Report - belanjasantai.com/prpr/365prpr02bii

Report Overview

Visited public
2023-11-27 08:08:10
Tags
URL
belanjasantai.com/prpr/365prpr02bii
Finishing URL
belanjasantai.com/prpr/365prpr02bii
IP / ASN
104.21.43.152
#13335 CLOUDFLARENET
Title
Garuda365 > Slot Modal Recehan, Gacor Sampe Jadi Sultan!

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Domain / FQDN	Rank	Registered	First Seen	Last Seen	Sent	Received	IP
drive.google.com	321	1997-09-15	2012-10-03 09:10:02	2023-11-27 04:48:52	3.6 kB	153 kB	216.58.207.206
lh3.googleusercontent.com	66	2008-11-17	2012-05-22 09:35:05	2023-11-26 05:20:20	1.1 kB	854 kB	142.250.74.97
maxcdn.bootstrapcdn.com	724	2012-05-25	2014-06-18 02:37:31	2023-11-27 08:05:55	1.0 kB	86 kB	104.18.11.207
fonts.gstatic.com	unknown	2008-02-11	2014-09-09 02:40:21	2023-11-27 07:14:04	3.3 kB	117 kB	142.250.74.163
play.google.com	34	1997-09-15	2013-05-31 01:24:35	2023-11-26 08:54:19	3.3 kB	4.9 kB	142.250.74.78
ssl.gstatic.com	unknown	2008-02-11	2012-05-23 08:57:57	2023-11-26 09:46:26	937 B	52 kB	142.250.74.131
cdn.ampproject.org	329	2015-08-31	2015-10-09 06:27:01	2023-11-26 05:10:46	6.2 kB	249 kB	142.250.74.161
www.gstatic.com	unknown	2008-02-11	2016-07-26 11:37:06	2023-11-27 07:09:06	5.9 kB	1.4 MB	142.250.74.131
apis.google.com	105	1997-09-15	2013-05-06 22:20:21	2023-11-27 05:14:01	4.4 kB	301 kB	172.217.21.174
accounts.google.com	81	1997-09-15	2016-03-20 13:44:49	2023-11-27 07:58:44	6.1 kB	48 kB	142.250.74.109
content.googleapis.com	2972	2005-01-25	2013-08-15 03:41:14	2023-11-26 11:56:07	7.6 kB	7.4 kB	142.250.74.138
fonts.googleapis.com	8877	2005-01-25	2013-06-10 22:14:26	2023-11-27 07:17:39	958 B	48 kB	142.250.74.138
207.148.124.70	unknown	unknown	2021-06-19 04:57:35	2023-01-28 04:33:40	604 B	0 B	0.0.0.0
belanjasantai.com	unknown	2023-08-11	2016-02-20 05:48:06	2023-11-17 15:20:00	3.0 kB	1.4 MB	172.67.180.166

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

Public InfoSec YARA rules

No alerts detected

OpenPhish

No alerts detected

PhishTank

No alerts detected

mnemonic secure dns

No alerts detected

Quad9 DNS

Scan Date	Severity	Indicator	Alert
2023-11-27	medium	207.148.124.70	Sinkholed

ThreatFox

No alerts detected

JavaScript (32)

	URL	From	Size	First Seen	Last Seen
	www.gstatic.com/_/apps-fileview/_/js/k=apps-fileview.v.no.6G6kAcV7rO0.O/am=IAw/d=0/rs=AO0039vNlYfPQKAw70xNjuzjM8KbOvKUTg/m=MpJwZc,UUJqVe,sy1v,sy3,sy1w,s39S4,syk,sy1x,pw70Gc	ScriptElement	11 kB	2023-11-16	2023-12-04
Pretty URL www.gstatic.com/_/apps-fileview/_/js/k=apps-fileview.v.no.6G6kAcV7rO0.O/am=IAw/d=0/rs=AO0039vNlYfPQKAw70xNjuzjM8KbOvKUTg/m=MpJwZc,UUJqVe,sy1v,sy3,sy1w,s39S4,syk,sy1x,pw70Gc IP 142.250.74.131 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-11-16 18:34 Last Seen2023-12-04 15:45 Times Seen21 Hash c0694f12ae5ceb0c5ee220059abdac1d 163724e30e0cdae10f6305cd8a3c7228649e53e8 c276a6cfe723afa4d93d13501cb675e6e6c055fbd376e3ca14435a55b32c4df4 Loading...

	apis.google.com/_/scs/abc-static/_/js/k=gapi.gapi.en.CzrNRWo3AFk.O/m=client/exm=gapi_iframes,googleapis_client/rt=j/sv=1/d=1/ed=1/rs=AHpOoo8xPbrtpW2bPUIcgU2adGqIEpV82Q/cb=gapi.loaded_1	ScriptElement	206 kB	2023-10-12	2023-11-29
Pretty URL apis.google.com/_/scs/abc-static/_/js/k=gapi.gapi.en.CzrNRWo3AFk.O/m=client/exm=gapi_iframes,googleapis_client/rt=j/sv=1/d=1/ed=1/rs=AHpOoo8xPbrtpW2bPUIcgU2adGqIEpV82Q/cb=gapi.loaded_1 IP 172.217.21.174 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-10-12 03:05 Last Seen2023-11-29 18:08 Times Seen175 Hash 54862a8f09fdd39057a710bb3d7e7e66 8337e6e2b655dc83f4325cc70cfbc25fe20c0039 a4848ea89a7964e61e05d3b105bd4fa974f7f81d89a5a02fbc1c1b72c9309562 Loading...

	apis.google.com/_/scs/abc-static/_/js/k=gapi.gapi.en.CzrNRWo3AFk.O/m=googleapis_proxy/rt=j/sv=1/d=1/ed=1/rs=AHpOoo8xPbrtpW2bPUIcgU2adGqIEpV82Q/cb=gapi.loaded_0?le=scs	ScriptElement	79 kB	2023-10-12	2023-11-29
Pretty URL apis.google.com/_/scs/abc-static/_/js/k=gapi.gapi.en.CzrNRWo3AFk.O/m=googleapis_proxy/rt=j/sv=1/d=1/ed=1/rs=AHpOoo8xPbrtpW2bPUIcgU2adGqIEpV82Q/cb=gapi.loaded_0?le=scs IP 172.217.21.174 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-10-12 03:05 Last Seen2023-11-29 18:08 Times Seen173 Hash 5869f7cb07ea8de5fdd7bf366f7cfcda c21e15f6ff514b938a1b502d88658680d127462d 51bfed53838c4fc38e50188149988cbd23697cfd7460a2f9d24184ab6ba5f42c Loading...

	cdn.ampproject.org/v0/amp-carousel-0.1.js	ScriptElement	39 kB	2023-11-14	2023-11-28
Pretty URL cdn.ampproject.org/v0/amp-carousel-0.1.js IP 142.250.74.161 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-11-14 22:33 Last Seen2023-11-28 11:27 Times Seen37 Hash a81a8c2834df9c266d06efee92037bea 542b0212e43de8b99423d23b6103c081507763bd 933012e55d04c1c0aef87e1c6c3b782c4ffb4359f8b1837f7730c1dd4f3f90cc Loading...

