capratv.blogspot.com/2020/06/hora-de-aventura-t4-e26.html?m=1
200 OK 36 kB URL User Request GET HTTP/2 capratv.blogspot.com/2020/06/hora-de-aventura-t4-e26.html?m=1
IP
Certificate IssuerGoogle Trust Services LLC
Subjectmisc-sni.blogspot.com
Fingerprint07:E2:99:33:66:25:16:0A:1D:C3:C7:18:D8:82:4A:F0:37:40:E1:5B
ValidityMon, 23 Oct 2023 11:23:28 GMT - Mon, 15 Jan 2024 11:23:27 GMT
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (10904)
Hash 2e8d50ca1d956061272efe2a2c5df38b
73c5d50a1a3a5f7f0bc032d11aeff671ac2c9ef5
89d3971d5f9aec44b88677794c5bee30b35e9ca0551c4df922d038f2956d391f
GET /2020/06/hora-de-aventura-t4-e26.html?m=1 HTTP/1.1
Host: capratv.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: text/html; charset=UTF-8
expires: Fri, 01 Dec 2023 03:07:44 GMT
date: Fri, 01 Dec 2023 03:07:44 GMT
cache-control: private, max-age=0
last-modified: Fri, 01 Dec 2023 01:51:32 GMT
etag: W/"61e8ee024baf81c390db5c26852dad3fff921ba5e7c6b9c14858d6a829a2af85"
x-robots-tag: noimageindex
content-encoding: gzip
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
content-length: 36443
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
cdnjs.cloudflare.com/ajax/libs/animate.css/3.7.2/animate.min.css
200 OK 3.5 kB URL GET HTTP/2 cdnjs.cloudflare.com/ajax/libs/animate.css/3.7.2/animate.min.css
IP
Requested by https://capratv.blogspot.com/2020/06/hora-de-aventura-t4-e26.html?m=1
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint7A:EA:B9:09:71:70:6C:87:C9:D3:82:74:8A:7B:B4:60:E5:40:2D:8D
ValidityMon, 03 Jul 2023 00:00:00 GMT - Tue, 02 Jul 2024 23:59:59 GMT
File type ASCII text, with very long lines (57919)
Hash bc1a6a99c43f5ccc97d2d350bde13f74
29a6f54569c193ffd6116f03be3eb42359c60eb7
3c770e90f98eb21b0c042fafb49755af93306fbaf42e449524f94fae9fc83295
GET /ajax/libs/animate.css/3.7.2/animate.min.css HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://capratv.blogspot.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 01 Dec 2023 03:07:45 GMT
content-type: text/css; charset=utf-8
content-length: 3511
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "5eb03d2a-e311"
last-modified: Mon, 04 May 2020 16:04:58 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 768558
expires: Wed, 20 Nov 2024 03:07:45 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=8TyQMpN2kjIJwakBsccFAs5bwYNrq5AE59g4BdsD5yNXkFyCE0XkfB2TYJWw3qFH51aqv34soNMkVeJGvVyV39B0vDPY5Z5Xj7eQgqllLPE26NIydHdfgWUv99JbLcn8WQuqPKX3"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 82e81f286929b509-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
capratv.blogspot.com/js/cookienotice.js
200 OK 2.0 kB URL GET HTTP/3 capratv.blogspot.com/js/cookienotice.js
IP
Requested by https://capratv.blogspot.com/2020/06/hora-de-aventura-t4-e26.html?m=1
Certificate IssuerGoogle Trust Services LLC
Subjectmisc-sni.blogspot.com
Fingerprint07:E2:99:33:66:25:16:0A:1D:C3:C7:18:D8:82:4A:F0:37:40:E1:5B
ValidityMon, 23 Oct 2023 11:23:28 GMT - Mon, 15 Jan 2024 11:23:27 GMT
Hash a705132a2174f88e196ec3610d68faa8
3bad57a48d973a678fec600d45933010f6edc659
068ffe90977f2b5b2dc2ef18572166e85281bd0ecb31c4902464b23db54d2568
GET /js/cookienotice.js HTTP/1.1
Host: capratv.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://capratv.blogspot.com/2020/06/hora-de-aventura-t4-e26.html?m=1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-type: text/javascript
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="blogger-tech"
report-to: {"group":"blogger-tech","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/blogger-tech"}]}
content-length: 2026
date: Fri, 01 Dec 2023 03:07:45 GMT
expires: Fri, 08 Dec 2023 03:07:45 GMT
cache-control: public, max-age=604800
last-modified: Thu, 30 Nov 2023 12:55:18 GMT
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
pagead2.googlesyndication.com/pagead/js/adsbygoogle.js?client=ca-pub-8968843069260416
200 OK 53 kB URL GET HTTP/3 pagead2.googlesyndication.com/pagead/js/adsbygoogle.js?client=ca-pub-8968843069260416
IP
Requested by https://capratv.blogspot.com/2020/06/hora-de-aventura-t4-e26.html?m=1
Certificate IssuerGoogle Trust Services LLC
Subject*.g.doubleclick.net
Fingerprint6C:2A:75:F2:3F:EF:4F:43:B1:8D:C3:B7:E9:2E:4A:EF:40:6A:FC:92
ValidityMon, 23 Oct 2023 11:18:19 GMT - Mon, 15 Jan 2024 11:18:18 GMT
File type ASCII text, with very long lines (3968)
Hash 9898fc59994c25247dc0930715559724
6d51ea2c8a0d09768da5a4cfdb52d3fce2ad501c
e0ccaa24298eecba6d2c5a54cb03625dd15ae8e498ccfcb5ff4d439f6876f6dd
GET /pagead/js/adsbygoogle.js?client=ca-pub-8968843069260416 HTTP/1.1
Host: pagead2.googlesyndication.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://capratv.blogspot.com
DNT: 1
Connection: keep-alive
Referer: https://capratv.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
vary: Accept-Encoding
date: Fri, 01 Dec 2023 03:07:45 GMT
expires: Fri, 01 Dec 2023 03:07:45 GMT
cache-control: private, max-age=3600
content-type: text/javascript; charset=UTF-8
etag: 13541999176054990821
access-control-allow-origin: *
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: br
server: cafe
content-length: 52762
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
cdn.jsdelivr.net/npm/bootstrap@5.1.3/dist/js/bootstrap.bundle.min.js
200 OK 24 kB URL GET HTTP/2 cdn.jsdelivr.net/npm/bootstrap@5.1.3/dist/js/bootstrap.bundle.min.js
IP
Requested by https://capratv.blogspot.com/2020/06/hora-de-aventura-t4-e26.html?m=1
Certificate IssuerGlobalSign nv-sa
Subjectjsdelivr.net
Fingerprint05:87:2C:BA:73:14:21:54:82:00:8B:AD:85:8F:E9:C6:4D:C7:66:09
ValidityWed, 27 Sep 2023 18:13:13 GMT - Mon, 28 Oct 2024 18:13:12 GMT
File type ASCII text, with very long lines (65299)
Hash 7ccd9d390d31af98110f74f842ea9b32
a85e681624c91a106a514c31eacf80de817b2cc3
f5210fa3e7f0245a4c51eb7f280092c0ef99fdd28c45e17dab8cc5854fdf4fd3
GET /npm/bootstrap@5.1.3/dist/js/bootstrap.bundle.min.js HTTP/1.1
Host: cdn.jsdelivr.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://capratv.blogspot.com
DNT: 1
Connection: keep-alive
Referer: https://capratv.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: *
timing-allow-origin: *
cache-control: public, max-age=31536000, s-maxage=31536000, immutable
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload
content-type: application/javascript; charset=utf-8
x-jsd-version: 5.1.3
x-jsd-version-type: version
etag: W/"13131-qF5oFiTJGhBqUUwx6s+A3oF7LMM"
content-encoding: br
accept-ranges: bytes
date: Fri, 01 Dec 2023 03:07:45 GMT
age: 6913651
x-served-by: cache-fra-etou8220091-FRA, cache-bma1624-BMA
x-cache: HIT, HIT
vary: Accept-Encoding
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 24376
X-Firefox-Spdy: h2
code.jquery.com/jquery-3.4.1.slim.min.js
200 OK 24 kB URL GET HTTP/2 code.jquery.com/jquery-3.4.1.slim.min.js
IP
Requested by https://capratv.blogspot.com/2020/06/hora-de-aventura-t4-e26.html?m=1
Certificate IssuerSectigo Limited
Subject*.jquery.com
FingerprintD2:19:0A:AD:CE:BB:9C:61:17:5D:29:4B:A2:54:E8:C6:91:B8:F9:8D
ValidityTue, 11 Jul 2023 00:00:00 GMT - Sun, 14 Jul 2024 23:59:59 GMT
File type ASCII text, with very long lines (65247)
Hash d9b11ca4d877c327889805b73bb79edd
dd15958a3f0f1f3601461f927c4703a56ed59011
a5ab2a00a0439854f8787a0dda775dea5377ef4905886505c938941d6854ee4f
GET /jquery-3.4.1.slim.min.js HTTP/1.1
Host: code.jquery.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://capratv.blogspot.com
DNT: 1
Connection: keep-alive
Referer: https://capratv.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
content-type: application/javascript; charset=utf-8
last-modified: Fri, 18 Oct 1991 12:00:00 GMT
etag: W/"28feccc0-1157d"
cache-control: public, max-age=31536000, stale-while-revalidate=604800
access-control-allow-origin: *
content-encoding: gzip
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Fri, 01 Dec 2023 03:07:45 GMT
age: 6496263
x-served-by: cache-lga13626-LGA, cache-bma1622-BMA
x-cache: HIT, HIT
x-cache-hits: 33, 17311
x-timer: S1701400065.496082,VS0,VE0
vary: Accept-Encoding
content-length: 24328
X-Firefox-Spdy: h2
www.googletagmanager.com/gtag/js?id=G-8G9B8ZGWQK
200 OK 87 kB URL GET HTTP/2 www.googletagmanager.com/gtag/js?id=G-8G9B8ZGWQK
IP
Requested by https://capratv.blogspot.com/2020/06/hora-de-aventura-t4-e26.html?m=1
Certificate IssuerGoogle Trust Services LLC
Subject*.google-analytics.com
Fingerprint37:42:10:B7:89:70:45:51:80:81:66:CE:95:21:72:5D:46:0B:E2:34
ValidityMon, 23 Oct 2023 11:18:19 GMT - Mon, 15 Jan 2024 11:18:18 GMT
File type ASCII text, with very long lines (3034)
Hash 05fa29f4d8019c119ba15340cd10a6a6
0a4d76ec70ba9d8e23dffdc611ba1cdd3afd4c44
b53ce0727d54369940bce65f40bd9637ffcbfe60ae2cbb41651099ae556ada21
GET /gtag/js?id=G-8G9B8ZGWQK HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://capratv.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Fri, 01 Dec 2023 03:07:45 GMT
expires: Fri, 01 Dec 2023 03:07:45 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 87261
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ajax.googleapis.com/ajax/libs/jquery/3.3.1/jquery.min.js
200 OK 30 kB URL GET HTTP/2 ajax.googleapis.com/ajax/libs/jquery/3.3.1/jquery.min.js
IP
Requested by https://capratv.blogspot.com/2020/06/hora-de-aventura-t4-e26.html?m=1
Certificate IssuerGoogle Trust Services LLC
Subjectupload.video.google.com
FingerprintCC:96:E0:52:E0:9B:EA:A9:A0:F8:88:9A:90:20:11:47:61:00:3C:42
ValidityMon, 23 Oct 2023 11:24:07 GMT - Mon, 15 Jan 2024 11:24:06 GMT
File type ASCII text, with very long lines (65451)
Hash a09e13ee94d51c524b7e2a728c7d4039
0dc32db4aa9c5f03f3b38c47d883dbd4fed13aae
160a426ff2894252cd7cebbdd6d6b7da8fcd319c65b70468f10b6690c45d02ef
GET /ajax/libs/jquery/3.3.1/jquery.min.js HTTP/1.1
Host: ajax.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://capratv.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/hosted-libraries-pushers
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="hosted-libraries-pushers"
report-to: {"group":"hosted-libraries-pushers","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/hosted-libraries-pushers"}]}
timing-allow-origin: *
content-length: 30399
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 29 Nov 2023 17:33:53 GMT
expires: Thu, 28 Nov 2024 17:33:53 GMT
cache-control: public, max-age=31536000, stale-while-revalidate=2592000
last-modified: Tue, 03 Mar 2020 19:15:00 GMT
content-type: text/javascript; charset=UTF-8
vary: Accept-Encoding
age: 120832
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
cdn.jsdelivr.net/npm/popper.js@1.16.0/dist/umd/popper.min.js
200 OK 7.8 kB URL GET HTTP/2 cdn.jsdelivr.net/npm/popper.js@1.16.0/dist/umd/popper.min.js
IP
Requested by https://capratv.blogspot.com/2020/06/hora-de-aventura-t4-e26.html?m=1
Certificate IssuerGlobalSign nv-sa
Subjectjsdelivr.net
Fingerprint05:87:2C:BA:73:14:21:54:82:00:8B:AD:85:8F:E9:C6:4D:C7:66:09
ValidityWed, 27 Sep 2023 18:13:13 GMT - Mon, 28 Oct 2024 18:13:12 GMT
File type ASCII text, with very long lines (21084)
Hash 84415b7368fd6fc764cbe86039ce0626
62f238e73348c77eb9e865426a7d1b7de23cbb2d
c776195ad46333c6c9a9fe3c74502ffea9a02faf122388ea3567922cc65a3060
GET /npm/popper.js@1.16.0/dist/umd/popper.min.js HTTP/1.1
Host: cdn.jsdelivr.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://capratv.blogspot.com
DNT: 1
Connection: keep-alive
Referer: https://capratv.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: *
timing-allow-origin: *
cache-control: public, max-age=31536000, s-maxage=31536000, immutable
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload
content-type: application/javascript; charset=utf-8
x-jsd-version: 1.16.0
x-jsd-version-type: version
etag: W/"5309-YvI45zNIx3656GVCan0bfeI8uy0"
content-encoding: br
accept-ranges: bytes
date: Fri, 01 Dec 2023 03:07:45 GMT
age: 15936957
x-served-by: cache-fra-eddf8230104-FRA, cache-bma1624-BMA
x-cache: HIT, HIT
vary: Accept-Encoding
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 7835
X-Firefox-Spdy: h2
cdn.jsdelivr.net/npm/bootstrap@5.1.3/dist/css/bootstrap.min.css
200 OK 26 kB URL GET HTTP/2 cdn.jsdelivr.net/npm/bootstrap@5.1.3/dist/css/bootstrap.min.css
IP
Requested by https://capratv.blogspot.com/2020/06/hora-de-aventura-t4-e26.html?m=1
Certificate IssuerGlobalSign nv-sa
Subjectjsdelivr.net
Fingerprint05:87:2C:BA:73:14:21:54:82:00:8B:AD:85:8F:E9:C6:4D:C7:66:09
ValidityWed, 27 Sep 2023 18:13:13 GMT - Mon, 28 Oct 2024 18:13:12 GMT
File type Unicode text, UTF-8 text, with very long lines (65306)
Hash 94994c66fec8c3468b269dc0cc242151
ec16bd19bf4ae9bc2e2336ac409a503bbbdaacad
62f74b1cf824a89f03554c638e719594c309b4d8a627a758928c0516fa7890ab
GET /npm/bootstrap@5.1.3/dist/css/bootstrap.min.css HTTP/1.1
Host: cdn.jsdelivr.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://capratv.blogspot.com
DNT: 1
Connection: keep-alive
Referer: https://capratv.blogspot.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: *
timing-allow-origin: *
cache-control: public, max-age=31536000, s-maxage=31536000, immutable
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload
content-type: text/css; charset=utf-8
x-jsd-version: 5.1.3
x-jsd-version-type: version
etag: W/"28021-7Ba9Gb9K6bwuIzasQJpQO7varK0"
content-encoding: br
accept-ranges: bytes
date: Fri, 01 Dec 2023 03:07:45 GMT
age: 16896456
x-served-by: cache-fra-eddf8230037-FRA, cache-bma1624-BMA
x-cache: HIT, HIT
vary: Accept-Encoding
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 26333
X-Firefox-Spdy: h2
www.gstatic.com/external_hosted/clipboardjs/clipboard.min.js
200 OK 3.5 kB URL GET HTTP/2 www.gstatic.com/external_hosted/clipboardjs/clipboard.min.js
IP
Requested by https://capratv.blogspot.com/2020/06/hora-de-aventura-t4-e26.html?m=1
Certificate IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintE5:79:1F:1A:04:3F:B9:B0:FB:41:4E:B5:E5:97:AD:FE:D9:2C:4A:CD
ValidityMon, 23 Oct 2023 11:24:07 GMT - Mon, 15 Jan 2024 11:24:06 GMT
File type Unicode text, UTF-8 text, with very long lines (10473)
Hash 158013acb7e269a3dbe18de855656c97
08fa355584fc849539b3f04589ae6f61eb4a7d98
92e40dc4bbb485a182b796c58e6da7974cb8a6a84fdb4548ace3b85c991f0f94
GET /external_hosted/clipboardjs/clipboard.min.js HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://capratv.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
content-encoding: br
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="static-on-bigtable"
report-to: {"group":"static-on-bigtable","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/static-on-bigtable"}]}
content-length: 3475
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 01 Dec 2023 03:07:45 GMT
expires: Fri, 01 Dec 2023 03:07:45 GMT
cache-control: public, max-age=0
last-modified: Thu, 20 Jul 2023 22:48:00 GMT
content-type: text/javascript
vary: Accept-Encoding
age: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
www.blogger.com/static/v1/jsbin/4235886812-comment_from_post_iframe.js
200 OK 6.8 kB URL GET HTTP/2 www.blogger.com/static/v1/jsbin/4235886812-comment_from_post_iframe.js
IP
Requested by https://capratv.blogspot.com/2020/06/hora-de-aventura-t4-e26.html?m=1
Certificate IssuerGoogle Trust Services LLC
Subject*.blogger.com
Fingerprint4A:89:9B:E5:F1:54:0E:2D:0A:8E:40:A8:27:DF:2E:6B:7F:74:51:90
ValidityMon, 23 Oct 2023 11:17:52 GMT - Mon, 15 Jan 2024 11:17:51 GMT
File type ASCII text, with very long lines (2165)
Hash 49aad9405434d8887646881ecda8cf64
59bfe11a22024072043b6fc2562ce01b3d4b7344
d86e5bbbff2909f2cefcd5edbbb5b224660e76913e3872dc029758206955a8c6
GET /static/v1/jsbin/4235886812-comment_from_post_iframe.js HTTP/1.1
Host: www.blogger.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://capratv.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
content-encoding: gzip
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="blogger-tech"
report-to: {"group":"blogger-tech","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/blogger-tech"}]}
content-length: 6760
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 29 Nov 2023 21:37:44 GMT
expires: Thu, 28 Nov 2024 21:37:44 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 29 Nov 2023 17:00:16 GMT
content-type: text/javascript
vary: Accept-Encoding
age: 106201
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
capratv.blogspot.com/b/csi.js?h=unVwOGQH9SsIcJBr4Xp3HcCvUJyc_uBy8Ir4YHk_V1Y
200 OK 26 kB URL GET HTTP/3 capratv.blogspot.com/b/csi.js?h=unVwOGQH9SsIcJBr4Xp3HcCvUJyc_uBy8Ir4YHk_V1Y
IP
Requested by https://capratv.blogspot.com/2020/06/hora-de-aventura-t4-e26.html?m=1
Certificate IssuerGoogle Trust Services LLC
Subjectmisc-sni.blogspot.com
Fingerprint07:E2:99:33:66:25:16:0A:1D:C3:C7:18:D8:82:4A:F0:37:40:E1:5B
ValidityMon, 23 Oct 2023 11:23:28 GMT - Mon, 15 Jan 2024 11:23:27 GMT
File type ASCII text, with very long lines (20912)
Hash 03957f67bfa1854a194c76a08c2cde43
736186e38b42b0f9f95fe06368de77616edbb277
0da69ab732db75351f4e5fc21d9aee5a93e171a0f328da49c82f0f8ed62fa436
GET /b/csi.js?h=unVwOGQH9SsIcJBr4Xp3HcCvUJyc_uBy8Ir4YHk_V1Y HTTP/1.1
Host: capratv.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://capratv.blogspot.com/2020/06/hora-de-aventura-t4-e26.html?m=1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
content-security-policy: script-src 'self' *.google.com *.google-analytics.com 'unsafe-inline' 'unsafe-eval' *.gstatic.com *.googlesyndication.com *.blogger.com *.googleapis.com uds.googleusercontent.com https://s.ytimg.com https://i18n-cloud.appspot.com https://www.youtube.com www-onepick-opensocial.googleusercontent.com www-bloggervideo-opensocial.googleusercontent.com www-blogger-opensocial.googleusercontent.com https://www.blogblog.com; report-uri /cspreport
content-type: text/javascript; charset=UTF-8
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Fri, 01 Dec 2023 03:07:45 GMT
content-encoding: gzip
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
content-length: 25996
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
pagead2.googlesyndication.com/pagead/js/adsbygoogle.js?client=ca-pub-8968843069260416&host=ca-host-pub-1556223355139109
200 OK 53 kB URL GET HTTP/3 pagead2.googlesyndication.com/pagead/js/adsbygoogle.js?client=ca-pub-8968843069260416&host=ca-host-pub-1556223355139109
IP
Requested by https://capratv.blogspot.com/2020/06/hora-de-aventura-t4-e26.html?m=1
Certificate IssuerGoogle Trust Services LLC
Subject*.g.doubleclick.net
Fingerprint6C:2A:75:F2:3F:EF:4F:43:B1:8D:C3:B7:E9:2E:4A:EF:40:6A:FC:92
ValidityMon, 23 Oct 2023 11:18:19 GMT - Mon, 15 Jan 2024 11:18:18 GMT
File type ASCII text, with very long lines (3968)
Hash 5303792f16fe6ae1461280adedc7a232
65eb597115f03be19dfbba3f79aaca5e8a2ccbdc
87aa054190f86a8574b7d4491c7e79d14ee43a8835ff192e24a0af9b06aa4339
GET /pagead/js/adsbygoogle.js?client=ca-pub-8968843069260416&host=ca-host-pub-1556223355139109 HTTP/1.1
Host: pagead2.googlesyndication.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://capratv.blogspot.com
DNT: 1
Connection: keep-alive
Referer: https://capratv.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
vary: Accept-Encoding
date: Fri, 01 Dec 2023 03:07:45 GMT
expires: Fri, 01 Dec 2023 03:07:45 GMT
cache-control: private, max-age=3600
content-type: text/javascript; charset=UTF-8
etag: 16080213775971622797
access-control-allow-origin: *
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: br
server: cafe
content-length: 52760
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
resources.blogblog.com/blogblog/data/res/403235463-indie_compiled.js
200 OK 47 kB URL GET HTTP/2 resources.blogblog.com/blogblog/data/res/403235463-indie_compiled.js
IP
Requested by https://capratv.blogspot.com/2020/06/hora-de-aventura-t4-e26.html?m=1
Certificate IssuerGoogle Trust Services LLC
Subject*.blogger.com
Fingerprint4A:89:9B:E5:F1:54:0E:2D:0A:8E:40:A8:27:DF:2E:6B:7F:74:51:90
ValidityMon, 23 Oct 2023 11:17:52 GMT - Mon, 15 Jan 2024 11:17:51 GMT
File type ASCII text, with very long lines (1721)
Hash 5e09a625d98829b4a924d49b95db611a
2fd5eac6602ea8e53e2df6c3f859153229603739
9fc2d4fd976d828b6f2851cfcf31c079139924781cac8f1aae1f59b972f91262
GET /blogblog/data/res/403235463-indie_compiled.js HTTP/1.1
Host: resources.blogblog.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://capratv.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
content-encoding: gzip
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="blogger-tech"
report-to: {"group":"blogger-tech","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/blogger-tech"}]}
content-length: 47331
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 29 Nov 2023 23:11:57 GMT
expires: Wed, 06 Dec 2023 23:11:57 GMT
cache-control: public, max-age=604800
last-modified: Wed, 29 Nov 2023 18:59:55 GMT
content-type: text/javascript
vary: Accept-Encoding
age: 100548
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
www.blogger.com/img/blogger_logo_round_35.png
200 OK 2.5 kB URL GET HTTP/2 www.blogger.com/img/blogger_logo_round_35.png
IP
Requested by https://capratv.blogspot.com/2020/06/hora-de-aventura-t4-e26.html?m=1
Certificate IssuerGoogle Trust Services LLC
Subject*.blogger.com
Fingerprint4A:89:9B:E5:F1:54:0E:2D:0A:8E:40:A8:27:DF:2E:6B:7F:74:51:90
ValidityMon, 23 Oct 2023 11:17:52 GMT - Mon, 15 Jan 2024 11:17:51 GMT
File type PNG image data, 35 x 35, 8-bit/color RGBA, non-interlaced\012- data
Hash 838622483cbfed35380b4705f19d7cca
7de684136affc969a24d61927afc18905cf2fc36
183923f8c8c3960dce8ad9722cf55a30d19b321b721741bd9e2ab6ae1f1ae72a
GET /img/blogger_logo_round_35.png HTTP/1.1
Host: www.blogger.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://capratv.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="blogger-tech"
report-to: {"group":"blogger-tech","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/blogger-tech"}]}
content-length: 2531
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 29 Nov 2023 19:17:10 GMT
expires: Wed, 06 Dec 2023 19:17:10 GMT
cache-control: public, max-age=604800
last-modified: Wed, 29 Nov 2023 17:00:16 GMT
content-type: image/png
age: 114635
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
www.blogger.com/static/v1/widgets/325989852-widgets.js
200 OK 59 kB URL GET HTTP/2 www.blogger.com/static/v1/widgets/325989852-widgets.js
IP
Requested by https://capratv.blogspot.com/2020/06/hora-de-aventura-t4-e26.html?m=1
Certificate IssuerGoogle Trust Services LLC
Subject*.blogger.com
Fingerprint4A:89:9B:E5:F1:54:0E:2D:0A:8E:40:A8:27:DF:2E:6B:7F:74:51:90
ValidityMon, 23 Oct 2023 11:17:52 GMT - Mon, 15 Jan 2024 11:17:51 GMT
File type ASCII text, with very long lines (2258)
Hash 2aaaea7286ee481cbc12cfd76e10c0cf
6e8576cb84ac125faa0bc0a5fe5508166cc4eed8
4bfa00cdbc7a40f5dad3dfc3a21dada224e61e358e78d7b262bab098bccbc580
GET /static/v1/widgets/325989852-widgets.js HTTP/1.1
Host: www.blogger.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://capratv.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
content-encoding: gzip
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="blogger-tech"
report-to: {"group":"blogger-tech","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/blogger-tech"}]}
content-length: 59316
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 30 Nov 2023 14:08:07 GMT
expires: Fri, 29 Nov 2024 14:08:07 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 29 Nov 2023 05:57:17 GMT
content-type: text/javascript
vary: Accept-Encoding
age: 46778
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
pagead2.googlesyndication.com/pagead/js/adsbygoogle.js
200 OK 53 kB URL GET HTTP/2 pagead2.googlesyndication.com/pagead/js/adsbygoogle.js
IP
Requested by https://capratv.blogspot.com/2020/06/hora-de-aventura-t4-e26.html?m=1
Certificate IssuerGoogle Trust Services LLC
Subject*.g.doubleclick.net
Fingerprint6C:2A:75:F2:3F:EF:4F:43:B1:8D:C3:B7:E9:2E:4A:EF:40:6A:FC:92
ValidityMon, 23 Oct 2023 11:18:19 GMT - Mon, 15 Jan 2024 11:18:18 GMT
File type ASCII text, with very long lines (3968)
Hash 96365650d400549b901601ed4d0d3b88
37c7d763a70a62c21f9e4c0f1abdc143e6447ee4
be8466aabbbb53bf6acb862d179c61ff92ad0dbbcd8c1b107a4cc65be26ed2c7
GET /pagead/js/adsbygoogle.js HTTP/1.1
Host: pagead2.googlesyndication.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://capratv.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
vary: Accept-Encoding
date: Fri, 01 Dec 2023 03:07:46 GMT
expires: Fri, 01 Dec 2023 03:07:46 GMT
cache-control: private, max-age=3600
content-type: text/javascript; charset=UTF-8
etag: 18189746456685297258
access-control-allow-origin: *
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: br
server: cafe
content-length: 52758
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
www.google.com/js/bg/unVwOGQH9SsIcJBr4Xp3HcCvUJyc_uBy8Ir4YHk_V1Y.js
200 OK 15 kB URL GET HTTP/2 www.google.com/js/bg/unVwOGQH9SsIcJBr4Xp3HcCvUJyc_uBy8Ir4YHk_V1Y.js
IP
Requested by https://capratv.blogspot.com/2020/06/hora-de-aventura-t4-e26.html?m=1
Certificate IssuerGoogle Trust Services LLC
Subjectwww.google.com
FingerprintB0:8E:97:10:7E:30:90:F6:42:A1:32:63:5C:78:27:D3:A8:F1:05:D1
ValidityMon, 23 Oct 2023 11:24:57 GMT - Mon, 15 Jan 2024 11:24:56 GMT
File type ASCII text, with very long lines (38250)
Hash 5a4bf2385f21bf8eeae0e2948ab0f6e4
dfaf3c7ed8c4aac80b3647f8a53aa5262e293c1e
ba7570386407f52b0870906be17a771dc0af509c9cfee072f08af860793f5756
GET /js/bg/unVwOGQH9SsIcJBr4Xp3HcCvUJyc_uBy8Ir4YHk_V1Y.js HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://capratv.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
content-encoding: br
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/botguard-scs
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="botguard-scs"
report-to: {"group":"botguard-scs","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/botguard-scs"}]}
content-length: 14990
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 30 Nov 2023 04:18:21 GMT
expires: Fri, 29 Nov 2024 04:18:21 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 06 Nov 2023 17:00:00 GMT
content-type: text/javascript
vary: Accept-Encoding
age: 82165
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
capratv.blogspot.com/responsive/sprite_v1_6.css.svg
200 OK 2.2 kB URL GET HTTP/3 capratv.blogspot.com/responsive/sprite_v1_6.css.svg
IP
Requested by https://capratv.blogspot.com/2020/06/hora-de-aventura-t4-e26.html?m=1
Certificate IssuerGoogle Trust Services LLC
Subjectmisc-sni.blogspot.com
Fingerprint07:E2:99:33:66:25:16:0A:1D:C3:C7:18:D8:82:4A:F0:37:40:E1:5B
ValidityMon, 23 Oct 2023 11:23:28 GMT - Mon, 15 Jan 2024 11:23:27 GMT
File type SVG Scalable Vector Graphics image\012- SVG XML document\012- XML 1.0 document text\012- SVG XML document\012- XML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (7657)
Hash d4dcfc8144f556815c7a1d84ed4e959e
22088bd6cdf970dcf7bfab9a74a4768548ca8890
73d16aca9b019e42dd2de3a10e5049b5606268ce0d8e3a167b05b37acb9b0e9c
GET /responsive/sprite_v1_6.css.svg HTTP/1.1
Host: capratv.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://capratv.blogspot.com/2020/06/hora-de-aventura-t4-e26.html?m=1
Cookie: _ga_8G9B8ZGWQK=GS1.1.1701400070.1.0.1701400070.0.0.0; _ga=GA1.1.703130953.1701400071
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: same-origin
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
accept-ranges: bytes
content-encoding: gzip
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="blogger-tech"
report-to: {"group":"blogger-tech","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/blogger-tech"}]}
content-length: 2244
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 30 Nov 2023 15:01:57 GMT
expires: Thu, 07 Dec 2023 15:01:57 GMT
cache-control: public, max-age=604800
last-modified: Thu, 30 Nov 2023 01:55:02 GMT
content-type: image/svg+xml
vary: Accept-Encoding
age: 43549
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
pagead2.googlesyndication.com/pagead/js/adsbygoogle.js?client=ca-pub-8968843069260416&host=ca-host-pub-1556223355139109
200 OK 53 kB URL GET HTTP/3 pagead2.googlesyndication.com/pagead/js/adsbygoogle.js?client=ca-pub-8968843069260416&host=ca-host-pub-1556223355139109
IP
Requested by https://capratv.blogspot.com/2020/06/hora-de-aventura-t4-e26.html?m=1
Certificate IssuerGoogle Trust Services LLC
Subject*.g.doubleclick.net
Fingerprint6C:2A:75:F2:3F:EF:4F:43:B1:8D:C3:B7:E9:2E:4A:EF:40:6A:FC:92
ValidityMon, 23 Oct 2023 11:18:19 GMT - Mon, 15 Jan 2024 11:18:18 GMT
File type ASCII text, with very long lines (3968)
Hash 1f154c8c0d8f6abde8d7da7292b3be81
fe3106dabf658389220e6dac0bf126b28ac36f1b
2178b78739fed03c2167c2837bfefe51470c1231bff4bff63193bd0028ce08aa
GET /pagead/js/adsbygoogle.js?client=ca-pub-8968843069260416&host=ca-host-pub-1556223355139109 HTTP/1.1
Host: pagead2.googlesyndication.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://capratv.blogspot.com
DNT: 1
Connection: keep-alive
Referer: https://capratv.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
vary: Accept-Encoding
date: Fri, 01 Dec 2023 03:07:46 GMT
expires: Fri, 01 Dec 2023 03:07:46 GMT
cache-control: private, max-age=3600
content-type: text/javascript; charset=UTF-8
etag: 18368723996658927500
access-control-allow-origin: *
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: br
server: cafe
content-length: 52763
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
pagead2.googlesyndication.com/pagead/managed/js/adsense/m202311150101/show_ads_impl_with_ama_fy2021.js?client=ca-pub-8968843069260416&plah=capratv.blogspot.com
200 OK 137 kB URL GET HTTP/3 pagead2.googlesyndication.com/pagead/managed/js/adsense/m202311150101/show_ads_impl_with_ama_fy2021.js?client=ca-pub-8968843069260416&plah=capratv.blogspot.com
IP
Requested by https://capratv.blogspot.com/2020/06/hora-de-aventura-t4-e26.html?m=1
Certificate IssuerGoogle Trust Services LLC
Subject*.g.doubleclick.net
Fingerprint6C:2A:75:F2:3F:EF:4F:43:B1:8D:C3:B7:E9:2E:4A:EF:40:6A:FC:92
ValidityMon, 23 Oct 2023 11:18:19 GMT - Mon, 15 Jan 2024 11:18:18 GMT
File type ASCII text, with very long lines (1874)
Size 137 kB (137287 bytes)
Hash f6145597a2e4ac4dd62d138a55fbc788
52f5ef098ec920284762d8828919a44eca2d9a87
4a721789d1f08fbd56f0f9416032447473e7f4e6d92d92c4b46563d0a51a5e05
GET /pagead/managed/js/adsense/m202311150101/show_ads_impl_with_ama_fy2021.js?client=ca-pub-8968843069260416&plah=capratv.blogspot.com HTTP/1.1
Host: pagead2.googlesyndication.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://capratv.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
vary: Accept-Encoding
date: Fri, 01 Dec 2023 03:07:46 GMT
expires: Fri, 01 Dec 2023 03:07:46 GMT
cache-control: private, max-age=3600, stale-while-revalidate=3600
content-type: text/javascript; charset=UTF-8
etag: 2740869228639041885
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: br
server: cafe
content-length: 137287
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
pagead2.googlesyndication.com/pagead/js/adsbygoogle.js?client=ca-pub-8968843069260416&host=ca-host-pub-1556223355139109
200 OK 52 kB URL GET HTTP/3 pagead2.googlesyndication.com/pagead/js/adsbygoogle.js?client=ca-pub-8968843069260416&host=ca-host-pub-1556223355139109
IP
Requested by https://capratv.blogspot.com/2020/06/hora-de-aventura-t4-e26.html?m=1
Certificate IssuerGoogle Trust Services LLC
Subject*.g.doubleclick.net
Fingerprint6C:2A:75:F2:3F:EF:4F:43:B1:8D:C3:B7:E9:2E:4A:EF:40:6A:FC:92
ValidityMon, 23 Oct 2023 11:18:19 GMT - Mon, 15 Jan 2024 11:18:18 GMT
File type ASCII text, with very long lines (3967)
Hash 24252bf882067d6664e56ee916de28f9
4af1b05b581b748cb567dcad1f00720c413accca
afb3494d3cf55157c1d6b8deade5ae4cae11ca6a9f81ee784a8abc9926592b12
GET /pagead/js/adsbygoogle.js?client=ca-pub-8968843069260416&host=ca-host-pub-1556223355139109 HTTP/1.1
Host: pagead2.googlesyndication.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://capratv.blogspot.com
DNT: 1
Connection: keep-alive
Referer: https://capratv.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
vary: Accept-Encoding
date: Fri, 01 Dec 2023 03:07:46 GMT
expires: Fri, 01 Dec 2023 03:07:46 GMT
cache-control: private, max-age=3600
content-type: text/javascript; charset=UTF-8
etag: 3460697416383282357
access-control-allow-origin: *
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: br
server: cafe
content-length: 51871
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
pagead2.googlesyndication.com/pagead/js/adsbygoogle.js?client=ca-pub-8968843069260416
200 OK 52 kB URL GET HTTP/3 pagead2.googlesyndication.com/pagead/js/adsbygoogle.js?client=ca-pub-8968843069260416
IP
Requested by https://capratv.blogspot.com/2020/06/hora-de-aventura-t4-e26.html?m=1
Certificate IssuerGoogle Trust Services LLC
Subject*.g.doubleclick.net
Fingerprint6C:2A:75:F2:3F:EF:4F:43:B1:8D:C3:B7:E9:2E:4A:EF:40:6A:FC:92
ValidityMon, 23 Oct 2023 11:18:19 GMT - Mon, 15 Jan 2024 11:18:18 GMT
File type ASCII text, with very long lines (3967)
Hash 7e95e322d5da182628d3ff1911564449
6f53bb7c831a63450b5c46c9ff3c009332d41969
1a198054bfd6c5df71f400568269e37bd8cc5b52e0e590e0f59610254356a631
GET /pagead/js/adsbygoogle.js?client=ca-pub-8968843069260416 HTTP/1.1
Host: pagead2.googlesyndication.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://capratv.blogspot.com
DNT: 1
Connection: keep-alive
Referer: https://capratv.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
link: <https://googleads.g.doubleclick.net>; rel="preconnect"; crossorigin
vary: Accept-Encoding
date: Fri, 01 Dec 2023 03:07:46 GMT
expires: Fri, 01 Dec 2023 03:07:46 GMT
cache-control: private, max-age=3600
content-type: text/javascript; charset=UTF-8
etag: 1471818156502040111
access-control-allow-origin: *
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: br
server: cafe
content-length: 51871
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
storage.ko-fi.com/cdn/cup-border.png
200 OK 6.0 kB URL GET HTTP/2 storage.ko-fi.com/cdn/cup-border.png
IP
Requested by https://capratv.blogspot.com/2020/06/hora-de-aventura-t4-e26.html?m=1
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
FingerprintF1:8F:7F:48:97:2C:37:9E:A9:3D:37:D8:8B:81:D9:BD:E6:76:D7:EC
ValiditySat, 29 Apr 2023 00:00:00 GMT - Sun, 28 Apr 2024 23:59:59 GMT
File type RIFF (little-endian) data, Web/P image\012- data
Hash 07bb577348aa409cc3fe65078e8bd970
73e582aeedbbd43bae8631de33dbec607019de71
457554ad286ecf6fd5f5e79e6c883602d57638d50f96fb060f6edc19de027834
GET /cdn/cup-border.png HTTP/1.1
Host: storage.ko-fi.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://capratv.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Fri, 01 Dec 2023 03:07:46 GMT
content-type: image/webp
content-length: 6016
access-control-allow-origin: *
access-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Type,Last-Modified,ETag,Content-MD5,x-ms-lease-status,x-ms-blob-type,Content-Length,Date,Transfer-Encoding
cf-bgj: imgq:100,h2pri,csam-hash
cf-polished: origFmt=png, origSize=11273
content-disposition: inline; filename="cup-border.webp"
content-md5: nt+i2V4lVEX5fauLp9jhTw==
etag: 0x8DAB5417C366016
last-modified: Sun, 23 Oct 2022 21:56:48 GMT
vary: Accept
x-ms-blob-type: BlockBlob
x-ms-lease-status: unlocked
x-ms-request-id: ee7499ec-401e-0063-01b8-1c5e15000000
x-ms-version: 2009-09-19
cf-cache-status: HIT
age: 5850
accept-ranges: bytes
server: cloudflare
cf-ray: 82e81f2e5b2bb51b-OSL
X-Firefox-Spdy: h2
pagead2.googlesyndication.com/pagead/js/adsbygoogle.js?client=ca-pub-8968843069260416
200 OK 53 kB URL GET HTTP/3 pagead2.googlesyndication.com/pagead/js/adsbygoogle.js?client=ca-pub-8968843069260416
IP
Requested by https://capratv.blogspot.com/2020/06/hora-de-aventura-t4-e26.html?m=1
Certificate IssuerGoogle Trust Services LLC
Subject*.g.doubleclick.net
Fingerprint6C:2A:75:F2:3F:EF:4F:43:B1:8D:C3:B7:E9:2E:4A:EF:40:6A:FC:92
ValidityMon, 23 Oct 2023 11:18:19 GMT - Mon, 15 Jan 2024 11:18:18 GMT
File type ASCII text, with very long lines (3968)
Hash 3afea8d073e288f7ed12ed6a939d0961
1db048d5fdd352da4a2a9c6fc5e20098760fcbc1
944dd6cc8da8e8909cacb423b24a0a0f638f3f0ee810362ad82c1bd531218137
GET /pagead/js/adsbygoogle.js?client=ca-pub-8968843069260416 HTTP/1.1
Host: pagead2.googlesyndication.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://capratv.blogspot.com
DNT: 1
Connection: keep-alive
Referer: https://capratv.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
vary: Accept-Encoding
date: Fri, 01 Dec 2023 03:07:46 GMT
expires: Fri, 01 Dec 2023 03:07:46 GMT
cache-control: private, max-age=3600
content-type: text/javascript; charset=UTF-8
etag: 10206525233143173768
access-control-allow-origin: *
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: br
server: cafe
content-length: 52761
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
pagead2.googlesyndication.com/pagead/js/adsbygoogle.js
200 OK 53 kB URL GET HTTP/2 pagead2.googlesyndication.com/pagead/js/adsbygoogle.js
IP
Requested by https://capratv.blogspot.com/2020/06/hora-de-aventura-t4-e26.html?m=1
Certificate IssuerGoogle Trust Services LLC
Subject*.g.doubleclick.net
Fingerprint6C:2A:75:F2:3F:EF:4F:43:B1:8D:C3:B7:E9:2E:4A:EF:40:6A:FC:92
ValidityMon, 23 Oct 2023 11:18:19 GMT - Mon, 15 Jan 2024 11:18:18 GMT
File type ASCII text, with very long lines (3968)
Hash fba28671eeec82ad69459b7256be1b49
386d0c430521dbed6081bb67ed3d9176dcd0ca00
241f01ff507d19fd04cb72a5f05906512e28a7f8b74528bd4baff756a3141b12
GET /pagead/js/adsbygoogle.js HTTP/1.1
Host: pagead2.googlesyndication.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://capratv.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
vary: Accept-Encoding
date: Fri, 01 Dec 2023 03:07:46 GMT
expires: Fri, 01 Dec 2023 03:07:46 GMT
cache-control: private, max-age=3600
content-type: text/javascript; charset=UTF-8
etag: 11758684383583539707
access-control-allow-origin: *
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: br
server: cafe
content-length: 52759
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
fonts.gstatic.com/s/josefinsans/v32/Qw3EZQNVED7rKGKxtqIqX5EUCEx6XHg.woff2
200 OK 31 kB URL GET HTTP/2 fonts.gstatic.com/s/josefinsans/v32/Qw3EZQNVED7rKGKxtqIqX5EUCEx6XHg.woff2
IP
Requested by https://capratv.blogspot.com/2020/06/hora-de-aventura-t4-e26.html?m=1
Certificate IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintE5:79:1F:1A:04:3F:B9:B0:FB:41:4E:B5:E5:97:AD:FE:D9:2C:4A:CD
ValidityMon, 23 Oct 2023 11:24:07 GMT - Mon, 15 Jan 2024 11:24:06 GMT
File type Web Open Font Format (Version 2), TrueType, length 31144, version 1.0\012- data
Hash c6184619b8f02691783302d193452b5f
503b42e4c919ed0e38074235c5d440f6cabe8fd1
a935298fd3d8cffacd1974d1337768f591d882245d3e44ac9444ea95c9c6c706
GET /s/josefinsans/v32/Qw3EZQNVED7rKGKxtqIqX5EUCEx6XHg.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://capratv.blogspot.com
DNT: 1
Connection: keep-alive
Referer: https://capratv.blogspot.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 31144
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 30 Nov 2023 04:57:17 GMT
expires: Fri, 29 Nov 2024 04:57:17 GMT
cache-control: public, max-age=31536000
age: 79829
last-modified: Thu, 24 Aug 2023 20:50:36 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
fonts.gstatic.com/s/josefinsans/v32/Qw3aZQNVED7rKGKxtqIqX5EUDXx4.woff2
200 OK 29 kB URL GET HTTP/2 fonts.gstatic.com/s/josefinsans/v32/Qw3aZQNVED7rKGKxtqIqX5EUDXx4.woff2
IP
Requested by https://capratv.blogspot.com/2020/06/hora-de-aventura-t4-e26.html?m=1
Certificate IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintE5:79:1F:1A:04:3F:B9:B0:FB:41:4E:B5:E5:97:AD:FE:D9:2C:4A:CD
ValidityMon, 23 Oct 2023 11:24:07 GMT - Mon, 15 Jan 2024 11:24:06 GMT
File type Web Open Font Format (Version 2), TrueType, length 28600, version 1.0\012- data
Hash de104ab8acb1088aebea1aae24724a91
b613f95c303c539ef3fe4fe65db0fbc5e5a55fe1
c94f080a550a1f2d4fe07d371969b7a40c01606bd5624e8c03c976cbf5e06058
GET /s/josefinsans/v32/Qw3aZQNVED7rKGKxtqIqX5EUDXx4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://capratv.blogspot.com
DNT: 1
Connection: keep-alive
Referer: https://capratv.blogspot.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 28600
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 29 Nov 2023 18:39:53 GMT
expires: Thu, 28 Nov 2024 18:39:53 GMT
cache-control: public, max-age=31536000
last-modified: Thu, 24 Aug 2023 20:50:09 GMT
content-type: font/woff2
age: 116873
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
fonts.gstatic.com/s/josefinsans/v32/Qw3aZQNVED7rKGKxtqIqX5EUDXx4.woff2
200 OK 29 kB URL GET HTTP/2 fonts.gstatic.com/s/josefinsans/v32/Qw3aZQNVED7rKGKxtqIqX5EUDXx4.woff2
IP
Requested by https://capratv.blogspot.com/2020/06/hora-de-aventura-t4-e26.html?m=1
Certificate IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintE5:79:1F:1A:04:3F:B9:B0:FB:41:4E:B5:E5:97:AD:FE:D9:2C:4A:CD
ValidityMon, 23 Oct 2023 11:24:07 GMT - Mon, 15 Jan 2024 11:24:06 GMT
File type Web Open Font Format (Version 2), TrueType, length 28600, version 1.0\012- data
Hash de104ab8acb1088aebea1aae24724a91
b613f95c303c539ef3fe4fe65db0fbc5e5a55fe1
c94f080a550a1f2d4fe07d371969b7a40c01606bd5624e8c03c976cbf5e06058
GET /s/josefinsans/v32/Qw3aZQNVED7rKGKxtqIqX5EUDXx4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://capratv.blogspot.com
DNT: 1
Connection: keep-alive
Referer: https://capratv.blogspot.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 28600
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 29 Nov 2023 18:39:53 GMT
expires: Thu, 28 Nov 2024 18:39:53 GMT
cache-control: public, max-age=31536000
last-modified: Thu, 24 Aug 2023 20:50:09 GMT
content-type: font/woff2
age: 116873
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
fonts.gstatic.com/s/quicksand/v31/6xKtdSZaM9iE8KbpRA_hK1QN.woff2
200 OK 28 kB URL GET HTTP/2 fonts.gstatic.com/s/quicksand/v31/6xKtdSZaM9iE8KbpRA_hK1QN.woff2
IP
Requested by https://capratv.blogspot.com/2020/06/hora-de-aventura-t4-e26.html?m=1
Certificate IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintE5:79:1F:1A:04:3F:B9:B0:FB:41:4E:B5:E5:97:AD:FE:D9:2C:4A:CD
ValidityMon, 23 Oct 2023 11:24:07 GMT - Mon, 15 Jan 2024 11:24:06 GMT
File type Web Open Font Format (Version 2), TrueType, length 28064, version 1.0\012- data
Hash 314d6364bbee6681d0b2364ee3555e2e
c5aab803abe36bf664d7b7e2a3731cd849337006
5a42c91e1ecc9b09346a1520d9a6f98074c13eebfb1cc87c4e82e5992beb685b
GET /s/quicksand/v31/6xKtdSZaM9iE8KbpRA_hK1QN.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://capratv.blogspot.com
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 28064
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 29 Nov 2023 21:50:15 GMT
expires: Thu, 28 Nov 2024 21:50:15 GMT
cache-control: public, max-age=31536000
age: 105451
last-modified: Wed, 13 Sep 2023 23:22:14 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
storage.ko-fi.com/cdn/cuplogo-sm.png
200 OK 1.8 kB URL GET HTTP/2 storage.ko-fi.com/cdn/cuplogo-sm.png
IP
Requested by https://ko-fi.com/capratv/?hidefeed=true&widget=true&embed=true&preview=true
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
FingerprintF1:8F:7F:48:97:2C:37:9E:A9:3D:37:D8:8B:81:D9:BD:E6:76:D7:EC
ValiditySat, 29 Apr 2023 00:00:00 GMT - Sun, 28 Apr 2024 23:59:59 GMT
File type RIFF (little-endian) data, Web/P image\012- data
Hash 3c800bacecff179e4ecaab1560ff3225
f03132054ab577cdba604d320af5d940956be6d8
aebeb497f80f18385e6f849693005848eca5b89076f52e63d06cc4b179c129d9
GET /cdn/cuplogo-sm.png HTTP/1.1
Host: storage.ko-fi.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://ko-fi.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Fri, 01 Dec 2023 03:07:46 GMT
content-type: image/webp
content-length: 1768
access-control-allow-origin: *
access-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Type,Last-Modified,ETag,x-ms-lease-status,x-ms-blob-type,Content-Length,Date,Transfer-Encoding
cf-bgj: imgq:100,h2pri,csam-hash
cf-polished: origFmt=png, origSize=35474
content-disposition: inline; filename="cuplogo-sm.webp"
etag: 0x8DAB5417C9BC9A0
last-modified: Sun, 23 Oct 2022 21:56:49 GMT
vary: Accept
x-ms-blob-type: BlockBlob
x-ms-lease-status: unlocked
x-ms-request-id: c09a8de2-d01e-0000-38b2-1c1830000000
x-ms-version: 2009-09-19
cf-cache-status: HIT
age: 982
accept-ranges: bytes
server: cloudflare
cf-ray: 82e81f316bf8b51b-OSL
X-Firefox-Spdy: h2
storage.ko-fi.com/cdn/cup-border.png
200 OK 6.0 kB URL GET HTTP/2 storage.ko-fi.com/cdn/cup-border.png
IP
Requested by https://capratv.blogspot.com/2020/06/hora-de-aventura-t4-e26.html?m=1
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
FingerprintF1:8F:7F:48:97:2C:37:9E:A9:3D:37:D8:8B:81:D9:BD:E6:76:D7:EC
ValiditySat, 29 Apr 2023 00:00:00 GMT - Sun, 28 Apr 2024 23:59:59 GMT
File type RIFF (little-endian) data, Web/P image\012- data
Hash 07bb577348aa409cc3fe65078e8bd970
73e582aeedbbd43bae8631de33dbec607019de71
457554ad286ecf6fd5f5e79e6c883602d57638d50f96fb060f6edc19de027834
GET /cdn/cup-border.png HTTP/1.1
Host: storage.ko-fi.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://ko-fi.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Fri, 01 Dec 2023 03:07:46 GMT
content-type: image/webp
content-length: 6016
access-control-allow-origin: *
access-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Type,Last-Modified,ETag,Content-MD5,x-ms-lease-status,x-ms-blob-type,Content-Length,Date,Transfer-Encoding
cf-bgj: imgq:100,h2pri,csam-hash
cf-polished: origFmt=png, origSize=11273
content-disposition: inline; filename="cup-border.webp"
content-md5: nt+i2V4lVEX5fauLp9jhTw==
etag: 0x8DAB5417C366016
last-modified: Sun, 23 Oct 2022 21:56:48 GMT
vary: Accept
x-ms-blob-type: BlockBlob
x-ms-lease-status: unlocked
x-ms-request-id: ee7499ec-401e-0063-01b8-1c5e15000000
x-ms-version: 2009-09-19
cf-cache-status: HIT
age: 5850
accept-ranges: bytes
server: cloudflare
cf-ray: 82e81f316bfeb51b-OSL
X-Firefox-Spdy: h2
www.blogger.com/dyn-css/authorization.css?targetBlogID=3626921078112602778&zx=ab64757b-b323-4d53-be3a-c687a5b615ab
200 OK 21 B URL GET HTTP/3 www.blogger.com/dyn-css/authorization.css?targetBlogID=3626921078112602778&zx=ab64757b-b323-4d53-be3a-c687a5b615ab
IP
Requested by https://capratv.blogspot.com/2020/06/hora-de-aventura-t4-e26.html?m=1
Certificate IssuerGoogle Trust Services LLC
Subject*.blogger.com
Fingerprint4A:89:9B:E5:F1:54:0E:2D:0A:8E:40:A8:27:DF:2E:6B:7F:74:51:90
ValidityMon, 23 Oct 2023 11:17:52 GMT - Mon, 15 Jan 2024 11:17:51 GMT
File type very short file (no magic)
Hash 68b329da9893e34099c7d8ad5cb9c940
adc83b19e793491b1c6ea0fd8b46cd9f32e592fc
01ba4719c80b6fe911b091a7c05124b64eeece964e09c058ef8f9805daca546b
GET /dyn-css/authorization.css?targetBlogID=3626921078112602778&zx=ab64757b-b323-4d53-be3a-c687a5b615ab HTTP/1.1
Host: www.blogger.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://capratv.blogspot.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
p3p: CP="This is not a P3P policy! See https://www.google.com/support/accounts/bin/answer.py?hl=en&answer=151657 for more info."
