www.descifrado.com/wp-content/uploads/2017/10/logo-descifrado-blanco-544x180.png
200 OK 22 kB URL GET HTTP/3 www.descifrado.com/wp-content/uploads/2017/10/logo-descifrado-blanco-544x180.png
IP
Requested by https://www.descifrado.com/2023/08/17/medios-venezolanos-denuncian-suplantacion-de-identidad-en-whatsapp/robo-whatsappwebp/
Certificate IssuerLet's Encrypt
Subjectdescifrado.com
Fingerprint98:00:4E:1C:E2:4D:B1:D9:CC:AE:94:0F:8E:34:D9:92:9E:E2:9F:95
ValidityWed, 22 Nov 2023 16:50:38 GMT - Tue, 20 Feb 2024 16:50:37 GMT
File type PNG image data, 544 x 180, 8-bit/color RGB, non-interlaced
- data
Hash 492002ad71128a91d150f62303e89c50
f0405e597b494b062a9d25e48230a5de7dde4075
933fca8b831ce3483ef98ff251120a8e848364b54d7c17fc7ca4cf93c44cde52
GET /wp-content/uploads/2017/10/logo-descifrado-blanco-544x180.png HTTP/1.1
Host: www.descifrado.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.descifrado.com/2023/08/17/medios-venezolanos-denuncian-suplantacion-de-identidad-en-whatsapp/robo-whatsappwebp/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Mon, 11 Dec 2023 16:45:35 GMT
content-type: image/png
content-length: 22525
last-modified: Wed, 22 Apr 2020 14:34:44 GMT
etag: "5ea05604-57fd"
x-powered-by: WordOps
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
referrer-policy: strict-origin-when-cross-origin
access-control-allow-origin: *
cache-control: max-age=315360000
expires: Thu, 31 Dec 2037 23:55:55 GMT
vary: Accept-Encoding
cf-cache-status: HIT
age: 1225129
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=lWtduzepcIcaMNOpQhansXDsKcc%2F8LXODb4vWPhEZ55eII9ZQ%2BVhfXNF6KufgtdM6wLNumLkQ80mQ4XvLuiOT4saPC2zvBqr3ihQ8j%2FSXgswpnZl5hSYle17XhzPqx27SG7f8eo%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 833f32ebd80fb4f4-OSL
alt-svc: h3=":443"; ma=86400
www.descifrado.com/wp-content/uploads/2023/12/3517a6b7-16ca-4520-b3b2-cd570d2f91be-100x70.jpeg
200 OK 2.3 kB URL GET HTTP/3 www.descifrado.com/wp-content/uploads/2023/12/3517a6b7-16ca-4520-b3b2-cd570d2f91be-100x70.jpeg
IP
Requested by https://www.descifrado.com/2023/08/17/medios-venezolanos-denuncian-suplantacion-de-identidad-en-whatsapp/robo-whatsappwebp/
Certificate IssuerLet's Encrypt
Subjectdescifrado.com
Fingerprint98:00:4E:1C:E2:4D:B1:D9:CC:AE:94:0F:8E:34:D9:92:9E:E2:9F:95
ValidityWed, 22 Nov 2023 16:50:38 GMT - Tue, 20 Feb 2024 16:50:37 GMT
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, baseline, precision 8, 100x70, components 3
- data
Hash 22cbddc7ee9506b397aaeca4f1db9603
bafce3e3e61baaded19f8989d651ca30909b956e
67e562cb154abc66adc63df41a77008b2d7488b63edd8429386e63d979b9048c
GET /wp-content/uploads/2023/12/3517a6b7-16ca-4520-b3b2-cd570d2f91be-100x70.jpeg HTTP/1.1
Host: www.descifrado.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.descifrado.com/2023/08/17/medios-venezolanos-denuncian-suplantacion-de-identidad-en-whatsapp/robo-whatsappwebp/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Mon, 11 Dec 2023 16:45:35 GMT
content-type: image/jpeg
content-length: 2291
last-modified: Mon, 11 Dec 2023 15:23:03 GMT
etag: "65772957-8f3"
x-powered-by: WordOps
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
referrer-policy: strict-origin-when-cross-origin
access-control-allow-origin: *
cache-control: max-age=315360000
expires: Thu, 31 Dec 2037 23:55:55 GMT
vary: Accept-Encoding
cf-cache-status: HIT
age: 4531
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=UkbHldh2BVwSH70SYbUDvCsEbf47aJiYB7SkJefO9akfhhOGkOx26wlbLfUnVPhsnF16OQ1v41gh3e%2FKU5GgBS4elhDaV2SsB%2FbaF8IL37iZo87%2FFAsRZjhXqOtaujLW4Y6Tkww%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 833f32ebe820b4f4-OSL
alt-svc: h3=":443"; ma=86400
www.descifrado.com/wp-content/uploads/2023/12/Transporte--100x70.jpg
200 OK 4.5 kB URL GET HTTP/3 www.descifrado.com/wp-content/uploads/2023/12/Transporte--100x70.jpg
IP
Requested by https://www.descifrado.com/2023/08/17/medios-venezolanos-denuncian-suplantacion-de-identidad-en-whatsapp/robo-whatsappwebp/
Certificate IssuerLet's Encrypt
Subjectdescifrado.com
Fingerprint98:00:4E:1C:E2:4D:B1:D9:CC:AE:94:0F:8E:34:D9:92:9E:E2:9F:95
ValidityWed, 22 Nov 2023 16:50:38 GMT - Tue, 20 Feb 2024 16:50:37 GMT
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 100x70, components 3
- data
Hash f378f2e134eae077387deab9746cd05b
8f34d130080eb21bc21972d269551b9ad127f759
f4bc47891ab9bc0d7290a005951f5664d1d14fd7dc5b898be0e8d2a3ee3755b0
GET /wp-content/uploads/2023/12/Transporte--100x70.jpg HTTP/1.1
Host: www.descifrado.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.descifrado.com/2023/08/17/medios-venezolanos-denuncian-suplantacion-de-identidad-en-whatsapp/robo-whatsappwebp/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Mon, 11 Dec 2023 16:45:35 GMT
content-type: image/jpeg
content-length: 4544
last-modified: Mon, 11 Dec 2023 12:41:53 GMT
etag: "65770391-11c0"
x-powered-by: WordOps
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
referrer-policy: strict-origin-when-cross-origin
access-control-allow-origin: *
cache-control: max-age=315360000
expires: Thu, 31 Dec 2037 23:55:55 GMT
vary: Accept-Encoding
cf-cache-status: HIT
age: 14211
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=CaW97Z6uCPBUSdq5L15IiPtpT60I0exKMeZYhHa%2FUfSYskdSilPtLaXKd2h8qAiGMz9j7Biqahd8gx3N6Y1GW%2FFJtrkDBKuNOIFKrbqafPMRxwiacMeZGs%2BJzi6hD2zgoPuNwik%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 833f32ebe821b4f4-OSL
alt-svc: h3=":443"; ma=86400
www.descifrado.com/wp-content/uploads/2023/12/Presidente-de-Argentina-100x70.jpg
200 OK 2.9 kB URL GET HTTP/3 www.descifrado.com/wp-content/uploads/2023/12/Presidente-de-Argentina-100x70.jpg
IP
Requested by https://www.descifrado.com/2023/08/17/medios-venezolanos-denuncian-suplantacion-de-identidad-en-whatsapp/robo-whatsappwebp/
Certificate IssuerLet's Encrypt
Subjectdescifrado.com
Fingerprint98:00:4E:1C:E2:4D:B1:D9:CC:AE:94:0F:8E:34:D9:92:9E:E2:9F:95
ValidityWed, 22 Nov 2023 16:50:38 GMT - Tue, 20 Feb 2024 16:50:37 GMT
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 100x70, components 3
- data
Hash bce92b0aabb5c075703d9eb7b7ae7f4c
72e37ac63bb754b5e1dfdd0338c9ab17331ee0d7
fc467d1ac3708a6092f6da2cd69436d0eef87af69678b0ce06f26eae96097420
GET /wp-content/uploads/2023/12/Presidente-de-Argentina-100x70.jpg HTTP/1.1
Host: www.descifrado.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.descifrado.com/2023/08/17/medios-venezolanos-denuncian-suplantacion-de-identidad-en-whatsapp/robo-whatsappwebp/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Mon, 11 Dec 2023 16:45:35 GMT
content-type: image/jpeg
content-length: 2892
last-modified: Sun, 10 Dec 2023 22:32:56 GMT
etag: "65763c98-b4c"
x-powered-by: WordOps
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
referrer-policy: strict-origin-when-cross-origin
access-control-allow-origin: *
cache-control: max-age=315360000
expires: Thu, 31 Dec 2037 23:55:55 GMT
vary: Accept-Encoding
cf-cache-status: HIT
age: 63953
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=y459o483SJDZW6YxkaX8z4c5WFcsJygAtTRwGFXDw7vdD8kqFoaWKfkMvUDG5iRCDUd8hF9tCZvlWxevt1NAEzObR%2FMWIGJ6WDaY9%2BRHvvFSXResSTZ0Vxk4AhpDpujDOQbxfz8%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 833f32ebf824b4f4-OSL
alt-svc: h3=":443"; ma=86400
www.descifrado.com/wp-content/uploads/2022/05/Maiquetia-100x70.jpg
200 OK 3.3 kB URL GET HTTP/3 www.descifrado.com/wp-content/uploads/2022/05/Maiquetia-100x70.jpg
IP
Requested by https://www.descifrado.com/2023/08/17/medios-venezolanos-denuncian-suplantacion-de-identidad-en-whatsapp/robo-whatsappwebp/
Certificate IssuerLet's Encrypt
Subjectdescifrado.com
Fingerprint98:00:4E:1C:E2:4D:B1:D9:CC:AE:94:0F:8E:34:D9:92:9E:E2:9F:95
ValidityWed, 22 Nov 2023 16:50:38 GMT - Tue, 20 Feb 2024 16:50:37 GMT
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 100x100, segment length 16, baseline, precision 8, 100x70, components 3
- data
Hash 1a8f5a6b7e45957198deed4effa6304a
232737e5a5d713ffcb5d0ac0a7403d2f644ac039
a57782c278fee1f4a345007a9e3f304e2e4e3ab22d3b4394abefa2aa4490fcf6
GET /wp-content/uploads/2022/05/Maiquetia-100x70.jpg HTTP/1.1
Host: www.descifrado.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.descifrado.com/2023/08/17/medios-venezolanos-denuncian-suplantacion-de-identidad-en-whatsapp/robo-whatsappwebp/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Mon, 11 Dec 2023 16:45:36 GMT
content-type: image/jpeg
content-length: 3343
last-modified: Mon, 23 May 2022 13:51:46 GMT
etag: "628b9172-d0f"
x-powered-by: WordOps
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
referrer-policy: strict-origin-when-cross-origin
access-control-allow-origin: *
cache-control: max-age=315360000
expires: Thu, 31 Dec 2037 23:55:55 GMT
vary: Accept-Encoding
cf-cache-status: HIT
age: 1337198
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=i0tQJMha1OIl4F8SwNd4kNM6lGxr%2FVnxS52mFGC9dOMGz5VbNHM%2FPs3GNkzL8VChxG6kmsE9g%2FmTR965d0RIJlcNmtDg%2FlWFOMiFZ895O53N%2F7yFVUKi9UTuMyHLTS9P%2BJXB8hU%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 833f32ebf828b4f4-OSL
alt-svc: h3=":443"; ma=86400
www.descifrado.com/wp-content/uploads/2022/04/consejos-transferir-familiar-saldo-patria-768x422-1-100x70.jpg
200 OK 3.0 kB URL GET HTTP/3 www.descifrado.com/wp-content/uploads/2022/04/consejos-transferir-familiar-saldo-patria-768x422-1-100x70.jpg
IP
Requested by https://www.descifrado.com/2023/08/17/medios-venezolanos-denuncian-suplantacion-de-identidad-en-whatsapp/robo-whatsappwebp/
Certificate IssuerLet's Encrypt
Subjectdescifrado.com
Fingerprint98:00:4E:1C:E2:4D:B1:D9:CC:AE:94:0F:8E:34:D9:92:9E:E2:9F:95
ValidityWed, 22 Nov 2023 16:50:38 GMT - Tue, 20 Feb 2024 16:50:37 GMT
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 82", baseline, precision 8, 100x70, components 3
- data
Hash 4ea4ea4241f4a0e429357e182c6fcc6c
885859d79fdcb4e1f55606c20b1eb96fbd2e6d8e
1381c94a81e74cf907ef66721a4256f332b4ebe05364898f87de38efef8c8133
GET /wp-content/uploads/2022/04/consejos-transferir-familiar-saldo-patria-768x422-1-100x70.jpg HTTP/1.1
Host: www.descifrado.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.descifrado.com/2023/08/17/medios-venezolanos-denuncian-suplantacion-de-identidad-en-whatsapp/robo-whatsappwebp/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Mon, 11 Dec 2023 16:45:36 GMT
content-type: image/jpeg
content-length: 2987
last-modified: Wed, 20 Apr 2022 12:44:52 GMT
etag: "62600044-bab"
x-powered-by: WordOps
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
referrer-policy: strict-origin-when-cross-origin
access-control-allow-origin: *
cache-control: max-age=315360000
expires: Thu, 31 Dec 2037 23:55:55 GMT
vary: Accept-Encoding
cf-cache-status: HIT
age: 1504868
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=fq2hypqf9riCO3EdOiKCPVlwQoZacSUlgA1I10b5jbXb5lVvxdA6KBtbGrHhyDfPjMNA3XvVlur0QzlYyCW3ME%2FFB%2BUoPq1jV%2FAnFy0fn2dZ20LnsBDEi1INpCN0L0QCZNDSDbk%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 833f32ebf82fb4f4-OSL
alt-svc: h3=":443"; ma=86400
www.googletagmanager.com/gtag/js?id=G-DEDSFYSGCY
200 OK 81 kB URL GET HTTP/2 www.googletagmanager.com/gtag/js?id=G-DEDSFYSGCY
IP
Requested by https://www.descifrado.com/2023/08/17/medios-venezolanos-denuncian-suplantacion-de-identidad-en-whatsapp/robo-whatsappwebp/
Certificate IssuerGoogle Trust Services LLC
Subject*.google-analytics.com
FingerprintC1:58:7C:BF:5A:61:79:08:CB:C2:00:63:60:07:86:BD:EA:0A:45:8A
ValidityMon, 20 Nov 2023 08:02:50 GMT - Mon, 12 Feb 2024 08:02:49 GMT
File type ASCII text, with very long lines (5955)
Hash 70f3d99315b0de379d84001e4b68448d
b122d30393f64658deed6154816358b6da6f7e2a
f1557272a64bfb4cee571f28b94d9efb098c689bf0a1dad7bb684c9dba4b97e1
GET /gtag/js?id=G-DEDSFYSGCY HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.descifrado.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Mon, 11 Dec 2023 16:45:36 GMT
expires: Mon, 11 Dec 2023 16:45:36 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 81240
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
s.ntv.io/serve/load.js
200 OK 178 kB IP
Requested by https://www.descifrado.com/2023/08/17/medios-venezolanos-denuncian-suplantacion-de-identidad-en-whatsapp/robo-whatsappwebp/
Certificate IssuerDigiCert Inc
Subject*.ntv.io
FingerprintA0:35:63:06:D9:AB:7D:71:68:E0:A8:F1:91:A4:EF:BD:FF:7A:22:87
ValidityMon, 28 Aug 2023 00:00:00 GMT - Wed, 28 Aug 2024 23:59:59 GMT
File type ASCII text, with very long lines (65474)
Size 178 kB (177753 bytes)
Hash 9cb9bfbd60ddb6ee28e427f0c537e306
eb19b095df29eb3e89c5b3860035b3207ffd9eeb
7bfa25bb3f6de10ee90b1c61c3d89f30836efb1eb2669b55b1057c21c702e294
GET /serve/load.js HTTP/1.1
Host: s.ntv.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.descifrado.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
x-amz-id-2: MLxCXGyWtidfPiOPREQXeyZCzkk6JDoIcIW311D0BVDtSrbiTb68hpo9rFtbbChZABMzRRtKeTY=
x-amz-request-id: 6S9MDCVPC0T64NMC
Last-Modified: Thu, 07 Dec 2023 21:02:17 GMT
ETag: "9cb9bfbd60ddb6ee28e427f0c537e306"
x-amz-server-side-encryption: AES256
Accept-Ranges: bytes
Content-Type: application/x-javascript
Server: AmazonS3
Vary: Accept-Encoding
Content-Encoding: gzip
Date: Mon, 11 Dec 2023 16:45:36 GMT
Transfer-Encoding: chunked
Connection: keep-alive, Transfer-Encoding
Cache-Control: public, max-age=3600
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: GET
Access-Control-Allow-Origin: *
adserver.latinon.com/revive/www/delivery/asyncjs.php
200 OK 4.4 kB URL GET HTTP/1.1 adserver.latinon.com/revive/www/delivery/asyncjs.php
IP
ASN #14061 DIGITALOCEAN-ASN
Requested by https://www.descifrado.com/2023/08/17/medios-venezolanos-denuncian-suplantacion-de-identidad-en-whatsapp/robo-whatsappwebp/
Certificate IssuerLet's Encrypt
Subjectadserver.latinon.com
FingerprintB7:9B:42:21:84:EE:62:F6:1D:C0:F5:01:5F:F9:4C:A5:00:BA:04:42
ValidityThu, 16 Nov 2023 14:10:17 GMT - Wed, 14 Feb 2024 14:10:16 GMT
File type HTML document text
- C source text
- HTML document text
- HTML document text
- exported SGML document, ASCII text, with very long lines (4378), with no line terminators
Hash 55dbb004a870fa7109d5c59d8d25e71b
6c35768a84143cd91a42cb8b239db41c54986104
1feccc5457246a341b82f181fa84317e9dd084c63ac370c1ac43104c3cbf3329
GET /revive/www/delivery/asyncjs.php HTTP/1.1
Host: adserver.latinon.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.descifrado.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Mon, 11 Dec 2023 16:45:36 GMT
Content-Type: text/javascript;charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Keep-Alive: timeout=20
ETag: 11dac5182c2ea03a67dd87cdf9937cd5
Expire: Mon, 11 Dec 2023 17:45:36 GMT
Cache-Control: private, max-age=3600
P3P: CP="CUR ADM OUR NOR STA NID"
Set-Cookie: OAGEO=2%7CNO%7CEU%7C%7COslo%7C0191%7C59.955%7C10.859%7C100%7CEurope%2FOslo%7C%7C03%7C%7C%7C%7C%7C%7C%7C%7C%7C%7C%7C%7C%7C%7C%7C; path=/; secure; SameSite=none
X-Content-Type-Options: nosniff
X-Xss-Protection: 1; mode=block
www.descifrado.com/wp-content/uploads/2023/08/robo-whatsappwebp.webp
200 OK 31 kB URL GET HTTP/3 www.descifrado.com/wp-content/uploads/2023/08/robo-whatsappwebp.webp
IP
Requested by https://www.descifrado.com/2023/08/17/medios-venezolanos-denuncian-suplantacion-de-identidad-en-whatsapp/robo-whatsappwebp/
Certificate IssuerLet's Encrypt
Subjectdescifrado.com
Fingerprint98:00:4E:1C:E2:4D:B1:D9:CC:AE:94:0F:8E:34:D9:92:9E:E2:9F:95
ValidityWed, 22 Nov 2023 16:50:38 GMT - Tue, 20 Feb 2024 16:50:37 GMT
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 1200x675, Scaling: [none]x[none], YUV color, decoders should clamp
- data
Hash 0300b38dd4e29d5147407f86c3c6f0d4
e1784cd28253ac5ab76d842d271b53cd98d61f73
ff6a788ed7bb8a0f9be3652622c7f9308bf2784266a3d688149a557c1fee60ac
GET /wp-content/uploads/2023/08/robo-whatsappwebp.webp HTTP/1.1
Host: www.descifrado.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.descifrado.com/2023/08/17/medios-venezolanos-denuncian-suplantacion-de-identidad-en-whatsapp/robo-whatsappwebp/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Mon, 11 Dec 2023 16:45:36 GMT
content-type: image/webp
content-length: 30908
last-modified: Thu, 17 Aug 2023 11:48:15 GMT
etag: "64de08ff-78bc"
x-powered-by: WordOps
x-frame-options: SAMEORIGIN, SAMEORIGIN
x-content-type-options: nosniff, nosniff
referrer-policy: strict-origin-when-cross-origin, no-referrer-when-downgrade
access-control-allow-origin: *
cache-control: max-age=315360000
expires: Thu, 31 Dec 2037 23:55:55 GMT
x-xss-protection: 1; mode=block
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=J6qUFqY%2Fwj3%2Bgox%2BNFGIxEzyIVsgwq85OjBr76jr%2BykXR6wspoyHUZBMpzKTEbTDM9nGykEYfXCg0ERb2%2BENQjfuSyu6uSJ63dQEWWLD%2FYaviph63WGvDylUXZwMvyd3J3WWfhc%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 833f32ebe81bb4f4-OSL
alt-svc: h3=":443"; ma=86400
four.startperfectsolutions.com/scripts/sold.js
200 OK 14 kB URL GET HTTP/1.1 four.startperfectsolutions.com/scripts/sold.js
IP
ASN #20803 LLC Siberian Telecommunications Company
Requested by https://www.descifrado.com/2023/08/17/medios-venezolanos-denuncian-suplantacion-de-identidad-en-whatsapp/robo-whatsappwebp/
Certificate IssuerLet's Encrypt
Subjectfour.startperfectsolutions.com
FingerprintF0:A7:09:4D:68:CD:4D:06:C1:C6:A2:85:EE:10:16:56:9B:B2:FE:FC
ValidityThu, 09 Nov 2023 12:27:51 GMT - Wed, 07 Feb 2024 12:27:50 GMT
File type ASCII text, with very long lines (35064), with no line terminators
Hash 9fb8c2d8c703ebc9d3202fbc95de8081
496df14a4c3b81cd9d4f0d9c052b5df97ab74a05
b16ee4f2a1e28f949182a94faaa5eb34f6f71cf393071a6bd70beea4cacd0783
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /scripts/sold.js HTTP/1.1
Host: four.startperfectsolutions.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.descifrado.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Mon, 11 Dec 2023 16:45:36 GMT
Content-Type: application/javascript
Last-Modified: Wed, 22 Nov 2023 11:14:43 GMT
Transfer-Encoding: chunked
Connection: keep-alive
ETag: W/"655de2a3-88f8"
Expires: Thu, 21 Dec 2023 16:45:36 GMT
Cache-Control: max-age=864000
Access-Control-Allow-Origin: *
Content-Encoding: gzip
www.googletagmanager.com/gtm.js?id=GTM-N5T3D7F
200 OK 44 kB URL GET HTTP/3 www.googletagmanager.com/gtm.js?id=GTM-N5T3D7F
IP
Requested by https://www.descifrado.com/2023/08/17/medios-venezolanos-denuncian-suplantacion-de-identidad-en-whatsapp/robo-whatsappwebp/
Certificate IssuerGoogle Trust Services LLC
Subject*.google-analytics.com
FingerprintC1:58:7C:BF:5A:61:79:08:CB:C2:00:63:60:07:86:BD:EA:0A:45:8A
ValidityMon, 20 Nov 2023 08:02:50 GMT - Mon, 12 Feb 2024 08:02:49 GMT
File type ASCII text, with very long lines (2213)
Hash ef8b88f8fa52cc9f1389cb7dce6e5319
cef63da16be1423bbb2c6c7e44a898a27d28a713
497f0b1f6b8b494ba83a2345a0172ac0da9654466da80c20d8b9a0533488538a
GET /gtm.js?id=GTM-N5T3D7F HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.descifrado.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Mon, 11 Dec 2023 16:45:36 GMT
expires: Mon, 11 Dec 2023 16:45:36 GMT
cache-control: private, max-age=900
last-modified: Mon, 11 Dec 2023 15:00:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 44436
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
www.descifrado.com/wp-content/themes/Newspaper/images/icons/newspaper.woff?14
200 OK 15 kB URL GET HTTP/3 www.descifrado.com/wp-content/themes/Newspaper/images/icons/newspaper.woff?14
IP
Requested by https://www.descifrado.com/2023/08/17/medios-venezolanos-denuncian-suplantacion-de-identidad-en-whatsapp/robo-whatsappwebp/
Certificate IssuerLet's Encrypt
Subjectdescifrado.com
Fingerprint98:00:4E:1C:E2:4D:B1:D9:CC:AE:94:0F:8E:34:D9:92:9E:E2:9F:95
ValidityWed, 22 Nov 2023 16:50:38 GMT - Tue, 20 Feb 2024 16:50:37 GMT
File type Web Open Font Format, TrueType, length 15184, version 1.0
- data
Hash 34874304d80fdcbe202d44126defd76f
192bea38c37e42eef7a6e0527dc8e99454dccef6
dc7375f568ea439c4f544ac6488b963a8d57d6cd65b0a8a551230d330e55483f
GET /wp-content/themes/Newspaper/images/icons/newspaper.woff?14 HTTP/1.1
Host: www.descifrado.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Referer: https://www.descifrado.com/wp-content/themes/Newspaper/style.css?ver=8.1
DNT: 1
Connection: keep-alive
Cookie: _ga_DEDSFYSGCY=GS1.1.1702313136.1.0.1702313136.0.0.0; _ga=GA1.1.1073651933.1702313136
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Mon, 11 Dec 2023 16:45:36 GMT
content-type: font/woff
content-length: 15184
last-modified: Wed, 22 Apr 2020 14:23:14 GMT
etag: "5ea05352-3b50"
x-powered-by: WordOps
x-frame-options: SAMEORIGIN, SAMEORIGIN
x-content-type-options: nosniff, nosniff
referrer-policy: strict-origin-when-cross-origin, no-referrer-when-downgrade
access-control-allow-origin: *
cache-control: max-age=315360000
expires: Thu, 31 Dec 2037 23:55:55 GMT
x-xss-protection: 1; mode=block
cf-cache-status: HIT
age: 409044
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=XcMq2kgkY6qxX6p20BWrJbjXyTLSZe%2FJPSLiUWA%2FPi2P4G2vccKWSKIRxpvuYCXYBlPZRcaKKrEIFiIQRMAxp7rrqjrPTIJo5SaDJ1XdTOPOjlC63jtLZpNAUnS6QznB9PrUTkM%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 833f32f06d45b4f4-OSL
alt-svc: h3=":443"; ma=86400
www.descifrado.com/wp-includes/css/dist/block-library/style.min.css?ver=6.4.2
200 OK 15 kB URL GET HTTP/3 www.descifrado.com/wp-includes/css/dist/block-library/style.min.css?ver=6.4.2
IP
Requested by https://www.descifrado.com/2023/08/17/medios-venezolanos-denuncian-suplantacion-de-identidad-en-whatsapp/robo-whatsappwebp/
Certificate IssuerLet's Encrypt
Subjectdescifrado.com
Fingerprint98:00:4E:1C:E2:4D:B1:D9:CC:AE:94:0F:8E:34:D9:92:9E:E2:9F:95
ValidityWed, 22 Nov 2023 16:50:38 GMT - Tue, 20 Feb 2024 16:50:37 GMT
