r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash a5daf4dc99951793ae2315d4795e8146
4427507ca4d3a5632cc8f598afbc85e2195d00bd
94fb64c1c826ed7099283c0bedb3cea7ac7e1d9526794cb9fad6e761f5989d32
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "94FB64C1C826ED7099283C0BEDB3CEA7AC7E1D9526794CB9FAD6E761F5989D32"
Last-Modified: Mon, 28 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8524
Expires: Wed, 30 Nov 2022 00:16:46 GMT
Date: Tue, 29 Nov 2022 21:54:42 GMT
Connection: keep-alive
ocsp.digicert.com/
200 OK 55 B IP
File type HTML document, ASCII text
Hash 9f073354411bbaf7a319b1519f10b4b7
571498f38548829bf186f49f5be9d5fa6e689a68
4a7aaaa1c093dee8a191d4469c9f701c5e62e88896bc778a13cc4ffedf9be89a
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4191
Content-Type: text/html
Date: Tue, 29 Nov 2022 21:54:42 GMT
Etag: "638651c4-37"
Last-Modified: Tue, 29 Nov 2022 18:39:00 GMT
Server: ECS (ska/F70A)
X-Cache: HIT
Content-Length: 55
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 6d9d34c96b9a826ae5676640c966469c
8052a16d41a637e420478b7de1ff5a2dc951fccd
f18ac558cb786126bb7efb159e03353d268d5f5796bcfd2691a349dfc68d863c
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "F18AC558CB786126BB7EFB159E03353D268D5F5796BCFD2691A349DFC68D863C"
Last-Modified: Mon, 28 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10705
Expires: Wed, 30 Nov 2022 00:53:07 GMT
Date: Tue, 29 Nov 2022 21:54:42 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 14cd9a0afb6ba9a763651d5112760d1e
75d7b104ab9ab11fbb73c3f348b43b0119b5adfa
4e32a117106be587ffcd63239c16a8117eb7840830d4c9decf6527761967532e
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Length, Alert, Retry-After, Backoff, Content-Type
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Tue, 29 Nov 2022 21:17:55 GMT
cache-control: public,max-age=3600
content-type: application/json
age: 2207
alt-svc: clear
X-Firefox-Spdy: h2
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain
200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain
IP
File type PEM certificate\012- , ASCII text
Hash 9ebddc2b260d081ebbefee47c037cb28
492bad62a7ca6a74738921ef5ae6f0be5edebf39
74bbb7cba16f7d084a08a0907d47d7496e5c148f904707ec6950f8f6a61027e5
GET /chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: wtczh+ETbHuTSVYtum5fULuAbBHZW/Os/x56kNnMuSIDlfMRXES7IkYHuYsWVAIr2tGdDssYa8E=
x-amz-request-id: VCJC5GHVHAB5Q0K0
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Tue, 29 Nov 2022 21:44:58 GMT
age: 584
last-modified: Thu, 10 Nov 2022 09:21:27 GMT
etag: "9ebddc2b260d081ebbefee47c037cb28"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Tue, 29 Nov 2022 21:54:42 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Retry-After, ETag, Alert, Expires, Cache-Control, Backoff, Content-Length, Content-Type, Pragma, Last-Modified
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Tue, 29 Nov 2022 21:08:56 GMT
cache-control: public,max-age=3600
age: 2746
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.digicert.com/
200 OK 471 B IP
Hash 3c8c689bd654417640d85f3da51af313
85123b6d46230a23d03768bf304b386e5d301305
516138ca79703b45e904d32d7dde1c1e9fd35995b9f1bb1331c547542745676d
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4431
Cache-Control: max-age=131157
Content-Type: application/ocsp-response
Date: Tue, 29 Nov 2022 21:54:42 GMT
Etag: "6385cba8-1d7"
Expires: Thu, 01 Dec 2022 10:20:39 GMT
Last-Modified: Tue, 29 Nov 2022 09:06:48 GMT
Server: ECS (ska/F70A)
X-Cache: HIT
Content-Length: 471
push.services.mozilla.com/
101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: tqJRlbSDDoShqDCyybyAqw==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: sAu9a51MunnWjO2sd7Ax69qM4Gg=
www.cuervo.agency/
301 Moved Permanently 0 B IP
ASN #51013 WebSupport s.r.o.
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert fortinet Phishing
GET / HTTP/1.1
Host: www.cuervo.agency
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Server: openresty
Date: Tue, 29 Nov 2022 21:54:43 GMT
Content-Type: text/html; charset=UTF-8
Content-Length: 0
Connection: keep-alive
X-Redirect-By: WordPress
Location: https://www.cuervo.agency/
Referrer-Policy: no-referrer-when-downgrade
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash ac3edd07bb0a4ebdaae6ec26e91d2079
b6efe3811dfa37cdcde1e9d411c171732ac7e12a
c5dbd471d178ae4505b28e30aee1e8eed77fffd81b9f7815ad2bda1a0d09a02c
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C5DBD471D178AE4505B28E30AEE1E8EED77FFFD81B9F7815AD2BDA1A0D09A02C"
Last-Modified: Mon, 28 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6208
Expires: Tue, 29 Nov 2022 23:38:12 GMT
Date: Tue, 29 Nov 2022 21:54:44 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash ac3edd07bb0a4ebdaae6ec26e91d2079
b6efe3811dfa37cdcde1e9d411c171732ac7e12a
c5dbd471d178ae4505b28e30aee1e8eed77fffd81b9f7815ad2bda1a0d09a02c
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C5DBD471D178AE4505B28E30AEE1E8EED77FFFD81B9F7815AD2BDA1A0D09A02C"
Last-Modified: Mon, 28 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6208
Expires: Tue, 29 Nov 2022 23:38:12 GMT
Date: Tue, 29 Nov 2022 21:54:44 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash ac3edd07bb0a4ebdaae6ec26e91d2079
b6efe3811dfa37cdcde1e9d411c171732ac7e12a
c5dbd471d178ae4505b28e30aee1e8eed77fffd81b9f7815ad2bda1a0d09a02c
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C5DBD471D178AE4505B28E30AEE1E8EED77FFFD81B9F7815AD2BDA1A0D09A02C"
Last-Modified: Mon, 28 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6208
Expires: Tue, 29 Nov 2022 23:38:12 GMT
Date: Tue, 29 Nov 2022 21:54:44 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash ac3edd07bb0a4ebdaae6ec26e91d2079
b6efe3811dfa37cdcde1e9d411c171732ac7e12a
c5dbd471d178ae4505b28e30aee1e8eed77fffd81b9f7815ad2bda1a0d09a02c
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C5DBD471D178AE4505B28E30AEE1E8EED77FFFD81B9F7815AD2BDA1A0D09A02C"
Last-Modified: Mon, 28 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6208
Expires: Tue, 29 Nov 2022 23:38:12 GMT
Date: Tue, 29 Nov 2022 21:54:44 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F165667de-df17-4cc6-832c-94f49703bdf2.jpeg
200 OK 9.4 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F165667de-df17-4cc6-832c-94f49703bdf2.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 1f434933b5bd6377d299ada22d1ae7ef
075531f525e625b117b2497f31139c9824d0e9c5
b587a3249e4f20112088608e3651c2ccbc44225a5c9d88d3bf5884d7f0e9029c
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F165667de-df17-4cc6-832c-94f49703bdf2.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9430
x-amzn-requestid: 454ca8bd-a256-45f2-8b41-feee86c5af82
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cR7wyGCIIAMFhgw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6383d99e-1488f8ce71a91ebc3ad6b7e0;Sampled=0
x-amzn-remapped-date: Sun, 27 Nov 2022 21:41:50 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: ibLuLI6j9EWh0dgk51O7kiPBRyURZ0UdNtlgbBD-SXnDg_GT_tJm8Q==
via: 1.1 8f22423015641505b8c857a37450d6c0.cloudfront.net (CloudFront), 1.1 d8792dbd3191bbe722eba5b536b979c8.cloudfront.net (CloudFront), 1.1 google
date: Tue, 29 Nov 2022 02:55:32 GMT
age: 68352
etag: "075531f525e625b117b2497f31139c9824d0e9c5"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffe5e6403-f1a3-4b44-a62d-0e47d56bb08e.webp
200 OK 4.9 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffe5e6403-f1a3-4b44-a62d-0e47d56bb08e.webp
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 83c1fedec73299637cc7dc47c48af758
2e3f7326aeea6be8a34bf2c39b34862c07bfdc41
1fea143e23bb0156062f4c06569824900a67ed83cb99fd635d4c4ab968dc65e9
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffe5e6403-f1a3-4b44-a62d-0e47d56bb08e.webp HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 4916
x-amzn-requestid: b8c80a6c-e3f1-4f20-beb8-27b0af760692
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cPYcrELFoAMFaeQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6382d450-155cfb365525173c0ede8adb;Sampled=0
x-amzn-remapped-date: Sun, 27 Nov 2022 03:06:56 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: Twtw6dO3pjTB9OLi0HliKKCDgCuHRqgtx4PFTczrZQ9f8JztgXZoSg==
via: 1.1 49b94a8674d6e86a841d6523f7dbaf14.cloudfront.net (CloudFront), 1.1 f9d716a351f14a0ac1fac2449734849a.cloudfront.net (CloudFront), 1.1 google
date: Tue, 29 Nov 2022 03:01:17 GMT
age: 68007
etag: "2e3f7326aeea6be8a34bf2c39b34862c07bfdc41"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1c32283b-8309-408e-85df-cad97da6bc80.png
200 OK 10 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1c32283b-8309-408e-85df-cad97da6bc80.png
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 03014221d7f49b50ffc2d1b0a0e75457
772d86ad983042a728ee3490630a9cf1134ad0dd
81fb954fa569955907952987e9d8efd1dac80e0e4a682826abf3c5d90eb31771
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1c32283b-8309-408e-85df-cad97da6bc80.png HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10176
x-amzn-requestid: 768fc69c-e91b-4dd9-8add-63634762b2d0
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cMpbgEFOIAMF71A=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6381bc49-21756db31c4714af0553f21b;Sampled=0
x-amzn-remapped-date: Sat, 26 Nov 2022 07:12:09 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: jS-AS3x8V3XacXRNkU63UJjBxA6unvBer5WcxUYseR5p4eZPK64o2g==
via: 1.1 4d7fa73f804f1c93f20cfc24c4b1266e.cloudfront.net (CloudFront), 1.1 7e87179efaa9e3c316bd3d3a74cfded8.cloudfront.net (CloudFront), 1.1 google
date: Tue, 29 Nov 2022 04:52:21 GMT
age: 61343
etag: "772d86ad983042a728ee3490630a9cf1134ad0dd"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe059c7ce-454d-453b-aead-18fae338f84c.jpeg
200 OK 4.9 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe059c7ce-454d-453b-aead-18fae338f84c.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash a4058fd62595d15c58b3d3266de9865a
d0dff35eb78f129b5da407043037bcf9c27e55c0
ab996c23d58871a2ad53f0c34688c87f0d7c0eac5d0c1d8265b86951248449fe
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe059c7ce-454d-453b-aead-18fae338f84c.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 4871
x-amzn-requestid: e2dfa7b8-ded7-4104-a913-1b84746a3c6f
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cLDUUEy_oAMFgSQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-638118e8-0b229e0f60ff019d26800dd9;Sampled=0
x-amzn-remapped-date: Fri, 25 Nov 2022 19:35:04 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: 9BUuT9WFwAQMnl8JiTDKo-zHgDL0AdjAAAIh0Mx405zbGwhvRouebQ==
via: 1.1 4d7fa73f804f1c93f20cfc24c4b1266e.cloudfront.net (CloudFront), 1.1 a847181d425b7fc57e81eb3c800bfdf2.cloudfront.net (CloudFront), 1.1 google
date: Tue, 29 Nov 2022 12:20:15 GMT
age: 34469
etag: "d0dff35eb78f129b5da407043037bcf9c27e55c0"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc326607e-c0fa-4e9d-b8d4-1c9173793bed.jpeg
200 OK 9.4 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc326607e-c0fa-4e9d-b8d4-1c9173793bed.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash cce27a1fe8c0222811a5ce0e7f89e1cb
28c165bac8cf68cd1b0763c311aece00672cb3a5
4530e34a47ef78c2c2b0d34a0511253a61f1927b192ab42f82361002ff10819e
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc326607e-c0fa-4e9d-b8d4-1c9173793bed.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9376
x-amzn-requestid: c52b3092-90d2-4289-b6e0-ab99c9d4710a
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cPmz3EVUoAMFWUw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6382eb4b-39f46c89238eff696e9f2dba;Sampled=0
x-amzn-remapped-date: Sun, 27 Nov 2022 04:44:59 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: ofQEhaEiX1vE25a_1xHeab9Px9zgGpk8omlX_aHmLE1oN1aZTPzWxQ==
via: 1.1 e5af640ced3aa8764b82c4bc3f7af38e.cloudfront.net (CloudFront), 1.1 ce71f64ad5dca81beca846466f2d5008.cloudfront.net (CloudFront), 1.1 google
date: Mon, 28 Nov 2022 21:58:57 GMT
age: 86147
etag: "28c165bac8cf68cd1b0763c311aece00672cb3a5"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fabddece8-6c4f-4cb5-9041-4d427b16b826.jpeg
200 OK 4.4 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fabddece8-6c4f-4cb5-9041-4d427b16b826.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash a2a5c8d4113d282600462749315f2c4f
e2b4d2e15bb7c086333c0da438873e4c139ba931
9b5d0e5dd11d4cbf1c78a71730cd63544170c91ab635bf3cf917827ac84874e6
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fabddece8-6c4f-4cb5-9041-4d427b16b826.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 4417
x-amzn-requestid: 01de83c2-51d2-4329-98f6-09a0edf46942
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cVNnGEcRIAMFaXA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63852960-34583b6c588a0e937fcfaa46;Sampled=0
x-amzn-remapped-date: Mon, 28 Nov 2022 21:34:24 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: Jb1eLyzn88lV_UTId-Fl3OnftDn8c7o5j8d16_nzHCNST_68MZ1pvA==
via: 1.1 28a7186077f9b5270d98dd053f31303e.cloudfront.net (CloudFront), 1.1 6172bb1a5d00a3b06ae3700570ebe116.cloudfront.net (CloudFront), 1.1 google
date: Tue, 29 Nov 2022 16:38:27 GMT
age: 18977
etag: "e2b4d2e15bb7c086333c0da438873e4c139ba931"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
www.cuervo.agency/wp-content/plugins/contact-form-7/includes/css/styles.css?ver=5.6.4
200 OK 972 B URL HTTP/2 www.cuervo.agency/wp-content/plugins/contact-form-7/includes/css/styles.css?ver=5.6.4
IP
ASN #51013 WebSupport s.r.o.
Hash 8bf268dfcca7cb20719b7ea14373ef4a
58bd839bbf0e8cc082f0a488b538b4ec71bebd2e
eece4a14939273c7af07bce8bab3a6cfc2c9de44c0eea82cc886abac13cb3870
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/contact-form-7/includes/css/styles.css?ver=5.6.4 HTTP/1.1
Host: www.cuervo.agency
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.cuervo.agency/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: openresty
date: Tue, 29 Nov 2022 21:54:47 GMT
content-type: text/css
content-length: 972
last-modified: Wed, 19 Oct 2022 20:04:36 GMT
etag: "aab-5eb68b7d36aa2-gzip"
accept-ranges: bytes
cache-control: max-age=31536000
expires: Wed, 29 Nov 2023 21:54:47 GMT
vary: Accept-Encoding, Accept-Encoding
content-encoding: gzip
referrer-policy: no-referrer-when-downgrade
X-Firefox-Spdy: h2
www.cuervo.agency/wp-content/plugins/essential-grid/public/assets/font/fontello/css/fontello.css?ver=3.0.11
200 OK 2.4 kB URL HTTP/2 www.cuervo.agency/wp-content/plugins/essential-grid/public/assets/font/fontello/css/fontello.css?ver=3.0.11
IP
ASN #51013 WebSupport s.r.o.
Hash ff742cf973c02adfbb9a9c3ca6c96753
193c469f0b7b6e68f6c528f92a6b9f2da3a5aed0
92986e8aec56577fbb6825ab0ead1300f9b3dfa073ddb1a9d3ef7204200b0af5
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/essential-grid/public/assets/font/fontello/css/fontello.css?ver=3.0.11 HTTP/1.1
Host: www.cuervo.agency
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.cuervo.agency/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: openresty
date: Tue, 29 Nov 2022 21:54:47 GMT
content-type: text/css
content-length: 2406
last-modified: Sun, 20 Jun 2021 00:23:18 GMT
etag: "3177-5c5279048bdcf-gzip"
accept-ranges: bytes
cache-control: max-age=31536000
expires: Wed, 29 Nov 2023 21:54:47 GMT
vary: Accept-Encoding, Accept-Encoding
content-encoding: gzip
referrer-policy: no-referrer-when-downgrade
X-Firefox-Spdy: h2
www.cuervo.agency/wp-content/plugins/jeg-elementor-kit/assets/css/elements/main.css?ver=2.4.2
200 OK 20 kB URL HTTP/2 www.cuervo.agency/wp-content/plugins/jeg-elementor-kit/assets/css/elements/main.css?ver=2.4.2
IP
ASN #51013 WebSupport s.r.o.
File type ASCII text, with very long lines (65536), with no line terminators
Hash 6ec469bbb97c9d25c3da93116e7309fc
6c92c7fa8d130951055cff9202dd3b30036a6832
ab8cb6ac0267e45c4f93c93223c977b94e328533b5097146ba0b06c45e04234a
GET /wp-content/plugins/jeg-elementor-kit/assets/css/elements/main.css?ver=2.4.2 HTTP/1.1
Host: www.cuervo.agency
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.cuervo.agency/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: openresty
date: Tue, 29 Nov 2022 21:54:47 GMT
content-type: text/css
content-length: 20399
last-modified: Thu, 28 Apr 2022 20:33:08 GMT
etag: "2d637-5ddbcd5708911-gzip"
accept-ranges: bytes
cache-control: max-age=31536000
expires: Wed, 29 Nov 2023 21:54:47 GMT
vary: Accept-Encoding, Accept-Encoding
content-encoding: gzip
referrer-policy: no-referrer-when-downgrade
X-Firefox-Spdy: h2
www.cuervo.agency/wp-content/plugins/header-footer-elementor/assets/css/header-footer-elementor.css?ver=1.6.10
200 OK 323 B URL HTTP/2 www.cuervo.agency/wp-content/plugins/header-footer-elementor/assets/css/header-footer-elementor.css?ver=1.6.10
IP
ASN #51013 WebSupport s.r.o.
Hash b24c24b7da3ffeed6ae8ade102a4d317
c4445b3977ce704b927508108e100213eea67a3c
5421ad49b70f379553eaceec744d753e74d4b065966c08aa7c7dd949553ca9a8
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/header-footer-elementor/assets/css/header-footer-elementor.css?ver=1.6.10 HTTP/1.1
Host: www.cuervo.agency
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.cuervo.agency/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: openresty
date: Tue, 29 Nov 2022 21:54:47 GMT
content-type: text/css
content-length: 323
last-modified: Thu, 28 Apr 2022 20:32:52 GMT
etag: "308-5ddbcd47cdff2-gzip"
accept-ranges: bytes
cache-control: max-age=31536000
expires: Wed, 29 Nov 2023 21:54:47 GMT
vary: Accept-Encoding, Accept-Encoding
content-encoding: gzip
referrer-policy: no-referrer-when-downgrade
X-Firefox-Spdy: h2
www.cuervo.agency/
200 OK 64 kB IP
ASN #51013 WebSupport s.r.o.
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (37220)
Hash 761ce474e4bac6386e7a5aef71eb123d
f879cc8a4d746917925a6c96aee71d38f11dc888
848ff49703c03bb0e43d6f136701f7dd752fa11f7973323b792c869d10f942de
Analyzer Verdict Alert fortinet Phishing
GET / HTTP/1.1
Host: www.cuervo.agency
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 200 OK
server: openresty
date: Tue, 29 Nov 2022 21:54:46 GMT
content-type: text/html; charset=UTF-8
link: <https://www.cuervo.agency/wp-json/>; rel="https://api.w.org/", <https://www.cuervo.agency/wp-json/wp/v2/pages/414>; rel="alternate"; type="application/json", <https://www.cuervo.agency/>; rel=shortlink
vary: Accept-Encoding, Accept-Encoding
content-encoding: gzip
referrer-policy: no-referrer-when-downgrade
X-Firefox-Spdy: h2
www.cuervo.agency/wp-content/plugins/essential-grid/public/assets/css/settings.css?ver=3.0.11
200 OK 8.7 kB URL HTTP/2 www.cuervo.agency/wp-content/plugins/essential-grid/public/assets/css/settings.css?ver=3.0.11
IP
ASN #51013 WebSupport s.r.o.
File type ASCII text, with very long lines (7136)
Hash 30438398e59f12075afb662a178e0788
629e71ca3044c9a21f274db3668c91ce52c33267
d54e399223b023ba56d1b85d9b34e5cdde90e09fd6711d61e80553636c901ee9
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/essential-grid/public/assets/css/settings.css?ver=3.0.11 HTTP/1.1
Host: www.cuervo.agency
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.cuervo.agency/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: openresty
date: Tue, 29 Nov 2022 21:54:47 GMT
content-type: text/css
content-length: 8680
last-modified: Sun, 20 Jun 2021 00:23:18 GMT
etag: "a6fb-5c5279048ecaf-gzip"
accept-ranges: bytes
cache-control: max-age=31536000
expires: Wed, 29 Nov 2023 21:54:47 GMT
vary: Accept-Encoding, Accept-Encoding
content-encoding: gzip
referrer-policy: no-referrer-when-downgrade
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash f50fd635895870df33a17fe377a6a038
dd65dfbbc810b095432cfd59f971af04a9e31ab7
ebd9b6c3f67865c297d08802839c940994424000df3bf8a3f1316b8e13666e94
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 29 Nov 2022 21:54:47 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.cuervo.agency/wp-content/plugins/elementor/assets/lib/eicons/css/elementor-icons.min.css?ver=5.16.0
200 OK 4.0 kB URL HTTP/2 www.cuervo.agency/wp-content/plugins/elementor/assets/lib/eicons/css/elementor-icons.min.css?ver=5.16.0
IP
ASN #51013 WebSupport s.r.o.