	cdn.ampproject.org/v0/amp-accordion-0.1.js	ScriptElement	18 kB	2023-11-14	2023-11-28
Pretty URL cdn.ampproject.org/v0/amp-accordion-0.1.js IP 142.250.74.161 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-11-14 22:33 Last Seen2023-11-28 19:13 Times Seen39 Hash 214c62ebd2718f1b051ed848e7e480db 6e0c8367eb724dc24c6c49c2666bf98731550ae9 6b4caba1632ee87c41c4af00f053108b1930cca2f33f249b2e4587e86338ab83 Loading...

	drive.google.com/file/d/1ce78JWB3CyMnSoeBHAcrnmoNdfGSCYvc/preview#amp=1	ScriptElement	8.2 kB	2024-08-20	2024-08-20
Pretty URL drive.google.com/file/d/1ce78JWB3CyMnSoeBHAcrnmoNdfGSCYvc/preview#amp=1 IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML true Observations First Seen2024-08-20 17:45 Last Seen2024-08-20 17:45 Times Seen1 Hash 8175e755943978e831004cbd111caef9 937e03604abd12e200de6b761073ef3a0564575c 90bedaaaa90365c65103966caa518b886ce72fb572e616e729a9e61ef7bc04c2 Loading...

	www.gstatic.com/og/_/js/k=og.qtm.en_US._Y_GrwNhTr8.2019.O/rt=j/m=qabr,q_dnp,qapid,q_dg/exm=qaaw,qadd,qaid,qein,qhaw,qhba,qhbr,qhch,qhga,qhid,qhin/d=1/ed=1/rs=AA2YrTuFdMeuRY-i7JPqP_M8jfztH8nn8Q	ScriptElement	114 kB	2023-11-15	2023-11-28
Pretty URL www.gstatic.com/og/_/js/k=og.qtm.en_US._Y_GrwNhTr8.2019.O/rt=j/m=qabr,q_dnp,qapid,q_dg/exm=qaaw,qadd,qaid,qein,qhaw,qhba,qhbr,qhch,qhga,qhid,qhin/d=1/ed=1/rs=AA2YrTuFdMeuRY-i7JPqP_M8jfztH8nn8Q IP 142.250.74.131 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-11-15 13:41 Last Seen2023-11-28 11:28 Times Seen18 Hash 7a8278710b7c7b7018c86ccda10eecc5 f5b999203cc0907442b1851da634e88fcbf7f760 e04eff2017544710257f635fd5667eeac55e4287691fa13dd51d23f073bcbda6 Loading...

	cdn.ampproject.org/v0/amp-lightbox-gallery-0.1.js	ScriptElement	67 kB	2023-11-16	2023-11-27
Pretty URL cdn.ampproject.org/v0/amp-lightbox-gallery-0.1.js IP 142.250.74.161 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-11-16 17:58 Last Seen2023-11-27 23:21 Times Seen27 Hash e07e7adbbc4ee023a02ea16990c08599 9c6b1861f5e99fb9808da6fbf16265f5503b292e 7f3a16764191ea154ded3fcd932d98c4c947333ca0c290681c42a82fd99daa0d Loading...

	cdn.ampproject.org/v0/amp-video-0.1.js	ScriptElement	53 kB	2023-11-17	2023-11-27
Pretty URL cdn.ampproject.org/v0/amp-video-0.1.js IP 142.250.74.161 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-11-17 00:13 Last Seen2023-11-27 09:08 Times Seen5 Hash 2a3619881454789552d3677f8759deb2 d321ddcad56195cc8beae65121ca949aa8f88d4a b4c4267e3cfcde81a0ac955d03f5946d004e06db3cb164fe0a6474424073c77d Loading...

	www.gstatic.com/_/apps-fileview/_/js/k=apps-fileview.v.no.6G6kAcV7rO0.O/am=IAw/d=1/rs=AO0039vNlYfPQKAw70xNjuzjM8KbOvKUTg/m=v,wb	ScriptElement	1.5 MB	2023-11-16	2023-12-04
Pretty URL www.gstatic.com/_/apps-fileview/_/js/k=apps-fileview.v.no.6G6kAcV7rO0.O/am=IAw/d=1/rs=AO0039vNlYfPQKAw70xNjuzjM8KbOvKUTg/m=v,wb IP 142.250.74.131 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-11-16 18:34 Last Seen2023-12-04 15:45 Times Seen21 Hash e33228450c0cbd6b73119ead01513543 86c933b6c08ccf6d356fdadfec5a8eac3c1f432b 40ebf2e2c3055108b21c9eff4e96926e6e42abcd465aa4f1523b0370d771397c Loading...

	www.gstatic.com/feedback/js/help/prod/service/lazy.min.js	ScriptElement	104 kB	2023-11-14	2023-11-28
Pretty URL www.gstatic.com/feedback/js/help/prod/service/lazy.min.js IP 142.250.74.131 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-11-14 19:31 Last Seen2023-11-28 19:44 Times Seen1606 Hash 32fe6c0ba19d0222ff50b43db7da2e42 9850ebff4bddfc12cfa0f468a3a06eaeb63e00bc 4e901ebb09fa9903e237ef74d0578bede0331fb3ef264ea7dabf79f894dd9556 Loading...

	drive.google.com/file/d/1ce78JWB3CyMnSoeBHAcrnmoNdfGSCYvc/preview#amp=1	ScriptElement	2.2 kB	2024-08-20	2024-08-20
Pretty URL drive.google.com/file/d/1ce78JWB3CyMnSoeBHAcrnmoNdfGSCYvc/preview#amp=1 IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML true Observations First Seen2024-08-20 17:45 Last Seen2024-08-20 17:45 Times Seen1 Hash a09dadc82e0e0743cb708ddfc3644571 34647518b45e5abf308860df66d36d78f4ab4a92 86fa1a4f9fd5e65645a1c2a57613bf355cf48f36246a5eec727d66c42cc6a4b4 Loading...

	apis.google.com/_/scs/abc-static/_/js/k=gapi.gapi.en.CzrNRWo3AFk.O/m=gapi_iframes,googleapis_client/rt=j/sv=1/d=1/ed=1/rs=AHpOoo8xPbrtpW2bPUIcgU2adGqIEpV82Q/cb=gapi.loaded_0	ScriptElement	121 kB	2023-10-12	2023-11-29
Pretty URL apis.google.com/_/scs/abc-static/_/js/k=gapi.gapi.en.CzrNRWo3AFk.O/m=gapi_iframes,googleapis_client/rt=j/sv=1/d=1/ed=1/rs=AHpOoo8xPbrtpW2bPUIcgU2adGqIEpV82Q/cb=gapi.loaded_0 IP 172.217.21.174 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-10-12 03:05 Last Seen2023-11-29 19:42 Times Seen19048 Hash 1ccd95d83b05996630e52aa8dae42f06 027c31f9399bfae7d6ffc8b8d7299b3a9e8e9080 9d4e56038dcccd960ea62bd2ee6925469001254602dfb54b740f1a1adaf0d7b2 Loading...

