/images/menu_web.png HTTP/1.1
Host: luzytextura.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://luzytextura.com/marfinance/gdwyLku/
Cookie: PHPSESSID=5944qa62ad9k38g5l3kabhgmb6
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Server: nginx
Date: Mon, 31 Oct 2022 22:50:45 GMT
Content-Type: image/png
Content-Length: 2686
Last-Modified: Fri, 13 Dec 2013 18:40:38 GMT
Connection: keep-alive
Cache-Control: max-age=604800
Expires: Mon, 07 Nov 2022 22:50:45 GMT
ETag: "52ab54a6-a7e"
X-Powered-By: PleskLin
Accept-Ranges: bytes

luzytextura.com/templates/luzytextura/images/menu_decoracion.png

185.37.226.48

200 OK

3.9 kB

URL HTTP/1.1
luzytextura.com/templates/luzytextura/images/menu_decoracion.png
IP
185.37.226.48:0
ASN
#57286 Gigas Hosting S.A.

File type
PNG image data, 63 x 219, 8-bit/color RGBA, non-interlaced\012- data
Size
3.9 kB (3933 bytes)
Hash
dbc4b70a74437337ea98e81f95ce8438
b5cc3749ded5c61486f3b11ca8f26a486530b9db
6c8517bc12b6f1120dd748b6acba0023895b9d4c7758c23f16baa3cd0c4c9590

Detections

Analyzer	Verdict	Alert
mnemonic_dns	Sinkholed
quad9	Sinkholed

HTTP Headers

GET /templates/luzytextura/images/menu_decoracion.png HTTP/1.1
Host: luzytextura.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://luzytextura.com/marfinance/gdwyLku/
Cookie: PHPSESSID=5944qa62ad9k38g5l3kabhgmb6
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Server: nginx
Date: Mon, 31 Oct 2022 22:50:45 GMT
Content-Type: image/png
Content-Length: 3933
Last-Modified: Fri, 13 Dec 2013 18:37:36 GMT
Connection: keep-alive
Cache-Control: max-age=604800
Expires: Mon, 07 Nov 2022 22:50:45 GMT
ETag: "52ab53f0-f5d"
X-Powered-By: PleskLin
Accept-Ranges: bytes

luzytextura.com/templates/luzytextura/images/footer.png

185.37.226.48

200 OK

1.6 kB

URL HTTP/1.1
luzytextura.com/templates/luzytextura/images/footer.png
IP
185.37.226.48:0
ASN
#57286 Gigas Hosting S.A.

File type
PNG image data, 73 x 19, 8-bit/color RGBA, non-interlaced\012- data
Size
1.6 kB (1583 bytes)
Hash
61191eed4b7a29d4c5875d6798bd6604
2bdb72fd6437a191293e9e96553946c5f88cedb0
3a6287b9d4f6459035c19c2572f77f118111580869122b6090db0c21dafea729

Detections

Analyzer	Verdict	Alert
mnemonic_dns	Sinkholed
quad9	Sinkholed

HTTP Headers

GET /templates/luzytextura/images/footer.png HTTP/1.1
Host: luzytextura.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://luzytextura.com/marfinance/gdwyLku/
Cookie: PHPSESSID=5944qa62ad9k38g5l3kabhgmb6
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Server: nginx
Date: Mon, 31 Oct 2022 22:50:45 GMT
Content-Type: image/png
Content-Length: 1583
Last-Modified: Sun, 08 Dec 2013 22:13:04 GMT
Connection: keep-alive
Cache-Control: max-age=604800
Expires: Mon, 07 Nov 2022 22:50:45 GMT
ETag: "52a4eef0-62f"
X-Powered-By: PleskLin
Accept-Ranges: bytes

luzytextura.com/templates/luzytextura/images/ico_facebook.png

185.37.226.48

200 OK

1.0 kB

URL HTTP/1.1
luzytextura.com/templates/luzytextura/images/ico_facebook.png
IP
185.37.226.48:0
ASN
#57286 Gigas Hosting S.A.

File type
PNG image data, 24 x 48, 8-bit/color RGBA, non-interlaced\012- data
Size
1.0 kB (1030 bytes)
Hash
f3e4592d98fc76eef53303aed359b7ff
2d4735dfedb3b77e98a45f00b3ef4b3c28d02902
437e8b4de7becf6d3b4f82e716f78332fbb8f3b319aa3d7caf49c3065c6447a2

Detections

Analyzer	Verdict	Alert
mnemonic_dns	Sinkholed
quad9	Sinkholed

HTTP Headers

GET /templates/luzytextura/images/ico_facebook.png HTTP/1.1
Host: luzytextura.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://luzytextura.com/templates/luzytextura/css/estilos.css
Cookie: PHPSESSID=5944qa62ad9k38g5l3kabhgmb6
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Server: nginx
Date: Mon, 31 Oct 2022 22:50:45 GMT
Content-Type: image/png
Content-Length: 1030
Last-Modified: Thu, 12 Dec 2013 20:55:56 GMT
Connection: keep-alive
Cache-Control: max-age=604800
Expires: Mon, 07 Nov 2022 22:50:45 GMT
ETag: "52aa22dc-406"
X-Powered-By: PleskLin
Accept-Ranges: bytes

luzytextura.com/templates/luzytextura/images/ico_twitter.png

185.37.226.48

200 OK

1.0 kB

URL HTTP/1.1
luzytextura.com/templates/luzytextura/images/ico_twitter.png
IP
185.37.226.48:0
ASN
#57286 Gigas Hosting S.A.

