r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash 2258cd6b877a3aca8f4c84074e65ac4b
4e46c70941f8e497e8afc8d078644e7f81761a1c
faac4e0d123f2112b58953c104ea746cd53047fc1ada0ef5d669feecf78ddfff
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "FAAC4E0D123F2112B58953C104EA746CD53047FC1ADA0EF5D669FEECF78DDFFF"
Last-Modified: Sat, 14 Jan 2023 19:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6512
Expires: Tue, 17 Jan 2023 05:04:50 GMT
Date: Tue, 17 Jan 2023 03:16:18 GMT
Connection: keep-alive
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash bb0c8d0984a1f09a012961a54cda03c6
1a8ad450a0241554ee4fc7d02fac7b83529e60f6
eee3ca879a67cc25ea89cb83de9521eea1b82845705c3e82169d4787ecb7dd3a
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "EEE3CA879A67CC25EA89CB83DE9521EEA1B82845705C3E82169D4787ECB7DD3A"
Last-Modified: Mon, 16 Jan 2023 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6473
Expires: Tue, 17 Jan 2023 05:04:11 GMT
Date: Tue, 17 Jan 2023 03:16:18 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
35.241.9.150200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash ff250d3ef3fa45322bf05039a0122a9f
b3e7a2c383bce1bab807dbe1a03c375258b51f1d
d07f109a96e0ae6ec7b1d46ce8761b3f06fe845769ce65d69e053dd40aa561ba
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Retry-After, Alert, Content-Type, Content-Length, Backoff
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Tue, 17 Jan 2023 02:49:12 GMT
content-type: application/json
age: 1626
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
cubagoa.com/pages/find_room
162.215.226.3301 Moved Permanently 1 B URL HTTP/1.1 cubagoa.com/pages/find_room
IP 162.215.226.3:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type very short file (no magic)
Hash 68b329da9893e34099c7d8ad5cb9c940
adc83b19e793491b1c6ea0fd8b46cd9f32e592fc
01ba4719c80b6fe911b091a7c05124b64eeece964e09c058ef8f9805daca546b
Analyzer Verdict Alert fortinet Malware
GET /pages/find_room HTTP/1.1
Host: cubagoa.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Server: nginx
Date: Tue, 17 Jan 2023 03:16:18 GMT
Content-Type: text/html; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
X-Frame-Options: GOFORIT
Location: https://www.cubagoa.com
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash d6e2abd68203014e8e24d4a9e20e980a
5edbbb1a36083d5077b90b82e7aa10049e90c5d6
88cf8dae194a5e92a8c36a4c54ae71a609eaaed6e99d3986b3834c40d2fceeaa
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "88CF8DAE194A5E92A8C36A4C54AE71A609EAAED6E99D3986B3834C40D2FCEEAA"
Last-Modified: Sun, 15 Jan 2023 11:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2480
Expires: Tue, 17 Jan 2023 03:57:38 GMT
Date: Tue, 17 Jan 2023 03:16:18 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash 7b922915ebf1fa3639b333f994c74f24
144a3f80b98fd0652d4614f24cf6cbbee40f8938
adbb3e06df0e870f5c7a9cb81e8979d4e92735853d75c9b779c06470d4db5d9c
GET /chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: EhO5cpfgrdKNCJ+a+9UwucUS/XqNT/APfLTI5aFfYRbD7ezXTzp5POxa/+oTFPyrlHSvqtr8z/ivK8a8DyoX8g==
x-amz-request-id: FWDZMCEP9CZ0Y4S1
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Tue, 17 Jan 2023 02:44:50 GMT
age: 1888
last-modified: Mon, 09 Jan 2023 18:04:21 GMT
etag: "7b922915ebf1fa3639b333f994c74f24"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Tue, 17 Jan 2023 03:16:18 GMT
content-type: application/json
content-length: 12
access-control-allow-credentials: true
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
access-control-expose-headers: content-type
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
35.241.9.150200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Retry-After, Expires, Last-Modified, Alert, Content-Type, Content-Length, ETag, Pragma, Cache-Control, Backoff
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Tue, 17 Jan 2023 02:17:25 GMT
age: 3534
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash d03545e1fc5a8876441094039811aac5
99fcc840f3516298625c528e9b408132f7fcbb9c
166fa7c7bb716b2cd02a47884ee00df31030dfb4b2a6fdae7b59b19f87739123
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4861
Cache-Control: max-age=112295
Content-Type: application/ocsp-response
Date: Tue, 17 Jan 2023 03:16:19 GMT
Etag: "63c513ad-1d7"
Expires: Wed, 18 Jan 2023 10:27:54 GMT
Last-Modified: Mon, 16 Jan 2023 09:06:53 GMT
Server: ECS (ska/F71B)
X-Cache: HIT
Content-Length: 471
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash df24d8df70e00f95229120cdacdc1554
76f9c0cfbd121d0f8daafc50ba5b19675b97f397
b821c4354a5988de463438f055545a670a23b5e32f61c0f8c51fcea8f06d2102
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "B821C4354A5988DE463438F055545A670A23B5E32F61C0F8C51FCEA8F06D2102"
Last-Modified: Sun, 15 Jan 2023 22:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21600
Expires: Tue, 17 Jan 2023 09:16:19 GMT
Date: Tue, 17 Jan 2023 03:16:19 GMT
Connection: keep-alive
push.services.mozilla.com/
54.149.156.115101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 54.149.156.115:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: XoSE7Flq/LbEcYbaKK7aig==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: //z+9LkFGwbAC5MdWZl3WGFNW24=
d2wvwvig0d1mx7.cloudfront.net/data/global/media/js/jquery.bxslider-v2.min.js
54.230.245.86200 OK 5.4 kB URL HTTP/1.1 d2wvwvig0d1mx7.cloudfront.net/data/global/media/js/jquery.bxslider-v2.min.js
IP 54.230.245.86:0
File type ASCII text, with very long lines (19017)
Hash 711eaf70f4df8488f8c0c693d3e09399
b4d8945812cf8647a87360eb7f25c2527f74bfea
390570fac3095b803af0b640b5be50d5d42aed63a77e9058261f9446c3431328
GET /data/global/media/js/jquery.bxslider-v2.min.js HTTP/1.1
Host: d2wvwvig0d1mx7.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.cubagoa.com
Connection: keep-alive
Referer: https://www.cubagoa.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: text/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Date: Sun, 25 Dec 2022 06:39:33 GMT
Server: Apache
Strict-Transport-Security: max-age=15768000
Last-Modified: Tue, 09 Jun 2020 05:27:13 GMT
ETag: W/"4b7f-5a79ffad5553b"
Cache-Control: max-age=2592000
Expires: Tue, 24 Jan 2023 06:39:33 GMT
X-XSS-Protection: 1; mode=block
X-Frame-Options: sameorigin
Access-Control-Allow-Origin: *
Content-Encoding: gzip
Vary: Accept-Encoding
X-Cache: Hit from cloudfront
Via: 1.1 c26775cc34c23943f6f5cfc9a3da9b4a.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: 8bvMx-1gHblAq4LGCuVieSUx_7SoQZajKQfZy-5ifnmuWi7FgVt6CA==
Age: 1975007
d2wvwvig0d1mx7.cloudfront.net/data/global/media/css/bx_styles/bx_styles-v2.css
54.230.245.86200 OK 411 B URL HTTP/1.1 d2wvwvig0d1mx7.cloudfront.net/data/global/media/css/bx_styles/bx_styles-v2.css
IP 54.230.245.86:0
File type ASCII text, with very long lines (1082), with no line terminators
Hash c882bc039fc85480c970a4541752bdf3
00ef7ca25e4e49bc670a37a0db7dd016f7dcc237
c0ed0feaab436dcb8420b7b15537f5a4ee0bd612690bb79220c293612b17a226
GET /data/global/media/css/bx_styles/bx_styles-v2.css HTTP/1.1
Host: d2wvwvig0d1mx7.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.cubagoa.com
Connection: keep-alive
Referer: https://www.cubagoa.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: text/css
Content-Length: 411
Connection: keep-alive
Date: Sun, 01 Jan 2023 20:38:02 GMT
Server: Apache
Strict-Transport-Security: max-age=15768000
Last-Modified: Tue, 09 Jun 2020 05:26:58 GMT
Accept-Ranges: bytes
Cache-Control: max-age=2592000
Expires: Tue, 31 Jan 2023 20:38:02 GMT
Content-Encoding: gzip
X-XSS-Protection: 1; mode=block
X-Frame-Options: sameorigin
Access-Control-Allow-Origin: *
ETag: "43a-5a79ff9f2d679-gzip"
Vary: Accept-Encoding
X-Cache: Hit from cloudfront
Via: 1.1 ab09332bca1a3bd382d2e408f65b98d2.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: 6pjn-q7EcrUv9_NuHzwsUtg4c1QB_BePeFXxvHx89zsv8W9dPFPJFw==
Age: 1319898
d2wvwvig0d1mx7.cloudfront.net/data/global/media/js/int-tel-input/js/intlTelInput.min.js
54.230.245.86200 OK 10 kB URL HTTP/1.1 d2wvwvig0d1mx7.cloudfront.net/data/global/media/js/int-tel-input/js/intlTelInput.min.js
IP 54.230.245.86:0
File type Unicode text, UTF-8 text, with very long lines (26530)
Hash 8d745bf7ec8b962bc656cbcff4849f8d
b7a66a575289f0386ba7edd6e882a474796a6dc0
d3d42e529dff8f5bfa03d99035a48215ecdea6d102c9fbfebe2010aeb093bc8a
GET /data/global/media/js/int-tel-input/js/intlTelInput.min.js HTTP/1.1
Host: d2wvwvig0d1mx7.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.cubagoa.com
Connection: keep-alive
Referer: https://www.cubagoa.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: text/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Date: Sat, 07 Jan 2023 09:59:44 GMT
Server: Apache
Strict-Transport-Security: max-age=15768000
Last-Modified: Tue, 09 Jun 2020 05:27:13 GMT
ETag: W/"6ad1-5a79ffacf69a6"
Cache-Control: max-age=2592000
Expires: Mon, 06 Feb 2023 09:59:44 GMT
X-XSS-Protection: 1; mode=block
X-Frame-Options: sameorigin
Access-Control-Allow-Origin: *
Content-Encoding: gzip
Vary: Accept-Encoding
X-Cache: Hit from cloudfront
Via: 1.1 784cb0c259a6d79800d037bda4e7de86.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: SK8ap7Wp9DkhcGeeiFWA7_DHmgsq6myV5AUA9IWuVb6MisGNpyyVFg==
Age: 839796
d2wvwvig0d1mx7.cloudfront.net/data/global/media/css/chosen.min.css
54.230.245.86200 OK 2.1 kB URL HTTP/1.1 d2wvwvig0d1mx7.cloudfront.net/data/global/media/css/chosen.min.css
IP 54.230.245.86:0
File type ASCII text, with very long lines (10685)
Hash 3b3faf0d139beb121aba10b682d5d4a3
03491bc5e8c0f32110649f58cefa4faa2e82c6a8
156d358422b3f20cc94df271dfab549ea088d548efb3481ed5676890a6b6fb0c
GET /data/global/media/css/chosen.min.css HTTP/1.1
Host: d2wvwvig0d1mx7.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.cubagoa.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: text/css
Content-Length: 2116
Connection: keep-alive
Date: Fri, 13 Jan 2023 06:40:15 GMT
Server: Apache
Strict-Transport-Security: max-age=15768000
Last-Modified: Tue, 09 Jun 2020 05:26:58 GMT
Accept-Ranges: bytes
Cache-Control: max-age=2592000
Expires: Sun, 12 Feb 2023 06:40:15 GMT
Content-Encoding: gzip
X-XSS-Protection: 1; mode=block
X-Frame-Options: sameorigin
Access-Control-Allow-Origin: *
ETag: "2a38-5a79ff9f3e017-gzip"
Vary: Accept-Encoding
X-Cache: Hit from cloudfront
Via: 1.1 5bcfe2deda0bdbc6bade0af9b61602ca.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: nHnlxT1bfACJ5UYINaP5k9FDaAXXWQII_W8nIB-jpjsJ04b-K3X5rg==
Age: 333365
d2wvwvig0d1mx7.cloudfront.net/static/min/core.min.css
54.230.245.86200 OK 24 kB URL HTTP/1.1 d2wvwvig0d1mx7.cloudfront.net/static/min/core.min.css
IP 54.230.245.86:0
File type ASCII text, with very long lines (65536), with no line terminators
Hash 7da993b0328ffbf17ccf7169b7d24ef9
996ac88dd633a8c719abe72a7e8fd14d43c9152f
ffbf46b44abcdf8c852199c267ba11f318245c3f0bcbc17d27e0358fc108dbd9
GET /static/min/core.min.css HTTP/1.1
Host: d2wvwvig0d1mx7.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.cubagoa.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: text/css
Content-Length: 23843
Connection: keep-alive
Date: Sun, 08 Jan 2023 03:24:07 GMT
Server: Apache
Strict-Transport-Security: max-age=15768000
Last-Modified: Tue, 27 Sep 2022 06:23:46 GMT
ETag: "1f4f4-5e9a2afc7b815-gzip"
Accept-Ranges: bytes
Cache-Control: max-age=2592000
Expires: Tue, 07 Feb 2023 03:24:07 GMT
Content-Encoding: gzip
X-XSS-Protection: 1; mode=block
X-Frame-Options: sameorigin
Access-Control-Allow-Origin: *
Vary: Accept-Encoding
X-Cache: Hit from cloudfront
Via: 1.1 0c35b89cb607eddb1b7cc5d6ada865d6.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: Rn741YqDgLrSfThHMvBCXOlvOJzajsohRxOzBaYcoarnr3avUnScQw==
Age: 777133
d14ty28lkqz1hw.cloudfront.net/data/org/17347/theme/26461/css/site.css
54.230.245.87200 OK 11 kB URL HTTP/1.1 d14ty28lkqz1hw.cloudfront.net/data/org/17347/theme/26461/css/site.css
IP 54.230.245.87:0
File type assembler source, Unicode text, UTF-8 text, with very long lines (315)
Hash 7119845c5ba43250c71ff849e3bfe208
a1b296c8c8e24404e7ffbcd7f321f3b0b6b6abcd
72d8e5ccf9917d966c8d3371b71ccfe641048c2ceffee8c03561297ec9e72dc1
GET /data/org/17347/theme/26461/css/site.css HTTP/1.1
Host: d14ty28lkqz1hw.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.cubagoa.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: text/css
Transfer-Encoding: chunked
Connection: keep-alive
Date: Mon, 16 Jan 2023 06:21:08 GMT
Last-Modified: Fri, 30 Apr 2021 04:46:00 GMT
ETag: W/"3de417dc467190b68cfec066be0549e5"
x-amz-meta-md5-hash: 3de417dc467190b68cfec066be0549e5
Server: AmazonS3
Content-Encoding: gzip
Vary: Accept-Encoding
X-Cache: Hit from cloudfront
Via: 1.1 9037b7743a833da13439f0d4e2619b52.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: 4I_ghlPqbkgwNSdyvWTXrOK7cOAdeSJYWW2sFctI7f3RzqYdpNSh9A==
Age: 75313
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 1b2e51abfd12507b00ebd8b7afda6308
4d3d5fa49e007714dd37da7da25d9d490d05bd0a
85a04d4cf987fcc2d087ab815a8d373e164a2adf2bf478e7a5c1fae3e109ba26
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 17 Jan 2023 03:16:20 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
d14ty28lkqz1hw.cloudfront.net/data/org/17347/theme/26461/css/page-types.css
54.230.245.87200 OK 1.8 kB URL HTTP/1.1 d14ty28lkqz1hw.cloudfront.net/data/org/17347/theme/26461/css/page-types.css
IP 54.230.245.87:0
Hash 26a44e02cb76bd02ca2a64ff7aea801b
ba33f693be092b88747ec68f5e8911c4b07d3364