content-security-policy: script-src 'self' *.google.com *.google-analytics.com 'unsafe-inline' 'unsafe-eval' *.gstatic.com *.googlesyndication.com *.blogger.com *.googleapis.com uds.googleusercontent.com https://s.ytimg.com https://i18n-cloud.appspot.com https://www.youtube.com www-onepick-opensocial.googleusercontent.com www-bloggervideo-opensocial.googleusercontent.com www-blogger-opensocial.googleusercontent.com https://www.blogblog.com; report-uri /cspreport
content-type: text/css; charset=UTF-8
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Fri, 01 Dec 2023 03:07:46 GMT
last-modified: Fri, 01 Dec 2023 03:07:46 GMT
content-encoding: gzip
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
content-length: 21
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
www.blogger.com/_/scs/mss-static/_/js/k=boq-blogger.BloggerCommentUi.es.-dJwqwlbM3o.es5.O/am=QBikBg/d=1/excm=_b,_tp,commentformiframeview/ed=1/dg=0/wt=2/ujg=1/rs=AEy-KP2NuwuSV6OEWSupzMCRaPXesdWUWA/m=_b,_tp
200 OK 64 kB URL GET HTTP/3 www.blogger.com/_/scs/mss-static/_/js/k=boq-blogger.BloggerCommentUi.es.-dJwqwlbM3o.es5.O/am=QBikBg/d=1/excm=_b,_tp,commentformiframeview/ed=1/dg=0/wt=2/ujg=1/rs=AEy-KP2NuwuSV6OEWSupzMCRaPXesdWUWA/m=_b,_tp
IP
Requested by https://www.blogger.com/comment/frame/3626921078112602778?po=2975398124286307187&hl=es&skin=contempo&blogspotRpcToken=2410587
Certificate IssuerGoogle Trust Services LLC
Subject*.blogger.com
Fingerprint4A:89:9B:E5:F1:54:0E:2D:0A:8E:40:A8:27:DF:2E:6B:7F:74:51:90
ValidityMon, 23 Oct 2023 11:17:52 GMT - Mon, 15 Jan 2024 11:17:51 GMT
File type ASCII text, with very long lines (2602)
Hash 4eeaae3445f4978458fd0f569252c1ba
7234012eb6527c97da4a30912a962eb75b5e1d66
23d2ac01fdec9da0c409d85cff64aa04e47280ee99814422b12a5b112c429fc4
GET /_/scs/mss-static/_/js/k=boq-blogger.BloggerCommentUi.es.-dJwqwlbM3o.es5.O/am=QBikBg/d=1/excm=_b,_tp,commentformiframeview/ed=1/dg=0/wt=2/ujg=1/rs=AEy-KP2NuwuSV6OEWSupzMCRaPXesdWUWA/m=_b,_tp HTTP/1.1
Host: www.blogger.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.blogger.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
accept-ranges: bytes
content-encoding: gzip
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/boq-infra/blogger-boq-js-css-signers
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="boq-infra/blogger-boq-js-css-signers"
report-to: {"group":"boq-infra/blogger-boq-js-css-signers","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/boq-infra/blogger-boq-js-css-signers"}]}
content-length: 64271
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 29 Nov 2023 03:31:08 GMT
expires: Thu, 28 Nov 2024 03:31:08 GMT
cache-control: public, immutable, max-age=31536000
last-modified: Tue, 28 Nov 2023 05:10:26 GMT
content-type: text/javascript; charset=UTF-8
vary: Accept-Encoding
age: 171398
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
www.blogger.com/video.g?token=AD6v5dyw39-jpMvJA-TVE2wOv7xbtaUAMNkuc6MOmcUXSQ63EJv6H5nFIWRvmXKIR-AMz6dDPHchKEPfd_HeaRqGzGXjz1_ysZHUrHkMzU4FktOuFKUT_U6Lk4n36hdAEHbbH4fY4-mh
200 OK 1.5 kB URL GET HTTP/3 www.blogger.com/video.g?token=AD6v5dyw39-jpMvJA-TVE2wOv7xbtaUAMNkuc6MOmcUXSQ63EJv6H5nFIWRvmXKIR-AMz6dDPHchKEPfd_HeaRqGzGXjz1_ysZHUrHkMzU4FktOuFKUT_U6Lk4n36hdAEHbbH4fY4-mh
IP
Requested by https://capratv.blogspot.com/2020/06/hora-de-aventura-t4-e26.html?m=1
Certificate IssuerGoogle Trust Services LLC
Subject*.blogger.com
Fingerprint4A:89:9B:E5:F1:54:0E:2D:0A:8E:40:A8:27:DF:2E:6B:7F:74:51:90
ValidityMon, 23 Oct 2023 11:17:52 GMT - Mon, 15 Jan 2024 11:17:51 GMT
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (1683)
Hash e33c72047aa0bbf5b7b4059e77ef798b
3d26aa64a3ad9bf448c10ccbda60e6fc76b25d92
07710525fbf34fa304f2b6ddb7aba98b24d3fe89d47dea2f589e3d55a2eed8a6
GET /video.g?token=AD6v5dyw39-jpMvJA-TVE2wOv7xbtaUAMNkuc6MOmcUXSQ63EJv6H5nFIWRvmXKIR-AMz6dDPHchKEPfd_HeaRqGzGXjz1_ysZHUrHkMzU4FktOuFKUT_U6Lk4n36hdAEHbbH4fY4-mh HTTP/1.1
Host: www.blogger.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://capratv.blogspot.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
p3p: CP="This is not a P3P policy! See https://www.google.com/support/accounts/bin/answer.py?hl=en&answer=151657 for more info."
content-security-policy: script-src 'self' *.google.com *.google-analytics.com 'unsafe-inline' 'unsafe-eval' *.gstatic.com *.googlesyndication.com *.blogger.com *.googleapis.com uds.googleusercontent.com https://s.ytimg.com https://i18n-cloud.appspot.com https://www.youtube.com www-onepick-opensocial.googleusercontent.com www-bloggervideo-opensocial.googleusercontent.com www-blogger-opensocial.googleusercontent.com https://www.blogblog.com; report-uri /cspreport
content-type: text/html; charset=UTF-8
cache-control: private, max-age=25200
pragma: no-cache
expires: Fri, 01 Dec 2023 03:07:46 GMT
date: Fri, 01 Dec 2023 03:07:46 GMT
content-encoding: gzip
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
content-length: 1462
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
ko-fi.com/Scripts/commentsScripts.js?v=236mo
200 OK 2.8 kB URL GET HTTP/2 ko-fi.com/Scripts/commentsScripts.js?v=236mo
IP
Requested by https://ko-fi.com/capratv/?hidefeed=true&widget=true&embed=true&preview=true
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
FingerprintF1:8F:7F:48:97:2C:37:9E:A9:3D:37:D8:8B:81:D9:BD:E6:76:D7:EC
ValiditySat, 29 Apr 2023 00:00:00 GMT - Sun, 28 Apr 2024 23:59:59 GMT
File type Unicode text, UTF-8 (with BOM) text, with CRLF line terminators
Hash cd3ba6e0a3226552fb1dd3508fb1febc
8e9454b8fb49ac24a00e5b42f92b5930f1f02268
50999f434a48d5176cd3a2d668a2516e0d8eca49ee667232b905c98d0051533c
GET /Scripts/commentsScripts.js?v=236mo HTTP/1.1
Host: ko-fi.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://ko-fi.com/capratv/?hidefeed=true&widget=true&embed=true&preview=true
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Fri, 01 Dec 2023 03:07:47 GMT
content-type: application/x-javascript
content-length: 2802
accept-ranges: bytes
content-encoding: gzip
etag: "0f94864a23da1:0"
last-modified: Wed, 29 Nov 2023 21:24:10 GMT
set-cookie: ARRAffinity=95102c35e644550298b6b4fa06374c1365ce2dde66c6804334c0540186df0525;Path=/;HttpOnly;Secure;Domain=ko-fi.com
ARRAffinitySameSite=95102c35e644550298b6b4fa06374c1365ce2dde66c6804334c0540186df0525;Path=/;HttpOnly;SameSite=None;Secure;Domain=ko-fi.com
vary: Accept-Encoding
x-xss-protection: 1; mode=block
referrer-policy: strict-origin-when-cross-origin
x-permitted-cross-domain-policies: none
x-content-type-options: nosniff
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 82e81f31bc20b51b-OSL
X-Firefox-Spdy: h2
www.google.com/recaptcha/api.js?render=6LeIm9UUAAAAAI9HoqMbV3xi0okAxcoNNumTv6QU
200 OK 16 kB URL GET HTTP/3 www.google.com/recaptcha/api.js?render=6LeIm9UUAAAAAI9HoqMbV3xi0okAxcoNNumTv6QU
IP
Requested by https://ko-fi.com/capratv/?hidefeed=true&widget=true&embed=true&preview=true
Certificate IssuerGoogle Trust Services LLC
Subject*.google.com
Fingerprint4C:0D:17:8C:F1:30:7C:3A:6F:9B:8E:B4:83:0E:5C:BD:ED:17:3E:95
ValidityMon, 23 Oct 2023 11:18:24 GMT - Mon, 15 Jan 2024 11:18:23 GMT
File type gzip compressed data\012- data
Hash 4a179a34be77840176de0f0f84f056bd
122b3c2ef37e5fd7a9d8ae52701c341de40c8cb0
cb2ceaf76b670ebec641e497b48fd685af6f2118dff9d6e535075d616cdaa4c5
GET /recaptcha/api.js?render=6LeIm9UUAAAAAI9HoqMbV3xi0okAxcoNNumTv6QU HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://ko-fi.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
content-type: text/javascript; charset=utf-8
expires: Fri, 01 Dec 2023 03:07:46 GMT
date: Fri, 01 Dec 2023 03:07:46 GMT
cache-control: private, max-age=300
cross-origin-resource-policy: cross-origin
content-encoding: gzip
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
content-security-policy: frame-ancestors 'self'
x-xss-protection: 1; mode=block
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
fonts.gstatic.com/s/josefinsans/v32/Qw3PZQNVED7rKGKxtqIqX5E-AVSJrOCfjY46_DjQbMZhKg.ttf
200 OK 16 kB URL GET HTTP/3 fonts.gstatic.com/s/josefinsans/v32/Qw3PZQNVED7rKGKxtqIqX5E-AVSJrOCfjY46_DjQbMZhKg.ttf
IP
Requested by https://www.blogger.com/comment/frame/3626921078112602778?po=2975398124286307187&hl=es&skin=contempo&blogspotRpcToken=2410587
Certificate IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintE5:79:1F:1A:04:3F:B9:B0:FB:41:4E:B5:E5:97:AD:FE:D9:2C:4A:CD
ValidityMon, 23 Oct 2023 11:24:07 GMT - Mon, 15 Jan 2024 11:24:06 GMT
File type TrueType Font data, 16 tables, 1st "GDEF", 12 names, Microsoft, language 0x409\012- data
Hash 37820abe59970fdf95894ce92b8a7d78
432d0d0b06d13c564fce684327013981f9643e70
b0c05eaa8dfdbdcf71cc0c5c6b1fd7e769103d52a36afddfd30eddd0bc2f3ca8
GET /s/josefinsans/v32/Qw3PZQNVED7rKGKxtqIqX5E-AVSJrOCfjY46_DjQbMZhKg.ttf HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.blogger.com/
Origin: https://www.blogger.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
accept-ranges: bytes
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 16145
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 28 Nov 2023 21:38:07 GMT
expires: Wed, 27 Nov 2024 21:38:07 GMT
cache-control: public, max-age=31536000
age: 192580
last-modified: Thu, 24 Aug 2023 20:50:19 GMT
content-type: font/ttf
vary: Accept-Encoding
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
fonts.googleapis.com/css?family=Quicksand:400,700
200 OK 1.3 kB URL GET HTTP/3 fonts.googleapis.com/css?family=Quicksand:400,700
IP
Requested by https://capratv.blogspot.com/2020/06/hora-de-aventura-t4-e26.html?m=1
Certificate IssuerGoogle Trust Services LLC
Subjectupload.video.google.com
FingerprintCC:96:E0:52:E0:9B:EA:A9:A0:F8:88:9A:90:20:11:47:61:00:3C:42
ValidityMon, 23 Oct 2023 11:24:07 GMT - Mon, 15 Jan 2024 11:24:06 GMT
File type ASCII text, with very long lines (6453)
Hash 7bb732715020e4040610dfec1a7a4b6c
e4abbe2a94685090e7a8bc3d4d27bab02498dac8
efdc3bf4e519b1a7c9bafe9648b5a676ecf590073da8dc09bda8176271e360bc
GET /css?family=Quicksand:400,700 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://capratv.blogspot.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Fri, 01 Dec 2023 03:07:46 GMT
date: Fri, 01 Dec 2023 03:07:46 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2
200 OK 16 kB URL GET HTTP/3 fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2
IP
Requested by https://capratv.blogspot.com/2020/06/hora-de-aventura-t4-e26.html?m=1
Certificate IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintE5:79:1F:1A:04:3F:B9:B0:FB:41:4E:B5:E5:97:AD:FE:D9:2C:4A:CD
ValidityMon, 23 Oct 2023 11:24:07 GMT - Mon, 15 Jan 2024 11:24:06 GMT
File type Web Open Font Format (Version 2), TrueType, length 15744, version 1.0\012- data
Hash 15d9f621c3bd1599f0169dcf0bd5e63e
7ca9c5967f3bb8bffeab24b639b49c1e7d03fa52
f6734f8177112c0839b961f96d813fcb189d81b60e96c33278c1983b6f419615
GET /s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://capratv.blogspot.com
DNT: 1
Connection: keep-alive
Referer: https://capratv.blogspot.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15744
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 27 Nov 2023 23:43:03 GMT
expires: Tue, 26 Nov 2024 23:43:03 GMT
cache-control: public, max-age=31536000
age: 271484
last-modified: Wed, 11 May 2022 19:24:48 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2
200 OK 16 kB URL GET HTTP/3 fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2
IP
Requested by https://capratv.blogspot.com/2020/06/hora-de-aventura-t4-e26.html?m=1
Certificate IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintE5:79:1F:1A:04:3F:B9:B0:FB:41:4E:B5:E5:97:AD:FE:D9:2C:4A:CD
ValidityMon, 23 Oct 2023 11:24:07 GMT - Mon, 15 Jan 2024 11:24:06 GMT
File type Web Open Font Format (Version 2), TrueType, length 15860, version 1.0\012- data
Hash e9f5aaf547f165386cd313b995dddd8e
acdef5603c2387b0e5bffd744b679a24a8bc1968
f5aebdfea35d1e7656ef4acc5db1f243209755ae3300943ef8fc6280f363c860
GET /s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://capratv.blogspot.com
DNT: 1
Connection: keep-alive
Referer: https://capratv.blogspot.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15860
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 29 Nov 2023 21:52:12 GMT
expires: Thu, 28 Nov 2024 21:52:12 GMT
cache-control: public, max-age=31536000
age: 105335
last-modified: Wed, 11 May 2022 19:24:42 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
storage.ko-fi.com/cdn/useruploads/f9038ea6-208e-46a9-9334-4674450f8e10.png
200 OK 3.5 kB URL GET HTTP/2 storage.ko-fi.com/cdn/useruploads/f9038ea6-208e-46a9-9334-4674450f8e10.png
IP
Requested by https://ko-fi.com/capratv/?hidefeed=true&widget=true&embed=true&preview=true
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
FingerprintF1:8F:7F:48:97:2C:37:9E:A9:3D:37:D8:8B:81:D9:BD:E6:76:D7:EC
ValiditySat, 29 Apr 2023 00:00:00 GMT - Sun, 28 Apr 2024 23:59:59 GMT
File type RIFF (little-endian) data, Web/P image\012- data
Hash c6afa13293a2822f3b60ac3bb6f89bdf
2c0df70caa82a2db0ca3fbeefe39cab2addfb2e5
eaa3957c797a42ac7c5a694967c395a0fa4cb615c896e353f19c2668a4b1823e
GET /cdn/useruploads/f9038ea6-208e-46a9-9334-4674450f8e10.png HTTP/1.1
Host: storage.ko-fi.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://ko-fi.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Fri, 01 Dec 2023 03:07:47 GMT
content-type: image/webp
content-length: 3502
access-control-allow-origin: *
access-control-expose-headers: x-ms-request-id,Server,x-ms-version,x-ms-meta-UserId,x-ms-meta-PageId,Content-Type,Last-Modified,ETag,Content-MD5,x-ms-lease-status,x-ms-blob-type,Content-Length,Date,Transfer-Encoding
cf-bgj: imgq:100,h2pri,csam-hash
cf-polished: origFmt=png, origSize=9325
content-disposition: inline; filename="f9038ea6-208e-46a9-9334-4674450f8e10.webp"
content-md5: khE3JNyZvkp+Or9h/FqRqQ==
etag: 0x8DAB5CAE20BA594
last-modified: Mon, 24 Oct 2022 14:20:20 GMT
vary: Accept
x-ms-blob-type: BlockBlob
x-ms-lease-status: unlocked
x-ms-meta-pageid: none
x-ms-meta-userid: 89577c56-49f6-49de-ab83-6ffbfaa50126
x-ms-request-id: 88819577-b01e-0076-2dc3-139c8c000000
x-ms-version: 2009-09-19
cf-cache-status: HIT
accept-ranges: bytes
server: cloudflare
cf-ray: 82e81f316bfbb51b-OSL
X-Firefox-Spdy: h2
www.blogger.com/_/scs/mss-static/_/js/k=boq-blogger.BloggerCommentUi.es.-dJwqwlbM3o.es5.O/ck=boq-blogger.BloggerCommentUi.D4K7pZnhZrg.L.F4.O/am=QBikBg/d=1/exm=A7fCU,BVgquf,COQbmf,EEDORb,EFQ78c,IZT63,JNoxi,KG2eXe,KUM7Z,L1AAkb,LEikZe,MI6k7c,MdUzUe,Mlhmy,MpJwZc,NwH0H,O1Gjze,O6y8ed,OTA3Ae,OmgaI,PrPYRd,RMhBfe,SdcwHb,SpsfSb,U0aPgd,UUJqVe,Uas9Hd,Ulmmrd,V3dDOb,VwDzFe,WO9ee,XVMNvd,Z5uLle,ZfAoz,ZwDk9d,_b,_tp,aW3pY,aurFic,byfTOb,duFQFc,e5qFLc,eD1YLc,fKUV3e,gZjhIf,gychg,hKSk3e,hc6Ubd,kWgXee,kjKdXe,lazG7b,lsjVmc,lwddkf,mI3LFb,mdR7q,n73qwf,ovKuLd,pjICDe,vfuNJf,w9hDv,wmnU7d,ws9Tlc,xQtZb,xUdipf,yDVVkb,zbML3c,zr1jrb/excm=_b,_tp,commentformiframeview/ed=1/wt=2/ujg=1/rs=AEy-KP0pTOfUG0C1wZEc4KpF2W8IDTTIhg/ee=EmZ2Bf:zr1jrb;Erl4fe:FloWmf;JsbNhc:Xd8iUd;LBgRLc:SdcwHb;Me32dd:MEeYgc;NPKaK:SdcwHb;NSEoX:lazG7b;Oj465e:KG2eXe;Pjplud:EEDORb;QGR0gd:Mlhmy;SNUn3:ZwDk9d;a56pNe:JEfCwb;cEt90b:ws9Tlc;dIoSBb:SpsfSb;eBAeSb:zbML3c;iFQyKf:vfuNJf;io8t5d:yDVVkb;kMFpHd:OTA3Ae;nAFL3:NTMZac;oGtAuc:sOXFj;pXdRYb:MdUzUe;qddgKe:xQtZb;sP4Vbe:VwDzFe;uY49fb:COQbmf;ul9GGd:VDovNc;wR5FRb:O1Gjze;xqZiqf:wmnU7d;yxTchf:KUM7Z;zxnPse:duFQFc/m=VXdfxd,fgib1c,YwHGTd,pxq3x
200 OK 27 kB URL GET HTTP/3 www.blogger.com/_/scs/mss-static/_/js/k=boq-blogger.BloggerCommentUi.es.-dJwqwlbM3o.es5.O/ck=boq-blogger.BloggerCommentUi.D4K7pZnhZrg.L.F4.O/am=QBikBg/d=1/exm=A7fCU,BVgquf,COQbmf,EEDORb,EFQ78c,IZT63,JNoxi,KG2eXe,KUM7Z,L1AAkb,LEikZe,MI6k7c,MdUzUe,Mlhmy,MpJwZc,NwH0H,O1Gjze,O6y8ed,OTA3Ae,OmgaI,PrPYRd,RMhBfe,SdcwHb,SpsfSb,U0aPgd,UUJqVe,Uas9Hd,Ulmmrd,V3dDOb,VwDzFe,WO9ee,XVMNvd,Z5uLle,ZfAoz,ZwDk9d,_b,_tp,aW3pY,aurFic,byfTOb,duFQFc,e5qFLc,eD1YLc,fKUV3e,gZjhIf,gychg,hKSk3e,hc6Ubd,kWgXee,kjKdXe,lazG7b,lsjVmc,lwddkf,mI3LFb,mdR7q,n73qwf,ovKuLd,pjICDe,vfuNJf,w9hDv,wmnU7d,ws9Tlc,xQtZb,xUdipf,yDVVkb,zbML3c,zr1jrb/excm=_b,_tp,commentformiframeview/ed=1/wt=2/ujg=1/rs=AEy-KP0pTOfUG0C1wZEc4KpF2W8IDTTIhg/ee=EmZ2Bf:zr1jrb;Erl4fe:FloWmf;JsbNhc:Xd8iUd;LBgRLc:SdcwHb;Me32dd:MEeYgc;NPKaK:SdcwHb;NSEoX:lazG7b;Oj465e:KG2eXe;Pjplud:EEDORb;QGR0gd:Mlhmy;SNUn3:ZwDk9d;a56pNe:JEfCwb;cEt90b:ws9Tlc;dIoSBb:SpsfSb;eBAeSb:zbML3c;iFQyKf:vfuNJf;io8t5d:yDVVkb;kMFpHd:OTA3Ae;nAFL3:NTMZac;oGtAuc:sOXFj;pXdRYb:MdUzUe;qddgKe:xQtZb;sP4Vbe:VwDzFe;uY49fb:COQbmf;ul9GGd:VDovNc;wR5FRb:O1Gjze;xqZiqf:wmnU7d;yxTchf:KUM7Z;zxnPse:duFQFc/m=VXdfxd,fgib1c,YwHGTd,pxq3x
IP
Requested by https://www.blogger.com/comment/frame/3626921078112602778?po=2975398124286307187&hl=es&skin=contempo&blogspotRpcToken=2410587
Certificate IssuerGoogle Trust Services LLC
Subject*.blogger.com
Fingerprint4A:89:9B:E5:F1:54:0E:2D:0A:8E:40:A8:27:DF:2E:6B:7F:74:51:90
ValidityMon, 23 Oct 2023 11:17:52 GMT - Mon, 15 Jan 2024 11:17:51 GMT
File type ASCII text, with very long lines (1127)
Hash 061c27f830ee5ae60d974e2d3c6c3920
03cb07a2c6b3c71c419b7cdfce90a20ea67b42a9
c76d07af68119206e4b9b3038e1864fe2f5c165e5035d3ea9251c0e96049be1e
GET /_/scs/mss-static/_/js/k=boq-blogger.BloggerCommentUi.es.-dJwqwlbM3o.es5.O/ck=boq-blogger.BloggerCommentUi.D4K7pZnhZrg.L.F4.O/am=QBikBg/d=1/exm=A7fCU,BVgquf,COQbmf,EEDORb,EFQ78c,IZT63,JNoxi,KG2eXe,KUM7Z,L1AAkb,LEikZe,MI6k7c,MdUzUe,Mlhmy,MpJwZc,NwH0H,O1Gjze,O6y8ed,OTA3Ae,OmgaI,PrPYRd,RMhBfe,SdcwHb,SpsfSb,U0aPgd,UUJqVe,Uas9Hd,Ulmmrd,V3dDOb,VwDzFe,WO9ee,XVMNvd,Z5uLle,ZfAoz,ZwDk9d,_b,_tp,aW3pY,aurFic,byfTOb,duFQFc,e5qFLc,eD1YLc,fKUV3e,gZjhIf,gychg,hKSk3e,hc6Ubd,kWgXee,kjKdXe,lazG7b,lsjVmc,lwddkf,mI3LFb,mdR7q,n73qwf,ovKuLd,pjICDe,vfuNJf,w9hDv,wmnU7d,ws9Tlc,xQtZb,xUdipf,yDVVkb,zbML3c,zr1jrb/excm=_b,_tp,commentformiframeview/ed=1/wt=2/ujg=1/rs=AEy-KP0pTOfUG0C1wZEc4KpF2W8IDTTIhg/ee=EmZ2Bf:zr1jrb;Erl4fe:FloWmf;JsbNhc:Xd8iUd;LBgRLc:SdcwHb;Me32dd:MEeYgc;NPKaK:SdcwHb;NSEoX:lazG7b;Oj465e:KG2eXe;Pjplud:EEDORb;QGR0gd:Mlhmy;SNUn3:ZwDk9d;a56pNe:JEfCwb;cEt90b:ws9Tlc;dIoSBb:SpsfSb;eBAeSb:zbML3c;iFQyKf:vfuNJf;io8t5d:yDVVkb;kMFpHd:OTA3Ae;nAFL3:NTMZac;oGtAuc:sOXFj;pXdRYb:MdUzUe;qddgKe:xQtZb;sP4Vbe:VwDzFe;uY49fb:COQbmf;ul9GGd:VDovNc;wR5FRb:O1Gjze;xqZiqf:wmnU7d;yxTchf:KUM7Z;zxnPse:duFQFc/m=VXdfxd,fgib1c,YwHGTd,pxq3x HTTP/1.1
Host: www.blogger.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.blogger.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
accept-ranges: bytes
content-encoding: gzip
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/boq-infra/blogger-boq-js-css-signers
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="boq-infra/blogger-boq-js-css-signers"
report-to: {"group":"boq-infra/blogger-boq-js-css-signers","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/boq-infra/blogger-boq-js-css-signers"}]}
content-length: 27101
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 29 Nov 2023 17:54:06 GMT
expires: Thu, 28 Nov 2024 17:54:06 GMT
cache-control: public, immutable, max-age=31536000
last-modified: Mon, 27 Nov 2023 09:08:07 GMT
content-type: text/javascript; charset=UTF-8
vary: Accept-Encoding
age: 119621
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
www.blogger.com/_/scs/mss-static/_/js/k=boq-blogger.BloggerCommentUi.es.-dJwqwlbM3o.es5.O/ck=boq-blogger.BloggerCommentUi.D4K7pZnhZrg.L.F4.O/am=QBikBg/d=1/exm=_b,_tp/excm=_b,_tp,commentformiframeview/ed=1/wt=2/ujg=1/rs=AEy-KP0pTOfUG0C1wZEc4KpF2W8IDTTIhg/ee=EmZ2Bf:zr1jrb;Erl4fe:FloWmf;JsbNhc:Xd8iUd;LBgRLc:SdcwHb;Me32dd:MEeYgc;NPKaK:SdcwHb;NSEoX:lazG7b;Oj465e:KG2eXe;Pjplud:EEDORb;QGR0gd:Mlhmy;SNUn3:ZwDk9d;a56pNe:JEfCwb;cEt90b:ws9Tlc;dIoSBb:SpsfSb;eBAeSb:zbML3c;iFQyKf:vfuNJf;io8t5d:yDVVkb;kMFpHd:OTA3Ae;nAFL3:NTMZac;oGtAuc:sOXFj;pXdRYb:MdUzUe;qddgKe:xQtZb;sP4Vbe:VwDzFe;uY49fb:COQbmf;ul9GGd:VDovNc;wR5FRb:O1Gjze;xqZiqf:wmnU7d;yxTchf:KUM7Z;zxnPse:duFQFc/m=ws9Tlc,n73qwf,UUJqVe,IZT63,e5qFLc,vfuNJf,O1Gjze,byfTOb,lsjVmc,xUdipf,OTA3Ae,COQbmf,fKUV3e,aurFic,U0aPgd,ZwDk9d,V3dDOb,mI3LFb,WO9ee,eD1YLc,gZjhIf,O6y8ed,MpJwZc,PrPYRd,LEikZe,NwH0H,OmgaI,lazG7b,XVMNvd,L1AAkb,KUM7Z,Mlhmy,duFQFc,hc6Ubd,lwddkf,gychg,w9hDv,EEDORb,RMhBfe,SdcwHb,aW3pY,SpsfSb,EFQ78c,Ulmmrd,ZfAoz,mdR7q,wmnU7d,xQtZb,Z5uLle,JNoxi,kWgXee,MI6k7c,kjKdXe,BVgquf,ovKuLd,hKSk3e,MdUzUe,yDVVkb,zbML3c,KG2eXe,zr1jrb,VwDzFe,Uas9Hd,A7fCU,pjICDe
200 OK 103 kB URL GET HTTP/3 www.blogger.com/_/scs/mss-static/_/js/k=boq-blogger.BloggerCommentUi.es.-dJwqwlbM3o.es5.O/ck=boq-blogger.BloggerCommentUi.D4K7pZnhZrg.L.F4.O/am=QBikBg/d=1/exm=_b,_tp/excm=_b,_tp,commentformiframeview/ed=1/wt=2/ujg=1/rs=AEy-KP0pTOfUG0C1wZEc4KpF2W8IDTTIhg/ee=EmZ2Bf:zr1jrb;Erl4fe:FloWmf;JsbNhc:Xd8iUd;LBgRLc:SdcwHb;Me32dd:MEeYgc;NPKaK:SdcwHb;NSEoX:lazG7b;Oj465e:KG2eXe;Pjplud:EEDORb;QGR0gd:Mlhmy;SNUn3:ZwDk9d;a56pNe:JEfCwb;cEt90b:ws9Tlc;dIoSBb:SpsfSb;eBAeSb:zbML3c;iFQyKf:vfuNJf;io8t5d:yDVVkb;kMFpHd:OTA3Ae;nAFL3:NTMZac;oGtAuc:sOXFj;pXdRYb:MdUzUe;qddgKe:xQtZb;sP4Vbe:VwDzFe;uY49fb:COQbmf;ul9GGd:VDovNc;wR5FRb:O1Gjze;xqZiqf:wmnU7d;yxTchf:KUM7Z;zxnPse:duFQFc/m=ws9Tlc,n73qwf,UUJqVe,IZT63,e5qFLc,vfuNJf,O1Gjze,byfTOb,lsjVmc,xUdipf,OTA3Ae,COQbmf,fKUV3e,aurFic,U0aPgd,ZwDk9d,V3dDOb,mI3LFb,WO9ee,eD1YLc,gZjhIf,O6y8ed,MpJwZc,PrPYRd,LEikZe,NwH0H,OmgaI,lazG7b,XVMNvd,L1AAkb,KUM7Z,Mlhmy,duFQFc,hc6Ubd,lwddkf,gychg,w9hDv,EEDORb,RMhBfe,SdcwHb,aW3pY,SpsfSb,EFQ78c,Ulmmrd,ZfAoz,mdR7q,wmnU7d,xQtZb,Z5uLle,JNoxi,kWgXee,MI6k7c,kjKdXe,BVgquf,ovKuLd,hKSk3e,MdUzUe,yDVVkb,zbML3c,KG2eXe,zr1jrb,VwDzFe,Uas9Hd,A7fCU,pjICDe
IP
Requested by https://www.blogger.com/comment/frame/3626921078112602778?po=2975398124286307187&hl=es&skin=contempo&blogspotRpcToken=2410587
Certificate IssuerGoogle Trust Services LLC
Subject*.blogger.com
Fingerprint4A:89:9B:E5:F1:54:0E:2D:0A:8E:40:A8:27:DF:2E:6B:7F:74:51:90
ValidityMon, 23 Oct 2023 11:17:52 GMT - Mon, 15 Jan 2024 11:17:51 GMT
File type ASCII text, with very long lines (9718)
Size 103 kB (103196 bytes)
Hash df462ba2063bae93be08e46fe5cc6ccf
600ceb73f03840d2787f255534c46978682bb439
ef2a74fcb8aca44a443dd3e0d3164796e428681d60f744bfbbf7fd6ce361fd4d
GET /_/scs/mss-static/_/js/k=boq-blogger.BloggerCommentUi.es.-dJwqwlbM3o.es5.O/ck=boq-blogger.BloggerCommentUi.D4K7pZnhZrg.L.F4.O/am=QBikBg/d=1/exm=_b,_tp/excm=_b,_tp,commentformiframeview/ed=1/wt=2/ujg=1/rs=AEy-KP0pTOfUG0C1wZEc4KpF2W8IDTTIhg/ee=EmZ2Bf:zr1jrb;Erl4fe:FloWmf;JsbNhc:Xd8iUd;LBgRLc:SdcwHb;Me32dd:MEeYgc;NPKaK:SdcwHb;NSEoX:lazG7b;Oj465e:KG2eXe;Pjplud:EEDORb;QGR0gd:Mlhmy;SNUn3:ZwDk9d;a56pNe:JEfCwb;cEt90b:ws9Tlc;dIoSBb:SpsfSb;eBAeSb:zbML3c;iFQyKf:vfuNJf;io8t5d:yDVVkb;kMFpHd:OTA3Ae;nAFL3:NTMZac;oGtAuc:sOXFj;pXdRYb:MdUzUe;qddgKe:xQtZb;sP4Vbe:VwDzFe;uY49fb:COQbmf;ul9GGd:VDovNc;wR5FRb:O1Gjze;xqZiqf:wmnU7d;yxTchf:KUM7Z;zxnPse:duFQFc/m=ws9Tlc,n73qwf,UUJqVe,IZT63,e5qFLc,vfuNJf,O1Gjze,byfTOb,lsjVmc,xUdipf,OTA3Ae,COQbmf,fKUV3e,aurFic,U0aPgd,ZwDk9d,V3dDOb,mI3LFb,WO9ee,eD1YLc,gZjhIf,O6y8ed,MpJwZc,PrPYRd,LEikZe,NwH0H,OmgaI,lazG7b,XVMNvd,L1AAkb,KUM7Z,Mlhmy,duFQFc,hc6Ubd,lwddkf,gychg,w9hDv,EEDORb,RMhBfe,SdcwHb,aW3pY,SpsfSb,EFQ78c,Ulmmrd,ZfAoz,mdR7q,wmnU7d,xQtZb,Z5uLle,JNoxi,kWgXee,MI6k7c,kjKdXe,BVgquf,ovKuLd,hKSk3e,MdUzUe,yDVVkb,zbML3c,KG2eXe,zr1jrb,VwDzFe,Uas9Hd,A7fCU,pjICDe HTTP/1.1
Host: www.blogger.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.blogger.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
accept-ranges: bytes
content-encoding: gzip
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/boq-infra/blogger-boq-js-css-signers
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="boq-infra/blogger-boq-js-css-signers"
report-to: {"group":"boq-infra/blogger-boq-js-css-signers","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/boq-infra/blogger-boq-js-css-signers"}]}
content-length: 103196
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 29 Nov 2023 12:52:19 GMT
expires: Thu, 28 Nov 2024 12:52:19 GMT
cache-control: public, immutable, max-age=31536000
last-modified: Mon, 27 Nov 2023 09:08:07 GMT
content-type: text/javascript; charset=UTF-8
vary: Accept-Encoding
age: 137728
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
www.paypal.com/sdk/js?client-id=AUIEyoriOCmlEGQq88qYLvzbyuzxmHBN2LoVh3mFxlbKVToHby0pSWGb4j6_uf7RqARdtIjtBgs6QCzV¤cy=USD&intent=capture&commit=true&enable-funding=venmo&disable-funding=credit,bancontact,ideal,p24,sofort&merchant-id=BPKKE549KT2SL&vault=false
200 OK 79 kB URL GET HTTP/2 www.paypal.com/sdk/js?client-id=AUIEyoriOCmlEGQq88qYLvzbyuzxmHBN2LoVh3mFxlbKVToHby0pSWGb4j6_uf7RqARdtIjtBgs6QCzV¤cy=USD&intent=capture&commit=true&enable-funding=venmo&disable-funding=credit,bancontact,ideal,p24,sofort&merchant-id=BPKKE549KT2SL&vault=false
IP
Requested by https://ko-fi.com/capratv/?hidefeed=true&widget=true&embed=true&preview=true
Certificate IssuerDigiCert Inc
Subjectwww.paypal.com
FingerprintEA:FF:48:F5:D0:D2:52:21:68:19:F0:08:CE:AB:9B:F5:52:C0:26:D7
ValidityFri, 13 Oct 2023 00:00:00 GMT - Tue, 20 Aug 2024 23:59:59 GMT
File type ASCII text, with very long lines (65408)
Hash 5c700ab70843d06afbd574309bfa56d9
8ca474a458d7e547de2f7e7a81fc50c673e6fae8
018c6521dbbf2f2ae4a6922da6071098786ff47ca7b6927e2993ea8b4e7bbbb5
GET /sdk/js?client-id=AUIEyoriOCmlEGQq88qYLvzbyuzxmHBN2LoVh3mFxlbKVToHby0pSWGb4j6_uf7RqARdtIjtBgs6QCzV¤cy=USD&intent=capture&commit=true&enable-funding=venmo&disable-funding=credit,bancontact,ideal,p24,sofort&merchant-id=BPKKE549KT2SL&vault=false HTTP/1.1
Host: www.paypal.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://ko-fi.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ch: sec-ch-ua-full, sec-ch-ua-arch, sec-ch-ua-model, sec-ch-ua-platform-version, sec-ch-ua-full-version, sec-ch-ua-full-version-list, sec-ch-ua-bitness, sec-ch-ua-wow64
access-control-allow-origin: *
access-control-expose-headers: Server-Timing
cache-control: public, max-age=3600, s-maxage=10800
content-encoding: gzip
content-security-policy: default-src 'self' https://*.paypal.com https://*.paypalobjects.com; connect-src 'self' https://*.paypal.com https://*.paypalobjects.com https://*.qualtrics.com; frame-src 'self' https://*.paypal.com https://*.paypalobjects.com https://*.qualtrics.com; script-src 'nonce-5geYsxbV15VhxQvJyw0fJ0I4hHQ+1qwfSVW4srFE3RvDTXEh' 'self' https://*.paypal.com https://*.paypalobjects.com 'unsafe-inline'; style-src 'nonce-5geYsxbV15VhxQvJyw0fJ0I4hHQ+1qwfSVW4srFE3RvDTXEh' 'self' https://*.paypal.com https://*.paypalobjects.com 'unsafe-inline'; object-src 'none'; img-src https: data:; form-action 'self' https://*.paypal.com; base-uri 'self' https://*.paypal.com; upgrade-insecure-requests;; report-uri https://www.paypal.com/csplog/api/log/csp
content-type: application/javascript; charset=utf-8
disable-set-cookie: true
etag: W/"135ea-KiCDarFYYDXmpGwNaBpbN5cA3xw"
origin-trial: AlIogV3KFtnbfVCyl9Z2NprE7FD8PYCt+TQiYdE3ppeJjJ0xJKcthYwOxXpRCNopxVWdOIENMcNSvQCGAmj0fw0AAAB2eyJvcmlnaW4iOiJodHRwczovL3BheXBhbC5jb206NDQzIiwiZmVhdHVyZSI6IlNlbmRGdWxsVXNlckFnZW50QWZ0ZXJSZWR1Y3Rpb24iLCJleHBpcnkiOjE2ODQ4ODYzOTksImlzU3ViZG9tYWluIjp0cnVlfQ==
p3p: true
paypal-debug-id: f9056731b5f7d
permissions-policy: ch-ua-platform-version=(self "https://c.paypal.com"),ch-ua-arch=(self "https://c.paypal.com"),ch-ua-wow64=(self "https://c.paypal.com"),ch-ua-model=(self "https://c.paypal.com"),ch-ua-bitness=(self "https://c.paypal.com"),ch-ua-full-version=(self "https://c.paypal.com"),ch-ua-full-version-list=(self "https://c.paypal.com")
traceparent: 00-0000000000000000000f9056731b5f7d-05f3de47101adc91-01
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
dc: ccg11-origin-www-1.paypal.com
via: 1.1 varnish, 1.1 varnish, 1.1 varnish
accept-ranges: bytes
age: 0
date: Fri, 01 Dec 2023 03:07:47 GMT
strict-transport-security: max-age=63072000; includeSubDomains; preload
x-served-by: cache-fra-eddf8230138-FRA, cache-bma1678-BMA, cache-bma1678-BMA
x-cache: MISS, MISS, MISS
x-cache-hits: 0, 0, 0
x-timer: S1701400067.913417,VS0,VE570
vary: Accept-Encoding
server-timing: "traceparent;desc="00-0000000000000000000f9056731b5f7d-d9326bf9317c4db0-01"";content-encoding;desc="gzip",x-cdn;desc="fastly"
content-length: 79338
X-Firefox-Spdy: h2
www.blogger.com/static/v1/jsbin/1308184192-video_compiled.js
200 OK 14 kB URL GET HTTP/3 www.blogger.com/static/v1/jsbin/1308184192-video_compiled.js
IP
Requested by https://www.blogger.com/video.g?token=AD6v5dyw39-jpMvJA-TVE2wOv7xbtaUAMNkuc6MOmcUXSQ63EJv6H5nFIWRvmXKIR-AMz6dDPHchKEPfd_HeaRqGzGXjz1_ysZHUrHkMzU4FktOuFKUT_U6Lk4n36hdAEHbbH4fY4-mh
Certificate IssuerGoogle Trust Services LLC
Subject*.blogger.com
Fingerprint4A:89:9B:E5:F1:54:0E:2D:0A:8E:40:A8:27:DF:2E:6B:7F:74:51:90
ValidityMon, 23 Oct 2023 11:17:52 GMT - Mon, 15 Jan 2024 11:17:51 GMT
File type ASCII text, with very long lines (2185)
Hash 5804580cedca380a411189bd11c86a08
ca213273d9c019cbb573a1e1de1d0f10035057b0
f0616cedea7a4640641ee06d093dacd648133057d7081223e72d2189bdbe3960
GET /static/v1/jsbin/1308184192-video_compiled.js HTTP/1.1
Host: www.blogger.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.blogger.com/video.g?token=AD6v5dyw39-jpMvJA-TVE2wOv7xbtaUAMNkuc6MOmcUXSQ63EJv6H5nFIWRvmXKIR-AMz6dDPHchKEPfd_HeaRqGzGXjz1_ysZHUrHkMzU4FktOuFKUT_U6Lk4n36hdAEHbbH4fY4-mh
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
accept-ranges: bytes
content-encoding: gzip
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="blogger-tech"
report-to: {"group":"blogger-tech","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/blogger-tech"}]}
content-length: 14272
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 29 Nov 2023 23:12:00 GMT
expires: Thu, 28 Nov 2024 23:12:00 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 29 Nov 2023 17:00:16 GMT
content-type: text/javascript
vary: Accept-Encoding
age: 100547
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
www.gstatic.com/images/icons/material/system/1x/play_arrow_white_48dp.png
200 OK 220 B URL GET HTTP/3 www.gstatic.com/images/icons/material/system/1x/play_arrow_white_48dp.png
IP
Requested by https://www.blogger.com/video.g?token=AD6v5dyw39-jpMvJA-TVE2wOv7xbtaUAMNkuc6MOmcUXSQ63EJv6H5nFIWRvmXKIR-AMz6dDPHchKEPfd_HeaRqGzGXjz1_ysZHUrHkMzU4FktOuFKUT_U6Lk4n36hdAEHbbH4fY4-mh
Certificate IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintE5:79:1F:1A:04:3F:B9:B0:FB:41:4E:B5:E5:97:AD:FE:D9:2C:4A:CD
ValidityMon, 23 Oct 2023 11:24:07 GMT - Mon, 15 Jan 2024 11:24:06 GMT
File type PNG image data, 48 x 48, 8-bit gray+alpha, non-interlaced\012- data
Hash bbea220e3d4187feca59742dd22e2b27
800f7aea14ae6bb26b4d178af19e2b5fb6700d8a
b0c543456be59cd54e3b13f2fbc2071c25c6f79a6bb45957bbc12e033b55cf06
GET /images/icons/material/system/1x/play_arrow_white_48dp.png HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.blogger.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
accept-ranges: bytes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="static-on-bigtable"
report-to: {"group":"static-on-bigtable","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/static-on-bigtable"}]}
content-length: 220
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 30 Nov 2023 04:50:21 GMT
expires: Fri, 29 Nov 2024 04:50:21 GMT
cache-control: public, max-age=31536000
age: 80246
last-modified: Thu, 02 Nov 2023 22:48:00 GMT
content-type: image/png
vary: Origin
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
js.capndr.com/advertising.js
200 OK 0 B URL GET HTTP/2 js.capndr.com/advertising.js
IP
ASN #39572 DataWeb Global Group B.V.