	belanjasantai.com/prpr/365prpr02bii	ScriptElement	0 B	0001-01-01	2025-05-11
Pretty URL belanjasantai.com/prpr/365prpr02bii IP 172.67.180.166 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen0001-01-01 00:00 Last Seen2025-05-11 10:53 Times Seen4653537 Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 Loading...

	cdn.ampproject.org/v0/amp-iframe-0.1.js	ScriptElement	26 kB	2023-11-15	2023-11-28
Pretty URL cdn.ampproject.org/v0/amp-iframe-0.1.js IP 142.250.74.161 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-11-15 08:53 Last Seen2023-11-28 11:36 Times Seen31 Hash fb8604daeeb470e73c46ceae8c84c1b2 173ce838eb3d3f92968b7222913a204a8d52898d 7b83967bf7b0fcf33883d699614c0a968a4f3b8487314f384d38a6ddcd0bd665 Loading...

	cdn.ampproject.org/v0/amp-form-0.1.js	ScriptElement	51 kB	2023-11-15	2023-11-28
Pretty URL cdn.ampproject.org/v0/amp-form-0.1.js IP 142.250.74.161 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-11-15 23:25 Last Seen2023-11-28 19:13 Times Seen11 Hash f676548ab98822b35961948da2b80288 8926bf4f4fcd0ee8107a64767b38e0c482eeeb48 c80037aeed66b1de77e82789686d5d65393f0e67dbb0d848434151e4c9a6011d Loading...

	drive.google.com/file/d/1fBV0J62OChP4aw08EmOlD1OC1ttAbLNC/preview#amp=1	ScriptElement	8.2 kB	2024-08-20	2024-08-20
Pretty URL drive.google.com/file/d/1fBV0J62OChP4aw08EmOlD1OC1ttAbLNC/preview#amp=1 IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML true Observations First Seen2024-08-20 17:45 Last Seen2024-08-20 17:45 Times Seen1 Hash 4576d01438cbb6415c7fb7d912b735e0 6d34ab0ea707184a04abcbba70909a47f60fd7f8 fc23e6c63f175700441c7ed0444e8a913ff7c8e0aa302eef850779960188d234 Loading...

	apis.google.com/js/googleapis.proxy.js?onload=startup	ScriptElement	18 kB	2023-10-12	2023-11-29
Pretty URL apis.google.com/js/googleapis.proxy.js?onload=startup IP 172.217.21.174 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-10-12 03:34 Last Seen2023-11-29 18:08 Times Seen265 Hash a652c99342a60e6c01af3b070abca897 bfb2432d813541b35134b63606efd3d32c715224 f92e7baf6054ada951110842b4751571b3b16b43e826ff46eb36520f0294f59d Loading...

	cdn.ampproject.org/v0/amp-sidebar-0.1.js	ScriptElement	31 kB	2023-11-15	2023-11-28
Pretty URL cdn.ampproject.org/v0/amp-sidebar-0.1.js IP 142.250.74.161 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-11-15 08:53 Last Seen2023-11-28 20:16 Times Seen52 Hash 6536c4e7e1e2b8715a1eec75c3685249 b3f973ad462cb6579d6d08bd9699d257bdbeddcc 4d7ee587b1b2fb177db15824d9de078179371e1068c7d71a7c3941dab2806eba Loading...

	drive.google.com/file/d/1ce78JWB3CyMnSoeBHAcrnmoNdfGSCYvc/preview#amp=1	ScriptElement	21 kB	2024-08-20	2024-08-20
Pretty URL drive.google.com/file/d/1ce78JWB3CyMnSoeBHAcrnmoNdfGSCYvc/preview#amp=1 IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML true Observations First Seen2024-08-20 17:45 Last Seen2024-08-20 17:45 Times Seen1 Hash c312f892e42548b56d47fe2a61aee7e0 7a09fbc84f3d9c33e0e9e03277ab5a25545bd6cb 933299665cba387ef25b417d33ea86a642a472a91ce91d2c6fcd2b22073eb977 Loading...

	content.googleapis.com/static/proxy.html?usegapi=1&jsh=m%3B%2F_%2Fscs%2Fabc-static%2F_%2Fjs%2Fk%3Dgapi.gapi.en.CzrNRWo3AFk.O%2Fd%3D1%2Frs%3DAHpOoo8xPbrtpW2bPUIcgU2adGqIEpV82Q%2Fm%3D__features__#parent=https%3A%2F%2Fdrive.google.com&rpctoken=331092803	ScriptElement	0 B	0001-01-01	2025-05-11
Pretty URL content.googleapis.com/static/proxy.html?usegapi=1&jsh=m%3B%2F_%2Fscs%2Fabc-static%2F_%2Fjs%2Fk%3Dgapi.gapi.en.CzrNRWo3AFk.O%2Fd%3D1%2Frs%3DAHpOoo8xPbrtpW2bPUIcgU2adGqIEpV82Q%2Fm%3D__features__#parent=https%3A%2F%2Fdrive.google.com&rpctoken=331092803 IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML true Observations First Seen0001-01-01 00:00 Last Seen2025-05-11 10:53 Times Seen4653537 Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 Loading...

	www.gstatic.com/_/apps-fileview/_/js/k=apps-fileview.v.no.6G6kAcV7rO0.O/am=IAw/d=0/rs=AO0039vNlYfPQKAw70xNjuzjM8KbOvKUTg/m=sy11,sy34,sAbmxd	ScriptElement	17 kB	2023-11-17	2023-12-01
Pretty URL www.gstatic.com/_/apps-fileview/_/js/k=apps-fileview.v.no.6G6kAcV7rO0.O/am=IAw/d=0/rs=AO0039vNlYfPQKAw70xNjuzjM8KbOvKUTg/m=sy11,sy34,sAbmxd IP 142.250.74.131 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-11-17 15:25 Last Seen2023-12-01 13:10 Times Seen8 Hash af81d5d3007ed141bc7af427718dcff9 9d0f006e599771f38c3752173aae8374281cc056 73c2963ad4fce0b63f3b7c4193dbf37963fa0d24bae613afd7b316c88995c475 Loading...

	cdn.ampproject.org/v0/amp-image-lightbox-0.1.js	ScriptElement	38 kB	2023-11-15	2023-11-27
Pretty URL cdn.ampproject.org/v0/amp-image-lightbox-0.1.js IP 142.250.74.161 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-11-15 23:25 Last Seen2023-11-27 09:08 Times Seen6 Hash 0c2530ba0144e6b7db4fda347e7a6605 cbc96da844ee7698bb2d460756410006b678553c 92561bac5bcdd05ac9dec5fc8cad1a72b54f5770e1ab30fc15e12d98a9965a4d Loading...