3cb448b55c5381bd71ad5960d4a7786c45cc0c25a94723a7ed17129d29025e4a
GET /data/org/17347/theme/26461/css/page-types.css HTTP/1.1
Host: d14ty28lkqz1hw.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.cubagoa.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: text/css
Transfer-Encoding: chunked
Connection: keep-alive
Date: Mon, 16 Jan 2023 06:21:08 GMT
Last-Modified: Fri, 30 Apr 2021 04:46:00 GMT
ETag: W/"b59b347ee2c19ee87d77dee90919d910"
x-amz-meta-md5-hash: b59b347ee2c19ee87d77dee90919d910
Server: AmazonS3
Content-Encoding: gzip
Vary: Accept-Encoding
X-Cache: Hit from cloudfront
Via: 1.1 4bbc14b5834fc74ccd249b954b43a08c.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: NWyfXvKFpd2IQibm-dNOlx8Qq7GSNqBt05GMlHLXLc4YK--NqvoIpA==
Age: 75313
d2wvwvig0d1mx7.cloudfront.net/data/global/media/js/chosen.jquery.min.js
54.230.245.86200 OK 6.3 kB URL HTTP/1.1 d2wvwvig0d1mx7.cloudfront.net/data/global/media/js/chosen.jquery.min.js
IP 54.230.245.86:0
File type ASCII text, with very long lines (26845)
Hash 48278c85f59b2e3dbaa640d1ba28947f
77a1718491058cc0408b9182cd4cd7ab9197ed09
def492b958ef208caf6c73eddbe40feb7a1fd1e95d4c4b38357817ca6b3727f6
GET /data/global/media/js/chosen.jquery.min.js HTTP/1.1
Host: d2wvwvig0d1mx7.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.cubagoa.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: text/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Server: Apache
Strict-Transport-Security: max-age=15768000
Last-Modified: Tue, 09 Jun 2020 05:27:12 GMT
X-XSS-Protection: 1; mode=block
X-Frame-Options: sameorigin
Access-Control-Allow-Origin: *
Content-Encoding: gzip
Date: Sat, 14 Jan 2023 23:29:29 GMT
Expires: Mon, 13 Feb 2023 23:29:29 GMT
Cache-Control: max-age=2592000
ETag: W/"6956-5a79ffacbcfcc"
Vary: Accept-Encoding
X-Cache: Hit from cloudfront
Via: 1.1 227a1815a1677b9cf6dd587e443000b8.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: 3l7bM9bMVsxp3fJZIVVUukYjSLYURW3BYqH6kjf_8jqKV4uQZ0gHJw==
Age: 186411
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 6f4934ef37f04950c15313f2cdc6902d
3ed5b8439867115a06edaf046472ee8d271c33ea
3fb58a81be10df91f59e3f6ceed7d607f77409087515cf675ff0d098c482c574
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 17 Jan 2023 03:16:20 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
d2wvwvig0d1mx7.cloudfront.net/static/min/core.min.js
54.230.245.86200 OK 65 kB URL HTTP/1.1 d2wvwvig0d1mx7.cloudfront.net/static/min/core.min.js
IP 54.230.245.86:0
File type HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (65482)
Hash a8422faaa16fbf52e2c720fd1ddee335
64081af72f2bcce336a4fe4afc993a5a896b16a4
ee1bf30f8786ef19753b2e66e14b8556bc3920f869747aad7216b7f6eef2ae03
GET /static/min/core.min.js HTTP/1.1
Host: d2wvwvig0d1mx7.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.cubagoa.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: text/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Date: Wed, 28 Dec 2022 00:34:08 GMT
Server: Apache
Strict-Transport-Security: max-age=15768000
Last-Modified: Tue, 05 Jul 2022 07:44:06 GMT
ETag: W/"31ab6-5e30a04614ee9"
Cache-Control: max-age=2592000
Expires: Fri, 27 Jan 2023 00:34:08 GMT
X-XSS-Protection: 1; mode=block
X-Frame-Options: sameorigin
Access-Control-Allow-Origin: *
Content-Encoding: gzip
Vary: Accept-Encoding
X-Cache: Hit from cloudfront
Via: 1.1 60929bddfcfe8b3a510a9502ad6d8742.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: id4wni883mm0rlRrcbbny2Dnt0Wq_qFbb4eoyk9V_M6MA8eG50PuXg==
Age: 1737732
www.cubagoa.com/
13.229.118.205200 OK 13 kB IP 13.229.118.205:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (883), with CRLF, CR, LF line terminators
Hash 26bac12761f31fe3132b633fe765ca63
fb3161d42cce524a51bf1fa883f014daf3b97905
9369ff6a475a15afb6e1d532356b349b5293fa30b426babf8288a15bd00b0152
Analyzer Verdict Alert fortinet Malware
GET / HTTP/1.1
Host: www.cubagoa.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/1.1 200 OK
Date: Tue, 17 Jan 2023 03:16:19 GMT
Server: Apache
Strict-Transport-Security: max-age=15768000
Set-Cookie: JSESSIONID=8B0CB5DD264408C42B8582C47EA932E6.cfusion; Path=/; Secure; HttpOnly
CFAUTHORIZATION_ap=""; Max-Age=0; Expires=Thu, 01-Jan-1970 12:00:00 GMT; Path=/; HttpOnly
PS-REFERER=""; Max-Age=86400; Expires=Wed, 18-Jan-2023 03:16:19 GMT; Path=/
CART-MEMBER-ID=6946C556%2DE132%2D7D82%2DE6B0F31E1965BD0D; Expires=Thu, 09-Jan-2053 03:16:19 GMT; Path=/
Vary: Accept-Encoding
Content-Encoding: gzip
X-XSS-Protection: 1; mode=block
X-Frame-Options: sameorigin
Access-Control-Allow-Origin: *
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: text/html;charset=UTF-8
d14ty28lkqz1hw.cloudfront.net/data/org/17347/theme/26461/css/jquery.fancybox.min.css
54.230.245.87200 OK 1.1 kB URL HTTP/1.1 d14ty28lkqz1hw.cloudfront.net/data/org/17347/theme/26461/css/jquery.fancybox.min.css
IP 54.230.245.87:0
File type ASCII text, with very long lines (3463)
Hash 5ce0285c3e04a3342f9fb31c2e89cdaa
bb9593d015d8d346b19b9a8b46cb855379437940
1917d5e9d5d29a23ea0b16a0f842de216a8a02e467eab639f646e2b8105b2a43
GET /data/org/17347/theme/26461/css/jquery.fancybox.min.css HTTP/1.1
Host: d14ty28lkqz1hw.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.cubagoa.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: text/css
Transfer-Encoding: chunked
Connection: keep-alive
Date: Mon, 16 Jan 2023 06:21:09 GMT
Last-Modified: Fri, 30 Apr 2021 04:46:00 GMT
ETag: W/"4a0a5c8764533529a691608773c3ec54"
x-amz-meta-md5-hash: 4a0a5c8764533529a691608773c3ec54
Server: AmazonS3
Content-Encoding: gzip
Vary: Accept-Encoding
X-Cache: Hit from cloudfront
Via: 1.1 4bbc14b5834fc74ccd249b954b43a08c.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: gleTnEY-hRqaeBQjiabZ30eorpaq9ILi7wvnMKqlvh9mh8KCaSunFA==
Age: 75312
d14ty28lkqz1hw.cloudfront.net/data/org/17347/theme/26461/js/easyResponsiveTabs.js
54.230.245.87200 OK 890 B URL HTTP/1.1 d14ty28lkqz1hw.cloudfront.net/data/org/17347/theme/26461/js/easyResponsiveTabs.js
IP 54.230.245.87:0
File type ASCII text, with very long lines (2797)
Hash adb11404cada8452e1ed1fc54d4dc35a
728e2f7b9a0077b8fa7ef1dffb726f1b0c891aba
9cdcd04c7f2f7ad57fb006d6f244b9a4593b8d50d6f1ce8c4a41ea899beb6fbb
GET /data/org/17347/theme/26461/js/easyResponsiveTabs.js HTTP/1.1
Host: d14ty28lkqz1hw.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.cubagoa.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: text/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Date: Mon, 16 Jan 2023 06:21:09 GMT
Last-Modified: Fri, 30 Apr 2021 04:46:00 GMT
ETag: W/"c7dca7fd2585fe0557709c9402b83f2d"
x-amz-meta-md5-hash: c7dca7fd2585fe0557709c9402b83f2d
Server: AmazonS3
Content-Encoding: gzip
Vary: Accept-Encoding
X-Cache: Hit from cloudfront
Via: 1.1 9037b7743a833da13439f0d4e2619b52.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: 92gjWbMYfCGZnhyZ-IlVrLcNhTbT7QaRhfAjZ10gqVYAW-Q5b4cr0w==
Age: 75312
d14ty28lkqz1hw.cloudfront.net/data/org/17347/theme/26461/css/foundation.min.css
54.230.245.87200 OK 12 kB URL HTTP/1.1 d14ty28lkqz1hw.cloudfront.net/data/org/17347/theme/26461/css/foundation.min.css
IP 54.230.245.87:0
File type ASCII text, with very long lines (62265)
Hash bd7a2c7f8c0584ba11cbb5c20e0d3bb5
d25f998f4444dc3cfda184856e64cc025f4682cc
fcbd2edb6a0f4584038ce18bba71f5669f8241d7fa4835e9e2cd803e0fb23c5c
GET /data/org/17347/theme/26461/css/foundation.min.css HTTP/1.1
Host: d14ty28lkqz1hw.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.cubagoa.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: text/css
Transfer-Encoding: chunked
Connection: keep-alive
Date: Mon, 16 Jan 2023 06:21:08 GMT
Last-Modified: Fri, 30 Apr 2021 04:46:00 GMT
ETag: W/"9e19ad9f775cfe130aa23c78c63ff5ba"
x-amz-meta-md5-hash: 9e19ad9f775cfe130aa23c78c63ff5ba
Server: AmazonS3
Content-Encoding: gzip
Vary: Accept-Encoding
X-Cache: Hit from cloudfront
Via: 1.1 4bbc14b5834fc74ccd249b954b43a08c.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: q6QfYWu5GxHH-iH3AYE8J2Fr98JaVU8yVWp4bXJf3R0T6CkDUYwqyg==
Age: 75313
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 6f4934ef37f04950c15313f2cdc6902d
3ed5b8439867115a06edaf046472ee8d271c33ea
3fb58a81be10df91f59e3f6ceed7d607f77409087515cf675ff0d098c482c574
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 17 Jan 2023 03:16:20 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 6b70b334388cc7c3c2afbf53572e9dca
c4c5b6f3cf3dc8b3cbadcb45fd578ecfcb406eb1
d231560628e5028fb74b132e6de1562cecbc1fc4ab4fc96c8fce638beb8ddbc0
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 17 Jan 2023 03:16:20 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.googletagmanager.com/gtag/js?id=UA-146777666-1
142.250.74.168200 OK 45 kB URL HTTP/2 www.googletagmanager.com/gtag/js?id=UA-146777666-1
IP 142.250.74.168:0
File type ASCII text, with very long lines (1921)
Hash ac3852b7d7102055d9331b07d7f7060d
8a348cacf7f3cf2e0339dd9c725d12a0677d769c
a2da3ec1a5c338c05ff8344a693776649afeb9c41941cc4374ee2d923d003ae1
GET /gtag/js?id=UA-146777666-1 HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.cubagoa.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Tue, 17 Jan 2023 03:16:20 GMT
expires: Tue, 17 Jan 2023 03:16:20 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 45135
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 1b2e51abfd12507b00ebd8b7afda6308
4d3d5fa49e007714dd37da7da25d9d490d05bd0a
85a04d4cf987fcc2d087ab815a8d373e164a2adf2bf478e7a5c1fae3e109ba26
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 17 Jan 2023 03:16:20 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.googletagmanager.com/gtag/js?id=G-K1R8CG27B6
142.250.74.168200 OK 80 kB URL HTTP/2 www.googletagmanager.com/gtag/js?id=G-K1R8CG27B6
IP 142.250.74.168:0
File type ASCII text, with very long lines (29230)
Hash cb80f0c5ed48cc09cc28dbb8b93f3cd0
f571083a5321f28a90fdd55e02f7cfbeae910caf
c7e374160a056ddedb38d51403515c78e1d16c6b2297fd050bf36967bcf199b9
GET /gtag/js?id=G-K1R8CG27B6 HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.cubagoa.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Tue, 17 Jan 2023 03:16:20 GMT
expires: Tue, 17 Jan 2023 03:16:20 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 80154
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.google.com/recaptcha/api.js?render=6LcUNJwbAAAAAMCqcFR9kiInoog2G10LD0rVaNIj
142.250.74.164200 OK 585 B URL HTTP/2 www.google.com/recaptcha/api.js?render=6LcUNJwbAAAAAMCqcFR9kiInoog2G10LD0rVaNIj
IP 142.250.74.164:0
File type ASCII text, with very long lines (884), with no line terminators
Hash 2f3c5227e717e14daca3e429e1f035df
7157207b49159f51aeebf156ccde0ae541659d55
ad674c84a50a1c8ff4f6a76bfd3dec537f4e4e250b64455b7fbc286f74095c02
GET /recaptcha/api.js?render=6LcUNJwbAAAAAMCqcFR9kiInoog2G10LD0rVaNIj HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.cubagoa.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
expires: Tue, 17 Jan 2023 03:16:20 GMT
date: Tue, 17 Jan 2023 03:16:20 GMT
cache-control: private, max-age=300
content-type: text/javascript; charset=UTF-8
cross-origin-resource-policy: cross-origin
content-encoding: gzip
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
content-security-policy: frame-ancestors 'self'
x-xss-protection: 1; mode=block
content-length: 585
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 6f4934ef37f04950c15313f2cdc6902d
3ed5b8439867115a06edaf046472ee8d271c33ea
3fb58a81be10df91f59e3f6ceed7d607f77409087515cf675ff0d098c482c574
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 17 Jan 2023 03:16:20 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 6a0c99efce2ba7294ef4b88e9810c411
90e325963c1355d4c2ab6500689850a2df4c419f
957f138460650b9cecf197fb62ec2b92fae42eb5d9d431a348f8f518470612c8
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 17 Jan 2023 03:16:20 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.cubagoa.com/i18nfront.js
13.229.118.205200 OK 26 kB URL HTTP/1.1 www.cubagoa.com/i18nfront.js
IP 13.229.118.205:0
File type ASCII text, with very long lines (25654)
Hash 5ca70a872b4e29c5c76c1424ee2c9530
d4b3324270786334d9d7e9c97fb2d015912f54b7
110c3ebdf1ca23919478b68a0ccf163c2cef5890ff0f1840f7ac53468847d460
Analyzer Verdict Alert fortinet Malware
GET /i18nfront.js HTTP/1.1
Host: www.cubagoa.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.cubagoa.com/
Cookie: JSESSIONID=8B0CB5DD264408C42B8582C47EA932E6.cfusion; PS-REFERER=""; CART-MEMBER-ID=6946C556%2DE132%2D7D82%2DE6B0F31E1965BD0D
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Tue, 17 Jan 2023 03:16:20 GMT
Server: Apache
Strict-Transport-Security: max-age=15768000
Set-Cookie: CFAUTHORIZATION_ap=""; Max-Age=0; Expires=Thu, 01-Jan-1970 12:00:00 GMT; Path=/; HttpOnly
PS-REFERER=https%3A%2F%2Fwww%2Ecubagoa%2Ecom%2F; Expires=Wed, 18-Jan-2023 03:16:20 GMT; Path=/
X-XSS-Protection: 1; mode=block
X-Frame-Options: sameorigin
Access-Control-Allow-Origin: *
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: application/javascript;charset=UTF-8
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash 871ced6cfe919499937981d7534580e9
2e8c0fb97592bd7868be241ade707d1b38e49c34
35a05f202611c548fd0768c5f1b3d749a0dd50ade93e6df29940547480c5ec91
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "35A05F202611C548FD0768C5F1B3D749A0DD50ADE93E6DF29940547480C5EC91"
Last-Modified: Sun, 15 Jan 2023 01:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=13007