Requested by https://capratv.blogspot.com/2020/06/hora-de-aventura-t4-e26.html?m=1
Certificate IssuerLet's Encrypt
Subjectjs.capndr.com
FingerprintD9:9C:A9:BD:64:40:4E:C3:80:FB:C1:63:4D:D6:8F:A9:F7:83:AC:F4
ValidityTue, 24 Oct 2023 01:02:38 GMT - Mon, 22 Jan 2024 01:02:37 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /advertising.js HTTP/1.1
Host: js.capndr.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://capratv.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 01 Dec 2023 03:07:47 GMT
content-type: application/javascript; charset=utf-8
content-length: 0
server: nginx/1.18.0
last-modified: Fri, 14 Jul 2023 08:23:25 GMT
etag: "64b105fd-0"
expires: Fri, 01 Dec 2023 03:12:47 GMT
cache-control: max-age=300
x-proxy-cache: HIT
access-control-allow-origin: *
accept-ranges: bytes
X-Firefox-Spdy: h2
ko-fi.com/lib/lite-youtube-embed-master/lite-yt-embed.js?v=236mo
200 OK 1.7 kB URL GET HTTP/2 ko-fi.com/lib/lite-youtube-embed-master/lite-yt-embed.js?v=236mo
IP
Requested by https://ko-fi.com/capratv/?hidefeed=true&widget=true&embed=true&preview=true
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
FingerprintF1:8F:7F:48:97:2C:37:9E:A9:3D:37:D8:8B:81:D9:BD:E6:76:D7:EC
ValiditySat, 29 Apr 2023 00:00:00 GMT - Sun, 28 Apr 2024 23:59:59 GMT
File type gzip compressed data, from Unix\012- data
Hash 261b99d5f7b29e7cc56cff22f19659bb
4d78bc1c21828c2f64ded649d1b7fb99dc8cb566
088437d945993ae1e665bbfedcd2a32c16c2a153da7aa197b9a644f0cfddc2af
GET /lib/lite-youtube-embed-master/lite-yt-embed.js?v=236mo HTTP/1.1
Host: ko-fi.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://ko-fi.com/capratv/?hidefeed=true&widget=true&embed=true&preview=true
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Fri, 01 Dec 2023 03:07:47 GMT
content-type: application/x-javascript
cf-bgj: minify
cf-polished: origSize=7422
etag: W/"0f94864a23da1:0"
last-modified: Wed, 29 Nov 2023 21:24:10 GMT
referrer-policy: strict-origin-when-cross-origin
vary: Accept-Encoding
x-content-type-options: nosniff
x-permitted-cross-domain-policies: none
x-xss-protection: 1; mode=block
cf-cache-status: HIT
server: cloudflare
cf-ray: 82e81f31bc22b51b-OSL
content-encoding: gzip
X-Firefox-Spdy: h2
www.blogger.com/_/scs/mss-static/_/js/k=boq-blogger.BloggerCommentUi.es.-dJwqwlbM3o.es5.O/ck=boq-blogger.BloggerCommentUi.D4K7pZnhZrg.L.F4.O/am=QBikBg/d=1/exm=A7fCU,BVgquf,COQbmf,EEDORb,EFQ78c,IZT63,JNoxi,KG2eXe,KUM7Z,L1AAkb,LEikZe,MI6k7c,MdUzUe,Mlhmy,MpJwZc,NwH0H,O1Gjze,O6y8ed,OTA3Ae,OmgaI,PrPYRd,RMhBfe,SdcwHb,SpsfSb,U0aPgd,UUJqVe,Uas9Hd,Ulmmrd,V3dDOb,VXdfxd,VwDzFe,WO9ee,XVMNvd,YwHGTd,Z5uLle,ZfAoz,ZwDk9d,_b,_tp,aW3pY,aurFic,byfTOb,duFQFc,e5qFLc,eD1YLc,fKUV3e,fgib1c,gZjhIf,gychg,hKSk3e,hc6Ubd,kWgXee,kjKdXe,lazG7b,lsjVmc,lwddkf,mI3LFb,mdR7q,n73qwf,ovKuLd,pjICDe,pxq3x,vfuNJf,w9hDv,wmnU7d,ws9Tlc,xQtZb,xUdipf,yDVVkb,zbML3c,zr1jrb/excm=_b,_tp,commentformiframeview/ed=1/wt=2/ujg=1/rs=AEy-KP0pTOfUG0C1wZEc4KpF2W8IDTTIhg/ee=EmZ2Bf:zr1jrb;Erl4fe:FloWmf;JsbNhc:Xd8iUd;LBgRLc:SdcwHb;Me32dd:MEeYgc;NPKaK:SdcwHb;NSEoX:lazG7b;Oj465e:KG2eXe;Pjplud:EEDORb;QGR0gd:Mlhmy;SNUn3:ZwDk9d;a56pNe:JEfCwb;cEt90b:ws9Tlc;dIoSBb:SpsfSb;eBAeSb:zbML3c;iFQyKf:vfuNJf;io8t5d:yDVVkb;kMFpHd:OTA3Ae;nAFL3:NTMZac;oGtAuc:sOXFj;pXdRYb:MdUzUe;qddgKe:xQtZb;sP4Vbe:VwDzFe;uY49fb:COQbmf;ul9GGd:VDovNc;wR5FRb:O1Gjze;xqZiqf:wmnU7d;yxTchf:KUM7Z;zxnPse:duFQFc/m=RqjULd
200 OK 6.3 kB URL GET HTTP/3 www.blogger.com/_/scs/mss-static/_/js/k=boq-blogger.BloggerCommentUi.es.-dJwqwlbM3o.es5.O/ck=boq-blogger.BloggerCommentUi.D4K7pZnhZrg.L.F4.O/am=QBikBg/d=1/exm=A7fCU,BVgquf,COQbmf,EEDORb,EFQ78c,IZT63,JNoxi,KG2eXe,KUM7Z,L1AAkb,LEikZe,MI6k7c,MdUzUe,Mlhmy,MpJwZc,NwH0H,O1Gjze,O6y8ed,OTA3Ae,OmgaI,PrPYRd,RMhBfe,SdcwHb,SpsfSb,U0aPgd,UUJqVe,Uas9Hd,Ulmmrd,V3dDOb,VXdfxd,VwDzFe,WO9ee,XVMNvd,YwHGTd,Z5uLle,ZfAoz,ZwDk9d,_b,_tp,aW3pY,aurFic,byfTOb,duFQFc,e5qFLc,eD1YLc,fKUV3e,fgib1c,gZjhIf,gychg,hKSk3e,hc6Ubd,kWgXee,kjKdXe,lazG7b,lsjVmc,lwddkf,mI3LFb,mdR7q,n73qwf,ovKuLd,pjICDe,pxq3x,vfuNJf,w9hDv,wmnU7d,ws9Tlc,xQtZb,xUdipf,yDVVkb,zbML3c,zr1jrb/excm=_b,_tp,commentformiframeview/ed=1/wt=2/ujg=1/rs=AEy-KP0pTOfUG0C1wZEc4KpF2W8IDTTIhg/ee=EmZ2Bf:zr1jrb;Erl4fe:FloWmf;JsbNhc:Xd8iUd;LBgRLc:SdcwHb;Me32dd:MEeYgc;NPKaK:SdcwHb;NSEoX:lazG7b;Oj465e:KG2eXe;Pjplud:EEDORb;QGR0gd:Mlhmy;SNUn3:ZwDk9d;a56pNe:JEfCwb;cEt90b:ws9Tlc;dIoSBb:SpsfSb;eBAeSb:zbML3c;iFQyKf:vfuNJf;io8t5d:yDVVkb;kMFpHd:OTA3Ae;nAFL3:NTMZac;oGtAuc:sOXFj;pXdRYb:MdUzUe;qddgKe:xQtZb;sP4Vbe:VwDzFe;uY49fb:COQbmf;ul9GGd:VDovNc;wR5FRb:O1Gjze;xqZiqf:wmnU7d;yxTchf:KUM7Z;zxnPse:duFQFc/m=RqjULd
IP
Requested by https://www.blogger.com/comment/frame/3626921078112602778?po=2975398124286307187&hl=es&skin=contempo&blogspotRpcToken=2410587
Certificate IssuerGoogle Trust Services LLC
Subject*.blogger.com
Fingerprint4A:89:9B:E5:F1:54:0E:2D:0A:8E:40:A8:27:DF:2E:6B:7F:74:51:90
ValidityMon, 23 Oct 2023 11:17:52 GMT - Mon, 15 Jan 2024 11:17:51 GMT
File type ASCII text, with very long lines (2956)
Hash 23f72849db965d1054eaf5d593ef219f
b5bc02e35dc422684c4d7a97484e15d28d5f4074
cc59fa21a47a10981d8fbaafc4538f524386604f732c10f7aa6dde2b88951aa7
GET /_/scs/mss-static/_/js/k=boq-blogger.BloggerCommentUi.es.-dJwqwlbM3o.es5.O/ck=boq-blogger.BloggerCommentUi.D4K7pZnhZrg.L.F4.O/am=QBikBg/d=1/exm=A7fCU,BVgquf,COQbmf,EEDORb,EFQ78c,IZT63,JNoxi,KG2eXe,KUM7Z,L1AAkb,LEikZe,MI6k7c,MdUzUe,Mlhmy,MpJwZc,NwH0H,O1Gjze,O6y8ed,OTA3Ae,OmgaI,PrPYRd,RMhBfe,SdcwHb,SpsfSb,U0aPgd,UUJqVe,Uas9Hd,Ulmmrd,V3dDOb,VXdfxd,VwDzFe,WO9ee,XVMNvd,YwHGTd,Z5uLle,ZfAoz,ZwDk9d,_b,_tp,aW3pY,aurFic,byfTOb,duFQFc,e5qFLc,eD1YLc,fKUV3e,fgib1c,gZjhIf,gychg,hKSk3e,hc6Ubd,kWgXee,kjKdXe,lazG7b,lsjVmc,lwddkf,mI3LFb,mdR7q,n73qwf,ovKuLd,pjICDe,pxq3x,vfuNJf,w9hDv,wmnU7d,ws9Tlc,xQtZb,xUdipf,yDVVkb,zbML3c,zr1jrb/excm=_b,_tp,commentformiframeview/ed=1/wt=2/ujg=1/rs=AEy-KP0pTOfUG0C1wZEc4KpF2W8IDTTIhg/ee=EmZ2Bf:zr1jrb;Erl4fe:FloWmf;JsbNhc:Xd8iUd;LBgRLc:SdcwHb;Me32dd:MEeYgc;NPKaK:SdcwHb;NSEoX:lazG7b;Oj465e:KG2eXe;Pjplud:EEDORb;QGR0gd:Mlhmy;SNUn3:ZwDk9d;a56pNe:JEfCwb;cEt90b:ws9Tlc;dIoSBb:SpsfSb;eBAeSb:zbML3c;iFQyKf:vfuNJf;io8t5d:yDVVkb;kMFpHd:OTA3Ae;nAFL3:NTMZac;oGtAuc:sOXFj;pXdRYb:MdUzUe;qddgKe:xQtZb;sP4Vbe:VwDzFe;uY49fb:COQbmf;ul9GGd:VDovNc;wR5FRb:O1Gjze;xqZiqf:wmnU7d;yxTchf:KUM7Z;zxnPse:duFQFc/m=RqjULd HTTP/1.1
Host: www.blogger.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.blogger.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
accept-ranges: bytes
content-encoding: gzip
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/boq-infra/blogger-boq-js-css-signers
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="boq-infra/blogger-boq-js-css-signers"
report-to: {"group":"boq-infra/blogger-boq-js-css-signers","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/boq-infra/blogger-boq-js-css-signers"}]}
content-length: 6319
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 29 Nov 2023 20:39:04 GMT
expires: Thu, 28 Nov 2024 20:39:04 GMT
cache-control: public, immutable, max-age=31536000
last-modified: Mon, 27 Nov 2023 09:08:07 GMT
content-type: text/javascript; charset=UTF-8
vary: Accept-Encoding
age: 109723
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
www.blogger.com/_/scs/mss-static/_/js/k=boq-blogger.BloggerCommentUi.es.-dJwqwlbM3o.es5.O/ck=boq-blogger.BloggerCommentUi.D4K7pZnhZrg.L.F4.O/am=QBikBg/d=1/exm=A7fCU,BVgquf,COQbmf,EEDORb,EFQ78c,IZT63,JNoxi,KG2eXe,KUM7Z,L1AAkb,LEikZe,MI6k7c,MdUzUe,Mlhmy,MpJwZc,NwH0H,O1Gjze,O6y8ed,OTA3Ae,OmgaI,PrPYRd,RMhBfe,RqjULd,SdcwHb,SpsfSb,U0aPgd,UUJqVe,Uas9Hd,Ulmmrd,V3dDOb,VXdfxd,VwDzFe,WO9ee,XVMNvd,YwHGTd,Z5uLle,ZfAoz,ZwDk9d,_b,_tp,aW3pY,aurFic,byfTOb,duFQFc,e5qFLc,eD1YLc,fKUV3e,fgib1c,gZjhIf,gychg,hKSk3e,hc6Ubd,kWgXee,kjKdXe,lazG7b,lsjVmc,lwddkf,mI3LFb,mdR7q,n73qwf,ovKuLd,pjICDe,pxq3x,vfuNJf,w9hDv,wmnU7d,ws9Tlc,xQtZb,xUdipf,yDVVkb,zbML3c,zr1jrb/excm=_b,_tp,commentformiframeview/ed=1/wt=2/ujg=1/rs=AEy-KP0pTOfUG0C1wZEc4KpF2W8IDTTIhg/ee=EmZ2Bf:zr1jrb;Erl4fe:FloWmf;JsbNhc:Xd8iUd;LBgRLc:SdcwHb;Me32dd:MEeYgc;NPKaK:SdcwHb;NSEoX:lazG7b;Oj465e:KG2eXe;Pjplud:EEDORb;QGR0gd:Mlhmy;SNUn3:ZwDk9d;a56pNe:JEfCwb;cEt90b:ws9Tlc;dIoSBb:SpsfSb;eBAeSb:zbML3c;iFQyKf:vfuNJf;io8t5d:yDVVkb;kMFpHd:OTA3Ae;nAFL3:NTMZac;oGtAuc:sOXFj;pXdRYb:MdUzUe;qddgKe:xQtZb;sP4Vbe:VwDzFe;uY49fb:COQbmf;ul9GGd:VDovNc;wR5FRb:O1Gjze;xqZiqf:wmnU7d;yxTchf:KUM7Z;zxnPse:duFQFc/m=bm51tf
200 OK 673 B URL GET HTTP/3 www.blogger.com/_/scs/mss-static/_/js/k=boq-blogger.BloggerCommentUi.es.-dJwqwlbM3o.es5.O/ck=boq-blogger.BloggerCommentUi.D4K7pZnhZrg.L.F4.O/am=QBikBg/d=1/exm=A7fCU,BVgquf,COQbmf,EEDORb,EFQ78c,IZT63,JNoxi,KG2eXe,KUM7Z,L1AAkb,LEikZe,MI6k7c,MdUzUe,Mlhmy,MpJwZc,NwH0H,O1Gjze,O6y8ed,OTA3Ae,OmgaI,PrPYRd,RMhBfe,RqjULd,SdcwHb,SpsfSb,U0aPgd,UUJqVe,Uas9Hd,Ulmmrd,V3dDOb,VXdfxd,VwDzFe,WO9ee,XVMNvd,YwHGTd,Z5uLle,ZfAoz,ZwDk9d,_b,_tp,aW3pY,aurFic,byfTOb,duFQFc,e5qFLc,eD1YLc,fKUV3e,fgib1c,gZjhIf,gychg,hKSk3e,hc6Ubd,kWgXee,kjKdXe,lazG7b,lsjVmc,lwddkf,mI3LFb,mdR7q,n73qwf,ovKuLd,pjICDe,pxq3x,vfuNJf,w9hDv,wmnU7d,ws9Tlc,xQtZb,xUdipf,yDVVkb,zbML3c,zr1jrb/excm=_b,_tp,commentformiframeview/ed=1/wt=2/ujg=1/rs=AEy-KP0pTOfUG0C1wZEc4KpF2W8IDTTIhg/ee=EmZ2Bf:zr1jrb;Erl4fe:FloWmf;JsbNhc:Xd8iUd;LBgRLc:SdcwHb;Me32dd:MEeYgc;NPKaK:SdcwHb;NSEoX:lazG7b;Oj465e:KG2eXe;Pjplud:EEDORb;QGR0gd:Mlhmy;SNUn3:ZwDk9d;a56pNe:JEfCwb;cEt90b:ws9Tlc;dIoSBb:SpsfSb;eBAeSb:zbML3c;iFQyKf:vfuNJf;io8t5d:yDVVkb;kMFpHd:OTA3Ae;nAFL3:NTMZac;oGtAuc:sOXFj;pXdRYb:MdUzUe;qddgKe:xQtZb;sP4Vbe:VwDzFe;uY49fb:COQbmf;ul9GGd:VDovNc;wR5FRb:O1Gjze;xqZiqf:wmnU7d;yxTchf:KUM7Z;zxnPse:duFQFc/m=bm51tf
IP
Requested by https://www.blogger.com/comment/frame/3626921078112602778?po=2975398124286307187&hl=es&skin=contempo&blogspotRpcToken=2410587
Certificate IssuerGoogle Trust Services LLC
Subject*.blogger.com
Fingerprint4A:89:9B:E5:F1:54:0E:2D:0A:8E:40:A8:27:DF:2E:6B:7F:74:51:90
ValidityMon, 23 Oct 2023 11:17:52 GMT - Mon, 15 Jan 2024 11:17:51 GMT
File type ASCII text, with very long lines (736)
Hash 33ac6eef2c339a892dbefe1d6a648ba0
3458198e2b15b0a38d4c9236c10c17980ffcb111
0723ee2042877d566996741ad16967af37273e0673e7eb89d360990b251d0786
GET /_/scs/mss-static/_/js/k=boq-blogger.BloggerCommentUi.es.-dJwqwlbM3o.es5.O/ck=boq-blogger.BloggerCommentUi.D4K7pZnhZrg.L.F4.O/am=QBikBg/d=1/exm=A7fCU,BVgquf,COQbmf,EEDORb,EFQ78c,IZT63,JNoxi,KG2eXe,KUM7Z,L1AAkb,LEikZe,MI6k7c,MdUzUe,Mlhmy,MpJwZc,NwH0H,O1Gjze,O6y8ed,OTA3Ae,OmgaI,PrPYRd,RMhBfe,RqjULd,SdcwHb,SpsfSb,U0aPgd,UUJqVe,Uas9Hd,Ulmmrd,V3dDOb,VXdfxd,VwDzFe,WO9ee,XVMNvd,YwHGTd,Z5uLle,ZfAoz,ZwDk9d,_b,_tp,aW3pY,aurFic,byfTOb,duFQFc,e5qFLc,eD1YLc,fKUV3e,fgib1c,gZjhIf,gychg,hKSk3e,hc6Ubd,kWgXee,kjKdXe,lazG7b,lsjVmc,lwddkf,mI3LFb,mdR7q,n73qwf,ovKuLd,pjICDe,pxq3x,vfuNJf,w9hDv,wmnU7d,ws9Tlc,xQtZb,xUdipf,yDVVkb,zbML3c,zr1jrb/excm=_b,_tp,commentformiframeview/ed=1/wt=2/ujg=1/rs=AEy-KP0pTOfUG0C1wZEc4KpF2W8IDTTIhg/ee=EmZ2Bf:zr1jrb;Erl4fe:FloWmf;JsbNhc:Xd8iUd;LBgRLc:SdcwHb;Me32dd:MEeYgc;NPKaK:SdcwHb;NSEoX:lazG7b;Oj465e:KG2eXe;Pjplud:EEDORb;QGR0gd:Mlhmy;SNUn3:ZwDk9d;a56pNe:JEfCwb;cEt90b:ws9Tlc;dIoSBb:SpsfSb;eBAeSb:zbML3c;iFQyKf:vfuNJf;io8t5d:yDVVkb;kMFpHd:OTA3Ae;nAFL3:NTMZac;oGtAuc:sOXFj;pXdRYb:MdUzUe;qddgKe:xQtZb;sP4Vbe:VwDzFe;uY49fb:COQbmf;ul9GGd:VDovNc;wR5FRb:O1Gjze;xqZiqf:wmnU7d;yxTchf:KUM7Z;zxnPse:duFQFc/m=bm51tf HTTP/1.1
Host: www.blogger.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.blogger.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
accept-ranges: bytes
content-encoding: gzip
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/boq-infra/blogger-boq-js-css-signers
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="boq-infra/blogger-boq-js-css-signers"
report-to: {"group":"boq-infra/blogger-boq-js-css-signers","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/boq-infra/blogger-boq-js-css-signers"}]}
content-length: 673
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 29 Nov 2023 03:42:59 GMT
expires: Thu, 28 Nov 2024 03:42:59 GMT
cache-control: public, immutable, max-age=31536000
last-modified: Mon, 27 Nov 2023 09:08:07 GMT
content-type: text/javascript; charset=UTF-8
vary: Accept-Encoding
age: 170688
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
823d58dda1.3edcc83467.com/b0f2881b060b12994b5716d68665bcfa.js
200 OK 51 kB URL GET HTTP/2 823d58dda1.3edcc83467.com/b0f2881b060b12994b5716d68665bcfa.js
IP
ASN #39572 DataWeb Global Group B.V.
Requested by https://capratv.blogspot.com/2020/06/hora-de-aventura-t4-e26.html?m=1
Certificate IssuerLet's Encrypt
Subject823d58dda1.3edcc83467.com
FingerprintC0:7E:B2:A9:0D:D7:B7:DE:9E:50:50:2E:7E:DA:23:DD:2B:F4:7C:6A
ValidityTue, 28 Nov 2023 02:20:37 GMT - Mon, 26 Feb 2024 02:20:36 GMT
File type Unicode text, UTF-8 text, with very long lines (65527), with no line terminators
Hash 88c5dfb991f42365982ddee654115444
6ed1c1ffb26875d7e37b2a0838e6da2dbd5de2a6
76a6563e1b32988a00acd346df3386a8e5c8e3fa51ecf5db77670da8109ea398
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /b0f2881b060b12994b5716d68665bcfa.js HTTP/1.1
Host: 823d58dda1.3edcc83467.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://capratv.blogspot.com
DNT: 1
Connection: keep-alive
Referer: https://capratv.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 01 Dec 2023 03:07:47 GMT
content-type: application/javascript; charset=utf-8
server: nginx/1.18.0
last-modified: Tue, 28 Nov 2023 12:01:41 GMT
etag: W/"6565d6a5-288d5"
content-encoding: gzip
expires: Fri, 01 Dec 2023 03:12:47 GMT
cache-control: max-age=300
x-proxy-cache: HIT
access-control-allow-origin: *
X-Firefox-Spdy: h2
storage.ko-fi.com/cdn/scripts/sweetalert.min.js?sv=2020-02-02
200 OK 14 kB URL GET HTTP/2 storage.ko-fi.com/cdn/scripts/sweetalert.min.js?sv=2020-02-02
IP
Requested by https://ko-fi.com/capratv/?hidefeed=true&widget=true&embed=true&preview=true
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
FingerprintF1:8F:7F:48:97:2C:37:9E:A9:3D:37:D8:8B:81:D9:BD:E6:76:D7:EC
ValiditySat, 29 Apr 2023 00:00:00 GMT - Sun, 28 Apr 2024 23:59:59 GMT
File type gzip compressed data, from Unix\012- data
Hash 39c1c4da723118671c53b21bfc233310
d7e737f4d0101c861f238f368ea186182f5d4eed
fa14a892f0566a5cd592dcca0248e1587648944bbdb4fcb71728af2b3410b166
GET /cdn/scripts/sweetalert.min.js?sv=2020-02-02 HTTP/1.1
Host: storage.ko-fi.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://ko-fi.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Fri, 01 Dec 2023 03:07:46 GMT
content-type: text/javascript
last-modified: Sun, 23 Oct 2022 22:20:49 GMT
x-ms-request-id: 5b476fc4-801e-0013-6aba-132dd1000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Type,Last-Modified,ETag,x-ms-lease-status,x-ms-blob-type,Content-Length,Date,Transfer-Encoding
access-control-allow-origin: *
cf-cache-status: HIT
age: 3010
vary: Accept-Encoding
server: cloudflare
cf-ray: 82e81f31cc34b51b-OSL
content-encoding: gzip
X-Firefox-Spdy: h2
js.capndr.com/advertising.js
200 OK 0 B URL GET HTTP/2 js.capndr.com/advertising.js
IP
ASN #39572 DataWeb Global Group B.V.
Requested by https://capratv.blogspot.com/2020/06/hora-de-aventura-t4-e26.html?m=1
Certificate IssuerLet's Encrypt
Subjectjs.capndr.com
FingerprintD9:9C:A9:BD:64:40:4E:C3:80:FB:C1:63:4D:D6:8F:A9:F7:83:AC:F4
ValidityTue, 24 Oct 2023 01:02:38 GMT - Mon, 22 Jan 2024 01:02:37 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /advertising.js HTTP/1.1
Host: js.capndr.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://capratv.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Fri, 01 Dec 2023 03:07:47 GMT
content-type: application/javascript; charset=utf-8
content-length: 0
server: nginx/1.18.0
last-modified: Fri, 14 Jul 2023 08:23:25 GMT
etag: "64b105fd-0"
expires: Fri, 01 Dec 2023 03:12:47 GMT
cache-control: max-age=300
x-proxy-cache: HIT
access-control-allow-origin: *
accept-ranges: bytes
X-Firefox-Spdy: h2
www.gstatic.com/recaptcha/releases/-QbJqHfGOUB8nuVRLvzFLVed/recaptcha__en.js
200 OK 191 kB URL GET HTTP/3 www.gstatic.com/recaptcha/releases/-QbJqHfGOUB8nuVRLvzFLVed/recaptcha__en.js
IP
Requested by https://www.blogger.com/comment/frame/3626921078112602778?po=2975398124286307187&hl=es&skin=contempo&blogspotRpcToken=2410587
Certificate IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintE5:79:1F:1A:04:3F:B9:B0:FB:41:4E:B5:E5:97:AD:FE:D9:2C:4A:CD
ValidityMon, 23 Oct 2023 11:24:07 GMT - Mon, 15 Jan 2024 11:24:06 GMT
File type ASCII text, with very long lines (563)
Size 191 kB (190682 bytes)
Hash 23b9dd721490a4062ba8d01454ef6ba9
efdbb7331585411f7d397dacbf51fd3e95f3031d
4970c7161d03503a3eb5ec49e4190a03445c50cd5a9081714bd13183d2d948a7
GET /recaptcha/releases/-QbJqHfGOUB8nuVRLvzFLVed/recaptcha__en.js HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.blogger.com/
Origin: https://www.blogger.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
accept-ranges: bytes
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/recaptcha
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups; report-to="recaptcha"
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
content-length: 190682
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 30 Nov 2023 13:41:11 GMT
expires: Fri, 29 Nov 2024 13:41:11 GMT
cache-control: public, max-age=31536000
last-modified: Tue, 14 Nov 2023 05:42:11 GMT
content-type: text/javascript
vary: Accept-Encoding
age: 48396
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
www.google.com/recaptcha/api.js?trustedtypes=true&render=6LcdyMoZAAAAAFYwZAM4wZySTWVzr15BuInOVasu
200 OK 1.1 kB URL GET HTTP/3 www.google.com/recaptcha/api.js?trustedtypes=true&render=6LcdyMoZAAAAAFYwZAM4wZySTWVzr15BuInOVasu
IP
Requested by https://www.blogger.com/comment/frame/3626921078112602778?po=2975398124286307187&hl=es&skin=contempo&blogspotRpcToken=2410587
Certificate IssuerGoogle Trust Services LLC
Subject*.google.com
Fingerprint4C:0D:17:8C:F1:30:7C:3A:6F:9B:8E:B4:83:0E:5C:BD:ED:17:3E:95
ValidityMon, 23 Oct 2023 11:18:24 GMT - Mon, 15 Jan 2024 11:18:23 GMT
Hash a2cade500887f9354d72ea2475dd21d5
8bda6bb3d4a45be664ea588a50a4c6cc3094703a
f1616b2f67e7ef93885c576a9a8a89a5bc95525eda438b8d537f4440f14f68e9
GET /recaptcha/api.js?trustedtypes=true&render=6LcdyMoZAAAAAFYwZAM4wZySTWVzr15BuInOVasu HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.blogger.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
content-type: text/javascript; charset=utf-8
expires: Fri, 01 Dec 2023 03:07:47 GMT
date: Fri, 01 Dec 2023 03:07:47 GMT
cache-control: private, max-age=300
cross-origin-resource-policy: cross-origin
content-encoding: gzip
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
content-security-policy: frame-ancestors 'self'
x-xss-protection: 1; mode=block
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
i9.ytimg.com/vi_blogger/xRS0ViAZvU0/1.jpg?sqp=CIKcpasGGPDEAfqGspsBBgjAAhC0AQ&rs=AMzJL3ndSD4GM10kiy515hg0p8SUeO12og
200 OK 639 B URL GET HTTP/2 i9.ytimg.com/vi_blogger/xRS0ViAZvU0/1.jpg?sqp=CIKcpasGGPDEAfqGspsBBgjAAhC0AQ&rs=AMzJL3ndSD4GM10kiy515hg0p8SUeO12og
IP
Requested by https://www.blogger.com/video.g?token=AD6v5dyw39-jpMvJA-TVE2wOv7xbtaUAMNkuc6MOmcUXSQ63EJv6H5nFIWRvmXKIR-AMz6dDPHchKEPfd_HeaRqGzGXjz1_ysZHUrHkMzU4FktOuFKUT_U6Lk4n36hdAEHbbH4fY4-mh
Certificate IssuerGoogle Trust Services LLC
Subject*.google.com
Fingerprint4C:0D:17:8C:F1:30:7C:3A:6F:9B:8E:B4:83:0E:5C:BD:ED:17:3E:95
ValidityMon, 23 Oct 2023 11:18:24 GMT - Mon, 15 Jan 2024 11:18:23 GMT
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 320x180, components 3\012- data
Hash c5305f3e3e222820dc58067419c67d99
fc676c018b76df80e1768950f978c8b41058856d
6e9a0bb6c83eee65985122594eb47efcda03b314f8a19c350a5bf31c20c3236c
GET /vi_blogger/xRS0ViAZvU0/1.jpg?sqp=CIKcpasGGPDEAfqGspsBBgjAAhC0AQ&rs=AMzJL3ndSD4GM10kiy515hg0p8SUeO12og HTTP/1.1
Host: i9.ytimg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.blogger.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
content-type: image/jpeg
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="youtube"
report-to: {"group":"youtube","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/youtube"}]}
content-length: 639
date: Fri, 01 Dec 2023 03:07:47 GMT
expires: Fri, 01 Dec 2023 03:07:47 GMT
cache-control: private, max-age=7200
etag: "0"
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
www.blogger.com/_/BloggerCommentUi/jserror?script=https%3A%2F%2Fwww.blogger.com%2F_%2Fscs%2Fmss-static%2F_%2Fjs%2Fk%3Dboq-blogger.BloggerCommentUi.es.-dJwqwlbM3o.es5.O%2Fck%3Dboq-blogger.BloggerCommentUi.D4K7pZnhZrg.L.F4.O%2Fam%3DQBikBg%2Fd%3D1%2Fexm%3D_b%2C_tp%2Fexcm%3D_b%2C_tp%2Ccommentformiframeview%2Fed%3D1%2Fwt%3D2%2Fujg%3D1%2Frs%3DAEy-KP0pTOfUG0C1wZEc4KpF2W8IDTTIhg%2Fee%3DEmZ2Bf%3Azr1jrb%3BErl4fe%3AFloWmf%3BJsbNhc%3AXd8iUd%3BLBgRLc%3ASdcwHb%3BMe32dd%3AMEeYgc%3BNPKaK%3ASdcwHb%3BNSEoX%3AlazG7b%3BOj465e%3AKG2eXe%3BPjplud%3AEEDORb%3BQGR0gd%3AMlhmy%3BSNUn3%3AZwDk9d%3Ba56pNe%3AJEfCwb%3BcEt90b%3Aws9Tlc%3BdIoSBb%3ASpsfSb%3BeBAeSb%3AzbML3c%3BiFQyKf%3AvfuNJf%3Bio8t5d%3AyDVVkb%3BkMFpHd%3AOTA3Ae%3BnAFL3%3ANTMZac%3BoGtAuc%3AsOXFj%3BpXdRYb%3AMdUzUe%3BqddgKe%3AxQtZb%3BsP4Vbe%3AVwDzFe%3BuY49fb%3ACOQbmf%3Bul9GGd%3AVDovNc%3BwR5FRb%3AO1Gjze%3BxqZiqf%3AwmnU7d%3ByxTchf%3AKUM7Z%3BzxnPse%3AduFQFc%2Fm%3Dws9Tlc%2Cn73qwf%2CUUJqVe%2CIZT63%2Ce5qFLc%2CvfuNJf%2CO1Gjze%2CbyfTOb%2ClsjVmc%2CxUdipf%2COTA3Ae%2CCOQbmf%2CfKUV3e%2CaurFic%2CU0aPgd%2CZwDk9d%2CV3dDOb%2CmI3LFb%2CWO9ee%2CeD1YLc%2CgZjhIf%2CO6y8ed%2CMpJwZc%2CPrPYRd%2CLEikZe%2CNwH0H%2COmgaI%2ClazG7b%2CXVMNvd%2CL1AAkb%2CKUM7Z%2CMlhmy%2CduFQFc%2Chc6Ubd%2Clwddkf%2Cgychg%2Cw9hDv%2CEEDORb%2CRMhBfe%2CSdcwHb%2CaW3pY%2CSpsfSb%2CEFQ78c%2CUlmmrd%2CZfAoz%2CmdR7q%2CwmnU7d%2CxQtZb%2CZ5uLle%2CJNoxi%2CkWgXee%2CMI6k7c%2CkjKdXe%2CBVgquf%2CovKuLd%2ChKSk3e%2CMdUzUe%2CyDVVkb%2CzbML3c%2CKG2eXe%2Czr1jrb%2CVwDzFe%2CUas9Hd%2CA7fCU%2CpjICDe&error=Failed%20to%20retrieve%20dependencies%20of%20service%20pjICDe%3A%20Failed%20to%20retrieve%20dependencies%20of%20service%20pjICDe%3A%20Failed%20to%20retrieve%20dependencies%20of%20service%20zr1jrb%3A%20Failed%20to%20retrieve%20dependencies%20of%20service%20zbML3c%3A%20Failed%20to%20retrieve%20dependencies%20of%20service%20MdUzUe%3A%20Failed%20to%20retrieve%20dependencies%20of%20service%20Z5uLle%3A%20gbar%20is%20not%20defined&line=297
204 No Content 0 B URL POST HTTP/3 www.blogger.com/_/BloggerCommentUi/jserror?script=https%3A%2F%2Fwww.blogger.com%2F_%2Fscs%2Fmss-static%2F_%2Fjs%2Fk%3Dboq-blogger.BloggerCommentUi.es.-dJwqwlbM3o.es5.O%2Fck%3Dboq-blogger.BloggerCommentUi.D4K7pZnhZrg.L.F4.O%2Fam%3DQBikBg%2Fd%3D1%2Fexm%3D_b%2C_tp%2Fexcm%3D_b%2C_tp%2Ccommentformiframeview%2Fed%3D1%2Fwt%3D2%2Fujg%3D1%2Frs%3DAEy-KP0pTOfUG0C1wZEc4KpF2W8IDTTIhg%2Fee%3DEmZ2Bf%3Azr1jrb%3BErl4fe%3AFloWmf%3BJsbNhc%3AXd8iUd%3BLBgRLc%3ASdcwHb%3BMe32dd%3AMEeYgc%3BNPKaK%3ASdcwHb%3BNSEoX%3AlazG7b%3BOj465e%3AKG2eXe%3BPjplud%3AEEDORb%3BQGR0gd%3AMlhmy%3BSNUn3%3AZwDk9d%3Ba56pNe%3AJEfCwb%3BcEt90b%3Aws9Tlc%3BdIoSBb%3ASpsfSb%3BeBAeSb%3AzbML3c%3BiFQyKf%3AvfuNJf%3Bio8t5d%3AyDVVkb%3BkMFpHd%3AOTA3Ae%3BnAFL3%3ANTMZac%3BoGtAuc%3AsOXFj%3BpXdRYb%3AMdUzUe%3BqddgKe%3AxQtZb%3BsP4Vbe%3AVwDzFe%3BuY49fb%3ACOQbmf%3Bul9GGd%3AVDovNc%3BwR5FRb%3AO1Gjze%3BxqZiqf%3AwmnU7d%3ByxTchf%3AKUM7Z%3BzxnPse%3AduFQFc%2Fm%3Dws9Tlc%2Cn73qwf%2CUUJqVe%2CIZT63%2Ce5qFLc%2CvfuNJf%2CO1Gjze%2CbyfTOb%2ClsjVmc%2CxUdipf%2COTA3Ae%2CCOQbmf%2CfKUV3e%2CaurFic%2CU0aPgd%2CZwDk9d%2CV3dDOb%2CmI3LFb%2CWO9ee%2CeD1YLc%2CgZjhIf%2CO6y8ed%2CMpJwZc%2CPrPYRd%2CLEikZe%2CNwH0H%2COmgaI%2ClazG7b%2CXVMNvd%2CL1AAkb%2CKUM7Z%2CMlhmy%2CduFQFc%2Chc6Ubd%2Clwddkf%2Cgychg%2Cw9hDv%2CEEDORb%2CRMhBfe%2CSdcwHb%2CaW3pY%2CSpsfSb%2CEFQ78c%2CUlmmrd%2CZfAoz%2CmdR7q%2CwmnU7d%2CxQtZb%2CZ5uLle%2CJNoxi%2CkWgXee%2CMI6k7c%2CkjKdXe%2CBVgquf%2CovKuLd%2ChKSk3e%2CMdUzUe%2CyDVVkb%2CzbML3c%2CKG2eXe%2Czr1jrb%2CVwDzFe%2CUas9Hd%2CA7fCU%2CpjICDe&error=Failed%20to%20retrieve%20dependencies%20of%20service%20pjICDe%3A%20Failed%20to%20retrieve%20dependencies%20of%20service%20pjICDe%3A%20Failed%20to%20retrieve%20dependencies%20of%20service%20zr1jrb%3A%20Failed%20to%20retrieve%20dependencies%20of%20service%20zbML3c%3A%20Failed%20to%20retrieve%20dependencies%20of%20service%20MdUzUe%3A%20Failed%20to%20retrieve%20dependencies%20of%20service%20Z5uLle%3A%20gbar%20is%20not%20defined&line=297
IP
Requested by https://www.blogger.com/comment/frame/3626921078112602778?po=2975398124286307187&hl=es&skin=contempo&blogspotRpcToken=2410587
Certificate IssuerGoogle Trust Services LLC
Subject*.blogger.com
Fingerprint4A:89:9B:E5:F1:54:0E:2D:0A:8E:40:A8:27:DF:2E:6B:7F:74:51:90
ValidityMon, 23 Oct 2023 11:17:52 GMT - Mon, 15 Jan 2024 11:17:51 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /_/BloggerCommentUi/jserror?script=https%3A%2F%2Fwww.blogger.com%2F_%2Fscs%2Fmss-static%2F_%2Fjs%2Fk%3Dboq-blogger.BloggerCommentUi.es.-dJwqwlbM3o.es5.O%2Fck%3Dboq-blogger.BloggerCommentUi.D4K7pZnhZrg.L.F4.O%2Fam%3DQBikBg%2Fd%3D1%2Fexm%3D_b%2C_tp%2Fexcm%3D_b%2C_tp%2Ccommentformiframeview%2Fed%3D1%2Fwt%3D2%2Fujg%3D1%2Frs%3DAEy-KP0pTOfUG0C1wZEc4KpF2W8IDTTIhg%2Fee%3DEmZ2Bf%3Azr1jrb%3BErl4fe%3AFloWmf%3BJsbNhc%3AXd8iUd%3BLBgRLc%3ASdcwHb%3BMe32dd%3AMEeYgc%3BNPKaK%3ASdcwHb%3BNSEoX%3AlazG7b%3BOj465e%3AKG2eXe%3BPjplud%3AEEDORb%3BQGR0gd%3AMlhmy%3BSNUn3%3AZwDk9d%3Ba56pNe%3AJEfCwb%3BcEt90b%3Aws9Tlc%3BdIoSBb%3ASpsfSb%3BeBAeSb%3AzbML3c%3BiFQyKf%3AvfuNJf%3Bio8t5d%3AyDVVkb%3BkMFpHd%3AOTA3Ae%3BnAFL3%3ANTMZac%3BoGtAuc%3AsOXFj%3BpXdRYb%3AMdUzUe%3BqddgKe%3AxQtZb%3BsP4Vbe%3AVwDzFe%3BuY49fb%3ACOQbmf%3Bul9GGd%3AVDovNc%3BwR5FRb%3AO1Gjze%3BxqZiqf%3AwmnU7d%3ByxTchf%3AKUM7Z%3BzxnPse%3AduFQFc%2Fm%3Dws9Tlc%2Cn73qwf%2CUUJqVe%2CIZT63%2Ce5qFLc%2CvfuNJf%2CO1Gjze%2CbyfTOb%2ClsjVmc%2CxUdipf%2COTA3Ae%2CCOQbmf%2CfKUV3e%2CaurFic%2CU0aPgd%2CZwDk9d%2CV3dDOb%2CmI3LFb%2CWO9ee%2CeD1YLc%2CgZjhIf%2CO6y8ed%2CMpJwZc%2CPrPYRd%2CLEikZe%2CNwH0H%2COmgaI%2ClazG7b%2CXVMNvd%2CL1AAkb%2CKUM7Z%2CMlhmy%2CduFQFc%2Chc6Ubd%2Clwddkf%2Cgychg%2Cw9hDv%2CEEDORb%2CRMhBfe%2CSdcwHb%2CaW3pY%2CSpsfSb%2CEFQ78c%2CUlmmrd%2CZfAoz%2CmdR7q%2CwmnU7d%2CxQtZb%2CZ5uLle%2CJNoxi%2CkWgXee%2CMI6k7c%2CkjKdXe%2CBVgquf%2CovKuLd%2ChKSk3e%2CMdUzUe%2CyDVVkb%2CzbML3c%2CKG2eXe%2Czr1jrb%2CVwDzFe%2CUas9Hd%2CA7fCU%2CpjICDe&error=Failed%20to%20retrieve%20dependencies%20of%20service%20pjICDe%3A%20Failed%20to%20retrieve%20dependencies%20of%20service%20pjICDe%3A%20Failed%20to%20retrieve%20dependencies%20of%20service%20zr1jrb%3A%20Failed%20to%20retrieve%20dependencies%20of%20service%20zbML3c%3A%20Failed%20to%20retrieve%20dependencies%20of%20service%20MdUzUe%3A%20Failed%20to%20retrieve%20dependencies%20of%20service%20Z5uLle%3A%20gbar%20is%20not%20defined&line=297 HTTP/1.1
Host: www.blogger.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.blogger.com/
Content-Type: application/x-www-form-urlencoded;charset=utf-8
Content-Length: 106248
Origin: https://www.blogger.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 204 No Content
content-type: text/html; charset=utf-8
vary: Sec-Fetch-Dest, Sec-Fetch-Mode, Sec-Fetch-Site
access-control-allow-origin: *
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Fri, 01 Dec 2023 03:07:48 GMT
p3p: CP="This is not a P3P policy! See g.co/p3phelp for more info."
content-security-policy: require-trusted-types-for 'script';report-uri /_/BloggerCommentUi/cspreport, script-src 'nonce-sM9xp0dWpZ8GinTEo1RFUA' 'unsafe-inline';object-src 'none';base-uri 'self';report-uri /_/BloggerCommentUi/cspreport;worker-src 'self', script-src 'unsafe-inline' 'self' https://apis.google.com https://ssl.gstatic.com https://www.google.com https://www.googletagmanager.com https://www.gstatic.com https://www.google-analytics.com https://www.googleapis.com/appsmarket/v2/installedApps/;report-uri /_/BloggerCommentUi/cspreport/allowlist
permissions-policy: ch-ua-arch=*, ch-ua-bitness=*, ch-ua-full-version=*, ch-ua-full-version-list=*, ch-ua-model=*, ch-ua-wow64=*, ch-ua-form-factor=*, ch-ua-platform=*, ch-ua-platform-version=*
cross-origin-opener-policy: same-origin
cross-origin-resource-policy: cross-origin
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Model, Sec-CH-UA-WoW64, Sec-CH-UA-Form-Factor, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
server: ESF
content-length: 0
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
set-cookie: NID=511=KrOclFJCFLZwMZwe9uAG5hxOCcmxLYSK_3xw_SIY8oXyJSIBvFRU2eE1dPdrkC1Cm90u8W3vdSP6IfRAkjZF2XAHFsLSUC7HL3RoNgmPK6oJJJwCeCGI2R2Q3zU6Ntx9Wj9kF3xAaCBUqmMsF7ab5MNyUJEGYWQUWKL0N4-nbzk; expires=Sat, 01-Jun-2024 03:07:47 GMT; path=/; domain=.blogger.com; Secure; HttpOnly
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
storage.ko-fi.com/cdn/scripts/modal-steps.min.js?v=1
227 kB URL GET storage.ko-fi.com/cdn/scripts/modal-steps.min.js?v=1
IP
Requested by https://ko-fi.com/capratv/?hidefeed=true&widget=true&embed=true&preview=true
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
FingerprintF1:8F:7F:48:97:2C:37:9E:A9:3D:37:D8:8B:81:D9:BD:E6:76:D7:EC
ValiditySat, 29 Apr 2023 00:00:00 GMT - Sun, 28 Apr 2024 23:59:59 GMT
File type ASCII text, with very long lines (47916)
Size 227 kB (227390 bytes)
Hash ad41bcd88493781261c8a4e21353083e
27c8e7a650f9a63174014962e84ea36a0a68f436
43b05c7c86638be20bb0f5cf248e74ef0062c691a9434dff50b825e403e6f85c
GET /cdn/scripts/modal-steps.min.js?v=1 HTTP/1.1
Host: storage.ko-fi.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://ko-fi.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Fri, 01 Dec 2023 03:07:46 GMT
content-type: text/plain; charset=utf-8
content-md5: VNyHtclKfE3whzFX2YPzhA==
last-modified: Sun, 23 Oct 2022 22:20:48 GMT
x-ms-request-id: a1e37088-701e-0006-2b5e-0def48000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Type,Last-Modified,ETag,Content-MD5,x-ms-lease-status,x-ms-blob-type,Content-Length,Date,Transfer-Encoding
access-control-allow-origin: *
cf-cache-status: HIT
age: 4891
vary: Accept-Encoding
server: cloudflare
cf-ray: 82e81f31bc1fb51b-OSL
content-encoding: gzip
X-Firefox-Spdy: h2
www.gstatic.com/recaptcha/releases/-QbJqHfGOUB8nuVRLvzFLVed/styles__ltr.css
200 OK 25 kB URL GET HTTP/3 www.gstatic.com/recaptcha/releases/-QbJqHfGOUB8nuVRLvzFLVed/styles__ltr.css
IP
Requested by https://www.google.com/recaptcha/api2/anchor?ar=1&k=6LcdyMoZAAAAAFYwZAM4wZySTWVzr15BuInOVasu&co=aHR0cHM6Ly93d3cuYmxvZ2dlci5jb206NDQz&hl=en&v=-QbJqHfGOUB8nuVRLvzFLVed&size=invisible&cb=ad4n1049f7np
Certificate IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintE5:79:1F:1A:04:3F:B9:B0:FB:41:4E:B5:E5:97:AD:FE:D9:2C:4A:CD
ValidityMon, 23 Oct 2023 11:24:07 GMT - Mon, 15 Jan 2024 11:24:06 GMT
File type ASCII text, with very long lines (56398), with no line terminators
Hash eb4bc511f79f7a1573b45f5775b3a99b
d910fb51ad7316aa54f055079374574698e74b35
7859a62e04b0acb06516eb12454de6673883ecfaeaed6c254659bca7cd59c050
GET /recaptcha/releases/-QbJqHfGOUB8nuVRLvzFLVed/styles__ltr.css HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.google.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
accept-ranges: bytes
content-encoding: gzip
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/recaptcha
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups; report-to="recaptcha"
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
content-length: 24606
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 01 Dec 2023 01:52:33 GMT
expires: Sat, 30 Nov 2024 01:52:33 GMT
cache-control: public, max-age=31536000
last-modified: Tue, 14 Nov 2023 05:42:11 GMT
content-type: text/css
vary: Accept-Encoding
age: 4515
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
ko-fi.com/Content/css?v=knxw9vQKfCXliwM_3r_kfTX_0xa39viW64EJ9Zj2aho1
200 OK 267 kB URL GET HTTP/2 ko-fi.com/Content/css?v=knxw9vQKfCXliwM_3r_kfTX_0xa39viW64EJ9Zj2aho1
IP
Requested by https://ko-fi.com/capratv/?hidefeed=true&widget=true&embed=true&preview=true
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
FingerprintF1:8F:7F:48:97:2C:37:9E:A9:3D:37:D8:8B:81:D9:BD:E6:76:D7:EC
ValiditySat, 29 Apr 2023 00:00:00 GMT - Sun, 28 Apr 2024 23:59:59 GMT
File type Unicode text, UTF-8 text, with very long lines (46271)
Size 267 kB (266785 bytes)
Hash 74af00647288590f655836e5444134d6
208e845ff4768a0197d89a748e3836b02028c049
d44856dfc4c1a6bf9c59718b4669613aa4ce7f9a1276345e2a8b0e888111fe35
GET /Content/css?v=knxw9vQKfCXliwM_3r_kfTX_0xa39viW64EJ9Zj2aho1 HTTP/1.1
Host: ko-fi.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://ko-fi.com/capratv/?hidefeed=true&widget=true&embed=true&preview=true
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Fri, 01 Dec 2023 03:07:48 GMT
content-type: text/css; charset=utf-8
cache-control: public
cf-bgj: minify
cf-polished: origSize=532622
access-control-expose-headers: Request-Context
arr-disable-session-affinity: True
expires: Sat, 30 Nov 2024 03:06:24 GMT
last-modified: Fri, 01 Dec 2023 03:06:24 GMT
referrer-policy: strict-origin-when-cross-origin
request-context: appId=cid-v1:02025889-f5bc-454e-88f5-4372da34dffd
vary: User-Agent,Accept-Encoding
x-content-type-options: nosniff
x-permitted-cross-domain-policies: none
x-xss-protection: 1; mode=block
cf-cache-status: HIT
server: cloudflare
cf-ray: 82e81f315becb51b-OSL
content-encoding: gzip
X-Firefox-Spdy: h2
www.googletagmanager.com/gtm.js?id=GTM-TDF6KQX
200 OK 85 kB URL GET HTTP/3 www.googletagmanager.com/gtm.js?id=GTM-TDF6KQX
IP
Requested by https://ko-fi.com/capratv/?hidefeed=true&widget=true&embed=true&preview=true
Certificate IssuerGoogle Trust Services LLC
Subject*.google-analytics.com
Fingerprint37:42:10:B7:89:70:45:51:80:81:66:CE:95:21:72:5D:46:0B:E2:34
ValidityMon, 23 Oct 2023 11:18:19 GMT - Mon, 15 Jan 2024 11:18:18 GMT
File type ASCII text, with very long lines (5009)
Hash 538a4152eb7b018f304bedea9e323a58
a606b5c3e60e4267f54b1ff31e74ef89973fb2a7
918f791734934155cdb4a2d34dfce05b3adc280995aa39c850a3c32ca0b6a5e4
GET /gtm.js?id=GTM-TDF6KQX HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://ko-fi.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Fri, 01 Dec 2023 03:07:48 GMT
expires: Fri, 01 Dec 2023 03:07:48 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 84935
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
www.paypal.com/tagmanager/pptm.js?id=ko-fi.com&t=xo&v=5.0.410&source=payments_sdk&mrid=BPKKE549KT2SL&client_id=AUIEyoriOCmlEGQq88qYLvzbyuzxmHBN2LoVh3mFxlbKVToHby0pSWGb4j6_uf7RqARdtIjtBgs6QCzV&disableSetCookie=true&vault=false
200 OK 4.3 kB URL GET HTTP/2 www.paypal.com/tagmanager/pptm.js?id=ko-fi.com&t=xo&v=5.0.410&source=payments_sdk&mrid=BPKKE549KT2SL&client_id=AUIEyoriOCmlEGQq88qYLvzbyuzxmHBN2LoVh3mFxlbKVToHby0pSWGb4j6_uf7RqARdtIjtBgs6QCzV&disableSetCookie=true&vault=false
IP
Requested by https://ko-fi.com/capratv/?hidefeed=true&widget=true&embed=true&preview=true
Certificate IssuerDigiCert Inc
Subjectwww.paypal.com
FingerprintEA:FF:48:F5:D0:D2:52:21:68:19:F0:08:CE:AB:9B:F5:52:C0:26:D7
ValidityFri, 13 Oct 2023 00:00:00 GMT - Tue, 20 Aug 2024 23:59:59 GMT
File type ASCII text, with very long lines (12171), with no line terminators
Hash c390302569f8386c551c990d9772d014
95630c02a1f935606e7c27ab7696fb0dc180011a
7b43cb1814ca80746730f4207edcd1175bb5e95baf32398cfa5c891cb06713d7
GET /tagmanager/pptm.js?id=ko-fi.com&t=xo&v=5.0.410&source=payments_sdk&mrid=BPKKE549KT2SL&client_id=AUIEyoriOCmlEGQq88qYLvzbyuzxmHBN2LoVh3mFxlbKVToHby0pSWGb4j6_uf7RqARdtIjtBgs6QCzV&disableSetCookie=true&vault=false HTTP/1.1
Host: www.paypal.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://ko-fi.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
accept-ch: sec-ch-ua-full, sec-ch-ua-arch, sec-ch-ua-model, sec-ch-ua-platform-version, sec-ch-ua-full-version, sec-ch-ua-full-version-list, sec-ch-ua-bitness, sec-ch-ua-wow64
cache-control: public, max-age=3600
content-encoding: gzip
content-security-policy: default-src 'self' https://*.paypal.com https://*.paypalobjects.com 'unsafe-inline'; script-src 'nonce-cBE+5TU/gjz17/xTrxCWiKc+Nyt3BrT+pSAe5a80IphKMJIU' 'self' https://*.paypal.com https://*.paypalobjects.com 'unsafe-inline'; img-src * data:; object-src 'none'; font-src 'self' https://*.paypalobjects.com https://*.paypal.com; connect-src 'self' https://*.paypal.com https://*.paypalobjects.com https://nexus.ensighten.com https://*.google-analytics.com 'unsafe-inline' https://*.qualtrics.com; form-action 'self' https://*.paypal.com; base-uri 'self' https://*.paypal.com; upgrade-insecure-requests;; report-uri https://www.paypal.com/csplog/api/log/csp; frame-src 'self' https://*.paypal.com https://*.paypalobjects.com 'unsafe-inline' https://*.qualtrics.com;
content-type: application/x-javascript; charset=utf-8
etag: W/"2f8b-lWMMAqH5NWBufCerdpb7DcGAARo"
origin-trial: AlIogV3KFtnbfVCyl9Z2NprE7FD8PYCt+TQiYdE3ppeJjJ0xJKcthYwOxXpRCNopxVWdOIENMcNSvQCGAmj0fw0AAAB2eyJvcmlnaW4iOiJodHRwczovL3BheXBhbC5jb206NDQzIiwiZmVhdHVyZSI6IlNlbmRGdWxsVXNlckFnZW50QWZ0ZXJSZWR1Y3Rpb24iLCJleHBpcnkiOjE2ODQ4ODYzOTksImlzU3ViZG9tYWluIjp0cnVlfQ==
paypal-debug-id: f8792162743c4
permissions-policy: ch-ua-platform-version=(self "https://c.paypal.com"),ch-ua-arch=(self "https://c.paypal.com"),ch-ua-wow64=(self "https://c.paypal.com"),ch-ua-model=(self "https://c.paypal.com"),ch-ua-bitness=(self "https://c.paypal.com"),ch-ua-full-version=(self "https://c.paypal.com"),ch-ua-full-version-list=(self "https://c.paypal.com")
traceparent: 00-0000000000000000000f8792162743c4-9ec630f28df2b6ed-01
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
dc: ccg11-origin-www-1.paypal.com
via: 1.1 varnish, 1.1 varnish, 1.1 varnish
accept-ranges: bytes
age: 68729
date: Fri, 01 Dec 2023 03:07:48 GMT
strict-transport-security: max-age=63072000; includeSubDomains; preload
x-served-by: cache-fra-etou8220033-FRA, cache-bma1678-BMA, cache-bma1678-BMA
x-cache: HIT, MISS, MISS
x-cache-hits: 88, 0, 0
x-timer: S1701400069.571902,VS0,VE25
vary: Accept-Encoding
server-timing: content-encoding;desc="gzip",x-cdn;desc="fastly"
content-length: 4338
X-Firefox-Spdy: h2
www.gstatic.com/recaptcha/api2/logo_48.png
200 OK 2.2 kB URL GET HTTP/3 www.gstatic.com/recaptcha/api2/logo_48.png
IP
Requested by https://www.google.com/recaptcha/api2/anchor?ar=1&k=6LcdyMoZAAAAAFYwZAM4wZySTWVzr15BuInOVasu&co=aHR0cHM6Ly93d3cuYmxvZ2dlci5jb206NDQz&hl=en&v=-QbJqHfGOUB8nuVRLvzFLVed&size=invisible&cb=ad4n1049f7np
Certificate IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintE5:79:1F:1A:04:3F:B9:B0:FB:41:4E:B5:E5:97:AD:FE:D9:2C:4A:CD
ValidityMon, 23 Oct 2023 11:24:07 GMT - Mon, 15 Jan 2024 11:24:06 GMT
File type PNG image data, 48 x 48, 8-bit/color RGBA, non-interlaced\012- data
Hash ef9941290c50cd3866e2ba6b793f010d
4736508c795667dcea21f8d864233031223b7832
1b9efb22c938500971aac2b2130a475fa23684dd69e43103894968df83145b8a
GET /recaptcha/api2/logo_48.png HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.gstatic.com/recaptcha/releases/-QbJqHfGOUB8nuVRLvzFLVed/styles__ltr.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
accept-ranges: bytes
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/recaptcha
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups; report-to="recaptcha"
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
content-length: 2228
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 29 Nov 2023 21:37:43 GMT
expires: Wed, 06 Dec 2023 21:37:43 GMT
cache-control: public, max-age=604800
age: 106205
last-modified: Tue, 03 Mar 2020 20:15:00 GMT
content-type: image/png
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
fonts.gstatic.com/s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2
200 OK 15 kB URL GET HTTP/3 fonts.gstatic.com/s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2
IP
Requested by https://www.google.com/recaptcha/api2/anchor?ar=1&k=6LcdyMoZAAAAAFYwZAM4wZySTWVzr15BuInOVasu&co=aHR0cHM6Ly93d3cuYmxvZ2dlci5jb206NDQz&hl=en&v=-QbJqHfGOUB8nuVRLvzFLVed&size=invisible&cb=ad4n1049f7np
Certificate IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintE5:79:1F:1A:04:3F:B9:B0:FB:41:4E:B5:E5:97:AD:FE:D9:2C:4A:CD
ValidityMon, 23 Oct 2023 11:24:07 GMT - Mon, 15 Jan 2024 11:24:06 GMT
File type Web Open Font Format (Version 2), TrueType, length 15344, version 1.0\012- data
Hash 5d4aeb4e5f5ef754e307d7ffaef688bd
06db651cdf354c64a7383ea9c77024ef4fb4cef8
3e253b66056519aa065b00a453bac37ac5ed8f3e6fe7b542e93a9dcdcc11d0bc
GET /s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.google.com
DNT: 1
Connection: keep-alive
Referer: https://www.google.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15344
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 29 Nov 2023 18:39:39 GMT
expires: Thu, 28 Nov 2024 18:39:39 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 16 Oct 2017 17:32:55 GMT
content-type: font/woff2
age: 116889
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
fonts.gstatic.com/s/roboto/v18/KFOlCnqEu92Fr1MmEU9fBBc4.woff2
200 OK 16 kB URL GET HTTP/3 fonts.gstatic.com/s/roboto/v18/KFOlCnqEu92Fr1MmEU9fBBc4.woff2
IP
Requested by https://www.google.com/recaptcha/api2/anchor?ar=1&k=6LcdyMoZAAAAAFYwZAM4wZySTWVzr15BuInOVasu&co=aHR0cHM6Ly93d3cuYmxvZ2dlci5jb206NDQz&hl=en&v=-QbJqHfGOUB8nuVRLvzFLVed&size=invisible&cb=ad4n1049f7np
Certificate IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintE5:79:1F:1A:04:3F:B9:B0:FB:41:4E:B5:E5:97:AD:FE:D9:2C:4A:CD
ValidityMon, 23 Oct 2023 11:24:07 GMT - Mon, 15 Jan 2024 11:24:06 GMT
File type Web Open Font Format (Version 2), TrueType, length 15552, version 1.0\012- data
Hash 285467176f7fe6bb6a9c6873b3dad2cc
ea04e4ff5142ddd69307c183def721a160e0a64e
5a8c1e7681318caa29e9f44e8a6e271f6a4067a2703e9916dfd4fe9099241db7
GET /s/roboto/v18/KFOlCnqEu92Fr1MmEU9fBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.google.com
DNT: 1
Connection: keep-alive
Referer: https://www.google.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15552
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 27 Nov 2023 23:42:20 GMT
expires: Tue, 26 Nov 2024 23:42:20 GMT
cache-control: public, max-age=31536000
age: 271528
last-modified: Mon, 16 Oct 2017 17:33:02 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
e3dfcd5df0.4e26d342b8.com/in/track?data=eyJ3bCI6MCwic3ViaWQiOjAsInVzZXJfaWQiOiI2MDg0NjM5MzAyOTcwMzA3MDAwIiwidGltZXpvbmUiOjAsInZlciI6IjMuOTMuMSIsInRhZ19pZCI6MzAwMzQsInNjcmVlbl9yZXNvbHV0aW9uIjoiMTI4MHgxMDI0IiwiYWRibG9jayI6MCwidGltZXpvbmVfb2xzb24iOiJVVEMiLCJ1dG1fc291cmNlIjoiIiwidXRtX21lZGl1bSI6IiIsInV0bV9jYW1wYWlnbiI6IiIsInV0bV9jb250ZW50IjoiIiwibW0iOjAsImluaXRfc3RhcnRfbGF0ZW5jeSI6MC44MywiaXNfdjIiOjAsImlzX3YyX2VtcHR5IjowLCJ1c2VyX2tleXdvcmRzIjoiSG9yYSUyQ2RlJTJDQXZlbnR1cmElMkNUNCUyQ0UyNiUyQ0VsJTJDTGljaCJ9
200 OK 0 B URL GET HTTP/2 e3dfcd5df0.4e26d342b8.com/in/track?data=eyJ3bCI6MCwic3ViaWQiOjAsInVzZXJfaWQiOiI2MDg0NjM5MzAyOTcwMzA3MDAwIiwidGltZXpvbmUiOjAsInZlciI6IjMuOTMuMSIsInRhZ19pZCI6MzAwMzQsInNjcmVlbl9yZXNvbHV0aW9uIjoiMTI4MHgxMDI0IiwiYWRibG9jayI6MCwidGltZXpvbmVfb2xzb24iOiJVVEMiLCJ1dG1fc291cmNlIjoiIiwidXRtX21lZGl1bSI6IiIsInV0bV9jYW1wYWlnbiI6IiIsInV0bV9jb250ZW50IjoiIiwibW0iOjAsImluaXRfc3RhcnRfbGF0ZW5jeSI6MC44MywiaXNfdjIiOjAsImlzX3YyX2VtcHR5IjowLCJ1c2VyX2tleXdvcmRzIjoiSG9yYSUyQ2RlJTJDQXZlbnR1cmElMkNUNCUyQ0UyNiUyQ0VsJTJDTGljaCJ9
IP
ASN #39572 DataWeb Global Group B.V.