	cdn.ampproject.org/rtv/012310301456000/v0/amp-auto-lightbox-0.1.js	ScriptElement	7.8 kB	2023-11-14	2023-11-28
Pretty URL cdn.ampproject.org/rtv/012310301456000/v0/amp-auto-lightbox-0.1.js IP 142.250.74.161 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-11-14 22:33 Last Seen2023-11-28 19:13 Times Seen117 Hash 50d01f9355b127adcc090233772bbb1c 66e0ee80cc12c71c6dda77255230c7f207538447 22d9dc8a34bcbffe719050b949b9872f9af036a9bbfd3ca2e99165d604acaf24 Loading...

	cdn.ampproject.org/rtv/012310301456000/v0/amp-loader-0.1.js	ScriptElement	13 kB	2023-11-14	2023-11-28
Pretty URL cdn.ampproject.org/rtv/012310301456000/v0/amp-loader-0.1.js IP 142.250.74.161 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-11-14 22:33 Last Seen2023-11-28 19:13 Times Seen115 Hash ba715c5679b980da4ecd5c53ba11ca14 8f6893a724c33f5a92893c3f392c6294792dafbd ff65d80be1d7ee6ad9620de618dc1bd3962d81fa505806c02038dd6acc3641b8 Loading...

	drive.google.com/file/d/1ce78JWB3CyMnSoeBHAcrnmoNdfGSCYvc/preview#amp=1	ScriptElement	1.6 kB	2023-11-15	2024-08-20
Pretty URL drive.google.com/file/d/1ce78JWB3CyMnSoeBHAcrnmoNdfGSCYvc/preview#amp=1 IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML true Observations First Seen2023-11-15 13:41 Last Seen2024-08-20 19:29 Times Seen19 Hash 4fef3a27721edb01b048fbd9123a5428 19bf210dbd96732dfb206dffc4c28afaf3da40b0 2ea9deafd052b4a4f03a9a689ce8604722bd0dd6c70c6cb33bbe3617797f4d95 Loading...

	cdn.ampproject.org/v0/amp-font-0.1.js	ScriptElement	6.7 kB	2023-11-17	2023-11-27
Pretty URL cdn.ampproject.org/v0/amp-font-0.1.js IP 142.250.74.161 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-11-17 15:25 Last Seen2023-11-27 09:08 Times Seen4 Hash 07453933c1181268f2b9a4d8febbebbf 9990250282b914d5d4c556e463c3f85f61db3676 6f6c60d8075fde569507c85c93dcc8ec932f83010181190a10232a19ebb7c4b1 Loading...

	cdn.ampproject.org/v0.js	ScriptElement	284 kB	2023-11-14	2023-11-28
Pretty URL cdn.ampproject.org/v0.js IP 142.250.74.161 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-11-14 22:33 Last Seen2023-11-28 20:16 Times Seen145 Hash f0365608b7ed1b269e0f9c1c12069b1b 37fc08e32173f6c1a674d90f18d5c56801c8b5f2 908a935e15d34ec51aa5d98fb7c9f11b814fac80cc7e1bc32aed903df3754558 Loading...

	drive.google.com/file/d/1ce78JWB3CyMnSoeBHAcrnmoNdfGSCYvc/preview#amp=1	ScriptElement	6.2 kB	2023-11-16	2024-08-20
Pretty URL drive.google.com/file/d/1ce78JWB3CyMnSoeBHAcrnmoNdfGSCYvc/preview#amp=1 IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML true Observations First Seen2023-11-16 18:34 Last Seen2024-08-20 19:15 Times Seen27 Hash 7deca018fdd246794acccc2fcec77641 9b25651b8817ee845bbde7187b44ed1052f19f36 37bd2fc04dd33d37e42c04cbb5d8ecf9c3b1194be36161a4a5d350addcb50fb8 Loading...

	drive.google.com/file/d/1fBV0J62OChP4aw08EmOlD1OC1ttAbLNC/preview#amp=1	ScriptElement	2.2 kB	2024-08-20	2024-08-20
Pretty URL drive.google.com/file/d/1fBV0J62OChP4aw08EmOlD1OC1ttAbLNC/preview#amp=1 IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML true Observations First Seen2024-08-20 17:45 Last Seen2024-08-20 17:45 Times Seen1 Hash fe3d6434ecea5ca916bacb424d9476dc 09e286ce73c8a2733c06ea6d68e41d7a39296324 66d32321a9b05a496d9c01aeee03e6ac24258de2b4424aea6257b45fec2ec95f Loading...

	cdn.ampproject.org/v0/amp-youtube-0.1.js	ScriptElement	37 kB	2023-11-16	2023-11-28
Pretty URL cdn.ampproject.org/v0/amp-youtube-0.1.js IP 142.250.74.161 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-11-16 17:58 Last Seen2023-11-28 16:37 Times Seen15 Hash 5eaaf358615421a63277019dce62299c da3f4e0b92aec0dbb60ba6c5ed8a7cba2d736059 71891f70cbee99e4fdb9c858f4fc218bd48307dbb8616bd34a454ccb7332b752 Loading...

	drive.google.com/file/d/1fBV0J62OChP4aw08EmOlD1OC1ttAbLNC/preview#amp=1	ScriptElement	21 kB	2024-08-20	2024-08-20
Pretty URL drive.google.com/file/d/1fBV0J62OChP4aw08EmOlD1OC1ttAbLNC/preview#amp=1 IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML true Observations First Seen2024-08-20 17:45 Last Seen2024-08-20 17:45 Times Seen1 Hash aa50277d268043b20b838a7ff44bbe8b 26929ce861fa18b4bdd61c5a6f955d46c16b1004 dcc645a55598af752b4602c93f47cc018f44f660e40bb185ed618cde68820637 Loading...

HTTP Transactions (80)

URL IP Response Size

maxcdn.bootstrapcdn.com/font-awesome/4.7.0/css/font-awesome.min.css

104.18.11.207

200 OK

7.4 kB

URL GET HTTP/2
maxcdn.bootstrapcdn.com/font-awesome/4.7.0/css/font-awesome.min.css
IP
104.18.11.207:443
ASN
#13335 CLOUDFLARENET

Requested by
https://belanjasantai.com/prpr/365prpr02bii
Certificate
IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint5B:F7:8F:50:AD:E5:5B:5E:8C:4A:39:3D:0C:98:E8:8C:18:4B:3D:8A
ValidityFri, 30 Dec 2022 00:00:00 GMT - Sat, 30 Dec 2023 23:59:59 GMT

File type
ASCII text, with very long lines (30837)
Size
7.4 kB (7449 bytes)
Hash
269550530cc127b6aa5a35925a7de6ce
512c7d79033e3028a9be61b540cf1a6870c896f8
799aeb25cc0373fdee0e1b1db7ad6c2f6a0e058dfadaa3379689f583213190bd