File type ASCII text, with very long lines (57084)
Hash 99ab466e0866c823ae5db517d59cebd1
5595a586cbd42b31377681b9d35293278d75d336
698b89c0da3d319754d6a837b5e6d4e6a42dc402d9ffd7559b8c4cb29c644340
GET /wp-includes/css/dist/block-library/style.min.css?ver=6.4.2 HTTP/1.1
Host: www.descifrado.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.descifrado.com/2023/08/17/medios-venezolanos-denuncian-suplantacion-de-identidad-en-whatsapp/robo-whatsappwebp/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Mon, 11 Dec 2023 16:45:35 GMT
content-type: text/css
last-modified: Tue, 21 Nov 2023 22:26:06 GMT
vary: Accept-Encoding
etag: W/"655d2e7e-1add3"
x-powered-by: WordOps
x-frame-options: SAMEORIGIN, SAMEORIGIN
x-content-type-options: nosniff, nosniff
referrer-policy: strict-origin-when-cross-origin, no-referrer-when-downgrade
access-control-allow-origin: *
cache-control: max-age=2592000
expires: Sat, 06 Jan 2024 09:31:39 GMT
x-xss-protection: 1; mode=block
cf-cache-status: HIT
age: 371636
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=%2F%2F12D0FXUKan7f74XFVMadlPPiN0uviIqqd1lUFsxnNCrlz0BhPO5lRiqKChro2x5rLDliMaOJ0FhRVFI2coBVRfQex6zAo7fqSKIiTuGvjeuQIjUvp62B%2Bm%2Bp99nnpK32sQPK0%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 833f32ebcff9b4f4-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
www.descifrado.com/wp-content/uploads/2017/12/Pago-Clave-Banco-de-Venezuela-100x70.jpg
404 Not Found 48 kB URL GET HTTP/3 www.descifrado.com/wp-content/uploads/2017/12/Pago-Clave-Banco-de-Venezuela-100x70.jpg
IP
Requested by https://www.descifrado.com/2023/08/17/medios-venezolanos-denuncian-suplantacion-de-identidad-en-whatsapp/robo-whatsappwebp/
Certificate IssuerLet's Encrypt
Subjectdescifrado.com
Fingerprint98:00:4E:1C:E2:4D:B1:D9:CC:AE:94:0F:8E:34:D9:92:9E:E2:9F:95
ValidityWed, 22 Nov 2023 16:50:38 GMT - Tue, 20 Feb 2024 16:50:37 GMT
File type gzip compressed data, from Unix
- data
Hash a4e70bacda63b1a48a099a0007e87feb
5c1a4840db805d2293a7fb52dabbf8f6075b3d03
4b3d27cefd3b46df2eb2511a8b8beaebff6c8a1db5398284cad660c231c7fb2e
GET /wp-content/uploads/2017/12/Pago-Clave-Banco-de-Venezuela-100x70.jpg HTTP/1.1
Host: www.descifrado.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.descifrado.com/2023/08/17/medios-venezolanos-denuncian-suplantacion-de-identidad-en-whatsapp/robo-whatsappwebp/
DNT: 1
Connection: keep-alive
Cookie: _ga_DEDSFYSGCY=GS1.1.1702313136.1.0.1702313136.0.0.0; _ga=GA1.1.1073651933.1702313136
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 404 Not Found
date: Mon, 11 Dec 2023 16:45:36 GMT
content-type: text/html
vary: Accept-Encoding
x-powered-by: WordOps
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
referrer-policy: strict-origin-when-cross-origin
access-control-allow-origin: *
cache-control: public, max-age=14400, no-transform
content-encoding: gzip
cf-cache-status: HIT
age: 0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=YxvSM1qKKLEhBtSwehyrecBB5%2FqAIZtvkRQ%2B%2BVH3Lt3mkMnkKvLov4QzNkjiO46eSLy6pWw4vSah9QqkeJhKM4QZj3rXI54Wiim1YvAasx6G48O%2BgGGItvfOWhRfZClZyF7zpUc%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 833f32f01ce0b4f4-OSL
alt-svc: h3=":443"; ma=86400
fonts.gstatic.com/s/roboto/v30/KFOkCnqEu92Fr1Mu51xIIzI.woff2
200 OK 17 kB URL GET HTTP/2 fonts.gstatic.com/s/roboto/v30/KFOkCnqEu92Fr1Mu51xIIzI.woff2
IP
Requested by https://www.descifrado.com/2023/08/17/medios-venezolanos-denuncian-suplantacion-de-identidad-en-whatsapp/robo-whatsappwebp/
Certificate IssuerGoogle Trust Services LLC
Subject*.gstatic.com
Fingerprint5F:60:69:C9:59:6D:F1:B5:87:82:8D:B0:57:3C:D9:24:10:FD:74:D1
ValidityMon, 20 Nov 2023 08:08:49 GMT - Mon, 12 Feb 2024 08:08:48 GMT
File type Web Open Font Format (Version 2), TrueType, length 17368, version 1.0
- data
Hash abe083d96b58eb02ada8b7c30d7b09f2
61447d66d13a8c8f4335696777a85c438c46f749
db0424fb67fb52e7e538490240cc7fb9c05aa076333a4968f3dee30b825dabf9
GET /s/roboto/v30/KFOkCnqEu92Fr1Mu51xIIzI.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.descifrado.com
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 17368
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 07 Dec 2023 04:48:27 GMT
expires: Fri, 06 Dec 2024 04:48:27 GMT
cache-control: public, max-age=31536000
age: 388629
last-modified: Wed, 11 May 2022 19:24:42 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
fonts.gstatic.com/s/opensans/v36/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2
200 OK 48 kB URL GET HTTP/2 fonts.gstatic.com/s/opensans/v36/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2
IP
Requested by https://www.descifrado.com/2023/08/17/medios-venezolanos-denuncian-suplantacion-de-identidad-en-whatsapp/robo-whatsappwebp/
Certificate IssuerGoogle Trust Services LLC
Subject*.gstatic.com
Fingerprint5F:60:69:C9:59:6D:F1:B5:87:82:8D:B0:57:3C:D9:24:10:FD:74:D1
ValidityMon, 20 Nov 2023 08:08:49 GMT - Mon, 12 Feb 2024 08:08:48 GMT
File type Web Open Font Format (Version 2), TrueType, length 48432, version 1.0
- data
Hash e2d74c5e631bc53a7240bbfe4be99c8f
eb513857bb01cc4f7249067fc7e969bef415fc90
9b1b9d7cb74a9923d83f36f0026f421940b861fd6e1a51b8f79af45492ed4ed5
GET /s/opensans/v36/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.descifrado.com
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 48432
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 07 Dec 2023 05:00:58 GMT
expires: Fri, 06 Dec 2024 05:00:58 GMT
cache-control: public, max-age=31536000
age: 387878
last-modified: Thu, 14 Sep 2023 00:40:31 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
www.descifrado.com/wp-content/themes/Newspaper/style.css?ver=8.1
200 OK 133 kB URL GET HTTP/3 www.descifrado.com/wp-content/themes/Newspaper/style.css?ver=8.1
IP
Requested by https://www.descifrado.com/2023/08/17/medios-venezolanos-denuncian-suplantacion-de-identidad-en-whatsapp/robo-whatsappwebp/
Certificate IssuerLet's Encrypt
Subjectdescifrado.com
Fingerprint98:00:4E:1C:E2:4D:B1:D9:CC:AE:94:0F:8E:34:D9:92:9E:E2:9F:95
ValidityWed, 22 Nov 2023 16:50:38 GMT - Tue, 20 Feb 2024 16:50:37 GMT
Size 133 kB (133281 bytes)
Hash 830dcefed8d6338760f8933b556d7f76
af25fe0aa9bb7f4591305be1a60ef7abbeefba07
57e19fb91056a7334fbd0a1857fffe3469f29e965e919c1a3e4965b572119bef
GET /wp-content/themes/Newspaper/style.css?ver=8.1 HTTP/1.1
Host: www.descifrado.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.descifrado.com/2023/08/17/medios-venezolanos-denuncian-suplantacion-de-identidad-en-whatsapp/robo-whatsappwebp/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Mon, 11 Dec 2023 16:45:35 GMT
content-type: text/css
last-modified: Wed, 22 Apr 2020 14:23:14 GMT
vary: Accept-Encoding
etag: W/"5ea05352-10ed53"
x-powered-by: WordOps
x-frame-options: SAMEORIGIN, SAMEORIGIN
x-content-type-options: nosniff, nosniff
referrer-policy: strict-origin-when-cross-origin, no-referrer-when-downgrade
access-control-allow-origin: *
cache-control: max-age=2592000
expires: Tue, 26 Dec 2023 05:18:55 GMT
x-xss-protection: 1; mode=block
cf-cache-status: HIT
age: 1337200
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=4mwOZy2DPIf5UQE9v6Y%2Fgu%2BzYNrXcWF0y36FlakL611fK8hSR5nY2ei4t2UaWs6UEK%2BYJPHmWMSkmb%2FgnF5DjXQfik8XMdo%2BkmmypkcNOegQmevqfYRzE4vjL1fQOSYp%2Ffq12RQ%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 833f32ebdffeb4f4-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
adserver.latinon.com/revive/www/delivery/asyncspc.php?zones=1549&prefix=revive-0-&loc=https%3A%2F%2Fwww.descifrado.com%2F2023%2F08%2F17%2Fmedios-venezolanos-denuncian-suplantacion-de-identidad-en-whatsapp%2Frobo-whatsappwebp%2F
200 OK 745 B URL GET HTTP/1.1 adserver.latinon.com/revive/www/delivery/asyncspc.php?zones=1549&prefix=revive-0-&loc=https%3A%2F%2Fwww.descifrado.com%2F2023%2F08%2F17%2Fmedios-venezolanos-denuncian-suplantacion-de-identidad-en-whatsapp%2Frobo-whatsappwebp%2F
IP
ASN #14061 DIGITALOCEAN-ASN
Requested by https://www.descifrado.com/2023/08/17/medios-venezolanos-denuncian-suplantacion-de-identidad-en-whatsapp/robo-whatsappwebp/
Certificate IssuerLet's Encrypt
Subjectadserver.latinon.com
FingerprintB7:9B:42:21:84:EE:62:F6:1D:C0:F5:01:5F:F9:4C:A5:00:BA:04:42
ValidityThu, 16 Nov 2023 14:10:17 GMT - Wed, 14 Feb 2024 14:10:16 GMT
File type JSON data
- HTML document, ASCII text, with very long lines (745), with no line terminators
Hash 57783a5e286c6b599aefe08ba66f1635
676124d2cd5270a2365fd7a3815fd29f32cd0967
d093eb82894752c234b580475677749bfb958643563a96bfb80f4fc160581f7d
GET /revive/www/delivery/asyncspc.php?zones=1549&prefix=revive-0-&loc=https%3A%2F%2Fwww.descifrado.com%2F2023%2F08%2F17%2Fmedios-venezolanos-denuncian-suplantacion-de-identidad-en-whatsapp%2Frobo-whatsappwebp%2F HTTP/1.1
Host: adserver.latinon.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.descifrado.com
DNT: 1
Connection: keep-alive
Referer: https://www.descifrado.com/
Cookie: OAGEO=2%7CNO%7CEU%7C%7COslo%7C0191%7C59.955%7C10.859%7C100%7CEurope%2FOslo%7C%7C03%7C%7C%7C%7C%7C%7C%7C%7C%7C%7C%7C%7C%7C%7C%7C
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Mon, 11 Dec 2023 16:45:36 GMT
Content-Type: application/json
Transfer-Encoding: chunked
Connection: keep-alive
Keep-Alive: timeout=20
Pragma: no-cache
Cache-Control: no-cache, no-store, must-revalidate
Expires: 0
P3P: CP="CUR ADM OUR NOR STA NID"
Set-Cookie: OAID=01000111010001000101000001010010; expires=Tue, 10-Dec-2024 16:45:36 GMT; Max-Age=31536000; path=/; secure; SameSite=none
Access-Control-Allow-Origin: https://www.descifrado.com
Access-Control-Allow-Credentials: true
X-Content-Type-Options: nosniff
X-Xss-Protection: 1; mode=block
tags.newdreamglobal.com/admanager/newglobal.sdk.min.js?v=1.4.19&h=www.descifrado.com
200 OK 77 kB URL GET HTTP/2 tags.newdreamglobal.com/admanager/newglobal.sdk.min.js?v=1.4.19&h=www.descifrado.com
IP
Requested by https://www.descifrado.com/2023/08/17/medios-venezolanos-denuncian-suplantacion-de-identidad-en-whatsapp/robo-whatsappwebp/
Certificate IssuerGoogle Trust Services LLC
Subjectnewdreamglobal.com
Fingerprint83:02:05:0F:E0:20:C1:B8:55:26:9A:3A:EE:CA:ED:50:D2:4F:C1:16
ValidityTue, 31 Oct 2023 07:22:57 GMT - Mon, 29 Jan 2024 07:22:56 GMT
File type Unicode text, UTF-8 text, with very long lines (65249)
Hash 72d1fb4ac1884fe311fc8b1349192fae
8200946b487019f2cff276577502a81c4501fe43
47b365792ba9e742f156c03a22f8926957c5e1e66d3626d0b0e8fc85a987770f
GET /admanager/newglobal.sdk.min.js?v=1.4.19&h=www.descifrado.com HTTP/1.1
Host: tags.newdreamglobal.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.descifrado.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Mon, 11 Dec 2023 16:45:36 GMT
content-type: application/javascript
last-modified: Wed, 28 Jun 2023 21:37:39 GMT
vary: Accept-Encoding
etag: W/"649ca823-2cbd7"
cache-control: public, max-age=1800, s-maxage=86400, stale-while-revalidate=86400, must-revalidate
cf-cache-status: HIT
age: 3850
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=%2BcUrC47vQYxbXC9kC2%2BudNfsktHZNnvKlix1zBUxZqEPlaNNNs1evkYYsj3sRbmENJTubHaeX8AI9jTqop%2BLX5z1ZPxizGwUo5N9adTEk4gGcele2BLZYelxwXGujcWlPm1KvacGZNgSvg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 833f32f05abd568e-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmEU9fBBc4.woff2
200 OK 16 kB URL GET HTTP/2 fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmEU9fBBc4.woff2
IP
Requested by https://www.descifrado.com/2023/08/17/medios-venezolanos-denuncian-suplantacion-de-identidad-en-whatsapp/robo-whatsappwebp/
Certificate IssuerGoogle Trust Services LLC
Subject*.gstatic.com
Fingerprint5F:60:69:C9:59:6D:F1:B5:87:82:8D:B0:57:3C:D9:24:10:FD:74:D1
ValidityMon, 20 Nov 2023 08:08:49 GMT - Mon, 12 Feb 2024 08:08:48 GMT
File type Web Open Font Format (Version 2), TrueType, length 15920, version 1.0
- data
Hash 3a44e06eb954b96aa043227f3534189d
23cef6993ddb2b2979e8e7647fc3763694e2ba7d
b019538234514166ec7665359d097403358f8a4c991901983922fb4d56989f1e
GET /s/roboto/v30/KFOlCnqEu92Fr1MmEU9fBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.descifrado.com
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15920
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 07 Dec 2023 15:57:09 GMT
expires: Fri, 06 Dec 2024 15:57:09 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 11 May 2022 19:24:45 GMT
content-type: font/woff2
age: 348507
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
fonts.gstatic.com/s/opensans/v36/memtYaGs126MiZpBA-UFUIcVXSCEkx2cmqvXlWqWuU6F.woff2
200 OK 50 kB URL GET HTTP/2 fonts.gstatic.com/s/opensans/v36/memtYaGs126MiZpBA-UFUIcVXSCEkx2cmqvXlWqWuU6F.woff2
IP
Requested by https://www.descifrado.com/2023/08/17/medios-venezolanos-denuncian-suplantacion-de-identidad-en-whatsapp/robo-whatsappwebp/
Certificate IssuerGoogle Trust Services LLC
Subject*.gstatic.com
Fingerprint5F:60:69:C9:59:6D:F1:B5:87:82:8D:B0:57:3C:D9:24:10:FD:74:D1
ValidityMon, 20 Nov 2023 08:08:49 GMT - Mon, 12 Feb 2024 08:08:48 GMT
File type Web Open Font Format (Version 2), TrueType, length 50368, version 1.0
- data
Hash 4facfd6ff39e147b7e39c4b1abe4117d
0f7c0d978c209d21eb3f55950fc43e77c196ec3b
a246c4de8a0f1f1fdb6ee52565018dc341063aa9efe8481034bc3ef7d697e334
GET /s/opensans/v36/memtYaGs126MiZpBA-UFUIcVXSCEkx2cmqvXlWqWuU6F.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.descifrado.com
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 50368
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 07 Dec 2023 04:48:09 GMT
expires: Fri, 06 Dec 2024 04:48:09 GMT
cache-control: public, max-age=31536000
age: 388647
last-modified: Thu, 14 Sep 2023 01:04:20 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
two.startperfectsolutions.com/stars?se=&wi=www.descifrado.com
200 OK 5.5 kB URL GET HTTP/1.1 two.startperfectsolutions.com/stars?se=&wi=www.descifrado.com
IP
ASN #20803 LLC Siberian Telecommunications Company
Requested by https://www.descifrado.com/2023/08/17/medios-venezolanos-denuncian-suplantacion-de-identidad-en-whatsapp/robo-whatsappwebp/
Certificate IssuerLet's Encrypt
Subjecttwo.startperfectsolutions.com
FingerprintEC:A8:26:03:49:D2:50:48:2C:45:52:31:FC:AD:5B:C4:3B:1B:1E:D9
ValidityThu, 09 Nov 2023 12:27:38 GMT - Wed, 07 Feb 2024 12:27:37 GMT
File type ASCII text, with very long lines (12933), with no line terminators
Hash 4a57193f7df67bba4e5ee07617554e84
5f3d163f3f422b65c5e78bb6e3a9bb4883e445b3
a89596f50e343c6bbd6bf20f305a837e10c9f28d9dc063810605bac1f4224cc9
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /stars?se=&wi=www.descifrado.com HTTP/1.1
Host: two.startperfectsolutions.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.descifrado.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Mon, 11 Dec 2023 16:45:37 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: no-cache, no-store, must-revalidate
Content-Encoding: gzip
Expires: Mon, 11 Dec 2023 16:45:37 GMT
Vary: Accept-Encoding
X-Powered-By: PHP/7.4.33
Access-Control-Allow-Origin: *
adserver.latinon.com/revive/www/delivery/lg.php?bannerid=5473&campaignid=1246&zoneid=1549&loc=https%3A%2F%2Fwww.descifrado.com%2F2023%2F08%2F17%2Fmedios-venezolanos-denuncian-suplantacion-de-identidad-en-whatsapp%2Frobo-whatsappwebp%2F&cb=8bf5a31769
200 OK 43 B URL GET HTTP/1.1 adserver.latinon.com/revive/www/delivery/lg.php?bannerid=5473&campaignid=1246&zoneid=1549&loc=https%3A%2F%2Fwww.descifrado.com%2F2023%2F08%2F17%2Fmedios-venezolanos-denuncian-suplantacion-de-identidad-en-whatsapp%2Frobo-whatsappwebp%2F&cb=8bf5a31769
IP
ASN #14061 DIGITALOCEAN-ASN
Requested by https://www.descifrado.com/2023/08/17/medios-venezolanos-denuncian-suplantacion-de-identidad-en-whatsapp/robo-whatsappwebp/
Certificate IssuerLet's Encrypt
Subjectadserver.latinon.com
FingerprintB7:9B:42:21:84:EE:62:F6:1D:C0:F5:01:5F:F9:4C:A5:00:BA:04:42
ValidityThu, 16 Nov 2023 14:10:17 GMT - Wed, 14 Feb 2024 14:10:16 GMT
File type GIF image data, version 89a, 1 x 1
- data
Hash b4491705564909da7f9eaf749dbbfbb1
279315d507855c6a4351e1e2c2f39dd9cd2fccd8
4e0705327480ad2323cb03d9c450ffcae4a98bf3a5382fa0c7882145ed620e49
GET /revive/www/delivery/lg.php?bannerid=5473&campaignid=1246&zoneid=1549&loc=https%3A%2F%2Fwww.descifrado.com%2F2023%2F08%2F17%2Fmedios-venezolanos-denuncian-suplantacion-de-identidad-en-whatsapp%2Frobo-whatsappwebp%2F&cb=8bf5a31769 HTTP/1.1
Host: adserver.latinon.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.descifrado.com/
Cookie: OAGEO=2%7CNO%7CEU%7C%7COslo%7C0191%7C59.955%7C10.859%7C100%7CEurope%2FOslo%7C%7C03%7C%7C%7C%7C%7C%7C%7C%7C%7C%7C%7C%7C%7C%7C%7C; OAID=01000111010001000101000001010010
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Mon, 11 Dec 2023 16:45:37 GMT
Content-Type: image/gif
Transfer-Encoding: chunked
Connection: keep-alive
Keep-Alive: timeout=20
Pragma: no-cache
Cache-Control: no-cache, no-store, must-revalidate
Expires: 0
Access-Control-Allow-Origin: *
P3P: CP="CUR ADM OUR NOR STA NID"
Set-Cookie: OAID=01000111010001000101000001010010; expires=Tue, 10-Dec-2024 16:45:37 GMT; Max-Age=31536000; path=/; secure; SameSite=none
X-Content-Type-Options: nosniff
X-Xss-Protection: 1; mode=block
tg1.aniview.com/api/adserver/spt?AV_TAGID=6478945b968e5a6b590e88f4&AV_PUBLISHERID=5d31fb2628a06116ff22aef3
200 OK 6.3 kB URL GET HTTP/1.1 tg1.aniview.com/api/adserver/spt?AV_TAGID=6478945b968e5a6b590e88f4&AV_PUBLISHERID=5d31fb2628a06116ff22aef3
IP
Requested by https://www.descifrado.com/2023/08/17/medios-venezolanos-denuncian-suplantacion-de-identidad-en-whatsapp/robo-whatsappwebp/
Certificate IssuerDigiCert Inc
Subject*.aniview.com
Fingerprint56:C6:C9:19:6D:26:B7:A0:B9:C7:A9:B7:C3:AF:F0:98:3A:FD:69:F8
ValidityMon, 11 Sep 2023 00:00:00 GMT - Wed, 11 Sep 2024 23:59:59 GMT
File type ASCII text, with very long lines (2011)
Hash 6e382e956f7a407cbcd2f7058ef03999
fa44b9ed442139bd7bb5500ce550bd9206a1409d
51d8374fef15651f96b8aef9a57c20af115f5b5d414b2b4ad3a08e69caed1e4d
GET /api/adserver/spt?AV_TAGID=6478945b968e5a6b590e88f4&AV_PUBLISHERID=5d31fb2628a06116ff22aef3 HTTP/1.1
Host: tg1.aniview.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.descifrado.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: text/javascript
Access-Control-Allow-Methods: GET, POST, DELETE, PUT, OPTIONS, INDEX
Access-Control-Allow-Headers: Keep-Alive,User-Agent,If-Modified-Since,Cache-Control,Content-Type,Authorization,X-Bamboo-Token,Event-Id,X-Requested-With
Access-Control-Max-Age: 1728000
X-Bamboo-C-S: BYPASS
X-Bamboo-C-SkFe: 1
X-Bamboo-C-SkSt: 1
Content-Encoding: gzip
Content-Length: 6268
Cache-Control: max-age=300
Expires: Mon, 11 Dec 2023 16:50:37 GMT
Date: Mon, 11 Dec 2023 16:45:37 GMT
Connection: keep-alive
Access-Control-Allow-Credentials: false
Access-Control-Allow-Origin: *
Vary: Accept-Encoding, Origin
player.aniview.com/script/6.1/player.js
200 OK 14 kB URL GET HTTP/1.1 player.aniview.com/script/6.1/player.js
IP
ASN #20940 Akamai International B.V.
Requested by https://www.descifrado.com/2023/08/17/medios-venezolanos-denuncian-suplantacion-de-identidad-en-whatsapp/robo-whatsappwebp/
Certificate IssuerDigiCert Inc
Subject*.aniview.com
Fingerprint7F:F6:9D:81:B5:2C:92:FC:87:95:90:EC:4B:F5:7B:56:86:0F:EB:5B
ValidityFri, 13 Oct 2023 00:00:00 GMT - Tue, 15 Oct 2024 23:59:59 GMT
File type Unicode text, UTF-8 text, with very long lines (39342)
Hash bd1bd7f7127bac9fd6b22deb9aa831b8
8249cc769c99d991937d8cd513a5d39ca13b9715
8a47ce033e3e530b704fb39c3b442c6850cd84785e7011de2f02fd62ba161ec6
GET /script/6.1/player.js HTTP/1.1
Host: player.aniview.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.descifrado.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
X-GUploader-UploadID: ABPtcPqrgHj9UvSqnvoNzqBmujPZ0rRBy2AHCGu5JNCipSbpU9uqOTfz4sM5UQgpGrFU3HS9h80
x-goog-generation: 1702194331217047
x-goog-metageneration: 2
x-goog-stored-content-encoding: gzip
x-goog-stored-content-length: 13551
Content-Encoding: gzip
x-goog-hash: crc32c=ipHTlQ==, md5=l4qBOGnVL81RF3dyONu2yQ==
x-goog-storage-class: MULTI_REGIONAL
Accept-Ranges: bytes
Content-Length: 13551
Access-Control-Expose-Headers: Content-Type
Server: UploadServer
Last-Modified: Sun, 10 Dec 2023 07:45:31 GMT
ETag: "978a813869d52fcd5117777238dbb6c9"
Content-Type: text/javascript; charset=UTF-8
Cache-Control: public, no-transform, max-age=900
Expires: Mon, 11 Dec 2023 17:00:37 GMT
Date: Mon, 11 Dec 2023 16:45:37 GMT
Alt-Svc: h3=":443"; ma=93600,h3-29=":443"; ma=93600,h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"
Connection: keep-alive
Vary: Accept-Encoding
Access-Control-Allow-Origin: *
west.statisticplatform.com/tKTZ4h
200 OK 0 B URL GET HTTP/1.1 west.statisticplatform.com/tKTZ4h
IP
ASN #20803 LLC Siberian Telecommunications Company
Requested by https://www.descifrado.com/2023/08/17/medios-venezolanos-denuncian-suplantacion-de-identidad-en-whatsapp/robo-whatsappwebp/
Certificate IssuerLet's Encrypt
Subjectwest.statisticplatform.com
Fingerprint6C:DF:C6:A7:28:AA:CA:49:6F:CA:F3:04:3D:C7:33:C1:7E:83:AB:E1
ValidityTue, 10 Oct 2023 13:26:10 GMT - Mon, 08 Jan 2024 13:26:09 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /tKTZ4h HTTP/1.1
Host: west.statisticplatform.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.descifrado.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Mon, 11 Dec 2023 16:45:37 GMT
Content-Type: application/javascript
Content-Length: 0
Connection: keep-alive
Cache-Control: no-cache, no-store, must-revalidate
Expires: Mon, 11 Dec 2023 16:45:37 GMT
Vary: Accept-Encoding
X-Powered-By: PHP/7.4.33
Access-Control-Allow-Origin: *
player.aniview.com/script/6.1/AVmanager.js?v=1.0&type=s&pid=5d31fb2628a06116ff22aef3
200 OK 134 kB URL GET HTTP/3 player.aniview.com/script/6.1/AVmanager.js?v=1.0&type=s&pid=5d31fb2628a06116ff22aef3
IP
ASN #20940 Akamai International B.V.