Requested by https://capratv.blogspot.com/2020/06/hora-de-aventura-t4-e26.html?m=1
Certificate IssuerLet's Encrypt
Subjecte3dfcd5df0.4e26d342b8.com
Fingerprint4E:A7:AE:37:F5:13:BD:ED:40:87:B0:74:F2:67:FD:22:16:67:37:F5
ValidityTue, 28 Nov 2023 02:50:34 GMT - Mon, 26 Feb 2024 02:50:33 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /in/track?data=eyJ3bCI6MCwic3ViaWQiOjAsInVzZXJfaWQiOiI2MDg0NjM5MzAyOTcwMzA3MDAwIiwidGltZXpvbmUiOjAsInZlciI6IjMuOTMuMSIsInRhZ19pZCI6MzAwMzQsInNjcmVlbl9yZXNvbHV0aW9uIjoiMTI4MHgxMDI0IiwiYWRibG9jayI6MCwidGltZXpvbmVfb2xzb24iOiJVVEMiLCJ1dG1fc291cmNlIjoiIiwidXRtX21lZGl1bSI6IiIsInV0bV9jYW1wYWlnbiI6IiIsInV0bV9jb250ZW50IjoiIiwibW0iOjAsImluaXRfc3RhcnRfbGF0ZW5jeSI6MC44MywiaXNfdjIiOjAsImlzX3YyX2VtcHR5IjowLCJ1c2VyX2tleXdvcmRzIjoiSG9yYSUyQ2RlJTJDQXZlbnR1cmElMkNUNCUyQ0UyNiUyQ0VsJTJDTGljaCJ9 HTTP/1.1
Host: e3dfcd5df0.4e26d342b8.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://capratv.blogspot.com
DNT: 1
Connection: keep-alive
Referer: https://capratv.blogspot.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 01 Dec 2023 03:07:48 GMT
content-length: 0
server: nginx/1.18.0
vary: Origin
cache-control: no-transform, no-cache, no-store, must-revalidate
pragma: no-cache
access-control-allow-origin: *
access-control-allow-headers: Content-Type
access-control-allow-methods: *
X-Firefox-Spdy: h2
e3dfcd5df0.4e26d342b8.com/in/track?data=eyJ3bCI6MCwic3ViaWQiOjAsInVzZXJfaWQiOiI2MDg0NjM5MzAyOTcwMzA3MDAwIiwidGltZXpvbmUiOjAsInZlciI6IjMuOTMuMSIsInRhZ19pZCI6NDA1MDEsInNjcmVlbl9yZXNvbHV0aW9uIjoiMTI4MHgxMDI0IiwiYWRibG9jayI6MCwidGltZXpvbmVfb2xzb24iOiJVVEMiLCJ1dG1fc291cmNlIjoiIiwidXRtX21lZGl1bSI6IiIsInV0bV9jYW1wYWlnbiI6IiIsInV0bV9jb250ZW50IjoiIiwibW0iOjAsImluaXRfc3RhcnRfbGF0ZW5jeSI6MC45LCJpc192MiI6MCwiaXNfdjJfZW1wdHkiOjAsInVzZXJfa2V5d29yZHMiOiJIb3JhJTJDZGUlMkNBdmVudHVyYSUyQ1Q0JTJDRTI2JTJDRWwlMkNMaWNoIn0=
200 OK 0 B URL GET HTTP/2 e3dfcd5df0.4e26d342b8.com/in/track?data=eyJ3bCI6MCwic3ViaWQiOjAsInVzZXJfaWQiOiI2MDg0NjM5MzAyOTcwMzA3MDAwIiwidGltZXpvbmUiOjAsInZlciI6IjMuOTMuMSIsInRhZ19pZCI6NDA1MDEsInNjcmVlbl9yZXNvbHV0aW9uIjoiMTI4MHgxMDI0IiwiYWRibG9jayI6MCwidGltZXpvbmVfb2xzb24iOiJVVEMiLCJ1dG1fc291cmNlIjoiIiwidXRtX21lZGl1bSI6IiIsInV0bV9jYW1wYWlnbiI6IiIsInV0bV9jb250ZW50IjoiIiwibW0iOjAsImluaXRfc3RhcnRfbGF0ZW5jeSI6MC45LCJpc192MiI6MCwiaXNfdjJfZW1wdHkiOjAsInVzZXJfa2V5d29yZHMiOiJIb3JhJTJDZGUlMkNBdmVudHVyYSUyQ1Q0JTJDRTI2JTJDRWwlMkNMaWNoIn0=
IP
ASN #39572 DataWeb Global Group B.V.
Requested by https://capratv.blogspot.com/2020/06/hora-de-aventura-t4-e26.html?m=1
Certificate IssuerLet's Encrypt
Subjecte3dfcd5df0.4e26d342b8.com
Fingerprint4E:A7:AE:37:F5:13:BD:ED:40:87:B0:74:F2:67:FD:22:16:67:37:F5
ValidityTue, 28 Nov 2023 02:50:34 GMT - Mon, 26 Feb 2024 02:50:33 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /in/track?data=eyJ3bCI6MCwic3ViaWQiOjAsInVzZXJfaWQiOiI2MDg0NjM5MzAyOTcwMzA3MDAwIiwidGltZXpvbmUiOjAsInZlciI6IjMuOTMuMSIsInRhZ19pZCI6NDA1MDEsInNjcmVlbl9yZXNvbHV0aW9uIjoiMTI4MHgxMDI0IiwiYWRibG9jayI6MCwidGltZXpvbmVfb2xzb24iOiJVVEMiLCJ1dG1fc291cmNlIjoiIiwidXRtX21lZGl1bSI6IiIsInV0bV9jYW1wYWlnbiI6IiIsInV0bV9jb250ZW50IjoiIiwibW0iOjAsImluaXRfc3RhcnRfbGF0ZW5jeSI6MC45LCJpc192MiI6MCwiaXNfdjJfZW1wdHkiOjAsInVzZXJfa2V5d29yZHMiOiJIb3JhJTJDZGUlMkNBdmVudHVyYSUyQ1Q0JTJDRTI2JTJDRWwlMkNMaWNoIn0= HTTP/1.1
Host: e3dfcd5df0.4e26d342b8.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://capratv.blogspot.com
DNT: 1
Connection: keep-alive
Referer: https://capratv.blogspot.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Fri, 01 Dec 2023 03:07:48 GMT
content-length: 0
server: nginx/1.18.0
vary: Origin
cache-control: no-transform, no-cache, no-store, must-revalidate
pragma: no-cache
access-control-allow-origin: *
access-control-allow-headers: Content-Type
access-control-allow-methods: *
X-Firefox-Spdy: h2
e3dfcd5df0.4e26d342b8.com/in/track?data=eyJ3bCI6MCwic3ViaWQiOjAsInVzZXJfaWQiOiI2MDg0NjM5MzAyOTcwMzA3MDAwIiwidGltZXpvbmUiOjAsInZlciI6IjMuOTMuMSIsInRhZ19pZCI6MzAwMzQsInNjcmVlbl9yZXNvbHV0aW9uIjoiMTI4MHgxMDI0IiwiYWRibG9jayI6MCwidGltZXpvbmVfb2xzb24iOiJVVEMiLCJ1dG1fc291cmNlIjoiIiwidXRtX21lZGl1bSI6IiIsInV0bV9jYW1wYWlnbiI6IiIsInV0bV9jb250ZW50IjoiIiwibW0iOjAsImluaXRfc3RhcnRfbGF0ZW5jeSI6MS42LCJpc192MiI6MCwiaXNfdjJfZW1wdHkiOjAsInVzZXJfa2V5d29yZHMiOiJIb3JhJTJDZGUlMkNBdmVudHVyYSUyQ1Q0JTJDRTI2JTJDRWwlMkNMaWNoIn0=
200 OK 0 B URL GET HTTP/2 e3dfcd5df0.4e26d342b8.com/in/track?data=eyJ3bCI6MCwic3ViaWQiOjAsInVzZXJfaWQiOiI2MDg0NjM5MzAyOTcwMzA3MDAwIiwidGltZXpvbmUiOjAsInZlciI6IjMuOTMuMSIsInRhZ19pZCI6MzAwMzQsInNjcmVlbl9yZXNvbHV0aW9uIjoiMTI4MHgxMDI0IiwiYWRibG9jayI6MCwidGltZXpvbmVfb2xzb24iOiJVVEMiLCJ1dG1fc291cmNlIjoiIiwidXRtX21lZGl1bSI6IiIsInV0bV9jYW1wYWlnbiI6IiIsInV0bV9jb250ZW50IjoiIiwibW0iOjAsImluaXRfc3RhcnRfbGF0ZW5jeSI6MS42LCJpc192MiI6MCwiaXNfdjJfZW1wdHkiOjAsInVzZXJfa2V5d29yZHMiOiJIb3JhJTJDZGUlMkNBdmVudHVyYSUyQ1Q0JTJDRTI2JTJDRWwlMkNMaWNoIn0=
IP
ASN #39572 DataWeb Global Group B.V.
Requested by https://capratv.blogspot.com/2020/06/hora-de-aventura-t4-e26.html?m=1
Certificate IssuerLet's Encrypt
Subjecte3dfcd5df0.4e26d342b8.com
Fingerprint4E:A7:AE:37:F5:13:BD:ED:40:87:B0:74:F2:67:FD:22:16:67:37:F5
ValidityTue, 28 Nov 2023 02:50:34 GMT - Mon, 26 Feb 2024 02:50:33 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /in/track?data=eyJ3bCI6MCwic3ViaWQiOjAsInVzZXJfaWQiOiI2MDg0NjM5MzAyOTcwMzA3MDAwIiwidGltZXpvbmUiOjAsInZlciI6IjMuOTMuMSIsInRhZ19pZCI6MzAwMzQsInNjcmVlbl9yZXNvbHV0aW9uIjoiMTI4MHgxMDI0IiwiYWRibG9jayI6MCwidGltZXpvbmVfb2xzb24iOiJVVEMiLCJ1dG1fc291cmNlIjoiIiwidXRtX21lZGl1bSI6IiIsInV0bV9jYW1wYWlnbiI6IiIsInV0bV9jb250ZW50IjoiIiwibW0iOjAsImluaXRfc3RhcnRfbGF0ZW5jeSI6MS42LCJpc192MiI6MCwiaXNfdjJfZW1wdHkiOjAsInVzZXJfa2V5d29yZHMiOiJIb3JhJTJDZGUlMkNBdmVudHVyYSUyQ1Q0JTJDRTI2JTJDRWwlMkNMaWNoIn0= HTTP/1.1
Host: e3dfcd5df0.4e26d342b8.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://capratv.blogspot.com
DNT: 1
Connection: keep-alive
Referer: https://capratv.blogspot.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 01 Dec 2023 03:07:48 GMT
content-length: 0
server: nginx/1.18.0
vary: Origin
cache-control: no-transform, no-cache, no-store, must-revalidate
pragma: no-cache
access-control-allow-origin: *
access-control-allow-headers: Content-Type
access-control-allow-methods: *
X-Firefox-Spdy: h2
fp.metricswpsh.com/fp?tag_id=30034
200 OK 0 B URL POST HTTP/1.1 fp.metricswpsh.com/fp?tag_id=30034
IP
ASN #24940 Hetzner Online GmbH
Requested by https://capratv.blogspot.com/2020/06/hora-de-aventura-t4-e26.html?m=1
Certificate IssuerLet's Encrypt
Subjectnotification.tubecup.net
Fingerprint0D:7A:7C:53:DB:15:35:28:E9:E6:2B:90:43:BB:EF:E5:AB:BE:DA:E3
ValidityThu, 09 Nov 2023 09:29:43 GMT - Wed, 07 Feb 2024 09:29:42 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /fp?tag_id=30034 HTTP/1.1
Host: fp.metricswpsh.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type
Referer: https://capratv.blogspot.com/
Origin: https://capratv.blogspot.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 204 No Content
Server: nginx/1.20.1
Date: Fri, 01 Dec 2023 03:07:48 GMT
Connection: keep-alive
Access-Control-Allow-Credentials: true
Access-Control-Allow-Headers: content-type
Access-Control-Allow-Methods: GET,HEAD,PUT,PATCH,POST,DELETE
Access-Control-Allow-Origin: https://capratv.blogspot.com
Vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
fp.metricswpsh.com/fp?tag_id=40501
200 OK 0 B URL POST HTTP/1.1 fp.metricswpsh.com/fp?tag_id=40501
IP
ASN #24940 Hetzner Online GmbH
Requested by https://capratv.blogspot.com/2020/06/hora-de-aventura-t4-e26.html?m=1
Certificate IssuerLet's Encrypt
Subjectnotification.tubecup.net
Fingerprint0D:7A:7C:53:DB:15:35:28:E9:E6:2B:90:43:BB:EF:E5:AB:BE:DA:E3
ValidityThu, 09 Nov 2023 09:29:43 GMT - Wed, 07 Feb 2024 09:29:42 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /fp?tag_id=40501 HTTP/1.1
Host: fp.metricswpsh.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type
Referer: https://capratv.blogspot.com/
Origin: https://capratv.blogspot.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 204 No Content
Server: nginx/1.20.1
Date: Fri, 01 Dec 2023 03:07:48 GMT
Connection: keep-alive
Access-Control-Allow-Credentials: true
Access-Control-Allow-Headers: content-type
Access-Control-Allow-Methods: GET,HEAD,PUT,PATCH,POST,DELETE
Access-Control-Allow-Origin: https://capratv.blogspot.com
Vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
fp.metricswpsh.com/fp?tag_id=30034
200 OK 0 B URL POST HTTP/1.1 fp.metricswpsh.com/fp?tag_id=30034
IP
ASN #24940 Hetzner Online GmbH
Requested by https://capratv.blogspot.com/2020/06/hora-de-aventura-t4-e26.html?m=1
Certificate IssuerLet's Encrypt
Subjectnotification.tubecup.net
Fingerprint0D:7A:7C:53:DB:15:35:28:E9:E6:2B:90:43:BB:EF:E5:AB:BE:DA:E3
ValidityThu, 09 Nov 2023 09:29:43 GMT - Wed, 07 Feb 2024 09:29:42 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /fp?tag_id=30034 HTTP/1.1
Host: fp.metricswpsh.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type
Referer: https://capratv.blogspot.com/
Origin: https://capratv.blogspot.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 204 No Content
Server: nginx/1.20.1
Date: Fri, 01 Dec 2023 03:07:48 GMT
Connection: keep-alive
Access-Control-Allow-Credentials: true
Access-Control-Allow-Headers: content-type
Access-Control-Allow-Methods: GET,HEAD,PUT,PATCH,POST,DELETE
Access-Control-Allow-Origin: https://capratv.blogspot.com
Vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
fp.metricswpsh.com/fp?tag_id=30034
200 OK 60 B URL POST HTTP/1.1 fp.metricswpsh.com/fp?tag_id=30034
IP
ASN #24940 Hetzner Online GmbH
Requested by https://capratv.blogspot.com/2020/06/hora-de-aventura-t4-e26.html?m=1
Certificate IssuerLet's Encrypt
Subjectnotification.tubecup.net
Fingerprint0D:7A:7C:53:DB:15:35:28:E9:E6:2B:90:43:BB:EF:E5:AB:BE:DA:E3
ValidityThu, 09 Nov 2023 09:29:43 GMT - Wed, 07 Feb 2024 09:29:42 GMT
File type JSON data\012- , ASCII text
Hash 94e8b57fc8d5b3a57ff210835fa263ed
afe46cec2b7e25928d640390dd252884197b25b3
daabfaa510ab7bda4cf92e0cf826d20bef36c16c915fceefe9f59b8f2ef1c62b
POST /fp?tag_id=30034 HTTP/1.1
Host: fp.metricswpsh.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json;charset=utf-8
Content-Length: 23170
Origin: https://capratv.blogspot.com
DNT: 1
Connection: keep-alive
Referer: https://capratv.blogspot.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.20.1
Date: Fri, 01 Dec 2023 03:07:49 GMT
Content-Type: application/json; charset=UTF-8
Content-Length: 60
Connection: keep-alive
Access-Control-Allow-Credentials: true
Access-Control-Allow-Origin: https://capratv.blogspot.com
Set-Cookie: id=14186830840324346951; Expires=Sat, 30 Nov 2024 03:07:49 GMT; Secure; SameSite=None
Vary: Origin
fp.metricswpsh.com/fp?tag_id=40501
200 OK 58 B URL POST HTTP/1.1 fp.metricswpsh.com/fp?tag_id=40501
IP
ASN #24940 Hetzner Online GmbH
Requested by https://capratv.blogspot.com/2020/06/hora-de-aventura-t4-e26.html?m=1
Certificate IssuerLet's Encrypt
Subjectnotification.tubecup.net
Fingerprint0D:7A:7C:53:DB:15:35:28:E9:E6:2B:90:43:BB:EF:E5:AB:BE:DA:E3
ValidityThu, 09 Nov 2023 09:29:43 GMT - Wed, 07 Feb 2024 09:29:42 GMT
File type JSON data\012- , ASCII text
Hash 49cb75c0da6be8cc97daea0ae2498649
1dd230c3f22a2308b9c091fe1e952b5e8d44bc88
3f61f6927c8c29196e623750a164dcd6895cc2dc3a592ccc5d755b3d4d407841
POST /fp?tag_id=40501 HTTP/1.1
Host: fp.metricswpsh.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json;charset=utf-8
Content-Length: 23166
Origin: https://capratv.blogspot.com
DNT: 1
Connection: keep-alive
Referer: https://capratv.blogspot.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.20.1
Date: Fri, 01 Dec 2023 03:07:49 GMT
Content-Type: application/json; charset=UTF-8
Content-Length: 58
Connection: keep-alive
Access-Control-Allow-Credentials: true
Access-Control-Allow-Origin: https://capratv.blogspot.com
Set-Cookie: id=4939454358612034575; Expires=Sat, 30 Nov 2024 03:07:49 GMT; Secure; SameSite=None
Vary: Origin
fp.metricswpsh.com/fp?tag_id=30034
200 OK 58 B URL POST HTTP/1.1 fp.metricswpsh.com/fp?tag_id=30034
IP
ASN #24940 Hetzner Online GmbH
Requested by https://capratv.blogspot.com/2020/06/hora-de-aventura-t4-e26.html?m=1
Certificate IssuerLet's Encrypt
Subjectnotification.tubecup.net
Fingerprint0D:7A:7C:53:DB:15:35:28:E9:E6:2B:90:43:BB:EF:E5:AB:BE:DA:E3
ValidityThu, 09 Nov 2023 09:29:43 GMT - Wed, 07 Feb 2024 09:29:42 GMT
File type JSON data\012- , ASCII text
Hash 49cb75c0da6be8cc97daea0ae2498649
1dd230c3f22a2308b9c091fe1e952b5e8d44bc88
3f61f6927c8c29196e623750a164dcd6895cc2dc3a592ccc5d755b3d4d407841
POST /fp?tag_id=30034 HTTP/1.1
Host: fp.metricswpsh.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json;charset=utf-8
Content-Length: 23164
Origin: https://capratv.blogspot.com
DNT: 1
Connection: keep-alive
Referer: https://capratv.blogspot.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.20.1
Date: Fri, 01 Dec 2023 03:07:49 GMT
Content-Type: application/json; charset=UTF-8
Content-Length: 58
Connection: keep-alive
Access-Control-Allow-Credentials: true
Access-Control-Allow-Origin: https://capratv.blogspot.com
Set-Cookie: id=15120059376381211129; Expires=Sat, 30 Nov 2024 03:07:49 GMT; Secure; SameSite=None
Vary: Origin
storage.ko-fi.com/cdn/fontawesome/subset-6.4/webfonts/fa-regular-400.woff2
200 OK 29 kB URL GET HTTP/2 storage.ko-fi.com/cdn/fontawesome/subset-6.4/webfonts/fa-regular-400.woff2
IP
Requested by https://ko-fi.com/capratv/?hidefeed=true&widget=true&embed=true&preview=true
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
FingerprintF1:8F:7F:48:97:2C:37:9E:A9:3D:37:D8:8B:81:D9:BD:E6:76:D7:EC
ValiditySat, 29 Apr 2023 00:00:00 GMT - Sun, 28 Apr 2024 23:59:59 GMT
File type Web Open Font Format (Version 2), TrueType, length 28904, version 0.5376\012- data
Hash 79611e2b3df56323437fad45b3ec55f9
231b5e451183d4ee34ebb5d9a2a07ae454414840
5e56e7a5a8165248aed56c16515460681f2ff31bae3e031fdabb84ba8afc8a9c
GET /cdn/fontawesome/subset-6.4/webfonts/fa-regular-400.woff2 HTTP/1.1
Host: storage.ko-fi.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://ko-fi.com
DNT: 1
Connection: keep-alive
Referer: https://storage.ko-fi.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Fri, 01 Dec 2023 03:07:49 GMT
content-type: font/woff2
content-length: 28904
content-md5: eWEeKz31YyNDf61Fs+xV+Q==
last-modified: Thu, 23 Nov 2023 04:18:06 GMT
etag: 0x8DBEBDB3149B1EE
x-ms-request-id: bfd23d75-301e-0045-1b90-22c5a1000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Type,Last-Modified,ETag,Content-MD5,x-ms-lease-status,x-ms-blob-type,Content-Length,Date,Transfer-Encoding
access-control-allow-origin: *
cf-cache-status: HIT
age: 5540
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 82e81f408fa1b51b-OSL
X-Firefox-Spdy: h2
fonts.gstatic.com/s/nunito/v26/XRXV3I6Li01BKofINeaB.woff2
200 OK 39 kB URL GET HTTP/3 fonts.gstatic.com/s/nunito/v26/XRXV3I6Li01BKofINeaB.woff2
IP
Requested by https://ko-fi.com/capratv/?hidefeed=true&widget=true&embed=true&preview=true
Certificate IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintE5:79:1F:1A:04:3F:B9:B0:FB:41:4E:B5:E5:97:AD:FE:D9:2C:4A:CD
ValidityMon, 23 Oct 2023 11:24:07 GMT - Mon, 15 Jan 2024 11:24:06 GMT
File type Web Open Font Format (Version 2), TrueType, length 39124, version 1.0\012- data
Hash 86b73ab5f530be7984b704414f2a711d
8e297794ed7b6f5ea476d14b5270df12e8f3e42a
1a48b70f97555c13f84b8f088a417f9179d99b5101250819350acaf6e91bb92f
GET /s/nunito/v26/XRXV3I6Li01BKofINeaB.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://ko-fi.com
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 39124
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 30 Nov 2023 04:48:24 GMT
expires: Fri, 29 Nov 2024 04:48:24 GMT
cache-control: public, max-age=31536000
age: 80365
last-modified: Thu, 14 Sep 2023 00:02:20 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
fonts.gstatic.com/s/nunito/v26/XRXV3I6Li01BKofINeaB.woff2
200 OK 39 kB URL GET HTTP/3 fonts.gstatic.com/s/nunito/v26/XRXV3I6Li01BKofINeaB.woff2
IP
Requested by https://ko-fi.com/capratv/?hidefeed=true&widget=true&embed=true&preview=true
Certificate IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintE5:79:1F:1A:04:3F:B9:B0:FB:41:4E:B5:E5:97:AD:FE:D9:2C:4A:CD
ValidityMon, 23 Oct 2023 11:24:07 GMT - Mon, 15 Jan 2024 11:24:06 GMT
File type Web Open Font Format (Version 2), TrueType, length 39124, version 1.0\012- data
Hash 86b73ab5f530be7984b704414f2a711d
8e297794ed7b6f5ea476d14b5270df12e8f3e42a
1a48b70f97555c13f84b8f088a417f9179d99b5101250819350acaf6e91bb92f
GET /s/nunito/v26/XRXV3I6Li01BKofINeaB.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://ko-fi.com
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 39124
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 30 Nov 2023 04:48:24 GMT
expires: Fri, 29 Nov 2024 04:48:24 GMT
cache-control: public, max-age=31536000
age: 80365
last-modified: Thu, 14 Sep 2023 00:02:20 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
storage.ko-fi.com/cdn/fontawesome/subset-6.4/webfonts/fa-brands-400.woff2
200 OK 7.6 kB URL GET HTTP/2 storage.ko-fi.com/cdn/fontawesome/subset-6.4/webfonts/fa-brands-400.woff2
IP
Requested by https://ko-fi.com/capratv/?hidefeed=true&widget=true&embed=true&preview=true
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
FingerprintF1:8F:7F:48:97:2C:37:9E:A9:3D:37:D8:8B:81:D9:BD:E6:76:D7:EC
ValiditySat, 29 Apr 2023 00:00:00 GMT - Sun, 28 Apr 2024 23:59:59 GMT
File type Web Open Font Format (Version 2), TrueType, length 7636, version 0.5376\012- data
Hash 4997a5c6a7c1906732884c817f330c34
36e983531fc67290b1604515ce9e6090cebbc2a5
9c11ccf2278145893cf2d10bc013b41d754b6559c98de5fae342c158d5082007
GET /cdn/fontawesome/subset-6.4/webfonts/fa-brands-400.woff2 HTTP/1.1
Host: storage.ko-fi.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://ko-fi.com
DNT: 1
Connection: keep-alive
Referer: https://storage.ko-fi.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Fri, 01 Dec 2023 03:07:49 GMT
content-type: font/woff2
content-length: 7636
content-md5: SZelxqfBkGcyiEyBfzMMNA==
last-modified: Thu, 23 Nov 2023 04:18:07 GMT
etag: 0x8DBEBDB320801FF
x-ms-request-id: 0e00a386-901e-0043-2990-2232d9000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Type,Last-Modified,ETag,Content-MD5,x-ms-lease-status,x-ms-blob-type,Content-Length,Date,Transfer-Encoding
access-control-allow-origin: *
cf-cache-status: HIT
age: 5540
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 82e81f409fa4b51b-OSL
X-Firefox-Spdy: h2
storage.ko-fi.com/cdn/fontawesome/subset-6.4/webfonts/fa-solid-900.woff2
200 OK 19 kB URL GET HTTP/2 storage.ko-fi.com/cdn/fontawesome/subset-6.4/webfonts/fa-solid-900.woff2
IP
Requested by https://ko-fi.com/capratv/?hidefeed=true&widget=true&embed=true&preview=true
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
FingerprintF1:8F:7F:48:97:2C:37:9E:A9:3D:37:D8:8B:81:D9:BD:E6:76:D7:EC
ValiditySat, 29 Apr 2023 00:00:00 GMT - Sun, 28 Apr 2024 23:59:59 GMT
File type Web Open Font Format (Version 2), TrueType, length 18584, version 0.5376\012- data
Hash b7ef064d912f522f28a9eb2b5f29cab8
f429f23360690a2c62b78e91cc7f12c2fa377e90
df1e4f8c20f7a9f7a0b6a96a046c7a60f899dc1ba9069fbe1aec2ef89b12826f
GET /cdn/fontawesome/subset-6.4/webfonts/fa-solid-900.woff2 HTTP/1.1
Host: storage.ko-fi.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://ko-fi.com
DNT: 1
Connection: keep-alive
Referer: https://storage.ko-fi.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Fri, 01 Dec 2023 03:07:49 GMT
content-type: font/woff2
content-length: 18584
content-md5: t+8GTZEvUi8oqesrXynKuA==
last-modified: Thu, 23 Nov 2023 04:18:07 GMT
etag: 0x8DBEBDB324AF3E5
x-ms-request-id: 2a9aac2d-a01e-0069-6690-22479c000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Type,Last-Modified,ETag,Content-MD5,x-ms-lease-status,x-ms-blob-type,Content-Length,Date,Transfer-Encoding
access-control-allow-origin: *
cf-cache-status: HIT
age: 5540
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 82e81f409fa5b51b-OSL
X-Firefox-Spdy: h2
www.gstatic.com/recaptcha/releases/-QbJqHfGOUB8nuVRLvzFLVed/recaptcha__en.js
200 OK 191 kB URL GET HTTP/3 www.gstatic.com/recaptcha/releases/-QbJqHfGOUB8nuVRLvzFLVed/recaptcha__en.js
IP
Requested by https://www.blogger.com/comment/frame/3626921078112602778?po=2975398124286307187&hl=es&skin=contempo&blogspotRpcToken=2410587
Certificate IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintE5:79:1F:1A:04:3F:B9:B0:FB:41:4E:B5:E5:97:AD:FE:D9:2C:4A:CD
ValidityMon, 23 Oct 2023 11:24:07 GMT - Mon, 15 Jan 2024 11:24:06 GMT
File type ASCII text, with very long lines (563)
Size 191 kB (190682 bytes)
Hash 23b9dd721490a4062ba8d01454ef6ba9
efdbb7331585411f7d397dacbf51fd3e95f3031d
4970c7161d03503a3eb5ec49e4190a03445c50cd5a9081714bd13183d2d948a7
GET /recaptcha/releases/-QbJqHfGOUB8nuVRLvzFLVed/recaptcha__en.js HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.google.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
accept-ranges: bytes
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/recaptcha
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups; report-to="recaptcha"
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
content-length: 190682
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 30 Nov 2023 13:41:11 GMT
expires: Fri, 29 Nov 2024 13:41:11 GMT
cache-control: public, max-age=31536000
last-modified: Tue, 14 Nov 2023 05:42:11 GMT
content-type: text/javascript
vary: Accept-Encoding
age: 48398
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
www.googletagmanager.com/gtag/js?id=G-M13FZ7VQ2C&l=dataLayer&cx=c
200 OK 95 kB URL GET HTTP/3 www.googletagmanager.com/gtag/js?id=G-M13FZ7VQ2C&l=dataLayer&cx=c
IP
Requested by https://ko-fi.com/capratv/?hidefeed=true&widget=true&embed=true&preview=true
Certificate IssuerGoogle Trust Services LLC
Subject*.google-analytics.com
Fingerprint37:42:10:B7:89:70:45:51:80:81:66:CE:95:21:72:5D:46:0B:E2:34
ValidityMon, 23 Oct 2023 11:18:19 GMT - Mon, 15 Jan 2024 11:18:18 GMT
File type ASCII text, with very long lines (9001)
Hash 6fe23b93321189d6c33025c44198183a
5ebf5c4d91e2de6c43f6a159e201fc1925a0c889
952bee2d094b22ee33239d70a0b3fd98857a4ae75200031e225ad2146209fe4d
GET /gtag/js?id=G-M13FZ7VQ2C&l=dataLayer&cx=c HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://ko-fi.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Fri, 01 Dec 2023 03:07:49 GMT
expires: Fri, 01 Dec 2023 03:07:49 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 94774
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
www.blogger.com/_/scs/mss-static/_/js/k=boq-blogger.BloggerCommentUi.es.-dJwqwlbM3o.es5.O/ck=boq-blogger.BloggerCommentUi.D4K7pZnhZrg.L.F4.O/am=QBikBg/d=1/exm=A7fCU,BVgquf,COQbmf,EEDORb,EFQ78c,IZT63,JNoxi,KG2eXe,KUM7Z,L1AAkb,LEikZe,MI6k7c,MdUzUe,Mlhmy,MpJwZc,NwH0H,O1Gjze,O6y8ed,OTA3Ae,OmgaI,PrPYRd,RMhBfe,RqjULd,SdcwHb,SpsfSb,U0aPgd,UUJqVe,Uas9Hd,Ulmmrd,V3dDOb,VXdfxd,VwDzFe,WO9ee,XVMNvd,YwHGTd,Z5uLle,ZfAoz,ZwDk9d,_b,_tp,aW3pY,aurFic,bm51tf,byfTOb,duFQFc,e5qFLc,eD1YLc,fKUV3e,fgib1c,gZjhIf,gychg,hKSk3e,hc6Ubd,kWgXee,kjKdXe,lazG7b,lsjVmc,lwddkf,mI3LFb,mdR7q,n73qwf,ovKuLd,pjICDe,pxq3x,vfuNJf,w9hDv,wmnU7d,ws9Tlc,xQtZb,xUdipf,yDVVkb,zbML3c,zr1jrb/excm=_b,_tp,commentformiframeview/ed=1/wt=2/ujg=1/rs=AEy-KP0pTOfUG0C1wZEc4KpF2W8IDTTIhg/ee=EmZ2Bf:zr1jrb;Erl4fe:FloWmf;JsbNhc:Xd8iUd;LBgRLc:SdcwHb;Me32dd:MEeYgc;NPKaK:SdcwHb;NSEoX:lazG7b;Oj465e:KG2eXe;Pjplud:EEDORb;QGR0gd:Mlhmy;SNUn3:ZwDk9d;a56pNe:JEfCwb;cEt90b:ws9Tlc;dIoSBb:SpsfSb;eBAeSb:zbML3c;iFQyKf:vfuNJf;io8t5d:yDVVkb;kMFpHd:OTA3Ae;nAFL3:NTMZac;oGtAuc:sOXFj;pXdRYb:MdUzUe;qddgKe:xQtZb;sP4Vbe:VwDzFe;uY49fb:COQbmf;ul9GGd:VDovNc;wR5FRb:O1Gjze;xqZiqf:wmnU7d;yxTchf:KUM7Z;zxnPse:duFQFc/m=Wt6vjf,hhhU8,FCpbqb,WhJNk
200 OK 1.7 kB URL GET HTTP/3 www.blogger.com/_/scs/mss-static/_/js/k=boq-blogger.BloggerCommentUi.es.-dJwqwlbM3o.es5.O/ck=boq-blogger.BloggerCommentUi.D4K7pZnhZrg.L.F4.O/am=QBikBg/d=1/exm=A7fCU,BVgquf,COQbmf,EEDORb,EFQ78c,IZT63,JNoxi,KG2eXe,KUM7Z,L1AAkb,LEikZe,MI6k7c,MdUzUe,Mlhmy,MpJwZc,NwH0H,O1Gjze,O6y8ed,OTA3Ae,OmgaI,PrPYRd,RMhBfe,RqjULd,SdcwHb,SpsfSb,U0aPgd,UUJqVe,Uas9Hd,Ulmmrd,V3dDOb,VXdfxd,VwDzFe,WO9ee,XVMNvd,YwHGTd,Z5uLle,ZfAoz,ZwDk9d,_b,_tp,aW3pY,aurFic,bm51tf,byfTOb,duFQFc,e5qFLc,eD1YLc,fKUV3e,fgib1c,gZjhIf,gychg,hKSk3e,hc6Ubd,kWgXee,kjKdXe,lazG7b,lsjVmc,lwddkf,mI3LFb,mdR7q,n73qwf,ovKuLd,pjICDe,pxq3x,vfuNJf,w9hDv,wmnU7d,ws9Tlc,xQtZb,xUdipf,yDVVkb,zbML3c,zr1jrb/excm=_b,_tp,commentformiframeview/ed=1/wt=2/ujg=1/rs=AEy-KP0pTOfUG0C1wZEc4KpF2W8IDTTIhg/ee=EmZ2Bf:zr1jrb;Erl4fe:FloWmf;JsbNhc:Xd8iUd;LBgRLc:SdcwHb;Me32dd:MEeYgc;NPKaK:SdcwHb;NSEoX:lazG7b;Oj465e:KG2eXe;Pjplud:EEDORb;QGR0gd:Mlhmy;SNUn3:ZwDk9d;a56pNe:JEfCwb;cEt90b:ws9Tlc;dIoSBb:SpsfSb;eBAeSb:zbML3c;iFQyKf:vfuNJf;io8t5d:yDVVkb;kMFpHd:OTA3Ae;nAFL3:NTMZac;oGtAuc:sOXFj;pXdRYb:MdUzUe;qddgKe:xQtZb;sP4Vbe:VwDzFe;uY49fb:COQbmf;ul9GGd:VDovNc;wR5FRb:O1Gjze;xqZiqf:wmnU7d;yxTchf:KUM7Z;zxnPse:duFQFc/m=Wt6vjf,hhhU8,FCpbqb,WhJNk
IP
Requested by https://www.blogger.com/comment/frame/3626921078112602778?po=2975398124286307187&hl=es&skin=contempo&blogspotRpcToken=2410587
Certificate IssuerGoogle Trust Services LLC
Subject*.blogger.com
Fingerprint4A:89:9B:E5:F1:54:0E:2D:0A:8E:40:A8:27:DF:2E:6B:7F:74:51:90
ValidityMon, 23 Oct 2023 11:17:52 GMT - Mon, 15 Jan 2024 11:17:51 GMT
File type ASCII text, with very long lines (732)
Hash 0e8ebbae2755a3296859faa502552159
62e6c0e163f87faccb460daa4281d241984430b1
59eafb9499a7b11b85181da276f08c6418d2bbd54c0929faddee35e24c64c3f4
GET /_/scs/mss-static/_/js/k=boq-blogger.BloggerCommentUi.es.-dJwqwlbM3o.es5.O/ck=boq-blogger.BloggerCommentUi.D4K7pZnhZrg.L.F4.O/am=QBikBg/d=1/exm=A7fCU,BVgquf,COQbmf,EEDORb,EFQ78c,IZT63,JNoxi,KG2eXe,KUM7Z,L1AAkb,LEikZe,MI6k7c,MdUzUe,Mlhmy,MpJwZc,NwH0H,O1Gjze,O6y8ed,OTA3Ae,OmgaI,PrPYRd,RMhBfe,RqjULd,SdcwHb,SpsfSb,U0aPgd,UUJqVe,Uas9Hd,Ulmmrd,V3dDOb,VXdfxd,VwDzFe,WO9ee,XVMNvd,YwHGTd,Z5uLle,ZfAoz,ZwDk9d,_b,_tp,aW3pY,aurFic,bm51tf,byfTOb,duFQFc,e5qFLc,eD1YLc,fKUV3e,fgib1c,gZjhIf,gychg,hKSk3e,hc6Ubd,kWgXee,kjKdXe,lazG7b,lsjVmc,lwddkf,mI3LFb,mdR7q,n73qwf,ovKuLd,pjICDe,pxq3x,vfuNJf,w9hDv,wmnU7d,ws9Tlc,xQtZb,xUdipf,yDVVkb,zbML3c,zr1jrb/excm=_b,_tp,commentformiframeview/ed=1/wt=2/ujg=1/rs=AEy-KP0pTOfUG0C1wZEc4KpF2W8IDTTIhg/ee=EmZ2Bf:zr1jrb;Erl4fe:FloWmf;JsbNhc:Xd8iUd;LBgRLc:SdcwHb;Me32dd:MEeYgc;NPKaK:SdcwHb;NSEoX:lazG7b;Oj465e:KG2eXe;Pjplud:EEDORb;QGR0gd:Mlhmy;SNUn3:ZwDk9d;a56pNe:JEfCwb;cEt90b:ws9Tlc;dIoSBb:SpsfSb;eBAeSb:zbML3c;iFQyKf:vfuNJf;io8t5d:yDVVkb;kMFpHd:OTA3Ae;nAFL3:NTMZac;oGtAuc:sOXFj;pXdRYb:MdUzUe;qddgKe:xQtZb;sP4Vbe:VwDzFe;uY49fb:COQbmf;ul9GGd:VDovNc;wR5FRb:O1Gjze;xqZiqf:wmnU7d;yxTchf:KUM7Z;zxnPse:duFQFc/m=Wt6vjf,hhhU8,FCpbqb,WhJNk HTTP/1.1
Host: www.blogger.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.blogger.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
accept-ranges: bytes
content-encoding: gzip
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/boq-infra/blogger-boq-js-css-signers
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="boq-infra/blogger-boq-js-css-signers"
report-to: {"group":"boq-infra/blogger-boq-js-css-signers","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/boq-infra/blogger-boq-js-css-signers"}]}
content-length: 1656
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 29 Nov 2023 17:54:07 GMT
expires: Thu, 28 Nov 2024 17:54:07 GMT
cache-control: public, immutable, max-age=31536000
last-modified: Mon, 27 Nov 2023 09:08:07 GMT
content-type: text/javascript; charset=UTF-8
vary: Accept-Encoding
age: 119622
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
az416426.vo.msecnd.net/scripts/a/ai.0.js
200 OK 22 kB URL GET HTTP/2 az416426.vo.msecnd.net/scripts/a/ai.0.js
IP
Requested by https://ko-fi.com/capratv/?hidefeed=true&widget=true&embed=true&preview=true
Certificate IssuerDigiCert Inc
Subject*.vo.msecnd.net
Fingerprint0E:7D:A8:CD:FE:61:1E:46:97:A3:57:99:70:DA:E0:59:1D:34:04:80
ValidityFri, 05 May 2023 00:00:00 GMT - Sun, 28 Apr 2024 23:59:59 GMT
File type ASCII text, with very long lines (65536), with no line terminators
Hash 1dd63de72cf1f702324245441844be13
58a8bdcdcb398af7db424357df70df18e7b30e9d
5201c813c37a4168cc5c20c701d4391fd0a55625f97eb9f263a74fb52b52fd0e
GET /scripts/a/ai.0.js HTTP/1.1
Host: az416426.vo.msecnd.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://ko-fi.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-encoding: gzip
access-control-allow-origin: *
access-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Length,Date,Transfer-Encoding
age: 623
cache-control: public, max-age=1800
content-md5: HdY95yzx9wIyQkVEGES+Ew==
content-type: application/x-javascript
date: Fri, 01 Dec 2023 03:07:49 GMT
etag: 0x8D8E461DA1A5889
expires: Fri, 01 Dec 2023 03:37:49 GMT
last-modified: Thu, 11 Mar 2021 07:46:59 GMT
server: ECAcc (ska/F773)
vary: Accept-Encoding
x-cache: HIT
x-ms-blob-type: BlockBlob
x-ms-lease-status: unlocked
x-ms-meta-lastmodified: 2020-10-01 19:31:04
x-ms-request-id: a9dd71e9-901e-005b-5902-24deaf000000
x-ms-version: 2009-09-19
content-length: 22495
X-Firefox-Spdy: h2
accounts.google.com/ServiceLogin?passive=true&continue=https%3A%2F%2Fm.youtube.com%2Ffavicon.ico&uilel=3&hl=en&service=youtube
302 Found 0 B URL GET HTTP/2 accounts.google.com/ServiceLogin?passive=true&continue=https%3A%2F%2Fm.youtube.com%2Ffavicon.ico&uilel=3&hl=en&service=youtube
IP
Requested by https://capratv.blogspot.com/2020/06/hora-de-aventura-t4-e26.html?m=1
Certificate IssuerGoogle Trust Services LLC
Subjectaccounts.google.com
Fingerprint1E:A9:E1:96:78:1D:08:FC:96:C8:C2:34:4F:02:D3:3D:FA:9A:D2:6B
ValidityMon, 23 Oct 2023 11:25:04 GMT - Mon, 15 Jan 2024 11:25:03 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /ServiceLogin?passive=true&continue=https%3A%2F%2Fm.youtube.com%2Ffavicon.ico&uilel=3&hl=en&service=youtube HTTP/1.1
Host: accounts.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 302 Found
content-type: application/binary
set-cookie: __Host-GAPS=1:0lKGWEjd7N1DXn_8O-42H_z54t98KQ:8zJOGJvZimKZlFZx; Expires=Sun, 30-Nov-2025 03:07:49 GMT; Path=/; Secure; HttpOnly; Priority=HIGH
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Fri, 01 Dec 2023 03:07:49 GMT
location: https://accounts.google.com/InteractiveLogin?continue=https://m.youtube.com/favicon.ico&hl=en&passive=true&service=youtube&uilel=3&ifkv=ASKXGp0c1S7EVdYlXhg63RerPzmvASQtv9Zx5qiwBI7Hhxc0B9so6ET--Nt5Cyl2L2ytBJdAlItvVQ
strict-transport-security: max-age=31536000; includeSubDomains
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Model, Sec-CH-UA-WoW64, Sec-CH-UA-Form-Factor, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: unsafe-none
content-security-policy: script-src 'nonce-80Vwh5Tb1_YdvhygFn250g' 'unsafe-inline';object-src 'none';base-uri 'self';report-uri /_/AccountsSigninPassiveLoginHttp/cspreport;worker-src 'self', script-src 'unsafe-inline' 'self' https://apis.google.com https://ssl.gstatic.com https://www.google.com https://www.googletagmanager.com https://www.gstatic.com https://www.google-analytics.com;report-uri /_/AccountsSigninPassiveLoginHttp/cspreport/allowlist, require-trusted-types-for 'script';report-uri /_/AccountsSigninPassiveLoginHttp/cspreport
permissions-policy: ch-ua-arch=*, ch-ua-bitness=*, ch-ua-full-version=*, ch-ua-full-version-list=*, ch-ua-model=*, ch-ua-wow64=*, ch-ua-form-factor=*, ch-ua-platform=*, ch-ua-platform-version=*
server: ESF
content-length: 0
x-xss-protection: 0
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
www.gstatic.com/recaptcha/releases/-QbJqHfGOUB8nuVRLvzFLVed/styles__ltr.css
200 OK 25 kB URL GET HTTP/3 www.gstatic.com/recaptcha/releases/-QbJqHfGOUB8nuVRLvzFLVed/styles__ltr.css
IP
Requested by https://www.google.com/recaptcha/api2/anchor?ar=1&k=6LcdyMoZAAAAAFYwZAM4wZySTWVzr15BuInOVasu&co=aHR0cHM6Ly93d3cuYmxvZ2dlci5jb206NDQz&hl=en&v=-QbJqHfGOUB8nuVRLvzFLVed&size=invisible&cb=ad4n1049f7np
Certificate IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintE5:79:1F:1A:04:3F:B9:B0:FB:41:4E:B5:E5:97:AD:FE:D9:2C:4A:CD
ValidityMon, 23 Oct 2023 11:24:07 GMT - Mon, 15 Jan 2024 11:24:06 GMT
File type ASCII text, with very long lines (56398), with no line terminators
Hash eb4bc511f79f7a1573b45f5775b3a99b
d910fb51ad7316aa54f055079374574698e74b35
7859a62e04b0acb06516eb12454de6673883ecfaeaed6c254659bca7cd59c050
GET /recaptcha/releases/-QbJqHfGOUB8nuVRLvzFLVed/styles__ltr.css HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.google.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
accept-ranges: bytes
content-encoding: gzip
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/recaptcha
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups; report-to="recaptcha"
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
content-length: 24606
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 01 Dec 2023 01:52:33 GMT
expires: Sat, 30 Nov 2024 01:52:33 GMT
cache-control: public, max-age=31536000
last-modified: Tue, 14 Nov 2023 05:42:11 GMT
content-type: text/css
vary: Accept-Encoding
age: 4516
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
823d58dda1.3edcc83467.com/34a7f242d4e5a5dd7d2ecf07cbb3fcb2.js
200 OK 206 kB URL GET HTTP/2 823d58dda1.3edcc83467.com/34a7f242d4e5a5dd7d2ecf07cbb3fcb2.js
IP
ASN #39572 DataWeb Global Group B.V.