File type ASCII text, with very long lines (19233)
Hash 24dc15839234f4dbd06f677098762e1c
a285318fa3f4d9a1491f523f080cd32e1df12315
016fdb3d864bb8491d6450906f97c734548f76ca9ead4b13b92dc7112c5568c6
GET /wp-content/plugins/elementor/assets/lib/eicons/css/elementor-icons.min.css?ver=5.16.0 HTTP/1.1
Host: www.cuervo.agency
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.cuervo.agency/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: openresty
date: Tue, 29 Nov 2022 21:54:47 GMT
content-type: text/css
content-length: 3961
last-modified: Sun, 13 Nov 2022 20:01:38 GMT
etag: "4b4f-5ed5f9742e081-gzip"
accept-ranges: bytes
cache-control: max-age=31536000
expires: Wed, 29 Nov 2023 21:54:47 GMT
vary: Accept-Encoding, Accept-Encoding
content-encoding: gzip
referrer-policy: no-referrer-when-downgrade
X-Firefox-Spdy: h2
www.cuervo.agency/wp-content/plugins/elementor/assets/css/frontend-legacy.min.css?ver=3.8.1
200 OK 855 B URL HTTP/2 www.cuervo.agency/wp-content/plugins/elementor/assets/css/frontend-legacy.min.css?ver=3.8.1
IP
ASN #51013 WebSupport s.r.o.
File type ASCII text, with very long lines (13766)
Hash ac11954449ff9a9a885c814b72c849cb
a3ce8a5f152241f71d8d5155ffc127796b625487
9f2a5d72e54fe27611d8f08a269e45794e2a188439ded92dc8bcca9ab9dfc835
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/elementor/assets/css/frontend-legacy.min.css?ver=3.8.1 HTTP/1.1
Host: www.cuervo.agency
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.cuervo.agency/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: openresty
date: Tue, 29 Nov 2022 21:54:47 GMT
content-type: text/css
content-length: 855
last-modified: Sun, 13 Nov 2022 20:01:38 GMT
etag: "35ed-5ed5f973f94b9-gzip"
accept-ranges: bytes
cache-control: max-age=31536000
expires: Wed, 29 Nov 2023 21:54:47 GMT
vary: Accept-Encoding, Accept-Encoding
content-encoding: gzip
referrer-policy: no-referrer-when-downgrade
X-Firefox-Spdy: h2
www.cuervo.agency/wp-content/plugins/elementor/assets/css/frontend.min.css?ver=3.8.1
200 OK 20 kB URL HTTP/2 www.cuervo.agency/wp-content/plugins/elementor/assets/css/frontend.min.css?ver=3.8.1
IP
ASN #51013 WebSupport s.r.o.
File type ASCII text, with very long lines (65497)
Hash 64e425a459cf734b7d0db289b7649a90
9a90ea6fe0e05cd286be4809597ecc0ed7930b4c
7d5ebd725d9d7271988ec20af13f060794bd4b65d1dce5c2c7e411647ff93a19
GET /wp-content/plugins/elementor/assets/css/frontend.min.css?ver=3.8.1 HTTP/1.1
Host: www.cuervo.agency
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.cuervo.agency/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: openresty
date: Tue, 29 Nov 2022 21:54:47 GMT
content-type: text/css
content-length: 19732
last-modified: Sun, 13 Nov 2022 20:01:38 GMT
etag: "27687-5ed5f973fe2d9-gzip"
accept-ranges: bytes
cache-control: max-age=31536000
expires: Wed, 29 Nov 2023 21:54:47 GMT
vary: Accept-Encoding, Accept-Encoding
content-encoding: gzip
referrer-policy: no-referrer-when-downgrade
X-Firefox-Spdy: h2
www.cuervo.agency/wp-includes/js/wp-emoji-release.min.js?ver=6.0.3
200 OK 5.0 kB URL HTTP/2 www.cuervo.agency/wp-includes/js/wp-emoji-release.min.js?ver=6.0.3
IP
ASN #51013 WebSupport s.r.o.
File type ASCII text, with very long lines (15660)
Hash e6624e0b978e6ddba476be41aaaa82df
822e920d8233072110ed7c8a7f379e5b13209b18
dac86a9ce08e4d8cded47b4fa900a664b0c997d8910c2a1be54a423678925a41
GET /wp-includes/js/wp-emoji-release.min.js?ver=6.0.3 HTTP/1.1
Host: www.cuervo.agency
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.cuervo.agency/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: openresty
date: Tue, 29 Nov 2022 21:54:47 GMT
content-type: application/x-javascript
content-length: 5009
last-modified: Tue, 09 Aug 2022 13:02:11 GMT
etag: "48b9-5e5ce8a695356-gzip"
accept-ranges: bytes
cache-control: max-age=31536000
expires: Wed, 29 Nov 2023 21:54:47 GMT
vary: Accept-Encoding, Accept-Encoding
content-encoding: gzip
referrer-policy: no-referrer-when-downgrade
X-Firefox-Spdy: h2
www.cuervo.agency/wp-content/plugins/elementor/assets/lib/font-awesome/css/all.min.css?ver=4.9.10
200 OK 13 kB URL HTTP/2 www.cuervo.agency/wp-content/plugins/elementor/assets/lib/font-awesome/css/all.min.css?ver=4.9.10
IP
ASN #51013 WebSupport s.r.o.
File type ASCII text, with very long lines (59158)
Hash d7913fc87c4606f82b4ee77a8d47fc2f
62a54acf7535ae53425b44dadfe5fdabf3d8300a
bb05c88bb0b82e2f14f1efb94b4c3511292f74c3bb7cb0b104d300a42a49492f
GET /wp-content/plugins/elementor/assets/lib/font-awesome/css/all.min.css?ver=4.9.10 HTTP/1.1
Host: www.cuervo.agency
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.cuervo.agency/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: openresty
date: Tue, 29 Nov 2022 21:54:47 GMT
content-type: text/css
content-length: 12869
last-modified: Sun, 13 Nov 2022 20:01:38 GMT
etag: "e7d0-5ed5f97429260-gzip"
accept-ranges: bytes
cache-control: max-age=31536000
expires: Wed, 29 Nov 2023 21:54:47 GMT
vary: Accept-Encoding, Accept-Encoding
content-encoding: gzip
referrer-policy: no-referrer-when-downgrade
X-Firefox-Spdy: h2
www.cuervo.agency/wp-content/plugins/elementor/assets/lib/font-awesome/css/v4-shims.min.css?ver=3.8.1
200 OK 4.2 kB URL HTTP/2 www.cuervo.agency/wp-content/plugins/elementor/assets/lib/font-awesome/css/v4-shims.min.css?ver=3.8.1
IP
ASN #51013 WebSupport s.r.o.
File type ASCII text, with very long lines (26516)
Hash d74abcef3df71d56667a44693f75c454
be993a7b5c88a550ef0dc19c4841f240e41967f8
8c8fb98c0a68a93f2bcf224fcc1bdaa1095fc1b3f5418f2e2c5fddcfa3dee410
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/elementor/assets/lib/font-awesome/css/v4-shims.min.css?ver=3.8.1 HTTP/1.1
Host: www.cuervo.agency
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.cuervo.agency/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: openresty
date: Tue, 29 Nov 2022 21:54:47 GMT
content-type: text/css
content-length: 4229
last-modified: Sun, 13 Nov 2022 20:01:38 GMT
etag: "684e-5ed5f97429260-gzip"
accept-ranges: bytes
cache-control: max-age=31536000
expires: Wed, 29 Nov 2023 21:54:47 GMT
vary: Accept-Encoding, Accept-Encoding
content-encoding: gzip
referrer-policy: no-referrer-when-downgrade
X-Firefox-Spdy: h2
www.cuervo.agency/wp-content/plugins/header-footer-elementor/inc/widgets-css/frontend.css?ver=1.6.10
200 OK 7.8 kB URL HTTP/2 www.cuervo.agency/wp-content/plugins/header-footer-elementor/inc/widgets-css/frontend.css?ver=1.6.10
IP
ASN #51013 WebSupport s.r.o.
File type Unicode text, UTF-8 text, with very long lines (1646)
Hash 572aea78f382e525fda96f769d9800c5
35398693aaa753f89dc5935130e927c61fbfd6e6
e16dff142803bf871380a64dcd6a2bb729500b1e13b04e042a78dbb2ef7f11e4
GET /wp-content/plugins/header-footer-elementor/inc/widgets-css/frontend.css?ver=1.6.10 HTTP/1.1
Host: www.cuervo.agency
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.cuervo.agency/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: openresty
date: Tue, 29 Nov 2022 21:54:47 GMT
content-type: text/css
content-length: 7753
last-modified: Thu, 28 Apr 2022 20:32:52 GMT
etag: "127a4-5ddbcd47d6c93-gzip"
accept-ranges: bytes
cache-control: max-age=31536000
expires: Wed, 29 Nov 2023 21:54:47 GMT
vary: Accept-Encoding, Accept-Encoding
content-encoding: gzip
referrer-policy: no-referrer-when-downgrade
X-Firefox-Spdy: h2
www.cuervo.agency/wp-content/plugins/elementor-pro/assets/css/frontend.min.css?ver=3.8.2
200 OK 42 kB URL HTTP/2 www.cuervo.agency/wp-content/plugins/elementor-pro/assets/css/frontend.min.css?ver=3.8.2
IP
ASN #51013 WebSupport s.r.o.
File type ASCII text, with very long lines (65493)
Hash 76fa4ca57c96d0ef651acbdfbc7bfa8c
3a229cfedc8bcaed56f43707b5f5b264161e94f5
d35be0db383efecb064a138f6fb946f0ddbcdb42ac2718540dbceb84882aa3e8
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/elementor-pro/assets/css/frontend.min.css?ver=3.8.2 HTTP/1.1
Host: www.cuervo.agency
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.cuervo.agency/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: openresty
date: Tue, 29 Nov 2022 21:54:47 GMT
content-type: text/css
content-length: 42398
last-modified: Tue, 22 Nov 2022 08:01:41 GMT
etag: "78c90-5ee0a95155f04-gzip"
accept-ranges: bytes
cache-control: max-age=31536000
expires: Wed, 29 Nov 2023 21:54:47 GMT
vary: Accept-Encoding, Accept-Encoding
content-encoding: gzip
referrer-policy: no-referrer-when-downgrade
X-Firefox-Spdy: h2
www.cuervo.agency/wp-content/themes/hello-elementor/style.min.css?ver=2.4.1
200 OK 2.3 kB URL HTTP/2 www.cuervo.agency/wp-content/themes/hello-elementor/style.min.css?ver=2.4.1
IP
ASN #51013 WebSupport s.r.o.
File type ASCII text, with very long lines (5856)
Hash 7a43a5e7dd5ad61b6649d9114f4281b3
4502b77fc371d8dec68cad33151e9cddb7daa306
f613326b15171e16c2704e6cf95127345c95c040c7f27c72a052f2d4f7ac51e5
GET /wp-content/themes/hello-elementor/style.min.css?ver=2.4.1 HTTP/1.1
Host: www.cuervo.agency
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.cuervo.agency/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: openresty
date: Tue, 29 Nov 2022 21:54:47 GMT
content-type: text/css
content-length: 2323
last-modified: Sat, 24 Jul 2021 01:36:49 GMT
etag: "1a1f-5c7d48dcb0e83-gzip"
accept-ranges: bytes
cache-control: max-age=31536000
expires: Wed, 29 Nov 2023 21:54:47 GMT
vary: Accept-Encoding, Accept-Encoding
content-encoding: gzip
referrer-policy: no-referrer-when-downgrade
X-Firefox-Spdy: h2
www.cuervo.agency/wp-content/themes/hello-elementor/theme.min.css?ver=2.4.1
200 OK 2.5 kB URL HTTP/2 www.cuervo.agency/wp-content/themes/hello-elementor/theme.min.css?ver=2.4.1
IP
ASN #51013 WebSupport s.r.o.
File type ASCII text, with very long lines (15164), with no line terminators
Hash 0e91f12d9098c73ecf39752a1b1dc77c
c4551299b1f77e8d2a97ea4090b3baa6cead4984
07eeb206e655b8b736a2a25095f34e09a377f64f768e34e1195054601506807f
GET /wp-content/themes/hello-elementor/theme.min.css?ver=2.4.1 HTTP/1.1
Host: www.cuervo.agency
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.cuervo.agency/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: openresty
date: Tue, 29 Nov 2022 21:54:47 GMT
content-type: text/css
content-length: 2538
last-modified: Sat, 24 Jul 2021 01:36:49 GMT
etag: "3b3c-5c7d48dcb4d04-gzip"
accept-ranges: bytes
cache-control: max-age=31536000
expires: Wed, 29 Nov 2023 21:54:47 GMT
vary: Accept-Encoding, Accept-Encoding
content-encoding: gzip
referrer-policy: no-referrer-when-downgrade
X-Firefox-Spdy: h2
www.cuervo.agency/wp-content/plugins/elementor/assets/lib/font-awesome/css/fontawesome.min.css?ver=5.15.3
200 OK 13 kB URL HTTP/2 www.cuervo.agency/wp-content/plugins/elementor/assets/lib/font-awesome/css/fontawesome.min.css?ver=5.15.3
IP
ASN #51013 WebSupport s.r.o.
File type ASCII text, with very long lines (57726)
Hash 991d00cd7cb62d50a29295522d554f1f
e128a5238f141e9c4da1979716108d858340fe03
b8fcb61816168fc6a7ee01bb09fa4378398838dc6e4f49dc411872876355d113
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/elementor/assets/lib/font-awesome/css/fontawesome.min.css?ver=5.15.3 HTTP/1.1
Host: www.cuervo.agency
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.cuervo.agency/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: openresty
date: Tue, 29 Nov 2022 21:54:47 GMT
content-type: text/css
content-length: 12582
last-modified: Sun, 13 Nov 2022 20:01:38 GMT
etag: "e238-5ed5f97429260-gzip"
accept-ranges: bytes
cache-control: max-age=31536000
expires: Wed, 29 Nov 2023 21:54:47 GMT
vary: Accept-Encoding, Accept-Encoding
content-encoding: gzip
referrer-policy: no-referrer-when-downgrade
X-Firefox-Spdy: h2
www.cuervo.agency/wp-content/plugins/elementor/assets/lib/font-awesome/css/solid.min.css?ver=5.15.3
200 OK 309 B URL HTTP/2 www.cuervo.agency/wp-content/plugins/elementor/assets/lib/font-awesome/css/solid.min.css?ver=5.15.3
IP
ASN #51013 WebSupport s.r.o.
File type ASCII text, with very long lines (483)
Hash 0ea43e394ddaae5fdb710dbbc8869e58
3b0c93adc80720236096201db5cc2751e703996d
85225fffa21a94bfd954393d7471069ab227b98fd8b51cb5ab4af5488168a34e
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/elementor/assets/lib/font-awesome/css/solid.min.css?ver=5.15.3 HTTP/1.1
Host: www.cuervo.agency
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.cuervo.agency/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: openresty
date: Tue, 29 Nov 2022 21:54:47 GMT
content-type: text/css
content-length: 309
last-modified: Sun, 13 Nov 2022 20:01:38 GMT
etag: "29d-5ed5f97429260-gzip"
accept-ranges: bytes
cache-control: max-age=31536000
expires: Wed, 29 Nov 2023 21:54:47 GMT
vary: Accept-Encoding, Accept-Encoding
content-encoding: gzip
referrer-policy: no-referrer-when-downgrade
X-Firefox-Spdy: h2
www.cuervo.agency/wp-content/plugins/elementor/assets/lib/font-awesome/css/regular.min.css?ver=5.15.3
200 OK 308 B URL HTTP/2 www.cuervo.agency/wp-content/plugins/elementor/assets/lib/font-awesome/css/regular.min.css?ver=5.15.3
IP
ASN #51013 WebSupport s.r.o.
File type ASCII text, with very long lines (491)
Hash 851fd514d412b7e854365f20a4227c8a
08bf47072f70af1816450cc85a5efb3b8f9114d2
a9449e3cc7c003e5ed6b93bae7b0bba3e4f1713c52214f41d3591692a759b9d7
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/elementor/assets/lib/font-awesome/css/regular.min.css?ver=5.15.3 HTTP/1.1
Host: www.cuervo.agency
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.cuervo.agency/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: openresty
date: Tue, 29 Nov 2022 21:54:47 GMT
content-type: text/css
content-length: 308
last-modified: Sun, 13 Nov 2022 20:01:38 GMT
etag: "2a5-5ed5f97429260-gzip"
accept-ranges: bytes
cache-control: max-age=31536000
expires: Wed, 29 Nov 2023 21:54:47 GMT
vary: Accept-Encoding, Accept-Encoding
content-encoding: gzip
referrer-policy: no-referrer-when-downgrade
X-Firefox-Spdy: h2
www.cuervo.agency/wp-content/plugins/elementor/assets/lib/font-awesome/css/brands.min.css?ver=5.15.3
200 OK 308 B URL HTTP/2 www.cuervo.agency/wp-content/plugins/elementor/assets/lib/font-awesome/css/brands.min.css?ver=5.15.3
IP
ASN #51013 WebSupport s.r.o.
File type ASCII text, with very long lines (489)
Hash 0a08469d24387f830bbaaa00b3c228ae
01f5dfeb8f93a32c9a8f66fe5940758109771fcd
3c7c29e5fc1193ff7ce24f72f77b2dc129e1a9434a97ef7b625f6f715531803c
GET /wp-content/plugins/elementor/assets/lib/font-awesome/css/brands.min.css?ver=5.15.3 HTTP/1.1
Host: www.cuervo.agency
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.cuervo.agency/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: openresty
date: Tue, 29 Nov 2022 21:54:47 GMT
content-type: text/css
content-length: 308
last-modified: Sun, 13 Nov 2022 20:01:38 GMT
etag: "2a3-5ed5f97429260-gzip"
accept-ranges: bytes
cache-control: max-age=31536000
expires: Wed, 29 Nov 2023 21:54:47 GMT
vary: Accept-Encoding, Accept-Encoding
content-encoding: gzip
referrer-policy: no-referrer-when-downgrade
X-Firefox-Spdy: h2
www.cuervo.agency/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2
200 OK 4.2 kB URL HTTP/2 www.cuervo.agency/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2
IP
ASN #51013 WebSupport s.r.o.
File type ASCII text, with very long lines (11126)
Hash 5629711d7fdd5b28441bac39b851299f
4e0bf2b7383097f7c352023a1b1b1b48a50356b6
44c444309c7a6c05ff4a9bc198bed9e9596bedb5658637c85689c9a471dcdd16
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2 HTTP/1.1
Host: www.cuervo.agency
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.cuervo.agency/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: openresty
date: Tue, 29 Nov 2022 21:54:47 GMT
content-type: application/x-javascript
content-length: 4169
last-modified: Wed, 18 Nov 2020 09:06:06 GMT
etag: "2bd8-5b45debe27b80-gzip"
accept-ranges: bytes
cache-control: max-age=31536000
expires: Wed, 29 Nov 2023 21:54:47 GMT
vary: Accept-Encoding, Accept-Encoding
content-encoding: gzip
referrer-policy: no-referrer-when-downgrade
X-Firefox-Spdy: h2
www.cuervo.agency/wp-content/plugins/wp-google-analytics-events/js/main.js?ver=1.0
200 OK 3.6 kB URL HTTP/2 www.cuervo.agency/wp-content/plugins/wp-google-analytics-events/js/main.js?ver=1.0
IP
ASN #51013 WebSupport s.r.o.
Hash 6aec8f9f932eea0b5673b286106f5d4e
f439a741a3f63e37dac69ed5e65e3bc631c08a45
fe0e08cb7891b9999f07c7b9a44ce4ddcf30685681ed259226c8b5fd65269f89
GET /wp-content/plugins/wp-google-analytics-events/js/main.js?ver=1.0 HTTP/1.1
Host: www.cuervo.agency
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.cuervo.agency/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: openresty
date: Tue, 29 Nov 2022 21:54:47 GMT
content-type: application/x-javascript
content-length: 3555
last-modified: Mon, 06 Sep 2021 16:59:05 GMT
etag: "33f3-5cb5691202352-gzip"
accept-ranges: bytes
cache-control: max-age=31536000
expires: Wed, 29 Nov 2023 21:54:47 GMT
vary: Accept-Encoding, Accept-Encoding
content-encoding: gzip
referrer-policy: no-referrer-when-downgrade
X-Firefox-Spdy: h2
www.cuervo.agency/wp-content/plugins/elementor/assets/lib/font-awesome/js/v4-shims.min.js?ver=3.8.1
200 OK 4.2 kB URL HTTP/2 www.cuervo.agency/wp-content/plugins/elementor/assets/lib/font-awesome/js/v4-shims.min.js?ver=3.8.1
IP
ASN #51013 WebSupport s.r.o.