Expires: Tue, 17 Jan 2023 06:53:07 GMT
Date: Tue, 17 Jan 2023 03:16:20 GMT
Connection: keep-alive
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash 871ced6cfe919499937981d7534580e9
2e8c0fb97592bd7868be241ade707d1b38e49c34
35a05f202611c548fd0768c5f1b3d749a0dd50ade93e6df29940547480c5ec91
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "35A05F202611C548FD0768C5F1B3D749A0DD50ADE93E6DF29940547480C5EC91"
Last-Modified: Sun, 15 Jan 2023 01:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=13007
Expires: Tue, 17 Jan 2023 06:53:07 GMT
Date: Tue, 17 Jan 2023 03:16:20 GMT
Connection: keep-alive
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash 871ced6cfe919499937981d7534580e9
2e8c0fb97592bd7868be241ade707d1b38e49c34
35a05f202611c548fd0768c5f1b3d749a0dd50ade93e6df29940547480c5ec91
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "35A05F202611C548FD0768C5F1B3D749A0DD50ADE93E6DF29940547480C5EC91"
Last-Modified: Sun, 15 Jan 2023 01:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=13007
Expires: Tue, 17 Jan 2023 06:53:07 GMT
Date: Tue, 17 Jan 2023 03:16:20 GMT
Connection: keep-alive
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash 871ced6cfe919499937981d7534580e9
2e8c0fb97592bd7868be241ade707d1b38e49c34
35a05f202611c548fd0768c5f1b3d749a0dd50ade93e6df29940547480c5ec91
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "35A05F202611C548FD0768C5F1B3D749A0DD50ADE93E6DF29940547480C5EC91"
Last-Modified: Sun, 15 Jan 2023 01:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=13007
Expires: Tue, 17 Jan 2023 06:53:07 GMT
Date: Tue, 17 Jan 2023 03:16:20 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 6b6a65d2536cc8f99e68793ae265b595
f65e75f8419bd83e26f49def7fa2604db5f77b4d
94b31f7663e4917e8e97079202ef9fa340766f1ebfc2601360618d947f7dabc9
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "94B31F7663E4917E8E97079202EF9FA340766F1EBFC2601360618D947F7DABC9"
Last-Modified: Sun, 15 Jan 2023 01:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=13027
Expires: Tue, 17 Jan 2023 06:53:27 GMT
Date: Tue, 17 Jan 2023 03:16:20 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F36b86ae5-6ee8-42e7-bcb0-c54e39e4fbd6.jpeg
34.120.237.76200 OK 4.7 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F36b86ae5-6ee8-42e7-bcb0-c54e39e4fbd6.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash c8077a04cfa8a88823a83c3481fe33eb
534966ca691706e724af5a9891859e1ee3c10b78
b8df497111b6e7876f53bd2433d9a0c5153f8b84b1ccd91dc5eb9bfdbe4579aa
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F36b86ae5-6ee8-42e7-bcb0-c54e39e4fbd6.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 4736
x-amzn-requestid: 4f03413a-fd17-4b48-ba36-e1580ee5c19a
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: e2tm-HLroAMFTMg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63c5c2f9-08fc93b860c346db68f4a83c;Sampled=0
x-amzn-remapped-date: Mon, 16 Jan 2023 21:34:49 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: o5RDE78dy_8WnKnE3Mof3y7XIERvuO4VI2r6paywDMzjE8LdFqksfA==
via: 1.1 1cc6ed0d2d3dd9529ce544f9dfe61a52.cloudfront.net (CloudFront), 1.1 b2f9564ebf9c745cc2ceae96d434977e.cloudfront.net (CloudFront), 1.1 google
date: Mon, 16 Jan 2023 21:56:26 GMT
age: 19194
etag: "534966ca691706e724af5a9891859e1ee3c10b78"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1d1490db-aa8a-4724-a608-8c0c03f98b35.jpeg
34.120.237.76200 OK 11 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1d1490db-aa8a-4724-a608-8c0c03f98b35.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 805a998e9a6fc452c152ab9542b6d0cd
0bd57ea7809abfa4136506f565ac8ba45c936406
b24e0b322cacda63e43582e713cb38d80914f6b82c735307188a2ddd9829338f
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1d1490db-aa8a-4724-a608-8c0c03f98b35.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10736
x-amzn-requestid: 78c83dbb-f641-4ece-bd8d-ce9d524f100d
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: e2tm5FLvoAMFn1Q=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63c5c2f8-73b261b87d3eb7b709161fdf;Sampled=0
x-amzn-remapped-date: Mon, 16 Jan 2023 21:34:48 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: hUS-ajMYSYKXI2jsZJApvgUgr0lnbrm02BXZ6rsPS5h0daBcIRtgEw==
via: 1.1 000f4a2f631bace380a0afa747a82482.cloudfront.net (CloudFront), 1.1 e66162aafd55b64ba1478ff7105150fa.cloudfront.net (CloudFront), 1.1 google
date: Mon, 16 Jan 2023 21:46:15 GMT
age: 19805
etag: "0bd57ea7809abfa4136506f565ac8ba45c936406"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F20129690-ba2c-4d31-9d15-963cf6e4f66e.jpeg
34.120.237.76200 OK 8.6 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F20129690-ba2c-4d31-9d15-963cf6e4f66e.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash fbadbf308733e10efcf26a97bd5f86c7
a51e7e889bfdab10c59624a0fb1c301054e2d3d8
e87c014b465f1deed4316d7e7581ab63329523e68f9ca3e47c180cf14f43d9aa
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F20129690-ba2c-4d31-9d15-963cf6e4f66e.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8610
x-amzn-requestid: 14c3776b-05ba-4367-93f1-b887b7e1bd10
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: e2tm7FlGoAMFuKw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63c5c2f8-125017a12c4b83130a70b836;Sampled=0
x-amzn-remapped-date: Mon, 16 Jan 2023 21:34:48 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: mqgt51FSXFokAtn5znzBQsaXsbqHbLHuJQvqhFlRxFFDFy36peimeg==
via: 1.1 efe54e8b68e074d39b2ecd249f85100a.cloudfront.net (CloudFront), 1.1 7e87179efaa9e3c316bd3d3a74cfded8.cloudfront.net (CloudFront), 1.1 google
date: Mon, 16 Jan 2023 21:46:15 GMT
age: 19805
etag: "a51e7e889bfdab10c59624a0fb1c301054e2d3d8"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa4bea3a8-a37c-4400-a7fe-c935f3758bbc.jpeg
34.120.237.76200 OK 7.2 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa4bea3a8-a37c-4400-a7fe-c935f3758bbc.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 21f47639234f79c560d44fc1d42d6aca
56cbcaed180dd893cde9dcf3721f6b86158aca9b
a2fa6d73aee8fc0c2ef001de097b1f0e262fcfcda31f97a05912c41eea1c946b
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa4bea3a8-a37c-4400-a7fe-c935f3758bbc.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7209
x-amzn-requestid: c3b968c0-5b08-45bf-9f58-03a1fb574e8f
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: e2tm5FNqIAMFo6g=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63c5c2f8-28d7f6dc7fea377b3c33282b;Sampled=0
x-amzn-remapped-date: Mon, 16 Jan 2023 21:34:48 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: pQ54ou2q6Dt1SH_7zOCVwNnlKdYxbdRnAO5qICIRJ6SzjHJAPmt5GA==
via: 1.1 c34da255183aa208dd1c722ff211f9b2.cloudfront.net (CloudFront), 1.1 7eb3b782ab09047ce0d11ee03763894c.cloudfront.net (CloudFront), 1.1 google
date: Mon, 16 Jan 2023 21:56:51 GMT
age: 19169
etag: "56cbcaed180dd893cde9dcf3721f6b86158aca9b"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F04b94725-ff4a-4bda-82a9-4efa8d9c4276.jpeg
34.120.237.76200 OK 15 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F04b94725-ff4a-4bda-82a9-4efa8d9c4276.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash fefb1f12a78ad92ed309da2c54984a3c
caf58bf6276e226a20a0d0cf6fc3d422f922eb28
baf6596c635254885f32e423cbc5667694754243f01109cbdbeb54c337b16bc2
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F04b94725-ff4a-4bda-82a9-4efa8d9c4276.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 14703
x-amzn-requestid: bdc14ffc-297a-4046-9a4f-26d454f6f9be
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: e2trpGZkoAMFhZA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63c5c317-58908dd71980be98200e8f6c;Sampled=0
x-amzn-remapped-date: Mon, 16 Jan 2023 21:35:19 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: J674keESjH0GJBC8A6WnCmsHdxNtHNu5pbsv7EwSFSFMcxVCrZeFrw==
via: 1.1 e5af640ced3aa8764b82c4bc3f7af38e.cloudfront.net (CloudFront), 1.1 36810aa1793ee589dc8c194860296078.cloudfront.net (CloudFront), 1.1 google
date: Tue, 17 Jan 2023 02:43:40 GMT
age: 1960
etag: "caf58bf6276e226a20a0d0cf6fc3d422f922eb28"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4757d4fe-f057-41bb-b2e2-4ed4877c7af4.jpeg
34.120.237.76200 OK 7.9 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4757d4fe-f057-41bb-b2e2-4ed4877c7af4.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash a5d0a29e6fe3ce0fb4a9237dd5917778
6919dcbbcdcc241672358cc5733ef064180c928a
6d0d71c35e1ca331ee5f4794bc74747f7c38f2d46863d983377bef526f7ca356
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4757d4fe-f057-41bb-b2e2-4ed4877c7af4.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7873
x-amzn-requestid: 8a2a267d-8062-4755-8b1d-1e715ee9c413
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: exco-GL0oAMF-uQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63c3a7d2-567e30c7063b71217f8175fc;Sampled=0
x-amzn-remapped-date: Sun, 15 Jan 2023 07:14:26 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: aoUE55XskHX9ihSEFJY9vIOTN6xuMDsTer_pUNRMRBE-r-3r34ozfQ==
via: 1.1 41e349e25dc4bc856d0e5d2c162428a0.cloudfront.net (CloudFront), 1.1 6a9b42e38e76b7d4a4044ebe0e0eca08.cloudfront.net (CloudFront), 1.1 google
date: Mon, 16 Jan 2023 22:05:01 GMT
age: 18679
etag: "6919dcbbcdcc241672358cc5733ef064180c928a"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
d14ty28lkqz1hw.cloudfront.net/data/org/17347/theme/26461/css/skeleton.css
54.230.245.87200 OK 1.7 kB URL HTTP/1.1 d14ty28lkqz1hw.cloudfront.net/data/org/17347/theme/26461/css/skeleton.css
IP 54.230.245.87:0
File type ASCII text, with very long lines (6229)
Hash 8e7aed7e06ec7e17f8849032784c2656
4c8bb8788b3b6564416110cb35b6a4964e650520
58dc1dd477e6b28d73a8dfafc17637d4ad16fa504165adbfef361696465c3d01
GET /data/org/17347/theme/26461/css/skeleton.css HTTP/1.1
Host: d14ty28lkqz1hw.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.cubagoa.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: text/css
Transfer-Encoding: chunked
Connection: keep-alive
Date: Tue, 17 Jan 2023 03:16:21 GMT
Last-Modified: Fri, 30 Apr 2021 04:46:00 GMT
ETag: W/"ae96e054baef09966d7c10daa17acf34"
x-amz-meta-md5-hash: ae96e054baef09966d7c10daa17acf34
Server: AmazonS3
Content-Encoding: gzip
Vary: Accept-Encoding
X-Cache: Miss from cloudfront
Via: 1.1 fc5e625db631bc657fc73f189d53fa14.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: 9goALNSSslgSeWHYdPT_1AUzfThC1bXO8646N6ym9lJXmLm5JAL-Cg==
d14ty28lkqz1hw.cloudfront.net/data/org/17347/theme/26461/js/moment.min.js
54.230.245.87200 OK 8.8 kB URL HTTP/1.1 d14ty28lkqz1hw.cloudfront.net/data/org/17347/theme/26461/js/moment.min.js
IP 54.230.245.87:0
File type ASCII text, with very long lines (24368)
Hash e48da91d898bc24e9c0e393937cb9535
5823bd9fb3920091cb7d6ffca9b16bd9525662de
a58601ce5dcfdc519cead1632cbfa0c280155b9698bea83cfce9c7db68a72271
GET /data/org/17347/theme/26461/js/moment.min.js HTTP/1.1
Host: d14ty28lkqz1hw.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.cubagoa.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: text/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Fri, 30 Apr 2021 04:46:00 GMT
x-amz-meta-md5-hash: f5b5e2278327f661dd47c34b1f72cbd6
Server: AmazonS3
Content-Encoding: gzip
Date: Tue, 17 Jan 2023 03:16:21 GMT
ETag: W/"f5b5e2278327f661dd47c34b1f72cbd6"
Vary: Accept-Encoding
X-Cache: RefreshHit from cloudfront
Via: 1.1 92c4bb210eab82a152000047d3609a02.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: vSCtIX1fdh8AJ8AR1yVv8h52XSpCcUFHVb4gEd5k7LAjzhp4Vt0GwQ==
d14ty28lkqz1hw.cloudfront.net/data/org/17347/theme/26461/js/common.js
54.230.245.87200 OK 5.0 kB URL HTTP/1.1 d14ty28lkqz1hw.cloudfront.net/data/org/17347/theme/26461/js/common.js
IP 54.230.245.87:0
File type HTML document, ASCII text
Hash a2420bdfcd2886b6f7e471f85350ffac
faf127557af3732b9b37fbe1e6d4793ad915278c
305f8084b784b8c3ae4c91ad338ece97ee931493f66cb9ca2376efac004b5050
GET /data/org/17347/theme/26461/js/common.js HTTP/1.1
Host: d14ty28lkqz1hw.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.cubagoa.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: text/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Fri, 30 Apr 2021 04:46:00 GMT
x-amz-meta-md5-hash: a42bb60782f853867a78c3c50af199d1
Server: AmazonS3
Content-Encoding: gzip
Date: Tue, 17 Jan 2023 03:16:21 GMT
ETag: W/"a42bb60782f853867a78c3c50af199d1"
Vary: Accept-Encoding
X-Cache: RefreshHit from cloudfront
Via: 1.1 4bbc14b5834fc74ccd249b954b43a08c.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: -KMRXbMVfZ77b0uDIsPu9uxn6k5OLen0litArEDRzoRrinBtcKTzKA==
d14ty28lkqz1hw.cloudfront.net/data/org/17347/theme/26461/js/jquery.fancybox.js
54.230.245.87200 OK 9.4 kB URL HTTP/1.1 d14ty28lkqz1hw.cloudfront.net/data/org/17347/theme/26461/js/jquery.fancybox.js
IP 54.230.245.87:0
File type ASCII text, with very long lines (24974)
Hash 27ac5bd3e47e8b6342f82168b0d5866f
8f119b40ff5fcd5db75d1baf0bace83b6cb8c476
0becd8fc5b6b68482ebef1d2ac0c9667bf40b9540551522c4019ef5bb5e44b0e
GET /data/org/17347/theme/26461/js/jquery.fancybox.js HTTP/1.1
Host: d14ty28lkqz1hw.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.cubagoa.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: text/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Fri, 30 Apr 2021 04:46:00 GMT
x-amz-meta-md5-hash: 582192ba28e0ce2e96e96e930a734419
Server: AmazonS3
Content-Encoding: gzip
Date: Tue, 17 Jan 2023 03:16:21 GMT
ETag: W/"582192ba28e0ce2e96e96e930a734419"