Requested by https://www.descifrado.com/2023/08/17/medios-venezolanos-denuncian-suplantacion-de-identidad-en-whatsapp/robo-whatsappwebp/
Certificate IssuerDigiCert Inc
Subject*.aniview.com
Fingerprint7F:F6:9D:81:B5:2C:92:FC:87:95:90:EC:4B:F5:7B:56:86:0F:EB:5B
ValidityFri, 13 Oct 2023 00:00:00 GMT - Tue, 15 Oct 2024 23:59:59 GMT
File type Unicode text, UTF-8 text, with very long lines (32781), with LF, NEL line terminators
Size 134 kB (133522 bytes)
Hash d16404a7a1ba9fe49f2593007ae068f1
1177ba94fb6d51ed977ea923b61b8a594d88e4ef
c63ec3333973121ab978849971f901ec27c777a8896705fd6e1b153fe44b809f
GET /script/6.1/AVmanager.js?v=1.0&type=s&pid=5d31fb2628a06116ff22aef3 HTTP/1.1
Host: player.aniview.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.descifrado.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
x-guploader-uploadid: ABPtcPoiVd0iwAUa0UHfCrapE-fLGhPIABi2XdSBVGnEhw8nzqwurIkIctBr7voknJjc3XRBV7M
last-modified: Sun, 10 Dec 2023 07:45:31 GMT
etag: "a650530b25f9875a100e4181647bceea"
x-goog-generation: 1702194330899289
x-goog-metageneration: 2
x-goog-stored-content-encoding: gzip
x-goog-stored-content-length: 133522
content-type: text/javascript; charset=UTF-8
content-encoding: gzip
x-goog-hash: crc32c=AF7zAA==, md5=plBTCyX5h1oQDkGBZHvO6g==
x-goog-storage-class: MULTI_REGIONAL
accept-ranges: bytes
content-length: 133522
access-control-expose-headers: Content-Type
server: UploadServer
cache-control: public, no-transform, max-age=900
expires: Mon, 11 Dec 2023 17:00:37 GMT
date: Mon, 11 Dec 2023 16:45:37 GMT
alt-svc: h3=":443"; ma=93600,h3-29=":443"; ma=93600,h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"
vary: Accept-Encoding
quic-version: 0x00000001
access-control-allow-origin: *
track1.aniview.com/track?pid=5d31fb2628a06116ff22aef3&cid=647893ab83c2dca1fb0c9cbd&cb=1702313137690&r=www.descifrado.com&stagid=6478945b968e5a6b590e88f4&stplid=622621151af7757c9b6e9ad7&d35=&d65=Active&d74=&e=playerLoaded
200 OK 0 B URL GET HTTP/2 track1.aniview.com/track?pid=5d31fb2628a06116ff22aef3&cid=647893ab83c2dca1fb0c9cbd&cb=1702313137690&r=www.descifrado.com&stagid=6478945b968e5a6b590e88f4&stplid=622621151af7757c9b6e9ad7&d35=&d65=Active&d74=&e=playerLoaded
IP
Requested by https://www.descifrado.com/2023/08/17/medios-venezolanos-denuncian-suplantacion-de-identidad-en-whatsapp/robo-whatsappwebp/
Certificate IssuerDigiCert Inc
Subject*.aniview.com
FingerprintE3:44:D3:16:7C:71:A8:C3:1D:A9:15:EC:5E:18:18:63:72:33:4C:59
ValiditySat, 15 Jul 2023 00:00:00 GMT - Wed, 14 Aug 2024 23:59:59 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /track?pid=5d31fb2628a06116ff22aef3&cid=647893ab83c2dca1fb0c9cbd&cb=1702313137690&r=www.descifrado.com&stagid=6478945b968e5a6b590e88f4&stplid=622621151af7757c9b6e9ad7&d35=&d65=Active&d74=&e=playerLoaded HTTP/1.1
Host: track1.aniview.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.descifrado.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Mon, 11 Dec 2023 16:45:37 GMT
content-length: 0
cache-control: max-age=0, no-cache, no-store
set-cookie: version=av17.4.0-928f41d9e68027546e8f58888a6f30a550a764a4; path=/
X-Firefox-Spdy: h2
track1.aniview.com/track?r=www.descifrado.com&sn=&ic=0&tgt=0&app=&wi=480&he=270&test=&d36=6.2.147&apppkg=&fv=1&proto=https&d20=0Y&d65=Active&clsid=160f700a-b2a8-4631-97d8-ffb1ff954bc9&rando=25&pid=5d31fb2628a06116ff22aef3&cid=647893ab83c2dca1fb0c9cbd&stagid=6478945b968e5a6b590e88f4&stplid=622621151af7757c9b6e9ad7&e=inventory&vi=100&cb=1702313138014
200 OK 0 B URL GET HTTP/2 track1.aniview.com/track?r=www.descifrado.com&sn=&ic=0&tgt=0&app=&wi=480&he=270&test=&d36=6.2.147&apppkg=&fv=1&proto=https&d20=0Y&d65=Active&clsid=160f700a-b2a8-4631-97d8-ffb1ff954bc9&rando=25&pid=5d31fb2628a06116ff22aef3&cid=647893ab83c2dca1fb0c9cbd&stagid=6478945b968e5a6b590e88f4&stplid=622621151af7757c9b6e9ad7&e=inventory&vi=100&cb=1702313138014
IP
Requested by https://www.descifrado.com/2023/08/17/medios-venezolanos-denuncian-suplantacion-de-identidad-en-whatsapp/robo-whatsappwebp/
Certificate IssuerDigiCert Inc
Subject*.aniview.com
FingerprintE3:44:D3:16:7C:71:A8:C3:1D:A9:15:EC:5E:18:18:63:72:33:4C:59
ValiditySat, 15 Jul 2023 00:00:00 GMT - Wed, 14 Aug 2024 23:59:59 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /track?r=www.descifrado.com&sn=&ic=0&tgt=0&app=&wi=480&he=270&test=&d36=6.2.147&apppkg=&fv=1&proto=https&d20=0Y&d65=Active&clsid=160f700a-b2a8-4631-97d8-ffb1ff954bc9&rando=25&pid=5d31fb2628a06116ff22aef3&cid=647893ab83c2dca1fb0c9cbd&stagid=6478945b968e5a6b590e88f4&stplid=622621151af7757c9b6e9ad7&e=inventory&vi=100&cb=1702313138014 HTTP/1.1
Host: track1.aniview.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.descifrado.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Mon, 11 Dec 2023 16:45:37 GMT
content-length: 0
cache-control: max-age=0, no-cache, no-store
set-cookie: version=av17.4.0-928f41d9e68027546e8f58888a6f30a550a764a4; path=/
X-Firefox-Spdy: h2
elpolitico.com/wp-content/uploads/2023/12/GUSTAVO-PETRO-300x169.png
200 OK 28 kB URL GET HTTP/3 elpolitico.com/wp-content/uploads/2023/12/GUSTAVO-PETRO-300x169.png
IP
Requested by https://www.descifrado.com/2023/08/17/medios-venezolanos-denuncian-suplantacion-de-identidad-en-whatsapp/robo-whatsappwebp/
Certificate IssuerLet's Encrypt
Subjectelpolitico.com
Fingerprint17:4A:B7:1B:4B:C7:A6:E8:C1:9A:C6:B6:73:1B:1B:43:0C:E0:61:E8
ValidityWed, 25 Oct 2023 04:58:38 GMT - Tue, 23 Jan 2024 04:58:37 GMT
File type PNG image data, 300 x 169, 8-bit colormap, non-interlaced
- data
Hash 17d774ba33228b2abe35c53d07dc2ca3
5c99abd838e302f8303b276ab79dff35d412a485
7f9495b4e866e6b0965d1f74c6d6048bcc6aab3d4dfe8c9adac9c8831e94c09c
GET /wp-content/uploads/2023/12/GUSTAVO-PETRO-300x169.png HTTP/1.1
Host: elpolitico.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.descifrado.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Mon, 11 Dec 2023 16:45:38 GMT
content-type: image/png
content-length: 28529
cf-ray: 833f32f99a01b4ff-OSL
cf-cache-status: HIT
accept-ranges: bytes
age: 80680
cache-control: max-age=1800
etag: "6f71-60c1a3b21a3f4"
last-modified: Sat, 09 Dec 2023 21:17:41 GMT
vary: Accept-Encoding
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=U8ONccfJjIG%2FXB0nMb%2BzZsYBYGuxG4uK2x6uvh%2BCyD8YNOnP%2FhUEBywgc%2BL5tvdE%2Bi0lUDwEvLyzu2dYfvZPB8AOrh6IevASkbuQIM8yhr%2BvWX2PA8oWlYqTy1OhCiggZw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
alt-svc: h3=":443"; ma=86400
elpolitico.com/wp-content/uploads/2023/12/Hospitales-de-Estados-Unidos-300x188.jpg
200 OK 13 kB URL GET HTTP/3 elpolitico.com/wp-content/uploads/2023/12/Hospitales-de-Estados-Unidos-300x188.jpg
IP
Requested by https://www.descifrado.com/2023/08/17/medios-venezolanos-denuncian-suplantacion-de-identidad-en-whatsapp/robo-whatsappwebp/
Certificate IssuerLet's Encrypt
Subjectelpolitico.com
Fingerprint17:4A:B7:1B:4B:C7:A6:E8:C1:9A:C6:B6:73:1B:1B:43:0C:E0:61:E8
ValidityWed, 25 Oct 2023 04:58:38 GMT - Tue, 23 Jan 2024 04:58:37 GMT
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "Compressed by jpeg-recompress", progressive, precision 8, 300x188, components 3
- data
Hash 8fbe2f530cf70ee01ece8b81198a46e3
47f04039c7467cf88539ff2898ece4d869b178a6
e89ac53cc66006dcaa79f72345201b306b771cf1040fb1e0003b21ca2c007d7f
GET /wp-content/uploads/2023/12/Hospitales-de-Estados-Unidos-300x188.jpg HTTP/1.1
Host: elpolitico.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.descifrado.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Mon, 11 Dec 2023 16:45:38 GMT
content-type: image/jpeg
content-length: 13042
cf-ray: 833f32f99a0cb4ff-OSL
cf-cache-status: HIT
accept-ranges: bytes
age: 80680
cache-control: max-age=1800
etag: "32f2-60c194e9a9465"
last-modified: Sat, 09 Dec 2023 20:11:32 GMT
vary: Accept-Encoding
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=hQayg4Vx7MBhjgNI0RkjH%2BmFV%2BPRj%2BlZo50jAqBi4r5z%2FoYkn1HwhVMJItNlypamCcx3iFHftxL%2FPP636uYw83JV30yyEyKd4aWCddVy%2F%2FVxnFAMKvlC20rCoV3%2BrvIcJQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
alt-svc: h3=":443"; ma=86400
elpolitico.com/wp-content/uploads/2023/12/Javier-Milei-1-300x169.jpg
200 OK 11 kB URL GET HTTP/3 elpolitico.com/wp-content/uploads/2023/12/Javier-Milei-1-300x169.jpg
IP
Requested by https://www.descifrado.com/2023/08/17/medios-venezolanos-denuncian-suplantacion-de-identidad-en-whatsapp/robo-whatsappwebp/
Certificate IssuerLet's Encrypt
Subjectelpolitico.com
Fingerprint17:4A:B7:1B:4B:C7:A6:E8:C1:9A:C6:B6:73:1B:1B:43:0C:E0:61:E8
ValidityWed, 25 Oct 2023 04:58:38 GMT - Tue, 23 Jan 2024 04:58:37 GMT
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 300x169, components 3
- data
Hash 3a7009566b3b57612420d86ff1ae5d17
7638c8e10a9d4da745f0b801db4e966403c6a93d
fa0a294aaafc22368509004b32f570ce57ba55cc738f868e6df5eddaca7f7e15
GET /wp-content/uploads/2023/12/Javier-Milei-1-300x169.jpg HTTP/1.1
Host: elpolitico.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.descifrado.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Mon, 11 Dec 2023 16:45:38 GMT
content-type: image/jpeg
content-length: 11269
cf-ray: 833f32f99a0fb4ff-OSL
cf-cache-status: HIT
accept-ranges: bytes
age: 80680
cache-control: max-age=1800
etag: "2c05-60c17d65bc834"
last-modified: Sat, 09 Dec 2023 18:26:20 GMT
vary: Accept-Encoding
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=SqVFH48oDuiy9wPAx2GOhaNorVvVapOoExkSE1KHpXOiWCB9tAFKm1z8BmES7FVh%2F5r3dI4i9cHjEcmfEz%2FJQxpIxhnP%2B%2F1uif2Q8eTp3yNpJKGwhpZKPs%2FXfe7M1QW%2F6A%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
alt-svc: h3=":443"; ma=86400
elpolitico.com/wp-content/uploads/2023/12/El-embajador-de-EE.UU-Robert-Wood-300x169.jpg
200 OK 8.3 kB URL GET HTTP/3 elpolitico.com/wp-content/uploads/2023/12/El-embajador-de-EE.UU-Robert-Wood-300x169.jpg
IP
Requested by https://www.descifrado.com/2023/08/17/medios-venezolanos-denuncian-suplantacion-de-identidad-en-whatsapp/robo-whatsappwebp/
Certificate IssuerLet's Encrypt
Subjectelpolitico.com
Fingerprint17:4A:B7:1B:4B:C7:A6:E8:C1:9A:C6:B6:73:1B:1B:43:0C:E0:61:E8
ValidityWed, 25 Oct 2023 04:58:38 GMT - Tue, 23 Jan 2024 04:58:37 GMT
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "Compressed by jpeg-recompress", progressive, precision 8, 300x169, components 3
- data
Hash fafe5d57c22d5bcf7b672a901aba1b3b
b1cf6e4ca088be2828e0a42f896b2fd092fdd207
f82da883b8ac776c0abe280e3865b6fff291fb1fab7faea1ed0a839dc2b147db
GET /wp-content/uploads/2023/12/El-embajador-de-EE.UU-Robert-Wood-300x169.jpg HTTP/1.1
Host: elpolitico.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.descifrado.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Mon, 11 Dec 2023 16:45:38 GMT
content-type: image/jpeg
content-length: 8310
cf-ray: 833f32f99a12b4ff-OSL
cf-cache-status: HIT
accept-ranges: bytes
age: 80680
cache-control: max-age=1800
etag: "2076-60c15b6a4bfde"
last-modified: Sat, 09 Dec 2023 15:54:18 GMT
vary: Accept-Encoding
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=YFHaigk1pGGwclyP0nyZuESsLC0TPbvFryGHS6K7q5LLW1bzHiNoOlE2raVk9Xqpf3GRDz9eWQLqKS26iICbyXkiNHcHdC06v6k0%2FAlVUMXve%2FQiKvV9aAWVIMHRRQbZjA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
alt-svc: h3=":443"; ma=86400
elpolitico.com/wp-content/uploads/2023/09/IMG_0118-1-300x200.jpeg
200 OK 14 kB URL GET HTTP/3 elpolitico.com/wp-content/uploads/2023/09/IMG_0118-1-300x200.jpeg
IP
Requested by https://www.descifrado.com/2023/08/17/medios-venezolanos-denuncian-suplantacion-de-identidad-en-whatsapp/robo-whatsappwebp/
Certificate IssuerLet's Encrypt
Subjectelpolitico.com
Fingerprint17:4A:B7:1B:4B:C7:A6:E8:C1:9A:C6:B6:73:1B:1B:43:0C:E0:61:E8
ValidityWed, 25 Oct 2023 04:58:38 GMT - Tue, 23 Jan 2024 04:58:37 GMT
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "Compressed by jpeg-recompress", Exif Standard: [TIFF image data, big-endian, direntries=5, xresolution=74, yresolution=82, resolutionunit=2], progressive, precision 8, 300x200, components 3
- data
Hash 794d629a2412b71615bb01aa2ad37b5c
1216244fb7ac915446e38b3d67fe215e1d27ea86
25a584aea4ae5f0774a3e0095ef3d2ef54cc20f59f6ce77863ff84aaab5a4281
GET /wp-content/uploads/2023/09/IMG_0118-1-300x200.jpeg HTTP/1.1
Host: elpolitico.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.descifrado.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Mon, 11 Dec 2023 16:45:38 GMT
content-type: image/jpeg
content-length: 14278
cf-ray: 833f32f99a17b4ff-OSL
cf-cache-status: HIT
accept-ranges: bytes
age: 80680
cache-control: max-age=1800
etag: "37c6-6057b0281a7aa"
last-modified: Sat, 16 Sep 2023 14:49:01 GMT
vary: Accept-Encoding
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=ofU0gLvkmdtpZtIRWBfhitWL6%2Bz6B6%2B0HaE%2FMTxwSTdNmpUH2IOqZAJwzW6OvW7HDc7ku7IHtTSQqfTzGRpI57M%2B88afiXHpdD1cKAYrwTe0Ao7tgpRyqtQr460mk8xBdQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
alt-svc: h3=":443"; ma=86400
elpolitico.com/wp-content/uploads/2023/10/KEVIN-MCCARTHY-REPUBLICANO-CAMARA-BAJA-2-FINAL-300x169.jpg
200 OK 14 kB URL GET HTTP/3 elpolitico.com/wp-content/uploads/2023/10/KEVIN-MCCARTHY-REPUBLICANO-CAMARA-BAJA-2-FINAL-300x169.jpg
IP
Requested by https://www.descifrado.com/2023/08/17/medios-venezolanos-denuncian-suplantacion-de-identidad-en-whatsapp/robo-whatsappwebp/
Certificate IssuerLet's Encrypt
Subjectelpolitico.com
Fingerprint17:4A:B7:1B:4B:C7:A6:E8:C1:9A:C6:B6:73:1B:1B:43:0C:E0:61:E8
ValidityWed, 25 Oct 2023 04:58:38 GMT - Tue, 23 Jan 2024 04:58:37 GMT
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 300x300, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=4, orientation=upper-left, xresolution=62, yresolution=70, resolutionunit=2], baseline, precision 8, 300x169, components 3
- data
Hash b1c3d6f113736ce2ca422113cedb5e10
928a6c87ab1de872b8827708134c576ff1aca863
026a851d35f984962d551e891916d960aab5a732d4dbac2ad51b2b242d299710
GET /wp-content/uploads/2023/10/KEVIN-MCCARTHY-REPUBLICANO-CAMARA-BAJA-2-FINAL-300x169.jpg HTTP/1.1
Host: elpolitico.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.descifrado.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Mon, 11 Dec 2023 16:45:38 GMT
content-type: image/jpeg
content-length: 13453
cf-ray: 833f32f9ba36b4ff-OSL
cf-cache-status: HIT
accept-ranges: bytes
age: 80680
cache-control: max-age=1800
etag: "348d-606da7603821d"
last-modified: Wed, 04 Oct 2023 02:06:52 GMT
vary: Accept-Encoding
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=pIz2mkoSc1peX5a8Qip7cMG3QeTsKz2JjZV5iMeaUr%2Fq0C0asrEixTtoDWb6U4ppmU05t94u4aIoT9ZQuz0qY0QCOzHVDpsvoQskVDG8mCNshml5pXMhxsQZuotUKFiLiQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
alt-svc: h3=":443"; ma=86400
www.descifrado.com/wp-content/themes/Newspaper/js/tagdiv_theme.min.js?ver=8.1
200 OK 54 kB URL GET HTTP/3 www.descifrado.com/wp-content/themes/Newspaper/js/tagdiv_theme.min.js?ver=8.1
IP
Requested by https://www.descifrado.com/2023/08/17/medios-venezolanos-denuncian-suplantacion-de-identidad-en-whatsapp/robo-whatsappwebp/
Certificate IssuerLet's Encrypt
Subjectdescifrado.com
Fingerprint98:00:4E:1C:E2:4D:B1:D9:CC:AE:94:0F:8E:34:D9:92:9E:E2:9F:95
ValidityWed, 22 Nov 2023 16:50:38 GMT - Tue, 20 Feb 2024 16:50:37 GMT
File type ASCII text, with very long lines (670)
Hash d490875800a025d198afcc4017eda527
49cca943d0dfe1e3d5f40c54ed2f7f0d99138d3a
975f42a84c0e927faeff6a7fc795d9d51c7914601dc575169c81fc9ae8a66452
GET /wp-content/themes/Newspaper/js/tagdiv_theme.min.js?ver=8.1 HTTP/1.1
Host: www.descifrado.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.descifrado.com/2023/08/17/medios-venezolanos-denuncian-suplantacion-de-identidad-en-whatsapp/robo-whatsappwebp/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Mon, 11 Dec 2023 16:45:36 GMT
content-type: application/javascript
last-modified: Wed, 22 Apr 2020 14:23:14 GMT
vary: Accept-Encoding
etag: W/"5ea05352-31e0d"
x-powered-by: WordOps
x-frame-options: SAMEORIGIN, SAMEORIGIN
x-content-type-options: nosniff, nosniff
referrer-policy: strict-origin-when-cross-origin, no-referrer-when-downgrade
access-control-allow-origin: *
cache-control: max-age=2592000
expires: Sat, 23 Dec 2023 12:38:15 GMT
x-xss-protection: 1; mode=block
cf-cache-status: HIT
age: 1570041
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=zmDXjGuwCC8hwFFoPeJ3x2pM57lQBYk933CRvIce4mM9P1tqwRJeFTks%2BLKCK5v8JrDvdswMjo2sOEhwTFqCmBVtcscfLmnO7%2FBHBTVGsAgD0lKS0bBFC6SFJ%2FTwwa8OVEk31EU%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 833f32ebf830b4f4-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
dkae4asr0dphj.cloudfront.net/images/ON.png
200 OK 36 kB URL GET HTTP/2 dkae4asr0dphj.cloudfront.net/images/ON.png
IP
Requested by https://www.descifrado.com/2023/08/17/medios-venezolanos-denuncian-suplantacion-de-identidad-en-whatsapp/robo-whatsappwebp/
Certificate IssuerAmazon
Subject*.cloudfront.net
FingerprintFA:21:45:DC:4D:94:03:A3:09:77:51:78:4A:21:F2:C5:6D:94:BE:52
ValidityTue, 10 Oct 2023 00:00:00 GMT - Thu, 19 Sep 2024 23:59:59 GMT
File type PNG image data, 355 x 355, 8-bit/color RGBA, non-interlaced
- data
Hash 871287edbd88c5f99a5d411c7b6633ef
344e6b02a2de5c2612fc58ab8c8f5d8c8e4bb497
fb0d2599e5748beb5076038dfed7583534a44542afbcca7b81b6f1c95ca7a1e2
GET /images/ON.png HTTP/1.1
Host: dkae4asr0dphj.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.descifrado.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: image/png
content-length: 35452
last-modified: Thu, 21 Jul 2022 16:40:49 GMT
x-amz-version-id: wdBj49_vrJaV8PgEf3oFyvxdCwrH_E20
accept-ranges: bytes
server: AmazonS3
date: Mon, 11 Dec 2023 05:30:01 GMT
etag: "871287edbd88c5f99a5d411c7b6633ef"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 db0992ba349fc51d5151ec8330e36c28.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: L6bDp9_pEDHYQy5whG_uMbi5gyy5NonxE8M-DhGso1VjtOjFkblnyw==
age: 41015
X-Firefox-Spdy: h2
tags.newdreamglobal.com/admanager/cfg/2.0.0/www.descifrado.com.js
200 OK 9.6 kB URL GET HTTP/3 tags.newdreamglobal.com/admanager/cfg/2.0.0/www.descifrado.com.js
IP
Requested by https://www.descifrado.com/2023/08/17/medios-venezolanos-denuncian-suplantacion-de-identidad-en-whatsapp/robo-whatsappwebp/
Certificate IssuerGoogle Trust Services LLC
Subjectnewdreamglobal.com
Fingerprint83:02:05:0F:E0:20:C1:B8:55:26:9A:3A:EE:CA:ED:50:D2:4F:C1:16
ValidityTue, 31 Oct 2023 07:22:57 GMT - Mon, 29 Jan 2024 07:22:56 GMT
File type JSON data
- , ASCII text, with very long lines (47057), with CRLF line terminators
Hash 53be5d99b201957f298b9ed680fd4dee
b5bc7bf2fd5f528100ee2b030690d22994705324
34194b5a8a9300a969be2cfe5d6c7fd9594009e74f70765e79b3854af6ad7f8f
GET /admanager/cfg/2.0.0/www.descifrado.com.js HTTP/1.1
Host: tags.newdreamglobal.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.descifrado.com
DNT: 1
Connection: keep-alive
Referer: https://www.descifrado.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Mon, 11 Dec 2023 16:45:37 GMT
content-type: application/json
x-server: ndg-grey-goose
etime: 0.0001 s
cache-control: max-age=300, s-maxage=1800, must-revalidate, stale-while-revalidate=300, stale-if-error=600
expires: Mon, 11 Dec 2023 16:50:37 GMT
x-service: 2.0.0
x-host: www.descifrado.com
strict-transport-security: max-age=31536000
access-control-allow-origin: *
access-control-allow-headers: DNT,X-CustomHeader,Origin,Keep-Alive,User-Agent,Content-Type, Accept,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Pragma
access-control-max-age: 1728000
access-control-allow-methods: GET,POST,OPTIONS,HEAD,DELETE,PUT
access-control-expose-headers: Server, Content-Length, Content-Range, Date
access-control-allow-credentials: true
cf-cache-status: EXPIRED
last-modified: Sun, 10 Dec 2023 22:59:43 GMT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=lOnRm%2BAQJsQb1q%2BVzalqlst3X%2FN3A4Ac%2BiyyYvvSGhdq7GbDHDsfphMSd1jFkfvLuG66t6VRyZaHLl8GQBYa05JbUuv2d0EIMk1masHu%2FP4O6Mo%2Fu1i1%2FpXJCiYBLLwaF4riYZqtk8k11g%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 833f32f49f6556c1-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
player.aniview.com/script/6.1/libs/prebid/avpb8.21.0.js
200 OK 88 kB URL GET HTTP/3 player.aniview.com/script/6.1/libs/prebid/avpb8.21.0.js
IP
ASN #20940 Akamai International B.V.