File type ASCII text, with very long lines (14869)
Hash 1fcdd9935a66511c3b8069495af248e3
b0e375ac95b547b3bb6ce74cd1bcc505ffc2281d
4a741209fc122872cb5ae018a5870d70848a616fa98eb4289ad78cec986ec282
GET /wp-content/plugins/elementor/assets/lib/font-awesome/js/v4-shims.min.js?ver=3.8.1 HTTP/1.1
Host: www.cuervo.agency
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.cuervo.agency/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: openresty
date: Tue, 29 Nov 2022 21:54:47 GMT
content-type: application/x-javascript
content-length: 4205
last-modified: Sun, 13 Nov 2022 20:01:38 GMT
etag: "3acf-5ed5f974282c0-gzip"
accept-ranges: bytes
cache-control: max-age=31536000
expires: Wed, 29 Nov 2023 21:54:47 GMT
vary: Accept-Encoding, Accept-Encoding
content-encoding: gzip
referrer-policy: no-referrer-when-downgrade
X-Firefox-Spdy: h2
www.cuervo.agency/wp-content/plugins/revslider/public/assets/js/rbtools.min.js?ver=6.5.5
200 OK 47 kB URL HTTP/2 www.cuervo.agency/wp-content/plugins/revslider/public/assets/js/rbtools.min.js?ver=6.5.5
IP
ASN #51013 WebSupport s.r.o.
File type ASCII text, with very long lines (42889), with CRLF line terminators
Hash 448b01cdf1015dac940b7ff7fe7b71cd
d896c6e966179fd30ff54584da42557dcc6d537e
e8fda3af70a7713a0abc0848f3ac4a7f9f116ce29ecff680bf65657252433d51
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/revslider/public/assets/js/rbtools.min.js?ver=6.5.5 HTTP/1.1
Host: www.cuervo.agency
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.cuervo.agency/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: openresty
date: Tue, 29 Nov 2022 21:54:47 GMT
content-type: application/x-javascript
content-length: 46982
last-modified: Tue, 03 Aug 2021 16:01:06 GMT
etag: "1e570-5c8a9cb1ac50f-gzip"
accept-ranges: bytes
cache-control: max-age=31536000
expires: Wed, 29 Nov 2023 21:54:47 GMT
vary: Accept-Encoding, Accept-Encoding
content-encoding: gzip
referrer-policy: no-referrer-when-downgrade
X-Firefox-Spdy: h2
www.cuervo.agency/wp-includes/js/jquery/jquery.min.js?ver=3.6.0
200 OK 31 kB URL HTTP/2 www.cuervo.agency/wp-includes/js/jquery/jquery.min.js?ver=3.6.0
IP
ASN #51013 WebSupport s.r.o.
File type ASCII text, with very long lines (65447)
Hash 9640915738503451aa21181699feab5b
c053eaf36ef0da96619706b3abda326305063bd6
f8834e669ad1f4039442c26aaa373ec39c35a233b9786d374fc3f670f16b0adc
GET /wp-includes/js/jquery/jquery.min.js?ver=3.6.0 HTTP/1.1
Host: www.cuervo.agency
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.cuervo.agency/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: openresty
date: Tue, 29 Nov 2022 21:54:47 GMT
content-type: application/x-javascript
content-length: 30908
last-modified: Tue, 09 Aug 2022 13:02:11 GMT
etag: "15db1-5e5ce8a6bb4bc-gzip"
accept-ranges: bytes
cache-control: max-age=31536000
expires: Wed, 29 Nov 2023 21:54:47 GMT
vary: Accept-Encoding, Accept-Encoding
content-encoding: gzip
referrer-policy: no-referrer-when-downgrade
X-Firefox-Spdy: h2
www.googletagmanager.com/gtag/js?id=UA-206699242-1
200 OK 45 kB URL HTTP/2 www.googletagmanager.com/gtag/js?id=UA-206699242-1
IP
File type ASCII text, with very long lines (1921)
Hash 83ea7950d89f43d9ef776e51a8ef89b9
57df855ea5c654ca7983cac7d58ac3aef7c01c9c
3a4b6eed066605bf39f69e5b5703e318054bd4f47080248a3ed1b09642b80ee8
GET /gtag/js?id=UA-206699242-1 HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.cuervo.agency/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Tue, 29 Nov 2022 21:54:47 GMT
expires: Tue, 29 Nov 2022 21:54:47 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 44665
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.cuervo.agency/wp-content/plugins/elementor/assets/lib/e-gallery/css/e-gallery.min.css?ver=1.2.0
200 OK 844 B URL HTTP/2 www.cuervo.agency/wp-content/plugins/elementor/assets/lib/e-gallery/css/e-gallery.min.css?ver=1.2.0
IP
ASN #51013 WebSupport s.r.o.
File type ASCII text, with very long lines (3264)
Hash 822a89612b23b9a53fd40a8393e5d394
a9c863b977bf8b18e10f4f09c180bfb4cd5be099
f2de00c5ebf8246b2fdbe9654b58f43e173402a2898f6822e4d00d5994067997
GET /wp-content/plugins/elementor/assets/lib/e-gallery/css/e-gallery.min.css?ver=1.2.0 HTTP/1.1
Host: www.cuervo.agency
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.cuervo.agency/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: openresty
date: Tue, 29 Nov 2022 21:54:47 GMT
content-type: text/css
content-length: 844
last-modified: Sun, 13 Nov 2022 20:01:38 GMT
etag: "ce7-5ed5f9741985d-gzip"
accept-ranges: bytes
cache-control: max-age=31536000
expires: Wed, 29 Nov 2023 21:54:47 GMT
vary: Accept-Encoding, Accept-Encoding
content-encoding: gzip
referrer-policy: no-referrer-when-downgrade
X-Firefox-Spdy: h2
www.googletagmanager.com/gtag/js?id=G-L3GEJK3VEL
200 OK 76 kB URL HTTP/2 www.googletagmanager.com/gtag/js?id=G-L3GEJK3VEL
IP
File type ASCII text, with very long lines (19102)
Hash 5e6b1bcc80353e7ba5301e4246d4ec42
cac9f69bc115399cb88d2f6b18fa5ee20818d55d
c7b1f5f07255cf38ce4557823e7b8e076533f1dbf20990ef95e6c047aa5f45aa
GET /gtag/js?id=G-L3GEJK3VEL HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.cuervo.agency/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Tue, 29 Nov 2022 21:54:47 GMT
expires: Tue, 29 Nov 2022 21:54:47 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 75949
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash 07b8296613be09905e34b09dce4a203f
c97c67e8c4b1247423d089c028c31e05734f124e
c8c7b7cd00d5818bbe4a4ddb1b734a1b766dc6474cce300171bd5a0947adc6b2
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 29 Nov 2022 21:54:47 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.cuervo.agency/wp-content/plugins/elementor/assets/lib/animations/animations.min.css?ver=3.8.1
200 OK 2.6 kB URL HTTP/2 www.cuervo.agency/wp-content/plugins/elementor/assets/lib/animations/animations.min.css?ver=3.8.1
IP
ASN #51013 WebSupport s.r.o.
File type ASCII text, with very long lines (10019)
Hash 0ea81c35141c6a4692506e4fe8d36edb
392c5f96995e66d74c27ed5a42f93169c2f32d18
b7488fd21ad73e483cdcaf42097ea7787ffe0616477e29a537f53f6064e321ab
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/elementor/assets/lib/animations/animations.min.css?ver=3.8.1 HTTP/1.1
Host: www.cuervo.agency
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.cuervo.agency/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: openresty
date: Tue, 29 Nov 2022 21:54:47 GMT
content-type: text/css
content-length: 2592
last-modified: Sun, 13 Nov 2022 20:01:38 GMT
etag: "4824-5ed5f9741a7fe-gzip"
accept-ranges: bytes
cache-control: max-age=31536000
expires: Wed, 29 Nov 2023 21:54:47 GMT
vary: Accept-Encoding, Accept-Encoding
content-encoding: gzip
referrer-policy: no-referrer-when-downgrade
X-Firefox-Spdy: h2
www.cuervo.agency/wp-content/plugins/revslider/public/assets/css/rs6.css?ver=6.5.5
200 OK 12 kB URL HTTP/2 www.cuervo.agency/wp-content/plugins/revslider/public/assets/css/rs6.css?ver=6.5.5
IP
ASN #51013 WebSupport s.r.o.
File type Unicode text, UTF-8 text, with very long lines (12602), with CRLF line terminators
Hash 5be33a6c755bddd679a36902b7067855
1fda5212642da37c366182564f4af10e14b2278c
9397e30b415893511f30b13fc406e316ee9dc61c12abf030ba7999e41e16479a
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/revslider/public/assets/css/rs6.css?ver=6.5.5 HTTP/1.1
Host: www.cuervo.agency
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.cuervo.agency/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: openresty
date: Tue, 29 Nov 2022 21:54:47 GMT
content-type: text/css
content-length: 12361
last-modified: Tue, 03 Aug 2021 16:01:06 GMT
etag: "e6df-5c8a9cb1ad4af-gzip"
accept-ranges: bytes
cache-control: max-age=31536000
expires: Wed, 29 Nov 2023 21:54:47 GMT
vary: Accept-Encoding, Accept-Encoding
content-encoding: gzip
referrer-policy: no-referrer-when-downgrade
X-Firefox-Spdy: h2
www.cuervo.agency/wp-content/plugins/contact-form-7/includes/swv/js/index.js?ver=5.6.4
200 OK 2.9 kB URL HTTP/2 www.cuervo.agency/wp-content/plugins/contact-form-7/includes/swv/js/index.js?ver=5.6.4
IP
ASN #51013 WebSupport s.r.o.
File type ASCII text, with very long lines (9937), with no line terminators
Hash 8189a6a3f3f0efc64f857fe869d3729b
bc84b1c1e96a26fd6595da0cb024aad989c1f331
e2683386c2d5a8b3280fa9920d22fedb31a33a8bdca8ec494d3fe4df9fc6b337
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/contact-form-7/includes/swv/js/index.js?ver=5.6.4 HTTP/1.1
Host: www.cuervo.agency
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.cuervo.agency/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: openresty
date: Tue, 29 Nov 2022 21:54:47 GMT
content-type: application/x-javascript
content-length: 2937
last-modified: Wed, 19 Oct 2022 20:04:36 GMT
etag: "26d1-5eb68b7d389e2-gzip"
accept-ranges: bytes
cache-control: max-age=31536000
expires: Wed, 29 Nov 2023 21:54:47 GMT
vary: Accept-Encoding, Accept-Encoding
content-encoding: gzip
referrer-policy: no-referrer-when-downgrade
X-Firefox-Spdy: h2
www.cuervo.agency/wp-content/plugins/contact-form-7/includes/js/index.js?ver=5.6.4
200 OK 4.0 kB URL HTTP/2 www.cuervo.agency/wp-content/plugins/contact-form-7/includes/js/index.js?ver=5.6.4
IP
ASN #51013 WebSupport s.r.o.
File type HTML document, ASCII text, with very long lines (12310), with no line terminators
Hash 832eeb1fd498e5839b89bfb5f05a2f0d
cf2d8668aecc5033346ac2906bb8bf7e143cfa4a
35b2b27ba0ba63c065e4c67d15b7cb1878b5868d7f475cc7f6f1724d3988793a
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/contact-form-7/includes/js/index.js?ver=5.6.4 HTTP/1.1
Host: www.cuervo.agency
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.cuervo.agency/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: openresty
date: Tue, 29 Nov 2022 21:54:47 GMT
content-type: application/x-javascript
content-length: 3957
last-modified: Wed, 19 Oct 2022 20:04:36 GMT
etag: "3016-5eb68b7d36aa2-gzip"
accept-ranges: bytes
cache-control: max-age=31536000
expires: Wed, 29 Nov 2023 21:54:47 GMT
vary: Accept-Encoding, Accept-Encoding
content-encoding: gzip
referrer-policy: no-referrer-when-downgrade
X-Firefox-Spdy: h2
www.cuervo.agency/wp-content/themes/hello-elementor/assets/js/hello-frontend.min.js?ver=1.0.0
200 OK 1.0 kB URL HTTP/2 www.cuervo.agency/wp-content/themes/hello-elementor/assets/js/hello-frontend.min.js?ver=1.0.0
IP
ASN #51013 WebSupport s.r.o.
File type ASCII text, with very long lines (3113), with no line terminators
Hash a491b2ebcf30fc12bf807b3f1f569c7d
8d37ed2443f2db4271c05858a70c451cf5af543e
cfd1e69a7a80c9c84342eaf8ae3b6d6d199d217ae5110b3231cec9098a9cba21
GET /wp-content/themes/hello-elementor/assets/js/hello-frontend.min.js?ver=1.0.0 HTTP/1.1
Host: www.cuervo.agency
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.cuervo.agency/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: openresty
date: Tue, 29 Nov 2022 21:54:47 GMT
content-type: application/x-javascript
content-length: 1010
last-modified: Sat, 24 Jul 2021 01:36:49 GMT
etag: "c29-5c7d48dcb3d64-gzip"
accept-ranges: bytes
cache-control: max-age=31536000
expires: Wed, 29 Nov 2023 21:54:47 GMT
vary: Accept-Encoding, Accept-Encoding
content-encoding: gzip
referrer-policy: no-referrer-when-downgrade
X-Firefox-Spdy: h2
www.cuervo.agency/wp-content/plugins/creame-whatsapp-me/public/js/joinchat-lite.min.js?ver=4.5.14
200 OK 1.2 kB URL HTTP/2 www.cuervo.agency/wp-content/plugins/creame-whatsapp-me/public/js/joinchat-lite.min.js?ver=4.5.14
IP
ASN #51013 WebSupport s.r.o.
File type ASCII text, with very long lines (2805), with no line terminators
Hash 3601d44f46e37447a4fc4ba44632303d
79799ef5fa9ec1c5caae68c1707ee43e9be30a33
174054f41cd0f24dffa8f946aab79778ac34c13bcc55eae47335136e606ae2f6
GET /wp-content/plugins/creame-whatsapp-me/public/js/joinchat-lite.min.js?ver=4.5.14 HTTP/1.1
Host: www.cuervo.agency
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.cuervo.agency/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: openresty
date: Tue, 29 Nov 2022 21:54:47 GMT
content-type: application/x-javascript
content-length: 1235
last-modified: Mon, 28 Nov 2022 19:59:37 GMT
etag: "af5-5ee8d4fab9933-gzip"
accept-ranges: bytes
cache-control: max-age=31536000
expires: Wed, 29 Nov 2023 21:54:47 GMT
vary: Accept-Encoding, Accept-Encoding
content-encoding: gzip
referrer-policy: no-referrer-when-downgrade
X-Firefox-Spdy: h2
www.cuervo.agency/wp-content/plugins/wp-smushit/app/assets/js/smush-lazy-load.min.js?ver=3.12.4
200 OK 3.7 kB URL HTTP/2 www.cuervo.agency/wp-content/plugins/wp-smushit/app/assets/js/smush-lazy-load.min.js?ver=3.12.4
IP
ASN #51013 WebSupport s.r.o.
File type ASCII text, with very long lines (7874)
Hash 15e8ba18d359fb8b1babaa4f04a6cc05
bf7a9271caf1c33b2d16f364385ff1d7d0159c26
1f8559a1567006487557daf07873fc8ae63d8f663f91c0ee170bd698b976fd65
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/wp-smushit/app/assets/js/smush-lazy-load.min.js?ver=3.12.4 HTTP/1.1
Host: www.cuervo.agency
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.cuervo.agency/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: openresty
date: Tue, 29 Nov 2022 21:54:47 GMT
content-type: application/x-javascript
content-length: 3687
last-modified: Thu, 17 Nov 2022 20:09:32 GMT
etag: "1ef2-5edb02ae08aba-gzip"
accept-ranges: bytes
cache-control: max-age=31536000
expires: Wed, 29 Nov 2023 21:54:47 GMT
vary: Accept-Encoding, Accept-Encoding
content-encoding: gzip
referrer-policy: no-referrer-when-downgrade
X-Firefox-Spdy: h2
www.cuervo.agency/wp-content/plugins/elementor/assets/js/webpack.runtime.min.js?ver=3.8.1
200 OK 2.2 kB URL HTTP/2 www.cuervo.agency/wp-content/plugins/elementor/assets/js/webpack.runtime.min.js?ver=3.8.1
IP
ASN #51013 WebSupport s.r.o.
File type ASCII text, with very long lines (4918)
Hash 5623a2e2bcaeb031c1a782030f1b14f9
c46b7389cb2839e47558c2d417d89169048b8031
cbe16e1c67c55ba8e9fc2363728b933f3ef2f1af411a1febbbe565e6363bfd5d
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/elementor/assets/js/webpack.runtime.min.js?ver=3.8.1 HTTP/1.1
Host: www.cuervo.agency
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.cuervo.agency/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: openresty
date: Tue, 29 Nov 2022 21:54:47 GMT
content-type: application/x-javascript
content-length: 2194
last-modified: Sun, 13 Nov 2022 20:01:38 GMT
etag: "135d-5ed5f9741697d-gzip"
accept-ranges: bytes
cache-control: max-age=31536000
expires: Wed, 29 Nov 2023 21:54:47 GMT
vary: Accept-Encoding, Accept-Encoding
content-encoding: gzip
referrer-policy: no-referrer-when-downgrade
X-Firefox-Spdy: h2
www.cuervo.agency/wp-includes/js/jquery/ui/core.min.js?ver=1.13.1
200 OK 6.9 kB URL HTTP/2 www.cuervo.agency/wp-includes/js/jquery/ui/core.min.js?ver=1.13.1
IP
ASN #51013 WebSupport s.r.o.
File type Unicode text, UTF-8 text, with very long lines (8189)
Hash 7e2b78a6e8a9b90385330755ee1cf3e5
684c325f39d45e42ae44a9e42f5e9fe4fb0b909c
43f124dabb4bc663cc1cc8d3161c1e6365cf8445d873ed5d69bbfdb507cf24a9
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/jquery/ui/core.min.js?ver=1.13.1 HTTP/1.1
Host: www.cuervo.agency
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.cuervo.agency/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: openresty
date: Tue, 29 Nov 2022 21:54:47 GMT
content-type: application/x-javascript
content-length: 6914
last-modified: Tue, 09 Aug 2022 13:02:11 GMT
etag: "50eb-5e5ce8a6b85db-gzip"
accept-ranges: bytes
cache-control: max-age=31536000
expires: Wed, 29 Nov 2023 21:54:47 GMT
vary: Accept-Encoding, Accept-Encoding
content-encoding: gzip
referrer-policy: no-referrer-when-downgrade
X-Firefox-Spdy: h2
www.cuervo.agency/wp-content/plugins/elementor/assets/js/frontend-modules.min.js?ver=3.8.1
200 OK 11 kB URL HTTP/2 www.cuervo.agency/wp-content/plugins/elementor/assets/js/frontend-modules.min.js?ver=3.8.1
IP
ASN #51013 WebSupport s.r.o.
File type Unicode text, UTF-8 text, with very long lines (32907)
Hash f2cf4b8cf6fd44b62dc73e5e480fc684
53cecab8767410c3f2acdeef147e62a5733db1d2
5c31c8633b4099e2e0f8aec7f4c1f6fa84539a2043545296200bc8d47778a4db
GET /wp-content/plugins/elementor/assets/js/frontend-modules.min.js?ver=3.8.1 HTTP/1.1
Host: www.cuervo.agency
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.cuervo.agency/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: openresty
date: Tue, 29 Nov 2022 21:54:47 GMT
content-type: application/x-javascript
content-length: 10752
last-modified: Sun, 13 Nov 2022 20:01:38 GMT
etag: "80b3-5ed5f974159dd-gzip"
accept-ranges: bytes
cache-control: max-age=31536000
expires: Wed, 29 Nov 2023 21:54:47 GMT
vary: Accept-Encoding, Accept-Encoding
content-encoding: gzip
referrer-policy: no-referrer-when-downgrade
X-Firefox-Spdy: h2
www.cuervo.agency/wp-content/plugins/elementor/assets/lib/waypoints/waypoints.min.js?ver=4.0.2
200 OK 3.0 kB URL HTTP/2 www.cuervo.agency/wp-content/plugins/elementor/assets/lib/waypoints/waypoints.min.js?ver=4.0.2
IP
ASN #51013 WebSupport s.r.o.
File type ASCII text, with very long lines (12198), with no line terminators
Hash cfea3c51880820f2962a7773fbc864f9
45aa7ddc9b0c4201097d0df36791ab346470b734
12296ac9ef200103f8eea198a2bcd92692119dacece39538499758a0349035fb
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/elementor/assets/lib/waypoints/waypoints.min.js?ver=4.0.2 HTTP/1.1
Host: www.cuervo.agency
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.cuervo.agency/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: openresty
date: Tue, 29 Nov 2022 21:54:47 GMT
content-type: application/x-javascript
content-length: 2993
last-modified: Sun, 13 Nov 2022 20:01:38 GMT
etag: "2fa6-5ed5f9741b79e-gzip"
accept-ranges: bytes
cache-control: max-age=31536000
expires: Wed, 29 Nov 2023 21:54:47 GMT
vary: Accept-Encoding, Accept-Encoding
content-encoding: gzip
referrer-policy: no-referrer-when-downgrade
X-Firefox-Spdy: h2
www.cuervo.agency/wp-content/plugins/elementor/assets/lib/share-link/share-link.min.js?ver=3.8.1
200 OK 1.1 kB URL HTTP/2 www.cuervo.agency/wp-content/plugins/elementor/assets/lib/share-link/share-link.min.js?ver=3.8.1
IP
ASN #51013 WebSupport s.r.o.
File type ASCII text, with very long lines (2620), with no line terminators
Hash 366a9c35bbef9fea7021f6b1b56cf8d0
18feab78c61c6e8261db364d6681a9633041e837
b1108a264198109bc4e692e30e2dc7c148625fa9a3dce15477fc7618669c7a6f
GET /wp-content/plugins/elementor/assets/lib/share-link/share-link.min.js?ver=3.8.1 HTTP/1.1
Host: www.cuervo.agency
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.cuervo.agency/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: openresty
date: Tue, 29 Nov 2022 21:54:47 GMT
content-type: application/x-javascript
content-length: 1139
last-modified: Sun, 13 Nov 2022 20:01:38 GMT
etag: "a3c-5ed5f9742e081-gzip"
accept-ranges: bytes
cache-control: max-age=31536000
expires: Wed, 29 Nov 2023 21:54:47 GMT
vary: Accept-Encoding, Accept-Encoding
content-encoding: gzip
referrer-policy: no-referrer-when-downgrade
X-Firefox-Spdy: h2
www.cuervo.agency/wp-content/plugins/elementor/assets/lib/dialog/dialog.min.js?ver=4.9.0
200 OK 3.4 kB URL HTTP/2 www.cuervo.agency/wp-content/plugins/elementor/assets/lib/dialog/dialog.min.js?ver=4.9.0
IP
ASN #51013 WebSupport s.r.o.