HTTP Headers

GET /font-awesome/4.7.0/css/font-awesome.min.css HTTP/1.1
Host: maxcdn.bootstrapcdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://belanjasantai.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Mon, 27 Nov 2023 08:07:48 GMT
content-type: text/css; charset=utf-8
vary: Accept-Encoding
cdn-pullzone: 252412
cdn-uid: b1941f61-b576-4f40-80de-5677acb38f74
cdn-requestcountrycode: DE
access-control-allow-origin: *
cache-control: public, max-age=31919000
etag: W/"269550530cc127b6aa5a35925a7de6ce"
last-modified: Mon, 25 Jan 2021 22:04:55 GMT
cdn-cachedat: 10/31/2023 18:48:06
cdn-proxyver: 1.04
cdn-requestpullcode: 200
cdn-requestpullsuccess: True
cdn-edgestorageid: 722
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
cdn-status: 200
cdn-requestid: 9e61a4e37a75208649ae6b63a0cb4f72
cdn-cache: HIT
cf-cache-status: HIT
age: 12738
strict-transport-security: max-age=31536000; includeSubDomains; preload
server: cloudflare
cf-ray: 82c8e1324ac156ae-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

cdn.ampproject.org/v0/amp-font-0.1.js

142.250.74.161

200 OK

2.4 kB

URL GET HTTP/2
cdn.ampproject.org/v0/amp-font-0.1.js
IP
142.250.74.161:443
ASN
#15169 GOOGLE

Requested by
https://belanjasantai.com/prpr/365prpr02bii
Certificate
IssuerGoogle Trust Services LLC
Subjectmisc-sni.google.com
FingerprintE4:33:2C:42:1C:4F:E6:01:93:AD:F1:5F:70:4D:33:1F:3B:5F:AB:DE
ValidityMon, 23 Oct 2023 11:20:02 GMT - Mon, 15 Jan 2024 11:20:01 GMT

File type
ASCII text, with very long lines (6619)
Size
2.4 kB (2394 bytes)
Hash
07453933c1181268f2b9a4d8febbebbf
9990250282b914d5d4c556e463c3f85f61db3676
6f6c60d8075fde569507c85c93dcc8ec932f83010181190a10232a19ebb7c4b1

HTTP Headers

GET /v0/amp-font-0.1.js HTTP/1.1
Host: cdn.ampproject.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://belanjasantai.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: br
content-type: text/javascript; charset=UTF-8
access-control-allow-origin: *
content-security-policy: default-src * blob: data:; script-src blob: https://cdn.ampproject.org/lts/ https://cdn.ampproject.org/rtv/ https://cdn.ampproject.org/sw/ https://cdn.ampproject.org/v0.js https://cdn.ampproject.org/v0.mjs https://cdn.ampproject.org/v0/ https://cdn.ampproject.org/viewer/; object-src 'none'; style-src 'unsafe-inline' https://cdn.ampproject.org/rtv/ https://cdn.materialdesignicons.com https://cdnjs.cloudflare.com/ajax/libs/font-awesome/ https://cloud.typography.com https://fast.fonts.net https://fonts.googleapis.com https://maxcdn.bootstrapcdn.com https://p.typekit.net https://pro.fontawesome.com https://use.fontawesome.com https://use.typekit.net; report-uri https://csp.withgoogle.com/csp/amp
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="amphtml-china-available"
report-to: {"group":"amphtml-china-available","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/amphtml-china-available"}]}
timing-allow-origin: *
content-length: 2394
date: Mon, 27 Nov 2023 08:07:48 GMT
expires: Mon, 27 Nov 2023 08:07:48 GMT
cache-control: private, max-age=604800, stale-while-revalidate=604800
etag: "87285fcc86cf270f"
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

cdn.ampproject.org/v0/amp-image-lightbox-0.1.js

142.250.74.161

200 OK

11 kB

URL GET HTTP/2
cdn.ampproject.org/v0/amp-image-lightbox-0.1.js
IP
142.250.74.161:443
ASN
#15169 GOOGLE

Requested by
https://belanjasantai.com/prpr/365prpr02bii
Certificate
IssuerGoogle Trust Services LLC
Subjectmisc-sni.google.com
FingerprintE4:33:2C:42:1C:4F:E6:01:93:AD:F1:5F:70:4D:33:1F:3B:5F:AB:DE
ValidityMon, 23 Oct 2023 11:20:02 GMT - Mon, 15 Jan 2024 11:20:01 GMT

File type
Unicode text, UTF-8 text, with very long lines (37851)
Size
11 kB (10874 bytes)
Hash
0c2530ba0144e6b7db4fda347e7a6605
cbc96da844ee7698bb2d460756410006b678553c
92561bac5bcdd05ac9dec5fc8cad1a72b54f5770e1ab30fc15e12d98a9965a4d

HTTP Headers

GET /v0/amp-image-lightbox-0.1.js HTTP/1.1
Host: cdn.ampproject.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://belanjasantai.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: br
content-type: text/javascript; charset=UTF-8
access-control-allow-origin: *
content-security-policy: default-src * blob: data:; script-src blob: https://cdn.ampproject.org/lts/ https://cdn.ampproject.org/rtv/ https://cdn.ampproject.org/sw/ https://cdn.ampproject.org/v0.js https://cdn.ampproject.org/v0.mjs https://cdn.ampproject.org/v0/ https://cdn.ampproject.org/viewer/; object-src 'none'; style-src 'unsafe-inline' https://cdn.ampproject.org/rtv/ https://cdn.materialdesignicons.com https://cdnjs.cloudflare.com/ajax/libs/font-awesome/ https://cloud.typography.com https://fast.fonts.net https://fonts.googleapis.com https://maxcdn.bootstrapcdn.com https://p.typekit.net https://pro.fontawesome.com https://use.fontawesome.com https://use.typekit.net; report-uri https://csp.withgoogle.com/csp/amp
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="amphtml-china-available"
report-to: {"group":"amphtml-china-available","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/amphtml-china-available"}]}
timing-allow-origin: *
content-length: 10874
date: Mon, 27 Nov 2023 08:07:48 GMT
expires: Mon, 27 Nov 2023 08:07:48 GMT
cache-control: private, max-age=604800, stale-while-revalidate=604800
etag: "f18ed9c87b1dab81"
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

cdn.ampproject.org/v0/amp-lightbox-gallery-0.1.js

142.250.74.161

200 OK

19 kB

URL GET HTTP/2
cdn.ampproject.org/v0/amp-lightbox-gallery-0.1.js
IP
142.250.74.161:443
ASN
#15169 GOOGLE

Requested by
https://belanjasantai.com/prpr/365prpr02bii
Certificate
IssuerGoogle Trust Services LLC
Subjectmisc-sni.google.com
FingerprintE4:33:2C:42:1C:4F:E6:01:93:AD:F1:5F:70:4D:33:1F:3B:5F:AB:DE
ValidityMon, 23 Oct 2023 11:20:02 GMT - Mon, 15 Jan 2024 11:20:01 GMT