File type
PNG image data, 24 x 48, 8-bit/color RGBA, non-interlaced\012- data
Size
1.0 kB (1030 bytes)
Hash
58f3ccc2f797c1bad4c1a86e8b9d4349
5ae5887ba7af0955fb5df92f5ec8f0d050b45c66
8940d938540d6c701f07ba31bb560ed8ac96813508c9a7633d49ab9b579b52c3

Detections

Analyzer	Verdict	Alert
mnemonic_dns	Sinkholed
quad9	Sinkholed

HTTP Headers

GET /templates/luzytextura/images/ico_twitter.png HTTP/1.1
Host: luzytextura.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://luzytextura.com/templates/luzytextura/css/estilos.css
Cookie: PHPSESSID=5944qa62ad9k38g5l3kabhgmb6
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Server: nginx
Date: Mon, 31 Oct 2022 22:50:45 GMT
Content-Type: image/png
Content-Length: 1030
Last-Modified: Thu, 12 Dec 2013 20:55:56 GMT
Connection: keep-alive
Cache-Control: max-age=604800
Expires: Mon, 07 Nov 2022 22:50:45 GMT
ETag: "52aa22dc-406"
X-Powered-By: PleskLin
Accept-Ranges: bytes

luzytextura.com/templates/luzytextura/images/ico_googleplus.png

185.37.226.48

200 OK

1.7 kB

URL HTTP/1.1
luzytextura.com/templates/luzytextura/images/ico_googleplus.png
IP
185.37.226.48:0
ASN
#57286 Gigas Hosting S.A.

File type
PNG image data, 24 x 48, 8-bit/color RGBA, non-interlaced\012- data
Size
1.7 kB (1749 bytes)
Hash
017ff9301cdf03b63eddf2521a5ccfb6
f4257e53c36ae2e00f3560851494be17e530ff13
441425e19e72126c88ed7661b6b0e1ec4e652c9325e2a2e7b1babdf310ea43b2

Detections

Analyzer	Verdict	Alert
mnemonic_dns	Sinkholed
quad9	Sinkholed

HTTP Headers

GET /templates/luzytextura/images/ico_googleplus.png HTTP/1.1
Host: luzytextura.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://luzytextura.com/templates/luzytextura/css/estilos.css
Cookie: PHPSESSID=5944qa62ad9k38g5l3kabhgmb6
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Server: nginx
Date: Mon, 31 Oct 2022 22:50:45 GMT
Content-Type: image/png
Content-Length: 1749
Last-Modified: Thu, 12 Dec 2013 20:55:56 GMT
Connection: keep-alive
Cache-Control: max-age=604800
Expires: Mon, 07 Nov 2022 22:50:45 GMT
ETag: "52aa22dc-6d5"
X-Powered-By: PleskLin
Accept-Ranges: bytes

push.services.mozilla.com/

34.218.164.174

101 Switching Protocols

0 B

URL HTTP/1.1
push.services.mozilla.com/
IP
34.218.164.174:0
ASN
#16509 AMAZON-02

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: jCw0ttrZtlEzjoOzhwCxWQ==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket

HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: TVpy0H9QzCJJ8EYG4bF0bNEVU1E=

luzytextura.com/templates/luzytextura/images/ico_youtube.png

185.37.226.48

200 OK

1.6 kB

URL HTTP/1.1
luzytextura.com/templates/luzytextura/images/ico_youtube.png
IP
185.37.226.48:0
ASN
#57286 Gigas Hosting S.A.

File type
PNG image data, 24 x 48, 8-bit/color RGBA, non-interlaced\012- data
Size
1.6 kB (1620 bytes)
Hash
9df09c0dbce008e1ddd85b67cd51f3df
17d29f78eefcc2c06dc1b6ace19fe38bafca3161
c986899f88a4906d0c0dd7e201a1ffad85e6224d843f151af3e18eefcf2f7abe

Detections

Analyzer	Verdict	Alert
mnemonic_dns	Sinkholed
quad9	Sinkholed

HTTP Headers

GET /templates/luzytextura/images/ico_youtube.png HTTP/1.1
Host: luzytextura.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://luzytextura.com/templates/luzytextura/css/estilos.css
Cookie: PHPSESSID=5944qa62ad9k38g5l3kabhgmb6
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Server: nginx
Date: Mon, 31 Oct 2022 22:50:45 GMT
Content-Type: image/png
Content-Length: 1620
Last-Modified: Thu, 12 Dec 2013 20:55:56 GMT
Connection: keep-alive
Cache-Control: max-age=604800
Expires: Mon, 07 Nov 2022 22:50:45 GMT
ETag: "52aa22dc-654"
X-Powered-By: PleskLin
Accept-Ranges: bytes

luzytextura.com/templates/luzytextura/images/menu_3d-min.png

185.37.226.48

200 OK

1.7 kB

URL HTTP/1.1
luzytextura.com/templates/luzytextura/images/menu_3d-min.png
IP
185.37.226.48:0
ASN
#57286 Gigas Hosting S.A.