File type ASCII text, with very long lines (10544)
Hash 88f71137b2a89a53df46cdb4deeb4e3d
426e12f0e8712db20afd2c54e77e1384074f3181
591a8b7a859de8af878c56e1ec72384596285f768387e9958f0a0afe53d89428
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/elementor/assets/lib/dialog/dialog.min.js?ver=4.9.0 HTTP/1.1
Host: www.cuervo.agency
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.cuervo.agency/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: openresty
date: Tue, 29 Nov 2022 21:54:47 GMT
content-type: application/x-javascript
content-length: 3446
last-modified: Sun, 13 Nov 2022 20:01:38 GMT
etag: "29ba-5ed5f9742349f-gzip"
accept-ranges: bytes
cache-control: max-age=31536000
expires: Wed, 29 Nov 2023 21:54:47 GMT
vary: Accept-Encoding, Accept-Encoding
content-encoding: gzip
referrer-policy: no-referrer-when-downgrade
X-Firefox-Spdy: h2
www.cuervo.agency/wp-content/plugins/elementor/assets/js/frontend.min.js?ver=3.8.1
200 OK 12 kB URL HTTP/2 www.cuervo.agency/wp-content/plugins/elementor/assets/js/frontend.min.js?ver=3.8.1
IP
ASN #51013 WebSupport s.r.o.
File type ASCII text, with very long lines (40474)
Hash cdc93088cc6a33163d5501beeb7e2f34
7bff6d832259f16631f6e3a86c2aded975ffe51f
d1546274f50a7f5170799dfc32fa05297fbeb7d63205fd3f38679de0b77c03da
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/elementor/assets/js/frontend.min.js?ver=3.8.1 HTTP/1.1
Host: www.cuervo.agency
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.cuervo.agency/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: openresty
date: Tue, 29 Nov 2022 21:54:47 GMT
content-type: application/x-javascript
content-length: 12045
last-modified: Sun, 13 Nov 2022 20:01:38 GMT
etag: "9e41-5ed5f97411b5c-gzip"
accept-ranges: bytes
cache-control: max-age=31536000
expires: Wed, 29 Nov 2023 21:54:47 GMT
vary: Accept-Encoding, Accept-Encoding
content-encoding: gzip
referrer-policy: no-referrer-when-downgrade
X-Firefox-Spdy: h2
www.cuervo.agency/wp-content/plugins/elementor/assets/lib/swiper/swiper.min.js?ver=5.3.6
200 OK 36 kB URL HTTP/2 www.cuervo.agency/wp-content/plugins/elementor/assets/lib/swiper/swiper.min.js?ver=5.3.6
IP
ASN #51013 WebSupport s.r.o.
File type ASCII text, with very long lines (65280)
Hash f2f239cb6e82311cd197aa5888632811
e2376a981fa3bf8e7e36e86b979f3a3ea6443d29
c4ceac2088d1b38f5263c50bdfb2e54ed643186248b3a81c5850214b55336e4d
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/elementor/assets/lib/swiper/swiper.min.js?ver=5.3.6 HTTP/1.1
Host: www.cuervo.agency
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.cuervo.agency/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: openresty
date: Tue, 29 Nov 2022 21:54:47 GMT
content-type: application/x-javascript
content-length: 35491
last-modified: Sun, 13 Nov 2022 20:01:38 GMT
etag: "21f91-5ed5f9741b79e-gzip"
accept-ranges: bytes
cache-control: max-age=31536000
expires: Wed, 29 Nov 2023 21:54:47 GMT
vary: Accept-Encoding, Accept-Encoding
content-encoding: gzip
referrer-policy: no-referrer-when-downgrade
X-Firefox-Spdy: h2
www.cuervo.agency/wp-content/plugins/jeg-elementor-kit/assets/js/elements/sticky-element.js?ver=2.4.2
200 OK 1.1 kB URL HTTP/2 www.cuervo.agency/wp-content/plugins/jeg-elementor-kit/assets/js/elements/sticky-element.js?ver=2.4.2
IP
ASN #51013 WebSupport s.r.o.
File type ASCII text, with very long lines (2636), with no line terminators
Hash 68424d30e632e59d3f00fd28abce7173
d1250aec158da05ef90c0549f765acc76e7e96da
5b6fc72758f2b6613d8bc0221d880ecd8015b4055fa733cc662d79f0caffb00b
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/jeg-elementor-kit/assets/js/elements/sticky-element.js?ver=2.4.2 HTTP/1.1
Host: www.cuervo.agency
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.cuervo.agency/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: openresty
date: Tue, 29 Nov 2022 21:54:47 GMT
content-type: application/x-javascript
content-length: 1100
last-modified: Thu, 28 Apr 2022 20:33:08 GMT
etag: "a4c-5ddbcd5703af0-gzip"
accept-ranges: bytes
cache-control: max-age=31536000
expires: Wed, 29 Nov 2023 21:54:47 GMT
vary: Accept-Encoding, Accept-Encoding
content-encoding: gzip
referrer-policy: no-referrer-when-downgrade
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash f50fd635895870df33a17fe377a6a038
dd65dfbbc810b095432cfd59f971af04a9e31ab7
ebd9b6c3f67865c297d08802839c940994424000df3bf8a3f1316b8e13666e94
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 29 Nov 2022 21:54:47 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.cuervo.agency/wp-includes/js/imagesloaded.min.js?ver=4.1.4
200 OK 1.8 kB URL HTTP/2 www.cuervo.agency/wp-includes/js/imagesloaded.min.js?ver=4.1.4
IP
ASN #51013 WebSupport s.r.o.
File type ASCII text, with very long lines (5477)
Hash 951ae46ca55ec7b0e401e2074bdf8b54
64bbbdc28a351b26cab9c230e134ca8eb4d4f83e
fd5d4c623e9d68551114b2a1303584b6792e592e864d4416145904fe8b9edd91
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/imagesloaded.min.js?ver=4.1.4 HTTP/1.1
Host: www.cuervo.agency
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.cuervo.agency/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: openresty
date: Tue, 29 Nov 2022 21:54:47 GMT
content-type: application/x-javascript
content-length: 1834
last-modified: Sat, 13 Jun 2020 18:53:27 GMT
etag: "15fd-5a7fbb57c37c0-gzip"
accept-ranges: bytes
cache-control: max-age=31536000
expires: Wed, 29 Nov 2023 21:54:47 GMT
vary: Accept-Encoding, Accept-Encoding
content-encoding: gzip
referrer-policy: no-referrer-when-downgrade
X-Firefox-Spdy: h2
www.cuervo.agency/wp-content/plugins/elementor/assets/lib/e-gallery/js/e-gallery.min.js?ver=1.2.0
200 OK 4.6 kB URL HTTP/2 www.cuervo.agency/wp-content/plugins/elementor/assets/lib/e-gallery/js/e-gallery.min.js?ver=1.2.0
IP
ASN #51013 WebSupport s.r.o.
File type ASCII text, with very long lines (15310)
Hash cb97a1bb1fb2f5c1ed82c6d224b7571f
5c1d84e20bec1f2e284df081fdc3441c68b7e5e2
ed7dedfbd4d5c99a553fd5d68931bbfa52fca1bfac227d3f8d6e94d16473f5e7
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/elementor/assets/lib/e-gallery/js/e-gallery.min.js?ver=1.2.0 HTTP/1.1
Host: www.cuervo.agency
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.cuervo.agency/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: openresty
date: Tue, 29 Nov 2022 21:54:47 GMT
content-type: application/x-javascript
content-length: 4609
last-modified: Sun, 13 Nov 2022 20:01:38 GMT
etag: "3bf3-5ed5f9741a7fe-gzip"
accept-ranges: bytes
cache-control: max-age=31536000
expires: Wed, 29 Nov 2023 21:54:47 GMT
vary: Accept-Encoding, Accept-Encoding
content-encoding: gzip
referrer-policy: no-referrer-when-downgrade
X-Firefox-Spdy: h2
www.cuervo.agency/wp-content/plugins/elementor-pro/assets/lib/smartmenus/jquery.smartmenus.min.js?ver=1.0.1
200 OK 7.2 kB URL HTTP/2 www.cuervo.agency/wp-content/plugins/elementor-pro/assets/lib/smartmenus/jquery.smartmenus.min.js?ver=1.0.1
IP
ASN #51013 WebSupport s.r.o.
File type ASCII text, with very long lines (25115)
Hash de752486ae6f3549ee513c4f7bd89b1c
7e415888c930d6952efce6ae601c37427ac2345e
d74a2945742950cd22705aa87f266a7eccc3a7949861da7e04cab475765206d1
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/elementor-pro/assets/lib/smartmenus/jquery.smartmenus.min.js?ver=1.0.1 HTTP/1.1
Host: www.cuervo.agency
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.cuervo.agency/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: openresty
date: Tue, 29 Nov 2022 21:54:47 GMT
content-type: application/x-javascript
content-length: 7157
last-modified: Tue, 22 Nov 2022 08:01:41 GMT
etag: "6272-5ee0a95158de4-gzip"
accept-ranges: bytes
cache-control: max-age=31536000
expires: Wed, 29 Nov 2023 21:54:47 GMT
vary: Accept-Encoding, Accept-Encoding
content-encoding: gzip
referrer-policy: no-referrer-when-downgrade
X-Firefox-Spdy: h2
www.cuervo.agency/wp-includes/js/dist/vendor/regenerator-runtime.min.js?ver=0.13.9
200 OK 2.5 kB URL HTTP/2 www.cuervo.agency/wp-includes/js/dist/vendor/regenerator-runtime.min.js?ver=0.13.9
IP
ASN #51013 WebSupport s.r.o.
File type ASCII text, with very long lines (6475), with no line terminators
Hash 27cbbd0a9d7c5ad9402118c4afc36035
7659d08a005f5ecfa6c779e3cda45c30007fd059
ebc771d0af626966e38535357861fab0090e0bd7ff346cbe3c7ffdde1683809f
GET /wp-includes/js/dist/vendor/regenerator-runtime.min.js?ver=0.13.9 HTTP/1.1
Host: www.cuervo.agency
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.cuervo.agency/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: openresty
date: Tue, 29 Nov 2022 21:54:47 GMT
content-type: application/x-javascript
content-length: 2457
last-modified: Tue, 09 Aug 2022 13:02:11 GMT
etag: "194b-5e5ce8a6a0ed8-gzip"
accept-ranges: bytes
cache-control: max-age=31536000
expires: Wed, 29 Nov 2023 21:54:47 GMT
vary: Accept-Encoding, Accept-Encoding
content-encoding: gzip
referrer-policy: no-referrer-when-downgrade
X-Firefox-Spdy: h2
www.cuervo.agency/wp-includes/js/dist/hooks.min.js?ver=c6d64f2cb8f5c6bb49caca37f8828ce3
200 OK 1.7 kB URL HTTP/2 www.cuervo.agency/wp-includes/js/dist/hooks.min.js?ver=c6d64f2cb8f5c6bb49caca37f8828ce3
IP
ASN #51013 WebSupport s.r.o.
File type ASCII text, with very long lines (4875)
Hash 320b86bb1a9ce650a5e3553b2bb1c430
c56e8668b398641ed5cdcfbd8a8eba7d631cdb9c
c9ebbb8d122c6be3880d18172abfe308bb07db900689484fa765a73b8b20b3ec
GET /wp-includes/js/dist/hooks.min.js?ver=c6d64f2cb8f5c6bb49caca37f8828ce3 HTTP/1.1
Host: www.cuervo.agency
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.cuervo.agency/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: openresty
date: Tue, 29 Nov 2022 21:54:47 GMT
content-type: application/x-javascript
content-length: 1661
last-modified: Tue, 09 Aug 2022 13:02:11 GMT
etag: "132e-5e5ce8a6a1e78-gzip"
accept-ranges: bytes
cache-control: max-age=31536000
expires: Wed, 29 Nov 2023 21:54:47 GMT
vary: Accept-Encoding, Accept-Encoding
content-encoding: gzip
referrer-policy: no-referrer-when-downgrade
X-Firefox-Spdy: h2
www.cuervo.agency/wp-includes/js/dist/i18n.min.js?ver=ebee46757c6a411e38fd079a7ac71d94
200 OK 3.9 kB URL HTTP/2 www.cuervo.agency/wp-includes/js/dist/i18n.min.js?ver=ebee46757c6a411e38fd079a7ac71d94
IP
ASN #51013 WebSupport s.r.o.
Hash ca0cf10a1d933e4262c732da8f9008c1
d6fdc041e650cf096841671884db8854490dba72
fbd145cb64d3185e42b8a3f6fff22b3e4cc3550934b63a4f874c21c44f920702
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/dist/i18n.min.js?ver=ebee46757c6a411e38fd079a7ac71d94 HTTP/1.1
Host: www.cuervo.agency
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.cuervo.agency/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: openresty
date: Tue, 29 Nov 2022 21:54:47 GMT
content-type: application/x-javascript
content-length: 3865
last-modified: Tue, 09 Aug 2022 13:02:11 GMT
etag: "27ee-5e5ce8a6a5cf9-gzip"
accept-ranges: bytes
cache-control: max-age=31536000
expires: Wed, 29 Nov 2023 21:54:47 GMT
vary: Accept-Encoding, Accept-Encoding
content-encoding: gzip
referrer-policy: no-referrer-when-downgrade
X-Firefox-Spdy: h2
www.cuervo.agency/wp-includes/js/dist/vendor/wp-polyfill.min.js?ver=3.15.0
200 OK 7.1 kB URL HTTP/2 www.cuervo.agency/wp-includes/js/dist/vendor/wp-polyfill.min.js?ver=3.15.0
IP
ASN #51013 WebSupport s.r.o.
File type Unicode text, UTF-8 text, with very long lines (19138), with no line terminators
Hash 2f4fcc5a628b379672d76b7e91cbdf07
9d72f2c9cbc1e9b036360acfce8c8ccc8b832b8c
a360f715a418026d2e1acd81c02c83233d0c0b60fdf4ce0b4d33562925d6a0b5
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/dist/vendor/wp-polyfill.min.js?ver=3.15.0 HTTP/1.1
Host: www.cuervo.agency
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.cuervo.agency/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: openresty
date: Tue, 29 Nov 2022 21:54:47 GMT
content-type: application/x-javascript
content-length: 7095
last-modified: Tue, 09 Aug 2022 13:02:11 GMT
etag: "4ac6-5e5ce8a6a1e78-gzip"
accept-ranges: bytes
cache-control: max-age=31536000
expires: Wed, 29 Nov 2023 21:54:47 GMT
vary: Accept-Encoding, Accept-Encoding
content-encoding: gzip
referrer-policy: no-referrer-when-downgrade
X-Firefox-Spdy: h2
www.cuervo.agency/wp-content/plugins/elementor-pro/assets/lib/sticky/jquery.sticky.min.js?ver=3.8.2
200 OK 1.5 kB URL HTTP/2 www.cuervo.agency/wp-content/plugins/elementor-pro/assets/lib/sticky/jquery.sticky.min.js?ver=3.8.2
IP
ASN #51013 WebSupport s.r.o.
File type ASCII text, with very long lines (3720)
Hash 4a5d77de6f4f2f0fde1219494b385a60
03991e287a03dd8f02585ce4022ab368fd5f708d
5c9c0f4aa6a1f445954aeb2a85ec6bd7f235791cf81cb8c2f11e8cc0856090b5
GET /wp-content/plugins/elementor-pro/assets/lib/sticky/jquery.sticky.min.js?ver=3.8.2 HTTP/1.1
Host: www.cuervo.agency
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.cuervo.agency/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: openresty
date: Tue, 29 Nov 2022 21:54:47 GMT
content-type: application/x-javascript
content-length: 1542
last-modified: Tue, 22 Nov 2022 08:01:41 GMT
etag: "e89-5ee0a95158de4-gzip"
accept-ranges: bytes
cache-control: max-age=31536000
expires: Wed, 29 Nov 2023 21:54:47 GMT
vary: Accept-Encoding, Accept-Encoding
content-encoding: gzip
referrer-policy: no-referrer-when-downgrade
X-Firefox-Spdy: h2
www.cuervo.agency/wp-content/plugins/elementor-pro/assets/js/frontend.min.js?ver=3.8.2
200 OK 5.7 kB URL HTTP/2 www.cuervo.agency/wp-content/plugins/elementor-pro/assets/js/frontend.min.js?ver=3.8.2
IP
ASN #51013 WebSupport s.r.o.
File type ASCII text, with very long lines (21520)
Hash 0d55c05766ce3640b25675105252e77c
248dca3673c885c4e18a3d9c270f8622e42b0027
659ed0407e67edb7f6ed2e996bfa5e9570fc6feb87f2391520eb52ab62469d6c
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/elementor-pro/assets/js/frontend.min.js?ver=3.8.2 HTTP/1.1
Host: www.cuervo.agency
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.cuervo.agency/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: openresty
date: Tue, 29 Nov 2022 21:54:47 GMT
content-type: application/x-javascript
content-length: 5743
last-modified: Tue, 22 Nov 2022 08:01:41 GMT
etag: "543b-5ee0a95140740-gzip"
accept-ranges: bytes
cache-control: max-age=31536000
expires: Wed, 29 Nov 2023 21:54:47 GMT
vary: Accept-Encoding, Accept-Encoding
content-encoding: gzip
referrer-policy: no-referrer-when-downgrade
X-Firefox-Spdy: h2
www.cuervo.agency/wp-includes/js/underscore.min.js?ver=1.13.3
200 OK 7.3 kB URL HTTP/2 www.cuervo.agency/wp-includes/js/underscore.min.js?ver=1.13.3
IP
ASN #51013 WebSupport s.r.o.
File type ASCII text, with very long lines (18876)
Hash 9a2ea6713769fcca4f8c5c008e529bca
d4f20ea23eb679890b61a6829a5803a90f4cd4eb
3ca9f3cece4ffaff4322dda5eac52f1dc8cf52001f3e011f9f54c3aa1c40d880
GET /wp-includes/js/underscore.min.js?ver=1.13.3 HTTP/1.1
Host: www.cuervo.agency
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.cuervo.agency/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: openresty
date: Tue, 29 Nov 2022 21:54:47 GMT
content-type: application/x-javascript
content-length: 7313
last-modified: Tue, 09 Aug 2022 13:02:11 GMT
etag: "49df-5e5ce8a695356-gzip"
accept-ranges: bytes
cache-control: max-age=31536000
expires: Wed, 29 Nov 2023 21:54:47 GMT
vary: Accept-Encoding, Accept-Encoding
content-encoding: gzip
referrer-policy: no-referrer-when-downgrade
X-Firefox-Spdy: h2
www.cuervo.agency/wp-content/plugins/wpforms-lite/assets/js/integrations/elementor/frontend.min.js?ver=1.7.2
200 OK 374 B URL HTTP/2 www.cuervo.agency/wp-content/plugins/wpforms-lite/assets/js/integrations/elementor/frontend.min.js?ver=1.7.2
IP
ASN #51013 WebSupport s.r.o.
File type ASCII text, with very long lines (754), with no line terminators
Hash ef785f463505633971eae5c08ad626d4
624e22257f386801822229db3a4bbd2e24b25e2f
b2a0dc77f0f79d81698a7e3893e16ecba7b0d980b80a5233656d9b11f1d8160d
GET /wp-content/plugins/wpforms-lite/assets/js/integrations/elementor/frontend.min.js?ver=1.7.2 HTTP/1.1
Host: www.cuervo.agency
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.cuervo.agency/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: openresty
date: Tue, 29 Nov 2022 21:54:47 GMT
content-type: application/x-javascript
content-length: 374
last-modified: Tue, 18 Jan 2022 21:07:28 GMT
etag: "2f2-5d5e1a8184730-gzip"
accept-ranges: bytes
cache-control: max-age=31536000
expires: Wed, 29 Nov 2023 21:54:47 GMT
vary: Accept-Encoding, Accept-Encoding
content-encoding: gzip
referrer-policy: no-referrer-when-downgrade
X-Firefox-Spdy: h2
www.cuervo.agency/wp-includes/js/wp-util.min.js?ver=6.0.3
200 OK 705 B URL HTTP/2 www.cuervo.agency/wp-includes/js/wp-util.min.js?ver=6.0.3
IP
ASN #51013 WebSupport s.r.o.
File type ASCII text, with very long lines (1305)
Hash fc7e549ce428fe90eb910c14d23a1532
e3eb36861f16a8b3ea97e8e60a2033957fe58a2e
80226ac13b48a680f63f8258a251d2b9b4c87394459df6bd32732fd4e69c1bd3
GET /wp-includes/js/wp-util.min.js?ver=6.0.3 HTTP/1.1
Host: www.cuervo.agency
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.cuervo.agency/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: openresty
date: Tue, 29 Nov 2022 21:54:47 GMT
content-type: application/x-javascript
content-length: 705
last-modified: Tue, 09 Aug 2022 13:02:11 GMT
etag: "53c-5e5ce8a6962f6-gzip"
accept-ranges: bytes
cache-control: max-age=31536000
expires: Wed, 29 Nov 2023 21:54:47 GMT
vary: Accept-Encoding, Accept-Encoding
content-encoding: gzip
referrer-policy: no-referrer-when-downgrade
X-Firefox-Spdy: h2
www.cuervo.agency/wp-content/plugins/elementor/assets/js/preloaded-modules.min.js?ver=3.8.1
200 OK 13 kB URL HTTP/2 www.cuervo.agency/wp-content/plugins/elementor/assets/js/preloaded-modules.min.js?ver=3.8.1
IP
ASN #51013 WebSupport s.r.o.