Requested by https://capratv.blogspot.com/2020/06/hora-de-aventura-t4-e26.html?m=1
Certificate IssuerLet's Encrypt
Subject823d58dda1.3edcc83467.com
FingerprintC0:7E:B2:A9:0D:D7:B7:DE:9E:50:50:2E:7E:DA:23:DD:2B:F4:7C:6A
ValidityTue, 28 Nov 2023 02:20:37 GMT - Mon, 26 Feb 2024 02:20:36 GMT
File type gzip compressed data, from Unix\012- data
Size 206 kB (206198 bytes)
Hash 5ab912e33d5aab519c7b82e67f71c643
4075838aed505aab208351ade7532be0fece8113
ebf0fed0c78bf140259427de08864de4f436270c1d527b3747f0b69948d9dca5
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /34a7f242d4e5a5dd7d2ecf07cbb3fcb2.js HTTP/1.1
Host: 823d58dda1.3edcc83467.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://capratv.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Fri, 01 Dec 2023 03:07:48 GMT
content-type: application/javascript; charset=utf-8
server: nginx/1.18.0
last-modified: Wed, 22 Nov 2023 08:24:19 GMT
etag: W/"655dbab3-ba40"
content-encoding: gzip
expires: Fri, 01 Dec 2023 03:12:48 GMT
cache-control: max-age=300
x-proxy-cache: HIT
access-control-allow-origin: *
X-Firefox-Spdy: h2
accounts.google.com/InteractiveLogin?continue=https://m.youtube.com/favicon.ico&hl=en&passive=true&service=youtube&uilel=3&ifkv=ASKXGp0c1S7EVdYlXhg63RerPzmvASQtv9Zx5qiwBI7Hhxc0B9so6ET--Nt5Cyl2L2ytBJdAlItvVQ
302 Found 403 B URL GET HTTP/2 accounts.google.com/InteractiveLogin?continue=https://m.youtube.com/favicon.ico&hl=en&passive=true&service=youtube&uilel=3&ifkv=ASKXGp0c1S7EVdYlXhg63RerPzmvASQtv9Zx5qiwBI7Hhxc0B9so6ET--Nt5Cyl2L2ytBJdAlItvVQ
IP
Requested by https://capratv.blogspot.com/2020/06/hora-de-aventura-t4-e26.html?m=1
Certificate IssuerGoogle Trust Services LLC
Subjectaccounts.google.com
Fingerprint1E:A9:E1:96:78:1D:08:FC:96:C8:C2:34:4F:02:D3:3D:FA:9A:D2:6B
ValidityMon, 23 Oct 2023 11:25:04 GMT - Mon, 15 Jan 2024 11:25:03 GMT
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ASCII text, with very long lines (397)
Hash f99c214f3cd3466cc47eb41814f6fb2a
42eb170f5246cbbbd7b4aaecff02b69fb7d32b3e
a3df3b8af73aa66b8a65397a495d900758504b38d188ed9a526acd53ee19fbe7
GET /InteractiveLogin?continue=https://m.youtube.com/favicon.ico&hl=en&passive=true&service=youtube&uilel=3&ifkv=ASKXGp0c1S7EVdYlXhg63RerPzmvASQtv9Zx5qiwBI7Hhxc0B9so6ET--Nt5Cyl2L2ytBJdAlItvVQ HTTP/1.1
Host: accounts.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 302 Found
content-type: text/html; charset=UTF-8
set-cookie: __Host-GAPS=1:ijvON1HRcvcZPOASkO21LrXn-wiy7Q:NRKHfEJBFiFoWTsm;Path=/;Expires=Sun, 30-Nov-2025 03:07:49 GMT;Secure;HttpOnly;Priority=HIGH
x-frame-options: DENY
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Fri, 01 Dec 2023 03:07:49 GMT
location: https://accounts.google.com/v3/signin/identifier?continue=https%3A%2F%2Fm.youtube.com%2Ffavicon.ico&hl=en&ifkv=ASKXGp3yXTelXKN5E5Q_6ZY79AIlrb73rnNggdw1p3RksZhDgJ5vz1mfL89WR8HJdUtsbik8BPFOOA&passive=true&service=youtube&uilel=3&flowName=GlifWebSignIn&flowEntry=ServiceLogin&dsh=S1308933251%3A1701400069539140&theme=glif
strict-transport-security: max-age=31536000; includeSubDomains
report-to: {"group":"coop_gse_qebhlk","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/gse_qebhlk"}]}
content-security-policy: script-src 'nonce-Omvg87YecdaLIEnF3zQMFQ' 'unsafe-inline' 'unsafe-eval';object-src 'none';base-uri 'self';report-uri /cspreport, require-trusted-types-for 'script';report-uri /cspreport
cross-origin-opener-policy-report-only: same-origin; report-to="coop_gse_qebhlk"
content-encoding: gzip
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
content-length: 403
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ko-fi.com/api/session/toasts?_=1701400073071
200 OK 143 B URL GET HTTP/2 ko-fi.com/api/session/toasts?_=1701400073071
IP
Requested by https://ko-fi.com/capratv/?hidefeed=true&widget=true&embed=true&preview=true
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
FingerprintF1:8F:7F:48:97:2C:37:9E:A9:3D:37:D8:8B:81:D9:BD:E6:76:D7:EC
ValiditySat, 29 Apr 2023 00:00:00 GMT - Sun, 28 Apr 2024 23:59:59 GMT
File type JSON data\012- , ASCII text, with no line terminators
Hash 343c68154eb8996a691d61fe547e8d16
d80d1d797123fb21a4de50eba8dd805501ea5f38
b4eed0beb75c73a24384275418323653a2de7920da9e8f390528302b5d7f51e0
GET /api/session/toasts?_=1701400073071 HTTP/1.1
Host: ko-fi.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://ko-fi.com/capratv/?hidefeed=true&widget=true&embed=true&preview=true
X-Requested-With: XMLHttpRequest
DNT: 1
Connection: keep-alive
Cookie: ARRAffinitySameSite=95102c35e644550298b6b4fa06374c1365ce2dde66c6804334c0540186df0525
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Fri, 01 Dec 2023 03:07:49 GMT
content-type: application/json; charset=utf-8
content-length: 143
access-control-expose-headers: Request-Context
cache-control: private
content-encoding: gzip
vary: Accept-Encoding
arr-disable-session-affinity: True
x-frame-options: SAMEORIGIN
request-context: appId=cid-v1:02025889-f5bc-454e-88f5-4372da34dffd
x-xss-protection: 1; mode=block
referrer-policy: strict-origin-when-cross-origin
x-permitted-cross-domain-policies: none
x-content-type-options: nosniff
last-modified: Fri, 01 Dec 2023 03:07:49 GMT
cf-cache-status: MISS
accept-ranges: bytes
server: cloudflare
cf-ray: 82e81f3f2f51b51b-OSL
X-Firefox-Spdy: h2
js.cabnnr.com/banner-admanager/build.m.js
200 OK 18 kB URL GET HTTP/2 js.cabnnr.com/banner-admanager/build.m.js
IP
ASN #39572 DataWeb Global Group B.V.
Requested by https://capratv.blogspot.com/2020/06/hora-de-aventura-t4-e26.html?m=1
Certificate IssuerLet's Encrypt
Subjectjs.cabnnr.com
Fingerprint3A:29:AE:AD:75:BB:08:B4:F0:B7:22:4E:50:FB:7E:47:1C:0B:9B:33
ValiditySun, 22 Oct 2023 13:02:54 GMT - Sat, 20 Jan 2024 13:02:53 GMT
File type ASCII text, with very long lines (54229), with no line terminators
Hash 712d64373dd416d618af872f8df81075
9483668da79d6fed279e6050ace3cc7b2c211bc0
2acb8b5e738c3e88e2f8a111c5fbb60bc81e724f230d3fce37fc78652c615570
GET /banner-admanager/build.m.js HTTP/1.1
Host: js.cabnnr.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://capratv.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 01 Dec 2023 03:07:48 GMT
content-type: application/javascript; charset=utf-8
server: nginx/1.18.0
last-modified: Fri, 24 Nov 2023 09:13:53 GMT
etag: W/"65606951-d3d5"
content-encoding: gzip
expires: Fri, 01 Dec 2023 03:12:48 GMT
cache-control: max-age=300
x-proxy-cache: HIT
access-control-allow-origin: *
X-Firefox-Spdy: h2
nereserv.com/in/dip?site=native-push&wl=0&event_id=481a2e75-fcbe-4b73-95ba-d9f5f090b3d1&subid=1294464241&sid=210583705&spot_id=19926&created_at=2023-12-01&timezone=0&ver=8.121.0&is_native=1
200 OK 0 B URL GET HTTP/2 nereserv.com/in/dip?site=native-push&wl=0&event_id=481a2e75-fcbe-4b73-95ba-d9f5f090b3d1&subid=1294464241&sid=210583705&spot_id=19926&created_at=2023-12-01&timezone=0&ver=8.121.0&is_native=1
IP
ASN #24940 Hetzner Online GmbH
Requested by https://capratv.blogspot.com/2020/06/hora-de-aventura-t4-e26.html?m=1
Certificate IssuerLet's Encrypt
Subjectnotification.tubecup.net
Fingerprint0D:7A:7C:53:DB:15:35:28:E9:E6:2B:90:43:BB:EF:E5:AB:BE:DA:E3
ValidityThu, 09 Nov 2023 09:29:43 GMT - Wed, 07 Feb 2024 09:29:42 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /in/dip?site=native-push&wl=0&event_id=481a2e75-fcbe-4b73-95ba-d9f5f090b3d1&subid=1294464241&sid=210583705&spot_id=19926&created_at=2023-12-01&timezone=0&ver=8.121.0&is_native=1 HTTP/1.1
Host: nereserv.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://capratv.blogspot.com
DNT: 1
Connection: keep-alive
Referer: https://capratv.blogspot.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx/1.20.1
date: Fri, 01 Dec 2023 03:07:49 GMT
content-length: 0
vary: Origin
cache-control: no-transform, no-cache, no-store, must-revalidate
pragma: no-cache
access-control-allow-origin: *
access-control-allow-headers: Content-Type
access-control-allow-methods: *
X-Firefox-Spdy: h2
www.gstatic.com/recaptcha/api2/logo_48.png
200 OK 2.2 kB URL GET HTTP/3 www.gstatic.com/recaptcha/api2/logo_48.png
IP
Requested by https://www.google.com/recaptcha/api2/anchor?ar=1&k=6LcdyMoZAAAAAFYwZAM4wZySTWVzr15BuInOVasu&co=aHR0cHM6Ly93d3cuYmxvZ2dlci5jb206NDQz&hl=en&v=-QbJqHfGOUB8nuVRLvzFLVed&size=invisible&cb=ad4n1049f7np
Certificate IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintE5:79:1F:1A:04:3F:B9:B0:FB:41:4E:B5:E5:97:AD:FE:D9:2C:4A:CD
ValidityMon, 23 Oct 2023 11:24:07 GMT - Mon, 15 Jan 2024 11:24:06 GMT
File type PNG image data, 48 x 48, 8-bit/color RGBA, non-interlaced\012- data
Hash ef9941290c50cd3866e2ba6b793f010d
4736508c795667dcea21f8d864233031223b7832
1b9efb22c938500971aac2b2130a475fa23684dd69e43103894968df83145b8a
GET /recaptcha/api2/logo_48.png HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.gstatic.com/recaptcha/releases/-QbJqHfGOUB8nuVRLvzFLVed/styles__ltr.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
accept-ranges: bytes
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/recaptcha
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups; report-to="recaptcha"
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
content-length: 2228
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 29 Nov 2023 21:37:43 GMT
expires: Wed, 06 Dec 2023 21:37:43 GMT
cache-control: public, max-age=604800
age: 106206
last-modified: Tue, 03 Mar 2020 20:15:00 GMT
content-type: image/png
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
fonts.gstatic.com/s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2
200 OK 15 kB URL GET HTTP/3 fonts.gstatic.com/s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2
IP
Requested by https://www.google.com/recaptcha/api2/anchor?ar=1&k=6LcdyMoZAAAAAFYwZAM4wZySTWVzr15BuInOVasu&co=aHR0cHM6Ly93d3cuYmxvZ2dlci5jb206NDQz&hl=en&v=-QbJqHfGOUB8nuVRLvzFLVed&size=invisible&cb=ad4n1049f7np
Certificate IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintE5:79:1F:1A:04:3F:B9:B0:FB:41:4E:B5:E5:97:AD:FE:D9:2C:4A:CD
ValidityMon, 23 Oct 2023 11:24:07 GMT - Mon, 15 Jan 2024 11:24:06 GMT
File type Web Open Font Format (Version 2), TrueType, length 15344, version 1.0\012- data
Hash 5d4aeb4e5f5ef754e307d7ffaef688bd
06db651cdf354c64a7383ea9c77024ef4fb4cef8
3e253b66056519aa065b00a453bac37ac5ed8f3e6fe7b542e93a9dcdcc11d0bc
GET /s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.google.com
DNT: 1
Connection: keep-alive
Referer: https://www.google.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15344
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 29 Nov 2023 18:39:39 GMT
expires: Thu, 28 Nov 2024 18:39:39 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 16 Oct 2017 17:32:55 GMT
content-type: font/woff2
age: 116890
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
fonts.gstatic.com/s/roboto/v18/KFOlCnqEu92Fr1MmEU9fBBc4.woff2
200 OK 16 kB URL GET HTTP/3 fonts.gstatic.com/s/roboto/v18/KFOlCnqEu92Fr1MmEU9fBBc4.woff2
IP
Requested by https://www.google.com/recaptcha/api2/anchor?ar=1&k=6LcdyMoZAAAAAFYwZAM4wZySTWVzr15BuInOVasu&co=aHR0cHM6Ly93d3cuYmxvZ2dlci5jb206NDQz&hl=en&v=-QbJqHfGOUB8nuVRLvzFLVed&size=invisible&cb=ad4n1049f7np
Certificate IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintE5:79:1F:1A:04:3F:B9:B0:FB:41:4E:B5:E5:97:AD:FE:D9:2C:4A:CD
ValidityMon, 23 Oct 2023 11:24:07 GMT - Mon, 15 Jan 2024 11:24:06 GMT
File type Web Open Font Format (Version 2), TrueType, length 15552, version 1.0\012- data
Hash 285467176f7fe6bb6a9c6873b3dad2cc
ea04e4ff5142ddd69307c183def721a160e0a64e
5a8c1e7681318caa29e9f44e8a6e271f6a4067a2703e9916dfd4fe9099241db7
GET /s/roboto/v18/KFOlCnqEu92Fr1MmEU9fBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.google.com
DNT: 1
Connection: keep-alive
Referer: https://www.google.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15552
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 27 Nov 2023 23:42:20 GMT
expires: Tue, 26 Nov 2024 23:42:20 GMT
cache-control: public, max-age=31536000
age: 271529
last-modified: Mon, 16 Oct 2017 17:33:02 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
823d58dda1.3edcc83467.com/6bcf5995475b0f971c40a0abf81b0614.js
200 OK 136 kB URL GET HTTP/2 823d58dda1.3edcc83467.com/6bcf5995475b0f971c40a0abf81b0614.js
IP
ASN #39572 DataWeb Global Group B.V.
Requested by https://capratv.blogspot.com/2020/06/hora-de-aventura-t4-e26.html?m=1
Certificate IssuerLet's Encrypt
Subject823d58dda1.3edcc83467.com
FingerprintC0:7E:B2:A9:0D:D7:B7:DE:9E:50:50:2E:7E:DA:23:DD:2B:F4:7C:6A
ValidityTue, 28 Nov 2023 02:20:37 GMT - Mon, 26 Feb 2024 02:20:36 GMT
File type ASCII text, with very long lines (65536), with no line terminators
Size 136 kB (136189 bytes)
Hash 1921240690aab70adaf5b379b94b3185
9fa83c75665a217ce7b2a5b2a7fcec43cf0c19ec
25ab37f5254eae1598cd8d0bd1017f7a32d421a1a2b3418aa41589eb5e993efd
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /6bcf5995475b0f971c40a0abf81b0614.js HTTP/1.1
Host: 823d58dda1.3edcc83467.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://capratv.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Fri, 01 Dec 2023 03:07:48 GMT
content-type: application/javascript; charset=utf-8
server: nginx/1.18.0
last-modified: Thu, 30 Nov 2023 09:44:58 GMT
etag: W/"6568599a-8746e"
content-encoding: gzip
expires: Fri, 01 Dec 2023 03:12:48 GMT
cache-control: max-age=300
x-proxy-cache: HIT
access-control-allow-origin: *
X-Firefox-Spdy: h2
19cdb461a5.32f689042e.com/in/multy
200 OK 0 B URL POST HTTP/2 19cdb461a5.32f689042e.com/in/multy
IP
ASN #24940 Hetzner Online GmbH
Requested by https://capratv.blogspot.com/2020/06/hora-de-aventura-t4-e26.html?m=1
Certificate IssuerLet's Encrypt
Subject32f689042e.com
FingerprintCF:AD:49:7F:99:84:22:76:B2:5A:E3:FA:65:CE:A1:08:4D:BE:58:40
ValidityTue, 28 Nov 2023 03:01:49 GMT - Mon, 26 Feb 2024 03:01:48 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
OPTIONS /in/multy HTTP/1.1
Host: 19cdb461a5.32f689042e.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type
Referer: https://capratv.blogspot.com/
Origin: https://capratv.blogspot.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 204 No Content
server: nginx/1.20.1
date: Fri, 01 Dec 2023 03:07:49 GMT
vary: Origin
cache-control: no-transform, no-cache, no-store, must-revalidate
pragma: no-cache
access-control-allow-origin: *
access-control-allow-headers: Content-Type
access-control-allow-methods: *
X-Firefox-Spdy: h2
www.google.com/recaptcha/api2/anchor?ar=1&k=6LeIm9UUAAAAAI9HoqMbV3xi0okAxcoNNumTv6QU&co=aHR0cHM6Ly9rby1maS5jb206NDQz&hl=en&v=-QbJqHfGOUB8nuVRLvzFLVed&size=invisible&cb=c0fhsa4h9wpn
200 OK 226 kB URL GET HTTP/3 www.google.com/recaptcha/api2/anchor?ar=1&k=6LeIm9UUAAAAAI9HoqMbV3xi0okAxcoNNumTv6QU&co=aHR0cHM6Ly9rby1maS5jb206NDQz&hl=en&v=-QbJqHfGOUB8nuVRLvzFLVed&size=invisible&cb=c0fhsa4h9wpn
IP
Requested by https://ko-fi.com/capratv/?hidefeed=true&widget=true&embed=true&preview=true
Certificate IssuerGoogle Trust Services LLC
Subject*.google.com
Fingerprint4C:0D:17:8C:F1:30:7C:3A:6F:9B:8E:B4:83:0E:5C:BD:ED:17:3E:95
ValidityMon, 23 Oct 2023 11:18:24 GMT - Mon, 15 Jan 2024 11:18:23 GMT
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (52121)
Size 226 kB (225461 bytes)
Hash 0efb52fe248934abe48e4e2635da9d0a
68579c176d73a9ce87e891d3e959c9fbf413e5aa
3d6553edc289ad46047309d35b27314a65ce88048e6b0b89b44cd4696b648c26
GET /recaptcha/api2/anchor?ar=1&k=6LeIm9UUAAAAAI9HoqMbV3xi0okAxcoNNumTv6QU&co=aHR0cHM6Ly9rby1maS5jb206NDQz&hl=en&v=-QbJqHfGOUB8nuVRLvzFLVed&size=invisible&cb=c0fhsa4h9wpn HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://ko-fi.com/
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
content-type: text/html; charset=utf-8
cross-origin-resource-policy: cross-origin
cross-origin-embedder-policy: require-corp
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Fri, 01 Dec 2023 03:07:49 GMT
content-security-policy: script-src 'nonce-LXhjAEa2IkZAA95Wg2ywBQ' 'unsafe-inline' 'strict-dynamic' https: http: 'unsafe-eval';object-src 'none';base-uri 'self';report-uri https://csp.withgoogle.com/csp/recaptcha/1
content-encoding: gzip
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
ko-fi.com/cdn-cgi/rum?
204 No Content 0 B IP
Requested by https://ko-fi.com/capratv/?hidefeed=true&widget=true&embed=true&preview=true
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
FingerprintF1:8F:7F:48:97:2C:37:9E:A9:3D:37:D8:8B:81:D9:BD:E6:76:D7:EC
ValiditySat, 29 Apr 2023 00:00:00 GMT - Sun, 28 Apr 2024 23:59:59 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /cdn-cgi/rum? HTTP/1.1
Host: ko-fi.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://ko-fi.com/capratv/?hidefeed=true&widget=true&embed=true&preview=true
content-type: application/json
Request-Id: |jNArs.FkUV4
Content-Length: 14097
Origin: https://ko-fi.com
DNT: 1
Connection: keep-alive
Cookie: ARRAffinitySameSite=95102c35e644550298b6b4fa06374c1365ce2dde66c6804334c0540186df0525; ai_user=I2lYx|2023-12-01T03:07:54.201Z; ai_session=NijmC|1701400074622|1701400074622
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 204 No Content
date: Fri, 01 Dec 2023 03:07:50 GMT
access-control-allow-origin: https://ko-fi.com
access-control-allow-methods: POST,OPTIONS
access-control-max-age: 86400
vary: Origin
access-control-allow-credentials: true
server: cloudflare
cf-ray: 82e81f45b9e3b51b-OSL
x-frame-options: DENY
x-content-type-options: nosniff
X-Firefox-Spdy: h2
pagead2.googlesyndication.com/getconfig/sodar?sv=200&tid=gda&tv=r20231129&st=env
200 OK 12 kB URL GET HTTP/3 pagead2.googlesyndication.com/getconfig/sodar?sv=200&tid=gda&tv=r20231129&st=env
IP
Requested by https://capratv.blogspot.com/2020/06/hora-de-aventura-t4-e26.html?m=1
Certificate IssuerGoogle Trust Services LLC
Subject*.g.doubleclick.net
Fingerprint6C:2A:75:F2:3F:EF:4F:43:B1:8D:C3:B7:E9:2E:4A:EF:40:6A:FC:92
ValidityMon, 23 Oct 2023 11:18:19 GMT - Mon, 15 Jan 2024 11:18:18 GMT
File type JSON data\012- , ASCII text, with very long lines (16222), with no line terminators
Hash 3a9740ba2b6b457a0754f3efbac2abaa
d2d3af22ad0d2fffc784be198f5cbe74c1eb5bb5
b18a1a4b56b5d10ccd089f92dc3ff70f7f0dbd85ec3c1f575ecaa43ccef53edd
GET /getconfig/sodar?sv=200&tid=gda&tv=r20231129&st=env HTTP/1.1
Host: pagead2.googlesyndication.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://capratv.blogspot.com
DNT: 1
Connection: keep-alive
Referer: https://capratv.blogspot.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
content-type: application/json; charset=UTF-8
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: br
date: Fri, 01 Dec 2023 03:07:50 GMT
server: cafe
content-length: 12243
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
tpc.googlesyndication.com/sodar/sodar2.js
200 OK 6.4 kB URL GET HTTP/2 tpc.googlesyndication.com/sodar/sodar2.js
IP
Requested by https://capratv.blogspot.com/2020/06/hora-de-aventura-t4-e26.html?m=1
Certificate IssuerGoogle Trust Services LLC
Subjecttpc.googlesyndication.com
FingerprintB3:EB:42:1C:FE:75:21:B0:DB:48:DA:47:9F:CE:BF:3C:AC:A4:34:3C
ValidityMon, 23 Oct 2023 11:24:07 GMT - Mon, 15 Jan 2024 11:24:06 GMT
File type ASCII text, with very long lines (1321)
Hash 2cc87e9764aebcbbf36ff2061e6a2793
b4f2ffdf4c695aa79f0e63651c18a88729c2407b
61c32059a5e94075a7ecff678b33907966fc9cfa384daa01aa057f872da14dbb
GET /sodar/sodar2.js HTTP/1.1
Host: tpc.googlesyndication.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://capratv.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-type: text/javascript
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="adspam-signals-scs"
report-to: {"group":"adspam-signals-scs","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/adspam-signals-scs"}]}
content-length: 6386
date: Fri, 01 Dec 2023 03:07:50 GMT
expires: Fri, 01 Dec 2023 03:07:50 GMT
cache-control: private, max-age=3000
etag: "1637097310169751"
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ko-fi.com/buttons/PageLoaded?pageId=E1E7BQW7O
200 OK 152 B URL GET HTTP/2 ko-fi.com/buttons/PageLoaded?pageId=E1E7BQW7O
IP
Requested by https://ko-fi.com/capratv/?hidefeed=true&widget=true&embed=true&preview=true
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
FingerprintF1:8F:7F:48:97:2C:37:9E:A9:3D:37:D8:8B:81:D9:BD:E6:76:D7:EC
ValiditySat, 29 Apr 2023 00:00:00 GMT - Sun, 28 Apr 2024 23:59:59 GMT
File type JSON data\012- , ASCII text, with no line terminators
Hash 922707e4e436387f876329688725ff52
e07c0a8e878c12ee50e985f50c95df126996e757
4199476604d204f5695f658fe3f1c1fca5e608f1f91eebc48a17016a2f379920
GET /buttons/PageLoaded?pageId=E1E7BQW7O HTTP/1.1
Host: ko-fi.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://ko-fi.com/capratv/?hidefeed=true&widget=true&embed=true&preview=true
X-Requested-With: XMLHttpRequest
Request-Id: |jNArs.Iwqio
DNT: 1
Connection: keep-alive
Cookie: ARRAffinitySameSite=95102c35e644550298b6b4fa06374c1365ce2dde66c6804334c0540186df0525; ai_user=I2lYx|2023-12-01T03:07:54.201Z; ai_session=NijmC|1701400074622|1701400074622
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Fri, 01 Dec 2023 03:07:50 GMT
content-type: application/json; charset=utf-8
content-length: 152
access-control-expose-headers: Request-Context
cache-control: private
content-encoding: gzip
vary: Accept-Encoding
arr-disable-session-affinity: True
x-frame-options: SAMEORIGIN
request-context: appId=cid-v1:02025889-f5bc-454e-88f5-4372da34dffd
x-xss-protection: 1; mode=block
referrer-policy: strict-origin-when-cross-origin
x-permitted-cross-domain-policies: none
x-content-type-options: nosniff
last-modified: Fri, 01 Dec 2023 03:07:40 GMT
cf-cache-status: HIT
accept-ranges: bytes
server: cloudflare
cf-ray: 82e81f45a9e1b51b-OSL
X-Firefox-Spdy: h2
tpc.googlesyndication.com/sodar/sodar2/225/runner.html
200 OK 5.0 kB URL GET HTTP/3 tpc.googlesyndication.com/sodar/sodar2/225/runner.html
IP
Requested by https://capratv.blogspot.com/2020/06/hora-de-aventura-t4-e26.html?m=1
Certificate IssuerGoogle Trust Services LLC
Subject*.g.doubleclick.net
Fingerprint6C:2A:75:F2:3F:EF:4F:43:B1:8D:C3:B7:E9:2E:4A:EF:40:6A:FC:92
ValidityMon, 23 Oct 2023 11:18:19 GMT - Mon, 15 Jan 2024 11:18:18 GMT
File type HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (2020)
Hash 1d3d22df067f5219073f9c0fabb74fdd
d5c226022639323d93946df3571404116041e588
55a119c0394f901a8a297e109c17b5e5402689708b999ab10691c16179f32a4a
GET /sodar/sodar2/225/runner.html HTTP/1.1
Host: tpc.googlesyndication.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://capratv.blogspot.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
accept-ranges: bytes
content-encoding: gzip
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="adspam-signals-scs"
report-to: {"group":"adspam-signals-scs","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/adspam-signals-scs"}]}
content-length: 5046
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 30 Nov 2023 21:54:10 GMT
expires: Fri, 29 Nov 2024 21:54:10 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 21 Jun 2021 20:47:05 GMT
content-type: text/html
vary: Accept-Encoding
age: 18820
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
www.paypal.com/xoplatform/logger/api/logger?disableSetCookie=true
200 OK 0 B URL OPTIONS HTTP/2 www.paypal.com/xoplatform/logger/api/logger?disableSetCookie=true
IP
Requested by https://ko-fi.com/capratv/?hidefeed=true&widget=true&embed=true&preview=true
Certificate IssuerDigiCert Inc
Subjectwww.paypal.com
FingerprintEA:FF:48:F5:D0:D2:52:21:68:19:F0:08:CE:AB:9B:F5:52:C0:26:D7
ValidityFri, 13 Oct 2023 00:00:00 GMT - Tue, 20 Aug 2024 23:59:59 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /xoplatform/logger/api/logger?disableSetCookie=true HTTP/1.1
Host: www.paypal.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type
Referer: https://ko-fi.com/
Origin: https://ko-fi.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
accept-ch: sec-ch-ua-full, sec-ch-ua-arch, sec-ch-ua-model, sec-ch-ua-platform-version, sec-ch-ua-full-version, sec-ch-ua-full-version-list, sec-ch-ua-bitness, sec-ch-ua-wow64
access-control-allow-credentials: true
access-control-allow-headers: content-type
access-control-allow-methods: POST
access-control-allow-origin: https://ko-fi.com
cache-control: max-age=0, no-cache, no-store, must-revalidate
origin-trial: AlIogV3KFtnbfVCyl9Z2NprE7FD8PYCt+TQiYdE3ppeJjJ0xJKcthYwOxXpRCNopxVWdOIENMcNSvQCGAmj0fw0AAAB2eyJvcmlnaW4iOiJodHRwczovL3BheXBhbC5jb206NDQzIiwiZmVhdHVyZSI6IlNlbmRGdWxsVXNlckFnZW50QWZ0ZXJSZWR1Y3Rpb24iLCJleHBpcnkiOjE2ODQ4ODYzOTksImlzU3ViZG9tYWluIjp0cnVlfQ==
paypal-debug-id: f843142ab2ea8
permissions-policy: ch-ua-platform-version=(self "https://c.paypal.com"),ch-ua-arch=(self "https://c.paypal.com"),ch-ua-wow64=(self "https://c.paypal.com"),ch-ua-model=(self "https://c.paypal.com"),ch-ua-bitness=(self "https://c.paypal.com"),ch-ua-full-version=(self "https://c.paypal.com"),ch-ua-full-version-list=(self "https://c.paypal.com")
traceparent: 00-0000000000000000000f843142ab2ea8-649e3f197b456e2e-01
x-content-type-options: nosniff
dc: ccg11-origin-www-1.paypal.com
accept-ranges: bytes
via: 1.1 varnish, 1.1 varnish, 1.1 varnish
date: Fri, 01 Dec 2023 03:07:50 GMT
strict-transport-security: max-age=63072000; includeSubDomains; preload
x-served-by: cache-fra-eddf8230036-FRA, cache-bma1678-BMA, cache-bma1678-BMA
x-cache: MISS, MISS, MISS
x-cache-hits: 0, 0, 0
x-timer: S1701400070.052087,VS0,VE217
server-timing: content-encoding;desc="",x-cdn;desc="fastly"
content-length: 0
X-Firefox-Spdy: h2
pagead2.googlesyndication.com/pagead/sodar?id=sodar2&v=225&li=gda_r20231129&jk=1227009819399499&rc=null
204 No Content 0 B URL GET HTTP/3 pagead2.googlesyndication.com/pagead/sodar?id=sodar2&v=225&li=gda_r20231129&jk=1227009819399499&rc=null
IP
Requested by https://www.google.com/recaptcha/api2/aframe
Certificate IssuerGoogle Trust Services LLC
Subject*.g.doubleclick.net
Fingerprint6C:2A:75:F2:3F:EF:4F:43:B1:8D:C3:B7:E9:2E:4A:EF:40:6A:FC:92
ValidityMon, 23 Oct 2023 11:18:19 GMT - Mon, 15 Jan 2024 11:18:18 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /pagead/sodar?id=sodar2&v=225&li=gda_r20231129&jk=1227009819399499&rc=null HTTP/1.1
Host: pagead2.googlesyndication.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.google.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 204 No Content
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
content-type: text/html; charset=UTF-8
x-content-type-options: nosniff
date: Fri, 01 Dec 2023 03:07:50 GMT
server: cafe
content-length: 0
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
pagead2.googlesyndication.com/bg/Dtt_-LR3WxpzwV0Gscftq1A_D1owstvxoTnWWhwY4Ow.js
15 kB URL pagead2.googlesyndication.com/bg/Dtt_-LR3WxpzwV0Gscftq1A_D1owstvxoTnWWhwY4Ow.js
IP
Certificate IssuerGoogle Trust Services LLC
Subject*.g.doubleclick.net
Fingerprint6C:2A:75:F2:3F:EF:4F:43:B1:8D:C3:B7:E9:2E:4A:EF:40:6A:FC:92
ValidityMon, 23 Oct 2023 11:18:19 GMT - Mon, 15 Jan 2024 11:18:18 GMT
File type ASCII text, with very long lines (38622)
Hash 509fc31da1611d556288e9efeaac7ffa
f41923d59672895d3b295f5630665aadfd08f1c0
0edb7ff8b4775b1a73c15d06b1c7edab503f0f5a30b2dbf1a139d65a1c18e0ec
GET /bg/Dtt_-LR3WxpzwV0Gscftq1A_D1owstvxoTnWWhwY4Ow.js HTTP/1.1
Host: pagead2.googlesyndication.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://tpc.googlesyndication.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
accept-ranges: bytes
content-encoding: br
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/botguard-scs
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="botguard-scs"
report-to: {"group":"botguard-scs","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/botguard-scs"}]}
content-length: 15165
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 30 Nov 2023 22:30:15 GMT
expires: Fri, 29 Nov 2024 22:30:15 GMT
cache-control: public, max-age=31536000
last-modified: Tue, 28 Nov 2023 18:18:00 GMT
content-type: text/javascript
vary: Accept-Encoding
age: 16655
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
19cdb461a5.32f689042e.com/in/multy
200 OK 2.6 kB URL POST HTTP/2 19cdb461a5.32f689042e.com/in/multy
IP
ASN #24940 Hetzner Online GmbH
Requested by https://capratv.blogspot.com/2020/06/hora-de-aventura-t4-e26.html?m=1
Certificate IssuerLet's Encrypt
Subject32f689042e.com
FingerprintCF:AD:49:7F:99:84:22:76:B2:5A:E3:FA:65:CE:A1:08:4D:BE:58:40
ValidityTue, 28 Nov 2023 03:01:49 GMT - Mon, 26 Feb 2024 03:01:48 GMT
File type JSON data\012- , ASCII text, with very long lines (25732), with no line terminators
Hash 3bf8396ea7e309aaf8c9d0e1a7893bb1
7771a967ac7bf7ad1ae7807b90826536ccc984fd
c40b2b6fd1c1018db02b4db47f47b3c1367b6daf115d43310bd07c5a98e6e0a4
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
POST /in/multy HTTP/1.1
Host: 19cdb461a5.32f689042e.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json;charset=utf-8
Content-Length: 1625
Origin: https://capratv.blogspot.com
DNT: 1
Connection: keep-alive
Referer: https://capratv.blogspot.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx/1.20.1
date: Fri, 01 Dec 2023 03:07:50 GMT
content-type: application/json
content-length: 2572
vary: Origin
cache-control: no-transform, no-cache, no-store, must-revalidate
pragma: no-cache
access-control-allow-origin: *
access-control-allow-headers: Content-Type
access-control-allow-methods: *
content-encoding: gzip
X-Firefox-Spdy: h2
19cdb461a5.32f689042e.com/in/multy
200 OK 2.6 kB URL POST HTTP/2 19cdb461a5.32f689042e.com/in/multy
IP
ASN #24940 Hetzner Online GmbH
Requested by https://capratv.blogspot.com/2020/06/hora-de-aventura-t4-e26.html?m=1
Certificate IssuerLet's Encrypt
Subject32f689042e.com
FingerprintCF:AD:49:7F:99:84:22:76:B2:5A:E3:FA:65:CE:A1:08:4D:BE:58:40
ValidityTue, 28 Nov 2023 03:01:49 GMT - Mon, 26 Feb 2024 03:01:48 GMT
File type JSON data\012- , ASCII text, with very long lines (25722), with no line terminators
Hash bf87a57e2849dc8417b1afb97ad7e231
18df17996409274493e85372eed116ea952262c6
89f43222261240cc45060714b17b575ffc9fa6a185eb8a7bfd17ce93fecd995b
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
POST /in/multy HTTP/1.1
Host: 19cdb461a5.32f689042e.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json;charset=utf-8
Content-Length: 1624
Origin: https://capratv.blogspot.com
DNT: 1
Connection: keep-alive
Referer: https://capratv.blogspot.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx/1.20.1
date: Fri, 01 Dec 2023 03:07:50 GMT
content-type: application/json
content-length: 2566
vary: Origin
cache-control: no-transform, no-cache, no-store, must-revalidate
pragma: no-cache
access-control-allow-origin: *
access-control-allow-headers: Content-Type
access-control-allow-methods: *
content-encoding: gzip
X-Firefox-Spdy: h2
19cdb461a5.32f689042e.com/in/show/?tag_ab=d&site_id=3119926&adblock=0&testab=0&auction_host=&mm=0&yc=0&render_type=mq&pr=&banner_width=300&banner_height=100&user_keywords=&device_theme=light&v2_track=0&v2=0&conditions=dch_ip,tz_offset&ssp=3964&page=https%3A%2F%2Fcapratv.blogspot.com%2F2020%2F06%2Fhora-de-aventura-t4-e26.html%3Fm%3D1&refdom=capratv.blogspot.com&auction_time=1701400069&subid=1294464241&sid=2578590229&tcid=0&ver=8.121.0&ver_c=&spot_id=19926&utm_source=&utm_medium=&utm_campaign=&utm_content=&created_at=2023-12-01&iabcat=IAB1-5&keywords=&user_fp=12762865360534798893&score=69.6864683292163&durl=https%3A%2F%2Fkts.dasdaily.com%2Fin%2F1546%2F%3Fad_sub%3D1294464241%26spot_id%3D19926%26is_adult%3D0%26p%3Dhttps%253A%252F%252Fcapratv.blogspot.com%252F2020%252F06%252Fhora-de-aventura-t4-e26.html%253Fm%253D1%26idzone%3D0%26sid%3D1885&is_cpm=0&resp_type=&crid=&crtid=8fc5a3949d58ed66158a5da3a7b48b19&url=http%3A%2F%2Fc.srvpcn.com%2Fclick%3Fid%3Dclkks1n2ld3c73b9nkb0%26e%3D6216e250-3650-4ad8-abda-a1a07279a672%26px%3D45%26z%3D1&icons=vvCV0yXiQK7ceLIhYRQpJKHISELzX56uZEL9WCbzGBjzWcVuyl2aYEV8HEXhkdg2lwgxULC9fVDGeGTbhfegop-5QQhJp-FZHJpAECE8pN-dq_VmuMtEqTsMBRO_wDUbzqsGdKc0SH5fetjN-xODewZMRpJ1_si0iEdxp3BfQPkNhTCzUA&ext_cid=0&px_id=3119926&min_cpm=0.02349121578406211&out_id=1&campaign_type=lq-pop&aid=161&cid=11653&uniq=b39b3dbdfad10001b809d1a542e2ca6f8a457a9d305b2cb00f276ae5851bd7b6&mid=5470037818405706790&skin_id=82&vertical_id=0&skin_test=0&from_cache=0&ecpm=0.04279636586236892&cpm=0&verify_hash=d6d7c3969ca150c693d83683d7b23c4e&is_native=2&real_bid=0.000869&original_bid_usd=0.000869&original_bid=0.000869&exp=1440&placement_type_id=0&ua_mismatch=Mozilla%2F5.0%20%28Windows%20NT%2010.0%3B%20Win64%3B%20x64%3B%20rv%3A105.0%29%20Gecko%2F20100101%20Firefox%2F105.0&ip_mismatch=91.90.42.154&geo=NO&carrier=-&label_ids=76,83,89,95,108,0&need_redirect_show=0&applied_features=test_skins,stage-skins-settings&show_count=1&expiration_timestamp=1701486469&image_url=https%3A%2F%2Fstatic.bookmsg.com%2Fcreatives%2FUS%2FUS_34c3a6403004486b593fb6a3428d7a2748437f4f_icon.webp&site=native-push-mainstream&price=0.000869&hostname=auc-inpage-hz-5-a&auc_type=1&pop_type=1&site_id64=&interest_vertical_ids=&mo=&ve=&timezone_olson=UTC&topics=&historical_keywords=&pop_cpc=0.000000869&pattern1=0&pattern2=0&pattern3=0&pattern4=0&pattern5=0&format=multiOS-view-t_r-body&mlf=1&mlc=1&st=0.06&cpa=267f817b-3258-442b-96de-452482fc81df
200 OK 0 B URL GET HTTP/2 19cdb461a5.32f689042e.com/in/show/?tag_ab=d&site_id=3119926&adblock=0&testab=0&auction_host=&mm=0&yc=0&render_type=mq&pr=&banner_width=300&banner_height=100&user_keywords=&device_theme=light&v2_track=0&v2=0&conditions=dch_ip,tz_offset&ssp=3964&page=https%3A%2F%2Fcapratv.blogspot.com%2F2020%2F06%2Fhora-de-aventura-t4-e26.html%3Fm%3D1&refdom=capratv.blogspot.com&auction_time=1701400069&subid=1294464241&sid=2578590229&tcid=0&ver=8.121.0&ver_c=&spot_id=19926&utm_source=&utm_medium=&utm_campaign=&utm_content=&created_at=2023-12-01&iabcat=IAB1-5&keywords=&user_fp=12762865360534798893&score=69.6864683292163&durl=https%3A%2F%2Fkts.dasdaily.com%2Fin%2F1546%2F%3Fad_sub%3D1294464241%26spot_id%3D19926%26is_adult%3D0%26p%3Dhttps%253A%252F%252Fcapratv.blogspot.com%252F2020%252F06%252Fhora-de-aventura-t4-e26.html%253Fm%253D1%26idzone%3D0%26sid%3D1885&is_cpm=0&resp_type=&crid=&crtid=8fc5a3949d58ed66158a5da3a7b48b19&url=http%3A%2F%2Fc.srvpcn.com%2Fclick%3Fid%3Dclkks1n2ld3c73b9nkb0%26e%3D6216e250-3650-4ad8-abda-a1a07279a672%26px%3D45%26z%3D1&icons=vvCV0yXiQK7ceLIhYRQpJKHISELzX56uZEL9WCbzGBjzWcVuyl2aYEV8HEXhkdg2lwgxULC9fVDGeGTbhfegop-5QQhJp-FZHJpAECE8pN-dq_VmuMtEqTsMBRO_wDUbzqsGdKc0SH5fetjN-xODewZMRpJ1_si0iEdxp3BfQPkNhTCzUA&ext_cid=0&px_id=3119926&min_cpm=0.02349121578406211&out_id=1&campaign_type=lq-pop&aid=161&cid=11653&uniq=b39b3dbdfad10001b809d1a542e2ca6f8a457a9d305b2cb00f276ae5851bd7b6&mid=5470037818405706790&skin_id=82&vertical_id=0&skin_test=0&from_cache=0&ecpm=0.04279636586236892&cpm=0&verify_hash=d6d7c3969ca150c693d83683d7b23c4e&is_native=2&real_bid=0.000869&original_bid_usd=0.000869&original_bid=0.000869&exp=1440&placement_type_id=0&ua_mismatch=Mozilla%2F5.0%20%28Windows%20NT%2010.0%3B%20Win64%3B%20x64%3B%20rv%3A105.0%29%20Gecko%2F20100101%20Firefox%2F105.0&ip_mismatch=91.90.42.154&geo=NO&carrier=-&label_ids=76,83,89,95,108,0&need_redirect_show=0&applied_features=test_skins,stage-skins-settings&show_count=1&expiration_timestamp=1701486469&image_url=https%3A%2F%2Fstatic.bookmsg.com%2Fcreatives%2FUS%2FUS_34c3a6403004486b593fb6a3428d7a2748437f4f_icon.webp&site=native-push-mainstream&price=0.000869&hostname=auc-inpage-hz-5-a&auc_type=1&pop_type=1&site_id64=&interest_vertical_ids=&mo=&ve=&timezone_olson=UTC&topics=&historical_keywords=&pop_cpc=0.000000869&pattern1=0&pattern2=0&pattern3=0&pattern4=0&pattern5=0&format=multiOS-view-t_r-body&mlf=1&mlc=1&st=0.06&cpa=267f817b-3258-442b-96de-452482fc81df
IP
ASN #24940 Hetzner Online GmbH
Requested by https://capratv.blogspot.com/2020/06/hora-de-aventura-t4-e26.html?m=1
Certificate IssuerLet's Encrypt
Subject32f689042e.com
FingerprintCF:AD:49:7F:99:84:22:76:B2:5A:E3:FA:65:CE:A1:08:4D:BE:58:40
ValidityTue, 28 Nov 2023 03:01:49 GMT - Mon, 26 Feb 2024 03:01:48 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /in/show/?tag_ab=d&site_id=3119926&adblock=0&testab=0&auction_host=&mm=0&yc=0&render_type=mq&pr=&banner_width=300&banner_height=100&user_keywords=&device_theme=light&v2_track=0&v2=0&conditions=dch_ip,tz_offset&ssp=3964&page=https%3A%2F%2Fcapratv.blogspot.com%2F2020%2F06%2Fhora-de-aventura-t4-e26.html%3Fm%3D1&refdom=capratv.blogspot.com&auction_time=1701400069&subid=1294464241&sid=2578590229&tcid=0&ver=8.121.0&ver_c=&spot_id=19926&utm_source=&utm_medium=&utm_campaign=&utm_content=&created_at=2023-12-01&iabcat=IAB1-5&keywords=&user_fp=12762865360534798893&score=69.6864683292163&durl=https%3A%2F%2Fkts.dasdaily.com%2Fin%2F1546%2F%3Fad_sub%3D1294464241%26spot_id%3D19926%26is_adult%3D0%26p%3Dhttps%253A%252F%252Fcapratv.blogspot.com%252F2020%252F06%252Fhora-de-aventura-t4-e26.html%253Fm%253D1%26idzone%3D0%26sid%3D1885&is_cpm=0&resp_type=&crid=&crtid=8fc5a3949d58ed66158a5da3a7b48b19&url=http%3A%2F%2Fc.srvpcn.com%2Fclick%3Fid%3Dclkks1n2ld3c73b9nkb0%26e%3D6216e250-3650-4ad8-abda-a1a07279a672%26px%3D45%26z%3D1&icons=vvCV0yXiQK7ceLIhYRQpJKHISELzX56uZEL9WCbzGBjzWcVuyl2aYEV8HEXhkdg2lwgxULC9fVDGeGTbhfegop-5QQhJp-FZHJpAECE8pN-dq_VmuMtEqTsMBRO_wDUbzqsGdKc0SH5fetjN-xODewZMRpJ1_si0iEdxp3BfQPkNhTCzUA&ext_cid=0&px_id=3119926&min_cpm=0.02349121578406211&out_id=1&campaign_type=lq-pop&aid=161&cid=11653&uniq=b39b3dbdfad10001b809d1a542e2ca6f8a457a9d305b2cb00f276ae5851bd7b6&mid=5470037818405706790&skin_id=82&vertical_id=0&skin_test=0&from_cache=0&ecpm=0.04279636586236892&cpm=0&verify_hash=d6d7c3969ca150c693d83683d7b23c4e&is_native=2&real_bid=0.000869&original_bid_usd=0.000869&original_bid=0.000869&exp=1440&placement_type_id=0&ua_mismatch=Mozilla%2F5.0%20%28Windows%20NT%2010.0%3B%20Win64%3B%20x64%3B%20rv%3A105.0%29%20Gecko%2F20100101%20Firefox%2F105.0&ip_mismatch=91.90.42.154&geo=NO&carrier=-&label_ids=76,83,89,95,108,0&need_redirect_show=0&applied_features=test_skins,stage-skins-settings&show_count=1&expiration_timestamp=1701486469&image_url=https%3A%2F%2Fstatic.bookmsg.com%2Fcreatives%2FUS%2FUS_34c3a6403004486b593fb6a3428d7a2748437f4f_icon.webp&site=native-push-mainstream&price=0.000869&hostname=auc-inpage-hz-5-a&auc_type=1&pop_type=1&site_id64=&interest_vertical_ids=&mo=&ve=&timezone_olson=UTC&topics=&historical_keywords=&pop_cpc=0.000000869&pattern1=0&pattern2=0&pattern3=0&pattern4=0&pattern5=0&format=multiOS-view-t_r-body&mlf=1&mlc=1&st=0.06&cpa=267f817b-3258-442b-96de-452482fc81df HTTP/1.1
Host: 19cdb461a5.32f689042e.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://capratv.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx/1.20.1
date: Fri, 01 Dec 2023 03:07:50 GMT
content-length: 0
vary: Origin
cache-control: no-transform, no-cache, no-store, must-revalidate
pragma: no-cache
access-control-allow-origin: *
access-control-allow-headers: Content-Type
access-control-allow-methods: *
X-Firefox-Spdy: h2
js.natsdk.com/npc/sdk/native.m.js
200 OK 15 kB URL GET HTTP/2 js.natsdk.com/npc/sdk/native.m.js
IP
ASN #39572 DataWeb Global Group B.V.