File type
PNG image data, 30 x 74, 8-bit/color RGBA, non-interlaced\012- data
Size
1.7 kB (1710 bytes)
Hash
9d98630562a32a2ab4ce6e496b596aac
d18b2c4e3d1acb52e76656fc31c8c0d0142eb2dd
2eccefee65b798fcc87998e0136c9864617a1763684e936d1f0f81401cd37d5b

Detections

Analyzer	Verdict	Alert
mnemonic_dns	Sinkholed
quad9	Sinkholed

HTTP Headers

GET /templates/luzytextura/images/menu_3d-min.png HTTP/1.1
Host: luzytextura.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://luzytextura.com/marfinance/gdwyLku/
Cookie: PHPSESSID=5944qa62ad9k38g5l3kabhgmb6
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Server: nginx
Date: Mon, 31 Oct 2022 22:50:45 GMT
Content-Type: image/png
Content-Length: 1710
Last-Modified: Sun, 08 Dec 2013 13:02:34 GMT
Connection: keep-alive
Cache-Control: max-age=604800
Expires: Mon, 07 Nov 2022 22:50:45 GMT
ETag: "52a46dea-6ae"
X-Powered-By: PleskLin
Accept-Ranges: bytes

luzytextura.com/templates/luzytextura/fonts/gothic.woff

185.37.226.48

200 OK

82 kB

URL HTTP/1.1
luzytextura.com/templates/luzytextura/fonts/gothic.woff
IP
185.37.226.48:0
ASN
#57286 Gigas Hosting S.A.

File type
Web Open Font Format, TrueType, length 82192, version 0.0\012- data
Size
82 kB (82192 bytes)
Hash
151c4696847a325b6f5a672ec0c426bc
2ec0d00c4fbf4c1c1fecc41666d8687123106d17
cb6fb87881b74b91645be8b0eee4465a412051ee8c107dfa77367671dad62540

Detections

Analyzer	Verdict	Alert
mnemonic_dns	Sinkholed
quad9	Sinkholed

HTTP Headers

GET /templates/luzytextura/fonts/gothic.woff HTTP/1.1
Host: luzytextura.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://luzytextura.com/templates/luzytextura/css/estilos.css
Cookie: PHPSESSID=5944qa62ad9k38g5l3kabhgmb6
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Server: nginx
Date: Mon, 31 Oct 2022 22:50:45 GMT
Content-Type: application/x-woff
Content-Length: 82192
Last-Modified: Mon, 14 Oct 2013 17:18:10 GMT
Connection: keep-alive
Cache-Control: max-age=31536000
Expires: Tue, 31 Oct 2023 22:50:45 GMT
ETag: "525c2752-14110"
X-Powered-By: PleskLin
Accept-Ranges: bytes

luzytextura.com/templates/luzytextura/images/menu_foto-min.png

185.37.226.48

200 OK

2.0 kB

URL HTTP/1.1
luzytextura.com/templates/luzytextura/images/menu_foto-min.png
IP
185.37.226.48:0
ASN
#57286 Gigas Hosting S.A.

File type
PNG image data, 30 x 74, 8-bit/color RGBA, non-interlaced\012- data
Size
2.0 kB (2003 bytes)
Hash
654c6bb3f7856e34bdbe0fd5c1e4f3e0
d20cddfe00e1df84a1ecb1b8ee32c829332947f0
5dcfdd2bc9230e24634ae754a0f5c21f7fff5e02cd0441370312d4e421dabe70

Detections

Analyzer	Verdict	Alert
mnemonic_dns	Sinkholed
quad9	Sinkholed

HTTP Headers

GET /templates/luzytextura/images/menu_foto-min.png HTTP/1.1
Host: luzytextura.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://luzytextura.com/marfinance/gdwyLku/
Cookie: PHPSESSID=5944qa62ad9k38g5l3kabhgmb6
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Server: nginx
Date: Mon, 31 Oct 2022 22:50:45 GMT
Content-Type: image/png
Content-Length: 2003
Last-Modified: Sun, 08 Dec 2013 13:03:06 GMT
Connection: keep-alive
Cache-Control: max-age=604800
Expires: Mon, 07 Nov 2022 22:50:45 GMT
ETag: "52a46e0a-7d3"
X-Powered-By: PleskLin
Accept-Ranges: bytes

luzytextura.com/templates/luzytextura/images/menu_imagen-min.png

185.37.226.48

200 OK

2.0 kB

URL HTTP/1.1
luzytextura.com/templates/luzytextura/images/menu_imagen-min.png
IP
185.37.226.48:0
ASN
#57286 Gigas Hosting S.A.