Requested by https://www.descifrado.com/2023/08/17/medios-venezolanos-denuncian-suplantacion-de-identidad-en-whatsapp/robo-whatsappwebp/
Certificate IssuerDigiCert Inc
Subject*.aniview.com
Fingerprint7F:F6:9D:81:B5:2C:92:FC:87:95:90:EC:4B:F5:7B:56:86:0F:EB:5B
ValidityFri, 13 Oct 2023 00:00:00 GMT - Tue, 15 Oct 2024 23:59:59 GMT
File type ASCII text, with very long lines (65536), with no line terminators
Hash e3d6a928d64e1d2a0a7dfa0d41f1fde3
49a704b690ac340789c5c4317c7ebad6a38d615a
a03c919b6f7d296e2118d9b0f598d26a079f3bf3ab601595ec5f22d0ecc3e96b
GET /script/6.1/libs/prebid/avpb8.21.0.js HTTP/1.1
Host: player.aniview.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.descifrado.com/
Cookie: aniC=1702313138208-172027074107-000187-003-005934
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
x-guploader-uploadid: ABPtcPp1MmEkdaJM-qG-DJqVtQT3m5yqtcOL_4ydLZFxE2NVwNJmsoYwhWaTkG-dNPyg1Ii2Suk
last-modified: Sun, 10 Dec 2023 07:45:31 GMT
etag: "2e55589f02c4987544078c504b826971"
x-goog-generation: 1702194331235326
x-goog-metageneration: 2
x-goog-stored-content-encoding: gzip
x-goog-stored-content-length: 88488
content-type: text/javascript; charset=UTF-8
content-encoding: gzip
x-goog-hash: crc32c=AjbO2Q==, md5=LlVYnwLEmHVEB4xQS4JpcQ==
x-goog-storage-class: MULTI_REGIONAL
accept-ranges: bytes
content-length: 88488
access-control-expose-headers: Content-Type
server: UploadServer
cache-control: public, no-transform, max-age=900
expires: Mon, 11 Dec 2023 17:00:38 GMT
date: Mon, 11 Dec 2023 16:45:38 GMT
alt-svc: h3=":443"; ma=93600,h3-29=":443"; ma=93600,h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"
vary: Accept-Encoding
quic-version: 0x00000001
access-control-allow-origin: *
track1.aniview.com/track?d=Firefox&cou=NO&cos=Windows&r=www.descifrado.com&rs=www.descifrado.com&sid=83127&t=1702313138&cip=91.90.42.154&sn=&tgt=0&osv=10&bv=105.0&brn=Firefox&wi=480&he=270&app=&AV_PUBLISHERID=5d31fb2628a06116ff22aef3&test=&d64=e15172fb0be24e0b99463a4e602a537c&d63=e15172fb0be24e0b99463a4e602a537c&aafaid=&proto=https&uid=1702313138208-172027074107-000187-003-005934&cha=0.05&stagid=6478945b968e5a6b590e88f4&stplid=622621151af7757c9b6e9ad7&d35=&d36=6.2.147&cb=85762514542&d39=&d65=Active&d66=&d74=&d56=&apppkg=&d20=0Y&d9=1000&d37=realtime&AV_WIDTH=480&AV_HEIGHT=270&nid=5d31fb2628a06116ff22aef3&ncid=647893ab83c2dca1fb0c9cbd&e=request&cb=1702313138732&asid=6478947542b2aa17cd0ff376%2C647deede4b3b7c49c40958d3%2C6481fc6b5cfaf269cf021e04%2C6478b13e5208200638051563%2C647f63579157ba61930d5c68%2C642d9152f9027db3bf0c0766%2C647deed24f8c8957a30b15a4%2C647a123884d4eeca2d0508e4&ofpr=0.1%2C0.1%2C0.1%2C0.1%2C0.1%2C0.1%2C%2C0.1&fpo=%2C%2C%2C%2C%2C%2C%2C&ri=1%2C1%2C1%2C1%2C1%2C1%2C1%2C1
200 OK 0 B URL GET HTTP/2 track1.aniview.com/track?d=Firefox&cou=NO&cos=Windows&r=www.descifrado.com&rs=www.descifrado.com&sid=83127&t=1702313138&cip=91.90.42.154&sn=&tgt=0&osv=10&bv=105.0&brn=Firefox&wi=480&he=270&app=&AV_PUBLISHERID=5d31fb2628a06116ff22aef3&test=&d64=e15172fb0be24e0b99463a4e602a537c&d63=e15172fb0be24e0b99463a4e602a537c&aafaid=&proto=https&uid=1702313138208-172027074107-000187-003-005934&cha=0.05&stagid=6478945b968e5a6b590e88f4&stplid=622621151af7757c9b6e9ad7&d35=&d36=6.2.147&cb=85762514542&d39=&d65=Active&d66=&d74=&d56=&apppkg=&d20=0Y&d9=1000&d37=realtime&AV_WIDTH=480&AV_HEIGHT=270&nid=5d31fb2628a06116ff22aef3&ncid=647893ab83c2dca1fb0c9cbd&e=request&cb=1702313138732&asid=6478947542b2aa17cd0ff376%2C647deede4b3b7c49c40958d3%2C6481fc6b5cfaf269cf021e04%2C6478b13e5208200638051563%2C647f63579157ba61930d5c68%2C642d9152f9027db3bf0c0766%2C647deed24f8c8957a30b15a4%2C647a123884d4eeca2d0508e4&ofpr=0.1%2C0.1%2C0.1%2C0.1%2C0.1%2C0.1%2C%2C0.1&fpo=%2C%2C%2C%2C%2C%2C%2C&ri=1%2C1%2C1%2C1%2C1%2C1%2C1%2C1
IP
Requested by https://www.descifrado.com/2023/08/17/medios-venezolanos-denuncian-suplantacion-de-identidad-en-whatsapp/robo-whatsappwebp/
Certificate IssuerDigiCert Inc
Subject*.aniview.com
FingerprintE3:44:D3:16:7C:71:A8:C3:1D:A9:15:EC:5E:18:18:63:72:33:4C:59
ValiditySat, 15 Jul 2023 00:00:00 GMT - Wed, 14 Aug 2024 23:59:59 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /track?d=Firefox&cou=NO&cos=Windows&r=www.descifrado.com&rs=www.descifrado.com&sid=83127&t=1702313138&cip=91.90.42.154&sn=&tgt=0&osv=10&bv=105.0&brn=Firefox&wi=480&he=270&app=&AV_PUBLISHERID=5d31fb2628a06116ff22aef3&test=&d64=e15172fb0be24e0b99463a4e602a537c&d63=e15172fb0be24e0b99463a4e602a537c&aafaid=&proto=https&uid=1702313138208-172027074107-000187-003-005934&cha=0.05&stagid=6478945b968e5a6b590e88f4&stplid=622621151af7757c9b6e9ad7&d35=&d36=6.2.147&cb=85762514542&d39=&d65=Active&d66=&d74=&d56=&apppkg=&d20=0Y&d9=1000&d37=realtime&AV_WIDTH=480&AV_HEIGHT=270&nid=5d31fb2628a06116ff22aef3&ncid=647893ab83c2dca1fb0c9cbd&e=request&cb=1702313138732&asid=6478947542b2aa17cd0ff376%2C647deede4b3b7c49c40958d3%2C6481fc6b5cfaf269cf021e04%2C6478b13e5208200638051563%2C647f63579157ba61930d5c68%2C642d9152f9027db3bf0c0766%2C647deed24f8c8957a30b15a4%2C647a123884d4eeca2d0508e4&ofpr=0.1%2C0.1%2C0.1%2C0.1%2C0.1%2C0.1%2C%2C0.1&fpo=%2C%2C%2C%2C%2C%2C%2C&ri=1%2C1%2C1%2C1%2C1%2C1%2C1%2C1 HTTP/1.1
Host: track1.aniview.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.descifrado.com/
Cookie: aniC=1702313138208-172027074107-000187-003-005934
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Mon, 11 Dec 2023 16:45:38 GMT
content-length: 0
cache-control: max-age=0, no-cache, no-store
set-cookie: version=av17.4.0-928f41d9e68027546e8f58888a6f30a550a764a4; path=/
X-Firefox-Spdy: h2
player.aniview.com/script/6.1/libs/prebid/avpb8.21.0a3.js
200 OK 21 kB URL GET HTTP/3 player.aniview.com/script/6.1/libs/prebid/avpb8.21.0a3.js
IP
ASN #20940 Akamai International B.V.
Requested by https://www.descifrado.com/2023/08/17/medios-venezolanos-denuncian-suplantacion-de-identidad-en-whatsapp/robo-whatsappwebp/
Certificate IssuerDigiCert Inc
Subject*.aniview.com
Fingerprint7F:F6:9D:81:B5:2C:92:FC:87:95:90:EC:4B:F5:7B:56:86:0F:EB:5B
ValidityFri, 13 Oct 2023 00:00:00 GMT - Tue, 15 Oct 2024 23:59:59 GMT
File type ASCII text, with very long lines (65536), with no line terminators
Hash 1c1d2b282a56d58295e8afda1ecff629
b4c144bbf3253ebeaed61de454ca323ea057b5c2
9616dfed38696d46b37d242de8ad5deac4391e22190224d61805464a8a3cd083
GET /script/6.1/libs/prebid/avpb8.21.0a3.js HTTP/1.1
Host: player.aniview.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.descifrado.com/
Cookie: aniC=1702313138208-172027074107-000187-003-005934
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
x-guploader-uploadid: ABPtcPq50o0QSJtLtvhn3QFhLHtnAhor2-43srp-3BOwK-bnibbkla-zTV-Ntiw2zzmiiUxr0Q
last-modified: Sun, 10 Dec 2023 07:45:31 GMT
etag: "c68a8985ddde39fbd30851dd6d2f7035"
x-goog-generation: 1702194331203838
x-goog-metageneration: 2
x-goog-stored-content-encoding: gzip
x-goog-stored-content-length: 21336
content-type: text/javascript; charset=UTF-8
content-encoding: gzip
x-goog-hash: crc32c=xVn9Lw==, md5=xoqJhd3eOfvTCFHdbS9wNQ==
x-goog-storage-class: MULTI_REGIONAL
accept-ranges: bytes
content-length: 21336
access-control-expose-headers: Content-Type
server: UploadServer
cache-control: public, no-transform, max-age=900
expires: Mon, 11 Dec 2023 17:00:38 GMT
date: Mon, 11 Dec 2023 16:45:38 GMT
alt-svc: h3=":443"; ma=93600,h3-29=":443"; ma=93600,h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"
vary: Accept-Encoding
quic-version: 0x00000001
access-control-allow-origin: *
player.aniview.com/script/6.1/libs/prebid/avpb8.21.0a1.js
200 OK 23 kB URL GET HTTP/3 player.aniview.com/script/6.1/libs/prebid/avpb8.21.0a1.js
IP
ASN #20940 Akamai International B.V.
Requested by https://www.descifrado.com/2023/08/17/medios-venezolanos-denuncian-suplantacion-de-identidad-en-whatsapp/robo-whatsappwebp/
Certificate IssuerDigiCert Inc
Subject*.aniview.com
Fingerprint7F:F6:9D:81:B5:2C:92:FC:87:95:90:EC:4B:F5:7B:56:86:0F:EB:5B
ValidityFri, 13 Oct 2023 00:00:00 GMT - Tue, 15 Oct 2024 23:59:59 GMT
File type ASCII text, with very long lines (65536), with no line terminators
Hash 6f3702189504d8af882e87f1ffd2d272
3c4437cc4b0fdf4b1dbf8f59b3c3057ec290e8f5
27a54d941da595d27826a4260ae716b10edcf375c5cf0b56ceec0d1d4708862a
GET /script/6.1/libs/prebid/avpb8.21.0a1.js HTTP/1.1
Host: player.aniview.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.descifrado.com/
Cookie: aniC=1702313138208-172027074107-000187-003-005934
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
x-guploader-uploadid: ABPtcPrQL442wlEvyzAV5AnnEwBofsW_uWZyAgB3DvAgPofRiCByLt_FtAEiSDDgw1Q4GYeWOQ
x-goog-generation: 1702194331231978
x-goog-metageneration: 2
x-goog-stored-content-encoding: gzip
x-goog-stored-content-length: 22927
content-encoding: gzip
x-goog-hash: crc32c=zvnD+Q==, md5=yNdRwk8inZjEzvFGqQ5oyg==
x-goog-storage-class: MULTI_REGIONAL
accept-ranges: bytes
content-length: 22927
access-control-expose-headers: Content-Type
server: UploadServer
last-modified: Sun, 10 Dec 2023 07:45:31 GMT
etag: "c8d751c24f229d98c4cef146a90e68ca"
content-type: text/javascript; charset=UTF-8
cache-control: public, no-transform, max-age=900
expires: Mon, 11 Dec 2023 17:00:38 GMT
date: Mon, 11 Dec 2023 16:45:38 GMT
alt-svc: h3=":443"; ma=93600,h3-29=":443"; ma=93600,h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"
vary: Accept-Encoding
quic-version: 0x00000001
access-control-allow-origin: *
player.aniview.com/script/6.1/libs/prebid/avpb8.21.0a0.js
200 OK 23 kB URL GET HTTP/3 player.aniview.com/script/6.1/libs/prebid/avpb8.21.0a0.js
IP
ASN #20940 Akamai International B.V.
Requested by https://www.descifrado.com/2023/08/17/medios-venezolanos-denuncian-suplantacion-de-identidad-en-whatsapp/robo-whatsappwebp/
Certificate IssuerDigiCert Inc
Subject*.aniview.com
Fingerprint7F:F6:9D:81:B5:2C:92:FC:87:95:90:EC:4B:F5:7B:56:86:0F:EB:5B
ValidityFri, 13 Oct 2023 00:00:00 GMT - Tue, 15 Oct 2024 23:59:59 GMT
File type ASCII text, with very long lines (65536), with no line terminators
Hash c87a9c514f4f53e65ac10e4d2671787c
5daa9637fe116c4af9f18b6e6e5d6d09c7587809
88b5d3d3501a35e93441969a766d4cdf3d9f5d87d4534e13d1d7d64793cc6006
GET /script/6.1/libs/prebid/avpb8.21.0a0.js HTTP/1.1
Host: player.aniview.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.descifrado.com/
Cookie: aniC=1702313138208-172027074107-000187-003-005934
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
x-guploader-uploadid: ABPtcPpCMG6_Odjr7IKdYAs7zu3hgDfjOWvQv2h7RieUG18pKm47ES50PxARySmIZH4lp5c2shzXfU_Opg
x-goog-generation: 1702194331029391
x-goog-metageneration: 2
x-goog-stored-content-encoding: gzip
x-goog-stored-content-length: 23198
content-encoding: gzip
x-goog-hash: crc32c=hlbZQA==, md5=nTqS6H2kszBrNALyuFgYGQ==
x-goog-storage-class: MULTI_REGIONAL
accept-ranges: bytes
content-length: 23198
access-control-expose-headers: Content-Type
server: UploadServer
last-modified: Sun, 10 Dec 2023 07:45:31 GMT
etag: "9d3a92e87da4b3306b3402f2b8581819"
content-type: text/javascript; charset=UTF-8
cache-control: public, no-transform, max-age=900
expires: Mon, 11 Dec 2023 17:00:38 GMT
date: Mon, 11 Dec 2023 16:45:38 GMT
alt-svc: h3=":443"; ma=93600,h3-29=":443"; ma=93600,h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"
vary: Accept-Encoding
quic-version: 0x00000001
access-control-allow-origin: *
prebid.a-mo.net/cchain/0?gdpr=1&gdpr_consent=&cb=https%3A%2F%2Fsync.aniview.com%2Fcookiesyncendpoint%3Fauid%3D1702313138208-172027074107-000187-003-005934%26biddername%3D105%26pid%3D59c9148628a0612da3689288%26key%3D
302 Found 0 B URL GET HTTP/2 prebid.a-mo.net/cchain/0?gdpr=1&gdpr_consent=&cb=https%3A%2F%2Fsync.aniview.com%2Fcookiesyncendpoint%3Fauid%3D1702313138208-172027074107-000187-003-005934%26biddername%3D105%26pid%3D59c9148628a0612da3689288%26key%3D
IP
Requested by https://www.descifrado.com/2023/08/17/medios-venezolanos-denuncian-suplantacion-de-identidad-en-whatsapp/robo-whatsappwebp/
Certificate IssuerLet's Encrypt
Subject*.a-mo.net
Fingerprint5C:1B:DB:42:AD:A4:54:7C:87:D6:3F:1A:B6:29:AF:0C:7F:A6:14:FE
ValidityTue, 07 Nov 2023 13:48:39 GMT - Mon, 05 Feb 2024 13:48:38 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /cchain/0?gdpr=1&gdpr_consent=&cb=https%3A%2F%2Fsync.aniview.com%2Fcookiesyncendpoint%3Fauid%3D1702313138208-172027074107-000187-003-005934%26biddername%3D105%26pid%3D59c9148628a0612da3689288%26key%3D HTTP/1.1
Host: prebid.a-mo.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.descifrado.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 302 Found
cache-control: max-age=0, private, must-revalidate
content-length: 0
date: Mon, 11 Dec 2023 16:45:38 GMT
location: https://sync.aniview.com/cookiesyncendpoint?auid=1702313138208-172027074107-000187-003-005934&biddername=105&pid=59c9148628a0612da3689288&key=&gdpr=1
server: envoy
set-cookie: _Amc_b=0; path=/; expires=Mon, 11 Dec 2023 16:50:38 GMT; max-age=300; secure; HttpOnly; SameSite=None
x-envoy-upstream-service-time: 1
X-Firefox-Spdy: h2
onetag-sys.com/prebid-request
200 OK 41 B URL POST HTTP/2 onetag-sys.com/prebid-request
IP
Requested by https://www.descifrado.com/2023/08/17/medios-venezolanos-denuncian-suplantacion-de-identidad-en-whatsapp/robo-whatsappwebp/
Certificate IssuerDigiCert Inc
Subject*.onetag-sys.com
Fingerprint1B:3E:A7:6D:D6:26:C6:9E:AB:38:DE:9E:22:71:64:8C:9F:91:0B:7B
ValidityWed, 28 Dec 2022 00:00:00 GMT - Sun, 28 Jan 2024 23:59:59 GMT
File type JSON data
- , ASCII text, with no line terminators
Hash c6a1847e6d7bb4295ecdae2664affb5d
b332217021c4a707f950ebc9294cda83cb2eb77f
663dab1310a7e64c3bdd7dfdc81b7fc9a28884d4ee290b96077c7b32bbe84707
POST /prebid-request HTTP/1.1
Host: onetag-sys.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.descifrado.com/
content-type: text/plain
Content-Length: 2413
Origin: https://www.descifrado.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
access-control-allow-origin: https://www.descifrado.com
access-control-allow-headers: content-type, origin, referer, user-agent
access-control-allow-credentials: true
p3p: CP='CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR'
cache-control: no-transform, no-cache
content-type: application/json
content-encoding: gzip
content-length: 41
strict-transport-security: max-age=15552000
alt-svc: h3=":443"; ma=900, h3-29=":443"; ma=900
X-Firefox-Spdy: h2
ib.adnxs.com/ut/v3/prebid
200 OK 139 B URL POST HTTP/2 ib.adnxs.com/ut/v3/prebid
IP
Requested by https://www.descifrado.com/2023/08/17/medios-venezolanos-denuncian-suplantacion-de-identidad-en-whatsapp/robo-whatsappwebp/
Certificate IssuerDigiCert Inc
Subject*.adnxs.com
Fingerprint30:E1:57:C8:5A:77:64:AE:54:99:08:F7:2B:B8:C7:F4:28:85:56:08
ValidityMon, 13 Feb 2023 00:00:00 GMT - Fri, 15 Mar 2024 23:59:59 GMT
File type JSON data
- , ASCII text, with no line terminators
Hash 412ec33506dd656a6840eaefc6ed73ac
32f2e4c4ef31968b6ef5e955a6887fb2f21af461
a7db835bf9ca938128838d03b0ea6a79dc22047db8828ed620cb3bae5c31821b
POST /ut/v3/prebid HTTP/1.1
Host: ib.adnxs.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.descifrado.com/
content-type: text/plain
Content-Length: 1320
Origin: https://www.descifrado.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx/1.23.4
date: Mon, 11 Dec 2023 16:45:39 GMT
content-type: application/json; charset=utf-8
content-length: 139
cache-control: no-store, no-cache, private
pragma: no-cache
expires: Sat, 15 Nov 2008 16:00:00 GMT
p3p: policyref="http://cdn.adnxs-simple.com/w3c/policy/p3p.xml", CP="NOI DSP COR ADM PSAo PSDo OURo SAMo UNRo OTRo BUS COM NAV DEM STA PRE"
x-xss-protection: 0
access-control-allow-credentials: true
access-control-allow-origin: https://www.descifrado.com
accept-ch: Sec-CH-UA-Full-Version-List,Sec-CH-UA-Arch,Sec-CH-UA-Model,Sec-CH-UA-Platform-Version,Sec-CH-UA-Bitness
an-x-request-uuid: 0b71adbf-faea-4d7f-b63a-8ca2ff7ba322
x-proxy-origin: 91.90.42.154; 91.90.42.154; 1005.bm-nginx-loadbalancer.mgmt.fra1.adnexus.net; adnxs.com
X-Firefox-Spdy: h2
ads.stickyadstv.com/user-matching?id=3655&_fw_gdpr=1&_fw_gdpr_consent=
302 Moved Temporarily 0 B URL GET HTTP/1.1 ads.stickyadstv.com/user-matching?id=3655&_fw_gdpr=1&_fw_gdpr_consent=
IP
ASN #20940 Akamai International B.V.
Requested by https://www.descifrado.com/2023/08/17/medios-venezolanos-denuncian-suplantacion-de-identidad-en-whatsapp/robo-whatsappwebp/
Certificate IssuerDigiCert Inc
Subject*.ads.stickyadstv.com
Fingerprint46:34:AD:F4:46:01:BF:1F:A4:30:33:10:42:DF:25:AA:9B:AD:60:89
ValiditySun, 16 Apr 2023 00:00:00 GMT - Tue, 16 Apr 2024 23:59:59 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /user-matching?id=3655&_fw_gdpr=1&_fw_gdpr_consent= HTTP/1.1
Host: ads.stickyadstv.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.descifrado.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 302 Moved Temporarily
Server: nginx
Content-Length: 0
Access-Control-Allow-Origin: *
Access-Control-Allow-Credentials: true
x-sticky-vk: 1702313139077041-514
Location: https://sync.aniview.com/cookiesyncendpoint?biddername=9&key=a6e5f9fcad6bb413582b1fad1c89c9&_fw_gdpr=1&_fw_gdpr_consent=
Expires: Mon, 11 Dec 2023 16:45:39 GMT
Cache-Control: max-age=0, no-cache, no-store
Pragma: no-cache
Date: Mon, 11 Dec 2023 16:45:39 GMT
Connection: keep-alive
Set-Cookie: UID=a6e5f9fcad6bb413582b1fad1c89c9; Domain=ads.stickyadstv.com; Expires=Wed, 10-Jan-2024 16:45:39 GMT; Path=/
ads.stickyadstv.com/auto-user-sync?px=1953&_fw_gdpr=1&_fw_gdpr_consent=
200 OK 43 B URL GET HTTP/1.1 ads.stickyadstv.com/auto-user-sync?px=1953&_fw_gdpr=1&_fw_gdpr_consent=
IP
ASN #20940 Akamai International B.V.