File type ASCII text, with very long lines (43101)
Hash ba8651f8b75f8f4904bfb98feb3a05f9
2b5717c8fee860602ea848af927362ae6d337dff
16f68830fee46a748674c3985f70fda02147d3c79b2c3767909117725cbb9b81
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/elementor/assets/js/preloaded-modules.min.js?ver=3.8.1 HTTP/1.1
Host: www.cuervo.agency
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.cuervo.agency/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: openresty
date: Tue, 29 Nov 2022 21:54:47 GMT
content-type: application/x-javascript
content-length: 13120
last-modified: Sun, 13 Nov 2022 20:01:38 GMT
etag: "a884-5ed5f9740ec7c-gzip"
accept-ranges: bytes
cache-control: max-age=31536000
expires: Wed, 29 Nov 2023 21:54:47 GMT
vary: Accept-Encoding, Accept-Encoding
content-encoding: gzip
referrer-policy: no-referrer-when-downgrade
X-Firefox-Spdy: h2
www.cuervo.agency/wp-content/plugins/elementor-pro/assets/js/preloaded-elements-handlers.min.js?ver=3.8.2
200 OK 33 kB URL HTTP/2 www.cuervo.agency/wp-content/plugins/elementor-pro/assets/js/preloaded-elements-handlers.min.js?ver=3.8.2
IP
ASN #51013 WebSupport s.r.o.
File type ASCII text, with very long lines (65493)
Hash 56c58aa46f0ba00e1dd0c63246dd088a
b2f01b98842a758a4188b87a557db3b442688e07
355bd3e05e5c94d3bfd9f16bf62e39239c50bdef73d0e2bf426f171d613252b8
GET /wp-content/plugins/elementor-pro/assets/js/preloaded-elements-handlers.min.js?ver=3.8.2 HTTP/1.1
Host: www.cuervo.agency
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.cuervo.agency/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: openresty
date: Tue, 29 Nov 2022 21:54:47 GMT
content-type: application/x-javascript
content-length: 32745
last-modified: Tue, 22 Nov 2022 08:01:41 GMT
etag: "21fe5-5ee0a951399df-gzip"
accept-ranges: bytes
cache-control: max-age=31536000
expires: Wed, 29 Nov 2023 21:54:47 GMT
vary: Accept-Encoding, Accept-Encoding
content-encoding: gzip
referrer-policy: no-referrer-when-downgrade
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash 07b8296613be09905e34b09dce4a203f
c97c67e8c4b1247423d089c028c31e05734f124e
c8c7b7cd00d5818bbe4a4ddb1b734a1b766dc6474cce300171bd5a0947adc6b2
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 29 Nov 2022 21:54:47 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 8e6b6b7b64adbb958932b6a036f0060c
1a9a3b3128bd1c444ffca16cc47c19c11820b840
20303c5f26120e93028ea15e14cd61d40fdbea17bdb8529c8d6ed7d8a16f2ca0
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "20303C5F26120E93028EA15E14CD61D40FDBEA17BDB8529C8D6ED7D8A16F2CA0"
Last-Modified: Mon, 28 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=12786
Expires: Wed, 30 Nov 2022 01:27:53 GMT
Date: Tue, 29 Nov 2022 21:54:47 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash c480e3b79870c230905caf4e5095ce75
4fab93aa8bc7b83c736e011b471521bd0df61a10
2c400112657dd22636015d7a4447905d72cec4604ea357c1e1250f396dd8ee39
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "2C400112657DD22636015D7A4447905D72CEC4604EA357C1E1250F396DD8EE39"
Last-Modified: Mon, 28 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=20837
Expires: Wed, 30 Nov 2022 03:42:04 GMT
Date: Tue, 29 Nov 2022 21:54:47 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 37637f6a96fd4846746af5423200f409
e438d75aad99663c5bdf27b6c0a2009bac2df888
5970085eed697722d66fa2eaf981ae9b3d0a43c46f65491f315265c03f85fc81
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "5970085EED697722D66FA2EAF981AE9B3D0A43C46F65491F315265C03F85FC81"
Last-Modified: Mon, 28 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7291
Expires: Tue, 29 Nov 2022 23:56:18 GMT
Date: Tue, 29 Nov 2022 21:54:47 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 100a52fb95663c73038bcdcadecda47a
09150af627d766d2c133f1b681a5c43aeb182fe8
310aa5de44df2f2120b57af3e975a0c64a606de66b398f491ca6fb78774461ed
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "310AA5DE44DF2F2120B57AF3E975A0C64A606DE66B398F491CA6FB78774461ED"
Last-Modified: Mon, 28 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21600
Expires: Wed, 30 Nov 2022 03:54:47 GMT
Date: Tue, 29 Nov 2022 21:54:47 GMT
Connection: keep-alive
chat.godixital.com/chat/css/chat.css
200 OK 2.3 kB URL HTTP/1.1 chat.godixital.com/chat/css/chat.css
IP
File type ASCII text, with CRLF line terminators
Hash 22dd36fcf488eb2e92c91c0925416640
198c83f3f228d5ffa983657bffa5a8b75f3e00c5
8b7bbbdd17cc8db1daf48ee1f5f27f5efb27d55c940c8cd2e94b056cc74ab2a0
GET /chat/css/chat.css HTTP/1.1
Host: chat.godixital.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.cuervo.agency/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Tue, 29 Nov 2022 21:54:47 GMT
Server: Apache/2.4.6 (CentOS) OpenSSL/1.0.2k-fips PHP/7.0.33
Last-Modified: Fri, 01 Oct 2021 17:04:48 GMT
ETag: "224a-5cd4d8f8b743e-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 2334
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/css
leads.godixital.com/js/leads_form_trigger.js
200 OK 13 kB URL HTTP/1.1 leads.godixital.com/js/leads_form_trigger.js
IP
File type ASCII text, with very long lines (1572)
Hash cef14fd2a20d8c3611ccc85cf8acdd39
d6d9118ebe8f2f2e6b87108eb9611333955e74c4
c18a85b48c5ecb66a255f2614964f7f74b5a3d442332e0f88b9fb136f274c066
GET /js/leads_form_trigger.js HTTP/1.1
Host: leads.godixital.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.cuervo.agency/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Tue, 29 Nov 2022 21:54:47 GMT
Server: Apache/2.4.6 (CentOS) OpenSSL/1.0.2k-fips PHP/7.0.33
X-Powered-By: PHP/7.0.33
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: application/javascript
chat.godixital.com/chat/js/index.php?is_wordpress=1
200 OK 42 kB URL HTTP/1.1 chat.godixital.com/chat/js/index.php?is_wordpress=1
IP
File type ASCII text, with very long lines (32033)
Hash 187962c2df6602ededa07bb0c8d8695e
3f9d7872393464e228a553e051d2d1cdf2a963c8
e341566404d89a875e23388f66befd7cddf718e0f03eb56829e0be450be940c6
Analyzer Verdict Alert fortinet Malware
GET /chat/js/index.php?is_wordpress=1 HTTP/1.1
Host: chat.godixital.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.cuervo.agency/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Tue, 29 Nov 2022 21:54:47 GMT
Server: Apache/2.4.6 (CentOS) OpenSSL/1.0.2k-fips PHP/7.0.33
X-Powered-By: PHP/7.0.33
Expires: Mon, 26 Jul 1997 05:00:00 GMT
Last-Modified: Tue, 29 Nov 2022 21:54:47 GMT
Cache-Control: no-store, no-cache, must-revalidate, max-age=0, post-check=0, pre-check=0
Pragma: no-cache
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 41700
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/javascript; charset=utf-8');
region1.google-analytics.com/g/collect?v=2&tid=G-L3GEJK3VEL>m=2oeb90&_p=867192955&cid=801130594.1669758887&ul=en-us&sr=1280x1024&_s=1&sid=1669758886&sct=1&seg=0&dl=https%3A%2F%2Fwww.cuervo.agency%2F&dt=Home%20-%20Cuervo&en=page_view&_fv=1&_nsi=1&_ss=1&_ee=1
204 No Content 0 B URL HTTP/2 region1.google-analytics.com/g/collect?v=2&tid=G-L3GEJK3VEL>m=2oeb90&_p=867192955&cid=801130594.1669758887&ul=en-us&sr=1280x1024&_s=1&sid=1669758886&sct=1&seg=0&dl=https%3A%2F%2Fwww.cuervo.agency%2F&dt=Home%20-%20Cuervo&en=page_view&_fv=1&_nsi=1&_ss=1&_ee=1
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /g/collect?v=2&tid=G-L3GEJK3VEL>m=2oeb90&_p=867192955&cid=801130594.1669758887&ul=en-us&sr=1280x1024&_s=1&sid=1669758886&sct=1&seg=0&dl=https%3A%2F%2Fwww.cuervo.agency%2F&dt=Home%20-%20Cuervo&en=page_view&_fv=1&_nsi=1&_ss=1&_ee=1 HTTP/1.1
Host: region1.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.cuervo.agency
Connection: keep-alive
Referer: https://www.cuervo.agency/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0
HTTP/2 204 No Content
access-control-allow-origin: https://www.cuervo.agency
date: Tue, 29 Nov 2022 21:54:48 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
access-control-allow-credentials: true
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
region1.google-analytics.com/g/collect?v=2&tid=G-CFYL7DNXN1>m=2oebs0&_p=867192955&cid=801130594.1669758887&ul=en-us&sr=1280x1024&_s=1&sid=1669758886&sct=1&seg=0&dl=https%3A%2F%2Fwww.cuervo.agency%2F&dt=Home%20-%20Cuervo&en=page_view&_fv=1&_ss=1
204 No Content 0 B URL HTTP/2 region1.google-analytics.com/g/collect?v=2&tid=G-CFYL7DNXN1>m=2oebs0&_p=867192955&cid=801130594.1669758887&ul=en-us&sr=1280x1024&_s=1&sid=1669758886&sct=1&seg=0&dl=https%3A%2F%2Fwww.cuervo.agency%2F&dt=Home%20-%20Cuervo&en=page_view&_fv=1&_ss=1
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /g/collect?v=2&tid=G-CFYL7DNXN1>m=2oebs0&_p=867192955&cid=801130594.1669758887&ul=en-us&sr=1280x1024&_s=1&sid=1669758886&sct=1&seg=0&dl=https%3A%2F%2Fwww.cuervo.agency%2F&dt=Home%20-%20Cuervo&en=page_view&_fv=1&_ss=1 HTTP/1.1
Host: region1.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.cuervo.agency
Connection: keep-alive
Referer: https://www.cuervo.agency/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0
TE: trailers
HTTP/2 204 No Content
access-control-allow-origin: https://www.cuervo.agency
date: Tue, 29 Nov 2022 21:54:48 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
access-control-allow-credentials: true
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
leads.godixital.com/js/whatsapp_button/whatsapp_button.php?is_wordpress=1
200 OK 109 kB URL HTTP/1.1 leads.godixital.com/js/whatsapp_button/whatsapp_button.php?is_wordpress=1
IP
File type ISO-8859 text, with very long lines (32014), with CRLF, LF line terminators
Size 109 kB (108567 bytes)
Hash 651ebee4efb3cb8f7028dfc3c68eb6c0
34f43e88df343f68c2d33f2b0284161ab1eb79a6
ba76640ded16619302d6d5608ee67c4e5edb29b504ec2ab2cb3249b260f2b527
GET /js/whatsapp_button/whatsapp_button.php?is_wordpress=1 HTTP/1.1
Host: leads.godixital.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.cuervo.agency/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Tue, 29 Nov 2022 21:54:47 GMT
Server: Apache/2.4.6 (CentOS) OpenSSL/1.0.2k-fips PHP/7.0.33
X-Powered-By: PHP/7.0.33
Expires: Mon, 26 Jul 1997 05:00:00 GMT
Last-Modified: Tue, 29 Nov 2022 21:54:47 GMT
Cache-Control: no-store, no-cache, must-revalidate, max-age=0, post-check=0, pre-check=0
Pragma: no-cache
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: text/javascript; charset=utf-8');
www.cuervo.agency/wp-content/uploads/2021/06/coa-2-e1632406686362.png
200 OK 3.0 kB URL HTTP/2 www.cuervo.agency/wp-content/uploads/2021/06/coa-2-e1632406686362.png
IP
ASN #51013 WebSupport s.r.o.
File type PNG image data, 179 x 65, 8-bit colormap, non-interlaced\012- data
Hash cfb4443bfb9bccff020be6fa674afa95
dbb8e5c8bd744daff3675a573beafae8ffb0c5ea
72e16e7877c28dc0d0e1a171643e1a8fd6a3554234ef095c304150657d19d314
GET /wp-content/uploads/2021/06/coa-2-e1632406686362.png HTTP/1.1
Host: www.cuervo.agency
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.cuervo.agency/
Connection: keep-alive
Cookie: _ga_L3GEJK3VEL=GS1.1.1669758886.1.0.1669758886.0.0.0; _ga=GA1.1.801130594.1669758887; _ga_CFYL7DNXN1=GS1.1.1669758886.1.0.1669758886.0.0.0
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: openresty
date: Tue, 29 Nov 2022 21:54:48 GMT
content-type: image/png
content-length: 2989
last-modified: Thu, 23 Sep 2021 14:18:08 GMT
etag: "bad-5ccaa4cd25aee"
accept-ranges: bytes
cache-control: max-age=31536000
expires: Wed, 29 Nov 2023 21:54:48 GMT
referrer-policy: no-referrer-when-downgrade
X-Firefox-Spdy: h2
www.cuervo.agency/wp-content/uploads/2021/06/eset-2.png
200 OK 4.5 kB URL HTTP/2 www.cuervo.agency/wp-content/uploads/2021/06/eset-2.png
IP
ASN #51013 WebSupport s.r.o.
File type PNG image data, 400 x 200, 8-bit gray+alpha, non-interlaced\012- data
Hash ea937bea0146894742b45266ccbffe6e
a740296268a16167e548c862ed1320042a8a19ee
42e5e1ee58230ce83ec434794e40df244260a01de3e2b5f4ff8835bc82505364
GET /wp-content/uploads/2021/06/eset-2.png HTTP/1.1
Host: www.cuervo.agency
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.cuervo.agency/
Connection: keep-alive
Cookie: _ga_L3GEJK3VEL=GS1.1.1669758886.1.0.1669758886.0.0.0; _ga=GA1.1.801130594.1669758887; _ga_CFYL7DNXN1=GS1.1.1669758886.1.0.1669758886.0.0.0
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: openresty
date: Tue, 29 Nov 2022 21:54:48 GMT
content-type: image/png
content-length: 4527
last-modified: Thu, 24 Jun 2021 01:46:57 GMT
etag: "11af-5c57932c834d8"
accept-ranges: bytes
cache-control: max-age=31536000
expires: Wed, 29 Nov 2023 21:54:48 GMT
referrer-policy: no-referrer-when-downgrade
X-Firefox-Spdy: h2
www.cuervo.agency/wp-content/uploads/2021/06/onapsis-2.png
200 OK 10 kB URL HTTP/2 www.cuervo.agency/wp-content/uploads/2021/06/onapsis-2.png
IP
ASN #51013 WebSupport s.r.o.
File type PNG image data, 400 x 200, 8-bit gray+alpha, non-interlaced\012- data
Hash 176b91de6dfb66c5b47c5ac231883e42
3710a5111e0c4cc1f72e0fbbac97607e3cd697fc
3b15f8bdbbc95a5a2d29a96a516a613f4dd83e38ac954f0f3937d46816d1dc0b
GET /wp-content/uploads/2021/06/onapsis-2.png HTTP/1.1
Host: www.cuervo.agency
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.cuervo.agency/
Connection: keep-alive
Cookie: _ga_L3GEJK3VEL=GS1.1.1669758886.1.0.1669758886.0.0.0; _ga=GA1.1.801130594.1669758887; _ga_CFYL7DNXN1=GS1.1.1669758886.1.0.1669758886.0.0.0
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: openresty
date: Tue, 29 Nov 2022 21:54:48 GMT
content-type: image/png
content-length: 10161
last-modified: Thu, 24 Jun 2021 01:47:11 GMT
etag: "27b1-5c57933a884a6"
accept-ranges: bytes
cache-control: max-age=31536000
expires: Wed, 29 Nov 2023 21:54:48 GMT
referrer-policy: no-referrer-when-downgrade
X-Firefox-Spdy: h2
www.cuervo.agency/wp-content/uploads/2021/06/coldview-2.png
200 OK 5.2 kB URL HTTP/2 www.cuervo.agency/wp-content/uploads/2021/06/coldview-2.png
IP
ASN #51013 WebSupport s.r.o.
File type PNG image data, 400 x 200, 8-bit colormap, non-interlaced\012- data
Hash 5dce809d214329f33b8619de0eab65fe
709b83225dc373641359b742b15c32f0e625d163
481a2d4dca5317829360c9eaa71a18bdb4a8cb96b5439d416bba2232044d5e9c
GET /wp-content/uploads/2021/06/coldview-2.png HTTP/1.1
Host: www.cuervo.agency
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.cuervo.agency/
Connection: keep-alive
Cookie: _ga_L3GEJK3VEL=GS1.1.1669758886.1.0.1669758886.0.0.0; _ga=GA1.1.801130594.1669758887; _ga_CFYL7DNXN1=GS1.1.1669758886.1.0.1669758886.0.0.0
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: openresty
date: Tue, 29 Nov 2022 21:54:48 GMT
content-type: image/png
content-length: 5241
last-modified: Thu, 24 Jun 2021 01:46:51 GMT
etag: "1479-5c5793268fd06"
accept-ranges: bytes
cache-control: max-age=31536000
expires: Wed, 29 Nov 2023 21:54:48 GMT
referrer-policy: no-referrer-when-downgrade
X-Firefox-Spdy: h2
www.cuervo.agency/wp-content/plugins/elementor-pro/assets/js/webpack-pro.runtime.min.js?ver=3.8.2
200 OK 11 kB URL HTTP/2 www.cuervo.agency/wp-content/plugins/elementor-pro/assets/js/webpack-pro.runtime.min.js?ver=3.8.2
IP
ASN #51013 WebSupport s.r.o.
Hash de9c963610edd2c8f17079c04aceccac
50be699533b093bfca2d83ab9b4e964d6a1b5a3c
587c50f0a3d3ba624c034eff34fd75c39de36b144ff6c0d3571fadda22d14bb4
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/elementor-pro/assets/js/webpack-pro.runtime.min.js?ver=3.8.2 HTTP/1.1
Host: www.cuervo.agency
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.cuervo.agency/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: openresty
date: Tue, 29 Nov 2022 21:54:47 GMT
content-type: application/x-javascript
content-length: 2384
last-modified: Tue, 22 Nov 2022 08:01:41 GMT
etag: "1472-5ee0a9513a97f-gzip"
accept-ranges: bytes
cache-control: max-age=31536000
expires: Wed, 29 Nov 2023 21:54:47 GMT
vary: Accept-Encoding, Accept-Encoding
content-encoding: gzip
referrer-policy: no-referrer-when-downgrade
X-Firefox-Spdy: h2
www.cuervo.agency/wp-content/uploads/2021/06/amarin-2.png
200 OK 7.0 kB URL HTTP/2 www.cuervo.agency/wp-content/uploads/2021/06/amarin-2.png
IP
ASN #51013 WebSupport s.r.o.
File type PNG image data, 400 x 200, 8-bit gray+alpha, non-interlaced\012- data
Hash f3840ccf5e4c3b9dc894b3e76eb34ac2
615f1ca78a3fadb6bf20b12c8e75aec05e59a42f
bb2d759b7236a0ce9c13f50dd1e31d692665957185fcc61cc880af7b9d88386c
GET /wp-content/uploads/2021/06/amarin-2.png HTTP/1.1
Host: www.cuervo.agency
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.cuervo.agency/
Connection: keep-alive
Cookie: _ga_L3GEJK3VEL=GS1.1.1669758886.1.0.1669758886.0.0.0; _ga=GA1.1.801130594.1669758887; _ga_CFYL7DNXN1=GS1.1.1669758886.1.0.1669758886.0.0.0
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: openresty
date: Tue, 29 Nov 2022 21:54:48 GMT
content-type: image/png
content-length: 6974
last-modified: Thu, 24 Jun 2021 01:46:38 GMT
etag: "1b3e-5c57931ad7b69"
accept-ranges: bytes
cache-control: max-age=31536000
expires: Wed, 29 Nov 2023 21:54:48 GMT
referrer-policy: no-referrer-when-downgrade
X-Firefox-Spdy: h2
www.cuervo.agency/wp-content/uploads/2021/06/icb-2.png
200 OK 5.9 kB URL HTTP/2 www.cuervo.agency/wp-content/uploads/2021/06/icb-2.png
IP
ASN #51013 WebSupport s.r.o.
File type PNG image data, 400 x 200, 8-bit gray+alpha, non-interlaced\012- data
Hash 2802724cff07b280873bbc35d8c57db3
ad3a18f4fed03b0e9ed6c182fe0a809b5774e42d
6d0fe1ba219cf4e0913cac12935e63640d25c637b2fc369a61cb6e9f6b9f8ee7
GET /wp-content/uploads/2021/06/icb-2.png HTTP/1.1
Host: www.cuervo.agency
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.cuervo.agency/
Connection: keep-alive
Cookie: _ga_L3GEJK3VEL=GS1.1.1669758886.1.0.1669758886.0.0.0; _ga=GA1.1.801130594.1669758887; _ga_CFYL7DNXN1=GS1.1.1669758886.1.0.1669758886.0.0.0
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: openresty
date: Tue, 29 Nov 2022 21:54:48 GMT
content-type: image/png
content-length: 5874
last-modified: Thu, 24 Jun 2021 01:47:02 GMT
etag: "16f2-5c579331309bd"
accept-ranges: bytes
cache-control: max-age=31536000
expires: Wed, 29 Nov 2023 21:54:48 GMT
referrer-policy: no-referrer-when-downgrade
X-Firefox-Spdy: h2
www.cuervo.agency/wp-content/uploads/2021/06/crecer-2.png
200 OK 8.1 kB URL HTTP/2 www.cuervo.agency/wp-content/uploads/2021/06/crecer-2.png
IP
ASN #51013 WebSupport s.r.o.