File type
Unicode text, UTF-8 text, with very long lines (65526)
Size
19 kB (19047 bytes)
Hash
e07e7adbbc4ee023a02ea16990c08599
9c6b1861f5e99fb9808da6fbf16265f5503b292e
7f3a16764191ea154ded3fcd932d98c4c947333ca0c290681c42a82fd99daa0d

HTTP Headers

GET /v0/amp-lightbox-gallery-0.1.js HTTP/1.1
Host: cdn.ampproject.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://belanjasantai.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: br
content-type: text/javascript; charset=UTF-8
access-control-allow-origin: *
content-security-policy: default-src * blob: data:; script-src blob: https://cdn.ampproject.org/lts/ https://cdn.ampproject.org/rtv/ https://cdn.ampproject.org/sw/ https://cdn.ampproject.org/v0.js https://cdn.ampproject.org/v0.mjs https://cdn.ampproject.org/v0/ https://cdn.ampproject.org/viewer/; object-src 'none'; style-src 'unsafe-inline' https://cdn.ampproject.org/rtv/ https://cdn.materialdesignicons.com https://cdnjs.cloudflare.com/ajax/libs/font-awesome/ https://cloud.typography.com https://fast.fonts.net https://fonts.googleapis.com https://maxcdn.bootstrapcdn.com https://p.typekit.net https://pro.fontawesome.com https://use.fontawesome.com https://use.typekit.net; report-uri https://csp.withgoogle.com/csp/amp
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="amphtml-china-available"
report-to: {"group":"amphtml-china-available","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/amphtml-china-available"}]}
timing-allow-origin: *
content-length: 19047
date: Mon, 27 Nov 2023 08:07:48 GMT
expires: Mon, 27 Nov 2023 08:07:48 GMT
cache-control: private, max-age=604800, stale-while-revalidate=604800
etag: "b89252b8207cc964"
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

cdn.ampproject.org/v0/amp-iframe-0.1.js

142.250.74.161

200 OK

8.9 kB

URL GET HTTP/2
cdn.ampproject.org/v0/amp-iframe-0.1.js
IP
142.250.74.161:443
ASN
#15169 GOOGLE

Requested by
https://belanjasantai.com/prpr/365prpr02bii
Certificate
IssuerGoogle Trust Services LLC
Subjectmisc-sni.google.com
FingerprintE4:33:2C:42:1C:4F:E6:01:93:AD:F1:5F:70:4D:33:1F:3B:5F:AB:DE
ValidityMon, 23 Oct 2023 11:20:02 GMT - Mon, 15 Jan 2024 11:20:01 GMT

File type
ASCII text, with very long lines (25617)
Size
8.9 kB (8919 bytes)
Hash
fb8604daeeb470e73c46ceae8c84c1b2
173ce838eb3d3f92968b7222913a204a8d52898d
7b83967bf7b0fcf33883d699614c0a968a4f3b8487314f384d38a6ddcd0bd665

HTTP Headers

GET /v0/amp-iframe-0.1.js HTTP/1.1
Host: cdn.ampproject.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://belanjasantai.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: br
content-type: text/javascript; charset=UTF-8
access-control-allow-origin: *
content-security-policy: default-src * blob: data:; script-src blob: https://cdn.ampproject.org/lts/ https://cdn.ampproject.org/rtv/ https://cdn.ampproject.org/sw/ https://cdn.ampproject.org/v0.js https://cdn.ampproject.org/v0.mjs https://cdn.ampproject.org/v0/ https://cdn.ampproject.org/viewer/; object-src 'none'; style-src 'unsafe-inline' https://cdn.ampproject.org/rtv/ https://cdn.materialdesignicons.com https://cdnjs.cloudflare.com/ajax/libs/font-awesome/ https://cloud.typography.com https://fast.fonts.net https://fonts.googleapis.com https://maxcdn.bootstrapcdn.com https://p.typekit.net https://pro.fontawesome.com https://use.fontawesome.com https://use.typekit.net; report-uri https://csp.withgoogle.com/csp/amp
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="amphtml-china-available"
report-to: {"group":"amphtml-china-available","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/amphtml-china-available"}]}
timing-allow-origin: *
content-length: 8919
date: Mon, 27 Nov 2023 08:07:48 GMT
expires: Mon, 27 Nov 2023 08:07:48 GMT
cache-control: private, max-age=604800, stale-while-revalidate=604800
etag: "09e72aa6a2134a2c"
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

cdn.ampproject.org/v0/amp-form-0.1.js

142.250.74.161

200 OK

15 kB

URL GET HTTP/2
cdn.ampproject.org/v0/amp-form-0.1.js
IP
142.250.74.161:443
ASN
#15169 GOOGLE

Requested by
https://belanjasantai.com/prpr/365prpr02bii
Certificate
IssuerGoogle Trust Services LLC
Subjectmisc-sni.google.com
FingerprintE4:33:2C:42:1C:4F:E6:01:93:AD:F1:5F:70:4D:33:1F:3B:5F:AB:DE
ValidityMon, 23 Oct 2023 11:20:02 GMT - Mon, 15 Jan 2024 11:20:01 GMT

File type
Unicode text, UTF-8 text, with very long lines (50833)
Size
15 kB (14977 bytes)
Hash
f676548ab98822b35961948da2b80288
8926bf4f4fcd0ee8107a64767b38e0c482eeeb48
c80037aeed66b1de77e82789686d5d65393f0e67dbb0d848434151e4c9a6011d

HTTP Headers

GET /v0/amp-form-0.1.js HTTP/1.1
Host: cdn.ampproject.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://belanjasantai.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: br
content-type: text/javascript; charset=UTF-8
access-control-allow-origin: *
content-security-policy: default-src * blob: data:; script-src blob: https://cdn.ampproject.org/lts/ https://cdn.ampproject.org/rtv/ https://cdn.ampproject.org/sw/ https://cdn.ampproject.org/v0.js https://cdn.ampproject.org/v0.mjs https://cdn.ampproject.org/v0/ https://cdn.ampproject.org/viewer/; object-src 'none'; style-src 'unsafe-inline' https://cdn.ampproject.org/rtv/ https://cdn.materialdesignicons.com https://cdnjs.cloudflare.com/ajax/libs/font-awesome/ https://cloud.typography.com https://fast.fonts.net https://fonts.googleapis.com https://maxcdn.bootstrapcdn.com https://p.typekit.net https://pro.fontawesome.com https://use.fontawesome.com https://use.typekit.net; report-uri https://csp.withgoogle.com/csp/amp
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="amphtml-china-available"
report-to: {"group":"amphtml-china-available","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/amphtml-china-available"}]}
timing-allow-origin: *
content-length: 14977
date: Mon, 27 Nov 2023 08:07:48 GMT
expires: Mon, 27 Nov 2023 08:07:48 GMT
cache-control: private, max-age=604800, stale-while-revalidate=604800
etag: "233cb1cb2c22655b"
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

cdn.ampproject.org/v0/amp-video-0.1.js

142.250.74.161

200 OK

16 kB

URL GET HTTP/2
cdn.ampproject.org/v0/amp-video-0.1.js
IP
142.250.74.161:443
ASN
#15169 GOOGLE