Vary: Accept-Encoding
X-Cache: RefreshHit from cloudfront
Via: 1.1 4bbc14b5834fc74ccd249b954b43a08c.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: qx4qkhLIL-zfpskwkyp9Kro6pq-4vceIWpjfte57wKab5ESrfPsvww==
d14ty28lkqz1hw.cloudfront.net/data/org/17347/theme/26461/css/foundation-icons.css
54.230.245.87200 OK 3.6 kB URL HTTP/1.1 d14ty28lkqz1hw.cloudfront.net/data/org/17347/theme/26461/css/foundation-icons.css
IP 54.230.245.87:0
Hash 503c1ba3fb0e8555822da0e160a58568
4fdcfc6e62319be8b11fa259e7a97f1c4178037f
c7884b2e04d9f61c92e7a792d3b496e39f0e3eddb7ed38c29625b3d7c4046e9f
GET /data/org/17347/theme/26461/css/foundation-icons.css HTTP/1.1
Host: d14ty28lkqz1hw.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.cubagoa.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: text/css
Transfer-Encoding: chunked
Connection: keep-alive
Date: Tue, 17 Jan 2023 03:16:21 GMT
Last-Modified: Thu, 11 Jul 2019 05:49:25 GMT
ETag: W/"b6d3c27c2448d7a4770242dcd59ba1ff"
x-amz-meta-md5-hash: b6d3c27c2448d7a4770242dcd59ba1ff
Server: AmazonS3
Content-Encoding: gzip
Vary: Accept-Encoding
X-Cache: Miss from cloudfront
Via: 1.1 b053873243f91b1bb6dc406ce0c67db4.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: BF90fKSHSg1JowmmtLOpzYD9_IQ6zQySD4Ks1V4xU4LO8K1ODrwRBQ==
www.cubagoa.com/data/global/media/static/min/c3b51dfa00edae5532f6ca18e45f808b2d83a89f6dd0897248ab7c70c809f32d.js
13.229.118.205200 OK 70 kB URL HTTP/1.1 www.cubagoa.com/data/global/media/static/min/c3b51dfa00edae5532f6ca18e45f808b2d83a89f6dd0897248ab7c70c809f32d.js
IP 13.229.118.205:0
File type ASCII text, with very long lines (596)
Hash 31bf912f44a3e2228918a49b678bfb10
6a72104f4900a2bb05fb1456357d2d16c3d50d19
02786a1c6e6a8d8064352c2a83322b7b387d28a3e936c0609923822538590fcb
Analyzer Verdict Alert fortinet Malware
GET /data/global/media/static/min/c3b51dfa00edae5532f6ca18e45f808b2d83a89f6dd0897248ab7c70c809f32d.js HTTP/1.1
Host: www.cubagoa.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.cubagoa.com/
Cookie: JSESSIONID=8B0CB5DD264408C42B8582C47EA932E6.cfusion; PS-REFERER=https%3A%2F%2Fwww%2Ecubagoa%2Ecom%2F; CART-MEMBER-ID=6946C556%2DE132%2D7D82%2DE6B0F31E1965BD0D
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Tue, 17 Jan 2023 03:16:20 GMT
Server: Apache
Strict-Transport-Security: max-age=15768000
Last-Modified: Thu, 24 Nov 2022 07:46:57 GMT
ETag: "11317-5ee329c12503e"
Accept-Ranges: bytes
Content-Length: 70423
Cache-Control: max-age=2592000
Expires: Thu, 16 Feb 2023 03:16:20 GMT
X-XSS-Protection: 1; mode=block
X-Frame-Options: sameorigin
Access-Control-Allow-Origin: *
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: text/javascript
d14ty28lkqz1hw.cloudfront.net/data/org/17347/theme/26461/js/foundation.min.js
54.230.245.87200 OK 20 kB URL HTTP/1.1 d14ty28lkqz1hw.cloudfront.net/data/org/17347/theme/26461/js/foundation.min.js
IP 54.230.245.87:0
File type HTML document, ASCII text, with very long lines (32499)
Hash a28bd799ed00c1abe474ec36b10c77e4
1957b8e747b729e29982ca942dda03d4ca77c72e
30615ee0370ea6aa790cb6ee54228a563495882d5da1907a258abbf8c4389db0
GET /data/org/17347/theme/26461/js/foundation.min.js HTTP/1.1
Host: d14ty28lkqz1hw.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.cubagoa.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: text/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Fri, 30 Apr 2021 04:46:00 GMT
x-amz-meta-md5-hash: 4d780bb60b2f7f5041bcefdcf5f8ece0
Server: AmazonS3
Content-Encoding: gzip
Date: Tue, 17 Jan 2023 03:16:21 GMT
ETag: W/"4d780bb60b2f7f5041bcefdcf5f8ece0"
Vary: Accept-Encoding
X-Cache: RefreshHit from cloudfront
Via: 1.1 9037b7743a833da13439f0d4e2619b52.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: qag3Umq03H7Kzg7IoIQWw5VV29_l6FG8soKhVD2LalQomMzW_9ivoQ==
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 8b4c80fca9a7bc1b84369cdb60024668
91427b4fd16fa613fb83f053b271f00396b36e90
07bb6c4b267a5f46a15cca9ad9644ca38af67daa1448ad67f583f58e3c8dfcc1
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 17 Jan 2023 03:16:21 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.gstatic.com/s/playfairdisplay/v30/nuFiD-vYSZviVYUb_rj3ij__anPXDTzYgA.woff2
142.250.74.35200 OK 36 kB URL HTTP/2 fonts.gstatic.com/s/playfairdisplay/v30/nuFiD-vYSZviVYUb_rj3ij__anPXDTzYgA.woff2
IP 142.250.74.35:0
File type Web Open Font Format (Version 2), TrueType, length 35764, version 1.0\012- data
Hash 60f23230f1a8d5c3b7d25b73f5b5ce23
ed08ada85d017893b9bcb8224e99154c6708f5d2
22b6cdc450204c1cb32b31e679d812fea1c17ac506a7b78daeb12bd0ab25fde8
GET /s/playfairdisplay/v30/nuFiD-vYSZviVYUb_rj3ij__anPXDTzYgA.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.cubagoa.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 35764
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 13 Jan 2023 06:53:46 GMT
expires: Sat, 13 Jan 2024 06:53:46 GMT
cache-control: public, max-age=31536000
age: 332555
last-modified: Mon, 18 Jul 2022 19:06:36 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 8b4c80fca9a7bc1b84369cdb60024668
91427b4fd16fa613fb83f053b271f00396b36e90
07bb6c4b267a5f46a15cca9ad9644ca38af67daa1448ad67f583f58e3c8dfcc1
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 17 Jan 2023 03:16:21 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
widget-v4.tidiochat.com//tururu.mp3
172.67.71.3206 Partial Content 7.2 kB URL HTTP/2 widget-v4.tidiochat.com//tururu.mp3
IP 172.67.71.3:0
File type MPEG ADTS, layer III, v1, 64 kbps, 44.1 kHz, Monaural\012- data
Hash 5061b4d134a7b4d5d744f9a127b757a8
c5e240ac60d3914cb3836ba6652105c67720b845
12c7687514ca85ba2157ed61914ac526bb9dd15cb5a2a2d9e4d88f919349284f
GET //tururu.mp3 HTTP/1.1
Host: widget-v4.tidiochat.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: audio/webm,audio/ogg,audio/wav,audio/*;q=0.9,application/ogg;q=0.7,video/*;q=0.6,*/*;q=0.5
Accept-Language: en-US,en;q=0.5
Range: bytes=0-
Connection: keep-alive
Sec-Fetch-Dest: audio
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 206 Partial Content
date: Tue, 17 Jan 2023 03:16:21 GMT
content-type: audio/mpeg
content-length: 7224
last-modified: Thu, 22 Dec 2022 09:23:45 GMT
etag: "63a42221-1c38"
expires: Thu, 19 Jan 2023 02:08:28 GMT
cache-control: public, max-age=31536000
pragma: public
cf-cache-status: HIT
age: 1040873
content-range: bytes 0-7223/7224
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=tJYl%2Fur01F%2Flcm9fz%2FrVW6WgRF7N9oOEWUqm3DdnwmcwnGPUOi7ozyHtna0VDKtSbq4n9xA0F%2BmeEQSivwUslp1w3HOB4BUEtDvntUuiPl%2F6yeewyLyrHW9Y8bGgccQtfTAKuBGmKZ%2FX"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 78abee80c97db4f3-OSL
X-Firefox-Spdy: h2
d14ty28lkqz1hw.cloudfront.net/data/org/17347/theme/26461/img/logo.png
54.230.245.87200 OK 11 kB URL HTTP/1.1 d14ty28lkqz1hw.cloudfront.net/data/org/17347/theme/26461/img/logo.png
IP 54.230.245.87:0
File type PNG image data, 163 x 98, 8-bit/color RGBA, non-interlaced\012- data
Hash 04e231503b84fd959ddf915979f9b780
5cb493ac75a710c7a073d39fa2d00205ab6876cb
aa40ae99d3d1aedfaabc63b82a81f59f6674ea65ebb4bf3a32bff555d94400e3
GET /data/org/17347/theme/26461/img/logo.png HTTP/1.1
Host: d14ty28lkqz1hw.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.cubagoa.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: image/png
Content-Length: 11115
Connection: keep-alive
Date: Mon, 16 Jan 2023 06:21:09 GMT
Last-Modified: Thu, 18 Jul 2019 05:23:32 GMT
ETag: "04e231503b84fd959ddf915979f9b780"
x-amz-meta-md5-hash: 04e231503b84fd959ddf915979f9b780
Accept-Ranges: bytes
Server: AmazonS3
X-Cache: Hit from cloudfront
Via: 1.1 9037b7743a833da13439f0d4e2619b52.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: K0iVjT9JfYDCwfjNBEBfv9PRdj19fCWFFz0B_gknpi6vWS21TO7T2Q==
Age: 75312
d2wvwvig0d1mx7.cloudfront.net/data/org/17347/media/img/cache/552x0/1802727_552x0.jpg
54.230.245.86200 OK 135 kB URL HTTP/1.1 d2wvwvig0d1mx7.cloudfront.net/data/org/17347/media/img/cache/552x0/1802727_552x0.jpg
IP 54.230.245.86:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 552x552, components 3\012- data
Size 135 kB (135046 bytes)
Hash 1a658f86ce35329297b26b43b925b053
3dbc0a8761a8ca4e1987039154f9e24bce4f32e5
540138e36aa6ba4ae0dbf09b41d1880ec0f493ddc56a62d64ca877d6d95d22f7
GET /data/org/17347/media/img/cache/552x0/1802727_552x0.jpg HTTP/1.1
Host: d2wvwvig0d1mx7.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.cubagoa.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: image/jpeg
Content-Length: 135046
Connection: keep-alive
Date: Tue, 03 Jan 2023 16:44:46 GMT
Server: Apache
Strict-Transport-Security: max-age=15768000
Last-Modified: Thu, 18 Jul 2019 09:01:18 GMT
ETag: "20f86-58df0da5f6fd9"
Accept-Ranges: bytes
Cache-Control: max-age=2592000
Expires: Thu, 02 Feb 2023 16:44:46 GMT
X-XSS-Protection: 1; mode=block
X-Frame-Options: sameorigin
Access-Control-Allow-Origin: *
X-Cache: Hit from cloudfront
Via: 1.1 227a1815a1677b9cf6dd587e443000b8.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: TmidcvBw-NejE5sRdY4oukXxZ-gKrpPGq3ucoMgtyLFMOMKIahMSew==
Age: 1161095
d2wvwvig0d1mx7.cloudfront.net/data/org/17347/media/img/cache/552x0/1802728_552x0.jpg
54.230.245.86200 OK 81 kB URL HTTP/1.1 d2wvwvig0d1mx7.cloudfront.net/data/org/17347/media/img/cache/552x0/1802728_552x0.jpg
IP 54.230.245.86:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 552x361, components 3\012- data
Hash ee3cb6f2846f03f6246ff65ab5d38cd2
4fbf5528f81c878730101bd8f9d583d330546ab0
14e30510951c570caa39b5ca6f030c5e4fe4ab35fb6c842ada074458d06b6e68
GET /data/org/17347/media/img/cache/552x0/1802728_552x0.jpg HTTP/1.1
Host: d2wvwvig0d1mx7.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.cubagoa.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: image/jpeg
Content-Length: 80690
Connection: keep-alive
Date: Tue, 03 Jan 2023 16:44:46 GMT
Server: Apache
Strict-Transport-Security: max-age=15768000
Last-Modified: Thu, 18 Jul 2019 09:01:53 GMT
ETag: "13b32-58df0dc6d73ca"
Accept-Ranges: bytes
Cache-Control: max-age=2592000
Expires: Thu, 02 Feb 2023 16:44:46 GMT
X-XSS-Protection: 1; mode=block
X-Frame-Options: sameorigin
Access-Control-Allow-Origin: *
X-Cache: Hit from cloudfront
Via: 1.1 c2b101e67ac25a2f0013450d56ecac38.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: b4UqQfQF1gFw87ETF9MxKqETAEAZbvN3HlaoXjjcEk3y4q4Kj4b0IQ==
Age: 1161095
d2wvwvig0d1mx7.cloudfront.net/data/org/17347/media/img/cache/552x0/1802730_552x0.jpg
54.230.245.86200 OK 55 kB URL HTTP/1.1 d2wvwvig0d1mx7.cloudfront.net/data/org/17347/media/img/cache/552x0/1802730_552x0.jpg
IP 54.230.245.86:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 552x361, components 3\012- data
Hash 1c90f274713e4e2388a5016323a18f71
d90a444ad38968763a89ece2a5f7ec881b9ae9e5
7fc13ce43444af222aede1af28316eb5a6965459984aaac3573b087814154e59
GET /data/org/17347/media/img/cache/552x0/1802730_552x0.jpg HTTP/1.1
Host: d2wvwvig0d1mx7.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.cubagoa.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: image/jpeg
Content-Length: 54938
Connection: keep-alive
Date: Mon, 19 Dec 2022 09:55:01 GMT
Server: Apache
Strict-Transport-Security: max-age=15768000
Last-Modified: Thu, 18 Jul 2019 09:03:23 GMT
ETag: "d69a-58df0e1c82808"
Accept-Ranges: bytes
Cache-Control: max-age=2592000
Expires: Wed, 18 Jan 2023 09:55:01 GMT
X-XSS-Protection: 1; mode=block
X-Frame-Options: sameorigin
Access-Control-Allow-Origin: *
X-Cache: Hit from cloudfront
Via: 1.1 15d199af49035dc206cb81292fd87de2.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: t4hTjuwkbo6n-DFCewBrwiPt5fR0qY8_WnweFDZ5dKzh1EmEu7YZqQ==
Age: 2481680
www.google-analytics.com/analytics.js
142.250.74.46200 OK 20 kB URL HTTP/2 www.google-analytics.com/analytics.js
IP 142.250.74.46:0
File type ASCII text, with very long lines (1490)
Hash ca7fbbfd120e3e329633044190bbf134
d17f81e03dd827554ddd207ea081fb46b3415445
847004cefb32f85a9cc16b0b1eb77529ff5753680c145bfcb23f651d214737db
GET /analytics.js HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.cubagoa.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
strict-transport-security: max-age=10886400; includeSubDomains; preload
x-content-type-options: nosniff
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 20085
date: Tue, 17 Jan 2023 02:21:54 GMT
expires: Tue, 17 Jan 2023 04:21:54 GMT
cache-control: public, max-age=7200
age: 3267
last-modified: Tue, 27 Sep 2022 22:01:05 GMT
content-type: text/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
d2wvwvig0d1mx7.cloudfront.net/data/org/17347/media/img/cache/552x0/1802726_552x0.jpg
54.230.245.86200 OK 106 kB URL HTTP/1.1 d2wvwvig0d1mx7.cloudfront.net/data/org/17347/media/img/cache/552x0/1802726_552x0.jpg
IP 54.230.245.86:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 552x552, components 3\012- data
Size 106 kB (106253 bytes)
Hash 1f26e4622e59598efb0e8db4cd2608eb
f8750e3261ca1f10c778b6fb334d54e51eb04227
fa29a70ca85c16dbe543893205d0a5f2d06e7c7145365f1dc8bf2e710f380811
GET /data/org/17347/media/img/cache/552x0/1802726_552x0.jpg HTTP/1.1
Host: d2wvwvig0d1mx7.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.cubagoa.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: image/jpeg
Content-Length: 106253
Connection: keep-alive
Date: Mon, 16 Jan 2023 06:21:08 GMT
Server: Apache
Strict-Transport-Security: max-age=15768000
Last-Modified: Thu, 18 Jul 2019 09:00:44 GMT
ETag: "19f0d-58df0d84f29c4"
Accept-Ranges: bytes