File type
PNG image data, 30 x 74, 8-bit/color RGBA, non-interlaced\012- data
Size
2.0 kB (2033 bytes)
Hash
6f2f765cc6d3d42346ab005f78dc04f8
309dde82bb86f828e6b0ae9ba5f50ca5e2d734f5
661a7ac25e1dcda00d02509b2add7caa68c7e3f25b997c366fe907d6edf300aa

Detections

Analyzer	Verdict	Alert
mnemonic_dns	Sinkholed
quad9	Sinkholed

HTTP Headers

GET /templates/luzytextura/images/menu_imagen-min.png HTTP/1.1
Host: luzytextura.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://luzytextura.com/marfinance/gdwyLku/
Cookie: PHPSESSID=5944qa62ad9k38g5l3kabhgmb6
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Server: nginx
Date: Mon, 31 Oct 2022 22:50:45 GMT
Content-Type: image/png
Content-Length: 2033
Last-Modified: Sun, 08 Dec 2013 12:52:50 GMT
Connection: keep-alive
Cache-Control: max-age=604800
Expires: Mon, 07 Nov 2022 22:50:45 GMT
ETag: "52a46ba2-7f1"
X-Powered-By: PleskLin
Accept-Ranges: bytes

luzytextura.com/templates/luzytextura/images/menu_web-min.png

185.37.226.48

200 OK

2.1 kB

URL HTTP/1.1
luzytextura.com/templates/luzytextura/images/menu_web-min.png
IP
185.37.226.48:0
ASN
#57286 Gigas Hosting S.A.

File type
PNG image data, 30 x 74, 8-bit/color RGBA, non-interlaced\012- data
Size
2.1 kB (2092 bytes)
Hash
012bd254885646dad09ddb0e5d118229
b904db538e40fa08d454130e20b5610853a333d4
66222ff8e164781c8d11cdbfd60ee2f85ef681a0d5124250b7207843638bf363

Detections

Analyzer	Verdict	Alert
mnemonic_dns	Sinkholed
quad9	Sinkholed

HTTP Headers

GET /templates/luzytextura/images/menu_web-min.png HTTP/1.1
Host: luzytextura.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://luzytextura.com/marfinance/gdwyLku/
Cookie: PHPSESSID=5944qa62ad9k38g5l3kabhgmb6
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Server: nginx
Date: Mon, 31 Oct 2022 22:50:45 GMT
Content-Type: image/png
Content-Length: 2092
Last-Modified: Sun, 08 Dec 2013 12:52:18 GMT
Connection: keep-alive
Cache-Control: max-age=604800
Expires: Mon, 07 Nov 2022 22:50:45 GMT
ETag: "52a46b82-82c"
X-Powered-By: PleskLin
Accept-Ranges: bytes

luzytextura.com/templates/luzytextura/images/menu_decoracion-min.png

185.37.226.48

200 OK

2.2 kB

URL HTTP/1.1
luzytextura.com/templates/luzytextura/images/menu_decoracion-min.png
IP
185.37.226.48:0
ASN
#57286 Gigas Hosting S.A.

File type
PNG image data, 30 x 74, 8-bit/color RGBA, non-interlaced\012- data
Size
2.2 kB (2194 bytes)
Hash
297acfe129a0a2bba568a2b3244b898f
35330b1b17c3d62938f5ca3cc58650a28c53dfde
998a549f7898973b2264b35d22783d1e1b8f81eeb65fa9cb0331d47b02dcff32

Detections

Analyzer	Verdict	Alert
mnemonic_dns	Sinkholed
quad9	Sinkholed

HTTP Headers

GET /templates/luzytextura/images/menu_decoracion-min.png HTTP/1.1
Host: luzytextura.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://luzytextura.com/marfinance/gdwyLku/
Cookie: PHPSESSID=5944qa62ad9k38g5l3kabhgmb6
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Server: nginx
Date: Mon, 31 Oct 2022 22:50:45 GMT
Content-Type: image/png
Content-Length: 2194
Last-Modified: Sun, 08 Dec 2013 12:53:48 GMT
Connection: keep-alive
Cache-Control: max-age=604800
Expires: Mon, 07 Nov 2022 22:50:45 GMT
ETag: "52a46bdc-892"
X-Powered-By: PleskLin
Accept-Ranges: bytes

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
2cfe049433e4c9f547c3204de6e04e28
f1a51b3bd67e2244fa9581471838483bdc50fc95
b483ff5359c23e1a800755ffef6c989d2b41c0da18883eb01389f551436917ca

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 31 Oct 2022 22:50:45 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

luzytextura.com/templates/luzytextura/images/ico/favicon.ico

185.37.226.48

200 OK

4.3 kB

URL HTTP/1.1
luzytextura.com/templates/luzytextura/images/ico/favicon.ico
IP
185.37.226.48:0
ASN
#57286 Gigas Hosting S.A.