Requested by https://www.descifrado.com/2023/08/17/medios-venezolanos-denuncian-suplantacion-de-identidad-en-whatsapp/robo-whatsappwebp/
Certificate IssuerDigiCert Inc
Subject*.ads.stickyadstv.com
Fingerprint46:34:AD:F4:46:01:BF:1F:A4:30:33:10:42:DF:25:AA:9B:AD:60:89
ValiditySun, 16 Apr 2023 00:00:00 GMT - Tue, 16 Apr 2024 23:59:59 GMT
File type GIF image data, version 89a, 1 x 1
- data
Hash 07fff40b5dd495aca2ac4e1c3fbc60aa
e8ac224ba9ee97e87670ed6f3a2f0128b7af9fe4
a065920df8cc4016d67c3a464be90099c9d28ffe7c9e6ee3a18f257efc58cbd7
GET /auto-user-sync?px=1953&_fw_gdpr=1&_fw_gdpr_consent= HTTP/1.1
Host: ads.stickyadstv.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.descifrado.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: image/gif
Access-Control-Allow-Origin: *
Access-Control-Allow-Credentials: true
x-sticky-vk: 1702313139079046-508
Content-Length: 43
Expires: Mon, 11 Dec 2023 16:45:39 GMT
Cache-Control: max-age=0, no-cache, no-store
Pragma: no-cache
Date: Mon, 11 Dec 2023 16:45:39 GMT
Connection: keep-alive
Set-Cookie: UID=a6e5f9fcad6bb413582b1fad1c89c9; Domain=ads.stickyadstv.com; Expires=Wed, 10-Jan-2024 16:45:39 GMT; Path=/
pxId=1953; Domain=ads.stickyadstv.com; Path=/
sync.aniview.com/cookiesyncendpoint?auid=1702313138208-172027074107-000187-003-005934&biddername=105&pid=59c9148628a0612da3689288&key=&gdpr=1
200 OK 0 B URL GET HTTP/2 sync.aniview.com/cookiesyncendpoint?auid=1702313138208-172027074107-000187-003-005934&biddername=105&pid=59c9148628a0612da3689288&key=&gdpr=1
IP
Requested by https://www.descifrado.com/2023/08/17/medios-venezolanos-denuncian-suplantacion-de-identidad-en-whatsapp/robo-whatsappwebp/
Certificate IssuerDigiCert Inc
Subject*.aniview.com
FingerprintE3:44:D3:16:7C:71:A8:C3:1D:A9:15:EC:5E:18:18:63:72:33:4C:59
ValiditySat, 15 Jul 2023 00:00:00 GMT - Wed, 14 Aug 2024 23:59:59 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /cookiesyncendpoint?auid=1702313138208-172027074107-000187-003-005934&biddername=105&pid=59c9148628a0612da3689288&key=&gdpr=1 HTTP/1.1
Host: sync.aniview.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.descifrado.com/
DNT: 1
Connection: keep-alive
Cookie: aniC=1702313138208-172027074107-000187-003-005934
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
set-cookie: 1_C_105=; Path=/; Domain=aniview.com; Expires=Thu, 21 Dec 2023 16:45:39 GMT; Secure; SameSite=None
1_C_105=; Path=/; Expires=Thu, 21 Dec 2023 16:45:39 GMT; Secure; SameSite=None
date: Mon, 11 Dec 2023 16:45:39 GMT
content-length: 0
X-Firefox-Spdy: h2
sync.aniview.com/cookiesyncendpoint?biddername=9&key=a6e5f9fcad6bb413582b1fad1c89c9&_fw_gdpr=1&_fw_gdpr_consent=
200 OK 0 B URL GET HTTP/2 sync.aniview.com/cookiesyncendpoint?biddername=9&key=a6e5f9fcad6bb413582b1fad1c89c9&_fw_gdpr=1&_fw_gdpr_consent=
IP
Requested by https://www.descifrado.com/2023/08/17/medios-venezolanos-denuncian-suplantacion-de-identidad-en-whatsapp/robo-whatsappwebp/
Certificate IssuerDigiCert Inc
Subject*.aniview.com
FingerprintE3:44:D3:16:7C:71:A8:C3:1D:A9:15:EC:5E:18:18:63:72:33:4C:59
ValiditySat, 15 Jul 2023 00:00:00 GMT - Wed, 14 Aug 2024 23:59:59 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /cookiesyncendpoint?biddername=9&key=a6e5f9fcad6bb413582b1fad1c89c9&_fw_gdpr=1&_fw_gdpr_consent= HTTP/1.1
Host: sync.aniview.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.descifrado.com/
DNT: 1
Connection: keep-alive
Cookie: aniC=1702313138208-172027074107-000187-003-005934
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
set-cookie: 1_C_9=a6e5f9fcad6bb413582b1fad1c89c9; Path=/; Domain=aniview.com; Expires=Thu, 21 Dec 2023 16:45:39 GMT; Secure; SameSite=None
1_C_9=a6e5f9fcad6bb413582b1fad1c89c9; Path=/; Expires=Thu, 21 Dec 2023 16:45:39 GMT; Secure; SameSite=None
date: Mon, 11 Dec 2023 16:45:39 GMT
content-length: 0
X-Firefox-Spdy: h2
fundingchoicesmessages.google.com/f/AGSKWxWbUIRZrTeBkZIp7PiYw9RB7rEt80bwwRmecGTL8tzY0K__eQkOQCFJFx4o3F5sNYMFs_iANv7OHK8rix6FMs8=
200 OK 79 kB URL GET HTTP/2 fundingchoicesmessages.google.com/f/AGSKWxWbUIRZrTeBkZIp7PiYw9RB7rEt80bwwRmecGTL8tzY0K__eQkOQCFJFx4o3F5sNYMFs_iANv7OHK8rix6FMs8=
IP
Requested by https://www.descifrado.com/2023/08/17/medios-venezolanos-denuncian-suplantacion-de-identidad-en-whatsapp/robo-whatsappwebp/
Certificate IssuerGoogle Trust Services LLC
Subject*.google.com
Fingerprint5D:3A:D9:47:14:B0:78:30:A1:BF:B4:45:F6:F5:81:AD:0A:C7:76:89
ValidityMon, 20 Nov 2023 08:02:55 GMT - Mon, 12 Feb 2024 08:02:54 GMT
File type gzip compressed data, max compression
- data
Hash f9f763596b69a6f6b4ece55225e40cd5
e9b5dd7c82d1dbe6d923e3f4aac00027e790dca3
b9e9fc733c77d66bc0e6605c742c6dc0ad07daf1c4d36b597fe097fce7d7b304
GET /f/AGSKWxWbUIRZrTeBkZIp7PiYw9RB7rEt80bwwRmecGTL8tzY0K__eQkOQCFJFx4o3F5sNYMFs_iANv7OHK8rix6FMs8= HTTP/1.1
Host: fundingchoicesmessages.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.descifrado.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: application/javascript; charset=utf-8
vary: Sec-Fetch-Dest, Sec-Fetch-Mode, Sec-Fetch-Site
timing-allow-origin: *
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Mon, 11 Dec 2023 16:45:38 GMT
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin
content-security-policy: require-trusted-types-for 'script';report-uri /_/ContributorGlobalRouterHttp/cspreport, script-src 'nonce-1AQt-6e-LyYjLKVcdGvBug' 'unsafe-inline';object-src 'none';base-uri 'self';report-uri /_/ContributorGlobalRouterHttp/cspreport;worker-src 'self', script-src 'unsafe-inline' 'self' https://apis.google.com https://ssl.gstatic.com https://www.google.com https://www.googletagmanager.com https://www.gstatic.com https://www.google-analytics.com;report-uri /_/ContributorGlobalRouterHttp/cspreport/allowlist
permissions-policy: ch-ua-arch=*, ch-ua-bitness=*, ch-ua-full-version=*, ch-ua-full-version-list=*, ch-ua-model=*, ch-ua-wow64=*, ch-ua-form-factor=*, ch-ua-platform=*, ch-ua-platform-version=*
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Model, Sec-CH-UA-WoW64, Sec-CH-UA-Form-Factor, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
fonts.gstatic.com/s/opensans/v15/mem5YaGs126MiZpBA-UN7rgOUuhp.woff2
200 OK 15 kB URL GET HTTP/2 fonts.gstatic.com/s/opensans/v15/mem5YaGs126MiZpBA-UN7rgOUuhp.woff2
IP
Requested by https://www.descifrado.com/2023/08/17/medios-venezolanos-denuncian-suplantacion-de-identidad-en-whatsapp/robo-whatsappwebp/
Certificate IssuerGoogle Trust Services LLC
Subject*.gstatic.com
Fingerprint5F:60:69:C9:59:6D:F1:B5:87:82:8D:B0:57:3C:D9:24:10:FD:74:D1
ValidityMon, 20 Nov 2023 08:08:49 GMT - Mon, 12 Feb 2024 08:08:48 GMT
File type Web Open Font Format (Version 2), TrueType, length 14720, version 1.0
- data
Hash d08c09f2f169f4a6edbcf8b8d1636cb4
5a6a45d6f98752b11ccb7c4f0f6fd7faf18ad1a7
482994b911cc3e869aa8ace6d9932d67b68de83ea2885207ce165ff04c38d7bc
GET /s/opensans/v15/mem5YaGs126MiZpBA-UN7rgOUuhp.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.descifrado.com
DNT: 1
Connection: keep-alive
Referer: https://www.descifrado.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 14720
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 07 Dec 2023 04:53:00 GMT
expires: Fri, 06 Dec 2024 04:53:00 GMT
cache-control: public, max-age=31536000
age: 388359
last-modified: Wed, 11 Oct 2017 21:49:43 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
fonts.gstatic.com/s/opensans/v15/mem5YaGs126MiZpBA-UNirkOUuhp.woff2
200 OK 14 kB URL GET HTTP/3 fonts.gstatic.com/s/opensans/v15/mem5YaGs126MiZpBA-UNirkOUuhp.woff2
IP
Requested by https://www.descifrado.com/2023/08/17/medios-venezolanos-denuncian-suplantacion-de-identidad-en-whatsapp/robo-whatsappwebp/
Certificate IssuerGoogle Trust Services LLC
Subject*.gstatic.com
Fingerprint5F:60:69:C9:59:6D:F1:B5:87:82:8D:B0:57:3C:D9:24:10:FD:74:D1
ValidityMon, 20 Nov 2023 08:08:49 GMT - Mon, 12 Feb 2024 08:08:48 GMT
File type Web Open Font Format (Version 2), TrueType, length 14544, version 1.0
- data
Hash 223a277bd88d8a90c8cdf24cda0ad5f5
24234c1c81b3948758c1a0be8e5a65386ca94c52
d61b45b8b3cded238a65ee0aac4043b989f11cee56acfe5c889777f961f241a2
GET /s/opensans/v15/mem5YaGs126MiZpBA-UNirkOUuhp.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.descifrado.com
DNT: 1
Connection: keep-alive
Referer: https://www.descifrado.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 14544
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 07 Dec 2023 04:48:52 GMT
expires: Fri, 06 Dec 2024 04:48:52 GMT
cache-control: public, max-age=31536000
age: 388607
last-modified: Wed, 11 Oct 2017 21:49:51 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
fonts.gstatic.com/s/materialicons/v140/flUhRq6tzZclQEJ-Vdg-IuiaDsNc.woff2
200 OK 128 kB URL GET HTTP/3 fonts.gstatic.com/s/materialicons/v140/flUhRq6tzZclQEJ-Vdg-IuiaDsNc.woff2
IP
Requested by https://www.descifrado.com/2023/08/17/medios-venezolanos-denuncian-suplantacion-de-identidad-en-whatsapp/robo-whatsappwebp/
Certificate IssuerGoogle Trust Services LLC
Subject*.gstatic.com
Fingerprint5F:60:69:C9:59:6D:F1:B5:87:82:8D:B0:57:3C:D9:24:10:FD:74:D1
ValidityMon, 20 Nov 2023 08:08:49 GMT - Mon, 12 Feb 2024 08:08:48 GMT
File type Web Open Font Format (Version 2), TrueType, length 128352, version 1.0
- data
Size 128 kB (128352 bytes)
Hash 53436aca8627a49f4deaaa44dc9e3c05
0bc0c675480d94ec7e8609dda6227f88c5d08d2c
8265f64786397d6b832d1ca0aafdf149ad84e72759fffa9f7272e91a0fb015d1
GET /s/materialicons/v140/flUhRq6tzZclQEJ-Vdg-IuiaDsNc.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.descifrado.com
DNT: 1
Connection: keep-alive
Referer: https://www.descifrado.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 128352
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 07 Dec 2023 15:49:49 GMT
expires: Fri, 06 Dec 2024 15:49:49 GMT
cache-control: public, max-age=31536000
last-modified: Tue, 07 Mar 2023 19:51:56 GMT
content-type: font/woff2
age: 348950
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
fundingchoicesmessages.google.com/el/AGSKWxW_AwN0zHZsZ2LvgSTxKn2Vpovgq9auPre-jJzZT0s5ldd0lBcx9LZqmyiBQLk5HqnHOwS9_8T0VU29RxPtFqmDrmHm6wZ8zkVTrYqPuUxOLxLuLmysOLXds4WKm8xU-1l05ZnOYQ==
204 No Content 0 B URL POST HTTP/3 fundingchoicesmessages.google.com/el/AGSKWxW_AwN0zHZsZ2LvgSTxKn2Vpovgq9auPre-jJzZT0s5ldd0lBcx9LZqmyiBQLk5HqnHOwS9_8T0VU29RxPtFqmDrmHm6wZ8zkVTrYqPuUxOLxLuLmysOLXds4WKm8xU-1l05ZnOYQ==
IP
Requested by https://www.descifrado.com/2023/08/17/medios-venezolanos-denuncian-suplantacion-de-identidad-en-whatsapp/robo-whatsappwebp/
Certificate IssuerGoogle Trust Services LLC
Subject*.google.com
Fingerprint5D:3A:D9:47:14:B0:78:30:A1:BF:B4:45:F6:F5:81:AD:0A:C7:76:89
ValidityMon, 20 Nov 2023 08:02:55 GMT - Mon, 12 Feb 2024 08:02:54 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /el/AGSKWxW_AwN0zHZsZ2LvgSTxKn2Vpovgq9auPre-jJzZT0s5ldd0lBcx9LZqmyiBQLk5HqnHOwS9_8T0VU29RxPtFqmDrmHm6wZ8zkVTrYqPuUxOLxLuLmysOLXds4WKm8xU-1l05ZnOYQ== HTTP/1.1
Host: fundingchoicesmessages.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 92
Origin: https://www.descifrado.com
DNT: 1
Connection: keep-alive
Referer: https://www.descifrado.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 204 No Content
content-type: text/html; charset=utf-8
access-control-allow-methods: POST, GET, OPTIONS
access-control-max-age: 86400
access-control-allow-origin: https://www.descifrado.com
access-control-allow-credentials: true
vary: Sec-Fetch-Dest, Sec-Fetch-Mode, Sec-Fetch-Site
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Mon, 11 Dec 2023 16:45:39 GMT
content-security-policy: script-src 'nonce-I0lZypZuzL2Xv80ZAPtsgg' 'unsafe-inline';object-src 'none';base-uri 'self';report-uri /_/ContributorLoggingHttp/cspreport;worker-src 'self', script-src 'unsafe-inline' 'self' https://apis.google.com https://ssl.gstatic.com https://www.google.com https://www.googletagmanager.com https://www.gstatic.com https://www.google-analytics.com;report-uri /_/ContributorLoggingHttp/cspreport/allowlist, require-trusted-types-for 'script';report-uri /_/ContributorLoggingHttp/cspreport
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Model, Sec-CH-UA-WoW64, Sec-CH-UA-Form-Factor, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
cross-origin-opener-policy: same-origin
permissions-policy: ch-ua-arch=*, ch-ua-bitness=*, ch-ua-full-version=*, ch-ua-full-version-list=*, ch-ua-model=*, ch-ua-wow64=*, ch-ua-form-factor=*, ch-ua-platform=*, ch-ua-platform-version=*
server: ESF
content-length: 0
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
tags.newdreamglobal.com/admanager/prebid7.25.0.js
200 OK 141 kB URL GET HTTP/3 tags.newdreamglobal.com/admanager/prebid7.25.0.js
IP
Requested by https://www.descifrado.com/2023/08/17/medios-venezolanos-denuncian-suplantacion-de-identidad-en-whatsapp/robo-whatsappwebp/
Certificate IssuerGoogle Trust Services LLC
Subjectnewdreamglobal.com
Fingerprint83:02:05:0F:E0:20:C1:B8:55:26:9A:3A:EE:CA:ED:50:D2:4F:C1:16
ValidityTue, 31 Oct 2023 07:22:57 GMT - Mon, 29 Jan 2024 07:22:56 GMT
File type ASCII text, with very long lines (65536), with no line terminators
Size 141 kB (141023 bytes)
Hash c968d75f857d28fa7157f4b7c60d0b2c
6f8f87f6cdd9d3fd6e22df44e45a6274a19cc79e
4ae1bc187a25252e5c4dcb33e066bfdcd29c2369b971072e08c07a7c1dff9a3c
GET /admanager/prebid7.25.0.js HTTP/1.1
Host: tags.newdreamglobal.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.descifrado.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Mon, 11 Dec 2023 16:45:38 GMT
content-type: application/javascript
cache-control: public, max-age=3600, s-maxage=86400, stale-while-revalidate=3600, must-revalidate
cf-bgj: minify
cf-polished: origSize=485049
etag: W/"637619ea-766b9"
last-modified: Thu, 17 Nov 2022 11:24:26 GMT
vary: Accept-Encoding
cf-cache-status: HIT
age: 5993
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=9dO5X%2F53xwoJEvA%2F4td8ipA%2FX9uCPEyJJlI%2B1UqFAzcIzRFKK8xjRJrYfZwgccOhI5o7vF%2FY%2FHh%2BCtED5tKOtYEM2u8Hv3DuwaK6JUOROKtzHTpm6fLteH4iDRLAs4PAg8t0F94XZ5IgbQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 833f32fb7a511c16-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
track1.aniview.com/track?d=Firefox&cou=NO&cos=Windows&r=www.descifrado.com&rs=www.descifrado.com&sid=83127&t=1702313138&cip=91.90.42.154&sn=&tgt=0&osv=10&bv=105.0&brn=Firefox&wi=480&he=270&app=&AV_PUBLISHERID=5d31fb2628a06116ff22aef3&test=&d64=e15172fb0be24e0b99463a4e602a537c&d63=e15172fb0be24e0b99463a4e602a537c&aafaid=&proto=https&uid=1702313138208-172027074107-000187-003-005934&cha=0.05&stagid=6478945b968e5a6b590e88f4&stplid=622621151af7757c9b6e9ad7&d35=&d36=6.2.147&cb=85762514542&d39=&d65=Active&d66=&d74=&d56=&apppkg=&d20=0Y&d9=1000&d37=realtime&AV_WIDTH=480&AV_HEIGHT=270
200 OK 0 B URL POST HTTP/2 track1.aniview.com/track?d=Firefox&cou=NO&cos=Windows&r=www.descifrado.com&rs=www.descifrado.com&sid=83127&t=1702313138&cip=91.90.42.154&sn=&tgt=0&osv=10&bv=105.0&brn=Firefox&wi=480&he=270&app=&AV_PUBLISHERID=5d31fb2628a06116ff22aef3&test=&d64=e15172fb0be24e0b99463a4e602a537c&d63=e15172fb0be24e0b99463a4e602a537c&aafaid=&proto=https&uid=1702313138208-172027074107-000187-003-005934&cha=0.05&stagid=6478945b968e5a6b590e88f4&stplid=622621151af7757c9b6e9ad7&d35=&d36=6.2.147&cb=85762514542&d39=&d65=Active&d66=&d74=&d56=&apppkg=&d20=0Y&d9=1000&d37=realtime&AV_WIDTH=480&AV_HEIGHT=270
IP
Requested by https://www.descifrado.com/2023/08/17/medios-venezolanos-denuncian-suplantacion-de-identidad-en-whatsapp/robo-whatsappwebp/
Certificate IssuerDigiCert Inc
Subject*.aniview.com
FingerprintE3:44:D3:16:7C:71:A8:C3:1D:A9:15:EC:5E:18:18:63:72:33:4C:59
ValiditySat, 15 Jul 2023 00:00:00 GMT - Wed, 14 Aug 2024 23:59:59 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /track?d=Firefox&cou=NO&cos=Windows&r=www.descifrado.com&rs=www.descifrado.com&sid=83127&t=1702313138&cip=91.90.42.154&sn=&tgt=0&osv=10&bv=105.0&brn=Firefox&wi=480&he=270&app=&AV_PUBLISHERID=5d31fb2628a06116ff22aef3&test=&d64=e15172fb0be24e0b99463a4e602a537c&d63=e15172fb0be24e0b99463a4e602a537c&aafaid=&proto=https&uid=1702313138208-172027074107-000187-003-005934&cha=0.05&stagid=6478945b968e5a6b590e88f4&stplid=622621151af7757c9b6e9ad7&d35=&d36=6.2.147&cb=85762514542&d39=&d65=Active&d66=&d74=&d56=&apppkg=&d20=0Y&d9=1000&d37=realtime&AV_WIDTH=480&AV_HEIGHT=270 HTTP/1.1
Host: track1.aniview.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 457
Origin: https://www.descifrado.com
DNT: 1
Connection: keep-alive
Referer: https://www.descifrado.com/
Cookie: aniC=1702313138208-172027074107-000187-003-005934; 1_C_105=; 1_C_9=a6e5f9fcad6bb413582b1fad1c89c9
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Mon, 11 Dec 2023 16:45:42 GMT
access-control-allow-origin: *
content-length: 0
cache-control: max-age=0, no-cache, no-store
set-cookie: version=av17.4.0-928f41d9e68027546e8f58888a6f30a550a764a4; path=/
X-Firefox-Spdy: h2
ib.adnxs.com/ut/v3/prebid
200 OK 140 B URL POST HTTP/2 ib.adnxs.com/ut/v3/prebid
IP
Requested by https://www.descifrado.com/2023/08/17/medios-venezolanos-denuncian-suplantacion-de-identidad-en-whatsapp/robo-whatsappwebp/
Certificate IssuerDigiCert Inc
Subject*.adnxs.com
Fingerprint30:E1:57:C8:5A:77:64:AE:54:99:08:F7:2B:B8:C7:F4:28:85:56:08
ValidityMon, 13 Feb 2023 00:00:00 GMT - Fri, 15 Mar 2024 23:59:59 GMT
File type JSON data
- , ASCII text, with no line terminators
Hash 5196c884a425e703071c2fbbf30cf794
ffb9cf9eb085ed9a504a92984510bb72e2495a7d
8c4f8b0b72018c317a45c404b29c2b37c8732bd3fbd1492515802ee68f7eb8a2
POST /ut/v3/prebid HTTP/1.1
Host: ib.adnxs.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.descifrado.com/
content-type: text/plain
Content-Length: 1407
Origin: https://www.descifrado.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx/1.23.4
date: Mon, 11 Dec 2023 16:45:44 GMT
content-type: application/json; charset=utf-8
content-length: 140
cache-control: no-store, no-cache, private
pragma: no-cache
expires: Sat, 15 Nov 2008 16:00:00 GMT
p3p: policyref="http://cdn.adnxs-simple.com/w3c/policy/p3p.xml", CP="NOI DSP COR ADM PSAo PSDo OURo SAMo UNRo OTRo BUS COM NAV DEM STA PRE"
x-xss-protection: 0
access-control-allow-credentials: true
access-control-allow-origin: https://www.descifrado.com
accept-ch: Sec-CH-UA-Full-Version-List,Sec-CH-UA-Arch,Sec-CH-UA-Model,Sec-CH-UA-Platform-Version,Sec-CH-UA-Bitness
an-x-request-uuid: 78fb845c-873c-41a2-a260-e8b474f13a53
x-proxy-origin: 91.90.42.154; 91.90.42.154; 1005.bm-nginx-loadbalancer.mgmt.fra1.adnexus.net; adnxs.com
X-Firefox-Spdy: h2
track1.aniview.com/track?d=Firefox&cou=NO&cos=Windows&r=www.descifrado.com&rs=www.descifrado.com&sid=83127&t=1702313138&cip=91.90.42.154&sn=&tgt=0&osv=10&bv=105.0&brn=Firefox&wi=480&he=270&app=&AV_PUBLISHERID=5d31fb2628a06116ff22aef3&test=&d64=e15172fb0be24e0b99463a4e602a537c&d63=e15172fb0be24e0b99463a4e602a537c&aafaid=&proto=https&uid=1702313138208-172027074107-000187-003-005934&cha=0.05&stagid=6478945b968e5a6b590e88f4&stplid=622621151af7757c9b6e9ad7&d35=&d36=6.2.147&cb=85762514542&d39=&d65=Active&d66=&d74=&d56=&apppkg=&d20=0Y&d9=1000&d37=realtime&AV_WIDTH=480&AV_HEIGHT=270&nid=5d31fb2628a06116ff22aef3&ncid=647893ab83c2dca1fb0c9cbd&e=request&cb=1702313144334&asid=647deede4b3b7c49c40958d3%2C6481fc6b5cfaf269cf021e04%2C6478b13e5208200638051563%2C6478947542b2aa17cd0ff376%2C647f63579157ba61930d5c68%2C642d9152f9027db3bf0c0766%2C647deed24f8c8957a30b15a4%2C647a123884d4eeca2d0508e4&ofpr=0.1%2C0.1%2C0.1%2C0.1%2C0.1%2C0.1%2C%2C0.1&fpo=%2C%2C%2C%2C%2C%2C%2C&ri=%2C%2C%2C%2C%2C%2C%2C
200 OK 0 B URL GET HTTP/2 track1.aniview.com/track?d=Firefox&cou=NO&cos=Windows&r=www.descifrado.com&rs=www.descifrado.com&sid=83127&t=1702313138&cip=91.90.42.154&sn=&tgt=0&osv=10&bv=105.0&brn=Firefox&wi=480&he=270&app=&AV_PUBLISHERID=5d31fb2628a06116ff22aef3&test=&d64=e15172fb0be24e0b99463a4e602a537c&d63=e15172fb0be24e0b99463a4e602a537c&aafaid=&proto=https&uid=1702313138208-172027074107-000187-003-005934&cha=0.05&stagid=6478945b968e5a6b590e88f4&stplid=622621151af7757c9b6e9ad7&d35=&d36=6.2.147&cb=85762514542&d39=&d65=Active&d66=&d74=&d56=&apppkg=&d20=0Y&d9=1000&d37=realtime&AV_WIDTH=480&AV_HEIGHT=270&nid=5d31fb2628a06116ff22aef3&ncid=647893ab83c2dca1fb0c9cbd&e=request&cb=1702313144334&asid=647deede4b3b7c49c40958d3%2C6481fc6b5cfaf269cf021e04%2C6478b13e5208200638051563%2C6478947542b2aa17cd0ff376%2C647f63579157ba61930d5c68%2C642d9152f9027db3bf0c0766%2C647deed24f8c8957a30b15a4%2C647a123884d4eeca2d0508e4&ofpr=0.1%2C0.1%2C0.1%2C0.1%2C0.1%2C0.1%2C%2C0.1&fpo=%2C%2C%2C%2C%2C%2C%2C&ri=%2C%2C%2C%2C%2C%2C%2C
IP
Requested by https://www.descifrado.com/2023/08/17/medios-venezolanos-denuncian-suplantacion-de-identidad-en-whatsapp/robo-whatsappwebp/
Certificate IssuerDigiCert Inc
Subject*.aniview.com
FingerprintE3:44:D3:16:7C:71:A8:C3:1D:A9:15:EC:5E:18:18:63:72:33:4C:59
ValiditySat, 15 Jul 2023 00:00:00 GMT - Wed, 14 Aug 2024 23:59:59 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /track?d=Firefox&cou=NO&cos=Windows&r=www.descifrado.com&rs=www.descifrado.com&sid=83127&t=1702313138&cip=91.90.42.154&sn=&tgt=0&osv=10&bv=105.0&brn=Firefox&wi=480&he=270&app=&AV_PUBLISHERID=5d31fb2628a06116ff22aef3&test=&d64=e15172fb0be24e0b99463a4e602a537c&d63=e15172fb0be24e0b99463a4e602a537c&aafaid=&proto=https&uid=1702313138208-172027074107-000187-003-005934&cha=0.05&stagid=6478945b968e5a6b590e88f4&stplid=622621151af7757c9b6e9ad7&d35=&d36=6.2.147&cb=85762514542&d39=&d65=Active&d66=&d74=&d56=&apppkg=&d20=0Y&d9=1000&d37=realtime&AV_WIDTH=480&AV_HEIGHT=270&nid=5d31fb2628a06116ff22aef3&ncid=647893ab83c2dca1fb0c9cbd&e=request&cb=1702313144334&asid=647deede4b3b7c49c40958d3%2C6481fc6b5cfaf269cf021e04%2C6478b13e5208200638051563%2C6478947542b2aa17cd0ff376%2C647f63579157ba61930d5c68%2C642d9152f9027db3bf0c0766%2C647deed24f8c8957a30b15a4%2C647a123884d4eeca2d0508e4&ofpr=0.1%2C0.1%2C0.1%2C0.1%2C0.1%2C0.1%2C%2C0.1&fpo=%2C%2C%2C%2C%2C%2C%2C&ri=%2C%2C%2C%2C%2C%2C%2C HTTP/1.1
Host: track1.aniview.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.descifrado.com/
Cookie: aniC=1702313138208-172027074107-000187-003-005934; 1_C_105=; 1_C_9=a6e5f9fcad6bb413582b1fad1c89c9