Cache-Control: max-age=2592000
Expires: Wed, 15 Feb 2023 06:21:08 GMT
X-XSS-Protection: 1; mode=block
X-Frame-Options: sameorigin
Access-Control-Allow-Origin: *
X-Cache: Hit from cloudfront
Via: 1.1 5bcfe2deda0bdbc6bade0af9b61602ca.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: kiZIwBHDrlNYhvhNcVsReUogu9VwoauOjR6t1cXSWeBOBWLtVTohFg==
Age: 75313
d2wvwvig0d1mx7.cloudfront.net/data/org/17347/media/img/cache/552x0/1802724_552x0.jpg
54.230.245.86200 OK 99 kB URL HTTP/1.1 d2wvwvig0d1mx7.cloudfront.net/data/org/17347/media/img/cache/552x0/1802724_552x0.jpg
IP 54.230.245.86:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 552x361, components 3\012- data
Hash ef0a19e56c48a988bbebd43574309a97
52753834315d55b635631d8d130a46505974138b
9dbcb11696d20691bc8facfc8426376120473034d8039cd111efb8664aa6d7b1
GET /data/org/17347/media/img/cache/552x0/1802724_552x0.jpg HTTP/1.1
Host: d2wvwvig0d1mx7.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.cubagoa.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: image/jpeg
Content-Length: 98926
Connection: keep-alive
Date: Sat, 14 Jan 2023 08:25:32 GMT
Server: Apache
Strict-Transport-Security: max-age=15768000
Last-Modified: Thu, 18 Jul 2019 08:59:53 GMT
ETag: "1826e-58df0d54b98bb"
Accept-Ranges: bytes
Cache-Control: max-age=2592000
Expires: Mon, 13 Feb 2023 08:25:32 GMT
X-XSS-Protection: 1; mode=block
X-Frame-Options: sameorigin
Access-Control-Allow-Origin: *
X-Cache: Hit from cloudfront
Via: 1.1 0c35b89cb607eddb1b7cc5d6ada865d6.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: Val0rRafsTAEaK9mOrnw7O5l-ovk-9MMEtaWqG8F7sMv-BfsdDUaTQ==
Age: 240649
code.tidio.co/duqlxiljh3a7lczgqb1gjmzgr7iyw83r.js
172.67.72.223302 Found 613 B URL HTTP/2 code.tidio.co/duqlxiljh3a7lczgqb1gjmzgr7iyw83r.js
IP 172.67.72.223:0
Hash c581547515b941e7d375435b11278714
5c51b7d7e2ea9b6ebbf626e70448094ec5c3b4a7
7f4bac8f867bf62bae36dbdc289f698965289ca3738727b5a18d7f78c7501fbd
GET /duqlxiljh3a7lczgqb1gjmzgr7iyw83r.js HTTP/1.1
Host: code.tidio.co
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.cubagoa.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
date: Tue, 17 Jan 2023 03:16:20 GMT
content-type: text/html
location: https://widget-v4.tidiochat.com/1_134_1/static/js/render.20f4f25175a05958861e.js
cache-control: public, s-maxage=300, max-age=0
widget-cache-status: HIT
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=FCmxG5bikge%2FaJ%2BkgiVUOKb5jnyWji2ZpskhH3RyJeg3HwjbidNHCATxQp8BWXL%2B0VQDJX%2B3inMqejA%2FX8Rn%2BVq%2FaIaBliIkFlXv3VTQre6ziEh4uJ9TELG2UEpNvec%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 78abee799cbefab8-OSL
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 9c27cc551532f9424a9c944b490c3c45
1da7d84941c2ac6ffe4dfdf044d96c5b07d38b11
ae4dcb0d9d7fd53177cefc7d6c4c4101af88a85a2970a4693b33217d8dfdcf48
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 17 Jan 2023 03:16:21 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
d2wvwvig0d1mx7.cloudfront.net/data/org/17347/media/img/cache/55x55/1802735_55x55.jpg
54.230.245.86200 OK 3.7 kB URL HTTP/1.1 d2wvwvig0d1mx7.cloudfront.net/data/org/17347/media/img/cache/55x55/1802735_55x55.jpg
IP 54.230.245.86:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 55x55, components 3\012- data
Hash c8aa1c6a4200e95f09c10384884b2637
340c423497ce27f54a73d067b0d57f1d8835e4b6
908853fca168e2ab7221c3f466f1627dab52a3854be7a9136fcb818437da1a11
GET /data/org/17347/media/img/cache/55x55/1802735_55x55.jpg HTTP/1.1
Host: d2wvwvig0d1mx7.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.cubagoa.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: image/jpeg
Content-Length: 3706
Connection: keep-alive
Date: Sun, 15 Jan 2023 01:49:03 GMT
Server: Apache
Strict-Transport-Security: max-age=15768000
Last-Modified: Thu, 18 Jul 2019 10:59:50 GMT
ETag: "e7a-58df2824339e2"
Accept-Ranges: bytes
Cache-Control: max-age=2592000
Expires: Tue, 14 Feb 2023 01:49:03 GMT
X-XSS-Protection: 1; mode=block
X-Frame-Options: sameorigin
Access-Control-Allow-Origin: *
X-Cache: Hit from cloudfront
Via: 1.1 15d199af49035dc206cb81292fd87de2.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: FJOeZCZ1mdZgf6w18dVNeaGl-QP4vUTOZqwh3X8t4uysoiz59tjU8A==
Age: 178038
d2wvwvig0d1mx7.cloudfront.net/data/org/17347/media/img/cache/55x55/1802737_55x55.jpg
54.230.245.86200 OK 3.6 kB URL HTTP/1.1 d2wvwvig0d1mx7.cloudfront.net/data/org/17347/media/img/cache/55x55/1802737_55x55.jpg
IP 54.230.245.86:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 55x55, components 3\012- data
Hash dedf506c660440ec933e1586ad2ca3bd
23ddf056337a0d0d18dcc8581b111bee395472f0
f3685541a35730748cf0748a8ad9be599c64b576e8168f4e0a1e1eccf839120f
GET /data/org/17347/media/img/cache/55x55/1802737_55x55.jpg HTTP/1.1
Host: d2wvwvig0d1mx7.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.cubagoa.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: image/jpeg
Content-Length: 3615
Connection: keep-alive
Date: Fri, 13 Jan 2023 04:56:46 GMT
Server: Apache
Strict-Transport-Security: max-age=15768000
Last-Modified: Thu, 18 Jul 2019 10:59:48 GMT
ETag: "e1f-58df2821c393d"
Accept-Ranges: bytes
Cache-Control: max-age=2592000
Expires: Sun, 12 Feb 2023 04:56:46 GMT
X-XSS-Protection: 1; mode=block
X-Frame-Options: sameorigin
Access-Control-Allow-Origin: *
X-Cache: Hit from cloudfront
Via: 1.1 c2b101e67ac25a2f0013450d56ecac38.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: VTxuOUzAin34lw-14wPNXdSP8VzN8w34PNcAfCHmdMRwdzT-14VUSA==
Age: 339575
d2wvwvig0d1mx7.cloudfront.net/data/org/17347/media/img/cache/552x0/1802731_552x0.jpg
54.230.245.86200 OK 39 kB URL HTTP/1.1 d2wvwvig0d1mx7.cloudfront.net/data/org/17347/media/img/cache/552x0/1802731_552x0.jpg
IP 54.230.245.86:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 552x361, components 3\012- data
Hash 76756ff8165fc2f10299eb1d8064e89a
5d059d6e6b97b38b97cffcc1be724e43d052bc0a
718c8f0c31bfd371518fcc3e1f8a353fcd7e5ce37fac1a634edb1a20ac16cb20
GET /data/org/17347/media/img/cache/552x0/1802731_552x0.jpg HTTP/1.1
Host: d2wvwvig0d1mx7.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.cubagoa.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: image/jpeg
Content-Length: 38608
Connection: keep-alive
Date: Tue, 03 Jan 2023 16:44:47 GMT
Server: Apache
Strict-Transport-Security: max-age=15768000
Last-Modified: Thu, 18 Jul 2019 09:04:08 GMT
ETag: "96d0-58df0e481038b"
Accept-Ranges: bytes
Cache-Control: max-age=2592000
Expires: Thu, 02 Feb 2023 16:44:47 GMT
X-XSS-Protection: 1; mode=block
X-Frame-Options: sameorigin
Access-Control-Allow-Origin: *
X-Cache: Hit from cloudfront
Via: 1.1 227a1815a1677b9cf6dd587e443000b8.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: ta_dudPr9TGWIpxm0Qbb0YBBEQYLf7Nbl5WH2SGjPEb0tdfmnlXLFQ==
Age: 1161094
d2wvwvig0d1mx7.cloudfront.net/data/org/17347/media/img/cache/55x55/1802736_55x55.jpg
54.230.245.86200 OK 3.8 kB URL HTTP/1.1 d2wvwvig0d1mx7.cloudfront.net/data/org/17347/media/img/cache/55x55/1802736_55x55.jpg
IP 54.230.245.86:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 55x55, components 3\012- data
Hash 06b53d4e654254fec309349fd2e8ff61
6a3e3f2ac9d203c0743580f9703ced68c9f78fe0
eaa11ad9cfeb523b7df85134957deefb29e8485b27c94f2c730df4bfefcd2374
GET /data/org/17347/media/img/cache/55x55/1802736_55x55.jpg HTTP/1.1
Host: d2wvwvig0d1mx7.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.cubagoa.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: image/jpeg
Content-Length: 3814
Connection: keep-alive
Date: Mon, 16 Jan 2023 06:21:09 GMT
Server: Apache
Strict-Transport-Security: max-age=15768000
Last-Modified: Thu, 18 Jul 2019 10:59:48 GMT
ETag: "ee6-58df28227f152"
Accept-Ranges: bytes
Cache-Control: max-age=2592000
Expires: Wed, 15 Feb 2023 06:21:09 GMT
X-XSS-Protection: 1; mode=block
X-Frame-Options: sameorigin
Access-Control-Allow-Origin: *
X-Cache: Hit from cloudfront
Via: 1.1 5bcfe2deda0bdbc6bade0af9b61602ca.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: 8fzRKC4q3yolD97lgb0icvLIDt_WmtNyXpiCxIYSarciJSPIhqDJMw==
Age: 75312
www.gstatic.com/recaptcha/releases/u35fw2Dx4G0WsO6SztVYg4cV/recaptcha__en.js
216.58.211.3200 OK 163 kB URL HTTP/2 www.gstatic.com/recaptcha/releases/u35fw2Dx4G0WsO6SztVYg4cV/recaptcha__en.js
IP 216.58.211.3:0
File type ASCII text, with very long lines (534)
Size 163 kB (162972 bytes)
Hash 76ec8636078661afbc2c6fdd811b0b76
035c5fe2d57e0363a7abaedc294ef890a6e2a081
194068b0223ebb32c7e7026851a4c1eb6b70c988b269c7fa10f4dd3362bd650a
GET /recaptcha/releases/u35fw2Dx4G0WsO6SztVYg4cV/recaptcha__en.js HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.cubagoa.com
Connection: keep-alive
Referer: https://www.cubagoa.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/recaptcha
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups; report-to="recaptcha"
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
content-length: 162972
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 16 Jan 2023 15:07:39 GMT
expires: Tue, 16 Jan 2024 15:07:39 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 11 Jan 2023 00:08:35 GMT
content-type: text/javascript
age: 43722
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.google-analytics.com/j/collect?v=1&_v=j99&a=486841320&t=pageview&_s=1&dl=https%3A%2F%2Fwww.cubagoa.com%2F&dh=www.cubagoa.com&ul=en-us&de=UTF-8&dt=Cuba%20Goa%20%7C%20Palolem%20Beach%20Resort%20%7C%20Beach%20Hotels%20Palolem%2C%20Agonda&sd=24-bit&sr=1280x1024&vp=1268x939&je=0&_u=YADAAEABAAAAACAAI~&jid=1036951876&gjid=1080095811&cid=1097697943.1673925381&tid=UA-38494551-2&_gid=1764954911.1673925382&_r=1&_slc=1&z=532869476
142.250.74.46200 OK 2 B URL HTTP/2 www.google-analytics.com/j/collect?v=1&_v=j99&a=486841320&t=pageview&_s=1&dl=https%3A%2F%2Fwww.cubagoa.com%2F&dh=www.cubagoa.com&ul=en-us&de=UTF-8&dt=Cuba%20Goa%20%7C%20Palolem%20Beach%20Resort%20%7C%20Beach%20Hotels%20Palolem%2C%20Agonda&sd=24-bit&sr=1280x1024&vp=1268x939&je=0&_u=YADAAEABAAAAACAAI~&jid=1036951876&gjid=1080095811&cid=1097697943.1673925381&tid=UA-38494551-2&_gid=1764954911.1673925382&_r=1&_slc=1&z=532869476
IP 142.250.74.46:0
File type ASCII text, with no line terminators
Hash 38684612f0c6bb6dfa16da92f4a6878f
6fe62d0dd7db314b7f9bb945672f078e01d27f0f
a048e640908046be06e00eab37742b5d5ff80964af58cfd22f7cb2de4dfe375f
POST /j/collect?v=1&_v=j99&a=486841320&t=pageview&_s=1&dl=https%3A%2F%2Fwww.cubagoa.com%2F&dh=www.cubagoa.com&ul=en-us&de=UTF-8&dt=Cuba%20Goa%20%7C%20Palolem%20Beach%20Resort%20%7C%20Beach%20Hotels%20Palolem%2C%20Agonda&sd=24-bit&sr=1280x1024&vp=1268x939&je=0&_u=YADAAEABAAAAACAAI~&jid=1036951876&gjid=1080095811&cid=1097697943.1673925381&tid=UA-38494551-2&_gid=1764954911.1673925382&_r=1&_slc=1&z=532869476 HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 0
Origin: https://www.cubagoa.com
Connection: keep-alive
Referer: https://www.cubagoa.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-allow-origin: https://www.cubagoa.com
date: Tue, 17 Jan 2023 03:16:21 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
last-modified: Sun, 17 May 1998 03:00:00 GMT
access-control-allow-credentials: true
x-content-type-options: nosniff
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.google-analytics.com/j/collect?v=1&_v=j99&a=486841320&t=pageview&_s=1&dl=https%3A%2F%2Fwww.cubagoa.com%2F&ul=en-us&de=UTF-8&dt=Cuba%20Goa%20%7C%20Palolem%20Beach%20Resort%20%7C%20Beach%20Hotels%20Palolem%2C%20Agonda&sd=24-bit&sr=1280x1024&vp=1268x939&je=0&_u=YADAAUABAAAAACAAI~&jid=871272750&gjid=329083434&cid=1097697943.1673925381&tid=UA-146777666-1&_gid=1764954911.1673925382&_r=1&_slc=1>m=2ou1a1&z=1245908207
142.250.74.46200 OK 4 B URL HTTP/2 www.google-analytics.com/j/collect?v=1&_v=j99&a=486841320&t=pageview&_s=1&dl=https%3A%2F%2Fwww.cubagoa.com%2F&ul=en-us&de=UTF-8&dt=Cuba%20Goa%20%7C%20Palolem%20Beach%20Resort%20%7C%20Beach%20Hotels%20Palolem%2C%20Agonda&sd=24-bit&sr=1280x1024&vp=1268x939&je=0&_u=YADAAUABAAAAACAAI~&jid=871272750&gjid=329083434&cid=1097697943.1673925381&tid=UA-146777666-1&_gid=1764954911.1673925382&_r=1&_slc=1>m=2ou1a1&z=1245908207
IP 142.250.74.46:0
File type ASCII text, with no line terminators
Hash 9e92e190700c1af4539b40c2171320a9
209bcdb79e6067b51091ce8586d4b977f25b67d8
aec60bc104db041b1512185839f18f52986df7e569e5445f740dd60f763fbca8
POST /j/collect?v=1&_v=j99&a=486841320&t=pageview&_s=1&dl=https%3A%2F%2Fwww.cubagoa.com%2F&ul=en-us&de=UTF-8&dt=Cuba%20Goa%20%7C%20Palolem%20Beach%20Resort%20%7C%20Beach%20Hotels%20Palolem%2C%20Agonda&sd=24-bit&sr=1280x1024&vp=1268x939&je=0&_u=YADAAUABAAAAACAAI~&jid=871272750&gjid=329083434&cid=1097697943.1673925381&tid=UA-146777666-1&_gid=1764954911.1673925382&_r=1&_slc=1>m=2ou1a1&z=1245908207 HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 0
Origin: https://www.cubagoa.com
Connection: keep-alive
Referer: https://www.cubagoa.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-allow-origin: https://www.cubagoa.com
date: Tue, 17 Jan 2023 03:16:21 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
last-modified: Sun, 17 May 1998 03:00:00 GMT
access-control-allow-credentials: true
x-content-type-options: nosniff
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 4
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.google.no/ads/ga-audiences?v=1&t=sr&slf_rd=1&_r=4&tid=G-K1R8CG27B6&cid=1097697943.1673925381>m=2oe1a1&aip=1&z=664353278