File type
MS Windows icon resource - 1 icon, 32x32, 32 bits/pixel\012- data
Size
4.3 kB (4286 bytes)
Hash
569801f81c9ef913950bb01b8a86bddc
1cfee3b5a61f290ffb4043e56958331ea6facc36
0580c5147f3eb5a68660216c0c386dc4a85e3a3ccff38a384432d57a499c063d

Detections

Analyzer	Verdict	Alert
mnemonic_dns	Sinkholed
quad9	Sinkholed

HTTP Headers

GET /templates/luzytextura/images/ico/favicon.ico HTTP/1.1
Host: luzytextura.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://luzytextura.com/marfinance/gdwyLku/
Cookie: PHPSESSID=5944qa62ad9k38g5l3kabhgmb6
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Server: nginx
Date: Mon, 31 Oct 2022 22:50:45 GMT
Content-Type: image/vnd.microsoft.icon
Content-Length: 4286
Last-Modified: Thu, 05 Dec 2013 14:48:26 GMT
Connection: keep-alive
ETag: "52a0923a-10be"
X-Powered-By: PleskLin
Accept-Ranges: bytes

www.google-analytics.com/analytics.js

142.250.74.174

200 OK

20 kB

URL HTTP/2
www.google-analytics.com/analytics.js
IP
142.250.74.174:0
ASN
#15169 GOOGLE

File type
ASCII text, with very long lines (1325)
Size
20 kB (20039 bytes)
Hash
47e6f374ca946fddd5b59871b325736c
baa9282efc8785e84d247c3bff518eaa45f101c4
16580b5c87c58e5702e411f1888fdef511094e4cd6d62bb47d16291ffb25985e

HTTP Headers

GET /analytics.js HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://luzytextura.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
strict-transport-security: max-age=10886400; includeSubDomains; preload
x-content-type-options: nosniff
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 20039
date: Mon, 31 Oct 2022 22:41:09 GMT
expires: Tue, 01 Nov 2022 00:41:09 GMT
cache-control: public, max-age=7200
age: 576
last-modified: Tue, 27 Sep 2022 22:01:05 GMT
content-type: text/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

www.google-analytics.com/j/collect?v=1&_v=j98&a=1128931399&t=pageview&_s=1&dl=https%3A%2F%2Fluzytextura.com%2Fmarfinance%2FgdwyLku%2F&ul=en-us&de=UTF-8&dt=luzyTextura%20estudio%20de%20dise%C3%B1o%20en%20%C3%81vila&sd=24-bit&sr=1280x1024&vp=1280x939&je=0&_u=IEBAAAABAAAAACAAI~&jid=863165057&gjid=1832923640&cid=1809918794.1667256641&tid=UA-46619840-1&_gid=1802239184.1667256641&_r=1&_slc=1&z=1102004040

142.250.74.174

200 OK

2 B

URL HTTP/2
www.google-analytics.com/j/collect?v=1&_v=j98&a=1128931399&t=pageview&_s=1&dl=https%3A%2F%2Fluzytextura.com%2Fmarfinance%2FgdwyLku%2F&ul=en-us&de=UTF-8&dt=luzyTextura%20estudio%20de%20dise%C3%B1o%20en%20%C3%81vila&sd=24-bit&sr=1280x1024&vp=1280x939&je=0&_u=IEBAAAABAAAAACAAI~&jid=863165057&gjid=1832923640&cid=1809918794.1667256641&tid=UA-46619840-1&_gid=1802239184.1667256641&_r=1&_slc=1&z=1102004040
IP
142.250.74.174:0
ASN
#15169 GOOGLE

File type
ASCII text, with no line terminators
Size
2 B (2 bytes)
Hash
38684612f0c6bb6dfa16da92f4a6878f
6fe62d0dd7db314b7f9bb945672f078e01d27f0f
a048e640908046be06e00eab37742b5d5ff80964af58cfd22f7cb2de4dfe375f

HTTP Headers

POST /j/collect?v=1&_v=j98&a=1128931399&t=pageview&_s=1&dl=https%3A%2F%2Fluzytextura.com%2Fmarfinance%2FgdwyLku%2F&ul=en-us&de=UTF-8&dt=luzyTextura%20estudio%20de%20dise%C3%B1o%20en%20%C3%81vila&sd=24-bit&sr=1280x1024&vp=1280x939&je=0&_u=IEBAAAABAAAAACAAI~&jid=863165057&gjid=1832923640&cid=1809918794.1667256641&tid=UA-46619840-1&_gid=1802239184.1667256641&_r=1&_slc=1&z=1102004040 HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 0
Origin: https://luzytextura.com
Connection: keep-alive
Referer: https://luzytextura.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
access-control-allow-origin: https://luzytextura.com
date: Mon, 31 Oct 2022 22:50:45 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
last-modified: Sun, 17 May 1998 03:00:00 GMT
access-control-allow-credentials: true
x-content-type-options: nosniff
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
2cfe049433e4c9f547c3204de6e04e28
f1a51b3bd67e2244fa9581471838483bdc50fc95
b483ff5359c23e1a800755ffef6c989d2b41c0da18883eb01389f551436917ca

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 31 Oct 2022 22:50:45 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

luzytextura.com/templates/luzytextura/images/bg-portada.jpg

185.37.226.48

200 OK

156 kB

URL HTTP/1.1
luzytextura.com/templates/luzytextura/images/bg-portada.jpg
IP
185.37.226.48:0
ASN
#57286 Gigas Hosting S.A.