Requested by
https://belanjasantai.com/prpr/365prpr02bii
Certificate
IssuerGoogle Trust Services LLC
Subjectmisc-sni.google.com
FingerprintE4:33:2C:42:1C:4F:E6:01:93:AD:F1:5F:70:4D:33:1F:3B:5F:AB:DE
ValidityMon, 23 Oct 2023 11:20:02 GMT - Mon, 15 Jan 2024 11:20:01 GMT

File type
Unicode text, UTF-8 text, with very long lines (52636)
Size
16 kB (15919 bytes)
Hash
2a3619881454789552d3677f8759deb2
d321ddcad56195cc8beae65121ca949aa8f88d4a
b4c4267e3cfcde81a0ac955d03f5946d004e06db3cb164fe0a6474424073c77d

HTTP Headers

GET /v0/amp-video-0.1.js HTTP/1.1
Host: cdn.ampproject.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://belanjasantai.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: br
content-type: text/javascript; charset=UTF-8
access-control-allow-origin: *
content-security-policy: default-src * blob: data:; script-src blob: https://cdn.ampproject.org/lts/ https://cdn.ampproject.org/rtv/ https://cdn.ampproject.org/sw/ https://cdn.ampproject.org/v0.js https://cdn.ampproject.org/v0.mjs https://cdn.ampproject.org/v0/ https://cdn.ampproject.org/viewer/; object-src 'none'; style-src 'unsafe-inline' https://cdn.ampproject.org/rtv/ https://cdn.materialdesignicons.com https://cdnjs.cloudflare.com/ajax/libs/font-awesome/ https://cloud.typography.com https://fast.fonts.net https://fonts.googleapis.com https://maxcdn.bootstrapcdn.com https://p.typekit.net https://pro.fontawesome.com https://use.fontawesome.com https://use.typekit.net; report-uri https://csp.withgoogle.com/csp/amp
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="amphtml-china-available"
report-to: {"group":"amphtml-china-available","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/amphtml-china-available"}]}
timing-allow-origin: *
content-length: 15919
date: Mon, 27 Nov 2023 08:07:48 GMT
expires: Mon, 27 Nov 2023 08:07:48 GMT
cache-control: private, max-age=604800, stale-while-revalidate=604800
etag: "3240cf05dc7607ca"
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

cdn.ampproject.org/v0/amp-youtube-0.1.js

142.250.74.161

200 OK

11 kB

URL GET HTTP/2
cdn.ampproject.org/v0/amp-youtube-0.1.js
IP
142.250.74.161:443
ASN
#15169 GOOGLE

Requested by
https://belanjasantai.com/prpr/365prpr02bii
Certificate
IssuerGoogle Trust Services LLC
Subjectmisc-sni.google.com
FingerprintE4:33:2C:42:1C:4F:E6:01:93:AD:F1:5F:70:4D:33:1F:3B:5F:AB:DE
ValidityMon, 23 Oct 2023 11:20:02 GMT - Mon, 15 Jan 2024 11:20:01 GMT

File type
ASCII text, with very long lines (36458)
Size
11 kB (11216 bytes)
Hash
5eaaf358615421a63277019dce62299c
da3f4e0b92aec0dbb60ba6c5ed8a7cba2d736059
71891f70cbee99e4fdb9c858f4fc218bd48307dbb8616bd34a454ccb7332b752

HTTP Headers

GET /v0/amp-youtube-0.1.js HTTP/1.1
Host: cdn.ampproject.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://belanjasantai.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: br
content-type: text/javascript; charset=UTF-8
access-control-allow-origin: *
content-security-policy: default-src * blob: data:; script-src blob: https://cdn.ampproject.org/lts/ https://cdn.ampproject.org/rtv/ https://cdn.ampproject.org/sw/ https://cdn.ampproject.org/v0.js https://cdn.ampproject.org/v0.mjs https://cdn.ampproject.org/v0/ https://cdn.ampproject.org/viewer/; object-src 'none'; style-src 'unsafe-inline' https://cdn.ampproject.org/rtv/ https://cdn.materialdesignicons.com https://cdnjs.cloudflare.com/ajax/libs/font-awesome/ https://cloud.typography.com https://fast.fonts.net https://fonts.googleapis.com https://maxcdn.bootstrapcdn.com https://p.typekit.net https://pro.fontawesome.com https://use.fontawesome.com https://use.typekit.net; report-uri https://csp.withgoogle.com/csp/amp
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="amphtml-china-available"
report-to: {"group":"amphtml-china-available","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/amphtml-china-available"}]}
timing-allow-origin: *
content-length: 11216
date: Mon, 27 Nov 2023 08:07:48 GMT
expires: Mon, 27 Nov 2023 08:07:48 GMT
cache-control: private, max-age=604800, stale-while-revalidate=604800
etag: "a6a0484c07369c3e"
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

cdn.ampproject.org/v0/amp-sidebar-0.1.js

142.250.74.161

200 OK

9.7 kB

URL GET HTTP/2
cdn.ampproject.org/v0/amp-sidebar-0.1.js
IP
142.250.74.161:443
ASN
#15169 GOOGLE

Requested by
https://belanjasantai.com/prpr/365prpr02bii
Certificate
IssuerGoogle Trust Services LLC
Subjectmisc-sni.google.com
FingerprintE4:33:2C:42:1C:4F:E6:01:93:AD:F1:5F:70:4D:33:1F:3B:5F:AB:DE
ValidityMon, 23 Oct 2023 11:20:02 GMT - Mon, 15 Jan 2024 11:20:01 GMT

File type
ASCII text, with very long lines (31248)
Size
9.7 kB (9651 bytes)
Hash
6536c4e7e1e2b8715a1eec75c3685249
b3f973ad462cb6579d6d08bd9699d257bdbeddcc
4d7ee587b1b2fb177db15824d9de078179371e1068c7d71a7c3941dab2806eba