142.250.74.67200 OK 42 B URL HTTP/2 www.google.no/ads/ga-audiences?v=1&t=sr&slf_rd=1&_r=4&tid=G-K1R8CG27B6&cid=1097697943.1673925381>m=2oe1a1&aip=1&z=664353278
IP 142.250.74.67:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /ads/ga-audiences?v=1&t=sr&slf_rd=1&_r=4&tid=G-K1R8CG27B6&cid=1097697943.1673925381>m=2oe1a1&aip=1&z=664353278 HTTP/1.1
Host: www.google.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.cubagoa.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Tue, 17 Jan 2023 03:16:21 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
d2wvwvig0d1mx7.cloudfront.net/data/org/17347/media/img/cache/76x76/1802798_76x76.jpg
54.230.245.86200 OK 4.7 kB URL HTTP/1.1 d2wvwvig0d1mx7.cloudfront.net/data/org/17347/media/img/cache/76x76/1802798_76x76.jpg
IP 54.230.245.86:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 76x76, components 3\012- data
Hash dbe3c8a36d1c07fe5af40ee6b9cc17e7
25998fb922b5eed5b386730493c41f8e0133e106
9baa5dfe6e8542bda8b1830bc3eca4be6eddcc99b28b103a9f4687c9faaeed33
GET /data/org/17347/media/img/cache/76x76/1802798_76x76.jpg HTTP/1.1
Host: d2wvwvig0d1mx7.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.cubagoa.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: image/jpeg
Content-Length: 4671
Connection: keep-alive
Date: Fri, 13 Jan 2023 15:52:45 GMT
Server: Apache
Strict-Transport-Security: max-age=15768000
Last-Modified: Thu, 18 Jul 2019 10:59:53 GMT
ETag: "123f-58df2826a0ba8"
Accept-Ranges: bytes
Cache-Control: max-age=2592000
Expires: Sun, 12 Feb 2023 15:52:45 GMT
X-XSS-Protection: 1; mode=block
X-Frame-Options: sameorigin
Access-Control-Allow-Origin: *
X-Cache: Hit from cloudfront
Via: 1.1 227a1815a1677b9cf6dd587e443000b8.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: 610XfJSua9wM659QwURT1O3bGY4ZncR2n9utHgAX9ivKzxaMiVrqiw==
Age: 300216
d2wvwvig0d1mx7.cloudfront.net/data/org/17347/media/img/cache/76x76/1802801_76x76.jpg
54.230.245.86200 OK 3.5 kB URL HTTP/1.1 d2wvwvig0d1mx7.cloudfront.net/data/org/17347/media/img/cache/76x76/1802801_76x76.jpg
IP 54.230.245.86:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 76x76, components 3\012- data
Hash 88a3eef7f631686c21690c7e9f6ba39d
4f0ca3fbbb3c2a99a42426936fe96baf4c7a0c2b
4eec06b0b586135720139ed46802aaffbd5b54e98b4eea63073dadcef1cbd09a
GET /data/org/17347/media/img/cache/76x76/1802801_76x76.jpg HTTP/1.1
Host: d2wvwvig0d1mx7.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.cubagoa.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: image/jpeg
Content-Length: 3530
Connection: keep-alive
Date: Tue, 03 Jan 2023 16:44:47 GMT
Server: Apache
Strict-Transport-Security: max-age=15768000
Last-Modified: Thu, 18 Jul 2019 10:59:50 GMT
ETag: "dca-58df2823b69d4"
Accept-Ranges: bytes
Cache-Control: max-age=2592000
Expires: Thu, 02 Feb 2023 16:44:47 GMT
X-XSS-Protection: 1; mode=block
X-Frame-Options: sameorigin
Access-Control-Allow-Origin: *
X-Cache: Hit from cloudfront
Via: 1.1 15d199af49035dc206cb81292fd87de2.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: 282ye-QzZTZ-a7Y4THsPXenyvLFhW3lpFyMzTtrAwDiOY5Mwdd7bGA==
Age: 1161094
d2wvwvig0d1mx7.cloudfront.net/data/org/17347/media/img/cache/76x76/2781612_76x76.jpg
54.230.245.86200 OK 4.4 kB URL HTTP/1.1 d2wvwvig0d1mx7.cloudfront.net/data/org/17347/media/img/cache/76x76/2781612_76x76.jpg
IP 54.230.245.86:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 76x76, components 3\012- data
Hash cf98f81a2b26e7bf5ecafcfce0929e0f
c0d2fa253fc889a721a11037b76802d5afaf6d4f
caa77f0d7ceb642075c5e20de091222d85f9bded3f842871280911a3c5d49f77
GET /data/org/17347/media/img/cache/76x76/2781612_76x76.jpg HTTP/1.1
Host: d2wvwvig0d1mx7.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.cubagoa.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: image/jpeg
Content-Length: 4351
Connection: keep-alive
Date: Sun, 08 Jan 2023 09:10:00 GMT
Server: Apache
Strict-Transport-Security: max-age=15768000
Last-Modified: Sat, 31 Dec 2022 03:54:20 GMT
ETag: "10ff-5f117ac495018"
Accept-Ranges: bytes
Cache-Control: max-age=2592000
Expires: Tue, 07 Feb 2023 09:10:00 GMT
X-XSS-Protection: 1; mode=block
X-Frame-Options: sameorigin
Access-Control-Allow-Origin: *
X-Cache: Hit from cloudfront
Via: 1.1 5bcfe2deda0bdbc6bade0af9b61602ca.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: GRzQ02T7F9Cbs1QBy9uujIVnW9S1n0dng6DPyDJE-tYUhVFUoD1HlA==
Age: 756381
d2wvwvig0d1mx7.cloudfront.net/data/org/17347/media/img/cache/76x76/1802800_76x76.jpg
54.230.245.86200 OK 4.5 kB URL HTTP/1.1 d2wvwvig0d1mx7.cloudfront.net/data/org/17347/media/img/cache/76x76/1802800_76x76.jpg
IP 54.230.245.86:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 76x76, components 3\012- data
Hash 924c3c640000fc9844625347dd2d7f04
4d016af8969067462995a69e81ff6e6d4a29202a
83b52b6efc3b7f976dfa7ff1894f53caa0d8c8a15b843669554c36db4933e106
GET /data/org/17347/media/img/cache/76x76/1802800_76x76.jpg HTTP/1.1
Host: d2wvwvig0d1mx7.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.cubagoa.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: image/jpeg
Content-Length: 4492
Connection: keep-alive
Date: Mon, 19 Dec 2022 09:55:03 GMT
Server: Apache
Strict-Transport-Security: max-age=15768000
Last-Modified: Thu, 18 Jul 2019 10:59:49 GMT
ETag: "118c-58df28237722d"
Accept-Ranges: bytes
Cache-Control: max-age=2592000
Expires: Wed, 18 Jan 2023 09:55:03 GMT
X-XSS-Protection: 1; mode=block
X-Frame-Options: sameorigin
Access-Control-Allow-Origin: *
X-Cache: Hit from cloudfront
Via: 1.1 c2b101e67ac25a2f0013450d56ecac38.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: lFO9JBLIQBGpDvecZycZjHmahdV5WMmXFdYli3QogpcUAgVxyp-Cag==
Age: 2481678
d14ty28lkqz1hw.cloudfront.net/data/org/17347/theme/26461/img/property-location.jpg
54.230.245.87200 OK 3.6 kB URL HTTP/1.1 d14ty28lkqz1hw.cloudfront.net/data/org/17347/theme/26461/img/property-location.jpg
IP 54.230.245.87:0
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 55x55, components 3\012- data
Hash 2c6871b8d3455c016b014e7cb4defb27
04f3f57f7765d971bd55648a136ae679a442ee38
06ce93addbd67d4b48c55ea4e033c5f5f753bbe71db87883c4bb1969a53d74a2
GET /data/org/17347/theme/26461/img/property-location.jpg HTTP/1.1
Host: d14ty28lkqz1hw.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.cubagoa.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: image/jpeg
Content-Length: 3562
Connection: keep-alive
Last-Modified: Thu, 18 Jul 2019 09:56:23 GMT
Accept-Ranges: bytes
Server: AmazonS3
Date: Mon, 16 Jan 2023 06:21:11 GMT
ETag: "2c6871b8d3455c016b014e7cb4defb27"
Vary: Accept-Encoding
X-Cache: Hit from cloudfront
Via: 1.1 9037b7743a833da13439f0d4e2619b52.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: lBhx4f-9FIYQXPp8XGecS-AkD_H494u0znOu7o2S6NncsXtk7DIDCQ==
Age: 75310
d2wvwvig0d1mx7.cloudfront.net/data/org/17347/media/img/cache/1600x0/1802856_1600x0.jpg
54.230.245.86200 OK 235 kB URL HTTP/1.1 d2wvwvig0d1mx7.cloudfront.net/data/org/17347/media/img/cache/1600x0/1802856_1600x0.jpg
IP 54.230.245.86:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 1600x673, components 3\012- data
Size 235 kB (235360 bytes)
Hash 4cf57cc75db2b180521ada9f139619b4
1ca880303060641c4e008f4c95c1772d877db8ad
ba3279e52d114da4b0036e91df67ed034bf2a832aeaf31c1af898db8978a6535
GET /data/org/17347/media/img/cache/1600x0/1802856_1600x0.jpg HTTP/1.1
Host: d2wvwvig0d1mx7.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.cubagoa.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: image/jpeg
Content-Length: 235360
Connection: keep-alive
Date: Tue, 03 Jan 2023 16:44:47 GMT
Server: Apache
Strict-Transport-Security: max-age=15768000
Last-Modified: Thu, 18 Jul 2019 11:05:27 GMT
ETag: "39760-58df29655eaa1"
Accept-Ranges: bytes
Cache-Control: max-age=2592000
Expires: Thu, 02 Feb 2023 16:44:47 GMT
X-XSS-Protection: 1; mode=block
X-Frame-Options: sameorigin
Access-Control-Allow-Origin: *
X-Cache: Hit from cloudfront
Via: 1.1 60929bddfcfe8b3a510a9502ad6d8742.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: YKBsi7Dwhh2ztZRicz3YgP2nLGyFyPxKY-4qnCzie5t2rQNE0QSX5A==
Age: 1161094
d14ty28lkqz1hw.cloudfront.net/data/org/17347/theme/26461/img/back_to_top_image.jpg
54.230.245.87200 OK 622 B URL HTTP/1.1 d14ty28lkqz1hw.cloudfront.net/data/org/17347/theme/26461/img/back_to_top_image.jpg
IP 54.230.245.87:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 43x36, components 3\012- data
Hash 94c7f6d019a4b11da78ed37e64290c81
602959ca1d467e672c1cdc937230116c50d8c2e3
eef34110553f18dea10e187fda4e392e95cc7a179d49f23ee4c935fa577e19df
GET /data/org/17347/theme/26461/img/back_to_top_image.jpg HTTP/1.1
Host: d14ty28lkqz1hw.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://d14ty28lkqz1hw.cloudfront.net/data/org/17347/theme/26461/css/skeleton.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Content-Type: image/jpeg
Content-Length: 622
Connection: keep-alive
Date: Mon, 16 Jan 2023 17:33:54 GMT
Last-Modified: Thu, 11 Jul 2019 05:49:24 GMT
ETag: "94c7f6d019a4b11da78ed37e64290c81"
x-amz-meta-md5-hash: 94c7f6d019a4b11da78ed37e64290c81
Accept-Ranges: bytes
Server: AmazonS3
X-Cache: Hit from cloudfront
Via: 1.1 4bbc14b5834fc74ccd249b954b43a08c.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: in6QagVMSOHX4TBhfd1fDKiqE3dfzse48_x_UuvCMnpPOICUeBUTGQ==
Age: 34948
d2wvwvig0d1mx7.cloudfront.net/data/org/17347/media/img/cache/76x76/1802799_76x76.jpg
54.230.245.86200 OK 4.8 kB URL HTTP/1.1 d2wvwvig0d1mx7.cloudfront.net/data/org/17347/media/img/cache/76x76/1802799_76x76.jpg
IP 54.230.245.86:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 76x76, components 3\012- data
Hash 450af4d36b2f8cf78fbeacc186262150
d374128f45606f0cc491c09f90caa1859053641b
74772543906deb40639caa6a0c90b6be2fe8a97bbed8f799f2cf3cf1c153ab4b
GET /data/org/17347/media/img/cache/76x76/1802799_76x76.jpg HTTP/1.1
Host: d2wvwvig0d1mx7.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.cubagoa.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: image/jpeg
Content-Length: 4784
Connection: keep-alive
Date: Tue, 03 Jan 2023 16:44:47 GMT
Server: Apache
Strict-Transport-Security: max-age=15768000
Last-Modified: Thu, 18 Jul 2019 10:59:53 GMT
ETag: "12b0-58df2826f4b71"
Accept-Ranges: bytes
Cache-Control: max-age=2592000
Expires: Thu, 02 Feb 2023 16:44:47 GMT
X-XSS-Protection: 1; mode=block
X-Frame-Options: sameorigin
Access-Control-Allow-Origin: *
X-Cache: Hit from cloudfront
Via: 1.1 0c35b89cb607eddb1b7cc5d6ada865d6.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: DHcRGp8trudJ8uIl2CvZO2g-VcPkGTUKFd9ZLCg5GPk-0GrMis3Icg==
Age: 1161094
d2wvwvig0d1mx7.cloudfront.net/data/global/media/js/int-tel-input/img/flags.png
54.230.245.86200 OK 71 kB URL HTTP/1.1 d2wvwvig0d1mx7.cloudfront.net/data/global/media/js/int-tel-input/img/flags.png
IP 54.230.245.86:0
File type PNG image data, 5652 x 15, 8-bit/color RGBA, non-interlaced\012- data
Hash 416250f60d785a2e02f17e054d2e4e44
21572c9751e5a3dc20395befa0fcb349c32c4811
0a012cf808a24573168308916092d2d4bd3f2b4af8e16b59167013cc77acee55
GET /data/global/media/js/int-tel-input/img/flags.png HTTP/1.1
Host: d2wvwvig0d1mx7.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://d2wvwvig0d1mx7.cloudfront.net/data/global/media/js/int-tel-input/css/intlTelInput.min.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Content-Type: image/png
Content-Length: 70857
Connection: keep-alive
Date: Wed, 04 Jan 2023 18:56:19 GMT
Server: Apache
Strict-Transport-Security: max-age=15768000
Last-Modified: Tue, 09 Jun 2020 05:27:13 GMT
ETag: "114c9-5a79ffacf2b26"
Accept-Ranges: bytes
Cache-Control: max-age=2592000
Expires: Fri, 03 Feb 2023 18:56:19 GMT
X-XSS-Protection: 1; mode=block
X-Frame-Options: sameorigin
Access-Control-Allow-Origin: *
X-Cache: Hit from cloudfront
Via: 1.1 60929bddfcfe8b3a510a9502ad6d8742.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: UjUEzortL2DySeEMn3pp2w56YvvSTyZhe5uGYdTmyDV7y70tZZa8aw==
Age: 1066802
www.cubagoa.com/api/ajaxfacade.cfc?jsoncallback=jQuery17204732293784841004_1673925380509&method=getClientMessage&_cf_nodebug=true&_=1673925381141
13.229.118.205200 OK 97 B URL HTTP/1.1 www.cubagoa.com/api/ajaxfacade.cfc?jsoncallback=jQuery17204732293784841004_1673925380509&method=getClientMessage&_cf_nodebug=true&_=1673925381141
IP 13.229.118.205:0
File type ASCII text, with no line terminators
Hash e6c9350760a6d679bf26bcc302b13171
8773d34c97af91125bcdfdd113d92f5ced30e2fd
ba96ad534164ef0b0c298888cc898ccbbde3e61b1c42bcbf0fb6bd24c2caedf3
GET /api/ajaxfacade.cfc?jsoncallback=jQuery17204732293784841004_1673925380509&method=getClientMessage&_cf_nodebug=true&_=1673925381141 HTTP/1.1
Host: www.cubagoa.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/javascript, application/javascript, application/ecmascript, application/x-ecmascript, */*; q=0.01
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Requested-With: XMLHttpRequest
Connection: keep-alive
Referer: https://www.cubagoa.com/
Cookie: JSESSIONID=8B0CB5DD264408C42B8582C47EA932E6.cfusion; PS-REFERER=https%3A%2F%2Fwww%2Ecubagoa%2Ecom%2F; CART-MEMBER-ID=6946C556%2DE132%2D7D82%2DE6B0F31E1965BD0D; _sp_ses.aa39=*; _sp_id.aa39=4c8dfde2-450e-4c5c-bf03-b86aeb02cdc3.1673925381.1.1673925381.1673925381.6096d74a-fa3e-49a8-84c2-38d4401beeac; _ga_K1R8CG27B6=GS1.1.1673925381.1.0.1673925381.60.0.0; _ga=GA1.1.1097697943.1673925381
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Tue, 17 Jan 2023 03:16:21 GMT
Server: Apache
Strict-Transport-Security: max-age=15768000