File type
JPEG image data, JFIF standard 1.02, aspect ratio, density 100x100, segment length 16, baseline, precision 8, 1920x1080, components 3\012- data
Size
156 kB (156112 bytes)
Hash
c038acba684a7b5c29b73fa203af5cfd
dcf13d4cbfd40db97cc96a160b79640e8f7f4b66
20303c7b59e1a1e0748f15b7e26c21571e97c7d11a087460af7dc27e4518cb86

Detections

Analyzer	Verdict	Alert
mnemonic_dns	Sinkholed
quad9	Sinkholed

HTTP Headers

GET /templates/luzytextura/images/bg-portada.jpg HTTP/1.1
Host: luzytextura.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://luzytextura.com/marfinance/gdwyLku/
Cookie: PHPSESSID=5944qa62ad9k38g5l3kabhgmb6
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Server: nginx
Date: Mon, 31 Oct 2022 22:50:45 GMT
Content-Type: image/jpeg
Content-Length: 156112
Last-Modified: Tue, 03 Dec 2013 20:36:04 GMT
Connection: keep-alive
Cache-Control: max-age=604800
Expires: Mon, 07 Nov 2022 22:50:45 GMT
ETag: "529e40b4-261d0"
X-Powered-By: PleskLin
Accept-Ranges: bytes

luzytextura.com/templates/luzytextura/images/ico/apple-touch-icon-144-precomposed.png

185.37.226.48

404 Not Found

2.5 kB

URL HTTP/1.1
luzytextura.com/templates/luzytextura/images/ico/apple-touch-icon-144-precomposed.png
IP
185.37.226.48:0
ASN
#57286 Gigas Hosting S.A.

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (321), with CRLF, LF line terminators
Size
2.5 kB (2461 bytes)
Hash
1951bb7a9a2dc2b6407c8114dd21349f
6fddf138a0a1876e6d247a14c966315351badd51
571d49a8cc2bd09e6bdcad78a28004f7b05903e5fcbfbc09e8f59539d80e7c23

Detections

Analyzer	Verdict	Alert
mnemonic_dns	Sinkholed
quad9	Sinkholed

HTTP Headers

GET /templates/luzytextura/images/ico/apple-touch-icon-144-precomposed.png HTTP/1.1
Host: luzytextura.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://luzytextura.com/marfinance/gdwyLku/
Cookie: PHPSESSID=5944qa62ad9k38g5l3kabhgmb6
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 404 Not Found
Server: nginx
Date: Mon, 31 Oct 2022 22:50:45 GMT
Content-Type: text/html
Content-Length: 2461
Connection: keep-alive
Set-Cookie: LyT_regcode=deleted; expires=Thu, 01-Jan-1970 00:00:01 GMT; path=/
MS-Author-Via: DAV
Vary: Accept-Encoding
Content-Encoding: gzip

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
f286e64f8de8d0158fe2a83cea74da23
b0e9fd228565aaf58ec455d743e39559a548fdbb
21c7fb0f3d2486d6655b5d6817dd90faafa18836c820a684215f9a29f1a4451c

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "21C7FB0F3D2486D6655B5D6817DD90FAAFA18836C820A684215F9A29F1A4451C"
Last-Modified: Mon, 31 Oct 2022 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=12019
Expires: Tue, 01 Nov 2022 02:11:05 GMT
Date: Mon, 31 Oct 2022 22:50:46 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
f286e64f8de8d0158fe2a83cea74da23
b0e9fd228565aaf58ec455d743e39559a548fdbb
21c7fb0f3d2486d6655b5d6817dd90faafa18836c820a684215f9a29f1a4451c

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "21C7FB0F3D2486D6655B5D6817DD90FAAFA18836C820A684215F9A29F1A4451C"
Last-Modified: Mon, 31 Oct 2022 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=12019
Expires: Tue, 01 Nov 2022 02:11:05 GMT
Date: Mon, 31 Oct 2022 22:50:46 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
f286e64f8de8d0158fe2a83cea74da23
b0e9fd228565aaf58ec455d743e39559a548fdbb
21c7fb0f3d2486d6655b5d6817dd90faafa18836c820a684215f9a29f1a4451c

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "21C7FB0F3D2486D6655B5D6817DD90FAAFA18836C820A684215F9A29F1A4451C"
Last-Modified: Mon, 31 Oct 2022 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=12019
Expires: Tue, 01 Nov 2022 02:11:05 GMT
Date: Mon, 31 Oct 2022 22:50:46 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
f286e64f8de8d0158fe2a83cea74da23
b0e9fd228565aaf58ec455d743e39559a548fdbb
21c7fb0f3d2486d6655b5d6817dd90faafa18836c820a684215f9a29f1a4451c

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "21C7FB0F3D2486D6655B5D6817DD90FAAFA18836C820A684215F9A29F1A4451C"
Last-Modified: Mon, 31 Oct 2022 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=12019
Expires: Tue, 01 Nov 2022 02:11:05 GMT
Date: Mon, 31 Oct 2022 22:50:46 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
f286e64f8de8d0158fe2a83cea74da23
b0e9fd228565aaf58ec455d743e39559a548fdbb
21c7fb0f3d2486d6655b5d6817dd90faafa18836c820a684215f9a29f1a4451c