File type PNG image data, 400 x 200, 8-bit gray+alpha, non-interlaced\012- data
Hash c68d4be62203afa3f314380e6143c681
da90def4f3604c375a559824a1f6c086bca1cc4e
ed59e2b8d806abb726da396f3b2022068d3b7fbfd4ea0c2d0d4b9bfc97b95801
GET /wp-content/uploads/2021/06/crecer-2.png HTTP/1.1
Host: www.cuervo.agency
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.cuervo.agency/
Connection: keep-alive
Cookie: _ga_L3GEJK3VEL=GS1.1.1669758886.1.0.1669758886.0.0.0; _ga=GA1.1.801130594.1669758887; _ga_CFYL7DNXN1=GS1.1.1669758886.1.0.1669758886.0.0.0
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: openresty
date: Tue, 29 Nov 2022 21:54:48 GMT
content-type: image/png
content-length: 8140
last-modified: Thu, 24 Jun 2021 01:46:54 GMT
etag: "1fcc-5c57932a18243"
accept-ranges: bytes
cache-control: max-age=31536000
expires: Wed, 29 Nov 2023 21:54:48 GMT
referrer-policy: no-referrer-when-downgrade
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash 49eee25f3ccd585a29e34e80cf5bb160
73eca8be91deedd049304862759a3d8084c0b07e
531e5685527861b3ed7e8e3865c5a6a40d3f92f5c9d89df3f385dab72406fb56
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 29 Nov 2022 21:54:48 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.cuervo.agency/wp-content/uploads/2021/06/serenisima-2.png
200 OK 8.5 kB URL HTTP/2 www.cuervo.agency/wp-content/uploads/2021/06/serenisima-2.png
IP
ASN #51013 WebSupport s.r.o.
File type PNG image data, 400 x 200, 8-bit gray+alpha, non-interlaced\012- data
Hash 6674e978ac1e800ceaade300d53c78f5
e4bb0828a6ef970d30aad0967e5e72a8c9f17437
f25486f692efe4e90deb4106a2374248d7eda6c0de452823ef6378d76876d4d2
GET /wp-content/uploads/2021/06/serenisima-2.png HTTP/1.1
Host: www.cuervo.agency
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.cuervo.agency/
Connection: keep-alive
Cookie: _ga_L3GEJK3VEL=GS1.1.1669758886.1.0.1669758886.0.0.0; _ga=GA1.1.801130594.1669758887; _ga_CFYL7DNXN1=GS1.1.1669758886.1.0.1669758886.0.0.0
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: openresty
date: Tue, 29 Nov 2022 21:54:48 GMT
content-type: image/png
content-length: 8466
last-modified: Thu, 24 Jun 2021 01:47:18 GMT
etag: "2112-5c5793412e7f1"
accept-ranges: bytes
cache-control: max-age=31536000
expires: Wed, 29 Nov 2023 21:54:48 GMT
referrer-policy: no-referrer-when-downgrade
X-Firefox-Spdy: h2
www.cuervo.agency/wp-content/uploads/2021/06/kimei-2.png
200 OK 3.5 kB URL HTTP/2 www.cuervo.agency/wp-content/uploads/2021/06/kimei-2.png
IP
ASN #51013 WebSupport s.r.o.
File type PNG image data, 400 x 200, 8-bit colormap, non-interlaced\012- data
Hash c0f06c7b257f61dcb5fd7873ad34e96c
897d38afdac3a8b3d4056774877aa2f067b4c4b4
e8bf83d16093ed65bdbd78ed5b8fcbd205cd9d793ce282fdcc01ac1f6c4d9689
GET /wp-content/uploads/2021/06/kimei-2.png HTTP/1.1
Host: www.cuervo.agency
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.cuervo.agency/
Connection: keep-alive
Cookie: _ga_L3GEJK3VEL=GS1.1.1669758886.1.0.1669758886.0.0.0; _ga=GA1.1.801130594.1669758887; _ga_CFYL7DNXN1=GS1.1.1669758886.1.0.1669758886.0.0.0
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: openresty
date: Tue, 29 Nov 2022 21:54:48 GMT
content-type: image/png
content-length: 3486
last-modified: Thu, 24 Jun 2021 01:47:06 GMT
etag: "d9e-5c57933525568"
accept-ranges: bytes
cache-control: max-age=31536000
expires: Wed, 29 Nov 2023 21:54:48 GMT
referrer-policy: no-referrer-when-downgrade
X-Firefox-Spdy: h2
www.cuervo.agency/wp-content/uploads/2021/06/cabc-2.png
200 OK 6.0 kB URL HTTP/2 www.cuervo.agency/wp-content/uploads/2021/06/cabc-2.png
IP
ASN #51013 WebSupport s.r.o.
File type PNG image data, 400 x 200, 8-bit gray+alpha, non-interlaced\012- data
Hash d5109cad0dd6db148aecef5ab6ec9502
1f164b3d50df1f67af7e087ff17def51330b7a42
d456a1564db4ffc0f50d7b8b7686e01facf7de8e8a7dc85f99c91c88df92241e
GET /wp-content/uploads/2021/06/cabc-2.png HTTP/1.1
Host: www.cuervo.agency
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.cuervo.agency/
Connection: keep-alive
Cookie: _ga_L3GEJK3VEL=GS1.1.1669758886.1.0.1669758886.0.0.0; _ga=GA1.1.801130594.1669758887; _ga_CFYL7DNXN1=GS1.1.1669758886.1.0.1669758886.0.0.0
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: openresty
date: Tue, 29 Nov 2022 21:54:48 GMT
content-type: image/png
content-length: 6012
last-modified: Thu, 24 Jun 2021 01:46:41 GMT
etag: "177c-5c57931d1bcf9"
accept-ranges: bytes
cache-control: max-age=31536000
expires: Wed, 29 Nov 2023 21:54:48 GMT
referrer-policy: no-referrer-when-downgrade
X-Firefox-Spdy: h2
www.cuervo.agency/wp-content/uploads/2021/06/meraki-2.png
200 OK 7.4 kB URL HTTP/2 www.cuervo.agency/wp-content/uploads/2021/06/meraki-2.png
IP
ASN #51013 WebSupport s.r.o.
File type PNG image data, 400 x 200, 8-bit gray+alpha, non-interlaced\012- data
Hash 0a17438b034789e0976236b56e4756dc
f605ea51a250ce3677501566971722a87dee7140
3afc89e3713f5d1bec5a4be73f14048f5bf6292e482f24706bfba2659c65e94f
GET /wp-content/uploads/2021/06/meraki-2.png HTTP/1.1
Host: www.cuervo.agency
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.cuervo.agency/
Connection: keep-alive
Cookie: _ga_L3GEJK3VEL=GS1.1.1669758886.1.0.1669758886.0.0.0; _ga=GA1.1.801130594.1669758887; _ga_CFYL7DNXN1=GS1.1.1669758886.1.0.1669758886.0.0.0
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: openresty
date: Tue, 29 Nov 2022 21:54:48 GMT
content-type: image/png
content-length: 7382
last-modified: Thu, 24 Jun 2021 01:47:08 GMT
etag: "1cd6-5c57933789a9d"
accept-ranges: bytes
cache-control: max-age=31536000
expires: Wed, 29 Nov 2023 21:54:48 GMT
referrer-policy: no-referrer-when-downgrade
X-Firefox-Spdy: h2
www.cuervo.agency/wp-content/uploads/2021/08/julifotos.jpg
200 OK 27 kB URL HTTP/2 www.cuervo.agency/wp-content/uploads/2021/08/julifotos.jpg
IP
ASN #51013 WebSupport s.r.o.
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 621x753, components 3\012- data
Hash fa4fa8d00ea154f0e8478d04e4c747e9
e0b6f5916668ace6bb401e6961db6bd93d38b856
26706c2d67d7926c4d799b43a5fee7ed80cf246ce9b75a5cae4a2408d79aab2c
GET /wp-content/uploads/2021/08/julifotos.jpg HTTP/1.1
Host: www.cuervo.agency
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.cuervo.agency/
Connection: keep-alive
Cookie: _ga_L3GEJK3VEL=GS1.1.1669758886.1.0.1669758886.0.0.0; _ga=GA1.1.801130594.1669758887; _ga_CFYL7DNXN1=GS1.1.1669758886.1.0.1669758886.0.0.0
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: openresty
date: Tue, 29 Nov 2022 21:54:48 GMT
content-type: image/jpeg
content-length: 27102
last-modified: Thu, 05 Aug 2021 02:07:24 GMT
etag: "69de-5c8c6614284ee"
accept-ranges: bytes
cache-control: max-age=31536000
expires: Wed, 29 Nov 2023 21:54:48 GMT
referrer-policy: no-referrer-when-downgrade
X-Firefox-Spdy: h2
www.cuervo.agency/wp-content/uploads/2021/06/cardiobeat-2.png
200 OK 6.3 kB URL HTTP/2 www.cuervo.agency/wp-content/uploads/2021/06/cardiobeat-2.png
IP
ASN #51013 WebSupport s.r.o.
File type PNG image data, 400 x 200, 8-bit gray+alpha, non-interlaced\012- data
Hash 29d984c89b8e441077ae477c1e2f045c
2a1846e86a363a6558926e18fdaca371610123ed
270c39c24a633c3ff05e457c8c0e11d10c8d5edaa8585774418afc3b3f0806e3
GET /wp-content/uploads/2021/06/cardiobeat-2.png HTTP/1.1
Host: www.cuervo.agency
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.cuervo.agency/
Connection: keep-alive
Cookie: _ga_L3GEJK3VEL=GS1.1.1669758886.1.0.1669758886.0.0.0; _ga=GA1.1.801130594.1669758887; _ga_CFYL7DNXN1=GS1.1.1669758886.1.0.1669758886.0.0.0
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: openresty
date: Tue, 29 Nov 2022 21:54:48 GMT
content-type: image/png
content-length: 6335
last-modified: Thu, 24 Jun 2021 01:46:44 GMT
etag: "18bf-5c5793203c9e7"
accept-ranges: bytes
cache-control: max-age=31536000
expires: Wed, 29 Nov 2023 21:54:48 GMT
referrer-policy: no-referrer-when-downgrade
X-Firefox-Spdy: h2
fonts.gstatic.com/s/lato/v23/S6uyw4BMUTPHjx4wXg.woff2
200 OK 24 kB URL HTTP/2 fonts.gstatic.com/s/lato/v23/S6uyw4BMUTPHjx4wXg.woff2
IP
File type Web Open Font Format (Version 2), TrueType, length 23580, version 1.0\012- data
Hash e1b3b5908c9cf23dfb2b9c52b9a023ab
fcd4136085f2a03481d9958cc6793a5ed98e714c
918b7dc3e2e2d015c16ce08b57bcb64d2253bafc1707658f361e72865498e537
GET /s/lato/v23/S6uyw4BMUTPHjx4wXg.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.cuervo.agency
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 23580
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 29 Nov 2022 17:11:08 GMT
expires: Wed, 29 Nov 2023 17:11:08 GMT
cache-control: public, max-age=31536000
age: 17020
last-modified: Tue, 26 Apr 2022 15:48:56 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.cuervo.agency/wp-content/uploads/2021/07/juro20210630_133832.jpg
200 OK 33 kB URL HTTP/2 www.cuervo.agency/wp-content/uploads/2021/07/juro20210630_133832.jpg
IP
ASN #51013 WebSupport s.r.o.
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 621x753, components 3\012- data
Hash 0f4515a34fb3117ba861f62f959076d2
bb6a43530c3f4ca48bb29db0d94a343c25fb820a
de8cd691f57d2b36262133617d7cea0bb7fd0693b0bd3a9e7c48fba15762da43
GET /wp-content/uploads/2021/07/juro20210630_133832.jpg HTTP/1.1
Host: www.cuervo.agency
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.cuervo.agency/
Connection: keep-alive
Cookie: _ga_L3GEJK3VEL=GS1.1.1669758886.1.0.1669758886.0.0.0; _ga=GA1.1.801130594.1669758887; _ga_CFYL7DNXN1=GS1.1.1669758886.1.0.1669758886.0.0.0
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: openresty
date: Tue, 29 Nov 2022 21:54:48 GMT
content-type: image/jpeg
content-length: 33036
last-modified: Fri, 02 Jul 2021 01:07:12 GMT
etag: "810c-5c61993617d42"
accept-ranges: bytes
cache-control: max-age=31536000
expires: Wed, 29 Nov 2023 21:54:48 GMT
referrer-policy: no-referrer-when-downgrade
X-Firefox-Spdy: h2
www.cuervo.agency/wp-content/uploads/2021/07/20210630_1338321.jpg
200 OK 30 kB URL HTTP/2 www.cuervo.agency/wp-content/uploads/2021/07/20210630_1338321.jpg
IP
ASN #51013 WebSupport s.r.o.
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 621x753, components 3\012- data
Hash 66d5e1f10fbcea65f7fd894f03d34492
a3927efca29288e97d2bdf32e8a1ac8a5c4f1ed8
4161ce6130d2fb567ac4eac0f15e6674c54f12e75993ec88319f197110126dfc
GET /wp-content/uploads/2021/07/20210630_1338321.jpg HTTP/1.1
Host: www.cuervo.agency
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.cuervo.agency/
Connection: keep-alive
Cookie: _ga_L3GEJK3VEL=GS1.1.1669758886.1.0.1669758886.0.0.0; _ga=GA1.1.801130594.1669758887; _ga_CFYL7DNXN1=GS1.1.1669758886.1.0.1669758886.0.0.0
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: openresty
date: Tue, 29 Nov 2022 21:54:48 GMT
content-type: image/jpeg
content-length: 29785
last-modified: Thu, 01 Jul 2021 02:15:36 GMT
etag: "7459-5c6066a1ee61e"
accept-ranges: bytes
cache-control: max-age=31536000
expires: Wed, 29 Nov 2023 21:54:48 GMT
referrer-policy: no-referrer-when-downgrade
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash 49eee25f3ccd585a29e34e80cf5bb160
73eca8be91deedd049304862759a3d8084c0b07e
531e5685527861b3ed7e8e3865c5a6a40d3f92f5c9d89df3f385dab72406fb56
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 29 Nov 2022 21:54:48 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.cuervo.agency/wp-content/uploads/2021/07/vane20210630_133832.jpg
200 OK 30 kB URL HTTP/2 www.cuervo.agency/wp-content/uploads/2021/07/vane20210630_133832.jpg
IP
ASN #51013 WebSupport s.r.o.
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 621x753, components 3\012- data
Hash 9167aadd4a9cccfa44aa37d62a22a487
5ed7d059710f802df0436c4edc4cd54dc5818f6e
c8c193a953e297004655a504a6ff8a91f2f5c73a6ad3746fa1c0353ca78ef3c1
GET /wp-content/uploads/2021/07/vane20210630_133832.jpg HTTP/1.1
Host: www.cuervo.agency
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.cuervo.agency/
Connection: keep-alive
Cookie: _ga_L3GEJK3VEL=GS1.1.1669758886.1.0.1669758886.0.0.0; _ga=GA1.1.801130594.1669758887; _ga_CFYL7DNXN1=GS1.1.1669758886.1.0.1669758886.0.0.0
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: openresty
date: Tue, 29 Nov 2022 21:54:48 GMT
content-type: image/jpeg
content-length: 29700
last-modified: Thu, 01 Jul 2021 02:43:02 GMT
etag: "7404-5c606cc46c30b"
accept-ranges: bytes
cache-control: max-age=31536000
expires: Wed, 29 Nov 2023 21:54:48 GMT
referrer-policy: no-referrer-when-downgrade
X-Firefox-Spdy: h2
fonts.gstatic.com/s/lato/v23/S6u9w4BMUTPHh6UVSwiPGQ.woff2
200 OK 23 kB URL HTTP/2 fonts.gstatic.com/s/lato/v23/S6u9w4BMUTPHh6UVSwiPGQ.woff2
IP
File type Web Open Font Format (Version 2), TrueType, length 23040, version 1.0\012- data
Hash de69cf9e514df447d1b0bb16f49d2457
2ac78601179c3a63ba3f3f3081556b12ddcaf655
c447dd7677b419db7b21dbdfc6277c7816a913ffda76fd2e52702df538de0e49
GET /s/lato/v23/S6u9w4BMUTPHh6UVSwiPGQ.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.cuervo.agency
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 23040
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 24 Nov 2022 12:29:22 GMT
expires: Fri, 24 Nov 2023 12:29:22 GMT
cache-control: public, max-age=31536000
age: 465926
last-modified: Tue, 26 Apr 2022 15:56:42 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash 49eee25f3ccd585a29e34e80cf5bb160
73eca8be91deedd049304862759a3d8084c0b07e
531e5685527861b3ed7e8e3865c5a6a40d3f92f5c9d89df3f385dab72406fb56
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 29 Nov 2022 21:54:48 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.cuervo.agency/wp-content/uploads/2021/07/20210630_133832-1.jpg
200 OK 24 kB URL HTTP/2 www.cuervo.agency/wp-content/uploads/2021/07/20210630_133832-1.jpg
IP
ASN #51013 WebSupport s.r.o.
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 621x753, components 3\012- data
Hash 5bf82e3e7edaeec0d36db25ff1f181eb
90f7ac8b9edc7304f7ecb6e9a3a96eaca32bec43
4ada81db54d3f425d98dfc43f2201b943521548cacb98251c89a40539b42ac15
GET /wp-content/uploads/2021/07/20210630_133832-1.jpg HTTP/1.1
Host: www.cuervo.agency
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.cuervo.agency/
Connection: keep-alive
Cookie: _ga_L3GEJK3VEL=GS1.1.1669758886.1.0.1669758886.0.0.0; _ga=GA1.1.801130594.1669758887; _ga_CFYL7DNXN1=GS1.1.1669758886.1.0.1669758886.0.0.0
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: openresty
date: Tue, 29 Nov 2022 21:54:48 GMT
content-type: image/jpeg
content-length: 23477
last-modified: Thu, 01 Jul 2021 02:15:32 GMT
etag: "5bb5-5c60669e62260"
accept-ranges: bytes
cache-control: max-age=31536000
expires: Wed, 29 Nov 2023 21:54:48 GMT
referrer-policy: no-referrer-when-downgrade
X-Firefox-Spdy: h2
fonts.gstatic.com/s/lato/v23/S6u8w4BMUTPHjxsAXC-q.woff2
200 OK 24 kB URL HTTP/2 fonts.gstatic.com/s/lato/v23/S6u8w4BMUTPHjxsAXC-q.woff2
IP
File type Web Open Font Format (Version 2), TrueType, length 24408, version 1.0\012- data
Hash efee2d080d7bebdd2e0aeb2e030813a0
f8d38f9f9584e48c2e469877ebd94232265585f1
bca1d88ada544d9c80872d4da27133fab6d347361fa26e932b47ec9559088fd0
GET /s/lato/v23/S6u8w4BMUTPHjxsAXC-q.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.cuervo.agency
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 24408
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 24 Nov 2022 21:48:23 GMT
expires: Fri, 24 Nov 2023 21:48:23 GMT
cache-control: public, max-age=31536000
age: 432385
last-modified: Tue, 26 Apr 2022 15:50:25 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.cuervo.agency/wp-content/uploads/2021/07/gab.jpg
200 OK 51 kB URL HTTP/2 www.cuervo.agency/wp-content/uploads/2021/07/gab.jpg
IP
ASN #51013 WebSupport s.r.o.
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 621x753, components 3\012- data
Hash cfceb02783e82462924c58c87d81c664
abc74ad3d5973b0b4a6881620d5cf24ff715e28e
3b70b6fae9ef9d665fc7eba82b410b662ede112dad936ec989d796a28d071bc2
GET /wp-content/uploads/2021/07/gab.jpg HTTP/1.1
Host: www.cuervo.agency
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.cuervo.agency/
Connection: keep-alive
Cookie: _ga_L3GEJK3VEL=GS1.1.1669758886.1.0.1669758886.0.0.0; _ga=GA1.1.801130594.1669758887; _ga_CFYL7DNXN1=GS1.1.1669758886.1.0.1669758886.0.0.0
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: openresty
date: Tue, 29 Nov 2022 21:54:48 GMT
content-type: image/jpeg
content-length: 50555
last-modified: Thu, 01 Jul 2021 02:54:18 GMT
etag: "c57b-5c606f488780e"
accept-ranges: bytes
cache-control: max-age=31536000
expires: Wed, 29 Nov 2023 21:54:48 GMT
referrer-policy: no-referrer-when-downgrade
X-Firefox-Spdy: h2
fonts.gstatic.com/s/lato/v23/S6u9w4BMUTPHh7USSwiPGQ.woff2
200 OK 23 kB URL HTTP/2 fonts.gstatic.com/s/lato/v23/S6u9w4BMUTPHh7USSwiPGQ.woff2
IP
File type Web Open Font Format (Version 2), TrueType, length 23236, version 1.0\012- data
Hash 716309aab2bca045f9627f63ad79d0bf
38804233a29aaf975d557fe14e762c627bef76e0
115f6a626ca115d4ad5581b59275327e0e860b30330a52b0f785561332dd2429
GET /s/lato/v23/S6u9w4BMUTPHh7USSwiPGQ.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.cuervo.agency
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 23236
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 29 Nov 2022 17:11:14 GMT
expires: Wed, 29 Nov 2023 17:11:14 GMT
cache-control: public, max-age=31536000
age: 17014
last-modified: Tue, 26 Apr 2022 16:04:12 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.cuervo.agency/wp-content/uploads/2021/07/anto20210630_133832.jpg
200 OK 19 kB URL HTTP/2 www.cuervo.agency/wp-content/uploads/2021/07/anto20210630_133832.jpg
IP
ASN #51013 WebSupport s.r.o.