Requested by https://capratv.blogspot.com/2020/06/hora-de-aventura-t4-e26.html?m=1
Certificate IssuerLet's Encrypt
Subjectjs.natsdk.com
FingerprintBC:0C:DB:3B:AF:3B:86:75:90:BC:9E:BE:41:76:CA:62:4B:70:52:8A
ValidityWed, 22 Nov 2023 04:00:54 GMT - Tue, 20 Feb 2024 04:00:53 GMT
File type ASCII text, with very long lines (47680), with no line terminators
Hash 9d9ba35fc48c4221ff6ede5a07df0a04
e28d665d0ff66ef50afd5f693715675be6b0daa2
a185a3a3a2e013881fe114e18d86d09cf7749018f63b94586830307a5a00088b
GET /npc/sdk/native.m.js HTTP/1.1
Host: js.natsdk.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://capratv.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 01 Dec 2023 03:07:48 GMT
content-type: application/javascript; charset=utf-8
server: nginx/1.18.0
last-modified: Wed, 22 Nov 2023 08:24:19 GMT
etag: W/"655dbab3-ba40"
content-encoding: gzip
expires: Fri, 01 Dec 2023 03:12:48 GMT
cache-control: max-age=300
x-proxy-cache: HIT
access-control-allow-origin: *
X-Firefox-Spdy: h2
dc.services.visualstudio.com/v2/track
439 No Reason Phrase 0 B URL POST HTTP/2 dc.services.visualstudio.com/v2/track
IP
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
Requested by https://ko-fi.com/capratv/?hidefeed=true&widget=true&embed=true&preview=true
Certificate IssuerMicrosoft Corporation
Subjectin.applicationinsights.azure.com
FingerprintC2:A4:47:C6:98:2A:56:26:0C:1A:4E:87:97:72:F1:95:37:C6:EE:5D
ValiditySat, 02 Sep 2023 07:27:53 GMT - Tue, 27 Aug 2024 07:27:53 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /v2/track HTTP/1.1
Host: dc.services.visualstudio.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type,sdk-context
Referer: https://ko-fi.com/
Origin: https://ko-fi.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
access-control-allow-methods: POST
access-control-allow-headers: Origin, X-Requested-With, Content-Name, Content-Type, Accept, Sdk-Context
access-control-allow-origin: *
access-control-max-age: 3600
x-content-type-options: nosniff
date: Fri, 01 Dec 2023 03:07:50 GMT
content-length: 0
X-Firefox-Spdy: h2
19cdb461a5.32f689042e.com/in/show/?tag_ab=d&site_id=3119926&adblock=0&testab=0&auction_host=&mm=0&yc=0&render_type=mq&pr=&banner_width=300&banner_height=100&user_keywords=&device_theme=light&v2_track=0&v2=0&conditions=dch_ip,tz_offset&ssp=3964&page=https%3A%2F%2Fcapratv.blogspot.com%2F2020%2F06%2Fhora-de-aventura-t4-e26.html%3Fm%3D1&refdom=capratv.blogspot.com&auction_time=1701400069&subid=1294464241&sid=210583705&tcid=0&ver=8.121.0&ver_c=&spot_id=19926&utm_source=&utm_medium=&utm_campaign=&utm_content=&created_at=2023-12-01&iabcat=IAB1-5&keywords=&user_fp=12762865360534798893&score=69.6864683292163&durl=https%3A%2F%2Fkts.dasdaily.com%2Fin%2F1546%2F%3Fad_sub%3D1294464241%26spot_id%3D19926%26is_adult%3D0%26p%3Dhttps%253A%252F%252Fcapratv.blogspot.com%252F2020%252F06%252Fhora-de-aventura-t4-e26.html%253Fm%253D1%26idzone%3D0%26sid%3D1885&is_cpm=0&resp_type=&crid=&crtid=8fc5a3949d58ed66158a5da3a7b48b19&url=http%3A%2F%2Fc.srvpcn.com%2Fclick%3Fid%3Dclkks1ha8q1c739s62t0%26e%3D6216e250-3650-4ad8-abda-a1a07279a672%26px%3D45%26z%3D1&icons=CwdQIz1ziV8mS2LKMxY9vccZX0lu5HywDs7EsOYAcw65a3m1obajogojt8G5rCRFKzlTLzpqZl_Rlh67ffPf1RjByW6iFWi-cCWzy56YqfdN3D9DPNOKeYvNajKvFWHDE0CKeNxUJpawR1H-U2KdkasAjCRha46AJ5P5xa9aalR5XpkfBw&ext_cid=0&px_id=3119926&min_cpm=0.02349121578406211&out_id=1&campaign_type=lq-pop&aid=161&cid=11653&uniq=b39b3dbdfad10001b809d1a542e2ca6f8a457a9d305b2cb00f276ae5851bd7b6&mid=3563357657773982095&skin_id=82&vertical_id=0&skin_test=0&from_cache=0&ecpm=0.04279636586236892&cpm=0&verify_hash=4c8bd6a3837d7e18b5bae1b5c4394f78&is_native=2&real_bid=0.000869&original_bid_usd=0.000869&original_bid=0.000869&exp=1440&placement_type_id=0&ua_mismatch=Mozilla%2F5.0%20%28Windows%20NT%2010.0%3B%20Win64%3B%20x64%3B%20rv%3A105.0%29%20Gecko%2F20100101%20Firefox%2F105.0&ip_mismatch=91.90.42.154&geo=NO&carrier=-&label_ids=76,83,89,95,108,0&need_redirect_show=0&applied_features=test_skins,stage-skins-settings&show_count=1&expiration_timestamp=1701486469&image_url=https%3A%2F%2Fstatic.bookmsg.com%2Fcreatives%2FUS%2FUS_34c3a6403004486b593fb6a3428d7a2748437f4f_icon.webp&site=native-push-mainstream&price=0.000869&hostname=auc-inpage-hz-1-b&auc_type=1&pop_type=1&site_id64=&interest_vertical_ids=&mo=&ve=&timezone_olson=UTC&topics=&historical_keywords=&pop_cpc=0.000000869&pattern1=0&pattern2=0&pattern3=0&pattern4=0&pattern5=0&format=multiOS-view-t_r-body&mlf=1&mlc=1&st=0.06&cpa=c060b304-2463-4116-8779-38d8d2f58987
200 OK 0 B URL GET HTTP/2 19cdb461a5.32f689042e.com/in/show/?tag_ab=d&site_id=3119926&adblock=0&testab=0&auction_host=&mm=0&yc=0&render_type=mq&pr=&banner_width=300&banner_height=100&user_keywords=&device_theme=light&v2_track=0&v2=0&conditions=dch_ip,tz_offset&ssp=3964&page=https%3A%2F%2Fcapratv.blogspot.com%2F2020%2F06%2Fhora-de-aventura-t4-e26.html%3Fm%3D1&refdom=capratv.blogspot.com&auction_time=1701400069&subid=1294464241&sid=210583705&tcid=0&ver=8.121.0&ver_c=&spot_id=19926&utm_source=&utm_medium=&utm_campaign=&utm_content=&created_at=2023-12-01&iabcat=IAB1-5&keywords=&user_fp=12762865360534798893&score=69.6864683292163&durl=https%3A%2F%2Fkts.dasdaily.com%2Fin%2F1546%2F%3Fad_sub%3D1294464241%26spot_id%3D19926%26is_adult%3D0%26p%3Dhttps%253A%252F%252Fcapratv.blogspot.com%252F2020%252F06%252Fhora-de-aventura-t4-e26.html%253Fm%253D1%26idzone%3D0%26sid%3D1885&is_cpm=0&resp_type=&crid=&crtid=8fc5a3949d58ed66158a5da3a7b48b19&url=http%3A%2F%2Fc.srvpcn.com%2Fclick%3Fid%3Dclkks1ha8q1c739s62t0%26e%3D6216e250-3650-4ad8-abda-a1a07279a672%26px%3D45%26z%3D1&icons=CwdQIz1ziV8mS2LKMxY9vccZX0lu5HywDs7EsOYAcw65a3m1obajogojt8G5rCRFKzlTLzpqZl_Rlh67ffPf1RjByW6iFWi-cCWzy56YqfdN3D9DPNOKeYvNajKvFWHDE0CKeNxUJpawR1H-U2KdkasAjCRha46AJ5P5xa9aalR5XpkfBw&ext_cid=0&px_id=3119926&min_cpm=0.02349121578406211&out_id=1&campaign_type=lq-pop&aid=161&cid=11653&uniq=b39b3dbdfad10001b809d1a542e2ca6f8a457a9d305b2cb00f276ae5851bd7b6&mid=3563357657773982095&skin_id=82&vertical_id=0&skin_test=0&from_cache=0&ecpm=0.04279636586236892&cpm=0&verify_hash=4c8bd6a3837d7e18b5bae1b5c4394f78&is_native=2&real_bid=0.000869&original_bid_usd=0.000869&original_bid=0.000869&exp=1440&placement_type_id=0&ua_mismatch=Mozilla%2F5.0%20%28Windows%20NT%2010.0%3B%20Win64%3B%20x64%3B%20rv%3A105.0%29%20Gecko%2F20100101%20Firefox%2F105.0&ip_mismatch=91.90.42.154&geo=NO&carrier=-&label_ids=76,83,89,95,108,0&need_redirect_show=0&applied_features=test_skins,stage-skins-settings&show_count=1&expiration_timestamp=1701486469&image_url=https%3A%2F%2Fstatic.bookmsg.com%2Fcreatives%2FUS%2FUS_34c3a6403004486b593fb6a3428d7a2748437f4f_icon.webp&site=native-push-mainstream&price=0.000869&hostname=auc-inpage-hz-1-b&auc_type=1&pop_type=1&site_id64=&interest_vertical_ids=&mo=&ve=&timezone_olson=UTC&topics=&historical_keywords=&pop_cpc=0.000000869&pattern1=0&pattern2=0&pattern3=0&pattern4=0&pattern5=0&format=multiOS-view-t_r-body&mlf=1&mlc=1&st=0.06&cpa=c060b304-2463-4116-8779-38d8d2f58987
IP
ASN #24940 Hetzner Online GmbH
Requested by https://capratv.blogspot.com/2020/06/hora-de-aventura-t4-e26.html?m=1
Certificate IssuerLet's Encrypt
Subject32f689042e.com
FingerprintCF:AD:49:7F:99:84:22:76:B2:5A:E3:FA:65:CE:A1:08:4D:BE:58:40
ValidityTue, 28 Nov 2023 03:01:49 GMT - Mon, 26 Feb 2024 03:01:48 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /in/show/?tag_ab=d&site_id=3119926&adblock=0&testab=0&auction_host=&mm=0&yc=0&render_type=mq&pr=&banner_width=300&banner_height=100&user_keywords=&device_theme=light&v2_track=0&v2=0&conditions=dch_ip,tz_offset&ssp=3964&page=https%3A%2F%2Fcapratv.blogspot.com%2F2020%2F06%2Fhora-de-aventura-t4-e26.html%3Fm%3D1&refdom=capratv.blogspot.com&auction_time=1701400069&subid=1294464241&sid=210583705&tcid=0&ver=8.121.0&ver_c=&spot_id=19926&utm_source=&utm_medium=&utm_campaign=&utm_content=&created_at=2023-12-01&iabcat=IAB1-5&keywords=&user_fp=12762865360534798893&score=69.6864683292163&durl=https%3A%2F%2Fkts.dasdaily.com%2Fin%2F1546%2F%3Fad_sub%3D1294464241%26spot_id%3D19926%26is_adult%3D0%26p%3Dhttps%253A%252F%252Fcapratv.blogspot.com%252F2020%252F06%252Fhora-de-aventura-t4-e26.html%253Fm%253D1%26idzone%3D0%26sid%3D1885&is_cpm=0&resp_type=&crid=&crtid=8fc5a3949d58ed66158a5da3a7b48b19&url=http%3A%2F%2Fc.srvpcn.com%2Fclick%3Fid%3Dclkks1ha8q1c739s62t0%26e%3D6216e250-3650-4ad8-abda-a1a07279a672%26px%3D45%26z%3D1&icons=CwdQIz1ziV8mS2LKMxY9vccZX0lu5HywDs7EsOYAcw65a3m1obajogojt8G5rCRFKzlTLzpqZl_Rlh67ffPf1RjByW6iFWi-cCWzy56YqfdN3D9DPNOKeYvNajKvFWHDE0CKeNxUJpawR1H-U2KdkasAjCRha46AJ5P5xa9aalR5XpkfBw&ext_cid=0&px_id=3119926&min_cpm=0.02349121578406211&out_id=1&campaign_type=lq-pop&aid=161&cid=11653&uniq=b39b3dbdfad10001b809d1a542e2ca6f8a457a9d305b2cb00f276ae5851bd7b6&mid=3563357657773982095&skin_id=82&vertical_id=0&skin_test=0&from_cache=0&ecpm=0.04279636586236892&cpm=0&verify_hash=4c8bd6a3837d7e18b5bae1b5c4394f78&is_native=2&real_bid=0.000869&original_bid_usd=0.000869&original_bid=0.000869&exp=1440&placement_type_id=0&ua_mismatch=Mozilla%2F5.0%20%28Windows%20NT%2010.0%3B%20Win64%3B%20x64%3B%20rv%3A105.0%29%20Gecko%2F20100101%20Firefox%2F105.0&ip_mismatch=91.90.42.154&geo=NO&carrier=-&label_ids=76,83,89,95,108,0&need_redirect_show=0&applied_features=test_skins,stage-skins-settings&show_count=1&expiration_timestamp=1701486469&image_url=https%3A%2F%2Fstatic.bookmsg.com%2Fcreatives%2FUS%2FUS_34c3a6403004486b593fb6a3428d7a2748437f4f_icon.webp&site=native-push-mainstream&price=0.000869&hostname=auc-inpage-hz-1-b&auc_type=1&pop_type=1&site_id64=&interest_vertical_ids=&mo=&ve=&timezone_olson=UTC&topics=&historical_keywords=&pop_cpc=0.000000869&pattern1=0&pattern2=0&pattern3=0&pattern4=0&pattern5=0&format=multiOS-view-t_r-body&mlf=1&mlc=1&st=0.06&cpa=c060b304-2463-4116-8779-38d8d2f58987 HTTP/1.1
Host: 19cdb461a5.32f689042e.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://capratv.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx/1.20.1
date: Fri, 01 Dec 2023 03:07:50 GMT
content-length: 0
vary: Origin
cache-control: no-transform, no-cache, no-store, must-revalidate
pragma: no-cache
access-control-allow-origin: *
access-control-allow-headers: Content-Type
access-control-allow-methods: *
X-Firefox-Spdy: h2
19cdb461a5.32f689042e.com/in/show/?tag_ab=d&site_id=3119926&adblock=0&testab=0&auction_host=&mm=0&yc=0&render_type=mq&pr=&banner_width=300&banner_height=100&user_keywords=&device_theme=light&v2_track=0&v2=0&conditions=dch_ip,tz_offset&ssp=3964&page=https%3A%2F%2Fcapratv.blogspot.com%2F2020%2F06%2Fhora-de-aventura-t4-e26.html%3Fm%3D1&refdom=capratv.blogspot.com&auction_time=1701400069&subid=1294464241&sid=210583705&tcid=0&ver=8.121.0&ver_c=&spot_id=19926&utm_source=&utm_medium=&utm_campaign=&utm_content=&created_at=2023-12-01&iabcat=IAB1-5&keywords=&user_fp=12762865360534798893&score=69.6864683292163&durl=https%3A%2F%2Fkts.dasdaily.com%2Fin%2F1546%2F%3Fad_sub%3D1294464241%26spot_id%3D19926%26is_adult%3D0%26p%3Dhttps%253A%252F%252Fcapratv.blogspot.com%252F2020%252F06%252Fhora-de-aventura-t4-e26.html%253Fm%253D1%26idzone%3D0%26sid%3D1885&is_cpm=0&resp_type=&crid=&crtid=8fc5a3949d58ed66158a5da3a7b48b19&url=http%3A%2F%2Fc.srvpcn.com%2Fclick%3Fid%3Dclkks1ha8q1c739s62t0%26e%3D6216e250-3650-4ad8-abda-a1a07279a672%26px%3D45%26z%3D1&icons=f6EIjuENk5lV6Q3IpCwyH6OPJrM0fSaXT4fLQfKEE8ZzyEoNkYNGZlzqX2Q-KPGR8SIRKgPVkFS2hpt4IErnzo7M-rjED9nCF09F1eyFCATWERDUfKnPj80JqClzfwixyENw9GICCSnPsc5SiV7zNfj4dSmuZcnFDLUV7UxX5lrwQbTOig&ext_cid=0&px_id=3119926&min_cpm=0.016393179323182665&out_id=0&campaign_type=lq-pop&aid=161&cid=11653&uniq=b39b3dbdfad10001b809d1a542e2ca6f8a457a9d305b2cb00f276ae5851bd7b6&mid=3563357657773982095&skin_id=82&vertical_id=0&skin_test=0&from_cache=0&ecpm=0.02986514220512733&cpm=0&verify_hash=2c9982c3ddc98c9a815c72348ef61bd4&is_native=2&real_bid=0.000869&original_bid_usd=0.000869&original_bid=0.000869&exp=1440&placement_type_id=0&ua_mismatch=Mozilla%2F5.0%20%28Windows%20NT%2010.0%3B%20Win64%3B%20x64%3B%20rv%3A105.0%29%20Gecko%2F20100101%20Firefox%2F105.0&ip_mismatch=91.90.42.154&geo=NO&carrier=-&label_ids=76,83,89,95,108,0&need_redirect_show=0&applied_features=test_skins,stage-skins-settings&show_count=1&expiration_timestamp=1701486469&image_url=https%3A%2F%2Fstatic.bookmsg.com%2Fcreatives%2FUS%2FUS_34c3a6403004486b593fb6a3428d7a2748437f4f_icon.webp&site=native-push-mainstream&price=0.000869&hostname=auc-inpage-hz-1-b&auc_type=1&pop_type=1&site_id64=&interest_vertical_ids=&mo=&ve=&timezone_olson=UTC&topics=&historical_keywords=&pop_cpc=0.000000869&pattern1=0&pattern2=0&pattern3=0&pattern4=0&pattern5=0&format=multiOS-view-t_r-body&mlf=1&st=0.06&cpa=284d3e93-d2ea-4712-8885-0e51549be2e4
200 OK 0 B URL GET HTTP/2 19cdb461a5.32f689042e.com/in/show/?tag_ab=d&site_id=3119926&adblock=0&testab=0&auction_host=&mm=0&yc=0&render_type=mq&pr=&banner_width=300&banner_height=100&user_keywords=&device_theme=light&v2_track=0&v2=0&conditions=dch_ip,tz_offset&ssp=3964&page=https%3A%2F%2Fcapratv.blogspot.com%2F2020%2F06%2Fhora-de-aventura-t4-e26.html%3Fm%3D1&refdom=capratv.blogspot.com&auction_time=1701400069&subid=1294464241&sid=210583705&tcid=0&ver=8.121.0&ver_c=&spot_id=19926&utm_source=&utm_medium=&utm_campaign=&utm_content=&created_at=2023-12-01&iabcat=IAB1-5&keywords=&user_fp=12762865360534798893&score=69.6864683292163&durl=https%3A%2F%2Fkts.dasdaily.com%2Fin%2F1546%2F%3Fad_sub%3D1294464241%26spot_id%3D19926%26is_adult%3D0%26p%3Dhttps%253A%252F%252Fcapratv.blogspot.com%252F2020%252F06%252Fhora-de-aventura-t4-e26.html%253Fm%253D1%26idzone%3D0%26sid%3D1885&is_cpm=0&resp_type=&crid=&crtid=8fc5a3949d58ed66158a5da3a7b48b19&url=http%3A%2F%2Fc.srvpcn.com%2Fclick%3Fid%3Dclkks1ha8q1c739s62t0%26e%3D6216e250-3650-4ad8-abda-a1a07279a672%26px%3D45%26z%3D1&icons=f6EIjuENk5lV6Q3IpCwyH6OPJrM0fSaXT4fLQfKEE8ZzyEoNkYNGZlzqX2Q-KPGR8SIRKgPVkFS2hpt4IErnzo7M-rjED9nCF09F1eyFCATWERDUfKnPj80JqClzfwixyENw9GICCSnPsc5SiV7zNfj4dSmuZcnFDLUV7UxX5lrwQbTOig&ext_cid=0&px_id=3119926&min_cpm=0.016393179323182665&out_id=0&campaign_type=lq-pop&aid=161&cid=11653&uniq=b39b3dbdfad10001b809d1a542e2ca6f8a457a9d305b2cb00f276ae5851bd7b6&mid=3563357657773982095&skin_id=82&vertical_id=0&skin_test=0&from_cache=0&ecpm=0.02986514220512733&cpm=0&verify_hash=2c9982c3ddc98c9a815c72348ef61bd4&is_native=2&real_bid=0.000869&original_bid_usd=0.000869&original_bid=0.000869&exp=1440&placement_type_id=0&ua_mismatch=Mozilla%2F5.0%20%28Windows%20NT%2010.0%3B%20Win64%3B%20x64%3B%20rv%3A105.0%29%20Gecko%2F20100101%20Firefox%2F105.0&ip_mismatch=91.90.42.154&geo=NO&carrier=-&label_ids=76,83,89,95,108,0&need_redirect_show=0&applied_features=test_skins,stage-skins-settings&show_count=1&expiration_timestamp=1701486469&image_url=https%3A%2F%2Fstatic.bookmsg.com%2Fcreatives%2FUS%2FUS_34c3a6403004486b593fb6a3428d7a2748437f4f_icon.webp&site=native-push-mainstream&price=0.000869&hostname=auc-inpage-hz-1-b&auc_type=1&pop_type=1&site_id64=&interest_vertical_ids=&mo=&ve=&timezone_olson=UTC&topics=&historical_keywords=&pop_cpc=0.000000869&pattern1=0&pattern2=0&pattern3=0&pattern4=0&pattern5=0&format=multiOS-view-t_r-body&mlf=1&st=0.06&cpa=284d3e93-d2ea-4712-8885-0e51549be2e4
IP
ASN #24940 Hetzner Online GmbH
Requested by https://capratv.blogspot.com/2020/06/hora-de-aventura-t4-e26.html?m=1
Certificate IssuerLet's Encrypt
Subject32f689042e.com
FingerprintCF:AD:49:7F:99:84:22:76:B2:5A:E3:FA:65:CE:A1:08:4D:BE:58:40
ValidityTue, 28 Nov 2023 03:01:49 GMT - Mon, 26 Feb 2024 03:01:48 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /in/show/?tag_ab=d&site_id=3119926&adblock=0&testab=0&auction_host=&mm=0&yc=0&render_type=mq&pr=&banner_width=300&banner_height=100&user_keywords=&device_theme=light&v2_track=0&v2=0&conditions=dch_ip,tz_offset&ssp=3964&page=https%3A%2F%2Fcapratv.blogspot.com%2F2020%2F06%2Fhora-de-aventura-t4-e26.html%3Fm%3D1&refdom=capratv.blogspot.com&auction_time=1701400069&subid=1294464241&sid=210583705&tcid=0&ver=8.121.0&ver_c=&spot_id=19926&utm_source=&utm_medium=&utm_campaign=&utm_content=&created_at=2023-12-01&iabcat=IAB1-5&keywords=&user_fp=12762865360534798893&score=69.6864683292163&durl=https%3A%2F%2Fkts.dasdaily.com%2Fin%2F1546%2F%3Fad_sub%3D1294464241%26spot_id%3D19926%26is_adult%3D0%26p%3Dhttps%253A%252F%252Fcapratv.blogspot.com%252F2020%252F06%252Fhora-de-aventura-t4-e26.html%253Fm%253D1%26idzone%3D0%26sid%3D1885&is_cpm=0&resp_type=&crid=&crtid=8fc5a3949d58ed66158a5da3a7b48b19&url=http%3A%2F%2Fc.srvpcn.com%2Fclick%3Fid%3Dclkks1ha8q1c739s62t0%26e%3D6216e250-3650-4ad8-abda-a1a07279a672%26px%3D45%26z%3D1&icons=f6EIjuENk5lV6Q3IpCwyH6OPJrM0fSaXT4fLQfKEE8ZzyEoNkYNGZlzqX2Q-KPGR8SIRKgPVkFS2hpt4IErnzo7M-rjED9nCF09F1eyFCATWERDUfKnPj80JqClzfwixyENw9GICCSnPsc5SiV7zNfj4dSmuZcnFDLUV7UxX5lrwQbTOig&ext_cid=0&px_id=3119926&min_cpm=0.016393179323182665&out_id=0&campaign_type=lq-pop&aid=161&cid=11653&uniq=b39b3dbdfad10001b809d1a542e2ca6f8a457a9d305b2cb00f276ae5851bd7b6&mid=3563357657773982095&skin_id=82&vertical_id=0&skin_test=0&from_cache=0&ecpm=0.02986514220512733&cpm=0&verify_hash=2c9982c3ddc98c9a815c72348ef61bd4&is_native=2&real_bid=0.000869&original_bid_usd=0.000869&original_bid=0.000869&exp=1440&placement_type_id=0&ua_mismatch=Mozilla%2F5.0%20%28Windows%20NT%2010.0%3B%20Win64%3B%20x64%3B%20rv%3A105.0%29%20Gecko%2F20100101%20Firefox%2F105.0&ip_mismatch=91.90.42.154&geo=NO&carrier=-&label_ids=76,83,89,95,108,0&need_redirect_show=0&applied_features=test_skins,stage-skins-settings&show_count=1&expiration_timestamp=1701486469&image_url=https%3A%2F%2Fstatic.bookmsg.com%2Fcreatives%2FUS%2FUS_34c3a6403004486b593fb6a3428d7a2748437f4f_icon.webp&site=native-push-mainstream&price=0.000869&hostname=auc-inpage-hz-1-b&auc_type=1&pop_type=1&site_id64=&interest_vertical_ids=&mo=&ve=&timezone_olson=UTC&topics=&historical_keywords=&pop_cpc=0.000000869&pattern1=0&pattern2=0&pattern3=0&pattern4=0&pattern5=0&format=multiOS-view-t_r-body&mlf=1&st=0.06&cpa=284d3e93-d2ea-4712-8885-0e51549be2e4 HTTP/1.1
Host: 19cdb461a5.32f689042e.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://capratv.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx/1.20.1
date: Fri, 01 Dec 2023 03:07:50 GMT
content-length: 0
vary: Origin
cache-control: no-transform, no-cache, no-store, must-revalidate
pragma: no-cache
access-control-allow-origin: *
access-control-allow-headers: Content-Type
access-control-allow-methods: *
X-Firefox-Spdy: h2
dc.services.visualstudio.com/v2/track
439 No Reason Phrase 219 B URL POST HTTP/2 dc.services.visualstudio.com/v2/track
IP
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
Requested by https://ko-fi.com/capratv/?hidefeed=true&widget=true&embed=true&preview=true
Certificate IssuerMicrosoft Corporation
Subjectin.applicationinsights.azure.com
FingerprintC2:A4:47:C6:98:2A:56:26:0C:1A:4E:87:97:72:F1:95:37:C6:EE:5D
ValiditySat, 02 Sep 2023 07:27:53 GMT - Tue, 27 Aug 2024 07:27:53 GMT
File type JSON data\012- , ASCII text, with no line terminators
Hash b043da042d7e6b5a50f31be78157fd5d
fdb0ade817c0451af1a70afa44579e56dc60926a
dbbee1783cacfdb958806da414f436064e8b4323fe643166ae605fdb3c0722db
POST /v2/track HTTP/1.1
Host: dc.services.visualstudio.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://ko-fi.com/
Content-type: application/json
Sdk-Context: appId
Content-Length: 1717
Origin: https://ko-fi.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 439 No Reason Phrase
content-type: application/json; charset=utf-8
x-ms-session-id: C416BDBE-D19D-4D33-99AF-F2E518B7C4AF
strict-transport-security: max-age=31536000
access-control-allow-headers: Origin, X-Requested-With, Content-Name, Content-Type, Accept, Cache-Control, Sdk-Context
access-control-allow-origin: *
access-control-max-age: 3600
x-content-type-options: nosniff
date: Fri, 01 Dec 2023 03:07:50 GMT
content-length: 219
X-Firefox-Spdy: h2
tpc.googlesyndication.com/generate_204?3IWGtQ
0 B URL tpc.googlesyndication.com/generate_204?3IWGtQ
IP
Certificate IssuerGoogle Trust Services LLC
Subjecttpc.googlesyndication.com
FingerprintB3:EB:42:1C:FE:75:21:B0:DB:48:DA:47:9F:CE:BF:3C:AC:A4:34:3C
ValidityMon, 23 Oct 2023 11:24:07 GMT - Mon, 15 Jan 2024 11:24:06 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /generate_204?3IWGtQ HTTP/1.1
Host: tpc.googlesyndication.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://tpc.googlesyndication.com/sodar/sodar2/225/runner.html
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 204 No Content
content-length: 0
cross-origin-resource-policy: cross-origin
date: Fri, 01 Dec 2023 03:07:50 GMT
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
static.bookmsg.com/creatives/US/US_34c3a6403004486b593fb6a3428d7a2748437f4f_icon.webp?pattern1=0&pattern2=0&pattern3=0&pattern4=0&pattern5=0&format=multiOS-view-t_r-body&mlf=1&mlc=1&st=0.06&cpa=01eb2330-ca8f-4654-81f1-8c06c49bb9b0
200 OK 590 B URL GET HTTP/2 static.bookmsg.com/creatives/US/US_34c3a6403004486b593fb6a3428d7a2748437f4f_icon.webp?pattern1=0&pattern2=0&pattern3=0&pattern4=0&pattern5=0&format=multiOS-view-t_r-body&mlf=1&mlc=1&st=0.06&cpa=01eb2330-ca8f-4654-81f1-8c06c49bb9b0
IP
ASN #24940 Hetzner Online GmbH
Requested by https://capratv.blogspot.com/2020/06/hora-de-aventura-t4-e26.html?m=1
Certificate IssuerLet's Encrypt
Subjectbookmsg.com
Fingerprint84:FF:B2:EC:22:57:12:AF:98:D1:21:28:6D:29:74:88:74:C2:08:C4
ValiditySat, 11 Nov 2023 01:54:54 GMT - Fri, 09 Feb 2024 01:54:53 GMT
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 100x100, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash debce753f1ce6652c1637491fd72b1b1
fd102eb3f058f7a43b0f9ec03541681699f5895e
c2443b0a74b25158756abb7aa12832e5442adab247aab6e24514f54396c72579
GET /creatives/US/US_34c3a6403004486b593fb6a3428d7a2748437f4f_icon.webp?pattern1=0&pattern2=0&pattern3=0&pattern4=0&pattern5=0&format=multiOS-view-t_r-body&mlf=1&mlc=1&st=0.06&cpa=01eb2330-ca8f-4654-81f1-8c06c49bb9b0 HTTP/1.1
Host: static.bookmsg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://capratv.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx/1.18.0
date: Fri, 01 Dec 2023 03:07:50 GMT
content-type: image/webp
content-length: 590
last-modified: Tue, 24 Nov 2020 14:24:12 GMT
etag: "5fbd178c-24e"
cache-control: public, max-age=315360000
accept-ranges: bytes
X-Firefox-Spdy: h2
static.bookmsg.com/creatives/US/US_34c3a6403004486b593fb6a3428d7a2748437f4f_icon.webp?pattern1=0&pattern2=0&pattern3=0&pattern4=0&pattern5=0&format=multiOS-view-t_r-body&mlf=1&st=0.06&cpa=99702cbb-9f9a-410b-9af5-06c10706e186
200 OK 590 B URL GET HTTP/2 static.bookmsg.com/creatives/US/US_34c3a6403004486b593fb6a3428d7a2748437f4f_icon.webp?pattern1=0&pattern2=0&pattern3=0&pattern4=0&pattern5=0&format=multiOS-view-t_r-body&mlf=1&st=0.06&cpa=99702cbb-9f9a-410b-9af5-06c10706e186
IP
ASN #24940 Hetzner Online GmbH
Requested by https://capratv.blogspot.com/2020/06/hora-de-aventura-t4-e26.html?m=1
Certificate IssuerLet's Encrypt
Subjectbookmsg.com
Fingerprint84:FF:B2:EC:22:57:12:AF:98:D1:21:28:6D:29:74:88:74:C2:08:C4
ValiditySat, 11 Nov 2023 01:54:54 GMT - Fri, 09 Feb 2024 01:54:53 GMT
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 100x100, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash debce753f1ce6652c1637491fd72b1b1
fd102eb3f058f7a43b0f9ec03541681699f5895e
c2443b0a74b25158756abb7aa12832e5442adab247aab6e24514f54396c72579
GET /creatives/US/US_34c3a6403004486b593fb6a3428d7a2748437f4f_icon.webp?pattern1=0&pattern2=0&pattern3=0&pattern4=0&pattern5=0&format=multiOS-view-t_r-body&mlf=1&st=0.06&cpa=99702cbb-9f9a-410b-9af5-06c10706e186 HTTP/1.1
Host: static.bookmsg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx/1.18.0
date: Fri, 01 Dec 2023 03:07:50 GMT
content-type: image/webp
content-length: 590
last-modified: Tue, 24 Nov 2020 14:24:12 GMT
etag: "5fbd178c-24e"
cache-control: public, max-age=315360000
accept-ranges: bytes
X-Firefox-Spdy: h2
static.bookmsg.com/creatives/US/US_34c3a6403004486b593fb6a3428d7a2748437f4f_icon.webp
200 OK 590 B URL GET HTTP/2 static.bookmsg.com/creatives/US/US_34c3a6403004486b593fb6a3428d7a2748437f4f_icon.webp
IP
ASN #24940 Hetzner Online GmbH
Requested by https://capratv.blogspot.com/2020/06/hora-de-aventura-t4-e26.html?m=1
Certificate IssuerLet's Encrypt
Subjectbookmsg.com
Fingerprint84:FF:B2:EC:22:57:12:AF:98:D1:21:28:6D:29:74:88:74:C2:08:C4
ValiditySat, 11 Nov 2023 01:54:54 GMT - Fri, 09 Feb 2024 01:54:53 GMT
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 100x100, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash debce753f1ce6652c1637491fd72b1b1
fd102eb3f058f7a43b0f9ec03541681699f5895e
c2443b0a74b25158756abb7aa12832e5442adab247aab6e24514f54396c72579
GET /creatives/US/US_34c3a6403004486b593fb6a3428d7a2748437f4f_icon.webp HTTP/1.1
Host: static.bookmsg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx/1.18.0
date: Fri, 01 Dec 2023 03:07:50 GMT
content-type: image/webp
content-length: 590
last-modified: Tue, 24 Nov 2020 14:24:12 GMT
etag: "5fbd178c-24e"
cache-control: public, max-age=315360000
accept-ranges: bytes
X-Firefox-Spdy: h2
static.bookmsg.com/creatives/US/US_34c3a6403004486b593fb6a3428d7a2748437f4f_icon.webp?pattern1=0&pattern2=0&pattern3=0&pattern4=0&pattern5=0&format=multiOS-view-t_r-body&mlf=1&st=0.06&cpa=4b9af0fb-17f9-44b5-a46c-68066f2ab081
200 OK 590 B URL GET HTTP/2 static.bookmsg.com/creatives/US/US_34c3a6403004486b593fb6a3428d7a2748437f4f_icon.webp?pattern1=0&pattern2=0&pattern3=0&pattern4=0&pattern5=0&format=multiOS-view-t_r-body&mlf=1&st=0.06&cpa=4b9af0fb-17f9-44b5-a46c-68066f2ab081
IP
ASN #24940 Hetzner Online GmbH
Requested by https://capratv.blogspot.com/2020/06/hora-de-aventura-t4-e26.html?m=1
Certificate IssuerLet's Encrypt
Subjectbookmsg.com
Fingerprint84:FF:B2:EC:22:57:12:AF:98:D1:21:28:6D:29:74:88:74:C2:08:C4
ValiditySat, 11 Nov 2023 01:54:54 GMT - Fri, 09 Feb 2024 01:54:53 GMT
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 100x100, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash debce753f1ce6652c1637491fd72b1b1
fd102eb3f058f7a43b0f9ec03541681699f5895e
c2443b0a74b25158756abb7aa12832e5442adab247aab6e24514f54396c72579
GET /creatives/US/US_34c3a6403004486b593fb6a3428d7a2748437f4f_icon.webp?pattern1=0&pattern2=0&pattern3=0&pattern4=0&pattern5=0&format=multiOS-view-t_r-body&mlf=1&st=0.06&cpa=4b9af0fb-17f9-44b5-a46c-68066f2ab081 HTTP/1.1
Host: static.bookmsg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx/1.18.0
date: Fri, 01 Dec 2023 03:07:50 GMT
content-type: image/webp
content-length: 590
last-modified: Tue, 24 Nov 2020 14:24:12 GMT
etag: "5fbd178c-24e"
cache-control: public, max-age=315360000
accept-ranges: bytes
X-Firefox-Spdy: h2
static.bookmsg.com/creatives/US/US_34c3a6403004486b593fb6a3428d7a2748437f4f_icon.webp
200 OK 590 B URL GET HTTP/2 static.bookmsg.com/creatives/US/US_34c3a6403004486b593fb6a3428d7a2748437f4f_icon.webp
IP
ASN #24940 Hetzner Online GmbH
Requested by https://capratv.blogspot.com/2020/06/hora-de-aventura-t4-e26.html?m=1
Certificate IssuerLet's Encrypt
Subjectbookmsg.com
Fingerprint84:FF:B2:EC:22:57:12:AF:98:D1:21:28:6D:29:74:88:74:C2:08:C4
ValiditySat, 11 Nov 2023 01:54:54 GMT - Fri, 09 Feb 2024 01:54:53 GMT
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 100x100, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash debce753f1ce6652c1637491fd72b1b1
fd102eb3f058f7a43b0f9ec03541681699f5895e
c2443b0a74b25158756abb7aa12832e5442adab247aab6e24514f54396c72579
GET /creatives/US/US_34c3a6403004486b593fb6a3428d7a2748437f4f_icon.webp HTTP/1.1
Host: static.bookmsg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx/1.18.0
date: Fri, 01 Dec 2023 03:07:50 GMT
content-type: image/webp
content-length: 590
last-modified: Tue, 24 Nov 2020 14:24:12 GMT
etag: "5fbd178c-24e"
cache-control: public, max-age=315360000
accept-ranges: bytes
X-Firefox-Spdy: h2
static.bookmsg.com/creatives/US/US_34c3a6403004486b593fb6a3428d7a2748437f4f_icon.webp?pattern1=0&pattern2=0&pattern3=0&pattern4=0&pattern5=0&format=multiOS-view-t_r-body&mlf=1&mlc=1&st=0.06&cpa=fab4427f-e88e-4548-96b1-95d894dbb927
200 OK 590 B URL GET HTTP/2 static.bookmsg.com/creatives/US/US_34c3a6403004486b593fb6a3428d7a2748437f4f_icon.webp?pattern1=0&pattern2=0&pattern3=0&pattern4=0&pattern5=0&format=multiOS-view-t_r-body&mlf=1&mlc=1&st=0.06&cpa=fab4427f-e88e-4548-96b1-95d894dbb927
IP
ASN #24940 Hetzner Online GmbH
Requested by https://capratv.blogspot.com/2020/06/hora-de-aventura-t4-e26.html?m=1
Certificate IssuerLet's Encrypt
Subjectbookmsg.com
Fingerprint84:FF:B2:EC:22:57:12:AF:98:D1:21:28:6D:29:74:88:74:C2:08:C4
ValiditySat, 11 Nov 2023 01:54:54 GMT - Fri, 09 Feb 2024 01:54:53 GMT
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 100x100, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash debce753f1ce6652c1637491fd72b1b1
fd102eb3f058f7a43b0f9ec03541681699f5895e
c2443b0a74b25158756abb7aa12832e5442adab247aab6e24514f54396c72579
GET /creatives/US/US_34c3a6403004486b593fb6a3428d7a2748437f4f_icon.webp?pattern1=0&pattern2=0&pattern3=0&pattern4=0&pattern5=0&format=multiOS-view-t_r-body&mlf=1&mlc=1&st=0.06&cpa=fab4427f-e88e-4548-96b1-95d894dbb927 HTTP/1.1
Host: static.bookmsg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://capratv.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx/1.18.0
date: Fri, 01 Dec 2023 03:07:50 GMT
content-type: image/webp
content-length: 590
last-modified: Tue, 24 Nov 2020 14:24:12 GMT
etag: "5fbd178c-24e"
cache-control: public, max-age=315360000
accept-ranges: bytes
X-Firefox-Spdy: h2
static.bookmsg.com/creatives/US/US_34c3a6403004486b593fb6a3428d7a2748437f4f_icon.webp
200 OK 590 B URL GET HTTP/2 static.bookmsg.com/creatives/US/US_34c3a6403004486b593fb6a3428d7a2748437f4f_icon.webp
IP
ASN #24940 Hetzner Online GmbH
Requested by https://capratv.blogspot.com/2020/06/hora-de-aventura-t4-e26.html?m=1
Certificate IssuerLet's Encrypt
Subjectbookmsg.com
Fingerprint84:FF:B2:EC:22:57:12:AF:98:D1:21:28:6D:29:74:88:74:C2:08:C4
ValiditySat, 11 Nov 2023 01:54:54 GMT - Fri, 09 Feb 2024 01:54:53 GMT
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 100x100, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash debce753f1ce6652c1637491fd72b1b1
fd102eb3f058f7a43b0f9ec03541681699f5895e
c2443b0a74b25158756abb7aa12832e5442adab247aab6e24514f54396c72579
GET /creatives/US/US_34c3a6403004486b593fb6a3428d7a2748437f4f_icon.webp HTTP/1.1
Host: static.bookmsg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://capratv.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx/1.18.0
date: Fri, 01 Dec 2023 03:07:50 GMT
content-type: image/webp
content-length: 590
last-modified: Tue, 24 Nov 2020 14:24:12 GMT
etag: "5fbd178c-24e"
cache-control: public, max-age=315360000
accept-ranges: bytes
X-Firefox-Spdy: h2
pagead2.googlesyndication.com/pagead/sodar?id=sodar2&v=225&t=2&li=gda_r20231129&jk=1227009819399499&bg=!PzylPHPNAAY3kmNgF5I7ADQBe5WfOMK7YzqKy3IM1kW4lLGD-nZr3MGixQI62QDeyER9kkaS7RuSdJwN8YEUK_G6xxk-AgAAAUpSAAAAFmgBB5kCjwSdqhPOQOx3OQF-dRwAknrgiX7WJUtciqUEivyLK6Ds018v0NA-ejIR44fdCiEWSbrkSUfUaleuJvHKLd2NnW_wx39QLZmN4u46KByyXX-tLlIJOMPClDi9pYZeVDyE7bjmima-DdLTnwVEXNtGl47jZ71eDTTBSOAy5BfcQ9OAvP0WvdOc1VwMSY_8RAbCep4Ia1VR4xIgNJ0L1ryX-DHu8QzNUQ40zcT9wZ5GL8PgNWK-Rxk9gCGOWDUNP2NuWjjasRAxmvF8aihoMkUEa0Zo-sQy2eVbC_2HuCv8BJplPkfOTKF_3yPIaiiuEb0qTudv9KWztYfGLJHgqxfPSxJV7pqr0xcEWR9ZrPkyorgG1l9ny5R09BtLQdteOYrB3x_wTtd9Wz0sETmM6ypsUnBPdg8Up3VuDmLpTK0qEtrNlR_bL9UewHT2eSfiYkd5wyLlWc37McY70V7fe06KMEq-7kokwQL-lMME2aVyp0gxEHORzUQtbWEeV2dSR9DEyVIc7LRykKAlpbN5A6iYEs12k7ZQKgQKdyMmsaOZC0a7_vqgaBrLDzQwfB8e9RQ3DpoOP--PfdIkhgB4YXpzunry5FeWOIDpPxXGaWZkolbJfVBrCt4Bx5Ppsn-uQa3Sv1GijY6D_ryTk2on5u6U0ePITXOm3dHds4fuT_H-qcgCs2K7ZqkV4jubH5KavHvB2bKG0I1fZMQhIz5X5fi0EhIWD5BMuej2b1xi-tzO26jdJcW4rA7aLN32tUm62VsAJFO4v70byJadgeJZtG4PNnVn5uRa8kEaQqJreXSzP6w4H21OBm3tbW3N8h3s2hqhARwBaOUt1v5z6sKHIi8Qkyyj5mD853FMYpPaFFMAxww
204 No Content 0 B URL GET HTTP/3 pagead2.googlesyndication.com/pagead/sodar?id=sodar2&v=225&t=2&li=gda_r20231129&jk=1227009819399499&bg=!PzylPHPNAAY3kmNgF5I7ADQBe5WfOMK7YzqKy3IM1kW4lLGD-nZr3MGixQI62QDeyER9kkaS7RuSdJwN8YEUK_G6xxk-AgAAAUpSAAAAFmgBB5kCjwSdqhPOQOx3OQF-dRwAknrgiX7WJUtciqUEivyLK6Ds018v0NA-ejIR44fdCiEWSbrkSUfUaleuJvHKLd2NnW_wx39QLZmN4u46KByyXX-tLlIJOMPClDi9pYZeVDyE7bjmima-DdLTnwVEXNtGl47jZ71eDTTBSOAy5BfcQ9OAvP0WvdOc1VwMSY_8RAbCep4Ia1VR4xIgNJ0L1ryX-DHu8QzNUQ40zcT9wZ5GL8PgNWK-Rxk9gCGOWDUNP2NuWjjasRAxmvF8aihoMkUEa0Zo-sQy2eVbC_2HuCv8BJplPkfOTKF_3yPIaiiuEb0qTudv9KWztYfGLJHgqxfPSxJV7pqr0xcEWR9ZrPkyorgG1l9ny5R09BtLQdteOYrB3x_wTtd9Wz0sETmM6ypsUnBPdg8Up3VuDmLpTK0qEtrNlR_bL9UewHT2eSfiYkd5wyLlWc37McY70V7fe06KMEq-7kokwQL-lMME2aVyp0gxEHORzUQtbWEeV2dSR9DEyVIc7LRykKAlpbN5A6iYEs12k7ZQKgQKdyMmsaOZC0a7_vqgaBrLDzQwfB8e9RQ3DpoOP--PfdIkhgB4YXpzunry5FeWOIDpPxXGaWZkolbJfVBrCt4Bx5Ppsn-uQa3Sv1GijY6D_ryTk2on5u6U0ePITXOm3dHds4fuT_H-qcgCs2K7ZqkV4jubH5KavHvB2bKG0I1fZMQhIz5X5fi0EhIWD5BMuej2b1xi-tzO26jdJcW4rA7aLN32tUm62VsAJFO4v70byJadgeJZtG4PNnVn5uRa8kEaQqJreXSzP6w4H21OBm3tbW3N8h3s2hqhARwBaOUt1v5z6sKHIi8Qkyyj5mD853FMYpPaFFMAxww
IP
Requested by https://capratv.blogspot.com/2020/06/hora-de-aventura-t4-e26.html?m=1
Certificate IssuerGoogle Trust Services LLC
Subject*.g.doubleclick.net
Fingerprint6C:2A:75:F2:3F:EF:4F:43:B1:8D:C3:B7:E9:2E:4A:EF:40:6A:FC:92
ValidityMon, 23 Oct 2023 11:18:19 GMT - Mon, 15 Jan 2024 11:18:18 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /pagead/sodar?id=sodar2&v=225&t=2&li=gda_r20231129&jk=1227009819399499&bg=!PzylPHPNAAY3kmNgF5I7ADQBe5WfOMK7YzqKy3IM1kW4lLGD-nZr3MGixQI62QDeyER9kkaS7RuSdJwN8YEUK_G6xxk-AgAAAUpSAAAAFmgBB5kCjwSdqhPOQOx3OQF-dRwAknrgiX7WJUtciqUEivyLK6Ds018v0NA-ejIR44fdCiEWSbrkSUfUaleuJvHKLd2NnW_wx39QLZmN4u46KByyXX-tLlIJOMPClDi9pYZeVDyE7bjmima-DdLTnwVEXNtGl47jZ71eDTTBSOAy5BfcQ9OAvP0WvdOc1VwMSY_8RAbCep4Ia1VR4xIgNJ0L1ryX-DHu8QzNUQ40zcT9wZ5GL8PgNWK-Rxk9gCGOWDUNP2NuWjjasRAxmvF8aihoMkUEa0Zo-sQy2eVbC_2HuCv8BJplPkfOTKF_3yPIaiiuEb0qTudv9KWztYfGLJHgqxfPSxJV7pqr0xcEWR9ZrPkyorgG1l9ny5R09BtLQdteOYrB3x_wTtd9Wz0sETmM6ypsUnBPdg8Up3VuDmLpTK0qEtrNlR_bL9UewHT2eSfiYkd5wyLlWc37McY70V7fe06KMEq-7kokwQL-lMME2aVyp0gxEHORzUQtbWEeV2dSR9DEyVIc7LRykKAlpbN5A6iYEs12k7ZQKgQKdyMmsaOZC0a7_vqgaBrLDzQwfB8e9RQ3DpoOP--PfdIkhgB4YXpzunry5FeWOIDpPxXGaWZkolbJfVBrCt4Bx5Ppsn-uQa3Sv1GijY6D_ryTk2on5u6U0ePITXOm3dHds4fuT_H-qcgCs2K7ZqkV4jubH5KavHvB2bKG0I1fZMQhIz5X5fi0EhIWD5BMuej2b1xi-tzO26jdJcW4rA7aLN32tUm62VsAJFO4v70byJadgeJZtG4PNnVn5uRa8kEaQqJreXSzP6w4H21OBm3tbW3N8h3s2hqhARwBaOUt1v5z6sKHIi8Qkyyj5mD853FMYpPaFFMAxww HTTP/1.1
Host: pagead2.googlesyndication.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://capratv.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 204 No Content
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
content-type: text/html; charset=UTF-8
x-content-type-options: nosniff
date: Fri, 01 Dec 2023 03:07:51 GMT
server: cafe
content-length: 0
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
capratv.blogspot.com/b/csi.do
200 OK 37 B URL POST HTTP/3 capratv.blogspot.com/b/csi.do
IP
Requested by https://capratv.blogspot.com/2020/06/hora-de-aventura-t4-e26.html?m=1
Certificate IssuerGoogle Trust Services LLC
Subjectmisc-sni.blogspot.com
Fingerprint07:E2:99:33:66:25:16:0A:1D:C3:C7:18:D8:82:4A:F0:37:40:E1:5B
ValidityMon, 23 Oct 2023 11:23:28 GMT - Mon, 15 Jan 2024 11:23:27 GMT
File type JSON data\012- , ASCII text, with no line terminators
Hash 13fbaa0e85204e55297c8ea54fd995db
89d9df299cfbc8f15962584d568b79a02e37c55c
1876b6ef61ae64b0b5548798db0c90de0f788eab3b9d97d17404616ff7a94a8b
POST /b/csi.do HTTP/1.1
Host: capratv.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-www-form-urlencoded;charset=utf-8
Content-Length: 1217
Origin: https://capratv.blogspot.com
DNT: 1
Connection: keep-alive
Referer: https://capratv.blogspot.com/2020/06/hora-de-aventura-t4-e26.html?m=1
Cookie: _ga_8G9B8ZGWQK=GS1.1.1701400070.1.0.1701400070.0.0.0; _ga=GA1.1.703130953.1701400071
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
content-security-policy: script-src 'self' *.google.com *.google-analytics.com 'unsafe-inline' 'unsafe-eval' *.gstatic.com *.googlesyndication.com *.blogger.com *.googleapis.com uds.googleusercontent.com https://s.ytimg.com https://i18n-cloud.appspot.com https://www.youtube.com www-onepick-opensocial.googleusercontent.com www-bloggervideo-opensocial.googleusercontent.com www-blogger-opensocial.googleusercontent.com https://www.blogblog.com; report-uri /cspreport
content-type: text/html; charset=UTF-8
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Fri, 01 Dec 2023 03:07:51 GMT
content-encoding: gzip
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
content-length: 37
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
dc.services.visualstudio.com/v2/track
439 No Reason Phrase 281 B URL POST HTTP/2 dc.services.visualstudio.com/v2/track
IP
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
Requested by https://ko-fi.com/capratv/?hidefeed=true&widget=true&embed=true&preview=true
Certificate IssuerMicrosoft Corporation
Subjectin.applicationinsights.azure.com
FingerprintC2:A4:47:C6:98:2A:56:26:0C:1A:4E:87:97:72:F1:95:37:C6:EE:5D
ValiditySat, 02 Sep 2023 07:27:53 GMT - Tue, 27 Aug 2024 07:27:53 GMT
File type JSON data\012- , ASCII text, with no line terminators
Hash 607253f747cae4b7c7dd927f8096a104
836dbaa101e5a3741dc5dbeebdf2350b1935f7eb
33d75f3acb6effabc8f2d954fe3f987b92ace2d2681ecbbd55dc41bb705f53be
POST /v2/track HTTP/1.1
Host: dc.services.visualstudio.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://ko-fi.com/
Content-type: application/json
Sdk-Context: appId
Content-Length: 2089
Origin: https://ko-fi.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 439 No Reason Phrase
content-type: application/json; charset=utf-8
x-ms-session-id: F665B23A-3EC0-4EC3-8514-C0CAAE9B22BD
strict-transport-security: max-age=31536000
access-control-allow-headers: Origin, X-Requested-With, Content-Name, Content-Type, Accept, Cache-Control, Sdk-Context
access-control-allow-origin: *
access-control-max-age: 3600
x-content-type-options: nosniff
date: Fri, 01 Dec 2023 03:08:04 GMT
content-length: 281
X-Firefox-Spdy: h2
ko-fi.com/cdn-cgi/rum?
204 No Content 0 B IP
Requested by https://ko-fi.com/capratv/?hidefeed=true&widget=true&embed=true&preview=true
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
FingerprintF1:8F:7F:48:97:2C:37:9E:A9:3D:37:D8:8B:81:D9:BD:E6:76:D7:EC
ValiditySat, 29 Apr 2023 00:00:00 GMT - Sun, 28 Apr 2024 23:59:59 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /cdn-cgi/rum? HTTP/1.1
Host: ko-fi.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://ko-fi.com/capratv/?hidefeed=true&widget=true&embed=true&preview=true
Content-Type: application/json
Content-Length: 433
Origin: https://ko-fi.com
DNT: 1
Connection: keep-alive
Cookie: ARRAffinitySameSite=95102c35e644550298b6b4fa06374c1365ce2dde66c6804334c0540186df0525; ai_user=I2lYx|2023-12-01T03:07:54.201Z; ai_session=NijmC|1701400074622|1701400074622
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 204 No Content
date: Fri, 01 Dec 2023 03:08:08 GMT
access-control-allow-origin: https://ko-fi.com
access-control-allow-methods: POST,OPTIONS
access-control-max-age: 86400
vary: Origin
access-control-allow-credentials: true
server: cloudflare
cf-ray: 82e81fb7cfc6b51b-OSL
x-frame-options: DENY
x-content-type-options: nosniff
X-Firefox-Spdy: h2
ko-fi.com/content/root.css?v=124
200 OK 6.0 kB URL GET HTTP/2 ko-fi.com/content/root.css?v=124
IP
Requested by https://ko-fi.com/capratv/?hidefeed=true&widget=true&embed=true&preview=true
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
FingerprintF1:8F:7F:48:97:2C:37:9E:A9:3D:37:D8:8B:81:D9:BD:E6:76:D7:EC
ValiditySat, 29 Apr 2023 00:00:00 GMT - Sun, 28 Apr 2024 23:59:59 GMT
File type ASCII text, with very long lines (5974), with no line terminators
Hash 5825d3f835a61c2d815d800d0c3bcf84
637338099ff1ec21230b700d4eb27ab85c011fbf
ea5845500a29b4f113310b4f7ece09f7b15643b169b46609981c75d2460a4a64
GET /content/root.css?v=124 HTTP/1.1
Host: ko-fi.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://ko-fi.com/Content/profileV2.css?v=640tv
DNT: 1
Connection: keep-alive
Cookie: ARRAffinitySameSite=95102c35e644550298b6b4fa06374c1365ce2dde66c6804334c0540186df0525
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 01 Dec 2023 03:07:48 GMT
content-type: text/css
cf-bgj: minify
cf-polished: origSize=7394
etag: W/"0f94864a23da1:0"
last-modified: Wed, 29 Nov 2023 21:24:10 GMT
referrer-policy: strict-origin-when-cross-origin
vary: Accept-Encoding
x-content-type-options: nosniff
x-permitted-cross-domain-policies: none
x-xss-protection: 1; mode=block
cf-cache-status: HIT
server: cloudflare
cf-ray: 82e81f358cebb51b-OSL
content-encoding: gzip
X-Firefox-Spdy: h2
js.wpushsdk.com/npc/sdk/wpu/npush.m.js
200 OK 554 kB URL GET HTTP/2 js.wpushsdk.com/npc/sdk/wpu/npush.m.js
IP
ASN #39572 DataWeb Global Group B.V.
Requested by https://capratv.blogspot.com/2020/06/hora-de-aventura-t4-e26.html?m=1
Certificate IssuerLet's Encrypt
Subjectjs.wpushsdk.com
Fingerprint15:3F:1F:B8:65:77:7B:9F:2B:69:1C:0A:B6:FC:26:B1:2E:31:2F:C0
ValidityMon, 13 Nov 2023 07:01:13 GMT - Sun, 11 Feb 2024 07:01:12 GMT
Size 554 kB (554094 bytes)
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /npc/sdk/wpu/npush.m.js HTTP/1.1
Host: js.wpushsdk.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://capratv.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 01 Dec 2023 03:07:48 GMT
content-type: application/javascript; charset=utf-8
server: nginx/1.18.0
last-modified: Thu, 30 Nov 2023 09:44:58 GMT
etag: W/"6568599a-8746e"
content-encoding: gzip
expires: Fri, 01 Dec 2023 03:12:48 GMT
cache-control: max-age=300
x-proxy-cache: HIT
access-control-allow-origin: *
X-Firefox-Spdy: h2
storage.multstorage.com/log/count.html
200 OK 882 B URL GET HTTP/2 storage.multstorage.com/log/count.html
IP
Requested by https://capratv.blogspot.com/2020/06/hora-de-aventura-t4-e26.html?m=1
Certificate IssuerGoogle Trust Services LLC
Subjectmultstorage.com
Fingerprint1F:90:8C:BB:6B:B0:99:41:3A:23:DF:A4:57:1A:25:0F:88:BA:C6:DE
ValidityMon, 20 Nov 2023 10:07:51 GMT - Sun, 18 Feb 2024 10:07:50 GMT
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (919), with no line terminators
Hash 053b1fe641da8057571d40ebaf1624ab
09b2648b7d08c84621298f0b939cea5170a65022
6606334874a3edb8295831f41d3684433e4553ffe0a72e58c90926e00f39c6a4
GET /log/count.html HTTP/1.1
Host: storage.multstorage.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://capratv.blogspot.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 01 Dec 2023 03:07:48 GMT
content-type: text/html
last-modified: Mon, 18 Sep 2023 14:39:06 GMT
vary: Accept-Encoding
x-request-id: 7131c2dbd5f358ceca5c65269523d631
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=t%2B5aPZfRVCjMPjOyl7VkYlCq2g0xsT%2FYthWFVsPEB2c8Hw972UMWzYQBqeH7m%2B2SRBzJlRJtBsdUvqgl7oN%2Fvm8h9uSw8gLY6gpsUPVLiCJpnwAC58SkUkIJUuQFGBlUWylR5yY2ua1aXQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 82e81f3c8840b511-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
823d58dda1.3edcc83467.com/0f1dcb74a9a81520c57b1a8b9cfe9d87/30034?version_name=d
200 OK 3.1 kB URL GET HTTP/2 823d58dda1.3edcc83467.com/0f1dcb74a9a81520c57b1a8b9cfe9d87/30034?version_name=d
IP
ASN #39572 DataWeb Global Group B.V.