Set-Cookie: CFAUTHORIZATION_ap=""; Max-Age=0; Expires=Thu, 01-Jan-1970 12:00:00 GMT; Path=/; HttpOnly
PS-REFERER=https%3A%2F%2Fwww%2Ecubagoa%2Ecom%2F; Expires=Wed, 18-Jan-2023 03:16:21 GMT; Path=/
OPENID_TOKEN=69470E28%2DD50C%2DAB9C%2DDAFA667F4BCF7F2C; Expires=Tue, 17-Jan-2023 05:16:21 GMT; Path=/
Vary: Accept-Encoding
Content-Encoding: gzip
X-XSS-Protection: 1; mode=block
X-Frame-Options: sameorigin
Access-Control-Allow-Origin: *
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: text/html;charset=UTF-8
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 46016837fa657816c9759b877cfd0a84
a2d7e97f1f2e86c2889af087fbd569177eca7958
4ff15623841a08fe9936578c1d95aeb2a1c5c9942cae7a4881f35f79430a1735
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 17 Jan 2023 03:16:21 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 9c27cc551532f9424a9c944b490c3c45
1da7d84941c2ac6ffe4dfdf044d96c5b07d38b11
ae4dcb0d9d7fd53177cefc7d6c4c4101af88a85a2970a4693b33217d8dfdcf48
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 17 Jan 2023 03:16:21 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.sca1b.amazontrust.com/
143.204.42.88200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 143.204.42.88:0
Hash 550f7926461ea66f9742f85aac2ef42f
3dbec0cf2ae9f29b8d6491e1fb802f1d7ffe3b6f
6e95e181dd0d36fc3556f28d533d3aec4b752f831a5aba672caeecba950f56e3
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=102187
Date: Tue, 17 Jan 2023 03:16:21 GMT
Etag: "63c4fd0f-1d7"
Expires: Wed, 18 Jan 2023 07:39:28 GMT
Last-Modified: Mon, 16 Jan 2023 07:30:23 GMT
Server: ECS (dcb/7EA7)
X-Cache: Miss from cloudfront
Via: 1.1 50584ad285d5f627ddebae74efdd0770.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: mcm1JHHYwfQdGOPgvRqFpuX76Ju8b-vr0f4S9qYP_Th2B8_L11sK9w==
Age: 546
stats.g.doubleclick.net/j/collect?t=dc&aip=1&_r=3&v=1&_v=j99&tid=UA-146777666-1&cid=1097697943.1673925381&jid=871272750&gjid=329083434&_gid=1764954911.1673925382&_u=YADAAUABAAAAACAAI~&z=1906978970
173.194.222.157200 OK 1 B URL HTTP/2 stats.g.doubleclick.net/j/collect?t=dc&aip=1&_r=3&v=1&_v=j99&tid=UA-146777666-1&cid=1097697943.1673925381&jid=871272750&gjid=329083434&_gid=1764954911.1673925382&_u=YADAAUABAAAAACAAI~&z=1906978970
IP 173.194.222.157:0
File type very short file (no magic)
Hash c4ca4238a0b923820dcc509a6f75849b
356a192b7913b04c54574d18c28d46e6395428ab
6b86b273ff34fce19d6b804eff5a3f5747ada4eaa22f1d49c01e52ddb7875b4b
POST /j/collect?t=dc&aip=1&_r=3&v=1&_v=j99&tid=UA-146777666-1&cid=1097697943.1673925381&jid=871272750&gjid=329083434&_gid=1764954911.1673925382&_u=YADAAUABAAAAACAAI~&z=1906978970 HTTP/1.1
Host: stats.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 0
Origin: https://www.cubagoa.com
Connection: keep-alive
Referer: https://www.cubagoa.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: https://www.cubagoa.com
strict-transport-security: max-age=10886400; includeSubDomains; preload
date: Tue, 17 Jan 2023 03:16:21 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
last-modified: Sun, 17 May 1998 03:00:00 GMT
access-control-allow-credentials: true
x-content-type-options: nosniff
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 1
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.cubagoa.com/cart.js?1673925381158
13.229.118.205200 OK 109 B URL HTTP/1.1 www.cubagoa.com/cart.js?1673925381158
IP 13.229.118.205:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 0fa5babcd7ac1d8fbac38b0f3ce007b0
64e98fa64948a9baa0b81037c715e147bbc3e7ae
65cf90a0eeaa2e53de0c7b0887173b9c2de8a0dff9902ee06f2bc2a0164a7157
GET /cart.js?1673925381158 HTTP/1.1
Host: www.cubagoa.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Requested-With: XMLHttpRequest
Connection: keep-alive
Referer: https://www.cubagoa.com/
Cookie: JSESSIONID=8B0CB5DD264408C42B8582C47EA932E6.cfusion; PS-REFERER=https%3A%2F%2Fwww%2Ecubagoa%2Ecom%2F; CART-MEMBER-ID=6946C556%2DE132%2D7D82%2DE6B0F31E1965BD0D; _sp_ses.aa39=*; _sp_id.aa39=4c8dfde2-450e-4c5c-bf03-b86aeb02cdc3.1673925381.1.1673925381.1673925381.6096d74a-fa3e-49a8-84c2-38d4401beeac; _ga_K1R8CG27B6=GS1.1.1673925381.1.0.1673925381.60.0.0; _ga=GA1.1.1097697943.1673925381
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Tue, 17 Jan 2023 03:16:21 GMT
Server: Apache
Strict-Transport-Security: max-age=15768000
Set-Cookie: CFAUTHORIZATION_ap=""; Max-Age=0; Expires=Thu, 01-Jan-1970 12:00:00 GMT; Path=/; HttpOnly
PS-REFERER=https%3A%2F%2Fwww%2Ecubagoa%2Ecom%2F; Expires=Wed, 18-Jan-2023 03:16:21 GMT; Path=/
Vary: Accept-Encoding
Content-Encoding: gzip
X-XSS-Protection: 1; mode=block
X-Frame-Options: sameorigin
Access-Control-Allow-Origin: *
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: text/html;charset=UTF-8
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 46016837fa657816c9759b877cfd0a84
a2d7e97f1f2e86c2889af087fbd569177eca7958
4ff15623841a08fe9936578c1d95aeb2a1c5c9942cae7a4881f35f79430a1735
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 17 Jan 2023 03:16:21 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.sca1b.amazontrust.com/
143.204.42.88200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 143.204.42.88:0
Hash 4dd81e72647d726f70db7872ba5d08e9
0682abe43c2bd30c413a9c4bd279752f383b2de4
8ed83f3ba4b7921bf0d7ab1e127fe62875fcf6f2fcf63022e86ac80de210772a
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=118683
Date: Tue, 17 Jan 2023 03:16:21 GMT
Etag: "63c52763-1d7"
Expires: Wed, 18 Jan 2023 12:14:24 GMT
Last-Modified: Mon, 16 Jan 2023 10:30:59 GMT
Server: ECS (bsa/EB1B)
X-Cache: Miss from cloudfront
Via: 1.1 6480520a5e02f3163410e3134bd77baa.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: FhXaLrLLhvJShki47I7gOFtmfbJEieM1uydVsaCZpw5DFFYhF_xM3Q==
Age: 6205
region1.analytics.google.com/g/collect?v=2&tid=G-K1R8CG27B6>m=2oe1a1&_p=486841320&_gaz=1&cid=1097697943.1673925381&ul=en-us&sr=1280x1024&_s=1&sid=1673925381&sct=1&seg=0&dl=https%3A%2F%2Fwww.cubagoa.com%2F&dt=Cuba%20Goa%20%7C%20Palolem%20Beach%20Resort%20%7C%20Beach%20Hotels%20Palolem%2C%20Agonda&en=page_view&_fv=1&_nsi=1&_ss=1&_ee=1
216.239.32.36204 No Content 0 B URL HTTP/2 region1.analytics.google.com/g/collect?v=2&tid=G-K1R8CG27B6>m=2oe1a1&_p=486841320&_gaz=1&cid=1097697943.1673925381&ul=en-us&sr=1280x1024&_s=1&sid=1673925381&sct=1&seg=0&dl=https%3A%2F%2Fwww.cubagoa.com%2F&dt=Cuba%20Goa%20%7C%20Palolem%20Beach%20Resort%20%7C%20Beach%20Hotels%20Palolem%2C%20Agonda&en=page_view&_fv=1&_nsi=1&_ss=1&_ee=1
IP 216.239.32.36:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /g/collect?v=2&tid=G-K1R8CG27B6>m=2oe1a1&_p=486841320&_gaz=1&cid=1097697943.1673925381&ul=en-us&sr=1280x1024&_s=1&sid=1673925381&sct=1&seg=0&dl=https%3A%2F%2Fwww.cubagoa.com%2F&dt=Cuba%20Goa%20%7C%20Palolem%20Beach%20Resort%20%7C%20Beach%20Hotels%20Palolem%2C%20Agonda&en=page_view&_fv=1&_nsi=1&_ss=1&_ee=1 HTTP/1.1
Host: region1.analytics.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.cubagoa.com
Connection: keep-alive
Referer: https://www.cubagoa.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0
HTTP/2 204 No Content
access-control-allow-origin: https://www.cubagoa.com
date: Tue, 17 Jan 2023 03:16:21 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
access-control-allow-credentials: true
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.cubagoa.com/api/ajaxfacade.cfc
13.229.118.205200 OK 65 B URL HTTP/1.1 www.cubagoa.com/api/ajaxfacade.cfc
IP 13.229.118.205:0
File type ASCII text, with no line terminators
Hash 3ef0810a9f819e49b4abff98b2e27f83
ceb8cf1d94f2575cdfcd4e6bf7645408fe6888fc
221dd381c94a22e892ced35a1292fa01a7dec344e4090f1914460d00ac8dc804
Analyzer Verdict Alert fortinet Malware
POST /api/ajaxfacade.cfc HTTP/1.1
Host: www.cubagoa.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-www-form-urlencoded; charset=UTF-8
X-Requested-With: XMLHttpRequest
Content-Length: 42
Origin: https://www.cubagoa.com
Connection: keep-alive
Referer: https://www.cubagoa.com/
Cookie: JSESSIONID=8B0CB5DD264408C42B8582C47EA932E6.cfusion; PS-REFERER=https%3A%2F%2Fwww%2Ecubagoa%2Ecom%2F; CART-MEMBER-ID=6946C556%2DE132%2D7D82%2DE6B0F31E1965BD0D; _sp_ses.aa39=*; _sp_id.aa39=4c8dfde2-450e-4c5c-bf03-b86aeb02cdc3.1673925381.1.1673925381.1673925381.6096d74a-fa3e-49a8-84c2-38d4401beeac; _ga_K1R8CG27B6=GS1.1.1673925381.1.0.1673925381.60.0.0; _ga=GA1.1.1097697943.1673925381
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Tue, 17 Jan 2023 03:16:21 GMT
Server: Apache
Strict-Transport-Security: max-age=15768000
Set-Cookie: CFAUTHORIZATION_ap=""; Max-Age=0; Expires=Thu, 01-Jan-1970 12:00:00 GMT; Path=/; HttpOnly
PS-REFERER=https%3A%2F%2Fwww%2Ecubagoa%2Ecom%2F; Expires=Wed, 18-Jan-2023 03:16:21 GMT; Path=/
Vary: Accept-Encoding
Content-Encoding: gzip
X-XSS-Protection: 1; mode=block
X-Frame-Options: sameorigin
Access-Control-Allow-Origin: *
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: text/html;charset=UTF-8
fonts.gstatic.com/s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2
142.250.74.35200 OK 15 kB URL HTTP/2 fonts.gstatic.com/s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2
IP 142.250.74.35:0
File type Web Open Font Format (Version 2), TrueType, length 15344, version 1.0\012- data
Hash 5d4aeb4e5f5ef754e307d7ffaef688bd
06db651cdf354c64a7383ea9c77024ef4fb4cef8
3e253b66056519aa065b00a453bac37ac5ed8f3e6fe7b542e93a9dcdcc11d0bc
GET /s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.google.com
Connection: keep-alive
Referer: https://www.google.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15344
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 12 Jan 2023 21:48:03 GMT
expires: Fri, 12 Jan 2024 21:48:03 GMT
cache-control: public, max-age=31536000
age: 365299
last-modified: Mon, 16 Oct 2017 17:32:55 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/roboto/v18/KFOlCnqEu92Fr1MmEU9fBBc4.woff2
142.250.74.35200 OK 16 kB URL HTTP/2 fonts.gstatic.com/s/roboto/v18/KFOlCnqEu92Fr1MmEU9fBBc4.woff2
IP 142.250.74.35:0
File type Web Open Font Format (Version 2), TrueType, length 15552, version 1.0\012- data
Hash 285467176f7fe6bb6a9c6873b3dad2cc
ea04e4ff5142ddd69307c183def721a160e0a64e
5a8c1e7681318caa29e9f44e8a6e271f6a4067a2703e9916dfd4fe9099241db7
GET /s/roboto/v18/KFOlCnqEu92Fr1MmEU9fBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.google.com
Connection: keep-alive
Referer: https://www.google.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15552
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 12 Jan 2023 16:40:43 GMT
expires: Fri, 12 Jan 2024 16:40:43 GMT
cache-control: public, max-age=31536000
age: 383739
last-modified: Mon, 16 Oct 2017 17:33:02 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
socket.tidio.co/socket.io/?ppk=duqlxiljh3a7lczgqb1gjmzgr7iyw83r&device=desktop&EIO=3&transport=websocket
54.72.193.17101 Switching Protocols 0 B URL HTTP/1.1 socket.tidio.co/socket.io/?ppk=duqlxiljh3a7lczgqb1gjmzgr7iyw83r&device=desktop&EIO=3&transport=websocket
IP 54.72.193.17:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /socket.io/?ppk=duqlxiljh3a7lczgqb1gjmzgr7iyw83r&device=desktop&EIO=3&transport=websocket HTTP/1.1
Host: socket.tidio.co
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: https://www.cubagoa.com
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: OTmjoyOiBPcbplzDsrKFQQ==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Date: Tue, 17 Jan 2023 03:16:22 GMT
Connection: upgrade
Upgrade: websocket
Sec-WebSocket-Accept: kYh8gfLekiLu9oOTC258yoletqg=
Sec-WebSocket-Extensions: permessage-deflate
ocsp.sca1b.amazontrust.com/
143.204.42.88200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 143.204.42.88:0
Hash 550f7926461ea66f9742f85aac2ef42f
3dbec0cf2ae9f29b8d6491e1fb802f1d7ffe3b6f
6e95e181dd0d36fc3556f28d533d3aec4b752f831a5aba672caeecba950f56e3
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=101642
Date: Tue, 17 Jan 2023 03:16:21 GMT
Etag: "63c4fd0f-1d7"
Expires: Wed, 18 Jan 2023 07:30:24 GMT
Last-Modified: Mon, 16 Jan 2023 07:30:23 GMT
Server: nginx
X-Cache: Miss from cloudfront
Via: 1.1 dbfaae0db03f11cf713bbcbdb25be4a2.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: zWXUhBysEIeepc16cKA2ydAzoR7I02MDngPa09VohPLEjUIMZbZVsg==
io-webware-prod1.collector.snplow.net/com.snowplowanalytics.snowplow/tp2
54.179.35.133200 OK 0 B URL HTTP/2 io-webware-prod1.collector.snplow.net/com.snowplowanalytics.snowplow/tp2
IP 54.179.35.133:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /com.snowplowanalytics.snowplow/tp2 HTTP/1.1
Host: io-webware-prod1.collector.snplow.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type
Referer: https://www.cubagoa.com/
Origin: https://www.cubagoa.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Tue, 17 Jan 2023 03:16:22 GMT
content-length: 0
server: nginx
access-control-allow-origin: https://www.cubagoa.com
access-control-allow-credentials: true
access-control-allow-headers: Content-Type, SP-Anonymous
access-control-max-age: 600
X-Firefox-Spdy: h2
s3-ap-southeast-1.amazonaws.com/assets-powerstores-com/data/org/14875/theme/20953/img/foundation-icons.woff
52.219.164.10200 OK 32 kB URL HTTP/1.1 s3-ap-southeast-1.amazonaws.com/assets-powerstores-com/data/org/14875/theme/20953/img/foundation-icons.woff
IP 52.219.164.10:0
File type Web Open Font Format, TrueType, length 32020, version 0.0\012- data
Hash a188c2f768ce5033d3f5d47be7280e25
112fb0e498037f2fea036adb8105e47638159eaa