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 621x753, components 3\012- data
Hash e2471bab5d1c5441e2f0ddfbaf512896
596763a43005e856bec792af24a165e874e4320f
7051eb896a43b668edf453399b41780da41cb09d9ff61e4dbde13630029d49bf
GET /wp-content/uploads/2021/07/anto20210630_133832.jpg HTTP/1.1
Host: www.cuervo.agency
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.cuervo.agency/
Connection: keep-alive
Cookie: _ga_L3GEJK3VEL=GS1.1.1669758886.1.0.1669758886.0.0.0; _ga=GA1.1.801130594.1669758887; _ga_CFYL7DNXN1=GS1.1.1669758886.1.0.1669758886.0.0.0
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: openresty
date: Tue, 29 Nov 2022 21:54:48 GMT
content-type: image/jpeg
content-length: 18589
last-modified: Thu, 01 Jul 2021 02:58:40 GMT
etag: "489d-5c607042c154f"
accept-ranges: bytes
cache-control: max-age=31536000
expires: Wed, 29 Nov 2023 21:54:48 GMT
referrer-policy: no-referrer-when-downgrade
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash 49eee25f3ccd585a29e34e80cf5bb160
73eca8be91deedd049304862759a3d8084c0b07e
531e5685527861b3ed7e8e3865c5a6a40d3f92f5c9d89df3f385dab72406fb56
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 29 Nov 2022 21:54:48 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.cuervo.agency/wp-content/uploads/2021/07/ca20210630_133832.jpg
200 OK 33 kB URL HTTP/2 www.cuervo.agency/wp-content/uploads/2021/07/ca20210630_133832.jpg
IP
ASN #51013 WebSupport s.r.o.
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 621x753, components 3\012- data
Hash aa7f979debd1a68399852e692694d92e
10c8d63758eac82c1da0023df6ba262d136c687b
1b481fab080b11bc99958c73ab49e71cd41340786e8a7b67e8a718582b95eb68
GET /wp-content/uploads/2021/07/ca20210630_133832.jpg HTTP/1.1
Host: www.cuervo.agency
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.cuervo.agency/
Connection: keep-alive
Cookie: _ga_L3GEJK3VEL=GS1.1.1669758886.1.0.1669758886.0.0.0; _ga=GA1.1.801130594.1669758887; _ga_CFYL7DNXN1=GS1.1.1669758886.1.0.1669758886.0.0.0
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: openresty
date: Tue, 29 Nov 2022 21:54:48 GMT
content-type: image/jpeg
content-length: 32968
last-modified: Fri, 02 Jul 2021 01:28:08 GMT
etag: "80c8-5c619de398fb2"
accept-ranges: bytes
cache-control: max-age=31536000
expires: Wed, 29 Nov 2023 21:54:48 GMT
referrer-policy: no-referrer-when-downgrade
X-Firefox-Spdy: h2
www.cuervo.agency/wp-content/uploads/2021/07/roci20210630_133832.jpg
200 OK 31 kB URL HTTP/2 www.cuervo.agency/wp-content/uploads/2021/07/roci20210630_133832.jpg
IP
ASN #51013 WebSupport s.r.o.
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 621x753, components 3\012- data
Hash 7ec32e93c27d37115b199c16fbb221e5
3f52f80340aa590726940d07a230bb327dda8050
6cbe20ee8d605ffca45e4b9ca27a10f5902169560cc8dc2613523b74851805b0
GET /wp-content/uploads/2021/07/roci20210630_133832.jpg HTTP/1.1
Host: www.cuervo.agency
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.cuervo.agency/
Connection: keep-alive
Cookie: _ga_L3GEJK3VEL=GS1.1.1669758886.1.0.1669758886.0.0.0; _ga=GA1.1.801130594.1669758887; _ga_CFYL7DNXN1=GS1.1.1669758886.1.0.1669758886.0.0.0
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: openresty
date: Tue, 29 Nov 2022 21:54:48 GMT
content-type: image/jpeg
content-length: 30802
last-modified: Thu, 01 Jul 2021 02:45:17 GMT
etag: "7852-5c606d44e4ff3"
accept-ranges: bytes
cache-control: max-age=31536000
expires: Wed, 29 Nov 2023 21:54:48 GMT
referrer-policy: no-referrer-when-downgrade
X-Firefox-Spdy: h2
www.cuervo.agency/wp-content/uploads/2021/07/dai20210630_133832.jpg
200 OK 25 kB URL HTTP/2 www.cuervo.agency/wp-content/uploads/2021/07/dai20210630_133832.jpg
IP
ASN #51013 WebSupport s.r.o.
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 621x753, components 3\012- data
Hash 408d35109ef1571244df4d79a204d7ce
fc6de022c76dd4a198a36acdf66ec144ad58026c
11cbaa53ce286ce4744fe75cbca817bdfbe4f49af33a0d654a4fc7b5ce70d962
GET /wp-content/uploads/2021/07/dai20210630_133832.jpg HTTP/1.1
Host: www.cuervo.agency
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.cuervo.agency/
Connection: keep-alive
Cookie: _ga_L3GEJK3VEL=GS1.1.1669758886.1.0.1669758886.0.0.0; _ga=GA1.1.801130594.1669758887; _ga_CFYL7DNXN1=GS1.1.1669758886.1.0.1669758886.0.0.0
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: openresty
date: Tue, 29 Nov 2022 21:54:48 GMT
content-type: image/jpeg
content-length: 25417
last-modified: Fri, 02 Jul 2021 01:07:40 GMT
etag: "6349-5c6199505da46"
accept-ranges: bytes
cache-control: max-age=31536000
expires: Wed, 29 Nov 2023 21:54:48 GMT
referrer-policy: no-referrer-when-downgrade
X-Firefox-Spdy: h2
www.cuervo.agency/wp-content/plugins/elementor/assets/lib/font-awesome/webfonts/fa-solid-900.woff2
200 OK 78 kB URL HTTP/2 www.cuervo.agency/wp-content/plugins/elementor/assets/lib/font-awesome/webfonts/fa-solid-900.woff2
IP
ASN #51013 WebSupport s.r.o.
File type Web Open Font Format (Version 2), TrueType, length 78196, version 331.-31261\012- data
Hash e8a427e15cc502bef99cfd722b37ea98
a9922842a120a7f1eaced667480c5e185a106d69
d0b4256abed72481585662971262eabee345c19f837af00d7ce24239d3b40eef
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/elementor/assets/lib/font-awesome/webfonts/fa-solid-900.woff2 HTTP/1.1
Host: www.cuervo.agency
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Referer: https://www.cuervo.agency/wp-content/plugins/elementor/assets/lib/font-awesome/css/solid.min.css?ver=5.15.3
Connection: keep-alive
Cookie: _ga_L3GEJK3VEL=GS1.1.1669758886.1.0.1669758886.0.0.0; _ga=GA1.1.801130594.1669758887; _ga_CFYL7DNXN1=GS1.1.1669758886.1.0.1669758886.0.0.0
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: openresty
date: Tue, 29 Nov 2022 21:54:48 GMT
content-type: application/font-woff2
content-length: 78196
last-modified: Sun, 13 Nov 2022 20:01:38 GMT
etag: "13174-5ed5f97427320"
accept-ranges: bytes
cache-control: max-age=31536000
expires: Wed, 29 Nov 2023 21:54:48 GMT
vary: Accept-Encoding
referrer-policy: no-referrer-when-downgrade
X-Firefox-Spdy: h2
www.cuervo.agency/wp-content/plugins/elementor/assets/lib/font-awesome/webfonts/fa-regular-400.woff2
200 OK 13 kB URL HTTP/2 www.cuervo.agency/wp-content/plugins/elementor/assets/lib/font-awesome/webfonts/fa-regular-400.woff2
IP
ASN #51013 WebSupport s.r.o.
File type Web Open Font Format (Version 2), TrueType, length 13276, version 331.-31261\012- data
Hash f0f8230116992e521526097a28f54066
0447c6b10bbf73f97b23dcfd6e6a48510822cb6e
8afc6e5e842baab16010c2ce6fcf48ec4ded8e1579a37c1f1bc027e120d04951
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/elementor/assets/lib/font-awesome/webfonts/fa-regular-400.woff2 HTTP/1.1
Host: www.cuervo.agency
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Referer: https://www.cuervo.agency/wp-content/plugins/elementor/assets/lib/font-awesome/css/regular.min.css?ver=5.15.3
Connection: keep-alive
Cookie: _ga_L3GEJK3VEL=GS1.1.1669758886.1.0.1669758886.0.0.0; _ga=GA1.1.801130594.1669758887; _ga_CFYL7DNXN1=GS1.1.1669758886.1.0.1669758886.0.0.0
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: openresty
date: Tue, 29 Nov 2022 21:54:48 GMT
content-type: application/font-woff2
content-length: 13276
last-modified: Sun, 13 Nov 2022 20:01:38 GMT
etag: "33dc-5ed5f9742637f"
accept-ranges: bytes
cache-control: max-age=31536000
expires: Wed, 29 Nov 2023 21:54:48 GMT
vary: Accept-Encoding
referrer-policy: no-referrer-when-downgrade
X-Firefox-Spdy: h2
fonts.gstatic.com/s/karla/v23/qkBbXvYC6trAT7RVLtw.woff2
200 OK 29 kB URL HTTP/2 fonts.gstatic.com/s/karla/v23/qkBbXvYC6trAT7RVLtw.woff2
IP
File type Web Open Font Format (Version 2), TrueType, length 29224, version 1.0\012- data
Hash 8f31fffe19876c366e578ce8e5d1d1e0
a86aa4b756555a54191fec48f8a42787b856bde3
602af0e0c5fb12b2fa41c8514959d7389f34ab1fcc04a1c1b42d580fee270fbb
GET /s/karla/v23/qkBbXvYC6trAT7RVLtw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.cuervo.agency
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 29224
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 28 Nov 2022 05:33:22 GMT
expires: Tue, 28 Nov 2023 05:33:22 GMT
cache-control: public, max-age=31536000
age: 145286
last-modified: Mon, 11 Jul 2022 20:38:57 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.cuervo.agency/wp-content/plugins/elementor/assets/lib/eicons/fonts/eicons.woff2?5.16.0
200 OK 93 kB URL HTTP/2 www.cuervo.agency/wp-content/plugins/elementor/assets/lib/eicons/fonts/eicons.woff2?5.16.0
IP
ASN #51013 WebSupport s.r.o.
File type Web Open Font Format (Version 2), TrueType, length 93372, version 1.0\012- data
Hash aab0bb3379e0eb7ebc26071db61fbd57
711c8d350c4192c2f1aa7f73551445b89fb4b161
691fa7d17effc7d303eda0ad7e4a1d91b2f375506cfc8a774480cc2b55f156ea
GET /wp-content/plugins/elementor/assets/lib/eicons/fonts/eicons.woff2?5.16.0 HTTP/1.1
Host: www.cuervo.agency
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Referer: https://www.cuervo.agency/wp-content/plugins/elementor/assets/lib/eicons/css/elementor-icons.min.css?ver=5.16.0
Connection: keep-alive
Cookie: _ga_L3GEJK3VEL=GS1.1.1669758886.1.0.1669758886.0.0.0; _ga=GA1.1.801130594.1669758887; _ga_CFYL7DNXN1=GS1.1.1669758886.1.0.1669758886.0.0.0
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: openresty
date: Tue, 29 Nov 2022 21:54:48 GMT
content-type: application/font-woff2
content-length: 93372
last-modified: Sun, 13 Nov 2022 20:01:38 GMT
etag: "16cbc-5ed5f9742d0e0"
accept-ranges: bytes
cache-control: max-age=31536000
expires: Wed, 29 Nov 2023 21:54:48 GMT
vary: Accept-Encoding
referrer-policy: no-referrer-when-downgrade
X-Firefox-Spdy: h2
www.cuervo.agency/wp-content/plugins/elementor/assets/lib/font-awesome/webfonts/fa-brands-400.woff2
200 OK 77 kB URL HTTP/2 www.cuervo.agency/wp-content/plugins/elementor/assets/lib/font-awesome/webfonts/fa-brands-400.woff2
IP
ASN #51013 WebSupport s.r.o.
File type Web Open Font Format (Version 2), TrueType, length 76764, version 331.-31261\012- data
Hash f7307680c7fe85959f3ecf122493ea7d
fce0da592a3e536d6d5df5b50cb513398d8c5161
43c072c16c9ee6d67acdfa6c6d6685ff1e74eb4237b7cc3c1348ab1c108b26af
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/elementor/assets/lib/font-awesome/webfonts/fa-brands-400.woff2 HTTP/1.1
Host: www.cuervo.agency
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Referer: https://www.cuervo.agency/wp-content/plugins/elementor/assets/lib/font-awesome/css/brands.min.css?ver=5.15.3
Connection: keep-alive
Cookie: _ga_L3GEJK3VEL=GS1.1.1669758886.1.0.1669758886.0.0.0; _ga=GA1.1.801130594.1669758887; _ga_CFYL7DNXN1=GS1.1.1669758886.1.0.1669758886.0.0.0
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: openresty
date: Tue, 29 Nov 2022 21:54:48 GMT
content-type: application/font-woff2
content-length: 76764
last-modified: Sun, 13 Nov 2022 20:01:38 GMT
etag: "12bdc-5ed5f97427320"
accept-ranges: bytes
cache-control: max-age=31536000
expires: Wed, 29 Nov 2023 21:54:48 GMT
vary: Accept-Encoding
referrer-policy: no-referrer-when-downgrade
X-Firefox-Spdy: h2
www.cuervo.agency/wp-content/uploads/2021/06/cropped-fullblack-1536x439.png
200 OK 38 kB URL HTTP/2 www.cuervo.agency/wp-content/uploads/2021/06/cropped-fullblack-1536x439.png
IP
ASN #51013 WebSupport s.r.o.
File type PNG image data, 1536 x 439, 8-bit/color RGBA, non-interlaced\012- data
Hash d1bed8887acd6efa2294375bfc898a9c
76fa895febca14e8fd32fb83aa1d95069dfbee7f
f0408649446d16dab541db80b40cad75b96b3634de033bf8e41c99af17bd2e1e
GET /wp-content/uploads/2021/06/cropped-fullblack-1536x439.png HTTP/1.1
Host: www.cuervo.agency
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.cuervo.agency/
Connection: keep-alive
Cookie: _ga_L3GEJK3VEL=GS1.1.1669758886.1.0.1669758886.0.0.0; _ga=GA1.1.801130594.1669758887; _ga_CFYL7DNXN1=GS1.1.1669758886.1.0.1669758886.0.0.0
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: openresty
date: Tue, 29 Nov 2022 21:54:48 GMT
content-type: image/png
content-length: 38149
last-modified: Thu, 01 Jul 2021 13:32:14 GMT
etag: "9505-5c60fddff17fa"
accept-ranges: bytes
cache-control: max-age=31536000
expires: Wed, 29 Nov 2023 21:54:48 GMT
referrer-policy: no-referrer-when-downgrade
X-Firefox-Spdy: h2
fonts.gstatic.com/s/raleway/v28/1Ptug8zYS_SKggPNyC0ITw.woff2
200 OK 46 kB URL HTTP/2 fonts.gstatic.com/s/raleway/v28/1Ptug8zYS_SKggPNyC0ITw.woff2
IP
File type Web Open Font Format (Version 2), TrueType, length 46524, version 1.0\012- data
Hash c1fd378f54921c75e4ae1821e7b8fff6
2ce96e97783b2f154d07f4464ca6f8eb2469f2c1
405ceee1c2f5c31f1cb94ebc63d49a43fddd1471c2c7401a01c7c11bb1d93826
GET /s/raleway/v28/1Ptug8zYS_SKggPNyC0ITw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.cuervo.agency
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 46524
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 28 Nov 2022 21:08:51 GMT
expires: Tue, 28 Nov 2023 21:08:51 GMT
cache-control: public, max-age=31536000
age: 89157
last-modified: Mon, 18 Jul 2022 19:58:01 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash 49eee25f3ccd585a29e34e80cf5bb160
73eca8be91deedd049304862759a3d8084c0b07e
531e5685527861b3ed7e8e3865c5a6a40d3f92f5c9d89df3f385dab72406fb56
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 29 Nov 2022 21:54:48 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.digicert.com/
200 OK 471 B IP
Hash c3c6fcc1a6ec6e438b371359a220d437
646d2c502eb3579d0c394dbdd16ef10f60f43063
5e75d86847b64e661c218e63d1b4b2c4a9ade7506b3b50fce16dd39ebaa5c5fe
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6055
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Tue, 29 Nov 2022 21:54:48 GMT
Last-Modified: Tue, 29 Nov 2022 20:13:53 GMT
Server: ECS (ska/F70A)
X-Cache: HIT
Content-Length: 471
www.cuervo.agency/wp-content/uploads/2021/06/favi.png
200 OK 7.6 kB URL HTTP/2 www.cuervo.agency/wp-content/uploads/2021/06/favi.png
IP
ASN #51013 WebSupport s.r.o.