Requested by https://capratv.blogspot.com/2020/06/hora-de-aventura-t4-e26.html?m=1
Certificate IssuerLet's Encrypt
Subject823d58dda1.3edcc83467.com
FingerprintC0:7E:B2:A9:0D:D7:B7:DE:9E:50:50:2E:7E:DA:23:DD:2B:F4:7C:6A
ValidityTue, 28 Nov 2023 02:20:37 GMT - Mon, 26 Feb 2024 02:20:36 GMT
File type troff or preprocessor input, ASCII text, with very long lines (3544), with no line terminators
Hash 9900b17780242163530dccdbabca79a2
c04e34f4bdd5709138498c442961617c550348d8
8c85174be32d40896de289d276c772276319bbc79e719be5e455e70cbfa09754
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /0f1dcb74a9a81520c57b1a8b9cfe9d87/30034?version_name=d HTTP/1.1
Host: 823d58dda1.3edcc83467.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://capratv.blogspot.com
DNT: 1
Connection: keep-alive
Referer: https://capratv.blogspot.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 01 Dec 2023 03:07:47 GMT
content-type: application/json
server: nginx/1.18.0
cache-control: max-age=300
expires: Fri, 01 Dec 2023 03:12:47 GMT
x-proxy-cache: HIT
access-control-allow-origin: *
X-Firefox-Spdy: h2
ko-fi.com/img/loading.svg
200 OK 579 B URL GET HTTP/2 ko-fi.com/img/loading.svg
IP
Requested by https://ko-fi.com/capratv/?hidefeed=true&widget=true&embed=true&preview=true
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
FingerprintF1:8F:7F:48:97:2C:37:9E:A9:3D:37:D8:8B:81:D9:BD:E6:76:D7:EC
ValiditySat, 29 Apr 2023 00:00:00 GMT - Sun, 28 Apr 2024 23:59:59 GMT
File type SVG Scalable Vector Graphics image\012- XML document, ASCII text, with very long lines (631), with no line terminators
Hash 46bba50f5d5404debc7a7ee4c0c1c260
4f958da40bc4ae87e977f085e6f27da06f78cafc
24082f05d81b1699f418be891ae45f829c08baa9a669f97a2814e26dfe3bc7e1
GET /img/loading.svg HTTP/1.1
Host: ko-fi.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://ko-fi.com/capratv/?hidefeed=true&widget=true&embed=true&preview=true
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 01 Dec 2023 03:07:46 GMT
content-type: image/svg+xml
etag: W/"0f94864a23da1:0"
last-modified: Wed, 29 Nov 2023 21:24:10 GMT
x-xss-protection: 1; mode=block
referrer-policy: strict-origin-when-cross-origin
x-permitted-cross-domain-policies: none
x-content-type-options: nosniff
cf-cache-status: HIT
vary: Accept-Encoding
server: cloudflare
cf-ray: 82e81f316bfab51b-OSL
content-encoding: gzip
X-Firefox-Spdy: h2
stackpath.bootstrapcdn.com/bootstrap/4.4.1/css/bootstrap.min.css
200 OK 160 kB URL GET HTTP/2 stackpath.bootstrapcdn.com/bootstrap/4.4.1/css/bootstrap.min.css
IP
Requested by https://capratv.blogspot.com/2020/06/hora-de-aventura-t4-e26.html?m=1
Certificate IssuerGoogle Trust Services LLC
Subjectbootstrapcdn.com
Fingerprint34:BC:91:5F:B9:EC:32:2C:D9:73:C7:88:C3:6C:FB:77:E7:70:8D:04
ValidityThu, 30 Nov 2023 00:15:17 GMT - Wed, 28 Feb 2024 00:15:16 GMT
File type ASCII text, with very long lines (65324)
Size 160 kB (159515 bytes)
Hash 7cc40c199d128af6b01e74a28c5900b0
d305110fb79113a961394b433d851a3410342b8c
2ff5b959fa9f6b4b1d04d20a37d706e90039176ab1e2a202994d9580baeebfd6
GET /bootstrap/4.4.1/css/bootstrap.min.css HTTP/1.1
Host: stackpath.bootstrapcdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://capratv.blogspot.com
DNT: 1
Connection: keep-alive
Referer: https://capratv.blogspot.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 01 Dec 2023 03:07:45 GMT
content-type: text/css; charset=utf-8
vary: Accept-Encoding
cdn-pullzone: 252412
cdn-uid: b1941f61-b576-4f40-80de-5677acb38f74
cdn-requestcountrycode: DE
access-control-allow-origin: *
cache-control: public, max-age=31919000
etag: W/"7cc40c199d128af6b01e74a28c5900b0"
last-modified: Mon, 25 Jan 2021 22:04:09 GMT
cdn-cachedat: 10/31/2023 19:00:00
cdn-proxyver: 1.04
cdn-requestpullcode: 200
cdn-requestpullsuccess: True
cdn-edgestorageid: 1078
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
cdn-status: 200
cdn-requestid: c44f37274d56c942868c133106d502c4
cdn-cache: HIT
cf-cache-status: HIT
strict-transport-security: max-age=31536000; includeSubDomains; preload
server: cloudflare
cf-ray: 82e81f291fe856ca-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
www.blogger.com/comment/frame/3626921078112602778?po=2975398124286307187&hl=es&skin=contempo&blogspotRpcToken=2410587
200 OK 58 kB URL GET HTTP/3 www.blogger.com/comment/frame/3626921078112602778?po=2975398124286307187&hl=es&skin=contempo&blogspotRpcToken=2410587
IP
Requested by https://capratv.blogspot.com/2020/06/hora-de-aventura-t4-e26.html?m=1
Certificate IssuerGoogle Trust Services LLC
Subject*.blogger.com
Fingerprint4A:89:9B:E5:F1:54:0E:2D:0A:8E:40:A8:27:DF:2E:6B:7F:74:51:90
ValidityMon, 23 Oct 2023 11:17:52 GMT - Mon, 15 Jan 2024 11:17:51 GMT
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (33858)
Hash 92c633091f967e5ec6011096e0890af5
87af97f236e9bcb5e72421976f6752b1daa7c82a
d64ea232042625a1dda69eb835940287b04d0ec6c1b5ffba2f28d6b9b870a104
GET /comment/frame/3626921078112602778?po=2975398124286307187&hl=es&skin=contempo&blogspotRpcToken=2410587 HTTP/1.1
Host: www.blogger.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://capratv.blogspot.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
content-type: text/html; charset=utf-8
vary: Sec-Fetch-Dest, Sec-Fetch-Mode, Sec-Fetch-Site
x-ua-compatible: IE=edge
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Fri, 01 Dec 2023 03:07:46 GMT
p3p: CP="This is not a P3P policy! See g.co/p3phelp for more info."
cross-origin-opener-policy: same-origin
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Model, Sec-CH-UA-WoW64, Sec-CH-UA-Form-Factor, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
cross-origin-resource-policy: same-site
content-security-policy: script-src 'nonce-2wCTxNCuaK8Qlmhj00FjGQ' 'unsafe-inline';object-src 'none';base-uri 'self';report-uri /_/BloggerCommentUi/cspreport;worker-src 'self', script-src 'unsafe-inline' 'self' https://apis.google.com https://ssl.gstatic.com https://www.google.com https://www.googletagmanager.com https://www.gstatic.com https://www.google-analytics.com https://www.googleapis.com/appsmarket/v2/installedApps/;report-uri /_/BloggerCommentUi/cspreport/allowlist, require-trusted-types-for 'script';report-uri /_/BloggerCommentUi/cspreport
permissions-policy: ch-ua-arch=*, ch-ua-bitness=*, ch-ua-full-version=*, ch-ua-full-version-list=*, ch-ua-model=*, ch-ua-wow64=*, ch-ua-form-factor=*, ch-ua-platform=*, ch-ua-platform-version=*
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-content-type-options: nosniff
set-cookie: NID=511=j3S8bqXvpBgQYqQETbUDKWJCWUTjGPmjhfrMeJfOH5S8vhywXUoDAp10_4JBAhw8ErouyQekzHTGe2kIjZKfb6h86CQocrz1m4ZheXOcK04N_mBYk30iBZh2NO2IbeVtk6f9ejpLblksliS2wfkN9ZOVdZxkJYzGsQvNggf4qF4; expires=Sat, 01-Jun-2024 03:07:46 GMT; path=/; domain=.blogger.com; Secure; HttpOnly
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
www.google.com/recaptcha/api2/aframe
200 OK 829 B URL GET HTTP/3 www.google.com/recaptcha/api2/aframe
IP
Requested by https://capratv.blogspot.com/2020/06/hora-de-aventura-t4-e26.html?m=1
Certificate IssuerGoogle Trust Services LLC
Subject*.google.com
Fingerprint4C:0D:17:8C:F1:30:7C:3A:6F:9B:8E:B4:83:0E:5C:BD:ED:17:3E:95
ValidityMon, 23 Oct 2023 11:18:24 GMT - Mon, 15 Jan 2024 11:18:23 GMT
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (853), with no line terminators
Hash 9805fe39a66b4d0e495722ec0d55506f
8a4a1effcb032586a5246f8fb64efebead89a4bb
d131ae7d781ebcd28a45864318101227476592897a33e74b29635ed442a5a1ff
GET /recaptcha/api2/aframe HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://capratv.blogspot.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
content-type: text/html; charset=utf-8
cross-origin-resource-policy: cross-origin
cross-origin-embedder-policy: require-corp
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
expires: Fri, 01 Dec 2023 03:07:50 GMT
date: Fri, 01 Dec 2023 03:07:50 GMT
cache-control: private, max-age=300
content-security-policy: script-src 'nonce-6RHpne8-Bn1i04VcCEwnHw' 'unsafe-inline' 'strict-dynamic' https: http: 'unsafe-eval';object-src 'none';base-uri 'self';report-uri https://csp.withgoogle.com/csp/recaptcha/1
content-encoding: gzip
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
ko-fi.com/Scripts/plugins/loadmorejs/loadmore.min.js?v=236mo
200 OK 3.8 kB URL GET HTTP/2 ko-fi.com/Scripts/plugins/loadmorejs/loadmore.min.js?v=236mo
IP
Requested by https://ko-fi.com/capratv/?hidefeed=true&widget=true&embed=true&preview=true
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
FingerprintF1:8F:7F:48:97:2C:37:9E:A9:3D:37:D8:8B:81:D9:BD:E6:76:D7:EC
ValiditySat, 29 Apr 2023 00:00:00 GMT - Sun, 28 Apr 2024 23:59:59 GMT
File type HTML document text\012- troff or preprocessor input, ASCII text, with very long lines (3975), with no line terminators
Hash 412937075a869d95881937b0affb312f
d55d4c104f89ef18d7132e8ef6cec5998291d4e4
2f4411335b375edbb7edfe6cceda1891671da0714dd8ede44a8735450d32e9e5
GET /Scripts/plugins/loadmorejs/loadmore.min.js?v=236mo HTTP/1.1
Host: ko-fi.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://ko-fi.com/capratv/?hidefeed=true&widget=true&embed=true&preview=true
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 01 Dec 2023 03:07:47 GMT
content-type: application/x-javascript
etag: W/"0f94864a23da1:0"
last-modified: Wed, 29 Nov 2023 21:24:10 GMT
x-xss-protection: 1; mode=block
referrer-policy: strict-origin-when-cross-origin
x-permitted-cross-domain-policies: none
x-content-type-options: nosniff
cf-cache-status: HIT
vary: Accept-Encoding
server: cloudflare
cf-ray: 82e81f31cc2db51b-OSL
content-encoding: gzip
X-Firefox-Spdy: h2
accounts.google.com/v3/signin/identifier?continue=https%3A%2F%2Fm.youtube.com%2Ffavicon.ico&hl=en&ifkv=ASKXGp3yXTelXKN5E5Q_6ZY79AIlrb73rnNggdw1p3RksZhDgJ5vz1mfL89WR8HJdUtsbik8BPFOOA&passive=true&service=youtube&uilel=3&flowName=GlifWebSignIn&flowEntry=ServiceLogin&dsh=S1308933251%3A1701400069539140&theme=glif
403 Forbidden 0 B URL GET HTTP/3 accounts.google.com/v3/signin/identifier?continue=https%3A%2F%2Fm.youtube.com%2Ffavicon.ico&hl=en&ifkv=ASKXGp3yXTelXKN5E5Q_6ZY79AIlrb73rnNggdw1p3RksZhDgJ5vz1mfL89WR8HJdUtsbik8BPFOOA&passive=true&service=youtube&uilel=3&flowName=GlifWebSignIn&flowEntry=ServiceLogin&dsh=S1308933251%3A1701400069539140&theme=glif
IP
Requested by https://capratv.blogspot.com/2020/06/hora-de-aventura-t4-e26.html?m=1
Certificate IssuerGoogle Trust Services LLC
Subject*.google.com
Fingerprint4C:0D:17:8C:F1:30:7C:3A:6F:9B:8E:B4:83:0E:5C:BD:ED:17:3E:95
ValidityMon, 23 Oct 2023 11:18:24 GMT - Mon, 15 Jan 2024 11:18:23 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /v3/signin/identifier?continue=https%3A%2F%2Fm.youtube.com%2Ffavicon.ico&hl=en&ifkv=ASKXGp3yXTelXKN5E5Q_6ZY79AIlrb73rnNggdw1p3RksZhDgJ5vz1mfL89WR8HJdUtsbik8BPFOOA&passive=true&service=youtube&uilel=3&flowName=GlifWebSignIn&flowEntry=ServiceLogin&dsh=S1308933251%3A1701400069539140&theme=glif HTTP/1.1
Host: accounts.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 403 Forbidden
content-type: text/html; charset=utf-8
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Fri, 01 Dec 2023 03:07:49 GMT
vary: Sec-Fetch-Dest, Sec-Fetch-Mode, Sec-Fetch-Site
strict-transport-security: max-age=31536000; includeSubDomains
content-security-policy: script-src 'nonce-ELLb5EkH1dXoGml5ekzpYg' 'unsafe-inline';object-src 'none';base-uri 'self';report-uri /v3/signin/_/AccountsSignInUi/cspreport;worker-src 'self', script-src 'unsafe-inline' 'self' https://apis.google.com https://ssl.gstatic.com https://www.google.com https://www.googletagmanager.com https://www.gstatic.com https://www.google-analytics.com;report-uri /v3/signin/_/AccountsSignInUi/cspreport/allowlist, require-trusted-types-for 'script';report-uri /v3/signin/_/AccountsSignInUi/cspreport
report-to: {"group":"AccountsSignInUi","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/AccountsSignInUi"}]}
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Model, Sec-CH-UA-WoW64, Sec-CH-UA-Form-Factor, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
permissions-policy: ch-ua-arch=*, ch-ua-bitness=*, ch-ua-full-version=*, ch-ua-full-version-list=*, ch-ua-model=*, ch-ua-wow64=*, ch-ua-form-factor=*, ch-ua-platform=*, ch-ua-platform-version=*
cross-origin-opener-policy-report-only: same-origin; report-to="AccountsSignInUi"
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
storage.ko-fi.com/cdn/scripts/jquery-2.0.0.min.js
200 OK 83 kB URL GET HTTP/2 storage.ko-fi.com/cdn/scripts/jquery-2.0.0.min.js
IP
Requested by https://ko-fi.com/capratv/?hidefeed=true&widget=true&embed=true&preview=true
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
FingerprintF1:8F:7F:48:97:2C:37:9E:A9:3D:37:D8:8B:81:D9:BD:E6:76:D7:EC
ValiditySat, 29 Apr 2023 00:00:00 GMT - Sun, 28 Apr 2024 23:59:59 GMT
File type ASCII text, with very long lines (32110)
Hash 2edc942c0bd2476be8967a9f788d9e26
0be05c714a7e6cf28fe692629ece5b3769901dca
d482871a5e948cb4884fa0972ea98a81abca057b6bd3f8c995a18c12487e761c
GET /cdn/scripts/jquery-2.0.0.min.js HTTP/1.1
Host: storage.ko-fi.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://ko-fi.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 01 Dec 2023 03:07:46 GMT
content-type: application/javascript
content-md5: LtyULAvSR2volnqfeI2eJg==
last-modified: Sun, 23 Oct 2022 22:21:42 GMT
x-ms-request-id: 11433027-f01e-0058-4eb2-0c1c4b000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Type,Last-Modified,ETag,Content-MD5,x-ms-lease-status,x-ms-blob-type,Content-Length,Date,Transfer-Encoding
access-control-allow-origin: *
cf-cache-status: HIT
age: 3010
vary: Accept-Encoding
server: cloudflare
cf-ray: 82e81f317c01b51b-OSL
content-encoding: gzip
X-Firefox-Spdy: h2
ko-fi.com/capratv/?hidefeed=true&widget=true&embed=true&preview=true
200 OK 168 kB URL GET HTTP/2 ko-fi.com/capratv/?hidefeed=true&widget=true&embed=true&preview=true
IP
Requested by https://capratv.blogspot.com/2020/06/hora-de-aventura-t4-e26.html?m=1
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
FingerprintF1:8F:7F:48:97:2C:37:9E:A9:3D:37:D8:8B:81:D9:BD:E6:76:D7:EC
ValiditySat, 29 Apr 2023 00:00:00 GMT - Sun, 28 Apr 2024 23:59:59 GMT
Size 168 kB (167727 bytes)
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /capratv/?hidefeed=true&widget=true&embed=true&preview=true HTTP/1.1
Host: ko-fi.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://capratv.blogspot.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 01 Dec 2023 03:07:46 GMT
content-type: text/html; charset=utf-8
access-control-expose-headers: Request-Context
cache-control: private
vary: Accept-Encoding
arr-disable-session-affinity: True
request-context: appId=cid-v1:02025889-f5bc-454e-88f5-4372da34dffd
x-xss-protection: 1; mode=block
referrer-policy: strict-origin-when-cross-origin
x-permitted-cross-domain-policies: none
x-content-type-options: nosniff
last-modified: Fri, 01 Dec 2023 03:07:41 GMT
cf-cache-status: HIT
server: cloudflare
cf-ray: 82e81f2ebb3fb51b-OSL
content-encoding: gzip
X-Firefox-Spdy: h2
nereserv.com/in/dip?site=native-push&wl=0&event_id=d3eb60bf-2450-4fcf-b5ff-e11391618450&subid=1294464241&sid=2578590229&spot_id=19926&created_at=2023-12-01&timezone=0&ver=8.121.0&is_native=1
200 OK 0 B URL GET HTTP/2 nereserv.com/in/dip?site=native-push&wl=0&event_id=d3eb60bf-2450-4fcf-b5ff-e11391618450&subid=1294464241&sid=2578590229&spot_id=19926&created_at=2023-12-01&timezone=0&ver=8.121.0&is_native=1
IP
ASN #24940 Hetzner Online GmbH
Requested by https://capratv.blogspot.com/2020/06/hora-de-aventura-t4-e26.html?m=1
Certificate IssuerLet's Encrypt
Subjectnotification.tubecup.net
Fingerprint0D:7A:7C:53:DB:15:35:28:E9:E6:2B:90:43:BB:EF:E5:AB:BE:DA:E3
ValidityThu, 09 Nov 2023 09:29:43 GMT - Wed, 07 Feb 2024 09:29:42 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /in/dip?site=native-push&wl=0&event_id=d3eb60bf-2450-4fcf-b5ff-e11391618450&subid=1294464241&sid=2578590229&spot_id=19926&created_at=2023-12-01&timezone=0&ver=8.121.0&is_native=1 HTTP/1.1
Host: nereserv.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://capratv.blogspot.com
DNT: 1
Connection: keep-alive
Referer: https://capratv.blogspot.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx/1.20.1
date: Fri, 01 Dec 2023 03:07:49 GMT
content-length: 0
vary: Origin
cache-control: no-transform, no-cache, no-store, must-revalidate
pragma: no-cache
access-control-allow-origin: *
access-control-allow-headers: Content-Type
access-control-allow-methods: *
X-Firefox-Spdy: h2
823d58dda1.3edcc83467.com/0f1dcb74a9a81520c57b1a8b9cfe9d87/40501?version_name=d
200 OK 151 B URL GET HTTP/2 823d58dda1.3edcc83467.com/0f1dcb74a9a81520c57b1a8b9cfe9d87/40501?version_name=d
IP
ASN #39572 DataWeb Global Group B.V.
Requested by https://capratv.blogspot.com/2020/06/hora-de-aventura-t4-e26.html?m=1
Certificate IssuerLet's Encrypt
Subject823d58dda1.3edcc83467.com
FingerprintC0:7E:B2:A9:0D:D7:B7:DE:9E:50:50:2E:7E:DA:23:DD:2B:F4:7C:6A
ValidityTue, 28 Nov 2023 02:20:37 GMT - Mon, 26 Feb 2024 02:20:36 GMT
File type troff or preprocessor input, ASCII text, with no line terminators
Hash ae2d7dcb4fdf757cc804d1e8819338f7
f0e73abfe50ac3a2e630a3a1704f85dfcc65d909
20c1d3778a71cd1bbd0723053cb2a8dcc71951f5e1ab79a049eb001b976e18ce
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /0f1dcb74a9a81520c57b1a8b9cfe9d87/40501?version_name=d HTTP/1.1
Host: 823d58dda1.3edcc83467.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://capratv.blogspot.com
DNT: 1
Connection: keep-alive
Referer: https://capratv.blogspot.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 01 Dec 2023 03:07:47 GMT
content-type: application/json
content-length: 151
server: nginx/1.18.0
cache-control: max-age=300
expires: Fri, 01 Dec 2023 03:12:47 GMT
x-proxy-cache: HIT
access-control-allow-origin: *
X-Firefox-Spdy: h2
www.google.com/recaptcha/api2/anchor?ar=1&k=6LcdyMoZAAAAAFYwZAM4wZySTWVzr15BuInOVasu&co=aHR0cHM6Ly93d3cuYmxvZ2dlci5jb206NDQz&hl=en&v=-QbJqHfGOUB8nuVRLvzFLVed&size=invisible&cb=ad4n1049f7np
200 OK 61 kB URL GET HTTP/3 www.google.com/recaptcha/api2/anchor?ar=1&k=6LcdyMoZAAAAAFYwZAM4wZySTWVzr15BuInOVasu&co=aHR0cHM6Ly93d3cuYmxvZ2dlci5jb206NDQz&hl=en&v=-QbJqHfGOUB8nuVRLvzFLVed&size=invisible&cb=ad4n1049f7np
IP
Requested by https://www.blogger.com/comment/frame/3626921078112602778?po=2975398124286307187&hl=es&skin=contempo&blogspotRpcToken=2410587
Certificate IssuerGoogle Trust Services LLC
Subject*.google.com
Fingerprint4C:0D:17:8C:F1:30:7C:3A:6F:9B:8E:B4:83:0E:5C:BD:ED:17:3E:95
ValidityMon, 23 Oct 2023 11:18:24 GMT - Mon, 15 Jan 2024 11:18:23 GMT
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (52479)
Hash d65132442a46cbfc26c04f55b8379ec4
dfe62c6cb92818ebc2461e7ae67e21c845e8e45c
c2a179656cb8fdbb058d95e666f0ea92c0922331234aca00f4e4a56d67d091b1
GET /recaptcha/api2/anchor?ar=1&k=6LcdyMoZAAAAAFYwZAM4wZySTWVzr15BuInOVasu&co=aHR0cHM6Ly93d3cuYmxvZ2dlci5jb206NDQz&hl=en&v=-QbJqHfGOUB8nuVRLvzFLVed&size=invisible&cb=ad4n1049f7np HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.blogger.com/
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
content-type: text/html; charset=utf-8
cross-origin-resource-policy: cross-origin
cross-origin-embedder-policy: require-corp
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Fri, 01 Dec 2023 03:07:48 GMT
content-security-policy: script-src 'nonce-SqpjgWmQ3FS7UuMgvdSPgg' 'unsafe-inline' 'strict-dynamic' https: http: 'unsafe-eval';object-src 'none';base-uri 'self';report-uri https://csp.withgoogle.com/csp/recaptcha/1
content-encoding: gzip
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
www.blogblog.com/indie/mspin_black_large.svg
200 OK 6.5 kB URL GET HTTP/3 www.blogblog.com/indie/mspin_black_large.svg
IP
Requested by https://capratv.blogspot.com/2020/06/hora-de-aventura-t4-e26.html?m=1
Certificate IssuerGoogle Trust Services LLC
Subject*.blogger.com
Fingerprint4A:89:9B:E5:F1:54:0E:2D:0A:8E:40:A8:27:DF:2E:6B:7F:74:51:90
ValidityMon, 23 Oct 2023 11:17:52 GMT - Mon, 15 Jan 2024 11:17:51 GMT
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (6965), with no line terminators
Hash d2e028c066fb19dbd6844d7eb93dd36c
a8df8450b13176f5da99b64631c2521a9eeaa211
41644dce5454f94a9db85e5583637f18745e42be80cbfc61ea4c83c208c493c6
GET /indie/mspin_black_large.svg HTTP/1.1
Host: www.blogblog.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://capratv.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
accept-ranges: bytes
content-encoding: gzip
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="blogger-tech"
report-to: {"group":"blogger-tech","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/blogger-tech"}]}
content-length: 870
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 29 Nov 2023 13:05:53 GMT
expires: Wed, 06 Dec 2023 13:05:53 GMT
cache-control: public, max-age=604800
last-modified: Wed, 29 Nov 2023 01:58:19 GMT
content-type: image/svg+xml
vary: Accept-Encoding
age: 136914
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
stackpath.bootstrapcdn.com/bootstrap/4.4.1/js/bootstrap.min.js
200 OK 60 kB URL GET HTTP/2 stackpath.bootstrapcdn.com/bootstrap/4.4.1/js/bootstrap.min.js
IP
Requested by https://capratv.blogspot.com/2020/06/hora-de-aventura-t4-e26.html?m=1
Certificate IssuerGoogle Trust Services LLC
Subjectbootstrapcdn.com
Fingerprint34:BC:91:5F:B9:EC:32:2C:D9:73:C7:88:C3:6C:FB:77:E7:70:8D:04
ValidityThu, 30 Nov 2023 00:15:17 GMT - Wed, 28 Feb 2024 00:15:16 GMT
File type ASCII text, with very long lines (59729)
Hash 61f338f870fcd0ff46362ef109d28533
b3c116c65e6f053aaab45e5619a78ec00271a50f
5aa53525abc5c5200c70b3f6588388f86076cd699284c23cda64e92c372a1548
GET /bootstrap/4.4.1/js/bootstrap.min.js HTTP/1.1
Host: stackpath.bootstrapcdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://capratv.blogspot.com
DNT: 1
Connection: keep-alive
Referer: https://capratv.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 01 Dec 2023 03:07:45 GMT
content-type: application/javascript; charset=utf-8
vary: Accept-Encoding
cdn-pullzone: 252412
cdn-uid: b1941f61-b576-4f40-80de-5677acb38f74
cdn-requestcountrycode: DE
access-control-allow-origin: *
cache-control: public, max-age=31919000
etag: W/"61f338f870fcd0ff46362ef109d28533"
last-modified: Mon, 25 Jan 2021 22:04:09 GMT
cdn-cachedat: 01/04/2023 07:40:19
cdn-proxyver: 1.03
cdn-requestpullcode: 200
cdn-requestpullsuccess: True
cdn-edgestorageid: 1075
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
cdn-status: 200
cdn-requestid: 3f4a15af9716cb5f011f0d857ea1ac11
cdn-cache: HIT
cf-cache-status: HIT
age: 309422
strict-transport-security: max-age=31536000; includeSubDomains; preload
server: cloudflare
cf-ray: 82e81f28efde56ca-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
ko-fi.com/Scripts/backbutton-close-modal.js?v=8
200 OK 1.0 kB URL GET HTTP/2 ko-fi.com/Scripts/backbutton-close-modal.js?v=8
IP
Requested by https://ko-fi.com/capratv/?hidefeed=true&widget=true&embed=true&preview=true
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
FingerprintF1:8F:7F:48:97:2C:37:9E:A9:3D:37:D8:8B:81:D9:BD:E6:76:D7:EC
ValiditySat, 29 Apr 2023 00:00:00 GMT - Sun, 28 Apr 2024 23:59:59 GMT
File type ASCII text, with very long lines (1034), with no line terminators
Hash 7f8b5b7cb412fae4c612c85bf84ea677
ab69da97aac0bf13f1f1cbf668f26aed18ad92b0
4af8ecbf8c209eea2aa67590d857dc2fd6ebde0f6674d2ce371978f5212b59f5
GET /Scripts/backbutton-close-modal.js?v=8 HTTP/1.1
Host: ko-fi.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://ko-fi.com/capratv/?hidefeed=true&widget=true&embed=true&preview=true
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 01 Dec 2023 03:07:47 GMT
content-type: application/x-javascript
cf-bgj: minify
cf-polished: origSize=1603
etag: W/"0f94864a23da1:0"
last-modified: Wed, 29 Nov 2023 21:24:10 GMT
referrer-policy: strict-origin-when-cross-origin
vary: Accept-Encoding
x-content-type-options: nosniff
x-permitted-cross-domain-policies: none
x-xss-protection: 1; mode=block
cf-cache-status: HIT
server: cloudflare
cf-ray: 82e81f318c0fb51b-OSL
content-encoding: gzip
X-Firefox-Spdy: h2
ko-fi.com/Content/HorizontalScrollScripts.js?v=640tv
200 OK 1.9 kB URL GET HTTP/2 ko-fi.com/Content/HorizontalScrollScripts.js?v=640tv
IP
Requested by https://ko-fi.com/capratv/?hidefeed=true&widget=true&embed=true&preview=true
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
FingerprintF1:8F:7F:48:97:2C:37:9E:A9:3D:37:D8:8B:81:D9:BD:E6:76:D7:EC
ValiditySat, 29 Apr 2023 00:00:00 GMT - Sun, 28 Apr 2024 23:59:59 GMT
File type ASCII text, with very long lines (1924), with no line terminators
Hash 0c2ed2cb9abc15251df0e98501ac02bc
e90d641087b488d8ada665e933b320e8fa427646
0a9e3f66d13cea2f9d4b02302d735b2d4ab91ded84397bff09c23b58d8f4688f
GET /Content/HorizontalScrollScripts.js?v=640tv HTTP/1.1
Host: ko-fi.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://ko-fi.com/capratv/?hidefeed=true&widget=true&embed=true&preview=true
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 01 Dec 2023 03:07:47 GMT
content-type: application/x-javascript
cf-bgj: minify
cf-polished: origSize=3364
etag: W/"0f94864a23da1:0"
last-modified: Wed, 29 Nov 2023 21:24:10 GMT
referrer-policy: strict-origin-when-cross-origin
vary: Accept-Encoding
x-content-type-options: nosniff
x-permitted-cross-domain-policies: none
x-xss-protection: 1; mode=block
cf-cache-status: HIT
server: cloudflare
cf-ray: 82e81f31cc33b51b-OSL
content-encoding: gzip
X-Firefox-Spdy: h2
fonts.googleapis.com/css2?display=swap&family=Consolas
200 OK 433 B URL GET HTTP/2 fonts.googleapis.com/css2?display=swap&family=Consolas
IP
Requested by https://capratv.blogspot.com/2020/06/hora-de-aventura-t4-e26.html?m=1
Certificate IssuerGoogle Trust Services LLC
Subjectupload.video.google.com
FingerprintCC:96:E0:52:E0:9B:EA:A9:A0:F8:88:9A:90:20:11:47:61:00:3C:42
ValidityMon, 23 Oct 2023 11:24:07 GMT - Mon, 15 Jan 2024 11:24:06 GMT
File type ASCII text, with very long lines (442), with no line terminators
Hash 9504a538bd36c89d497435f9e2c9b317
d6d0e7e2aeca8bbfd115c5e9a16226a2e4827eea
a36e68f7b7c402048a970ae3eecf923e831bc6482a89ea2edf2c14914a0807ac
GET /css2?display=swap&family=Consolas HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://capratv.blogspot.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Fri, 01 Dec 2023 03:07:45 GMT
date: Fri, 01 Dec 2023 03:07:45 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
storage.ko-fi.com/cdn/scripts/toastr.2.1.3.min.js
200 OK 5.5 kB URL GET HTTP/2 storage.ko-fi.com/cdn/scripts/toastr.2.1.3.min.js
IP
Requested by https://ko-fi.com/capratv/?hidefeed=true&widget=true&embed=true&preview=true
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
FingerprintF1:8F:7F:48:97:2C:37:9E:A9:3D:37:D8:8B:81:D9:BD:E6:76:D7:EC
ValiditySat, 29 Apr 2023 00:00:00 GMT - Sun, 28 Apr 2024 23:59:59 GMT
File type ASCII text, with very long lines (5673), with no line terminators
Hash 1e0699c088b1a1e25b6913d82ff94b7c
cf24200f43088a35e253305598dcfb2ee1a2b333
5f3abac88789169a46131ef429acacd575c3774acdfd20478f4920a63c5b13a8
GET /cdn/scripts/toastr.2.1.3.min.js HTTP/1.1
Host: storage.ko-fi.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://ko-fi.com/
Origin: https://ko-fi.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 01 Dec 2023 03:07:46 GMT
content-type: application/javascript
content-md5: x6exIuOORjGk8ES5+3SDtQ==
last-modified: Wed, 21 Jun 2023 11:51:38 GMT
x-ms-request-id: a6d54972-b01e-001b-02a1-0c36a2000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Type,Last-Modified,ETag,Content-MD5,x-ms-lease-status,x-ms-blob-type,Content-Length,Date,Transfer-Encoding
access-control-allow-origin: *
cf-cache-status: HIT
age: 446
vary: Accept-Encoding
server: cloudflare
cf-ray: 82e81f318c10b51b-OSL
content-encoding: gzip
X-Firefox-Spdy: h2
storage.multstorage.com/log/count.html
200 OK 882 B URL GET HTTP/3 storage.multstorage.com/log/count.html
IP
Requested by https://capratv.blogspot.com/2020/06/hora-de-aventura-t4-e26.html?m=1
Certificate IssuerGoogle Trust Services LLC
Subjectmultstorage.com
Fingerprint1F:90:8C:BB:6B:B0:99:41:3A:23:DF:A4:57:1A:25:0F:88:BA:C6:DE
ValidityMon, 20 Nov 2023 10:07:51 GMT - Sun, 18 Feb 2024 10:07:50 GMT
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (919), with no line terminators
Hash 053b1fe641da8057571d40ebaf1624ab
09b2648b7d08c84621298f0b939cea5170a65022
6606334874a3edb8295831f41d3684433e4553ffe0a72e58c90926e00f39c6a4
GET /log/count.html HTTP/1.1
Host: storage.multstorage.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://capratv.blogspot.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 01 Dec 2023 03:07:48 GMT
content-type: text/html
last-modified: Mon, 18 Sep 2023 14:39:06 GMT
vary: Accept-Encoding
x-request-id: c3d56768a1a5159d56812852ffe8c423
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=6M4GxC5BqHqQz6Z8E3xsB8bY0AwgRnXWBVfxW%2BJZtOvu09oInSA7p3OGOn3uoPc2xR93qRlUUM2zowKLe%2F4P%2BygKO29aspO2W%2FgEkVghfCFfLl7cETbReVroo0L5Atvk2XdoopdIwmhdgg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 82e81f3d9c89b4ff-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
ko-fi.com/Content/profileV2.css?v=640tv
200 OK 51 kB URL GET HTTP/2 ko-fi.com/Content/profileV2.css?v=640tv
IP
Requested by https://ko-fi.com/capratv/?hidefeed=true&widget=true&embed=true&preview=true
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
FingerprintF1:8F:7F:48:97:2C:37:9E:A9:3D:37:D8:8B:81:D9:BD:E6:76:D7:EC
ValiditySat, 29 Apr 2023 00:00:00 GMT - Sun, 28 Apr 2024 23:59:59 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /Content/profileV2.css?v=640tv HTTP/1.1
Host: ko-fi.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://ko-fi.com/capratv/?hidefeed=true&widget=true&embed=true&preview=true
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 01 Dec 2023 03:07:46 GMT
content-type: text/css
cf-bgj: minify
cf-polished: status=cannot_optimize
etag: W/"0f94864a23da1:0"
last-modified: Wed, 29 Nov 2023 21:24:10 GMT
referrer-policy: strict-origin-when-cross-origin
vary: Accept-Encoding
x-content-type-options: nosniff
x-permitted-cross-domain-policies: none
x-xss-protection: 1; mode=block
cf-cache-status: HIT
server: cloudflare
cf-ray: 82e81f315bf1b51b-OSL
content-encoding: gzip
X-Firefox-Spdy: h2
na.nawpush.com/tags/30034?version_name=d
200 OK 3.1 kB URL GET HTTP/2 na.nawpush.com/tags/30034?version_name=d
IP
ASN #39572 DataWeb Global Group B.V.
Requested by https://capratv.blogspot.com/2020/06/hora-de-aventura-t4-e26.html?m=1
Certificate IssuerLet's Encrypt
Subjectna.nawpush.com
Fingerprint73:8E:D9:E1:D0:7F:5B:63:BD:6A:8D:47:8E:04:38:3F:5F:49:91:2B
ValidityWed, 29 Nov 2023 03:00:42 GMT - Tue, 27 Feb 2024 03:00:41 GMT
File type troff or preprocessor input, ASCII text, with very long lines (3544), with no line terminators
Hash 9900b17780242163530dccdbabca79a2
c04e34f4bdd5709138498c442961617c550348d8
8c85174be32d40896de289d276c772276319bbc79e719be5e455e70cbfa09754
GET /tags/30034?version_name=d HTTP/1.1
Host: na.nawpush.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://capratv.blogspot.com
DNT: 1
Connection: keep-alive
Referer: https://capratv.blogspot.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 01 Dec 2023 03:07:47 GMT
content-type: application/json
server: nginx/1.18.0
cache-control: max-age=300, public
x-proxy-cache: EXPIRED
access-control-allow-origin: *
X-Firefox-Spdy: h2
js.wpadmngr.com/static/adManager.js
200 OK 1.7 kB URL GET HTTP/2 js.wpadmngr.com/static/adManager.js
IP
ASN #39572 DataWeb Global Group B.V.
Requested by https://capratv.blogspot.com/2020/06/hora-de-aventura-t4-e26.html?m=1
Certificate IssuerLet's Encrypt
Subjectjs.wpadmngr.com
FingerprintAC:C2:DC:B6:95:8A:52:42:68:CB:0F:19:3F:56:A9:E9:1F:E6:04:8C
ValiditySun, 12 Nov 2023 03:01:15 GMT - Sat, 10 Feb 2024 03:01:14 GMT
File type ASCII text, with very long lines (1807), with no line terminators
Hash fe0817ca53fd3b6a9cb5582a3569ba0c
4fea7bff36102d725bc9071444d0a671dbe9fd72
5d95748247f603f61e59a46f5fa3711d5e50572082fa455e821e38a1b24858b5
GET /static/adManager.js HTTP/1.1
Host: js.wpadmngr.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://capratv.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 01 Dec 2023 03:07:46 GMT
content-type: application/javascript; charset=utf-8
server: nginx/1.18.0
last-modified: Tue, 28 Nov 2023 12:19:41 GMT
etag: W/"6565dadd-681"
content-encoding: gzip
expires: Fri, 01 Dec 2023 03:12:46 GMT
cache-control: max-age=300
x-proxy-cache: HIT
access-control-allow-origin: *
X-Firefox-Spdy: h2
www.blogger.com/comment/frame/3626921078112602778?po=2975398124286307187&hl=es&skin=contempo&blogspotRpcToken=2410587
200 OK 85 kB URL GET HTTP/3 www.blogger.com/comment/frame/3626921078112602778?po=2975398124286307187&hl=es&skin=contempo&blogspotRpcToken=2410587
IP
Requested by https://capratv.blogspot.com/2020/06/hora-de-aventura-t4-e26.html?m=1
Certificate IssuerGoogle Trust Services LLC
Subject*.blogger.com
Fingerprint4A:89:9B:E5:F1:54:0E:2D:0A:8E:40:A8:27:DF:2E:6B:7F:74:51:90
ValidityMon, 23 Oct 2023 11:17:52 GMT - Mon, 15 Jan 2024 11:17:51 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /comment/frame/3626921078112602778?po=2975398124286307187&hl=es&skin=contempo&blogspotRpcToken=2410587 HTTP/1.1
Host: www.blogger.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://capratv.blogspot.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
content-type: text/html; charset=utf-8
vary: Sec-Fetch-Dest, Sec-Fetch-Mode, Sec-Fetch-Site
x-ua-compatible: IE=edge
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Fri, 01 Dec 2023 03:07:46 GMT
p3p: CP="This is not a P3P policy! See g.co/p3phelp for more info."
cross-origin-resource-policy: same-site
content-security-policy: script-src 'nonce-TtdbQoKgL6IVipvDNbZogA' 'unsafe-inline';object-src 'none';base-uri 'self';report-uri /_/BloggerCommentUi/cspreport;worker-src 'self', script-src 'unsafe-inline' 'self' https://apis.google.com https://ssl.gstatic.com https://www.google.com https://www.googletagmanager.com https://www.gstatic.com https://www.google-analytics.com https://www.googleapis.com/appsmarket/v2/installedApps/;report-uri /_/BloggerCommentUi/cspreport/allowlist, require-trusted-types-for 'script';report-uri /_/BloggerCommentUi/cspreport
cross-origin-opener-policy: same-origin
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Model, Sec-CH-UA-WoW64, Sec-CH-UA-Form-Factor, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
permissions-policy: ch-ua-arch=*, ch-ua-bitness=*, ch-ua-full-version=*, ch-ua-full-version-list=*, ch-ua-model=*, ch-ua-wow64=*, ch-ua-form-factor=*, ch-ua-platform=*, ch-ua-platform-version=*
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-content-type-options: nosniff
set-cookie: NID=511=hGcW2ogpsshgeCEE7xGbEy9vq9nIGWqyCT7JFxgNNJsdYx6Z80zcU_DRsoaq8QiyZLEIZ6cRMAGVNrlsxlKE4rNrtXJbQ95NSpgCI2NOlBY542nM6pw4gfB_q5hvir_D2R8hUgFa0BrwRrscbihAMlO4CNFUpxufgO-A62866xA; expires=Sat, 01-Jun-2024 03:07:46 GMT; path=/; domain=.blogger.com; Secure; HttpOnly
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
storage.ko-fi.com/cdn/scripts/jquery-sortable-min.js
200 OK 12 kB URL GET HTTP/2 storage.ko-fi.com/cdn/scripts/jquery-sortable-min.js
IP
Requested by https://ko-fi.com/capratv/?hidefeed=true&widget=true&embed=true&preview=true
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
FingerprintF1:8F:7F:48:97:2C:37:9E:A9:3D:37:D8:8B:81:D9:BD:E6:76:D7:EC
ValiditySat, 29 Apr 2023 00:00:00 GMT - Sun, 28 Apr 2024 23:59:59 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /cdn/scripts/jquery-sortable-min.js HTTP/1.1
Host: storage.ko-fi.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://ko-fi.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 01 Dec 2023 03:07:46 GMT
content-type: application/javascript
content-md5: zLsNVQZjevliZPpyAemGfQ==
last-modified: Sun, 23 Oct 2022 22:20:48 GMT
x-ms-request-id: b58b513a-201e-0051-21ea-0b06c5000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Type,Last-Modified,ETag,Content-MD5,x-ms-lease-status,x-ms-blob-type,Content-Length,Date,Transfer-Encoding
access-control-allow-origin: *
cf-cache-status: HIT
age: 4891
vary: Accept-Encoding
server: cloudflare
cf-ray: 82e81f317c04b51b-OSL
content-encoding: gzip
X-Firefox-Spdy: h2
t.paypal.com/ts?pgrp=muse%3Ageneric%3Aanalytics%3A%3Amerchant&page=muse%3Ageneric%3Aanalytics%3A%3Amerchant%3A%3A%3A&tsrce=tagmanagernodeweb&comp=tagmanagernodeweb&sub_component=analytics&s=ci&fltp=analytics-generic&pt=Buy%20Don%20CapraTV%20a%20Coffee.%20ko-fi.com%2Fcapratv%20-%20Ko-fi%20%E2%9D%A4%EF%B8%8F%20Where%20creators%20get%20support%20from%20fans%20through%20donations%2C%20memberships%2C%20shop%20sales%20and%20more!%20The%20original%20%27Buy%20Me%20a%20Coffee%27%20Page.&dh=1024&dw=1280&bh=0&bw=0&cd=24&sh=1024&sw=1280&v=NA&pl=pdf&rosetta_language=en-US%2Cen&e=im&t=1701400073613&g=0&completeurl=https%3A%2F%2Fko-fi.com%2Fcapratv%2F%3Fhidefeed%3Dtrue%26widget%3Dtrue%26embed%3Dtrue%26preview%3Dtrue&ru=https%3A%2F%2Fko-fi.com%2Fcapratv&sinfo=%7B%22partners%22%3A%7B%22ecwid%22%3A%7B%7D%2C%22bigCommerce%22%3A%7B%7D%2C%22shopify%22%3A%7B%7D%2C%22wix%22%3A%7B%7D%2C%22bigCartel%22%3A%7B%7D%7D%7D&disableSetCookie=true
200 OK 42 B URL GET HTTP/2 t.paypal.com/ts?pgrp=muse%3Ageneric%3Aanalytics%3A%3Amerchant&page=muse%3Ageneric%3Aanalytics%3A%3Amerchant%3A%3A%3A&tsrce=tagmanagernodeweb&comp=tagmanagernodeweb&sub_component=analytics&s=ci&fltp=analytics-generic&pt=Buy%20Don%20CapraTV%20a%20Coffee.%20ko-fi.com%2Fcapratv%20-%20Ko-fi%20%E2%9D%A4%EF%B8%8F%20Where%20creators%20get%20support%20from%20fans%20through%20donations%2C%20memberships%2C%20shop%20sales%20and%20more!%20The%20original%20%27Buy%20Me%20a%20Coffee%27%20Page.&dh=1024&dw=1280&bh=0&bw=0&cd=24&sh=1024&sw=1280&v=NA&pl=pdf&rosetta_language=en-US%2Cen&e=im&t=1701400073613&g=0&completeurl=https%3A%2F%2Fko-fi.com%2Fcapratv%2F%3Fhidefeed%3Dtrue%26widget%3Dtrue%26embed%3Dtrue%26preview%3Dtrue&ru=https%3A%2F%2Fko-fi.com%2Fcapratv&sinfo=%7B%22partners%22%3A%7B%22ecwid%22%3A%7B%7D%2C%22bigCommerce%22%3A%7B%7D%2C%22shopify%22%3A%7B%7D%2C%22wix%22%3A%7B%7D%2C%22bigCartel%22%3A%7B%7D%7D%7D&disableSetCookie=true
IP
Requested by https://ko-fi.com/capratv/?hidefeed=true&widget=true&embed=true&preview=true
Certificate IssuerDigiCert Inc
Subjectt.paypal.com
Fingerprint2C:19:5A:DA:E0:E2:30:EA:33:0F:20:D7:46:DC:98:1B:3C:DD:E8:F5
ValidityThu, 21 Sep 2023 00:00:00 GMT - Mon, 21 Oct 2024 23:59:59 GMT
File type GIF image data, version 89a, 1 x 1\012- data
Hash b4682377ddfbe4e7dabfddb2e543e842
328e472721a93345801ed5533240eac2d1f8498c
6d8ba81d1b60a18707722a1f2b62dad48a6acced95a1933f49a68b5016620b93
GET /ts?pgrp=muse%3Ageneric%3Aanalytics%3A%3Amerchant&page=muse%3Ageneric%3Aanalytics%3A%3Amerchant%3A%3A%3A&tsrce=tagmanagernodeweb&comp=tagmanagernodeweb&sub_component=analytics&s=ci&fltp=analytics-generic&pt=Buy%20Don%20CapraTV%20a%20Coffee.%20ko-fi.com%2Fcapratv%20-%20Ko-fi%20%E2%9D%A4%EF%B8%8F%20Where%20creators%20get%20support%20from%20fans%20through%20donations%2C%20memberships%2C%20shop%20sales%20and%20more!%20The%20original%20%27Buy%20Me%20a%20Coffee%27%20Page.&dh=1024&dw=1280&bh=0&bw=0&cd=24&sh=1024&sw=1280&v=NA&pl=pdf&rosetta_language=en-US%2Cen&e=im&t=1701400073613&g=0&completeurl=https%3A%2F%2Fko-fi.com%2Fcapratv%2F%3Fhidefeed%3Dtrue%26widget%3Dtrue%26embed%3Dtrue%26preview%3Dtrue&ru=https%3A%2F%2Fko-fi.com%2Fcapratv&sinfo=%7B%22partners%22%3A%7B%22ecwid%22%3A%7B%7D%2C%22bigCommerce%22%3A%7B%7D%2C%22shopify%22%3A%7B%7D%2C%22wix%22%3A%7B%7D%2C%22bigCartel%22%3A%7B%7D%7D%7D&disableSetCookie=true HTTP/1.1
Host: t.paypal.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://ko-fi.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
correlation-id: 8fa02e4210114
cache-control: max-age=0, no-cache, no-store, must-revalidate
content-type: image/gif
expires: Fri, 01 Dec 2023 03:07:49 GMT
p3p: CP="CAO IND OUR SAM UNI STA COR COM"
paypal-debug-id: 8fa02e4210114
pragma: no-cache
traceparent: 00-00000000000000000008fa02e4210114-22c00b8bcdf065c6-01
accept-ranges: bytes
via: 1.1 varnish, 1.1 varnish
date: Fri, 01 Dec 2023 03:07:49 GMT
strict-transport-security: max-age=63072000; includeSubDomains; preload
x-served-by: cache-fra-eddf8230043-FRA, cache-bma1636-BMA
x-cache: MISS, MISS
x-cache-hits: 0, 0
x-timer: S1701400069.379271,VS0,VE166
vary: Accept-Encoding
server-timing: content-encoding;desc="",x-cdn;desc="fastly"
timing-allow-origin: *
X-Firefox-Spdy: h2
storage.ko-fi.com/cdn/widget/Widget_2.js
200 OK 3.1 kB URL GET HTTP/2 storage.ko-fi.com/cdn/widget/Widget_2.js
IP
Requested by https://capratv.blogspot.com/2020/06/hora-de-aventura-t4-e26.html?m=1
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
FingerprintF1:8F:7F:48:97:2C:37:9E:A9:3D:37:D8:8B:81:D9:BD:E6:76:D7:EC
ValiditySat, 29 Apr 2023 00:00:00 GMT - Sun, 28 Apr 2024 23:59:59 GMT
File type HTML document, ASCII text, with very long lines (3142), with no line terminators
Hash 84dd54056474d14426d05b6ccfef2e29
d7919ff205b542f81a1d7bea9d1310b78141658b
b5bfb95f9444942f50254096ef47ae29723fdfcf39669b945aa2adffa7da6951
GET /cdn/widget/Widget_2.js HTTP/1.1
Host: storage.ko-fi.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://capratv.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 01 Dec 2023 03:07:45 GMT
content-type: application/javascript
access-control-allow-origin: *
access-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Type,Last-Modified,ETag,Content-MD5,x-ms-lease-status,x-ms-blob-type,Content-Length,Date,Transfer-Encoding
cf-bgj: minify
cf-polished: origSize=3628
content-md5: OrvIUQF0Mg8EkV9ejBdWSw==
last-modified: Mon, 24 Oct 2022 16:33:26 GMT
x-ms-blob-type: BlockBlob
x-ms-lease-status: unlocked
x-ms-request-id: a45caea3-001e-0020-2d15-1674fc000000
x-ms-version: 2009-09-19
cf-cache-status: HIT
age: 888
vary: Accept-Encoding
server: cloudflare
cf-ray: 82e81f29fa37b51b-OSL
content-encoding: gzip
X-Firefox-Spdy: h2
storage.ko-fi.com/cdn/scripts/spin.min.js?v=1
0 B URL GET storage.ko-fi.com/cdn/scripts/spin.min.js?v=1
IP
Requested by https://ko-fi.com/capratv/?hidefeed=true&widget=true&embed=true&preview=true
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
FingerprintF1:8F:7F:48:97:2C:37:9E:A9:3D:37:D8:8B:81:D9:BD:E6:76:D7:EC
ValiditySat, 29 Apr 2023 00:00:00 GMT - Sun, 28 Apr 2024 23:59:59 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /cdn/scripts/spin.min.js?v=1 HTTP/1.1
Host: storage.ko-fi.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://ko-fi.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 01 Dec 2023 03:07:46 GMT
content-type: text/plain; charset=utf-8
content-md5: kgDDN4K7RqLja+sTk6Z5fQ==
last-modified: Sun, 23 Oct 2022 22:21:51 GMT
x-ms-request-id: eee2dd0a-301e-0005-18bf-502341000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Type,Last-Modified,ETag,Content-MD5,x-ms-lease-status,x-ms-blob-type,Content-Length,Date,Transfer-Encoding
access-control-allow-origin: *
cf-cache-status: HIT
age: 2615
vary: Accept-Encoding
server: cloudflare
cf-ray: 82e81f31cc35b51b-OSL
content-encoding: gzip
X-Firefox-Spdy: h2
ko-fi.com/Scripts/shared.js?v=236mo
200 OK 8.7 kB URL GET HTTP/2 ko-fi.com/Scripts/shared.js?v=236mo
IP
Requested by https://ko-fi.com/capratv/?hidefeed=true&widget=true&embed=true&preview=true
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
FingerprintF1:8F:7F:48:97:2C:37:9E:A9:3D:37:D8:8B:81:D9:BD:E6:76:D7:EC
ValiditySat, 29 Apr 2023 00:00:00 GMT - Sun, 28 Apr 2024 23:59:59 GMT
File type ASCII text, with very long lines (8958), with no line terminators
Hash 42e82a7796590039d344971f0a8d85d0
98ba3aa3f600f83a364683c8f9cb925c509ee5ef
cf393e686731791bf7adbdd79be15b7a1f6530d9c885f57c271c8134a74934a6
GET /Scripts/shared.js?v=236mo HTTP/1.1
Host: ko-fi.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://ko-fi.com/capratv/?hidefeed=true&widget=true&embed=true&preview=true
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 01 Dec 2023 03:07:46 GMT
content-type: application/x-javascript
cf-bgj: minify
cf-polished: origSize=13743
etag: W/"0f94864a23da1:0"
last-modified: Wed, 29 Nov 2023 21:24:10 GMT
referrer-policy: strict-origin-when-cross-origin
vary: Accept-Encoding
x-content-type-options: nosniff
x-permitted-cross-domain-policies: none
x-xss-protection: 1; mode=block
cf-cache-status: HIT
server: cloudflare
cf-ray: 82e81f317c07b51b-OSL
content-encoding: gzip
X-Firefox-Spdy: h2
ko-fi.com/Scripts/loadmore/shared-layout/loadmore-initialise.js?v=236mo
200 OK 1.5 kB URL GET HTTP/2 ko-fi.com/Scripts/loadmore/shared-layout/loadmore-initialise.js?v=236mo
IP
Requested by https://ko-fi.com/capratv/?hidefeed=true&widget=true&embed=true&preview=true
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
FingerprintF1:8F:7F:48:97:2C:37:9E:A9:3D:37:D8:8B:81:D9:BD:E6:76:D7:EC
ValiditySat, 29 Apr 2023 00:00:00 GMT - Sun, 28 Apr 2024 23:59:59 GMT
File type ASCII text, with very long lines (1654), with no line terminators
Hash 0c8da51bd56022ef7d76adb1161923c7
ba21e44e62ba35a1c8c2031883bb2d5efcef1be9
e83afc00f8c63efe88bb3ede9a484a735a838cfd09822da6652109e5b6012331
GET /Scripts/loadmore/shared-layout/loadmore-initialise.js?v=236mo HTTP/1.1
Host: ko-fi.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://ko-fi.com/capratv/?hidefeed=true&widget=true&embed=true&preview=true
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 01 Dec 2023 03:07:47 GMT
content-type: application/x-javascript
cf-bgj: minify
cf-polished: origSize=2601
etag: W/"0f94864a23da1:0"
last-modified: Wed, 29 Nov 2023 21:24:10 GMT
referrer-policy: strict-origin-when-cross-origin
vary: Accept-Encoding
x-content-type-options: nosniff
x-permitted-cross-domain-policies: none
x-xss-protection: 1; mode=block
cf-cache-status: HIT
server: cloudflare
cf-ray: 82e81f31cc2fb51b-OSL
content-encoding: gzip
X-Firefox-Spdy: h2
storage.ko-fi.com/cdn/scripts/respond.min.js?sv=2019-02-02
200 OK 4.9 kB URL GET HTTP/2 storage.ko-fi.com/cdn/scripts/respond.min.js?sv=2019-02-02
IP
Requested by https://ko-fi.com/capratv/?hidefeed=true&widget=true&embed=true&preview=true
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
FingerprintF1:8F:7F:48:97:2C:37:9E:A9:3D:37:D8:8B:81:D9:BD:E6:76:D7:EC
ValiditySat, 29 Apr 2023 00:00:00 GMT - Sun, 28 Apr 2024 23:59:59 GMT
File type HTML document, ASCII text, with very long lines (4993), with no line terminators
Hash 4b2097910fc63408536c21f392f225e8
3345c3ed2c132bb2594b93bf43737e431d769798
73fc8a94ef1512e9237e8064530499c6c782218ea042561767351290e77a64d5
GET /cdn/scripts/respond.min.js?sv=2019-02-02 HTTP/1.1
Host: storage.ko-fi.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://ko-fi.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 01 Dec 2023 03:07:46 GMT
content-type: text/javascript
last-modified: Sun, 23 Oct 2022 22:21:51 GMT
x-ms-request-id: f997b79a-c01e-005b-05d2-131f4c000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Type,Last-Modified,ETag,x-ms-lease-status,x-ms-blob-type,Content-Length,Date,Transfer-Encoding
access-control-allow-origin: *
cf-cache-status: HIT
age: 4890
vary: Accept-Encoding
server: cloudflare
cf-ray: 82e81f318c0eb51b-OSL
content-encoding: gzip
X-Firefox-Spdy: h2
js.wpadmngr.com/static/adManager.m.js
200 OK 166 kB URL GET HTTP/2 js.wpadmngr.com/static/adManager.m.js
IP
ASN #39572 DataWeb Global Group B.V.