8c44c3feedae5331a281278ea3ba91d2255928a2f3010d316d6fbb9052e0c2ec
GET /assets-powerstores-com/data/org/14875/theme/20953/img/foundation-icons.woff HTTP/1.1
Host: s3-ap-southeast-1.amazonaws.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.cubagoa.com
Connection: keep-alive
Referer: https://d14ty28lkqz1hw.cloudfront.net/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
x-amz-id-2: UEcJZTx/F8+GQfjYgBT3Gmud5kdLS//A0tr01dKwWS50ieW4lTUIKAvjHy8hEfj5OGjI4EYoU80=
x-amz-request-id: Q209AKM7MBWDNJZA
Date: Tue, 17 Jan 2023 03:16:22 GMT
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET, HEAD, PUT, POST
Access-Control-Expose-Headers: ETag
Access-Control-Max-Age: 2592000
Vary: Origin, Access-Control-Request-Headers, Access-Control-Request-Method
Last-Modified: Tue, 11 Jul 2017 12:02:29 GMT
ETag: "a188c2f768ce5033d3f5d47be7280e25"
x-amz-meta-md5-hash: a188c2f768ce5033d3f5d47be7280e25
Accept-Ranges: bytes
Content-Type: application/octet-stream
Server: AmazonS3
Content-Length: 32020
www.cubagoa.com/api/ajaxfacade.cfc
13.229.118.205200 OK 62 B URL HTTP/1.1 www.cubagoa.com/api/ajaxfacade.cfc
IP 13.229.118.205:0
File type ASCII text, with no line terminators
Hash 771adf724e44f461f18014745ce26a1c
e13c1354b3e00f73e047e61ba0d7f87a85e6e8a3
32e2075d7a8828145ce25fc1d9087951edc103130f54a8ded428475696082c4e
Analyzer Verdict Alert fortinet Malware
POST /api/ajaxfacade.cfc HTTP/1.1
Host: www.cubagoa.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-www-form-urlencoded; charset=UTF-8
X-Requested-With: XMLHttpRequest
Content-Length: 35
Origin: https://www.cubagoa.com
Connection: keep-alive
Referer: https://www.cubagoa.com/
Cookie: JSESSIONID=8B0CB5DD264408C42B8582C47EA932E6.cfusion; PS-REFERER=https%3A%2F%2Fwww%2Ecubagoa%2Ecom%2F; CART-MEMBER-ID=6946C556%2DE132%2D7D82%2DE6B0F31E1965BD0D; _sp_ses.aa39=*; _sp_id.aa39=4c8dfde2-450e-4c5c-bf03-b86aeb02cdc3.1673925381.1.1673925381.1673925381.6096d74a-fa3e-49a8-84c2-38d4401beeac; _ga_K1R8CG27B6=GS1.1.1673925381.1.0.1673925381.60.0.0; _ga=GA1.1.1097697943.1673925381
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Tue, 17 Jan 2023 03:16:22 GMT
Server: Apache
Strict-Transport-Security: max-age=15768000
Set-Cookie: CFAUTHORIZATION_ap=""; Max-Age=0; Expires=Thu, 01-Jan-1970 12:00:00 GMT; Path=/; HttpOnly
PS-REFERER=https%3A%2F%2Fwww%2Ecubagoa%2Ecom%2F; Expires=Wed, 18-Jan-2023 03:16:22 GMT; Path=/
Vary: Accept-Encoding
Content-Encoding: gzip
X-XSS-Protection: 1; mode=block
X-Frame-Options: sameorigin
Access-Control-Allow-Origin: *
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: text/html;charset=UTF-8
d2wvwvig0d1mx7.cloudfront.net/data/global/media/js/int-tel-input/js/utils.js?541464
54.230.245.86200 OK 53 kB URL HTTP/1.1 d2wvwvig0d1mx7.cloudfront.net/data/global/media/js/int-tel-input/js/utils.js?541464
IP 54.230.245.86:0
File type ASCII text, with very long lines (2048)
Hash 1fe6d70e66f44b28b78893f333785888
1c0398b09e552e6752894d043c35cd12a202e5a4
7faa0368ad21e5372a64c675ad31ff6a456da06d5cdb87f7c47eb994e914209a
GET /data/global/media/js/int-tel-input/js/utils.js?541464 HTTP/1.1
Host: d2wvwvig0d1mx7.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.cubagoa.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: text/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Server: Apache
Strict-Transport-Security: max-age=15768000
Last-Modified: Tue, 09 Jun 2020 05:27:13 GMT
X-XSS-Protection: 1; mode=block
X-Frame-Options: sameorigin
Access-Control-Allow-Origin: *
Content-Encoding: gzip
Date: Mon, 02 Jan 2023 07:39:48 GMT
Expires: Wed, 01 Feb 2023 07:39:48 GMT
Cache-Control: max-age=2592000
ETag: W/"391c8-5a79ffacf9885"
Vary: Accept-Encoding
X-Cache: Hit from cloudfront
Via: 1.1 60929bddfcfe8b3a510a9502ad6d8742.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: 4cohihxboBqbq6W4ha_QOMRoHOer9zd_eImCyjryr-aEvk9WsoJ6dg==
Age: 1280194
io-webware-prod1.collector.snplow.net/com.snowplowanalytics.snowplow/tp2
54.179.35.133200 OK 2 B URL HTTP/2 io-webware-prod1.collector.snplow.net/com.snowplowanalytics.snowplow/tp2
IP 54.179.35.133:0
File type ASCII text, with no line terminators
Hash 444bcb3a3fcf8389296c49467f27e1d6
7a85f4764bbd6daf1c3545efbbf0f279a6dc0beb
2689367b205c16ce32ed4200942b8b8b1e262dfc70d9bc9fbc77c49699a4f1df
POST /com.snowplowanalytics.snowplow/tp2 HTTP/1.1
Host: io-webware-prod1.collector.snplow.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json; charset=UTF-8
Content-Length: 1974
Origin: https://www.cubagoa.com
Connection: keep-alive
Referer: https://www.cubagoa.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Tue, 17 Jan 2023 03:16:22 GMT
content-type: text/plain; charset=UTF-8
content-length: 2
server: nginx
set-cookie: sp=ad21d276-5822-4122-bf5b-2903dbfe1602; Expires=Wed, 17 Jan 2024 03:16:22 GMT; Domain=webware.io; Path=/; Secure; HttpOnly; SameSite=Lax
p3p: policyref="/w3c/p3p.xml", CP="NOI DSP COR NID PSA OUR IND COM NAV STA"
access-control-allow-origin: https://www.cubagoa.com
access-control-allow-credentials: true
X-Firefox-Spdy: h2
d14ty28lkqz1hw.cloudfront.net/data/org/17347/theme/26461/img/favicon.ico
54.230.245.87200 OK 1.2 kB URL HTTP/1.1 d14ty28lkqz1hw.cloudfront.net/data/org/17347/theme/26461/img/favicon.ico
IP 54.230.245.87:0
File type MS Windows icon resource - 1 icon, 16x16, 32 bits/pixel\012- data
Hash d77b8f9f34bf256f4d4fdc394a87847a
6affb2d6d8e4a8dfd746aeebd92d7a7b9407c2c3
12f27768ec53d7ae46074621c58320bb6b5cfeb315a2a17c648daa11b5d28183
GET /data/org/17347/theme/26461/img/favicon.ico HTTP/1.1
Host: d14ty28lkqz1hw.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.cubagoa.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: image/x-icon
Content-Length: 1150
Connection: keep-alive
Date: Tue, 17 Jan 2023 03:16:23 GMT
Last-Modified: Thu, 18 Jul 2019 05:22:43 GMT
ETag: "d77b8f9f34bf256f4d4fdc394a87847a"
x-amz-meta-md5-hash: d77b8f9f34bf256f4d4fdc394a87847a
Accept-Ranges: bytes
Server: AmazonS3
X-Cache: Miss from cloudfront
Via: 1.1 9037b7743a833da13439f0d4e2619b52.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: Sp9QTdtOHpPikYzxT2hua1v5KJbTYklgcPDVkszm8dw_4jCwHnAqwg==
www.cubagoa.com/api/ajaxfacade.cfc
13.229.118.205200 OK 96 B URL HTTP/1.1 www.cubagoa.com/api/ajaxfacade.cfc
IP 13.229.118.205:0
File type JSON data\012- , ASCII text, with no line terminators
Hash ea5b8241f6b151d802bf52fd12e58458
49288fcb0b7a5915b54296e2fc816f602edc3a74
b22645c8585fab2baec52ec1782d11b27dc531afcaeff325d4749c8233d9ad03
Analyzer Verdict Alert fortinet Malware
POST /api/ajaxfacade.cfc HTTP/1.1
Host: www.cubagoa.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-www-form-urlencoded; charset=UTF-8
X-Requested-With: XMLHttpRequest
Content-Length: 45
Origin: https://www.cubagoa.com
Connection: keep-alive
Referer: https://www.cubagoa.com/
Cookie: JSESSIONID=8B0CB5DD264408C42B8582C47EA932E6.cfusion; PS-REFERER=https%3A%2F%2Fwww%2Ecubagoa%2Ecom%2F; CART-MEMBER-ID=6946C556%2DE132%2D7D82%2DE6B0F31E1965BD0D; _sp_ses.aa39=*; _sp_id.aa39=4c8dfde2-450e-4c5c-bf03-b86aeb02cdc3.1673925381.1.1673925381.1673925381.6096d74a-fa3e-49a8-84c2-38d4401beeac; _ga_K1R8CG27B6=GS1.1.1673925381.1.0.1673925381.60.0.0; _ga=GA1.2.1097697943.1673925381; _gid=GA1.2.1764954911.1673925382; _gat_parentTracker=1; _gat_gtag_UA_146777666_1=1; OPENID_TOKEN=69470E28%2DD50C%2DAB9C%2DDAFA667F4BCF7F2C
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Tue, 17 Jan 2023 03:16:22 GMT
Server: Apache
Strict-Transport-Security: max-age=15768000
Set-Cookie: CFAUTHORIZATION_ap=""; Max-Age=0; Expires=Thu, 01-Jan-1970 12:00:00 GMT; Path=/; HttpOnly
PS-REFERER=https%3A%2F%2Fwww%2Ecubagoa%2Ecom%2F; Expires=Wed, 18-Jan-2023 03:16:22 GMT; Path=/
Vary: Accept-Encoding
Content-Encoding: gzip
X-XSS-Protection: 1; mode=block
X-Frame-Options: sameorigin
Access-Control-Allow-Origin: *
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: text/html;charset=UTF-8
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5a57f270-98a9-442f-9239-76f1b01be9ae.jpeg
34.120.237.76200 OK 9.2 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5a57f270-98a9-442f-9239-76f1b01be9ae.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 11978fd8515619467879303c76a11092
178546ab6c6779129e49f2a7bd80560cf08fbf7c
3f4bd577a740e0b2fcfb38ba4edd72cef3d2a8da7b5949eef33b2c04d417dca8
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5a57f270-98a9-442f-9239-76f1b01be9ae.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-length: 9186
x-amzn-requestid: dcfb9d55-6741-4ac3-afb6-d6fcc316c305
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: e2tvYHw6oAMFnwQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63c5c32f-237ef8a2086f859b7b49b006;Sampled=0
x-amzn-remapped-date: Mon, 16 Jan 2023 21:35:43 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: jU1UPGJjz6GgxfBnK1alPLb4ltxnFyWU29tfI7DH6FERqQSggFZwrg==
via: 1.1 efe54e8b68e074d39b2ecd249f85100a.cloudfront.net (CloudFront), 1.1 591683988172c7980c4ebb318cbf18a8.cloudfront.net (CloudFront), 1.1 google
date: Mon, 16 Jan 2023 21:56:51 GMT
age: 19176
etag: "178546ab6c6779129e49f2a7bd80560cf08fbf7c"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
widget-v4.tidiochat.com/1_134_1/static/js/widget.20f4f25175a05958861e.js
172.67.71.3200 OK 0 B URL HTTP/2 widget-v4.tidiochat.com/1_134_1/static/js/widget.20f4f25175a05958861e.js
IP 172.67.71.3:0
GET /1_134_1/static/js/widget.20f4f25175a05958861e.js HTTP/1.1
Host: widget-v4.tidiochat.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Tue, 17 Jan 2023 03:16:21 GMT
content-type: application/javascript
last-modified: Tue, 10 Jan 2023 09:08:48 GMT
vary: Accept-Encoding
etag: W/"63bd2b20-83639"
cache-control: max-age=691200
cf-cache-status: HIT
age: 148
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=bdVje58uSiVXinTIv%2BDQD9KyeO5G8PyxWL3dsfrTFB1HtT%2FkTEtfNW4AuxG1ObMVtWJf05MkU%2BCqSjSw4mcML9jCIcJqBJQAQq%2BuJMpvRD9Qmhy2z%2FTHdTG8NGzk3qZqoBe4v7A73bNi"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 78abee81c9dbb4f3-OSL
content-encoding: br
X-Firefox-Spdy: h2
widget-v4.tidiochat.com/1_134_1/static/js/chunk-WidgetIframe-20f4f25175a05958861e.js
172.67.71.3200 OK 0 B URL HTTP/2 widget-v4.tidiochat.com/1_134_1/static/js/chunk-WidgetIframe-20f4f25175a05958861e.js
IP 172.67.71.3:0
GET /1_134_1/static/js/chunk-WidgetIframe-20f4f25175a05958861e.js HTTP/1.1
Host: widget-v4.tidiochat.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Tue, 17 Jan 2023 03:16:21 GMT
content-type: application/javascript
last-modified: Tue, 10 Jan 2023 09:08:48 GMT
vary: Accept-Encoding
etag: W/"63bd2b20-5638b"
cache-control: max-age=691200
cf-cache-status: HIT
age: 7186
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=6KAvSgkHA83Mnn37ToJpx1zDU28XhB%2BjvGHdRrkB2Yi5fA7zZGDzhrBBjOWBae6LJLVYnkU3LK8xOKXjaNXuH%2FfpJQOQvWbVJynZC7kW3Nczacuzx2o3NMBs1RtI3Xr8Xn%2FIuul65hgv"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 78abee80a973b4f3-OSL
content-encoding: br
X-Firefox-Spdy: h2
widget-v4.tidiochat.com/1_134_1/static/js/render.20f4f25175a05958861e.js
172.67.71.3200 OK 0 B URL HTTP/2 widget-v4.tidiochat.com/1_134_1/static/js/render.20f4f25175a05958861e.js
IP 172.67.71.3:0
GET /1_134_1/static/js/render.20f4f25175a05958861e.js HTTP/1.1
Host: widget-v4.tidiochat.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.cubagoa.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Tue, 17 Jan 2023 03:16:20 GMT
content-type: application/javascript
last-modified: Tue, 10 Jan 2023 09:08:48 GMT
vary: Accept-Encoding
etag: W/"63bd2b20-570f"
cache-control: max-age=691200
cf-cache-status: HIT
age: 269
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=w8Iuf%2FTgQIOLxJA1lpvWTb5mssk1oxjlOEWvtQdJwQJ4HAeJQyXxR9vM9XWQlCs8Qgnifs9DdQxDQYs%2FFo6n3u6EAAl3gSFo6nPip42JiU1VHdL2iEDn9pfv1Lx8UuwVNpwLt9YdDDDo"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 78abee7acee4b4f3-OSL
content-encoding: br
X-Firefox-Spdy: h2
d2wvwvig0d1mx7.cloudfront.net/data/org/17347/media/img/cache/1600x0/1802711_1600x0.jpg
54.230.245.86200 OK 0 B URL HTTP/1.1 d2wvwvig0d1mx7.cloudfront.net/data/org/17347/media/img/cache/1600x0/1802711_1600x0.jpg
IP 54.230.245.86:0
GET /data/org/17347/media/img/cache/1600x0/1802711_1600x0.jpg HTTP/1.1
Host: d2wvwvig0d1mx7.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.cubagoa.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: image/jpeg
Content-Length: 360767
Connection: keep-alive
Date: Mon, 19 Dec 2022 09:54:58 GMT
Server: Apache
Strict-Transport-Security: max-age=15768000
Last-Modified: Thu, 18 Jul 2019 08:57:35 GMT
ETag: "5813f-58df0cd10d973"
Accept-Ranges: bytes
Cache-Control: max-age=2592000
Expires: Wed, 18 Jan 2023 09:54:58 GMT
X-XSS-Protection: 1; mode=block
X-Frame-Options: sameorigin
Access-Control-Allow-Origin: *
X-Cache: Hit from cloudfront
Via: 1.1 60929bddfcfe8b3a510a9502ad6d8742.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: Y7lPwjMkNd9JgySI3B_OIlNtYd1znieW6f2WtakVn5wiArMZdQer2A==
Age: 2481683
fonts.googleapis.com/css?family=Playfair+Display:400,700,900&display=swap
216.58.207.202200 OK 0 B URL HTTP/2 fonts.googleapis.com/css?family=Playfair+Display:400,700,900&display=swap
IP 216.58.207.202:0
GET /css?family=Playfair+Display:400,700,900&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.cubagoa.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Tue, 17 Jan 2023 03:16:20 GMT
date: Tue, 17 Jan 2023 03:16:20 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2