File type PNG image data, 150 x 150, 8-bit/color RGBA, non-interlaced\012- data
Hash 9681ba812bca2327eeb87b79fab7a3cd
ddce01f800d3f63bf9a372dafd4b34a87c56ddf6
7a692f3122e508f8bc2b5c6ebdfb06970937ef31966587cd294f0fe94e79c8eb
GET /wp-content/uploads/2021/06/favi.png HTTP/1.1
Host: www.cuervo.agency
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.cuervo.agency/
Connection: keep-alive
Cookie: _ga_L3GEJK3VEL=GS1.1.1669758886.1.0.1669758886.0.0.0; _ga=GA1.1.801130594.1669758887; _ga_CFYL7DNXN1=GS1.1.1669758886.1.0.1669758886.0.0.0
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: openresty
date: Tue, 29 Nov 2022 21:54:48 GMT
content-type: image/png
content-length: 7554
last-modified: Sat, 19 Jun 2021 02:42:18 GMT
etag: "1d82-5c51563868349"
accept-ranges: bytes
cache-control: max-age=31536000
expires: Wed, 29 Nov 2023 21:54:48 GMT
referrer-policy: no-referrer-when-downgrade
X-Firefox-Spdy: h2
www.google-analytics.com/analytics.js
200 OK 20 kB URL HTTP/2 www.google-analytics.com/analytics.js
IP
File type ASCII text, with very long lines (1325)
Hash 47e6f374ca946fddd5b59871b325736c
baa9282efc8785e84d247c3bff518eaa45f101c4
16580b5c87c58e5702e411f1888fdef511094e4cd6d62bb47d16291ffb25985e
GET /analytics.js HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.cuervo.agency/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
strict-transport-security: max-age=10886400; includeSubDomains; preload
x-content-type-options: nosniff
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 20039
date: Tue, 29 Nov 2022 20:41:08 GMT
expires: Tue, 29 Nov 2022 22:41:08 GMT
cache-control: public, max-age=7200
age: 4420
last-modified: Tue, 27 Sep 2022 22:01:05 GMT
content-type: text/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
connect.facebook.net/en_US/fbevents.js
200 OK 27 kB URL HTTP/2 connect.facebook.net/en_US/fbevents.js
IP
File type ASCII text, with very long lines (64348)
Hash 44ecaa3c2a4929a40141edc4540aaf84
f29a573182333b2500d41bfc389d6c5232dfb348
6589fe14578dedd4df678a909afadd7e5bc7f57c7e3e24518a7f5faac7383396
GET /en_US/fbevents.js HTTP/1.1
Host: connect.facebook.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.cuervo.agency/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
vary: Accept-Encoding
content-encoding: gzip
content-type: application/x-javascript; charset=utf-8
content-security-policy: default-src facebook.net *.facebook.net fbcdn.net *.fbcdn.net fbsbx.com *.fbsbx.com data: blob: 'self';script-src *.fbcdn.net *.facebook.net 'unsafe-inline' 'unsafe-eval' blob: data: 'self';style-src data: blob: 'unsafe-inline' facebook.net *.facebook.net fbcdn.net *.fbcdn.net fbsbx.com *.fbsbx.com;connect-src *.fbcdn.net *.facebook.net wss://*.fbcdn.net attachment.fbsbx.com blob: 'self';block-all-mixed-content;upgrade-insecure-requests;report-uri https://www.facebook.com/csp/reporting/?m=c&minimize=0;
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
pragma: public
cache-control: public, max-age=1200
expires: Sat, 01 Jan 2000 00:00:00 GMT
x-content-type-options: nosniff
x-xss-protection: 0
x-frame-options: DENY
strict-transport-security: max-age=31536000; preload; includeSubDomains
x-fb-debug: wLkdcAJi0bgTkdNJFYsiBnVlLcpVEktsO+d8k2HiOJRDx8TLII/hNNLEy5iuhh2JRENYqrbIBbWdmsMx4ikzxQ==
priority: u=3,i
content-length: 27340
x-fb-trip-id: 1904183273
date: Tue, 29 Nov 2022 21:54:48 GMT
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
ocsp.digicert.com/
200 OK 471 B IP
Hash c3c6fcc1a6ec6e438b371359a220d437
646d2c502eb3579d0c394dbdd16ef10f60f43063
5e75d86847b64e661c218e63d1b4b2c4a9ade7506b3b50fce16dd39ebaa5c5fe
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6055
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Tue, 29 Nov 2022 21:54:48 GMT
Last-Modified: Tue, 29 Nov 2022 20:13:53 GMT
Server: ECS (ska/F70A)
X-Cache: HIT
Content-Length: 471
s.w.org/images/core/emoji/14.0.0/svg/1f60a.svg
200 OK 552 B URL HTTP/2 s.w.org/images/core/emoji/14.0.0/svg/1f60a.svg
IP
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (1055), with no line terminators
Hash d232a69f788f03b9d4ec05b8446f178c
92471504c8632c1c4c2860b2d07b6d0a99fc9789
6dce1fe61a1107af31ec511fd45e950e1e8a2fe87e8d77ff2d84516c66bc165e
GET /images/core/emoji/14.0.0/svg/1f60a.svg HTTP/1.1
Host: s.w.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.cuervo.agency/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Tue, 29 Nov 2022 21:54:48 GMT
content-type: image/svg+xml
last-modified: Tue, 12 Apr 2022 03:50:38 GMT
vary: Accept-Encoding
x-frame-options: SAMEORIGIN
content-encoding: br
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
access-control-allow-methods: GET, HEAD
access-control-allow-origin: *
x-nc: HIT arn 2
x-content-type-options: nosniff
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash f1cfa609ebdf236e2f3e3ff25dd05caf
c8117b0187d4d9021ed1a42907bd93d24ed4ebf0
7a2761aa36168d4f2c9034486777f5588aaf0fa1f7d1e55006db7320259303b3
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 29 Nov 2022 21:54:49 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
googleads.g.doubleclick.net/pagead/viewthroughconversion/319114401/?random=1669758888082&cv=11&fst=1669758888082&bg=ffffff&guid=ON&async=1>m=2wgb90&u_w=1280&u_h=1024&hn=www.googleadservices.com&frm=0&url=https%3A%2F%2Fwww.cuervo.agency%2F&tiba=Home%20-%20Cuervo&auid=1405267147.1669758888&rfmt=3&fmt=4
200 OK 856 B URL HTTP/2 googleads.g.doubleclick.net/pagead/viewthroughconversion/319114401/?random=1669758888082&cv=11&fst=1669758888082&bg=ffffff&guid=ON&async=1>m=2wgb90&u_w=1280&u_h=1024&hn=www.googleadservices.com&frm=0&url=https%3A%2F%2Fwww.cuervo.agency%2F&tiba=Home%20-%20Cuervo&auid=1405267147.1669758888&rfmt=3&fmt=4
IP
File type ASCII text, with very long lines (1775), with no line terminators
Hash 42f4e00d5201489d5b274997dbc33874
b009a1177a363200add3e37e04c65ab448d1c74d
feb85f6ec4c8be98057dc646706b2703060a962f8c04538f1721d92d87e5feb7
GET /pagead/viewthroughconversion/319114401/?random=1669758888082&cv=11&fst=1669758888082&bg=ffffff&guid=ON&async=1>m=2wgb90&u_w=1280&u_h=1024&hn=www.googleadservices.com&frm=0&url=https%3A%2F%2Fwww.cuervo.agency%2F&tiba=Home%20-%20Cuervo&auid=1405267147.1669758888&rfmt=3&fmt=4 HTTP/1.1
Host: googleads.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.cuervo.agency/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Tue, 29 Nov 2022 21:54:49 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
content-type: text/javascript; charset=UTF-8
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: br
server: cafe
content-length: 856
x-xss-protection: 0
set-cookie: test_cookie=CheckForPermission; expires=Tue, 29-Nov-2022 22:09:49 GMT; path=/; domain=.doubleclick.net; Secure; SameSite=none
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash f1cfa609ebdf236e2f3e3ff25dd05caf
c8117b0187d4d9021ed1a42907bd93d24ed4ebf0
7a2761aa36168d4f2c9034486777f5588aaf0fa1f7d1e55006db7320259303b3
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 29 Nov 2022 21:54:49 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
stats.g.doubleclick.net/j/collect?t=dc&aip=1&_r=3&v=1&_v=j98&tid=UA-206699242-1&cid=801130594.1669758887&jid=948176117&gjid=964927756&_gid=1725513981.1669758888&_u=YADAAUAAAAAAACAAI~&z=247297965
200 OK 4 B URL HTTP/2 stats.g.doubleclick.net/j/collect?t=dc&aip=1&_r=3&v=1&_v=j98&tid=UA-206699242-1&cid=801130594.1669758887&jid=948176117&gjid=964927756&_gid=1725513981.1669758888&_u=YADAAUAAAAAAACAAI~&z=247297965
IP
File type ASCII text, with no line terminators
Hash 48c0473b7821185d937e685216e2168b
3743e47f8a429a5e87b86cb582d78940733d9d2e
570c4d4674fd20602189c548c145ba1f8ac34bc2e4599a71471969028aa1e25a
POST /j/collect?t=dc&aip=1&_r=3&v=1&_v=j98&tid=UA-206699242-1&cid=801130594.1669758887&jid=948176117&gjid=964927756&_gid=1725513981.1669758888&_u=YADAAUAAAAAAACAAI~&z=247297965 HTTP/1.1
Host: stats.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 0
Origin: https://www.cuervo.agency
Connection: keep-alive
Referer: https://www.cuervo.agency/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: https://www.cuervo.agency
strict-transport-security: max-age=10886400; includeSubDomains; preload
date: Tue, 29 Nov 2022 21:54:49 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
last-modified: Sun, 17 May 1998 03:00:00 GMT
access-control-allow-credentials: true
x-content-type-options: nosniff
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 4
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
stats.g.doubleclick.net/j/collect?t=dc&aip=1&_r=3&v=1&_v=j98&tid=UA-206699242-1&cid=801130594.1669758887&jid=235358659&gjid=385844295&_gid=1725513981.1669758888&_u=aADAAUABAAAAACAAI~&z=1736441993
200 OK 4 B URL HTTP/2 stats.g.doubleclick.net/j/collect?t=dc&aip=1&_r=3&v=1&_v=j98&tid=UA-206699242-1&cid=801130594.1669758887&jid=235358659&gjid=385844295&_gid=1725513981.1669758888&_u=aADAAUABAAAAACAAI~&z=1736441993
IP
File type ASCII text, with no line terminators
Hash 48c0473b7821185d937e685216e2168b
3743e47f8a429a5e87b86cb582d78940733d9d2e
570c4d4674fd20602189c548c145ba1f8ac34bc2e4599a71471969028aa1e25a
POST /j/collect?t=dc&aip=1&_r=3&v=1&_v=j98&tid=UA-206699242-1&cid=801130594.1669758887&jid=235358659&gjid=385844295&_gid=1725513981.1669758888&_u=aADAAUABAAAAACAAI~&z=1736441993 HTTP/1.1
Host: stats.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 0
Origin: https://www.cuervo.agency
Connection: keep-alive
Referer: https://www.cuervo.agency/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: https://www.cuervo.agency
strict-transport-security: max-age=10886400; includeSubDomains; preload
date: Tue, 29 Nov 2022 21:54:49 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
last-modified: Sun, 17 May 1998 03:00:00 GMT
access-control-allow-credentials: true
x-content-type-options: nosniff
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 4
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash a0fe20d41a043db700a84924cd9793f3
c0da481fef6cd00558f6e68b074acb34bef8292f
03caeb65ab9e22f6d6fe0d344d327950d20ee9ed144e2da0e5e062943a03fc56
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 29 Nov 2022 21:54:49 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash a0fe20d41a043db700a84924cd9793f3
c0da481fef6cd00558f6e68b074acb34bef8292f
03caeb65ab9e22f6d6fe0d344d327950d20ee9ed144e2da0e5e062943a03fc56
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 29 Nov 2022 21:54:49 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
200 OK 471 B IP
Hash 798c6088f000b3a2464e23a92271c24d
2a53b3d3bd4a9104c79595f664276db5b32b9bad
dcccfc9bb4da634286d08301fcf23be3ae26bb429b35349fb72dde530fdb3ae4
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 29 Nov 2022 21:54:49 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
200 OK 471 B IP
Hash 798c6088f000b3a2464e23a92271c24d
2a53b3d3bd4a9104c79595f664276db5b32b9bad
dcccfc9bb4da634286d08301fcf23be3ae26bb429b35349fb72dde530fdb3ae4
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 29 Nov 2022 21:54:49 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.google.com/ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j98&tid=UA-206699242-1&cid=801130594.1669758887&jid=948176117&_u=YADAAUAAAAAAACAAI~&z=1829552846
200 OK 42 B URL HTTP/2 www.google.com/ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j98&tid=UA-206699242-1&cid=801130594.1669758887&jid=948176117&_u=YADAAUAAAAAAACAAI~&z=1829552846
IP
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j98&tid=UA-206699242-1&cid=801130594.1669758887&jid=948176117&_u=YADAAUAAAAAAACAAI~&z=1829552846 HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.cuervo.agency/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Tue, 29 Nov 2022 21:54:49 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.google.no/ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j98&tid=UA-206699242-1&cid=801130594.1669758887&jid=235358659&_u=aADAAUABAAAAACAAI~&z=2091370508
200 OK 42 B URL HTTP/2 www.google.no/ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j98&tid=UA-206699242-1&cid=801130594.1669758887&jid=235358659&_u=aADAAUABAAAAACAAI~&z=2091370508
IP
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j98&tid=UA-206699242-1&cid=801130594.1669758887&jid=235358659&_u=aADAAUABAAAAACAAI~&z=2091370508 HTTP/1.1
Host: www.google.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.cuervo.agency/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Tue, 29 Nov 2022 21:54:49 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.google.com/ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j98&tid=UA-206699242-1&cid=801130594.1669758887&jid=235358659&_u=aADAAUABAAAAACAAI~&z=2091370508
200 OK 42 B URL HTTP/2 www.google.com/ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j98&tid=UA-206699242-1&cid=801130594.1669758887&jid=235358659&_u=aADAAUABAAAAACAAI~&z=2091370508
IP
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j98&tid=UA-206699242-1&cid=801130594.1669758887&jid=235358659&_u=aADAAUABAAAAACAAI~&z=2091370508 HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.cuervo.agency/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Tue, 29 Nov 2022 21:54:49 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.google.no/ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j98&tid=UA-206699242-1&cid=801130594.1669758887&jid=948176117&_u=YADAAUAAAAAAACAAI~&z=1829552846
200 OK 42 B URL HTTP/2 www.google.no/ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j98&tid=UA-206699242-1&cid=801130594.1669758887&jid=948176117&_u=YADAAUAAAAAAACAAI~&z=1829552846
IP
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j98&tid=UA-206699242-1&cid=801130594.1669758887&jid=948176117&_u=YADAAUAAAAAAACAAI~&z=1829552846 HTTP/1.1
Host: www.google.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.cuervo.agency/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Tue, 29 Nov 2022 21:54:49 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 471 B IP
Hash 798c6088f000b3a2464e23a92271c24d
2a53b3d3bd4a9104c79595f664276db5b32b9bad
dcccfc9bb4da634286d08301fcf23be3ae26bb429b35349fb72dde530fdb3ae4
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 29 Nov 2022 21:54:49 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash abd55ecd24d357a9f02612558f723a90
6a1e6963864f0b53ddc6205d35225e6cf0bcbeec
195fa531e0462be58d5c62ebbe6060e147c94bdb1d38ff46c341c74e0ab2671a
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 29 Nov 2022 21:54:49 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
chat.godixital.com/
200 OK 18 B IP
File type ASCII text, with no line terminators
Hash dd0eb13d00581888902ce0ace50d17ae
af582edb0e2b991d6b121fe70c69b730d32b9b49
063e17caf4907979b0c1ceba09219004dbd977d3223c3980d34b8cfed49e4dbc
POST / HTTP/1.1
Host: chat.godixital.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-www-form-urlencoded; charset=UTF-8
Content-Length: 162
Origin: https://www.cuervo.agency
Connection: keep-alive
Referer: https://www.cuervo.agency/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Tue, 29 Nov 2022 21:54:49 GMT
Server: Apache/2.4.6 (CentOS) OpenSSL/1.0.2k-fips PHP/7.0.33
X-Powered-By: PHP/7.0.33
Set-Cookie: PHPSESSID=aobed9lnd0lvk74plm03t04lf2; path=/
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate
Pragma: no-cache
Access-Control-Allow-Origin: https://www.cuervo.agency
Access-Control-Allow-Credentials: true
Content-Length: 18
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/html; charset=UTF-8
www.facebook.com/tr/?id=1376743766116628&ev=PageView&dl=https%3A%2F%2Fwww.cuervo.agency%2F&rl=&if=false&ts=1669758888952&sw=1280&sh=1024&v=2.9.89&r=stable&ec=0&o=30&fbp=fb.1.1669758888951.1322037208&it=1669758888032&coo=false&rqm=GET
200 OK 0 B URL HTTP/2 www.facebook.com/tr/?id=1376743766116628&ev=PageView&dl=https%3A%2F%2Fwww.cuervo.agency%2F&rl=&if=false&ts=1669758888952&sw=1280&sh=1024&v=2.9.89&r=stable&ec=0&o=30&fbp=fb.1.1669758888951.1322037208&it=1669758888032&coo=false&rqm=GET
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /tr/?id=1376743766116628&ev=PageView&dl=https%3A%2F%2Fwww.cuervo.agency%2F&rl=&if=false&ts=1669758888952&sw=1280&sh=1024&v=2.9.89&r=stable&ec=0&o=30&fbp=fb.1.1669758888951.1322037208&it=1669758888032&coo=false&rqm=GET HTTP/1.1
Host: www.facebook.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.cuervo.agency/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/plain
access-control-allow-origin:
access-control-allow-credentials: true
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
content-length: 0
server: proxygen-bolt
alt-svc: h3=":443"; ma=86400
date: Tue, 29 Nov 2022 21:54:50 GMT
X-Firefox-Spdy: h2
www.cuervo.agency/wp-content/uploads/2021/07/successful-business-team.jpg
200 OK 591 kB URL HTTP/2 www.cuervo.agency/wp-content/uploads/2021/07/successful-business-team.jpg
IP
ASN #51013 WebSupport s.r.o.
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, progressive, precision 8, 2000x1335, components 3\012- data
Size 591 kB (591369 bytes)
Hash 204449cfbc98609e0490a63b075a0c06
45b8b955867800efbf993224352f77d7d19b6966
fc7aadacb69118049fefb276b75d142e396286ce607f5c1fcf19ae9fef4beff5
GET /wp-content/uploads/2021/07/successful-business-team.jpg HTTP/1.1
Host: www.cuervo.agency
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.cuervo.agency/
Connection: keep-alive
Cookie: _ga_L3GEJK3VEL=GS1.1.1669758886.1.0.1669758886.0.0.0; _ga=GA1.2.801130594.1669758887; _ga_CFYL7DNXN1=GS1.1.1669758886.1.0.1669758886.0.0.0; _gid=GA1.2.1725513981.1669758888; _gat_gtag_UA_206699242_1=1; _gcl_au=1.1.1405267147.1669758888; _gat_UA-206699242-1=1; LANDED_URL=https://www.cuervo.agency/; IS_LANDING=false; chat_thread=1669758895369bSSCzu1LjDKJaYFXe7E; _fbp=fb.1.1669758888951.1322037208
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: openresty
date: Tue, 29 Nov 2022 21:54:50 GMT
content-type: image/jpeg
content-length: 591369
last-modified: Sat, 03 Jul 2021 18:34:05 GMT
etag: "90609-5c63c512dab21"
accept-ranges: bytes
cache-control: max-age=31536000
expires: Wed, 29 Nov 2023 21:54:50 GMT
referrer-policy: no-referrer-when-downgrade
X-Firefox-Spdy: h2
leads.godixital.com/api/whatsapp_button/get.php
200 OK 39 B URL HTTP/1.1 leads.godixital.com/api/whatsapp_button/get.php
IP
File type JSON data\012- , ASCII text, with no line terminators
Hash 30bafb6284692f19e2acd248bbcfd52f
d3ec1dd9b14427d09fc9e5a2a32aad3a0e79c231
2b259ab6556834e08a2d71baf088a6fd471fe0238393aeb4480c06bf175643f5
POST /api/whatsapp_button/get.php HTTP/1.1
Host: leads.godixital.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-www-form-urlencoded; charset=UTF-8
Content-Length: 92
Origin: https://www.cuervo.agency
Connection: keep-alive
Referer: https://www.cuervo.agency/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Tue, 29 Nov 2022 21:54:50 GMT
Server: Apache/2.4.6 (CentOS) OpenSSL/1.0.2k-fips PHP/7.0.33
X-Powered-By: PHP/7.0.33
Access-Control-Allow-Origin: *
Access-Control-Allow-Credentials: true
Content-Length: 39
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/html; charset=UTF-8
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Faee65fe0-e370-42e3-be13-065dcb4d76e1.jpeg
200 OK 4.9 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Faee65fe0-e370-42e3-be13-065dcb4d76e1.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 748366131b496e41f92e15ce7d1cd0e0
a6c7a59a6599ece2cf0e76c778c920dea94ff469
b9ea2d419742c67e2b14536379e7383524f22645b1af988d5bd72154647fc602
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Faee65fe0-e370-42e3-be13-065dcb4d76e1.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-length: 4862
x-amzn-requestid: 17c6fb35-2dc8-45e4-a226-a74ba94323b3
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cCvYlHXxIAMFcpg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-637dc5d0-5a0f4f667a3747166eb2b338;Sampled=0
x-amzn-remapped-date: Wed, 23 Nov 2022 07:03:44 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: XDdox2fz8xWMEWiTlHtpk_EeS6NUmzBRyWO3fTe47FfJOOvIehST1Q==
via: 1.1 98e601970ea59f4d5f56a752787ff9fc.cloudfront.net (CloudFront), 1.1 6a9b42e38e76b7d4a4044ebe0e0eca08.cloudfront.net (CloudFront), 1.1 google
date: Tue, 29 Nov 2022 09:09:20 GMT
age: 45931
etag: "a6c7a59a6599ece2cf0e76c778c920dea94ff469"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
fonts.googleapis.com/css?family=Roboto%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic%7CRoboto+Slab%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic%7CLato%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic%7CRaleway%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic%7CKarla%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic&display=auto&ver=6.0.3
200 OK 0 B URL HTTP/2 fonts.googleapis.com/css?family=Roboto%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic%7CRoboto+Slab%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic%7CLato%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic%7CRaleway%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic%7CKarla%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic&display=auto&ver=6.0.3
IP
GET /css?family=Roboto%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic%7CRoboto+Slab%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic%7CLato%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic%7CRaleway%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic%7CKarla%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic&display=auto&ver=6.0.3 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.cuervo.agency/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Tue, 29 Nov 2022 21:54:47 GMT
date: Tue, 29 Nov 2022 21:54:47 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.cuervo.agency/wp-content/uploads/2021/06/64752247_10219694635780999_4286623424379355136_o-1.jpg
200 OK 0 B URL HTTP/2 www.cuervo.agency/wp-content/uploads/2021/06/64752247_10219694635780999_4286623424379355136_o-1.jpg
IP
ASN #51013 WebSupport s.r.o.
GET /wp-content/uploads/2021/06/64752247_10219694635780999_4286623424379355136_o-1.jpg HTTP/1.1
Host: www.cuervo.agency
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.cuervo.agency/
Connection: keep-alive
Cookie: _ga_L3GEJK3VEL=GS1.1.1669758886.1.0.1669758886.0.0.0; _ga=GA1.1.801130594.1669758887; _ga_CFYL7DNXN1=GS1.1.1669758886.1.0.1669758886.0.0.0
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: openresty
date: Tue, 29 Nov 2022 21:54:48 GMT
content-type: image/jpeg
content-length: 352967
last-modified: Sat, 26 Jun 2021 02:34:34 GMT
etag: "562c7-5c5a218bfb87c"
accept-ranges: bytes
cache-control: max-age=31536000
expires: Wed, 29 Nov 2023 21:54:48 GMT
referrer-policy: no-referrer-when-downgrade
X-Firefox-Spdy: h2
www.cuervo.agency/wp-content/uploads/2021/06/marketing-team-.jpg
200 OK 0 B URL HTTP/2 www.cuervo.agency/wp-content/uploads/2021/06/marketing-team-.jpg
IP
ASN #51013 WebSupport s.r.o.
GET /wp-content/uploads/2021/06/marketing-team-.jpg HTTP/1.1
Host: www.cuervo.agency
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.cuervo.agency/
Connection: keep-alive
Cookie: _ga_L3GEJK3VEL=GS1.1.1669758886.1.0.1669758886.0.0.0; _ga=GA1.1.801130594.1669758887; _ga_CFYL7DNXN1=GS1.1.1669758886.1.0.1669758886.0.0.0
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: openresty
date: Tue, 29 Nov 2022 21:54:48 GMT
content-type: image/jpeg
content-length: 315949
last-modified: Sun, 20 Jun 2021 01:25:25 GMT
etag: "4d22d-5c5286e6a0134"
accept-ranges: bytes
cache-control: max-age=31536000
expires: Wed, 29 Nov 2023 21:54:48 GMT
referrer-policy: no-referrer-when-downgrade
X-Firefox-Spdy: h2
s.w.org/images/core/emoji/14.0.0/svg/1f609.svg
200 OK 0 B URL HTTP/2 s.w.org/images/core/emoji/14.0.0/svg/1f609.svg
IP
GET /images/core/emoji/14.0.0/svg/1f609.svg HTTP/1.1
Host: s.w.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.cuervo.agency/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Tue, 29 Nov 2022 21:54:48 GMT
content-type: image/svg+xml
last-modified: Tue, 12 Apr 2022 03:50:38 GMT
vary: Accept-Encoding
x-frame-options: SAMEORIGIN
content-encoding: br
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
access-control-allow-methods: GET, HEAD
access-control-allow-origin: *
x-nc: HIT arn 2
x-content-type-options: nosniff
X-Firefox-Spdy: h2
37.9.175.133
216.58.207.228
31.13.72.12
93.184.220.29
23.36.77.32
0.0.0.0