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Mon, 11 Dec 2023 16:45:44 GMT
content-length: 0
cache-control: max-age=0, no-cache, no-store
set-cookie: version=av17.4.0-928f41d9e68027546e8f58888a6f30a550a764a4; path=/
X-Firefox-Spdy: h2
onetag-sys.com/prebid-request
200 OK 41 B URL POST HTTP/2 onetag-sys.com/prebid-request
IP
Requested by https://www.descifrado.com/2023/08/17/medios-venezolanos-denuncian-suplantacion-de-identidad-en-whatsapp/robo-whatsappwebp/
Certificate IssuerDigiCert Inc
Subject*.onetag-sys.com
Fingerprint1B:3E:A7:6D:D6:26:C6:9E:AB:38:DE:9E:22:71:64:8C:9F:91:0B:7B
ValidityWed, 28 Dec 2022 00:00:00 GMT - Sun, 28 Jan 2024 23:59:59 GMT
File type JSON data
- , ASCII text, with no line terminators
Hash c6a1847e6d7bb4295ecdae2664affb5d
b332217021c4a707f950ebc9294cda83cb2eb77f
663dab1310a7e64c3bdd7dfdc81b7fc9a28884d4ee290b96077c7b32bbe84707
POST /prebid-request HTTP/1.1
Host: onetag-sys.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.descifrado.com/
content-type: text/plain
Content-Length: 2521
Origin: https://www.descifrado.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
access-control-allow-origin: https://www.descifrado.com
access-control-allow-headers: content-type, origin, referer, user-agent
access-control-allow-credentials: true
p3p: CP='CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR'
cache-control: no-transform, no-cache
content-type: application/json
content-encoding: gzip
content-length: 41
strict-transport-security: max-age=15552000
alt-svc: h3=":443"; ma=900, h3-29=":443"; ma=900
X-Firefox-Spdy: h2
track1.aniview.com/track?d=Firefox&cou=NO&cos=Windows&r=www.descifrado.com&rs=www.descifrado.com&sid=83127&t=1702313138&cip=91.90.42.154&sn=&tgt=0&osv=10&bv=105.0&brn=Firefox&wi=480&he=270&app=&AV_PUBLISHERID=5d31fb2628a06116ff22aef3&test=&d64=e15172fb0be24e0b99463a4e602a537c&d63=e15172fb0be24e0b99463a4e602a537c&aafaid=&proto=https&uid=1702313138208-172027074107-000187-003-005934&cha=0.05&stagid=6478945b968e5a6b590e88f4&stplid=622621151af7757c9b6e9ad7&d35=&d36=6.2.147&cb=85762514542&d39=&d65=Active&d66=&d74=&d56=&apppkg=&d20=0Y&d9=1000&d37=realtime&AV_WIDTH=480&AV_HEIGHT=270
200 OK 0 B URL POST HTTP/2 track1.aniview.com/track?d=Firefox&cou=NO&cos=Windows&r=www.descifrado.com&rs=www.descifrado.com&sid=83127&t=1702313138&cip=91.90.42.154&sn=&tgt=0&osv=10&bv=105.0&brn=Firefox&wi=480&he=270&app=&AV_PUBLISHERID=5d31fb2628a06116ff22aef3&test=&d64=e15172fb0be24e0b99463a4e602a537c&d63=e15172fb0be24e0b99463a4e602a537c&aafaid=&proto=https&uid=1702313138208-172027074107-000187-003-005934&cha=0.05&stagid=6478945b968e5a6b590e88f4&stplid=622621151af7757c9b6e9ad7&d35=&d36=6.2.147&cb=85762514542&d39=&d65=Active&d66=&d74=&d56=&apppkg=&d20=0Y&d9=1000&d37=realtime&AV_WIDTH=480&AV_HEIGHT=270
IP
Requested by https://www.descifrado.com/2023/08/17/medios-venezolanos-denuncian-suplantacion-de-identidad-en-whatsapp/robo-whatsappwebp/
Certificate IssuerDigiCert Inc
Subject*.aniview.com
FingerprintE3:44:D3:16:7C:71:A8:C3:1D:A9:15:EC:5E:18:18:63:72:33:4C:59
ValiditySat, 15 Jul 2023 00:00:00 GMT - Wed, 14 Aug 2024 23:59:59 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /track?d=Firefox&cou=NO&cos=Windows&r=www.descifrado.com&rs=www.descifrado.com&sid=83127&t=1702313138&cip=91.90.42.154&sn=&tgt=0&osv=10&bv=105.0&brn=Firefox&wi=480&he=270&app=&AV_PUBLISHERID=5d31fb2628a06116ff22aef3&test=&d64=e15172fb0be24e0b99463a4e602a537c&d63=e15172fb0be24e0b99463a4e602a537c&aafaid=&proto=https&uid=1702313138208-172027074107-000187-003-005934&cha=0.05&stagid=6478945b968e5a6b590e88f4&stplid=622621151af7757c9b6e9ad7&d35=&d36=6.2.147&cb=85762514542&d39=&d65=Active&d66=&d74=&d56=&apppkg=&d20=0Y&d9=1000&d37=realtime&AV_WIDTH=480&AV_HEIGHT=270 HTTP/1.1
Host: track1.aniview.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 154
Origin: https://www.descifrado.com
DNT: 1
Connection: keep-alive
Referer: https://www.descifrado.com/
Cookie: aniC=1702313138208-172027074107-000187-003-005934; 1_C_105=; 1_C_9=a6e5f9fcad6bb413582b1fad1c89c9
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Mon, 11 Dec 2023 16:45:49 GMT
access-control-allow-origin: *
content-length: 0
cache-control: max-age=0, no-cache, no-store
set-cookie: version=av17.4.0-928f41d9e68027546e8f58888a6f30a550a764a4; path=/
X-Firefox-Spdy: h2
onetag-sys.com/prebid-request
200 OK 41 B URL POST HTTP/2 onetag-sys.com/prebid-request
IP
Requested by https://www.descifrado.com/2023/08/17/medios-venezolanos-denuncian-suplantacion-de-identidad-en-whatsapp/robo-whatsappwebp/
Certificate IssuerDigiCert Inc
Subject*.onetag-sys.com
Fingerprint1B:3E:A7:6D:D6:26:C6:9E:AB:38:DE:9E:22:71:64:8C:9F:91:0B:7B
ValidityWed, 28 Dec 2022 00:00:00 GMT - Sun, 28 Jan 2024 23:59:59 GMT
File type JSON data
- , ASCII text, with no line terminators
Hash c6a1847e6d7bb4295ecdae2664affb5d
b332217021c4a707f950ebc9294cda83cb2eb77f
663dab1310a7e64c3bdd7dfdc81b7fc9a28884d4ee290b96077c7b32bbe84707
POST /prebid-request HTTP/1.1
Host: onetag-sys.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.descifrado.com/
content-type: text/plain
Content-Length: 2522
Origin: https://www.descifrado.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
access-control-allow-origin: https://www.descifrado.com
access-control-allow-headers: content-type, origin, referer, user-agent
access-control-allow-credentials: true
p3p: CP='CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR'
cache-control: no-transform, no-cache
content-type: application/json
content-encoding: gzip
content-length: 41
strict-transport-security: max-age=15552000
alt-svc: h3=":443"; ma=900, h3-29=":443"; ma=900
X-Firefox-Spdy: h2
track1.aniview.com/track?d=Firefox&cou=NO&cos=Windows&r=www.descifrado.com&rs=www.descifrado.com&sid=83127&t=1702313138&cip=91.90.42.154&sn=&tgt=0&osv=10&bv=105.0&brn=Firefox&wi=480&he=270&app=&AV_PUBLISHERID=5d31fb2628a06116ff22aef3&test=&d64=e15172fb0be24e0b99463a4e602a537c&d63=e15172fb0be24e0b99463a4e602a537c&aafaid=&proto=https&uid=1702313138208-172027074107-000187-003-005934&cha=0.05&stagid=6478945b968e5a6b590e88f4&stplid=622621151af7757c9b6e9ad7&d35=&d36=6.2.147&cb=85762514542&d39=&d65=Active&d66=&d74=&d56=&apppkg=&d20=0Y&d9=1000&d37=realtime&AV_WIDTH=480&AV_HEIGHT=270&nid=5d31fb2628a06116ff22aef3&ncid=647893ab83c2dca1fb0c9cbd&e=request&cb=1702313149485&asid=6478947542b2aa17cd0ff376%2C647deede4b3b7c49c40958d3%2C647f63579157ba61930d5c68%2C6481fc6b5cfaf269cf021e04%2C6478b13e5208200638051563%2C642d9152f9027db3bf0c0766%2C647deed24f8c8957a30b15a4%2C647a123884d4eeca2d0508e4&ofpr=0.1%2C0.1%2C0.1%2C0.1%2C0.1%2C0.1%2C%2C0.1&fpo=%2C%2C%2C%2C%2C%2C%2C&ri=%2C%2C%2C%2C%2C%2C%2C
200 OK 0 B URL GET HTTP/2 track1.aniview.com/track?d=Firefox&cou=NO&cos=Windows&r=www.descifrado.com&rs=www.descifrado.com&sid=83127&t=1702313138&cip=91.90.42.154&sn=&tgt=0&osv=10&bv=105.0&brn=Firefox&wi=480&he=270&app=&AV_PUBLISHERID=5d31fb2628a06116ff22aef3&test=&d64=e15172fb0be24e0b99463a4e602a537c&d63=e15172fb0be24e0b99463a4e602a537c&aafaid=&proto=https&uid=1702313138208-172027074107-000187-003-005934&cha=0.05&stagid=6478945b968e5a6b590e88f4&stplid=622621151af7757c9b6e9ad7&d35=&d36=6.2.147&cb=85762514542&d39=&d65=Active&d66=&d74=&d56=&apppkg=&d20=0Y&d9=1000&d37=realtime&AV_WIDTH=480&AV_HEIGHT=270&nid=5d31fb2628a06116ff22aef3&ncid=647893ab83c2dca1fb0c9cbd&e=request&cb=1702313149485&asid=6478947542b2aa17cd0ff376%2C647deede4b3b7c49c40958d3%2C647f63579157ba61930d5c68%2C6481fc6b5cfaf269cf021e04%2C6478b13e5208200638051563%2C642d9152f9027db3bf0c0766%2C647deed24f8c8957a30b15a4%2C647a123884d4eeca2d0508e4&ofpr=0.1%2C0.1%2C0.1%2C0.1%2C0.1%2C0.1%2C%2C0.1&fpo=%2C%2C%2C%2C%2C%2C%2C&ri=%2C%2C%2C%2C%2C%2C%2C
IP
Requested by https://www.descifrado.com/2023/08/17/medios-venezolanos-denuncian-suplantacion-de-identidad-en-whatsapp/robo-whatsappwebp/
Certificate IssuerDigiCert Inc
Subject*.aniview.com
FingerprintE3:44:D3:16:7C:71:A8:C3:1D:A9:15:EC:5E:18:18:63:72:33:4C:59
ValiditySat, 15 Jul 2023 00:00:00 GMT - Wed, 14 Aug 2024 23:59:59 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /track?d=Firefox&cou=NO&cos=Windows&r=www.descifrado.com&rs=www.descifrado.com&sid=83127&t=1702313138&cip=91.90.42.154&sn=&tgt=0&osv=10&bv=105.0&brn=Firefox&wi=480&he=270&app=&AV_PUBLISHERID=5d31fb2628a06116ff22aef3&test=&d64=e15172fb0be24e0b99463a4e602a537c&d63=e15172fb0be24e0b99463a4e602a537c&aafaid=&proto=https&uid=1702313138208-172027074107-000187-003-005934&cha=0.05&stagid=6478945b968e5a6b590e88f4&stplid=622621151af7757c9b6e9ad7&d35=&d36=6.2.147&cb=85762514542&d39=&d65=Active&d66=&d74=&d56=&apppkg=&d20=0Y&d9=1000&d37=realtime&AV_WIDTH=480&AV_HEIGHT=270&nid=5d31fb2628a06116ff22aef3&ncid=647893ab83c2dca1fb0c9cbd&e=request&cb=1702313149485&asid=6478947542b2aa17cd0ff376%2C647deede4b3b7c49c40958d3%2C647f63579157ba61930d5c68%2C6481fc6b5cfaf269cf021e04%2C6478b13e5208200638051563%2C642d9152f9027db3bf0c0766%2C647deed24f8c8957a30b15a4%2C647a123884d4eeca2d0508e4&ofpr=0.1%2C0.1%2C0.1%2C0.1%2C0.1%2C0.1%2C%2C0.1&fpo=%2C%2C%2C%2C%2C%2C%2C&ri=%2C%2C%2C%2C%2C%2C%2C HTTP/1.1
Host: track1.aniview.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.descifrado.com/
Cookie: aniC=1702313138208-172027074107-000187-003-005934; 1_C_105=; 1_C_9=a6e5f9fcad6bb413582b1fad1c89c9
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Mon, 11 Dec 2023 16:45:49 GMT
content-length: 0
cache-control: max-age=0, no-cache, no-store
set-cookie: version=av17.4.0-928f41d9e68027546e8f58888a6f30a550a764a4; path=/
X-Firefox-Spdy: h2
ib.adnxs.com/ut/v3/prebid
200 OK 140 B URL POST HTTP/2 ib.adnxs.com/ut/v3/prebid
IP
Requested by https://www.descifrado.com/2023/08/17/medios-venezolanos-denuncian-suplantacion-de-identidad-en-whatsapp/robo-whatsappwebp/
Certificate IssuerDigiCert Inc
Subject*.adnxs.com
Fingerprint30:E1:57:C8:5A:77:64:AE:54:99:08:F7:2B:B8:C7:F4:28:85:56:08
ValidityMon, 13 Feb 2023 00:00:00 GMT - Fri, 15 Mar 2024 23:59:59 GMT
File type JSON data
- , ASCII text, with no line terminators
Hash 53d7c543c5806ca901124f2436dc4d03
c63fd478aa26986741a3e9770fb1c1c91340bca6
dcd809fa6bf6899305a09de52f9bcd43f6e77497390a7e243ecf38533d31fd46
POST /ut/v3/prebid HTTP/1.1
Host: ib.adnxs.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.descifrado.com/
content-type: text/plain
Content-Length: 1407
Origin: https://www.descifrado.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx/1.23.4
date: Mon, 11 Dec 2023 16:45:49 GMT
content-type: application/json; charset=utf-8
content-length: 140
cache-control: no-store, no-cache, private
pragma: no-cache
expires: Sat, 15 Nov 2008 16:00:00 GMT
p3p: policyref="http://cdn.adnxs-simple.com/w3c/policy/p3p.xml", CP="NOI DSP COR ADM PSAo PSDo OURo SAMo UNRo OTRo BUS COM NAV DEM STA PRE"
x-xss-protection: 0
access-control-allow-credentials: true
access-control-allow-origin: https://www.descifrado.com
accept-ch: Sec-CH-UA-Full-Version-List,Sec-CH-UA-Arch,Sec-CH-UA-Model,Sec-CH-UA-Platform-Version,Sec-CH-UA-Bitness
an-x-request-uuid: a3f2df8f-b82c-4fa5-ba9b-78ac71c96a6c
x-proxy-origin: 91.90.42.154; 91.90.42.154; 1005.bm-nginx-loadbalancer.mgmt.fra1.adnexus.net; adnxs.com
X-Firefox-Spdy: h2
track1.aniview.com/track?d=Firefox&cou=NO&cos=Windows&r=www.descifrado.com&rs=www.descifrado.com&sid=83127&t=1702313138&cip=91.90.42.154&sn=&tgt=0&osv=10&bv=105.0&brn=Firefox&wi=480&he=270&app=&AV_PUBLISHERID=5d31fb2628a06116ff22aef3&test=&d64=e15172fb0be24e0b99463a4e602a537c&d63=e15172fb0be24e0b99463a4e602a537c&aafaid=&proto=https&uid=1702313138208-172027074107-000187-003-005934&cha=0.05&stagid=6478945b968e5a6b590e88f4&stplid=622621151af7757c9b6e9ad7&d35=&d36=6.2.147&cb=85762514542&d39=&d65=Active&d66=&d74=&d56=&apppkg=&d20=0Y&d9=1000&d37=realtime&AV_WIDTH=480&AV_HEIGHT=270
200 OK 0 B URL POST HTTP/2 track1.aniview.com/track?d=Firefox&cou=NO&cos=Windows&r=www.descifrado.com&rs=www.descifrado.com&sid=83127&t=1702313138&cip=91.90.42.154&sn=&tgt=0&osv=10&bv=105.0&brn=Firefox&wi=480&he=270&app=&AV_PUBLISHERID=5d31fb2628a06116ff22aef3&test=&d64=e15172fb0be24e0b99463a4e602a537c&d63=e15172fb0be24e0b99463a4e602a537c&aafaid=&proto=https&uid=1702313138208-172027074107-000187-003-005934&cha=0.05&stagid=6478945b968e5a6b590e88f4&stplid=622621151af7757c9b6e9ad7&d35=&d36=6.2.147&cb=85762514542&d39=&d65=Active&d66=&d74=&d56=&apppkg=&d20=0Y&d9=1000&d37=realtime&AV_WIDTH=480&AV_HEIGHT=270
IP
Requested by https://www.descifrado.com/2023/08/17/medios-venezolanos-denuncian-suplantacion-de-identidad-en-whatsapp/robo-whatsappwebp/
Certificate IssuerDigiCert Inc
Subject*.aniview.com
FingerprintE3:44:D3:16:7C:71:A8:C3:1D:A9:15:EC:5E:18:18:63:72:33:4C:59
ValiditySat, 15 Jul 2023 00:00:00 GMT - Wed, 14 Aug 2024 23:59:59 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /track?d=Firefox&cou=NO&cos=Windows&r=www.descifrado.com&rs=www.descifrado.com&sid=83127&t=1702313138&cip=91.90.42.154&sn=&tgt=0&osv=10&bv=105.0&brn=Firefox&wi=480&he=270&app=&AV_PUBLISHERID=5d31fb2628a06116ff22aef3&test=&d64=e15172fb0be24e0b99463a4e602a537c&d63=e15172fb0be24e0b99463a4e602a537c&aafaid=&proto=https&uid=1702313138208-172027074107-000187-003-005934&cha=0.05&stagid=6478945b968e5a6b590e88f4&stplid=622621151af7757c9b6e9ad7&d35=&d36=6.2.147&cb=85762514542&d39=&d65=Active&d66=&d74=&d56=&apppkg=&d20=0Y&d9=1000&d37=realtime&AV_WIDTH=480&AV_HEIGHT=270 HTTP/1.1
Host: track1.aniview.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 155
Origin: https://www.descifrado.com
DNT: 1
Connection: keep-alive
Referer: https://www.descifrado.com/
Cookie: aniC=1702313138208-172027074107-000187-003-005934; 1_C_105=; 1_C_9=a6e5f9fcad6bb413582b1fad1c89c9
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Mon, 11 Dec 2023 16:45:54 GMT
access-control-allow-origin: *
content-length: 0
cache-control: max-age=0, no-cache, no-store
set-cookie: version=av17.4.0-928f41d9e68027546e8f58888a6f30a550a764a4; path=/
X-Firefox-Spdy: h2
track1.aniview.com/track?d=Firefox&cou=NO&cos=Windows&r=www.descifrado.com&rs=www.descifrado.com&sid=83127&t=1702313138&cip=91.90.42.154&sn=&tgt=0&osv=10&bv=105.0&brn=Firefox&wi=480&he=270&app=&AV_PUBLISHERID=5d31fb2628a06116ff22aef3&test=&d64=e15172fb0be24e0b99463a4e602a537c&d63=e15172fb0be24e0b99463a4e602a537c&aafaid=&proto=https&uid=1702313138208-172027074107-000187-003-005934&cha=0.05&stagid=6478945b968e5a6b590e88f4&stplid=622621151af7757c9b6e9ad7&d35=&d36=6.2.147&cb=85762514542&d39=&d65=Active&d66=&d74=&d56=&apppkg=&d20=0Y&d9=1000&d37=realtime&AV_WIDTH=480&AV_HEIGHT=270&nid=5d31fb2628a06116ff22aef3&ncid=647893ab83c2dca1fb0c9cbd&e=request&cb=1702313154613&asid=6481fc6b5cfaf269cf021e04%2C6478947542b2aa17cd0ff376%2C647deede4b3b7c49c40958d3%2C6478b13e5208200638051563%2C647f63579157ba61930d5c68%2C642d9152f9027db3bf0c0766%2C647a123884d4eeca2d0508e4%2C647deed24f8c8957a30b15a4&ofpr=0.1%2C0.1%2C0.1%2C0.1%2C0.1%2C0.1%2C0.1%2C&fpo=%2C%2C%2C%2C%2C%2C%2C&ri=%2C%2C%2C%2C%2C%2C%2C
200 OK 0 B URL GET HTTP/2 track1.aniview.com/track?d=Firefox&cou=NO&cos=Windows&r=www.descifrado.com&rs=www.descifrado.com&sid=83127&t=1702313138&cip=91.90.42.154&sn=&tgt=0&osv=10&bv=105.0&brn=Firefox&wi=480&he=270&app=&AV_PUBLISHERID=5d31fb2628a06116ff22aef3&test=&d64=e15172fb0be24e0b99463a4e602a537c&d63=e15172fb0be24e0b99463a4e602a537c&aafaid=&proto=https&uid=1702313138208-172027074107-000187-003-005934&cha=0.05&stagid=6478945b968e5a6b590e88f4&stplid=622621151af7757c9b6e9ad7&d35=&d36=6.2.147&cb=85762514542&d39=&d65=Active&d66=&d74=&d56=&apppkg=&d20=0Y&d9=1000&d37=realtime&AV_WIDTH=480&AV_HEIGHT=270&nid=5d31fb2628a06116ff22aef3&ncid=647893ab83c2dca1fb0c9cbd&e=request&cb=1702313154613&asid=6481fc6b5cfaf269cf021e04%2C6478947542b2aa17cd0ff376%2C647deede4b3b7c49c40958d3%2C6478b13e5208200638051563%2C647f63579157ba61930d5c68%2C642d9152f9027db3bf0c0766%2C647a123884d4eeca2d0508e4%2C647deed24f8c8957a30b15a4&ofpr=0.1%2C0.1%2C0.1%2C0.1%2C0.1%2C0.1%2C0.1%2C&fpo=%2C%2C%2C%2C%2C%2C%2C&ri=%2C%2C%2C%2C%2C%2C%2C
IP
Requested by https://www.descifrado.com/2023/08/17/medios-venezolanos-denuncian-suplantacion-de-identidad-en-whatsapp/robo-whatsappwebp/
Certificate IssuerDigiCert Inc
Subject*.aniview.com
FingerprintE3:44:D3:16:7C:71:A8:C3:1D:A9:15:EC:5E:18:18:63:72:33:4C:59
ValiditySat, 15 Jul 2023 00:00:00 GMT - Wed, 14 Aug 2024 23:59:59 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /track?d=Firefox&cou=NO&cos=Windows&r=www.descifrado.com&rs=www.descifrado.com&sid=83127&t=1702313138&cip=91.90.42.154&sn=&tgt=0&osv=10&bv=105.0&brn=Firefox&wi=480&he=270&app=&AV_PUBLISHERID=5d31fb2628a06116ff22aef3&test=&d64=e15172fb0be24e0b99463a4e602a537c&d63=e15172fb0be24e0b99463a4e602a537c&aafaid=&proto=https&uid=1702313138208-172027074107-000187-003-005934&cha=0.05&stagid=6478945b968e5a6b590e88f4&stplid=622621151af7757c9b6e9ad7&d35=&d36=6.2.147&cb=85762514542&d39=&d65=Active&d66=&d74=&d56=&apppkg=&d20=0Y&d9=1000&d37=realtime&AV_WIDTH=480&AV_HEIGHT=270&nid=5d31fb2628a06116ff22aef3&ncid=647893ab83c2dca1fb0c9cbd&e=request&cb=1702313154613&asid=6481fc6b5cfaf269cf021e04%2C6478947542b2aa17cd0ff376%2C647deede4b3b7c49c40958d3%2C6478b13e5208200638051563%2C647f63579157ba61930d5c68%2C642d9152f9027db3bf0c0766%2C647a123884d4eeca2d0508e4%2C647deed24f8c8957a30b15a4&ofpr=0.1%2C0.1%2C0.1%2C0.1%2C0.1%2C0.1%2C0.1%2C&fpo=%2C%2C%2C%2C%2C%2C%2C&ri=%2C%2C%2C%2C%2C%2C%2C HTTP/1.1
Host: track1.aniview.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.descifrado.com/
Cookie: aniC=1702313138208-172027074107-000187-003-005934; 1_C_105=; 1_C_9=a6e5f9fcad6bb413582b1fad1c89c9
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Mon, 11 Dec 2023 16:45:54 GMT
content-length: 0
cache-control: max-age=0, no-cache, no-store
set-cookie: version=av17.4.0-928f41d9e68027546e8f58888a6f30a550a764a4; path=/
X-Firefox-Spdy: h2
ib.adnxs.com/ut/v3/prebid
200 OK 146 B URL POST HTTP/2 ib.adnxs.com/ut/v3/prebid
IP
Requested by https://www.descifrado.com/2023/08/17/medios-venezolanos-denuncian-suplantacion-de-identidad-en-whatsapp/robo-whatsappwebp/
Certificate IssuerDigiCert Inc
Subject*.adnxs.com
Fingerprint30:E1:57:C8:5A:77:64:AE:54:99:08:F7:2B:B8:C7:F4:28:85:56:08
ValidityMon, 13 Feb 2023 00:00:00 GMT - Fri, 15 Mar 2024 23:59:59 GMT
File type JSON data
- , ASCII text, with no line terminators
Hash 38bf740762929f7884b9b685a1e2c062
85c38c1c1e048fc81258b7e6e68606c9b5229933
778df910f189c423373c1698754043267fc64b3909d113ee924d0c97f1bd320b
POST /ut/v3/prebid HTTP/1.1
Host: ib.adnxs.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.descifrado.com/
content-type: text/plain
Content-Length: 1407
Origin: https://www.descifrado.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx/1.23.4
date: Mon, 11 Dec 2023 16:45:54 GMT
content-type: application/json; charset=utf-8
content-length: 146
cache-control: no-store, no-cache, private
pragma: no-cache
expires: Sat, 15 Nov 2008 16:00:00 GMT
p3p: policyref="http://cdn.adnxs-simple.com/w3c/policy/p3p.xml", CP="NOI DSP COR ADM PSAo PSDo OURo SAMo UNRo OTRo BUS COM NAV DEM STA PRE"
x-xss-protection: 0
access-control-allow-credentials: true
access-control-allow-origin: https://www.descifrado.com
accept-ch: Sec-CH-UA-Full-Version-List,Sec-CH-UA-Arch,Sec-CH-UA-Model,Sec-CH-UA-Platform-Version,Sec-CH-UA-Bitness
an-x-request-uuid: ed555548-6be4-456f-8ede-139dd572e29f
set-cookie: icu=ChkIpJyEARAKGAEgASgBMML53KsGOAFAAUgBEML53KsGGAA.; SameSite=None; Path=/; Max-Age=7776000; Expires=Sun, 10-Mar-2024 16:45:54 GMT; Domain=.adnxs.com; Secure; HttpOnly
uuid2=47674450048077889; SameSite=None; Path=/; Max-Age=7776000; Expires=Sun, 10-Mar-2024 16:45:54 GMT; Domain=.adnxs.com; Secure; HttpOnly
x-proxy-origin: 91.90.42.154; 91.90.42.154; 1005.bm-nginx-loadbalancer.mgmt.fra1.adnexus.net; adnxs.com
X-Firefox-Spdy: h2
onetag-sys.com/prebid-request
200 OK 41 B URL POST HTTP/2 onetag-sys.com/prebid-request
IP
Requested by https://www.descifrado.com/2023/08/17/medios-venezolanos-denuncian-suplantacion-de-identidad-en-whatsapp/robo-whatsappwebp/
Certificate IssuerDigiCert Inc
Subject*.onetag-sys.com
Fingerprint1B:3E:A7:6D:D6:26:C6:9E:AB:38:DE:9E:22:71:64:8C:9F:91:0B:7B
ValidityWed, 28 Dec 2022 00:00:00 GMT - Sun, 28 Jan 2024 23:59:59 GMT
File type JSON data
- , ASCII text, with no line terminators
Hash c6a1847e6d7bb4295ecdae2664affb5d
b332217021c4a707f950ebc9294cda83cb2eb77f
663dab1310a7e64c3bdd7dfdc81b7fc9a28884d4ee290b96077c7b32bbe84707
POST /prebid-request HTTP/1.1
Host: onetag-sys.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.descifrado.com/
content-type: text/plain
Content-Length: 2524
Origin: https://www.descifrado.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
access-control-allow-origin: https://www.descifrado.com
access-control-allow-headers: content-type, origin, referer, user-agent
access-control-allow-credentials: true
p3p: CP='CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR'
cache-control: no-transform, no-cache
content-type: application/json
content-encoding: gzip
content-length: 41
strict-transport-security: max-age=15552000
alt-svc: h3=":443"; ma=900, h3-29=":443"; ma=900
X-Firefox-Spdy: h2
track1.aniview.com/track?d=Firefox&cou=NO&cos=Windows&r=www.descifrado.com&rs=www.descifrado.com&sid=83127&t=1702313138&cip=91.90.42.154&sn=&tgt=0&osv=10&bv=105.0&brn=Firefox&wi=480&he=270&app=&AV_PUBLISHERID=5d31fb2628a06116ff22aef3&test=&d64=e15172fb0be24e0b99463a4e602a537c&d63=e15172fb0be24e0b99463a4e602a537c&aafaid=&proto=https&uid=1702313138208-172027074107-000187-003-005934&cha=0.05&stagid=6478945b968e5a6b590e88f4&stplid=622621151af7757c9b6e9ad7&d35=&d36=6.2.147&cb=85762514542&d39=&d65=Active&d66=&d74=&d56=&apppkg=&d20=0Y&d9=1000&d37=realtime&AV_WIDTH=480&AV_HEIGHT=270
200 OK 0 B URL POST HTTP/2 track1.aniview.com/track?d=Firefox&cou=NO&cos=Windows&r=www.descifrado.com&rs=www.descifrado.com&sid=83127&t=1702313138&cip=91.90.42.154&sn=&tgt=0&osv=10&bv=105.0&brn=Firefox&wi=480&he=270&app=&AV_PUBLISHERID=5d31fb2628a06116ff22aef3&test=&d64=e15172fb0be24e0b99463a4e602a537c&d63=e15172fb0be24e0b99463a4e602a537c&aafaid=&proto=https&uid=1702313138208-172027074107-000187-003-005934&cha=0.05&stagid=6478945b968e5a6b590e88f4&stplid=622621151af7757c9b6e9ad7&d35=&d36=6.2.147&cb=85762514542&d39=&d65=Active&d66=&d74=&d56=&apppkg=&d20=0Y&d9=1000&d37=realtime&AV_WIDTH=480&AV_HEIGHT=270