Requested by https://capratv.blogspot.com/2020/06/hora-de-aventura-t4-e26.html?m=1
Certificate IssuerLet's Encrypt
Subjectjs.wpadmngr.com
FingerprintAC:C2:DC:B6:95:8A:52:42:68:CB:0F:19:3F:56:A9:E9:1F:E6:04:8C
ValiditySun, 12 Nov 2023 03:01:15 GMT - Sat, 10 Feb 2024 03:01:14 GMT
Size 166 kB (166101 bytes)
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /static/adManager.m.js HTTP/1.1
Host: js.wpadmngr.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://capratv.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 01 Dec 2023 03:07:46 GMT
content-type: application/javascript; charset=utf-8
server: nginx/1.18.0
last-modified: Tue, 28 Nov 2023 12:01:41 GMT
etag: W/"6565d6a5-288d5"
content-encoding: gzip
expires: Fri, 01 Dec 2023 03:12:46 GMT
cache-control: max-age=300
x-proxy-cache: HIT
access-control-allow-origin: *
X-Firefox-Spdy: h2
www.google.com/recaptcha/api2/webworker.js?hl=en&v=-QbJqHfGOUB8nuVRLvzFLVed
200 OK 102 B URL GET HTTP/3 www.google.com/recaptcha/api2/webworker.js?hl=en&v=-QbJqHfGOUB8nuVRLvzFLVed
IP
Requested by https://www.google.com/recaptcha/api2/anchor?ar=1&k=6LcdyMoZAAAAAFYwZAM4wZySTWVzr15BuInOVasu&co=aHR0cHM6Ly93d3cuYmxvZ2dlci5jb206NDQz&hl=en&v=-QbJqHfGOUB8nuVRLvzFLVed&size=invisible&cb=ad4n1049f7np
Certificate IssuerGoogle Trust Services LLC
Subject*.google.com
Fingerprint4C:0D:17:8C:F1:30:7C:3A:6F:9B:8E:B4:83:0E:5C:BD:ED:17:3E:95
ValidityMon, 23 Oct 2023 11:18:24 GMT - Mon, 15 Jan 2024 11:18:23 GMT
File type ASCII text, with no line terminators
Hash b581f6e6ac7eb4d572233bdd384918f8
12a90cd14cfea2286982801538560f638670eaff
b62f36160407c81030404ab242125afd42fa0da6626ef11e5f406dda12acf144
GET /recaptcha/api2/webworker.js?hl=en&v=-QbJqHfGOUB8nuVRLvzFLVed HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.google.com/recaptcha/api2/anchor?ar=1&k=6LcdyMoZAAAAAFYwZAM4wZySTWVzr15BuInOVasu&co=aHR0cHM6Ly93d3cuYmxvZ2dlci5jb206NDQz&hl=en&v=-QbJqHfGOUB8nuVRLvzFLVed&size=invisible&cb=ad4n1049f7np
Sec-Fetch-Dest: worker
Sec-Fetch-Mode: same-origin
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
content-type: text/javascript; charset=utf-8
cross-origin-embedder-policy: require-corp
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
expires: Fri, 01 Dec 2023 03:07:48 GMT
date: Fri, 01 Dec 2023 03:07:48 GMT
cache-control: private, max-age=300
content-encoding: gzip
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
content-security-policy: frame-ancestors 'self'
x-xss-protection: 1; mode=block
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
fonts.googleapis.com/css2?family=Nunito:wght@400;700;800&display=swap
200 OK 5.3 kB URL GET HTTP/3 fonts.googleapis.com/css2?family=Nunito:wght@400;700;800&display=swap
IP
Requested by https://ko-fi.com/capratv/?hidefeed=true&widget=true&embed=true&preview=true
Certificate IssuerGoogle Trust Services LLC
Subjectupload.video.google.com
FingerprintCC:96:E0:52:E0:9B:EA:A9:A0:F8:88:9A:90:20:11:47:61:00:3C:42
ValidityMon, 23 Oct 2023 11:24:07 GMT - Mon, 15 Jan 2024 11:24:06 GMT
File type ASCII text, with very long lines (5427), with no line terminators
Hash f87dd76d9576467498349095af997701
2ae5ec90380e9d2ef8d786c3b77d0b14916b3197
e4e3e00a7977ca6cdeb9727231cb416256d4ae35a02e86a849241c2398b5d6bf
GET /css2?family=Nunito:wght@400;700;800&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://ko-fi.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Fri, 01 Dec 2023 03:07:46 GMT
date: Fri, 01 Dec 2023 03:07:46 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
storage.ko-fi.com/cdn/scripts/lodash.4.17.15.min.js
200 OK 73 kB URL GET HTTP/2 storage.ko-fi.com/cdn/scripts/lodash.4.17.15.min.js
IP
Requested by https://ko-fi.com/capratv/?hidefeed=true&widget=true&embed=true&preview=true
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
FingerprintF1:8F:7F:48:97:2C:37:9E:A9:3D:37:D8:8B:81:D9:BD:E6:76:D7:EC
ValiditySat, 29 Apr 2023 00:00:00 GMT - Sun, 28 Apr 2024 23:59:59 GMT
File type ASCII text, with very long lines (4233), with CRLF line terminators
Hash 87cf2d40c252c726754999900e932fe6
16a4e286ae21ac86b77b50cf879930dd0568380d
9f73c0015652859ca111e91691ddc2be33b28a82f1423f1e4268ab506d1c9477
GET /cdn/scripts/lodash.4.17.15.min.js HTTP/1.1
Host: storage.ko-fi.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://ko-fi.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 01 Dec 2023 03:07:46 GMT
content-type: application/javascript
content-md5: h88tQMJSxyZ1SZmQDpMv5g==
last-modified: Wed, 21 Jun 2023 11:51:38 GMT
x-ms-request-id: 41557218-601e-0012-1b22-162c2c000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Type,Last-Modified,ETag,Content-MD5,x-ms-lease-status,x-ms-blob-type,Content-Length,Date,Transfer-Encoding
access-control-allow-origin: *
cf-cache-status: HIT
age: 447
vary: Accept-Encoding
server: cloudflare
cf-ray: 82e81f315bf4b51b-OSL
content-encoding: gzip
X-Firefox-Spdy: h2
ko-fi.com/lib/lite-youtube-embed-master/lite-yt-embed.css?v=640tv
200 OK 2.1 kB URL GET HTTP/2 ko-fi.com/lib/lite-youtube-embed-master/lite-yt-embed.css?v=640tv
IP
Requested by https://ko-fi.com/capratv/?hidefeed=true&widget=true&embed=true&preview=true
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
FingerprintF1:8F:7F:48:97:2C:37:9E:A9:3D:37:D8:8B:81:D9:BD:E6:76:D7:EC
ValiditySat, 29 Apr 2023 00:00:00 GMT - Sun, 28 Apr 2024 23:59:59 GMT
File type ASCII text, with very long lines (2065), with no line terminators
Hash d80127d874a0b696442f0b4fd16d0aa0
ff4ef98bd4394329c4b8ecfcf04cab008c55c3bc
5309c2530a622e3f48e420d832d1abb460ad69ebb07c9395504c0a3d4d6b486c
GET /lib/lite-youtube-embed-master/lite-yt-embed.css?v=640tv HTTP/1.1
Host: ko-fi.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://ko-fi.com/capratv/?hidefeed=true&widget=true&embed=true&preview=true
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 01 Dec 2023 03:07:46 GMT
content-type: text/css
cf-bgj: minify
cf-polished: origSize=2587
etag: W/"0f94864a23da1:0"
last-modified: Wed, 29 Nov 2023 21:24:10 GMT
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
x-permitted-cross-domain-policies: none
x-xss-protection: 1; mode=block
cf-cache-status: HIT
vary: Accept-Encoding
server: cloudflare
cf-ray: 82e81f315bf5b51b-OSL
content-encoding: gzip
X-Firefox-Spdy: h2
ko-fi.com/Scripts/CustomGoogleTagManagerEvents.js?v=8
200 OK 1.7 kB URL GET HTTP/2 ko-fi.com/Scripts/CustomGoogleTagManagerEvents.js?v=8
IP
Requested by https://ko-fi.com/capratv/?hidefeed=true&widget=true&embed=true&preview=true
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
FingerprintF1:8F:7F:48:97:2C:37:9E:A9:3D:37:D8:8B:81:D9:BD:E6:76:D7:EC
ValiditySat, 29 Apr 2023 00:00:00 GMT - Sun, 28 Apr 2024 23:59:59 GMT
File type ASCII text, with very long lines (1796), with no line terminators
Hash b333647bfde63feed280ea1b3c32ab6f
b345e5174bb3b9623cd35f675fe6eaa487527675
ed8355e3411b1673339b5d0d447ce5656b16789400be6a6a04a87d3ed3e72c68
GET /Scripts/CustomGoogleTagManagerEvents.js?v=8 HTTP/1.1
Host: ko-fi.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://ko-fi.com/capratv/?hidefeed=true&widget=true&embed=true&preview=true
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 01 Dec 2023 03:07:47 GMT
content-type: application/x-javascript
cf-bgj: minify
cf-polished: origSize=3203
etag: W/"0f94864a23da1:0"
last-modified: Wed, 29 Nov 2023 21:24:10 GMT
referrer-policy: strict-origin-when-cross-origin
vary: Accept-Encoding
x-content-type-options: nosniff
x-permitted-cross-domain-policies: none
x-xss-protection: 1; mode=block
cf-cache-status: HIT
server: cloudflare
cf-ray: 82e81f317c09b51b-OSL
content-encoding: gzip
X-Firefox-Spdy: h2
storage.ko-fi.com/cdn/scripts/vue.2.6.11.min.js
200 OK 94 kB URL GET HTTP/2 storage.ko-fi.com/cdn/scripts/vue.2.6.11.min.js
IP
Requested by https://ko-fi.com/capratv/?hidefeed=true&widget=true&embed=true&preview=true
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
FingerprintF1:8F:7F:48:97:2C:37:9E:A9:3D:37:D8:8B:81:D9:BD:E6:76:D7:EC
ValiditySat, 29 Apr 2023 00:00:00 GMT - Sun, 28 Apr 2024 23:59:59 GMT
File type ASCII text, with very long lines (65444), with CRLF line terminators
Hash b1731c619c5cfe8f99fadd639a3fcc30
ba477520535a45747598570546d484598eb3ef49
a410460285968ae56f3748e57fd09c6da63c17934a9f59cc7f9a6542f5cf2d3b
GET /cdn/scripts/vue.2.6.11.min.js HTTP/1.1
Host: storage.ko-fi.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://ko-fi.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 01 Dec 2023 03:07:46 GMT
content-type: application/javascript
content-md5: sXMcYZxc/o+Z+t1jmj/MMA==
last-modified: Wed, 21 Jun 2023 11:51:37 GMT
x-ms-request-id: 5cc8f282-e01e-0021-14f9-0b7501000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Type,Last-Modified,ETag,Content-MD5,x-ms-lease-status,x-ms-blob-type,Content-Length,Date,Transfer-Encoding
access-control-allow-origin: *
cf-cache-status: HIT
age: 6189
vary: Accept-Encoding
server: cloudflare
cf-ray: 82e81f315bf3b51b-OSL
content-encoding: gzip
X-Firefox-Spdy: h2
storage.ko-fi.com/cdn/fontawesome/subset-6.4/css/all.min.css
200 OK 64 kB URL GET HTTP/2 storage.ko-fi.com/cdn/fontawesome/subset-6.4/css/all.min.css
IP
Requested by https://ko-fi.com/capratv/?hidefeed=true&widget=true&embed=true&preview=true
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
FingerprintF1:8F:7F:48:97:2C:37:9E:A9:3D:37:D8:8B:81:D9:BD:E6:76:D7:EC
ValiditySat, 29 Apr 2023 00:00:00 GMT - Sun, 28 Apr 2024 23:59:59 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /cdn/fontawesome/subset-6.4/css/all.min.css HTTP/1.1
Host: storage.ko-fi.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://ko-fi.com/
Origin: https://ko-fi.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 01 Dec 2023 03:07:46 GMT
content-type: text/css
content-md5: xFn3mli+KhGNfMdDwQ/vhg==
last-modified: Thu, 23 Nov 2023 04:18:06 GMT
x-ms-request-id: df19add1-801e-0018-1b90-2235a5000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Type,Last-Modified,ETag,Content-MD5,x-ms-lease-status,x-ms-blob-type,Content-Length,Date,Transfer-Encoding
access-control-allow-origin: *
cf-cache-status: HIT
age: 6189
vary: Accept-Encoding
server: cloudflare
cf-ray: 82e81f315be9b51b-OSL
content-encoding: gzip
X-Firefox-Spdy: h2
storage.ko-fi.com/cdn/scripts/jquery-validate/1.15.1/jquery.validate.min.js
200 OK 23 kB URL GET HTTP/2 storage.ko-fi.com/cdn/scripts/jquery-validate/1.15.1/jquery.validate.min.js
IP
Requested by https://ko-fi.com/capratv/?hidefeed=true&widget=true&embed=true&preview=true
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
FingerprintF1:8F:7F:48:97:2C:37:9E:A9:3D:37:D8:8B:81:D9:BD:E6:76:D7:EC
ValiditySat, 29 Apr 2023 00:00:00 GMT - Sun, 28 Apr 2024 23:59:59 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /cdn/scripts/jquery-validate/1.15.1/jquery.validate.min.js HTTP/1.1
Host: storage.ko-fi.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://ko-fi.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 01 Dec 2023 03:07:46 GMT
content-type: application/javascript
content-md5: RBKaOLU74PoHrzeHRg6LdQ==
last-modified: Sun, 23 Oct 2022 22:21:51 GMT
x-ms-request-id: 6e9e2568-301e-0023-4c76-1677fb000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Type,Last-Modified,ETag,Content-MD5,x-ms-lease-status,x-ms-blob-type,Content-Length,Date,Transfer-Encoding
access-control-allow-origin: *
cf-cache-status: HIT
age: 3010
vary: Accept-Encoding
server: cloudflare
cf-ray: 82e81f317c05b51b-OSL
content-encoding: gzip
X-Firefox-Spdy: h2
19cdb461a5.32f689042e.com/in/show/?tag_ab=d&site_id=3119926&adblock=0&testab=0&auction_host=&mm=0&yc=0&render_type=mq&pr=&banner_width=300&banner_height=100&user_keywords=&device_theme=light&v2_track=0&v2=0&conditions=dch_ip,tz_offset&ssp=3964&page=https%3A%2F%2Fcapratv.blogspot.com%2F2020%2F06%2Fhora-de-aventura-t4-e26.html%3Fm%3D1&refdom=capratv.blogspot.com&auction_time=1701400069&subid=1294464241&sid=2578590229&tcid=0&ver=8.121.0&ver_c=&spot_id=19926&utm_source=&utm_medium=&utm_campaign=&utm_content=&created_at=2023-12-01&iabcat=IAB1-5&keywords=&user_fp=12762865360534798893&score=69.6864683292163&durl=https%3A%2F%2Fkts.dasdaily.com%2Fin%2F1546%2F%3Fad_sub%3D1294464241%26spot_id%3D19926%26is_adult%3D0%26p%3Dhttps%253A%252F%252Fcapratv.blogspot.com%252F2020%252F06%252Fhora-de-aventura-t4-e26.html%253Fm%253D1%26idzone%3D0%26sid%3D1885&is_cpm=0&resp_type=&crid=&crtid=8fc5a3949d58ed66158a5da3a7b48b19&url=http%3A%2F%2Fc.srvpcn.com%2Fclick%3Fid%3Dclkks1n2ld3c73b9nkb0%26e%3D6216e250-3650-4ad8-abda-a1a07279a672%26px%3D45%26z%3D1&icons=_7savXeaSPVJWr_gusIPinTyvvIeUdAhgwF1eJkSWBE1HQFUgq8APUIuc66NgMXGAwC3k-wD7-VakTTpsEMoDo5JEJ5MtdVGg13uMaMaDqAvsWaX3iH0lYlJlFaxnD4rxzl83Bab1DQ7h09I3BGIVcpSHrIkEiu9AHm08P2NnOff3xXYcg&ext_cid=0&px_id=3119926&min_cpm=0.016393179323182665&out_id=0&campaign_type=lq-pop&aid=161&cid=11653&uniq=b39b3dbdfad10001b809d1a542e2ca6f8a457a9d305b2cb00f276ae5851bd7b6&mid=5470037818405706790&skin_id=82&vertical_id=0&skin_test=0&from_cache=0&ecpm=0.02986514220512733&cpm=0&verify_hash=cb29c9d3fccf2e11e54dd05824dac081&is_native=2&real_bid=0.000869&original_bid_usd=0.000869&original_bid=0.000869&exp=1440&placement_type_id=0&ua_mismatch=Mozilla%2F5.0%20%28Windows%20NT%2010.0%3B%20Win64%3B%20x64%3B%20rv%3A105.0%29%20Gecko%2F20100101%20Firefox%2F105.0&ip_mismatch=91.90.42.154&geo=NO&carrier=-&label_ids=83,89,95,108,0,76&need_redirect_show=0&applied_features=test_skins,stage-skins-settings&show_count=1&expiration_timestamp=1701486469&image_url=https%3A%2F%2Fstatic.bookmsg.com%2Fcreatives%2FUS%2FUS_34c3a6403004486b593fb6a3428d7a2748437f4f_icon.webp&site=native-push-mainstream&price=0.000869&hostname=auc-inpage-hz-5-a&auc_type=1&pop_type=1&site_id64=&interest_vertical_ids=&mo=&ve=&timezone_olson=UTC&topics=&historical_keywords=&pop_cpc=0.000000869&pattern1=0&pattern2=0&pattern3=0&pattern4=0&pattern5=0&format=multiOS-view-t_r-body&mlf=1&st=0.06&cpa=e454918f-391c-4743-b2d9-09d77ff792b8
200 OK 0 B URL GET HTTP/2 19cdb461a5.32f689042e.com/in/show/?tag_ab=d&site_id=3119926&adblock=0&testab=0&auction_host=&mm=0&yc=0&render_type=mq&pr=&banner_width=300&banner_height=100&user_keywords=&device_theme=light&v2_track=0&v2=0&conditions=dch_ip,tz_offset&ssp=3964&page=https%3A%2F%2Fcapratv.blogspot.com%2F2020%2F06%2Fhora-de-aventura-t4-e26.html%3Fm%3D1&refdom=capratv.blogspot.com&auction_time=1701400069&subid=1294464241&sid=2578590229&tcid=0&ver=8.121.0&ver_c=&spot_id=19926&utm_source=&utm_medium=&utm_campaign=&utm_content=&created_at=2023-12-01&iabcat=IAB1-5&keywords=&user_fp=12762865360534798893&score=69.6864683292163&durl=https%3A%2F%2Fkts.dasdaily.com%2Fin%2F1546%2F%3Fad_sub%3D1294464241%26spot_id%3D19926%26is_adult%3D0%26p%3Dhttps%253A%252F%252Fcapratv.blogspot.com%252F2020%252F06%252Fhora-de-aventura-t4-e26.html%253Fm%253D1%26idzone%3D0%26sid%3D1885&is_cpm=0&resp_type=&crid=&crtid=8fc5a3949d58ed66158a5da3a7b48b19&url=http%3A%2F%2Fc.srvpcn.com%2Fclick%3Fid%3Dclkks1n2ld3c73b9nkb0%26e%3D6216e250-3650-4ad8-abda-a1a07279a672%26px%3D45%26z%3D1&icons=_7savXeaSPVJWr_gusIPinTyvvIeUdAhgwF1eJkSWBE1HQFUgq8APUIuc66NgMXGAwC3k-wD7-VakTTpsEMoDo5JEJ5MtdVGg13uMaMaDqAvsWaX3iH0lYlJlFaxnD4rxzl83Bab1DQ7h09I3BGIVcpSHrIkEiu9AHm08P2NnOff3xXYcg&ext_cid=0&px_id=3119926&min_cpm=0.016393179323182665&out_id=0&campaign_type=lq-pop&aid=161&cid=11653&uniq=b39b3dbdfad10001b809d1a542e2ca6f8a457a9d305b2cb00f276ae5851bd7b6&mid=5470037818405706790&skin_id=82&vertical_id=0&skin_test=0&from_cache=0&ecpm=0.02986514220512733&cpm=0&verify_hash=cb29c9d3fccf2e11e54dd05824dac081&is_native=2&real_bid=0.000869&original_bid_usd=0.000869&original_bid=0.000869&exp=1440&placement_type_id=0&ua_mismatch=Mozilla%2F5.0%20%28Windows%20NT%2010.0%3B%20Win64%3B%20x64%3B%20rv%3A105.0%29%20Gecko%2F20100101%20Firefox%2F105.0&ip_mismatch=91.90.42.154&geo=NO&carrier=-&label_ids=83,89,95,108,0,76&need_redirect_show=0&applied_features=test_skins,stage-skins-settings&show_count=1&expiration_timestamp=1701486469&image_url=https%3A%2F%2Fstatic.bookmsg.com%2Fcreatives%2FUS%2FUS_34c3a6403004486b593fb6a3428d7a2748437f4f_icon.webp&site=native-push-mainstream&price=0.000869&hostname=auc-inpage-hz-5-a&auc_type=1&pop_type=1&site_id64=&interest_vertical_ids=&mo=&ve=&timezone_olson=UTC&topics=&historical_keywords=&pop_cpc=0.000000869&pattern1=0&pattern2=0&pattern3=0&pattern4=0&pattern5=0&format=multiOS-view-t_r-body&mlf=1&st=0.06&cpa=e454918f-391c-4743-b2d9-09d77ff792b8
IP
ASN #24940 Hetzner Online GmbH
Requested by https://capratv.blogspot.com/2020/06/hora-de-aventura-t4-e26.html?m=1
Certificate IssuerLet's Encrypt
Subject32f689042e.com
FingerprintCF:AD:49:7F:99:84:22:76:B2:5A:E3:FA:65:CE:A1:08:4D:BE:58:40
ValidityTue, 28 Nov 2023 03:01:49 GMT - Mon, 26 Feb 2024 03:01:48 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /in/show/?tag_ab=d&site_id=3119926&adblock=0&testab=0&auction_host=&mm=0&yc=0&render_type=mq&pr=&banner_width=300&banner_height=100&user_keywords=&device_theme=light&v2_track=0&v2=0&conditions=dch_ip,tz_offset&ssp=3964&page=https%3A%2F%2Fcapratv.blogspot.com%2F2020%2F06%2Fhora-de-aventura-t4-e26.html%3Fm%3D1&refdom=capratv.blogspot.com&auction_time=1701400069&subid=1294464241&sid=2578590229&tcid=0&ver=8.121.0&ver_c=&spot_id=19926&utm_source=&utm_medium=&utm_campaign=&utm_content=&created_at=2023-12-01&iabcat=IAB1-5&keywords=&user_fp=12762865360534798893&score=69.6864683292163&durl=https%3A%2F%2Fkts.dasdaily.com%2Fin%2F1546%2F%3Fad_sub%3D1294464241%26spot_id%3D19926%26is_adult%3D0%26p%3Dhttps%253A%252F%252Fcapratv.blogspot.com%252F2020%252F06%252Fhora-de-aventura-t4-e26.html%253Fm%253D1%26idzone%3D0%26sid%3D1885&is_cpm=0&resp_type=&crid=&crtid=8fc5a3949d58ed66158a5da3a7b48b19&url=http%3A%2F%2Fc.srvpcn.com%2Fclick%3Fid%3Dclkks1n2ld3c73b9nkb0%26e%3D6216e250-3650-4ad8-abda-a1a07279a672%26px%3D45%26z%3D1&icons=_7savXeaSPVJWr_gusIPinTyvvIeUdAhgwF1eJkSWBE1HQFUgq8APUIuc66NgMXGAwC3k-wD7-VakTTpsEMoDo5JEJ5MtdVGg13uMaMaDqAvsWaX3iH0lYlJlFaxnD4rxzl83Bab1DQ7h09I3BGIVcpSHrIkEiu9AHm08P2NnOff3xXYcg&ext_cid=0&px_id=3119926&min_cpm=0.016393179323182665&out_id=0&campaign_type=lq-pop&aid=161&cid=11653&uniq=b39b3dbdfad10001b809d1a542e2ca6f8a457a9d305b2cb00f276ae5851bd7b6&mid=5470037818405706790&skin_id=82&vertical_id=0&skin_test=0&from_cache=0&ecpm=0.02986514220512733&cpm=0&verify_hash=cb29c9d3fccf2e11e54dd05824dac081&is_native=2&real_bid=0.000869&original_bid_usd=0.000869&original_bid=0.000869&exp=1440&placement_type_id=0&ua_mismatch=Mozilla%2F5.0%20%28Windows%20NT%2010.0%3B%20Win64%3B%20x64%3B%20rv%3A105.0%29%20Gecko%2F20100101%20Firefox%2F105.0&ip_mismatch=91.90.42.154&geo=NO&carrier=-&label_ids=83,89,95,108,0,76&need_redirect_show=0&applied_features=test_skins,stage-skins-settings&show_count=1&expiration_timestamp=1701486469&image_url=https%3A%2F%2Fstatic.bookmsg.com%2Fcreatives%2FUS%2FUS_34c3a6403004486b593fb6a3428d7a2748437f4f_icon.webp&site=native-push-mainstream&price=0.000869&hostname=auc-inpage-hz-5-a&auc_type=1&pop_type=1&site_id64=&interest_vertical_ids=&mo=&ve=&timezone_olson=UTC&topics=&historical_keywords=&pop_cpc=0.000000869&pattern1=0&pattern2=0&pattern3=0&pattern4=0&pattern5=0&format=multiOS-view-t_r-body&mlf=1&st=0.06&cpa=e454918f-391c-4743-b2d9-09d77ff792b8 HTTP/1.1
Host: 19cdb461a5.32f689042e.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://capratv.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx/1.20.1
date: Fri, 01 Dec 2023 03:07:50 GMT
content-length: 0
vary: Origin
cache-control: no-transform, no-cache, no-store, must-revalidate
pragma: no-cache
access-control-allow-origin: *
access-control-allow-headers: Content-Type
access-control-allow-methods: *
X-Firefox-Spdy: h2
ko-fi.com/Scripts/modules/gallery-item-view.js?v=236mo
200 OK 5.3 kB URL GET HTTP/2 ko-fi.com/Scripts/modules/gallery-item-view.js?v=236mo
IP
Requested by https://ko-fi.com/capratv/?hidefeed=true&widget=true&embed=true&preview=true
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
FingerprintF1:8F:7F:48:97:2C:37:9E:A9:3D:37:D8:8B:81:D9:BD:E6:76:D7:EC
ValiditySat, 29 Apr 2023 00:00:00 GMT - Sun, 28 Apr 2024 23:59:59 GMT
File type troff or preprocessor input, ASCII text, with very long lines (5439), with no line terminators
Hash b3d8bcbbd5fe27050735b50e3a71abe7
51ec6dd19c7a788b2036c865218f93d95ac86569
fa058d97e871ed7321b2bdca327c09c7a005372b35939b994a46da91a6b4788b
GET /Scripts/modules/gallery-item-view.js?v=236mo HTTP/1.1
Host: ko-fi.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://ko-fi.com/capratv/?hidefeed=true&widget=true&embed=true&preview=true
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 01 Dec 2023 03:07:47 GMT
content-type: application/x-javascript
cf-bgj: minify
cf-polished: origSize=11046
etag: W/"0f94864a23da1:0"
last-modified: Wed, 29 Nov 2023 21:24:10 GMT
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
x-permitted-cross-domain-policies: none
x-xss-protection: 1; mode=block
cf-cache-status: HIT
vary: Accept-Encoding
server: cloudflare
cf-ray: 82e81f31bc29b51b-OSL
content-encoding: gzip
X-Firefox-Spdy: h2
storage.ko-fi.com/cdn/scripts/jquery.unobtrusive-ajax.min.js
200 OK 3.8 kB URL GET HTTP/2 storage.ko-fi.com/cdn/scripts/jquery.unobtrusive-ajax.min.js
IP
Requested by https://ko-fi.com/capratv/?hidefeed=true&widget=true&embed=true&preview=true
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
FingerprintF1:8F:7F:48:97:2C:37:9E:A9:3D:37:D8:8B:81:D9:BD:E6:76:D7:EC
ValiditySat, 29 Apr 2023 00:00:00 GMT - Sun, 28 Apr 2024 23:59:59 GMT
File type ASCII text, with very long lines (3967), with no line terminators
Hash 69dc62de6d2e1dd92be7e7e0edfcc542
344b5f3ca7c9c622f38efd75a81b8fcd08741d5c
1149c5a4fad34a4719729698e6dbd83aba3daf22c528498f1a0cd1336bad6a99
GET /cdn/scripts/jquery.unobtrusive-ajax.min.js HTTP/1.1
Host: storage.ko-fi.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://ko-fi.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 01 Dec 2023 03:07:46 GMT
content-type: application/javascript
content-md5: beuh7IuiH/NF+6Wy7GBbTg==
last-modified: Sun, 23 Oct 2022 22:21:42 GMT
x-ms-request-id: 54780ff4-801e-0013-0f00-132dd1000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Type,Last-Modified,ETag,Content-MD5,x-ms-lease-status,x-ms-blob-type,Content-Length,Date,Transfer-Encoding
access-control-allow-origin: *
cf-cache-status: HIT
age: 2615
vary: Accept-Encoding
server: cloudflare
cf-ray: 82e81f317c02b51b-OSL
content-encoding: gzip
X-Firefox-Spdy: h2
capratv.blogspot.com/favicon.ico
200 OK 1.2 kB URL GET HTTP/3 capratv.blogspot.com/favicon.ico
IP
Requested by https://capratv.blogspot.com/2020/06/hora-de-aventura-t4-e26.html?m=1
Certificate IssuerGoogle Trust Services LLC
Subjectmisc-sni.blogspot.com
Fingerprint07:E2:99:33:66:25:16:0A:1D:C3:C7:18:D8:82:4A:F0:37:40:E1:5B
ValidityMon, 23 Oct 2023 11:23:28 GMT - Mon, 15 Jan 2024 11:23:27 GMT
File type MS Windows icon resource - 1 icon, 16x16, 32 bits/pixel\012- data
Hash 22519336aca5977c760fabd18ea5e740
fae97910e6cea83e2fec3f108f2bba89526e0eb3
134e5bcda26a12625c45f012ec1056ed604d0ec40eed28592899af38050231ef
GET /favicon.ico HTTP/1.1
Host: capratv.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://capratv.blogspot.com/2020/06/hora-de-aventura-t4-e26.html?m=1
Cookie: _ga_8G9B8ZGWQK=GS1.1.1701400070.1.0.1701400070.0.0.0; _ga=GA1.1.703130953.1701400071
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
content-type: image/x-icon; charset=UTF-8
expires: Fri, 01 Dec 2023 03:07:47 GMT
date: Fri, 01 Dec 2023 03:07:47 GMT
cache-control: private, max-age=86400
last-modified: Fri, 01 Dec 2023 01:51:32 GMT
etag: W/"61e8ee024baf81c390db5c26852dad3fff921ba5e7c6b9c14858d6a829a2af85"
content-encoding: gzip
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
content-length: 392
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
storage.ko-fi.com/cdn/scripts/jquery-validation-unobtrusive/3.2.6/jquery.validate.unobtrusive.min.js
200 OK 5.3 kB URL GET HTTP/2 storage.ko-fi.com/cdn/scripts/jquery-validation-unobtrusive/3.2.6/jquery.validate.unobtrusive.min.js
IP
Requested by https://ko-fi.com/capratv/?hidefeed=true&widget=true&embed=true&preview=true
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
FingerprintF1:8F:7F:48:97:2C:37:9E:A9:3D:37:D8:8B:81:D9:BD:E6:76:D7:EC
ValiditySat, 29 Apr 2023 00:00:00 GMT - Sun, 28 Apr 2024 23:59:59 GMT
File type ASCII text, with very long lines (5511), with no line terminators
Hash 6a6565d255a0e99b8b2938bfbd686724
57117ad12f9dfa64f4912f4dd8aa98164bfbc3fa
d69ea34334f7452f79bd8c2d8c68603b3760a5cfeef7fdb477a7b924d26fe264
GET /cdn/scripts/jquery-validation-unobtrusive/3.2.6/jquery.validate.unobtrusive.min.js HTTP/1.1
Host: storage.ko-fi.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://ko-fi.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 01 Dec 2023 03:07:46 GMT
content-type: application/javascript
content-md5: ZaQbKNkH4sv5/b3yz0M3vw==
last-modified: Sun, 23 Oct 2022 22:21:51 GMT
x-ms-request-id: bd284e20-101e-0059-6552-121db6000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Type,Last-Modified,ETag,Content-MD5,x-ms-lease-status,x-ms-blob-type,Content-Length,Date,Transfer-Encoding
access-control-allow-origin: *
cf-cache-status: HIT
age: 446
vary: Accept-Encoding
server: cloudflare
cf-ray: 82e81f317c06b51b-OSL
content-encoding: gzip
X-Firefox-Spdy: h2
storage.multstorage.com/log/count.html
200 OK 882 B URL GET HTTP/2 storage.multstorage.com/log/count.html
IP
Requested by https://capratv.blogspot.com/2020/06/hora-de-aventura-t4-e26.html?m=1
Certificate IssuerGoogle Trust Services LLC
Subjectmultstorage.com
Fingerprint1F:90:8C:BB:6B:B0:99:41:3A:23:DF:A4:57:1A:25:0F:88:BA:C6:DE
ValidityMon, 20 Nov 2023 10:07:51 GMT - Sun, 18 Feb 2024 10:07:50 GMT
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (919), with no line terminators
Hash 053b1fe641da8057571d40ebaf1624ab
09b2648b7d08c84621298f0b939cea5170a65022
6606334874a3edb8295831f41d3684433e4553ffe0a72e58c90926e00f39c6a4
GET /log/count.html HTTP/1.1
Host: storage.multstorage.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://capratv.blogspot.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 01 Dec 2023 03:07:48 GMT
content-type: text/html
last-modified: Mon, 18 Sep 2023 14:39:06 GMT
vary: Accept-Encoding
x-request-id: 2d465722ebb5beeae8a430667e57d167
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=kTQXxsckrJrqQUxJq%2Fa0ByL9ZAnfsaj2fLOYtFNBowrh3w9CHCwStXuon5w2KyxNXTgTRUskoERDCfkXP28EKN4Cku4ngiezDWanEDQCebGT1ctIemuoXrOOG3zf4sMXtqnNGXCEq3mP3g%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 82e81f3c4834b511-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
2.bp.blogspot.com/-4ChfN5q5D6s/Xa-KR2WZloI/AAAAAAAAAR8/j9K7y-8CEkIkz3y7WVTqcoHrYTD5iL3ZACK4BGAYYCw/w1600/5wAQLjY.png
200 OK 210 kB URL GET HTTP/2 2.bp.blogspot.com/-4ChfN5q5D6s/Xa-KR2WZloI/AAAAAAAAAR8/j9K7y-8CEkIkz3y7WVTqcoHrYTD5iL3ZACK4BGAYYCw/w1600/5wAQLjY.png
IP
Requested by https://capratv.blogspot.com/2020/06/hora-de-aventura-t4-e26.html?m=1
Certificate IssuerGoogle Trust Services LLC
Subjectmisc-sni.blogspot.com
Fingerprint07:E2:99:33:66:25:16:0A:1D:C3:C7:18:D8:82:4A:F0:37:40:E1:5B
ValidityMon, 23 Oct 2023 11:23:28 GMT - Mon, 15 Jan 2024 11:23:27 GMT
File type PNG image data, 851 x 315, 8-bit/color RGB, non-interlaced\012- data
Size 210 kB (209869 bytes)
Hash 85659f16728c2a494c21b52b28b9e403
2f2909a3aa84734b08744c82bd52c1f0883a2362
83d3306b29ed449018f3dac9abf2cc2371d33b22fc024b7dc07937cc5a5cd1b9
GET /-4ChfN5q5D6s/Xa-KR2WZloI/AAAAAAAAAR8/j9K7y-8CEkIkz3y7WVTqcoHrYTD5iL3ZACK4BGAYYCw/w1600/5wAQLjY.png HTTP/1.1
Host: 2.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://capratv.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: image/png
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
access-control-expose-headers: Content-Length
etag: "v120"
expires: Sat, 02 Dec 2023 03:07:46 GMT
cache-control: public, max-age=86400, no-transform
content-disposition: inline;filename="5wAQLjY.png"
x-content-type-options: nosniff
date: Fri, 01 Dec 2023 03:07:46 GMT
server: fife
content-length: 209869
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
storage.ko-fi.com/cdn/kofi_stroke_cup.svg
200 OK 865 B URL GET HTTP/2 storage.ko-fi.com/cdn/kofi_stroke_cup.svg
IP
Requested by https://ko-fi.com/capratv/?hidefeed=true&widget=true&embed=true&preview=true
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
FingerprintF1:8F:7F:48:97:2C:37:9E:A9:3D:37:D8:8B:81:D9:BD:E6:76:D7:EC
ValiditySat, 29 Apr 2023 00:00:00 GMT - Sun, 28 Apr 2024 23:59:59 GMT
File type SVG Scalable Vector Graphics image\012- HTML document text\012- HTML document, ASCII text, with very long lines (891), with no line terminators
Hash c5bb3b4ed8081ecaf4d027f9c72f7799
4bab97ccdf62e26b8d7cfb96eaad702b98278b39
40ed796cb098861b7bcc1b8c201a44b551003514aae0252294ddfefd4489d2dc
GET /cdn/kofi_stroke_cup.svg HTTP/1.1
Host: storage.ko-fi.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://ko-fi.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 01 Dec 2023 03:07:46 GMT
content-type: image/svg+xml
content-md5: LKIvaQFeuMb8PTIQiGCnVg==
last-modified: Sun, 23 Oct 2022 22:21:42 GMT
x-ms-request-id: 1a3872f1-a01e-0040-1757-1531de000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Type,Last-Modified,ETag,Content-MD5,x-ms-lease-status,x-ms-blob-type,Content-Length,Date,Transfer-Encoding
access-control-allow-origin: *
cf-cache-status: HIT
vary: Accept-Encoding
server: cloudflare
cf-ray: 82e81f316bfdb51b-OSL
content-encoding: gzip
X-Firefox-Spdy: h2
storage.ko-fi.com/cdn/scripts/bootstrap.min.js?sv=2019-02-02
200 OK 28 kB URL GET HTTP/2 storage.ko-fi.com/cdn/scripts/bootstrap.min.js?sv=2019-02-02
IP
Requested by https://ko-fi.com/capratv/?hidefeed=true&widget=true&embed=true&preview=true
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
FingerprintF1:8F:7F:48:97:2C:37:9E:A9:3D:37:D8:8B:81:D9:BD:E6:76:D7:EC
ValiditySat, 29 Apr 2023 00:00:00 GMT - Sun, 28 Apr 2024 23:59:59 GMT
File type ASCII text, with very long lines (27605)
Hash ace7e36241b07a25f57f1efa44685949
2a3b220f41f572a09fcd70d431bb210ee8dd2828
77784729456d5b714cbf56ab897545efe66fc38f7cdc45ef04d9143c477913df
GET /cdn/scripts/bootstrap.min.js?sv=2019-02-02 HTTP/1.1
Host: storage.ko-fi.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://ko-fi.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 01 Dec 2023 03:07:46 GMT
content-type: text/javascript
last-modified: Sun, 23 Oct 2022 22:21:42 GMT
x-ms-request-id: 84f81d4d-901e-0048-6a42-122aad000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Type,Last-Modified,ETag,x-ms-lease-status,x-ms-blob-type,Content-Length,Date,Transfer-Encoding
access-control-allow-origin: *
cf-cache-status: HIT
age: 3010
vary: Accept-Encoding
server: cloudflare
cf-ray: 82e81f318c0ab51b-OSL
content-encoding: gzip
X-Firefox-Spdy: h2
static.cloudflareinsights.com/beacon.min.js/v84a3a4012de94ce1a686ba8c167c359c1696973893317
200 OK 20 kB URL GET HTTP/2 static.cloudflareinsights.com/beacon.min.js/v84a3a4012de94ce1a686ba8c167c359c1696973893317
IP
Requested by https://ko-fi.com/capratv/?hidefeed=true&widget=true&embed=true&preview=true
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint89:79:35:ED:04:A2:CA:50:F7:9A:B8:FE:DF:A5:0C:B1:F2:E6:DD:E8
ValidityMon, 10 Apr 2023 00:00:00 GMT - Tue, 09 Apr 2024 23:59:59 GMT
File type ASCII text, with very long lines (19986), with no line terminators
Hash dd1d068fdb5fe90b6c05a5b3940e088c
0d96f9df8772633a9df4c81cf323a4ef8998ba59
6153d13804862b0fc1c016cf1129f34cb7c6185f2cf4bf1a3a862eecdab50101
GET /beacon.min.js/v84a3a4012de94ce1a686ba8c167c359c1696973893317 HTTP/1.1
Host: static.cloudflareinsights.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://ko-fi.com/
Origin: https://ko-fi.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 01 Dec 2023 03:07:46 GMT
content-type: text/javascript;charset=UTF-8
access-control-allow-origin: *
cache-control: public, max-age=86400
etag: W/"2023.10.0"
last-modified: Tue, 10 Oct 2023 21:38:13 GMT
cross-origin-resource-policy: cross-origin
vary: Accept-Encoding
server: cloudflare
cf-ray: 82e81f31bcac1bfe-OSL
content-encoding: gzip
X-Firefox-Spdy: h2
www.google.com/recaptcha/api2/webworker.js?hl=en&v=-QbJqHfGOUB8nuVRLvzFLVed
200 OK 102 B URL GET HTTP/3 www.google.com/recaptcha/api2/webworker.js?hl=en&v=-QbJqHfGOUB8nuVRLvzFLVed
IP
Requested by https://www.google.com/recaptcha/api2/anchor?ar=1&k=6LeIm9UUAAAAAI9HoqMbV3xi0okAxcoNNumTv6QU&co=aHR0cHM6Ly9rby1maS5jb206NDQz&hl=en&v=-QbJqHfGOUB8nuVRLvzFLVed&size=invisible&cb=c0fhsa4h9wpn
Certificate IssuerGoogle Trust Services LLC
Subject*.google.com
Fingerprint4C:0D:17:8C:F1:30:7C:3A:6F:9B:8E:B4:83:0E:5C:BD:ED:17:3E:95
ValidityMon, 23 Oct 2023 11:18:24 GMT - Mon, 15 Jan 2024 11:18:23 GMT
File type ASCII text, with no line terminators
Hash b581f6e6ac7eb4d572233bdd384918f8
12a90cd14cfea2286982801538560f638670eaff
b62f36160407c81030404ab242125afd42fa0da6626ef11e5f406dda12acf144
GET /recaptcha/api2/webworker.js?hl=en&v=-QbJqHfGOUB8nuVRLvzFLVed HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.google.com/recaptcha/api2/anchor?ar=1&k=6LeIm9UUAAAAAI9HoqMbV3xi0okAxcoNNumTv6QU&co=aHR0cHM6Ly9rby1maS5jb206NDQz&hl=en&v=-QbJqHfGOUB8nuVRLvzFLVed&size=invisible&cb=c0fhsa4h9wpn
Sec-Fetch-Dest: worker
Sec-Fetch-Mode: same-origin
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
content-type: text/javascript; charset=utf-8
cross-origin-embedder-policy: require-corp
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
expires: Fri, 01 Dec 2023 03:07:49 GMT
date: Fri, 01 Dec 2023 03:07:49 GMT
cache-control: private, max-age=300
content-encoding: gzip
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
content-security-policy: frame-ancestors 'self'
x-xss-protection: 1; mode=block
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
ko-fi.com/Scripts/sections/profile.js?v=236mo
200 OK 466 B URL GET HTTP/2 ko-fi.com/Scripts/sections/profile.js?v=236mo
IP
Requested by https://ko-fi.com/capratv/?hidefeed=true&widget=true&embed=true&preview=true
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
FingerprintF1:8F:7F:48:97:2C:37:9E:A9:3D:37:D8:8B:81:D9:BD:E6:76:D7:EC
ValiditySat, 29 Apr 2023 00:00:00 GMT - Sun, 28 Apr 2024 23:59:59 GMT
File type troff or preprocessor input, ASCII text, with very long lines (476), with no line terminators
Hash ab47d41bba4b97f0d34721bd865c223d
1278ab60775179ab766f0840dca8e068d0bec43b
022277eea9f08c1b30095cb9d63d8e8a32a134efb37d67348f9d74e31a14608d
GET /Scripts/sections/profile.js?v=236mo HTTP/1.1
Host: ko-fi.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://ko-fi.com/capratv/?hidefeed=true&widget=true&embed=true&preview=true
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 01 Dec 2023 03:07:46 GMT
content-type: application/x-javascript
cf-bgj: minify
cf-polished: origSize=781
etag: W/"0f94864a23da1:0"
last-modified: Wed, 29 Nov 2023 21:24:10 GMT
referrer-policy: strict-origin-when-cross-origin
vary: Accept-Encoding
x-content-type-options: nosniff
x-permitted-cross-domain-policies: none
x-xss-protection: 1; mode=block
cf-cache-status: HIT
server: cloudflare
cf-ray: 82e81f315befb51b-OSL
content-encoding: gzip
X-Firefox-Spdy: h2
storage.ko-fi.com/cdn/loading.svg
200 OK 579 B URL GET HTTP/2 storage.ko-fi.com/cdn/loading.svg
IP
Requested by https://ko-fi.com/capratv/?hidefeed=true&widget=true&embed=true&preview=true
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
FingerprintF1:8F:7F:48:97:2C:37:9E:A9:3D:37:D8:8B:81:D9:BD:E6:76:D7:EC
ValiditySat, 29 Apr 2023 00:00:00 GMT - Sun, 28 Apr 2024 23:59:59 GMT
File type SVG Scalable Vector Graphics image\012- XML document, ASCII text, with very long lines (631), with no line terminators
Hash 46bba50f5d5404debc7a7ee4c0c1c260
4f958da40bc4ae87e977f085e6f27da06f78cafc
24082f05d81b1699f418be891ae45f829c08baa9a669f97a2814e26dfe3bc7e1
GET /cdn/loading.svg HTTP/1.1
Host: storage.ko-fi.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://ko-fi.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 01 Dec 2023 03:07:46 GMT
content-type: image/svg+xml
content-md5: cE+f6ga+XSnmqRTc3dp4Pg==
last-modified: Sun, 23 Oct 2022 22:21:51 GMT
x-ms-request-id: 550701c0-601e-0012-668d-142c2c000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Type,Last-Modified,ETag,Content-MD5,x-ms-lease-status,x-ms-blob-type,Content-Length,Date,Transfer-Encoding
access-control-allow-origin: *
cf-cache-status: HIT
age: 6189
vary: Accept-Encoding
server: cloudflare
cf-ray: 82e81f316bf6b51b-OSL
content-encoding: gzip
X-Firefox-Spdy: h2
142.250.74.65
94.130.198.6
104.18.10.207
13.69.106.211
0.0.0.0