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "21C7FB0F3D2486D6655B5D6817DD90FAAFA18836C820A684215F9A29F1A4451C"
Last-Modified: Mon, 31 Oct 2022 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=12019
Expires: Tue, 01 Nov 2022 02:11:05 GMT
Date: Mon, 31 Oct 2022 22:50:46 GMT
Connection: keep-alive

img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F89601606-2e4d-4b62-aeeb-7e8997a52ce3.jpeg

34.120.237.76

200 OK

7.1 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F89601606-2e4d-4b62-aeeb-7e8997a52ce3.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
7.1 kB (7082 bytes)
Hash
9bf7660b9e00a5f8d8f679acedb380a9
958646e7e4853effc9e36623d52ea689ebfba4a5
44c542b354d59190c5b0c8e617ce50f97ba9fa7ab53bf38f12f631baa036c753

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F89601606-2e4d-4b62-aeeb-7e8997a52ce3.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 7082
x-amzn-requestid: 4091af6c-12db-4170-bff5-427fc438996a
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: a4856GKOoAMFy7A=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-636041d8-12b6531565ef9701489867f3;Sampled=0
x-amzn-remapped-date: Mon, 31 Oct 2022 21:44:56 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: iSVM6HTtsZbZW5Zj3Gr8zSLpkpDJoRrvluYxom_WI2iBapOQeUTd3A==
via: 1.1 7f5e0d3b9ea85d0d75063a66c0ebc840.cloudfront.net (CloudFront), 1.1 4f3feb5c4393987d42d1971d404d7cea.cloudfront.net (CloudFront), 1.1 google
date: Mon, 31 Oct 2022 22:05:39 GMT
age: 2707
etag: "958646e7e4853effc9e36623d52ea689ebfba4a5"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

5.9 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F52af0964-7b9f-421a-9881-3600d8c6f8e4.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
5.9 kB (5930 bytes)
Hash
ba04b351b7991163ce2fbbb50e7b9146
9696e761b1442094e358cb8bf9dd4eb9351e333b
0d1a80839ccf615665eafd34f3563d12ef74bfd35c62b3e769a83599a949a58d

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F52af0964-7b9f-421a-9881-3600d8c6f8e4.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 5930
x-amzn-requestid: 09d266ca-d00a-47cb-aa5e-52bd2a5df5e4
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: a47JYG5ooAMFq7w=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63603f08-5166163f44ab23133ef2011f;Sampled=0
x-amzn-remapped-date: Mon, 31 Oct 2022 21:32:56 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: STrPs7h4hz0hBNE7HIx-FrE-Qlr1y8g8dCIdugJET-D3w5YAR3gRWQ==
via: 1.1 8dbfaf7df256a75768461d934659b6b2.cloudfront.net (CloudFront), 1.1 ebe4011a81a36e2bf678f69ce1711330.cloudfront.net (CloudFront), 1.1 google
date: Mon, 31 Oct 2022 21:56:43 GMT
age: 3243
etag: "9696e761b1442094e358cb8bf9dd4eb9351e333b"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

4.7 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F146a58d8-e764-43d0-9812-6e8fd4a4ddf5.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
4.7 kB (4678 bytes)
Hash
7b2c3f2a710323cabe8b60f067758182
5d1dfb235e19f623699f0ad023df09d22ceb0645
4c4a5d1e0c9e0e2030f897dfd33200bf109060143e09a826d750c7b3f87cec17

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F146a58d8-e764-43d0-9812-6e8fd4a4ddf5.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 4678
x-amzn-requestid: 34d75ddd-73da-4ec2-8698-d6055f4cd478
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: alLEhGE0oAMFn_g=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63585883-2e887995721c1eb13ce3336d;Sampled=0
x-amzn-remapped-date: Tue, 25 Oct 2022 21:43:31 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: VqJq3xjxdWqqErVCilqBX5TC1deFTHo3z-SZn6srVupyWp-IMmOUwg==
via: 1.1 d83ae0e1ba84e92e58bc1efc23a0c652.cloudfront.net (CloudFront), 1.1 02d90bf99fd6253b329a53c82f19e224.cloudfront.net (CloudFront), 1.1 google
date: Mon, 31 Oct 2022 11:45:15 GMT
age: 39931
etag: "5d1dfb235e19f623699f0ad023df09d22ceb0645"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

5.3 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F66755462-8673-4014-b8b7-42348fcb2463.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
5.3 kB (5297 bytes)
Hash
c276081f8178d671424a68ebf0490758
f71414e946798b28442cc46c28041527d9a2f238
f2c46ba608ede798855b886d5eec285599a5c880125c7cd763de18c68f493297