IP
Requested by https://www.descifrado.com/2023/08/17/medios-venezolanos-denuncian-suplantacion-de-identidad-en-whatsapp/robo-whatsappwebp/
Certificate IssuerDigiCert Inc
Subject*.aniview.com
FingerprintE3:44:D3:16:7C:71:A8:C3:1D:A9:15:EC:5E:18:18:63:72:33:4C:59
ValiditySat, 15 Jul 2023 00:00:00 GMT - Wed, 14 Aug 2024 23:59:59 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /track?d=Firefox&cou=NO&cos=Windows&r=www.descifrado.com&rs=www.descifrado.com&sid=83127&t=1702313138&cip=91.90.42.154&sn=&tgt=0&osv=10&bv=105.0&brn=Firefox&wi=480&he=270&app=&AV_PUBLISHERID=5d31fb2628a06116ff22aef3&test=&d64=e15172fb0be24e0b99463a4e602a537c&d63=e15172fb0be24e0b99463a4e602a537c&aafaid=&proto=https&uid=1702313138208-172027074107-000187-003-005934&cha=0.05&stagid=6478945b968e5a6b590e88f4&stplid=622621151af7757c9b6e9ad7&d35=&d36=6.2.147&cb=85762514542&d39=&d65=Active&d66=&d74=&d56=&apppkg=&d20=0Y&d9=1000&d37=realtime&AV_WIDTH=480&AV_HEIGHT=270 HTTP/1.1
Host: track1.aniview.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 155
Origin: https://www.descifrado.com
DNT: 1
Connection: keep-alive
Referer: https://www.descifrado.com/
Cookie: aniC=1702313138208-172027074107-000187-003-005934; 1_C_105=; 1_C_9=a6e5f9fcad6bb413582b1fad1c89c9
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Mon, 11 Dec 2023 16:45:59 GMT
access-control-allow-origin: *
content-length: 0
cache-control: max-age=0, no-cache, no-store
set-cookie: version=av17.4.0-928f41d9e68027546e8f58888a6f30a550a764a4; path=/
X-Firefox-Spdy: h2
track1.aniview.com/track?d=Firefox&cou=NO&cos=Windows&r=www.descifrado.com&rs=www.descifrado.com&sid=83127&t=1702313138&cip=91.90.42.154&sn=&tgt=0&osv=10&bv=105.0&brn=Firefox&wi=480&he=270&app=&AV_PUBLISHERID=5d31fb2628a06116ff22aef3&test=&d64=e15172fb0be24e0b99463a4e602a537c&d63=e15172fb0be24e0b99463a4e602a537c&aafaid=&proto=https&uid=1702313138208-172027074107-000187-003-005934&cha=0.05&stagid=6478945b968e5a6b590e88f4&stplid=622621151af7757c9b6e9ad7&d35=&d36=6.2.147&cb=85762514542&d39=&d65=Active&d66=&d74=&d56=&apppkg=&d20=0Y&d9=1000&d37=realtime&AV_WIDTH=480&AV_HEIGHT=270&nid=5d31fb2628a06116ff22aef3&ncid=647893ab83c2dca1fb0c9cbd&e=request&cb=1702313159822&asid=647deede4b3b7c49c40958d3%2C6481fc6b5cfaf269cf021e04%2C6478947542b2aa17cd0ff376%2C6478b13e5208200638051563%2C647f63579157ba61930d5c68%2C642d9152f9027db3bf0c0766%2C647deed24f8c8957a30b15a4%2C647a123884d4eeca2d0508e4&ofpr=0.1%2C0.1%2C0.1%2C0.1%2C0.1%2C0.1%2C%2C0.1&fpo=%2C%2C%2C%2C%2C%2C%2C&ri=%2C%2C%2C%2C%2C%2C%2C
0 B URL track1.aniview.com/track?d=Firefox&cou=NO&cos=Windows&r=www.descifrado.com&rs=www.descifrado.com&sid=83127&t=1702313138&cip=91.90.42.154&sn=&tgt=0&osv=10&bv=105.0&brn=Firefox&wi=480&he=270&app=&AV_PUBLISHERID=5d31fb2628a06116ff22aef3&test=&d64=e15172fb0be24e0b99463a4e602a537c&d63=e15172fb0be24e0b99463a4e602a537c&aafaid=&proto=https&uid=1702313138208-172027074107-000187-003-005934&cha=0.05&stagid=6478945b968e5a6b590e88f4&stplid=622621151af7757c9b6e9ad7&d35=&d36=6.2.147&cb=85762514542&d39=&d65=Active&d66=&d74=&d56=&apppkg=&d20=0Y&d9=1000&d37=realtime&AV_WIDTH=480&AV_HEIGHT=270&nid=5d31fb2628a06116ff22aef3&ncid=647893ab83c2dca1fb0c9cbd&e=request&cb=1702313159822&asid=647deede4b3b7c49c40958d3%2C6481fc6b5cfaf269cf021e04%2C6478947542b2aa17cd0ff376%2C6478b13e5208200638051563%2C647f63579157ba61930d5c68%2C642d9152f9027db3bf0c0766%2C647deed24f8c8957a30b15a4%2C647a123884d4eeca2d0508e4&ofpr=0.1%2C0.1%2C0.1%2C0.1%2C0.1%2C0.1%2C%2C0.1&fpo=%2C%2C%2C%2C%2C%2C%2C&ri=%2C%2C%2C%2C%2C%2C%2C
IP
Certificate IssuerDigiCert Inc
Subject*.aniview.com
FingerprintE3:44:D3:16:7C:71:A8:C3:1D:A9:15:EC:5E:18:18:63:72:33:4C:59
ValiditySat, 15 Jul 2023 00:00:00 GMT - Wed, 14 Aug 2024 23:59:59 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /track?d=Firefox&cou=NO&cos=Windows&r=www.descifrado.com&rs=www.descifrado.com&sid=83127&t=1702313138&cip=91.90.42.154&sn=&tgt=0&osv=10&bv=105.0&brn=Firefox&wi=480&he=270&app=&AV_PUBLISHERID=5d31fb2628a06116ff22aef3&test=&d64=e15172fb0be24e0b99463a4e602a537c&d63=e15172fb0be24e0b99463a4e602a537c&aafaid=&proto=https&uid=1702313138208-172027074107-000187-003-005934&cha=0.05&stagid=6478945b968e5a6b590e88f4&stplid=622621151af7757c9b6e9ad7&d35=&d36=6.2.147&cb=85762514542&d39=&d65=Active&d66=&d74=&d56=&apppkg=&d20=0Y&d9=1000&d37=realtime&AV_WIDTH=480&AV_HEIGHT=270&nid=5d31fb2628a06116ff22aef3&ncid=647893ab83c2dca1fb0c9cbd&e=request&cb=1702313159822&asid=647deede4b3b7c49c40958d3%2C6481fc6b5cfaf269cf021e04%2C6478947542b2aa17cd0ff376%2C6478b13e5208200638051563%2C647f63579157ba61930d5c68%2C642d9152f9027db3bf0c0766%2C647deed24f8c8957a30b15a4%2C647a123884d4eeca2d0508e4&ofpr=0.1%2C0.1%2C0.1%2C0.1%2C0.1%2C0.1%2C%2C0.1&fpo=%2C%2C%2C%2C%2C%2C%2C&ri=%2C%2C%2C%2C%2C%2C%2C HTTP/1.1
Host: track1.aniview.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.descifrado.com/
Cookie: aniC=1702313138208-172027074107-000187-003-005934; 1_C_105=; 1_C_9=a6e5f9fcad6bb413582b1fad1c89c9
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Mon, 11 Dec 2023 16:45:59 GMT
content-length: 0
cache-control: max-age=0, no-cache, no-store
set-cookie: version=av17.4.0-928f41d9e68027546e8f58888a6f30a550a764a4; path=/
X-Firefox-Spdy: h2
onetag-sys.com/prebid-request
200 OK 41 B URL POST HTTP/2 onetag-sys.com/prebid-request
IP
Requested by https://www.descifrado.com/2023/08/17/medios-venezolanos-denuncian-suplantacion-de-identidad-en-whatsapp/robo-whatsappwebp/
Certificate IssuerDigiCert Inc
Subject*.onetag-sys.com
Fingerprint1B:3E:A7:6D:D6:26:C6:9E:AB:38:DE:9E:22:71:64:8C:9F:91:0B:7B
ValidityWed, 28 Dec 2022 00:00:00 GMT - Sun, 28 Jan 2024 23:59:59 GMT
File type JSON data
- , ASCII text, with no line terminators
Hash c6a1847e6d7bb4295ecdae2664affb5d
b332217021c4a707f950ebc9294cda83cb2eb77f
663dab1310a7e64c3bdd7dfdc81b7fc9a28884d4ee290b96077c7b32bbe84707
POST /prebid-request HTTP/1.1
Host: onetag-sys.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.descifrado.com/
content-type: text/plain
Content-Length: 2523
Origin: https://www.descifrado.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
access-control-allow-origin: https://www.descifrado.com
access-control-allow-headers: content-type, origin, referer, user-agent
access-control-allow-credentials: true
p3p: CP='CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR'
cache-control: no-transform, no-cache
content-type: application/json
content-encoding: gzip
content-length: 41
strict-transport-security: max-age=15552000
alt-svc: h3=":443"; ma=900, h3-29=":443"; ma=900
X-Firefox-Spdy: h2
ib.adnxs.com/ut/v3/prebid
200 OK 145 B URL POST HTTP/2 ib.adnxs.com/ut/v3/prebid
IP
Requested by https://www.descifrado.com/2023/08/17/medios-venezolanos-denuncian-suplantacion-de-identidad-en-whatsapp/robo-whatsappwebp/
Certificate IssuerDigiCert Inc
Subject*.adnxs.com
Fingerprint30:E1:57:C8:5A:77:64:AE:54:99:08:F7:2B:B8:C7:F4:28:85:56:08
ValidityMon, 13 Feb 2023 00:00:00 GMT - Fri, 15 Mar 2024 23:59:59 GMT
File type JSON data
- , ASCII text, with no line terminators
Hash e24cd2b8534d580316150804d3810969
7ac585e856888b10292f869ba25edd1ebfd3ff14
beecbaee3ef5973f8d2838eb484b95eb5468b9ef27efe5d7786b596767419567
POST /ut/v3/prebid HTTP/1.1
Host: ib.adnxs.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.descifrado.com/
content-type: text/plain
Content-Length: 1406
Origin: https://www.descifrado.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx/1.23.4
date: Mon, 11 Dec 2023 16:45:59 GMT
content-type: application/json; charset=utf-8
content-length: 145
cache-control: no-store, no-cache, private
pragma: no-cache
expires: Sat, 15 Nov 2008 16:00:00 GMT
p3p: policyref="http://cdn.adnxs-simple.com/w3c/policy/p3p.xml", CP="NOI DSP COR ADM PSAo PSDo OURo SAMo UNRo OTRo BUS COM NAV DEM STA PRE"
x-xss-protection: 0
access-control-allow-credentials: true
access-control-allow-origin: https://www.descifrado.com
accept-ch: Sec-CH-UA-Full-Version-List,Sec-CH-UA-Arch,Sec-CH-UA-Model,Sec-CH-UA-Platform-Version,Sec-CH-UA-Bitness
an-x-request-uuid: 5baa9ee3-98ba-4818-99d5-e466fcb8cafb
set-cookie: icu=ChkIpJyEARAKGAEgASgBMMf53KsGOAFAAUgBEMf53KsGGAA.; SameSite=None; Path=/; Max-Age=7776000; Expires=Sun, 10-Mar-2024 16:45:59 GMT; Domain=.adnxs.com; Secure; HttpOnly
uuid2=8891862694377898164; SameSite=None; Path=/; Max-Age=7776000; Expires=Sun, 10-Mar-2024 16:45:59 GMT; Domain=.adnxs.com; Secure; HttpOnly
x-proxy-origin: 91.90.42.154; 91.90.42.154; 1005.bm-nginx-loadbalancer.mgmt.fra1.adnexus.net; adnxs.com
X-Firefox-Spdy: h2
www.descifrado.com/2023/08/17/medios-venezolanos-denuncian-suplantacion-de-identidad-en-whatsapp/robo-whatsappwebp/
200 OK 66 kB URL User Request GET HTTP/2 www.descifrado.com/2023/08/17/medios-venezolanos-denuncian-suplantacion-de-identidad-en-whatsapp/robo-whatsappwebp/
IP
Certificate IssuerLet's Encrypt
Subjectdescifrado.com
Fingerprint98:00:4E:1C:E2:4D:B1:D9:CC:AE:94:0F:8E:34:D9:92:9E:E2:9F:95
ValidityWed, 22 Nov 2023 16:50:38 GMT - Tue, 20 Feb 2024 16:50:37 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /2023/08/17/medios-venezolanos-denuncian-suplantacion-de-identidad-en-whatsapp/robo-whatsappwebp/ HTTP/1.1
Host: www.descifrado.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Mon, 11 Dec 2023 16:45:35 GMT
content-type: text/html
last-modified: Mon, 11 Dec 2023 16:45:21 GMT
x-powered-by: WordOps
x-frame-options: SAMEORIGIN, SAMEORIGIN
x-content-type-options: nosniff, nosniff
referrer-policy: strict-origin-when-cross-origin, no-referrer-when-downgrade
expires: Mon, 11 Dec 2023 17:45:35 GMT
cache-control: max-age=3600, public
pragma: public
x-xss-protection: 1; mode=block
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=SB8uioWCOzgZhetS9%2BGYqR6HniMLPkn5lPUIp3IXCMgS9LiGPHtF1JKsnWWpGueedwzZYfBtJ0PN2yey3O42F9zg5zTMPGF5WiYhHvJeFTxiz6Uzs%2FRnk8uTsB9167tJQ9uHkfo%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 833f32e9898d067b-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
elpolitico.com/ExternosCacheGetJsonLastsPosts.php?bc=5399721702313400294
200 OK 290 kB URL GET HTTP/2 elpolitico.com/ExternosCacheGetJsonLastsPosts.php?bc=5399721702313400294
IP
Requested by https://www.descifrado.com/2023/08/17/medios-venezolanos-denuncian-suplantacion-de-identidad-en-whatsapp/robo-whatsappwebp/
Certificate IssuerLet's Encrypt
Subjectelpolitico.com
Fingerprint17:4A:B7:1B:4B:C7:A6:E8:C1:9A:C6:B6:73:1B:1B:43:0C:E0:61:E8
ValidityWed, 25 Oct 2023 04:58:38 GMT - Tue, 23 Jan 2024 04:58:37 GMT
File type HTML document text
- HTML document text
- exported SGML document, ASCII text, with very long lines (65536), with no line terminators
Size 290 kB (290039 bytes)
Hash f0634d9ad2a74db135895b8080ba5b70
0e6d30a466eaccaef6e7c8f55de738310f8f3cdc
9d5413b712fa78174d427299695e3aeeb4f2b7bd4709ff95fd4665bb3a264e1b
GET /ExternosCacheGetJsonLastsPosts.php?bc=5399721702313400294 HTTP/1.1
Host: elpolitico.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.descifrado.com
DNT: 1
Connection: keep-alive
Referer: https://www.descifrado.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Mon, 11 Dec 2023 16:45:38 GMT
content-type: application/json; charset=utf-8
cf-ray: 833f32f8f977b52d-OSL
cf-cache-status: HIT
access-control-allow-origin: *
age: 81879
cache-control: public, max-age=1800
last-modified: Sun, 10 Dec 2023 18:00:59 GMT
vary: Accept-Encoding
access-control-allow-methods: GET
access-control-max-age: 14400
generated-by: NewDream Global Crop. for El Politico.com
x-worker: newdreamglobal.com
x-worker-status: match
x-worker-streamed: cf
x-worker-type: api
x-worker-version: 1.5.7
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Q8ilheEEhPc4vfX5lFX78qHQ3qPW3mYo0Ue3ZLu2pkFySvKJ5Mn1uc3ljoU7ca3egtxXO5YqyfUAxewY%2F%2FaEjglxZ8Tz3pKCR4Fr8y%2FN6m4PVi0C8S5VRjLpGohLw%2B1xEQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
tags.newdreamglobal.com/service/ngb_hb10.js
200 OK 26 kB URL GET HTTP/3 tags.newdreamglobal.com/service/ngb_hb10.js
IP
Requested by https://www.descifrado.com/2023/08/17/medios-venezolanos-denuncian-suplantacion-de-identidad-en-whatsapp/robo-whatsappwebp/
Certificate IssuerGoogle Trust Services LLC
Subjectnewdreamglobal.com
Fingerprint83:02:05:0F:E0:20:C1:B8:55:26:9A:3A:EE:CA:ED:50:D2:4F:C1:16
ValidityTue, 31 Oct 2023 07:22:57 GMT - Mon, 29 Jan 2024 07:22:56 GMT
File type ASCII text, with very long lines (11052)
Hash 7c6892cd7384fa22ad02725c2ec23273
68b40173c66729cb6fa4d3eb427d1249efbf84d5
0617450dea3ad61b762a6c1d6f390c6183e4adf11a3f263dd11beb53596a2fc5
GET /service/ngb_hb10.js HTTP/1.1
Host: tags.newdreamglobal.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.descifrado.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Mon, 11 Dec 2023 16:45:39 GMT
content-type: application/javascript
cache-control: public, max-age=600, s-maxage=3600, stale-while-revalidate=3600, must-revalidate
cf-bgj: minify
cf-polished: origSize=42926
etag: W/"65318c40-a7ae"
last-modified: Thu, 19 Oct 2023 20:06:24 GMT
vary: Accept-Encoding
cf-cache-status: REVALIDATED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=7jQBrb7j97ek8BrGCTDU5aVn99r7MJtFZBuHgME8w54Q6TZbiBno7u5lU0jAkmoingXEJBaJGF1t8yU64LLWuIVl3RcY5fXD3xMWrZuj%2BnVCPKjMIWLWlCCBgsW9gKVu4HBCx%2BZOdNGqvg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 833f32fdcc631c16-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
go1.aniview.com/api/adserver/tag/?AV_TAGID=6478945b968e5a6b590e88f4&AV_PUBLISHERID=5d31fb2628a06116ff22aef3&AV_SECURED=1&AV_LANGUAGE=en&AV_URL=https%3A%2F%2Fwww.descifrado.com%2F2023%2F08%2F17%2Fmedios-venezolanos-denuncian-suplantacion-de-identidad-en-whatsapp%2Frobo-whatsappwebp%2F&AV_CHANNELID=647893ab83c2dca1fb0c9cbd&tgt=0&AV_SUBID=&AV_CDIM1=&AV_CDIM2=&AV_CDIM3=&AV_ABT=&TRACK_URL=track1.aniview.com&pce=1&npx=1&AV_DETDOMAIN=www.descifrado.com&AV_DADPOS=1&AV_OPLACEMENT=5&AV_TAG=6478945b968e5a6b590e88f4&AV_TEMPLATE=622621151af7757c9b6e9ad7&AV_GPID=/5d31fb2628a06116ff22aef3/6478945b968e5a6b590e88f4/www.descifrado.com&d36=6.2.147&responsive=1&sver=4&avtoken=138012&AV_D20=0Y&omv=1.0.1&AV_D65=Active&clsid=160f700a-b2a8-4631-97d8-ffb1ff954bc9&rando=25&AV_WIDTH=480&AV_HEIGHT=270&AV_DNT=1&cb=1702313138015&wfc=1
200 OK 17 kB URL GET HTTP/2 go1.aniview.com/api/adserver/tag/?AV_TAGID=6478945b968e5a6b590e88f4&AV_PUBLISHERID=5d31fb2628a06116ff22aef3&AV_SECURED=1&AV_LANGUAGE=en&AV_URL=https%3A%2F%2Fwww.descifrado.com%2F2023%2F08%2F17%2Fmedios-venezolanos-denuncian-suplantacion-de-identidad-en-whatsapp%2Frobo-whatsappwebp%2F&AV_CHANNELID=647893ab83c2dca1fb0c9cbd&tgt=0&AV_SUBID=&AV_CDIM1=&AV_CDIM2=&AV_CDIM3=&AV_ABT=&TRACK_URL=track1.aniview.com&pce=1&npx=1&AV_DETDOMAIN=www.descifrado.com&AV_DADPOS=1&AV_OPLACEMENT=5&AV_TAG=6478945b968e5a6b590e88f4&AV_TEMPLATE=622621151af7757c9b6e9ad7&AV_GPID=/5d31fb2628a06116ff22aef3/6478945b968e5a6b590e88f4/www.descifrado.com&d36=6.2.147&responsive=1&sver=4&avtoken=138012&AV_D20=0Y&omv=1.0.1&AV_D65=Active&clsid=160f700a-b2a8-4631-97d8-ffb1ff954bc9&rando=25&AV_WIDTH=480&AV_HEIGHT=270&AV_DNT=1&cb=1702313138015&wfc=1
IP
Requested by https://www.descifrado.com/2023/08/17/medios-venezolanos-denuncian-suplantacion-de-identidad-en-whatsapp/robo-whatsappwebp/
Certificate IssuerDigiCert Inc
Subject*.aniview.com
FingerprintE3:44:D3:16:7C:71:A8:C3:1D:A9:15:EC:5E:18:18:63:72:33:4C:59
ValiditySat, 15 Jul 2023 00:00:00 GMT - Wed, 14 Aug 2024 23:59:59 GMT
File type JSON data
- , ASCII text, with very long lines (17320)
Hash 2c33dd9451838a2013040639b73fc21c
0a7ffffc392baca8e8cef068575826211f6f653d
a57843673f23fb2153526f8b9a8f78e0af314537b6915e880153e332de3a0b71
GET /api/adserver/tag/?AV_TAGID=6478945b968e5a6b590e88f4&AV_PUBLISHERID=5d31fb2628a06116ff22aef3&AV_SECURED=1&AV_LANGUAGE=en&AV_URL=https%3A%2F%2Fwww.descifrado.com%2F2023%2F08%2F17%2Fmedios-venezolanos-denuncian-suplantacion-de-identidad-en-whatsapp%2Frobo-whatsappwebp%2F&AV_CHANNELID=647893ab83c2dca1fb0c9cbd&tgt=0&AV_SUBID=&AV_CDIM1=&AV_CDIM2=&AV_CDIM3=&AV_ABT=&TRACK_URL=track1.aniview.com&pce=1&npx=1&AV_DETDOMAIN=www.descifrado.com&AV_DADPOS=1&AV_OPLACEMENT=5&AV_TAG=6478945b968e5a6b590e88f4&AV_TEMPLATE=622621151af7757c9b6e9ad7&AV_GPID=/5d31fb2628a06116ff22aef3/6478945b968e5a6b590e88f4/www.descifrado.com&d36=6.2.147&responsive=1&sver=4&avtoken=138012&AV_D20=0Y&omv=1.0.1&AV_D65=Active&clsid=160f700a-b2a8-4631-97d8-ffb1ff954bc9&rando=25&AV_WIDTH=480&AV_HEIGHT=270&AV_DNT=1&cb=1702313138015&wfc=1 HTTP/1.1
Host: go1.aniview.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.descifrado.com
DNT: 1
Connection: keep-alive
Referer: https://www.descifrado.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Mon, 11 Dec 2023 16:45:38 GMT
content-type: application/json
vary: Accept-Encoding
set-cookie: aniC=1702313138208-172027074107-000187-003-005934; Expires=Sun, 31-Dec-23 16:45:38 GMT; Max-Age=1728000; Domain=aniview.com; Path=/; Secure; HttpOnly; SameSite=None
access-control-allow-origin: https://www.descifrado.com
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, DELETE, PUT, OPTIONS, INDEX
access-control-allow-headers: Keep-Alive,User-Agent,If-Modified-Since,Cache-Control,Content-Type,Authorization,X-Bamboo-Token,Event-Id,X-Requested-With
access-control-max-age: 1728000
x-bamboo-c-s: BYPASS
x-bamboo-c-skfe: 1
x-bamboo-c-skst: 1
expires: Thu, 30 Nov 2023 02:58:58 GMT
cache-control: no-cache
content-encoding: gzip
X-Firefox-Spdy: h2
d31qbv1cthcecs.cloudfront.net/atrk.js
0 B URL GET d31qbv1cthcecs.cloudfront.net/atrk.js
IP
Requested by https://www.descifrado.com/2023/08/17/medios-venezolanos-denuncian-suplantacion-de-identidad-en-whatsapp/robo-whatsappwebp/
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /atrk.js HTTP/1.1
Host: d31qbv1cthcecs.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.descifrado.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
fonts.gstatic.com/s/opensans/v15/mem8YaGs126MiZpBA-UFVZ0b.woff2
200 OK 14 kB URL GET HTTP/2 fonts.gstatic.com/s/opensans/v15/mem8YaGs126MiZpBA-UFVZ0b.woff2
IP
Requested by https://www.descifrado.com/2023/08/17/medios-venezolanos-denuncian-suplantacion-de-identidad-en-whatsapp/robo-whatsappwebp/
Certificate IssuerGoogle Trust Services LLC
Subject*.gstatic.com
Fingerprint5F:60:69:C9:59:6D:F1:B5:87:82:8D:B0:57:3C:D9:24:10:FD:74:D1
ValidityMon, 20 Nov 2023 08:08:49 GMT - Mon, 12 Feb 2024 08:08:48 GMT
File type Web Open Font Format (Version 2), TrueType, length 14048, version 1.0
- data
Hash cffb686d7d2f4682df8342bd4d276e09
2c07a9656f1e38da408f20f1cf11581a15cbd7a2
3b98b0dc3bed9d40f43e64adba5de47c76895338a96f0a5a314676cd6287eca9
GET /s/opensans/v15/mem8YaGs126MiZpBA-UFVZ0b.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.descifrado.com
DNT: 1
Connection: keep-alive
Referer: https://www.descifrado.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 14048
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 07 Dec 2023 16:03:09 GMT
expires: Fri, 06 Dec 2024 16:03:09 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 11 Oct 2017 21:49:43 GMT
content-type: font/woff2
age: 348150
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
fonts.googleapis.com/css?family=Open+Sans%3A300italic%2C400%2C400italic%2C600%2C600italic%2C700%7CRoboto%3A300%2C400%2C400italic%2C500%2C500italic%2C700%2C900&ver=8.1
200 OK 32 kB URL GET HTTP/2 fonts.googleapis.com/css?family=Open+Sans%3A300italic%2C400%2C400italic%2C600%2C600italic%2C700%7CRoboto%3A300%2C400%2C400italic%2C500%2C500italic%2C700%2C900&ver=8.1
IP
Requested by https://www.descifrado.com/2023/08/17/medios-venezolanos-denuncian-suplantacion-de-identidad-en-whatsapp/robo-whatsappwebp/
Certificate IssuerGoogle Trust Services LLC
Subjectupload.video.google.com
Fingerprint10:D0:ED:9A:F4:53:C8:99:DE:B6:5E:5C:04:E6:20:0B:68:7D:46:EC
ValidityMon, 20 Nov 2023 08:08:50 GMT - Mon, 12 Feb 2024 08:08:49 GMT
Hash e0218094e4ce9d7845fd03939b130866
c8fd69c5e64d530608016b5e6b0040d03b5b63c1
c0c8ebee2b57198313dec8980eb8963c721b35594a93729e10fc38b1ac376b46
GET /css?family=Open+Sans%3A300italic%2C400%2C400italic%2C600%2C600italic%2C700%7CRoboto%3A300%2C400%2C400italic%2C500%2C500italic%2C700%2C900&ver=8.1 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.descifrado.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Mon, 11 Dec 2023 16:45:36 GMT
date: Mon, 11 Dec 2023 16:45:36 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2
200 OK 16 kB URL GET HTTP/2 fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2
IP
Requested by https://www.descifrado.com/2023/08/17/medios-venezolanos-denuncian-suplantacion-de-identidad-en-whatsapp/robo-whatsappwebp/
Certificate IssuerGoogle Trust Services LLC
Subject*.gstatic.com
Fingerprint5F:60:69:C9:59:6D:F1:B5:87:82:8D:B0:57:3C:D9:24:10:FD:74:D1
ValidityMon, 20 Nov 2023 08:08:49 GMT - Mon, 12 Feb 2024 08:08:48 GMT
File type Web Open Font Format (Version 2), TrueType, length 15744, version 1.0
- data
Hash 15d9f621c3bd1599f0169dcf0bd5e63e
7ca9c5967f3bb8bffeab24b639b49c1e7d03fa52
f6734f8177112c0839b961f96d813fcb189d81b60e96c33278c1983b6f419615
GET /s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.descifrado.com
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15744
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 07 Dec 2023 04:57:34 GMT
expires: Fri, 06 Dec 2024 04:57:34 GMT
cache-control: public, max-age=31536000
age: 388082
last-modified: Wed, 11 May 2022 19:24:48 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
tags.newdreamglobal.com/viewability/gtsur.newglobal.dfp1.2.0.min.js?v=1.1.4.3
200 OK 16 kB URL GET HTTP/3 tags.newdreamglobal.com/viewability/gtsur.newglobal.dfp1.2.0.min.js?v=1.1.4.3
IP
Requested by https://www.descifrado.com/2023/08/17/medios-venezolanos-denuncian-suplantacion-de-identidad-en-whatsapp/robo-whatsappwebp/
Certificate IssuerGoogle Trust Services LLC
Subjectnewdreamglobal.com
Fingerprint83:02:05:0F:E0:20:C1:B8:55:26:9A:3A:EE:CA:ED:50:D2:4F:C1:16
ValidityTue, 31 Oct 2023 07:22:57 GMT - Mon, 29 Jan 2024 07:22:56 GMT
File type ASCII text, with very long lines (13166)
Hash e466034b55c09a656fe59a476b6b78b2
c72e98871f696e663aca2f27da867e7f0f09d0a3
b5078fe3251e3f037b896dffa0fbbfdc2450d21ac8da9e3794f77aed7a1a7918
GET /viewability/gtsur.newglobal.dfp1.2.0.min.js?v=1.1.4.3 HTTP/1.1
Host: tags.newdreamglobal.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.descifrado.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Mon, 11 Dec 2023 16:45:38 GMT
content-type: application/javascript
last-modified: Thu, 06 Jan 2022 13:08:30 GMT
vary: Accept-Encoding
etag: W/"61d6e9ce-3c9f"
cache-control: public, max-age=3600, s-maxage=86400, stale-while-revalidate=3600, must-revalidate
cf-cache-status: HIT
age: 28424
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=0K4TRiE9ClApeAYTErYZAl2lA38vxiCkNotIn3Lbnd6n3aPVZxeI4QdHctTmntW659dsrcrC3Wb9gW1ZY%2FqiP8596stHwXMvHNnZdnbYRLOjDl%2BsFgXJjVdMO06asSOLqVRFVSy6i%2BKqxg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 833f32f88f6b1c16-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
onetag-sys.com/usync/?cb=1702313139197
204 No Content 0 B URL GET HTTP/2 onetag-sys.com/usync/?cb=1702313139197
IP
Requested by https://www.descifrado.com/2023/08/17/medios-venezolanos-denuncian-suplantacion-de-identidad-en-whatsapp/robo-whatsappwebp/
Certificate IssuerDigiCert Inc
Subject*.onetag-sys.com
Fingerprint1B:3E:A7:6D:D6:26:C6:9E:AB:38:DE:9E:22:71:64:8C:9F:91:0B:7B
ValidityWed, 28 Dec 2022 00:00:00 GMT - Sun, 28 Jan 2024 23:59:59 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /usync/?cb=1702313139197 HTTP/1.1
Host: onetag-sys.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.descifrado.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 204 No Content
cache-control: no-store
strict-transport-security: max-age=15552000
alt-svc: h3=":443"; ma=900, h3-29=":443"; ma=900
X-Firefox-Spdy: h2
fundingchoicesmessages.google.com/f/AGSKWxUim4eTZAKMu4AdlmxnuwAmT1zQ-GL1x8THfh8cC2hYr4l1Rp6-fE61yNUshBC31z_c4m3vEXSx9B1WVQhe5x0rPIBYK1Rzeu4hAC71U54AgDqJeMMESs6VAeStjKQNM_ntb9ZUAw==?fccs=W251bGwsbnVsbCxudWxsLG51bGwsbnVsbCxudWxsLFsxNzAyMzEzMTM5LDUwMDAwMDAwXSxudWxsLG51bGwsbnVsbCxbbnVsbCxbN11dLCJodHRwczovL3d3dy5kZXNjaWZyYWRvLmNvbS8yMDIzLzA4LzE3L21lZGlvcy12ZW5lem9sYW5vcy1kZW51bmNpYW4tc3VwbGFudGFjaW9uLWRlLWlkZW50aWRhZC1lbi13aGF0c2FwcC9yb2JvLXdoYXRzYXBwd2VicC8iLG51bGwsW1s4LCJRN3FrOGFXLUtrayJdLFs5LCJlbi1VUyJdLFsxOSwiMSJdLFsxNywiWzBdIl1dXQ
200 OK 471 kB URL GET HTTP/3 fundingchoicesmessages.google.com/f/AGSKWxUim4eTZAKMu4AdlmxnuwAmT1zQ-GL1x8THfh8cC2hYr4l1Rp6-fE61yNUshBC31z_c4m3vEXSx9B1WVQhe5x0rPIBYK1Rzeu4hAC71U54AgDqJeMMESs6VAeStjKQNM_ntb9ZUAw==?fccs=W251bGwsbnVsbCxudWxsLG51bGwsbnVsbCxudWxsLFsxNzAyMzEzMTM5LDUwMDAwMDAwXSxudWxsLG51bGwsbnVsbCxbbnVsbCxbN11dLCJodHRwczovL3d3dy5kZXNjaWZyYWRvLmNvbS8yMDIzLzA4LzE3L21lZGlvcy12ZW5lem9sYW5vcy1kZW51bmNpYW4tc3VwbGFudGFjaW9uLWRlLWlkZW50aWRhZC1lbi13aGF0c2FwcC9yb2JvLXdoYXRzYXBwd2VicC8iLG51bGwsW1s4LCJRN3FrOGFXLUtrayJdLFs5LCJlbi1VUyJdLFsxOSwiMSJdLFsxNywiWzBdIl1dXQ
IP
Requested by https://www.descifrado.com/2023/08/17/medios-venezolanos-denuncian-suplantacion-de-identidad-en-whatsapp/robo-whatsappwebp/
Certificate IssuerGoogle Trust Services LLC
Subject*.google.com
Fingerprint5D:3A:D9:47:14:B0:78:30:A1:BF:B4:45:F6:F5:81:AD:0A:C7:76:89
ValidityMon, 20 Nov 2023 08:02:55 GMT - Mon, 12 Feb 2024 08:02:54 GMT
Size 471 kB (471055 bytes)
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /f/AGSKWxUim4eTZAKMu4AdlmxnuwAmT1zQ-GL1x8THfh8cC2hYr4l1Rp6-fE61yNUshBC31z_c4m3vEXSx9B1WVQhe5x0rPIBYK1Rzeu4hAC71U54AgDqJeMMESs6VAeStjKQNM_ntb9ZUAw==?fccs=W251bGwsbnVsbCxudWxsLG51bGwsbnVsbCxudWxsLFsxNzAyMzEzMTM5LDUwMDAwMDAwXSxudWxsLG51bGwsbnVsbCxbbnVsbCxbN11dLCJodHRwczovL3d3dy5kZXNjaWZyYWRvLmNvbS8yMDIzLzA4LzE3L21lZGlvcy12ZW5lem9sYW5vcy1kZW51bmNpYW4tc3VwbGFudGFjaW9uLWRlLWlkZW50aWRhZC1lbi13aGF0c2FwcC9yb2JvLXdoYXRzYXBwd2VicC8iLG51bGwsW1s4LCJRN3FrOGFXLUtrayJdLFs5LCJlbi1VUyJdLFsxOSwiMSJdLFsxNywiWzBdIl1dXQ HTTP/1.1
Host: fundingchoicesmessages.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.descifrado.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
content-type: application/javascript; charset=utf-8
vary: Sec-Fetch-Dest, Sec-Fetch-Mode, Sec-Fetch-Site
timing-allow-origin: *
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Mon, 11 Dec 2023 16:45:39 GMT
cross-origin-resource-policy: cross-origin
content-security-policy: require-trusted-types-for 'script';report-uri /_/ContributorGlobalRouterHttp/cspreport, script-src 'nonce-SVfLQW9LqNFVgdKijGEDZg' 'unsafe-inline';object-src 'none';base-uri 'self';report-uri /_/ContributorGlobalRouterHttp/cspreport;worker-src 'self', script-src 'unsafe-inline' 'self' https://apis.google.com https://ssl.gstatic.com https://www.google.com https://www.googletagmanager.com https://www.gstatic.com https://www.google-analytics.com;report-uri /_/ContributorGlobalRouterHttp/cspreport/allowlist
cross-origin-opener-policy: same-origin
permissions-policy: ch-ua-arch=*, ch-ua-bitness=*, ch-ua-full-version=*, ch-ua-full-version-list=*, ch-ua-model=*, ch-ua-wow64=*, ch-ua-form-factor=*, ch-ua-platform=*, ch-ua-platform-version=*
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Model, Sec-CH-UA-WoW64, Sec-CH-UA-Form-Factor, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
www.descifrado.com/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.4.1
200 OK 14 kB URL GET HTTP/3 www.descifrado.com/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.4.1
IP
Requested by https://www.descifrado.com/2023/08/17/medios-venezolanos-denuncian-suplantacion-de-identidad-en-whatsapp/robo-whatsappwebp/
Certificate IssuerLet's Encrypt
Subjectdescifrado.com
Fingerprint98:00:4E:1C:E2:4D:B1:D9:CC:AE:94:0F:8E:34:D9:92:9E:E2:9F:95
ValidityWed, 22 Nov 2023 16:50:38 GMT - Tue, 20 Feb 2024 16:50:37 GMT
File type ASCII text, with very long lines (13479)
Hash 9ffeb32e2d9efbf8f70caabded242267
3ad0c10e501ac2a9bfa18f9cd7e700219b378738
5274f11e6fb32ae0cf2dfb9f8043272865c397a7c4223b4cfa7d50ea52fbde89
GET /wp-includes/js/jquery/jquery-migrate.min.js?ver=3.4.1 HTTP/1.1
Host: www.descifrado.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.descifrado.com/2023/08/17/medios-venezolanos-denuncian-suplantacion-de-identidad-en-whatsapp/robo-whatsappwebp/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Mon, 11 Dec 2023 16:45:35 GMT
content-type: application/javascript
last-modified: Tue, 15 Aug 2023 05:40:45 GMT
vary: Accept-Encoding
etag: W/"64db0fdd-3509"
x-powered-by: WordOps
x-frame-options: SAMEORIGIN, SAMEORIGIN
x-content-type-options: nosniff, nosniff
referrer-policy: strict-origin-when-cross-origin, no-referrer-when-downgrade
access-control-allow-origin: *
cache-control: max-age=2592000
expires: Thu, 28 Dec 2023 12:40:42 GMT
x-xss-protection: 1; mode=block
cf-cache-status: HIT
age: 1137893
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Q6im5ZC5SUL9WvI1O%2F4In801SN7jpaS%2BZ9%2Fu1N7wIXdrkb5Y3l4l%2FtitWzg2upylL5GAJztSurs8ZiyrqzpPYWP4Iv1xaEt%2BWWAh8dfdrLXR0aYIeZr7LeMt8rSrIBQY2HdjR9o%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 833f32ebd805b4f4-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
tags.newdreamglobal.com/stickynonload.js
200 OK 3.5 kB URL GET HTTP/3 tags.newdreamglobal.com/stickynonload.js
IP
Requested by https://www.descifrado.com/2023/08/17/medios-venezolanos-denuncian-suplantacion-de-identidad-en-whatsapp/robo-whatsappwebp/
Certificate IssuerGoogle Trust Services LLC
Subjectnewdreamglobal.com
Fingerprint83:02:05:0F:E0:20:C1:B8:55:26:9A:3A:EE:CA:ED:50:D2:4F:C1:16
ValidityTue, 31 Oct 2023 07:22:57 GMT - Mon, 29 Jan 2024 07:22:56 GMT
File type ASCII text, with very long lines (3571), with no line terminators
Hash 124dd53028ae221e54b523a9a217d0a3
5f89d71eb43e55a1e20ecc5cf84a7d16128cdf8a
05f4a188c11a225fd71a5d2a0245c7dcef1d9405542b232dace0f3a1cb72b445
GET /stickynonload.js HTTP/1.1
Host: tags.newdreamglobal.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.descifrado.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Mon, 11 Dec 2023 16:45:37 GMT
content-type: application/javascript
cache-control: public, max-age=3600, s-maxage=86400, stale-while-revalidate=3600, must-revalidate
cf-bgj: minify
etag: W/"609d5cbc-dbf"
last-modified: Thu, 13 May 2021 17:07:08 GMT
vary: Accept-Encoding
cf-cache-status: HIT
age: 34153
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=jVz7MJ%2BYanguKfIEPyIJVTi6MHJxoa%2BfdHESOzrf8K%2FZRLZ4qyTkIuDJYUd%2Fn9mIiC3y4eGtYlV6DwjLXIJAAprisn8aZ1MU%2FhiKqyujW67umzFBLMHkWsvmJF8M1ZPqX53EBBYI%2FcVkXQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 833f32f84f2f1c16-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
www.descifrado.com/2023/08/17/medios-venezolanos-denuncian-suplantacion-de-identidad-en-whatsapp/robo-whatsappwebp
301 Moved Permanently 66 kB URL User Request GET HTTP/2 www.descifrado.com/2023/08/17/medios-venezolanos-denuncian-suplantacion-de-identidad-en-whatsapp/robo-whatsappwebp
IP
Certificate IssuerLet's Encrypt
Subjectdescifrado.com
Fingerprint98:00:4E:1C:E2:4D:B1:D9:CC:AE:94:0F:8E:34:D9:92:9E:E2:9F:95
ValidityWed, 22 Nov 2023 16:50:38 GMT - Tue, 20 Feb 2024 16:50:37 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /2023/08/17/medios-venezolanos-denuncian-suplantacion-de-identidad-en-whatsapp/robo-whatsappwebp HTTP/1.1
Host: www.descifrado.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 301 Moved Permanently
date: Mon, 11 Dec 2023 16:45:35 GMT
content-type: text/html; charset=UTF-8
location: https://www.descifrado.com/2023/08/17/medios-venezolanos-denuncian-suplantacion-de-identidad-en-whatsapp/robo-whatsappwebp/
cf-edge-cache: cache,platform=wordpress
x-redirect-by: WordPress
x-powered-by: WordOps
x-frame-options: SAMEORIGIN, SAMEORIGIN
x-content-type-options: nosniff, nosniff
referrer-policy: strict-origin-when-cross-origin, no-referrer-when-downgrade
x-xss-protection: 1; mode=block
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=hOicffmMbyQld0NnTPC%2Be%2Bz7B015LWq3XTFHvH0xozkDVIJoH4%2F29SYx1oHKA2gRfVnzZHyANdygq2vpEncBEln7XS1VqLBUF3PHdjE3T3%2BQtsnG%2FT%2FHAkKJvlQm22QTz0euw%2Fo%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 833f32e5aeb2067b-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
fonts.googleapis.com/css?family=Archivo|Arimo|Bitter|EB+Garamond|Lato|Libre+Baskerville|Libre+Franklin|Lora|Google+Sans:regular,medium|Material+Icons|Google+Symbols|Merriweather|Montserrat|Mukta|Muli|Nunito|Open+Sans:400,600,700|Open+Sans+Condensed:300,400,600,700|Oswald|Playfair+Display|Poppins|Raleway|Roboto|Roboto+Condensed|Roboto+Slab|Slabo+27px|Source+Sans+Pro|Ubuntu|Volkhov&display=swap
200 OK 71 kB URL GET HTTP/3 fonts.googleapis.com/css?family=Archivo|Arimo|Bitter|EB+Garamond|Lato|Libre+Baskerville|Libre+Franklin|Lora|Google+Sans:regular,medium|Material+Icons|Google+Symbols|Merriweather|Montserrat|Mukta|Muli|Nunito|Open+Sans:400,600,700|Open+Sans+Condensed:300,400,600,700|Oswald|Playfair+Display|Poppins|Raleway|Roboto|Roboto+Condensed|Roboto+Slab|Slabo+27px|Source+Sans+Pro|Ubuntu|Volkhov&display=swap
IP
Requested by https://www.descifrado.com/2023/08/17/medios-venezolanos-denuncian-suplantacion-de-identidad-en-whatsapp/robo-whatsappwebp/
Certificate IssuerGoogle Trust Services LLC
Subjectupload.video.google.com
Fingerprint10:D0:ED:9A:F4:53:C8:99:DE:B6:5E:5C:04:E6:20:0B:68:7D:46:EC
ValidityMon, 20 Nov 2023 08:08:50 GMT - Mon, 12 Feb 2024 08:08:49 GMT
Hash c0efa4d7a1c89b0abb2d46dcd218eb06
48b1908c421b48d5e4e9ff2231fcbf0506b69add
3551a344d7bb97bbd0e7009acb82e10b13aa38330a8014af7819a25389aeeeb1
GET /css?family=Archivo|Arimo|Bitter|EB+Garamond|Lato|Libre+Baskerville|Libre+Franklin|Lora|Google+Sans:regular,medium|Material+Icons|Google+Symbols|Merriweather|Montserrat|Mukta|Muli|Nunito|Open+Sans:400,600,700|Open+Sans+Condensed:300,400,600,700|Oswald|Playfair+Display|Poppins|Raleway|Roboto|Roboto+Condensed|Roboto+Slab|Slabo+27px|Source+Sans+Pro|Ubuntu|Volkhov&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.descifrado.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Mon, 11 Dec 2023 16:45:39 GMT
date: Mon, 11 Dec 2023 16:45:39 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
ads.vidoomy.com/descifradocom_7019.js
200 OK 4.9 kB URL GET HTTP/1.1 ads.vidoomy.com/descifradocom_7019.js
IP
Requested by https://www.descifrado.com/2023/08/17/medios-venezolanos-denuncian-suplantacion-de-identidad-en-whatsapp/robo-whatsappwebp/
Certificate IssuerSectigo Limited
Subject*.vidoomy.com
Fingerprint18:AF:A3:4C:BA:C9:5B:1A:FC:8B:1D:B0:76:50:FE:2F:8A:44:59:F3
ValidityWed, 06 Sep 2023 00:00:00 GMT - Sun, 06 Oct 2024 23:59:59 GMT
File type ASCII text, with very long lines (5098), with no line terminators
Hash 9540de691998328784a30ee6b0fcfc65
f5e2987185e27b980f8c2005e8089f2efecff283
25dd7fa08ceb133c1471af99943d7e83d66b91dda7e1f8ed8a4c42e6c8a9d6cd
GET /descifradocom_7019.js HTTP/1.1
Host: ads.vidoomy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.descifrado.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Mon, 11 Dec 2023 16:45:38 GMT
Server: Apache/2.4.54 (Amazon) OpenSSL/1.0.2k-fips PHP/7.0.33
X-Powered-By: PHP/7.0.33
Access-Control-Allow-Origin: *
Cache-Control: no-store, no-cache, must-revalidate, max-age=0, post-check=0, pre-check=0
Pragma: no-cache
Content-Length: 4866
Keep-Alive: timeout=2, max=300
Connection: Keep-Alive
Content-Type: application/javascript
www.descifrado.com/favicon.ico
200 OK 2.0 kB URL GET HTTP/3 www.descifrado.com/favicon.ico
IP
Requested by https://www.descifrado.com/2023/08/17/medios-venezolanos-denuncian-suplantacion-de-identidad-en-whatsapp/robo-whatsappwebp/
Certificate IssuerLet's Encrypt
Subjectdescifrado.com
Fingerprint98:00:4E:1C:E2:4D:B1:D9:CC:AE:94:0F:8E:34:D9:92:9E:E2:9F:95
ValidityWed, 22 Nov 2023 16:50:38 GMT - Tue, 20 Feb 2024 16:50:37 GMT
File type PNG image data, 32 x 32, 8-bit/color RGB, non-interlaced
- data
Hash 723f996710ac92b2afef7079057ae0bb
4322032868979bb6386993c7c622ecc8a51024ef
17d29511a5ff8a188e6e5afd5e43d9be71d3f4c4f316c99083aea05e049b7bef
GET /favicon.ico HTTP/1.1
Host: www.descifrado.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.descifrado.com/2023/08/17/medios-venezolanos-denuncian-suplantacion-de-identidad-en-whatsapp/robo-whatsappwebp/
DNT: 1
Connection: keep-alive
Cookie: _ga_DEDSFYSGCY=GS1.1.1702313136.1.0.1702313136.0.0.0; _ga=GA1.1.1073651933.1702313136; ntvSession={}
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Mon, 11 Dec 2023 16:45:39 GMT
content-type: image/x-icon
last-modified: Tue, 29 Sep 2020 15:28:59 GMT
vary: Accept-Encoding
etag: W/"5f7352bb-7a7"
x-powered-by: WordOps
x-frame-options: SAMEORIGIN, SAMEORIGIN
x-content-type-options: nosniff, nosniff
referrer-policy: strict-origin-when-cross-origin, no-referrer-when-downgrade
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-xss-protection: 1; mode=block
cf-cache-status: HIT
age: 1656456
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=rlomPQi8%2FPX8eCbmNC2ICl4xxLN19ITVbhpTGgUOC31RwKqZdb%2F%2FN%2BNU5G2OVAi1ecSMtuxSSJTPhveB6h6d6WyFsdBDzRMEjtFiXwzXbeiR70qH%2Fhf5tX12OX%2Fp2DsdP9cYjSM%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 833f32ff7831b4f4-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
onetag-sys.com/usync/?pubId=57e618150c70d90&gdpr=1&gdpr_consent=&us_privacy=1---
204 No Content 0 B URL GET HTTP/2 onetag-sys.com/usync/?pubId=57e618150c70d90&gdpr=1&gdpr_consent=&us_privacy=1---
IP
Requested by https://www.descifrado.com/2023/08/17/medios-venezolanos-denuncian-suplantacion-de-identidad-en-whatsapp/robo-whatsappwebp/
Certificate IssuerDigiCert Inc
Subject*.onetag-sys.com
Fingerprint1B:3E:A7:6D:D6:26:C6:9E:AB:38:DE:9E:22:71:64:8C:9F:91:0B:7B
ValidityWed, 28 Dec 2022 00:00:00 GMT - Sun, 28 Jan 2024 23:59:59 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /usync/?pubId=57e618150c70d90&gdpr=1&gdpr_consent=&us_privacy=1--- HTTP/1.1
Host: onetag-sys.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.descifrado.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 204 No Content
cache-control: no-store
strict-transport-security: max-age=15552000
alt-svc: h3=":443"; ma=900, h3-29=":443"; ma=900
X-Firefox-Spdy: h2
www.descifrado.com/wp-includes/js/jquery/jquery.min.js?ver=3.7.1
200 OK 88 kB URL GET HTTP/3 www.descifrado.com/wp-includes/js/jquery/jquery.min.js?ver=3.7.1
IP
Requested by https://www.descifrado.com/2023/08/17/medios-venezolanos-denuncian-suplantacion-de-identidad-en-whatsapp/robo-whatsappwebp/
Certificate IssuerLet's Encrypt
Subjectdescifrado.com
Fingerprint98:00:4E:1C:E2:4D:B1:D9:CC:AE:94:0F:8E:34:D9:92:9E:E2:9F:95
ValidityWed, 22 Nov 2023 16:50:38 GMT - Tue, 20 Feb 2024 16:50:37 GMT
File type ASCII text, with very long lines (65447)
Hash 826eb77e86b02ab7724fe3d0141ff87c
79cd3587d565afe290076a8d36c31c305a573d18
cb6f2d32c49d1c2b25e9ffc9aaafa3f83075346c01bcd4ae6eb187392a4292cf
GET /wp-includes/js/jquery/jquery.min.js?ver=3.7.1 HTTP/1.1
Host: www.descifrado.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.descifrado.com/2023/08/17/medios-venezolanos-denuncian-suplantacion-de-identidad-en-whatsapp/robo-whatsappwebp/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Mon, 11 Dec 2023 16:45:35 GMT
content-type: application/javascript
last-modified: Tue, 21 Nov 2023 22:26:05 GMT
vary: Accept-Encoding
etag: W/"655d2e7d-15601"
x-powered-by: WordOps
x-frame-options: SAMEORIGIN, SAMEORIGIN
x-content-type-options: nosniff, nosniff
referrer-policy: strict-origin-when-cross-origin, no-referrer-when-downgrade
access-control-allow-origin: *
cache-control: max-age=2592000
expires: Fri, 22 Dec 2023 02:00:04 GMT
x-xss-protection: 1; mode=block
cf-cache-status: HIT
age: 1694731
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=sNlYBCZjiWzCgzAtFvSjjHNPe3YMA8GZG4I4WM%2BiMJeY6JrfMTkVf5RuW100ZSi2HyG6xfFCcmYkMtgnernI%2BzoyyiVGmNVEBzvqepQfRz8UVUDhssX%2FYcU7Z2w0blknY%2FJarE0%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 833f32ebd801b4f4-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2
200 OK 16 kB URL GET HTTP/2 fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2
IP
Requested by https://www.descifrado.com/2023/08/17/medios-venezolanos-denuncian-suplantacion-de-identidad-en-whatsapp/robo-whatsappwebp/
Certificate IssuerGoogle Trust Services LLC
Subject*.gstatic.com
Fingerprint5F:60:69:C9:59:6D:F1:B5:87:82:8D:B0:57:3C:D9:24:10:FD:74:D1
ValidityMon, 20 Nov 2023 08:08:49 GMT - Mon, 12 Feb 2024 08:08:48 GMT
File type Web Open Font Format (Version 2), TrueType, length 15860, version 1.0
- data
Hash e9f5aaf547f165386cd313b995dddd8e
acdef5603c2387b0e5bffd744b679a24a8bc1968
f5aebdfea35d1e7656ef4acc5db1f243209755ae3300943ef8fc6280f363c860
GET /s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.descifrado.com
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15860
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 07 Dec 2023 15:46:25 GMT
expires: Fri, 06 Dec 2024 15:46:25 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 11 May 2022 19:24:42 GMT
content-type: font/woff2
age: 349151
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
id.hadron.ad.gt/api/v1/pbhid?partner_id=239&_it=prebid
200 OK 227 B URL GET HTTP/2 id.hadron.ad.gt/api/v1/pbhid?partner_id=239&_it=prebid
IP
Requested by https://www.descifrado.com/2023/08/17/medios-venezolanos-denuncian-suplantacion-de-identidad-en-whatsapp/robo-whatsappwebp/
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
FingerprintB5:9E:06:D8:8A:F4:6D:CC:E3:9D:4E:09:8B:28:E7:06:4F:08:42:44
ValidityTue, 28 Feb 2023 00:00:00 GMT - Tue, 27 Feb 2024 23:59:59 GMT
File type troff or preprocessor input, ASCII text, with no line terminators
Hash 4dd3f270344755618d1674b24f52486b
9d9d03713efb513ba76ac99122158e815fdb4e94
21ac92cee55c589c163ed1c27c95697216ea20270445035ea6991054d27828de
GET /api/v1/pbhid?partner_id=239&_it=prebid HTTP/1.1
Host: id.hadron.ad.gt
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.descifrado.com/
content-type: text/plain
Origin: https://www.descifrado.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Mon, 11 Dec 2023 16:45:39 GMT
content-type: application/json
access-control-allow-origin: *
allow: POST, OPTIONS, GET
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept
vary: Accept-Encoding
server: cloudflare
cf-ray: 833f33030bb6b4f1-OSL
content-encoding: gzip
X-Firefox-Spdy: h2
tags.newdreamglobal.com/fc/vad.js
200 OK 9.6 kB URL GET HTTP/3 tags.newdreamglobal.com/fc/vad.js
IP
Requested by https://www.descifrado.com/2023/08/17/medios-venezolanos-denuncian-suplantacion-de-identidad-en-whatsapp/robo-whatsappwebp/
Certificate IssuerGoogle Trust Services LLC
Subjectnewdreamglobal.com
Fingerprint83:02:05:0F:E0:20:C1:B8:55:26:9A:3A:EE:CA:ED:50:D2:4F:C1:16
ValidityTue, 31 Oct 2023 07:22:57 GMT - Mon, 29 Jan 2024 07:22:56 GMT
File type ASCII text, with very long lines (9857), with no line terminators
Hash f3a74d5a7420c4c7d1bf9caa2282940c
1f7de57c8a062169331822f564029e539c39726e
c7a84ca82aac19c27e107a245b145a4e3dd03e5cfffa8d73e9902b6d6bb14228
GET /fc/vad.js HTTP/1.1
Host: tags.newdreamglobal.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.descifrado.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Mon, 11 Dec 2023 16:45:38 GMT
content-type: application/javascript
cache-control: public, max-age=3600, s-maxage=86400, stale-while-revalidate=3600, must-revalidate
cf-bgj: minify
cf-polished: origSize=9741
etag: W/"5f7dd934-260d"
last-modified: Wed, 07 Oct 2020 15:05:24 GMT
vary: Accept-Encoding
cf-cache-status: REVALIDATED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=KkNSpT%2Fc3e4leKbN6gLAFB8jqu5GfCrWCGP8mG7t47OKM2m8g26Pl2wOxKA1RtwWTM85WiJhSKl5VhN4w5epZ%2F0LHqpK9gC%2FPAnAZTv%2FmOhdm3jZA3m5q2BKh2VZmaoVh4PiSsK8hOJovQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 833f32f8efa71c16-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
172.67.164.62
188.114.97.1
104.22.4.69
80.66.79.247
23.36.76.155
37.252.171.52
51.89.9.253
147.75.84.158
0.0.0.0