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F66755462-8673-4014-b8b7-42348fcb2463.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 5297
x-amzn-requestid: 909a78a5-fc98-462f-9acd-809dcff3509d
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: a49IlGB3IAMF2Tg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63604236-5bddd0206a5129af3bafde7e;Sampled=0
x-amzn-remapped-date: Mon, 31 Oct 2022 21:46:30 GMT
x-amz-cf-pop: SEA73-P2, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: 7JoOyEjReCxOWTtsOp6ljqz5CPbc8Ozk-DtMRey5NaBnVFm2osyqAw==
via: 1.1 5abfab33f248090bb0f31ca137ce9464.cloudfront.net (CloudFront), 1.1 2ab6211e66998c8b58132661a7e3cade.cloudfront.net (CloudFront), 1.1 google
date: Mon, 31 Oct 2022 21:56:37 GMT
age: 3249
etag: "f71414e946798b28442cc46c28041527d9a2f238"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

11 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3494b1e3-ddc8-454c-8b43-e70e2d8f07b8.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
11 kB (11421 bytes)
Hash
2ae2b8d827fb2c8bef64febcd36f1645
f7705fcd2d91ce90c58e79324cce1e3abba6c1c8
2dc55e97ef3a85fccb104b80161a8bac16b12d37527c336563677432584c7ad5

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3494b1e3-ddc8-454c-8b43-e70e2d8f07b8.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 11421
x-amzn-requestid: 4496dcf9-82a8-4321-99bd-0007970fbcfe
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ayUiRGlaIAMFv1w=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-635d9adb-3a316f577aae13f14f42115d;Sampled=0
x-amzn-remapped-date: Sat, 29 Oct 2022 21:27:55 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: QTXI_o8XNya_nGWUf9f6DSAhDTfls7WQ_NEF7pSA-o0orL1sZLXOaw==
via: 1.1 8f22423015641505b8c857a37450d6c0.cloudfront.net (CloudFront), 1.1 ee8246c5442dace7525c74f6a799bb46.cloudfront.net (CloudFront), 1.1 google
date: Mon, 31 Oct 2022 21:51:15 GMT
age: 3571
etag: "f7705fcd2d91ce90c58e79324cce1e3abba6c1c8"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

7.6 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F94f84949-02d0-4e69-a113-2938d6e81d45.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
7.6 kB (7572 bytes)
Hash
dc8dc018fa309d42eadfc5e0e93d13ef
0fc63e9915ed1674380f13e717882372554da41f
38ddbf172d0d30a9e4a6a0756f39436f861c5f25ad7df39de13c64b1f03a015b

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F94f84949-02d0-4e69-a113-2938d6e81d45.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 7572
x-amzn-requestid: 01d67c54-fcba-4460-8bed-0a2de181987f
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: a47JYGqQIAMF7kA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63603f08-0159cccf44d6e2094c218705;Sampled=0
x-amzn-remapped-date: Mon, 31 Oct 2022 21:32:56 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: bFAhz7mvdNcMceOIZRO39u8fItmHnuwsnwMVpBwQbUuH3TR7Ko7Ljg==
via: 1.1 cd48ffda04934d18865e47e99ea080bc.cloudfront.net (CloudFront), 1.1 760139201585481b26f947c5f776103a.cloudfront.net (CloudFront), 1.1 google
date: Mon, 31 Oct 2022 22:18:25 GMT
age: 1941
etag: "0fc63e9915ed1674380f13e717882372554da41f"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

3.0 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3c55f86a-4d60-4a05-9aad-db2291ea7aa9.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
3.0 kB (3012 bytes)
Hash
6c83fbfade063f679745970f0023084a
5ad6d8f3b09a2caa826e58de4ea3f958515a32c8
b4bf608f8b9f43c797da337c674371d1b7b8ae3b206f8fedf5666f79df69541c

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3c55f86a-4d60-4a05-9aad-db2291ea7aa9.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
server: nginx
content-length: 3012
x-amzn-requestid: 7c09d99b-ec8e-4924-aa26-d89c0938d16c
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: aSsaUGhwoAMF7rA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6350f441-4e13a3e832f9d75b404e9a41;Sampled=0
x-amzn-remapped-date: Thu, 20 Oct 2022 07:09:53 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: hAM56AVBXmYASxTx4q6XcYFGW4kKY5KJL_zvYNyGK_UHeKXz1-oYJw==
via: 1.1 cd48ffda04934d18865e47e99ea080bc.cloudfront.net (CloudFront), 1.1 35575576af8067e30cfb17c6b9fde8e2.cloudfront.net (CloudFront), 1.1 google
date: Mon, 31 Oct 2022 22:22:30 GMT
age: 1703
etag: "5ad6d8f3b09a2caa826e58de4ea3f958515a32c8"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

OpenPhish

PhishTank

Fortinet's Web Filter

mnemonic secure dns

Quad9 DNS

JavaScript (4)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

HTTP Transactions (54)

URL HTTP/1.1

IP

ASN

File type

Size

Hash

Detections

HTTP Headers

URL HTTP/1.1

IP

ASN

File type

Size

Hash

HTTP Headers

URL HTTP/1.1

IP

ASN

File type

Size

Hash

HTTP Headers

URL HTTP/1.1

IP

ASN

File type