HTTP Headers

GET /v0/amp-sidebar-0.1.js HTTP/1.1
Host: cdn.ampproject.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://belanjasantai.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: br
content-type: text/javascript; charset=UTF-8
access-control-allow-origin: *
content-security-policy: default-src * blob: data:; script-src blob: https://cdn.ampproject.org/lts/ https://cdn.ampproject.org/rtv/ https://cdn.ampproject.org/sw/ https://cdn.ampproject.org/v0.js https://cdn.ampproject.org/v0.mjs https://cdn.ampproject.org/v0/ https://cdn.ampproject.org/viewer/; object-src 'none'; style-src 'unsafe-inline' https://cdn.ampproject.org/rtv/ https://cdn.materialdesignicons.com https://cdnjs.cloudflare.com/ajax/libs/font-awesome/ https://cloud.typography.com https://fast.fonts.net https://fonts.googleapis.com https://maxcdn.bootstrapcdn.com https://p.typekit.net https://pro.fontawesome.com https://use.fontawesome.com https://use.typekit.net; report-uri https://csp.withgoogle.com/csp/amp
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="amphtml-china-available"
report-to: {"group":"amphtml-china-available","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/amphtml-china-available"}]}
timing-allow-origin: *
content-length: 9651
date: Mon, 27 Nov 2023 08:07:48 GMT
expires: Mon, 27 Nov 2023 08:07:48 GMT
cache-control: private, max-age=604800, stale-while-revalidate=604800
etag: "e5d8e2e1a4e85f74"
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

belanjasantai.com/prpr/365prpr02bii

172.67.180.166

200 OK

22 kB

URL User Request GET HTTP/2
belanjasantai.com/prpr/365prpr02bii
IP
172.67.180.166:443
ASN
#13335 CLOUDFLARENET

Certificate
IssuerGoogle Trust Services LLC
Subjectbelanjasantai.com
Fingerprint93:D8:03:9E:28:C1:21:A2:65:73:EB:41:68:12:3E:5E:17:51:B4:F1
ValidityMon, 23 Oct 2023 07:28:18 GMT - Sun, 21 Jan 2024 07:28:17 GMT

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (381), with CRLF line terminators
Size
22 kB (22504 bytes)
Hash
e3f7c58d4ee2db8a2efafc697b24b553
7fbff53ba20954bf37a0bbbde017432d86dd5203
4995ee86b0c13208b1d7181fbdac39b2fb7fd6cff3fdaf6fa05f2c9852a5a138

HTTP Headers

GET /prpr/365prpr02bii HTTP/1.1
Host: belanjasantai.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Mon, 27 Nov 2023 08:07:48 GMT
content-type: text/html
last-modified: Mon, 20 Nov 2023 11:51:19 GMT
vary: Accept-Encoding
access-control-allow-origin: *
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=vnYAYLCsbwq19U5bbrpkm3CbvHxqTsSrTZtPau%2BNAeWnWQb2FaKqgQbAG66FL5XD3LPM9jeoYKjEd6%2B5JXEXOXmFm%2BmXEZf2gPFCFZZyPFBcnaVFBRwa3WscXCaera%2FCd%2BqGfA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 82c8e12bfa9a7131-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

cdn.ampproject.org/v0/amp-iframe-0.1.js

142.250.74.161

200 OK

8.9 kB

URL GET HTTP/2
cdn.ampproject.org/v0/amp-iframe-0.1.js
IP
142.250.74.161:443
ASN
#15169 GOOGLE

Requested by
https://belanjasantai.com/prpr/365prpr02bii
Certificate
IssuerGoogle Trust Services LLC
Subjectmisc-sni.google.com
FingerprintE4:33:2C:42:1C:4F:E6:01:93:AD:F1:5F:70:4D:33:1F:3B:5F:AB:DE
ValidityMon, 23 Oct 2023 11:20:02 GMT - Mon, 15 Jan 2024 11:20:01 GMT

File type
ASCII text, with very long lines (25617)
Size
8.9 kB (8919 bytes)
Hash
fb8604daeeb470e73c46ceae8c84c1b2
173ce838eb3d3f92968b7222913a204a8d52898d
7b83967bf7b0fcf33883d699614c0a968a4f3b8487314f384d38a6ddcd0bd665

HTTP Headers

GET /v0/amp-iframe-0.1.js HTTP/1.1
Host: cdn.ampproject.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://belanjasantai.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: br
content-type: text/javascript; charset=UTF-8
access-control-allow-origin: *
content-security-policy: default-src * blob: data:; script-src blob: https://cdn.ampproject.org/lts/ https://cdn.ampproject.org/rtv/ https://cdn.ampproject.org/sw/ https://cdn.ampproject.org/v0.js https://cdn.ampproject.org/v0.mjs https://cdn.ampproject.org/v0/ https://cdn.ampproject.org/viewer/; object-src 'none'; style-src 'unsafe-inline' https://cdn.ampproject.org/rtv/ https://cdn.materialdesignicons.com https://cdnjs.cloudflare.com/ajax/libs/font-awesome/ https://cloud.typography.com https://fast.fonts.net https://fonts.googleapis.com https://maxcdn.bootstrapcdn.com https://p.typekit.net https://pro.fontawesome.com https://use.fontawesome.com https://use.typekit.net; report-uri https://csp.withgoogle.com/csp/amp
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="amphtml-china-available"
report-to: {"group":"amphtml-china-available","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/amphtml-china-available"}]}
timing-allow-origin: *
content-length: 8919
date: Mon, 27 Nov 2023 08:07:48 GMT
expires: Mon, 27 Nov 2023 08:07:48 GMT
cache-control: private, max-age=604800, stale-while-revalidate=604800
etag: "09e72aa6a2134a2c"
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

cdn.ampproject.org/v0/amp-accordion-0.1.js

142.250.74.161

200 OK

5.8 kB

URL GET HTTP/2
cdn.ampproject.org/v0/amp-accordion-0.1.js
IP
142.250.74.161:443
ASN
#15169 GOOGLE

Requested by
https://belanjasantai.com/prpr/365prpr02bii
Certificate
IssuerGoogle Trust Services LLC
Subjectmisc-sni.google.com
FingerprintE4:33:2C:42:1C:4F:E6:01:93:AD:F1:5F:70:4D:33:1F:3B:5F:AB:DE
ValidityMon, 23 Oct 2023 11:20:02 GMT - Mon, 15 Jan 2024 11:20:01 GMT

File type
ASCII text, with very long lines (17480)
Size
5.8 kB (5829 bytes)
Hash
214c62ebd2718f1b051ed848e7e480db
6e0c8367eb724dc24c6c49c2666bf98731550ae9
6b4caba1632ee87c41c4af00f053108b1930cca2f33f249b2e4587e86338ab83

HTTP Headers

GET /v0/amp-accordion-0.1.js HTTP/1.1
Host: cdn.ampproject.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://belanjasantai.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: br
content-type: text/javascript; charset=UTF-8
access-control-allow-origin: *
content-security-policy: default-src * blob: data:; script-src blob: https://cdn.ampproject.org/lts/ https://cdn.ampproject.org/rtv/ https://cdn.ampproject.org/sw/ https://cdn.ampproject.org/v0.js https://cdn.ampproject.org/v0.mjs https://cdn.ampproject.org/v0/ https://cdn.ampproject.org/viewer/; object-src 'none'; style-src 'unsafe-inline' https://cdn.ampproject.org/rtv/ https://cdn.materialdesignicons.com https://cdnjs.cloudflare.com/ajax/libs/font-awesome/ https://cloud.typography.com https://fast.fonts.net https://fonts.googleapis.com https://maxcdn.bootstrapcdn.com https://p.typekit.net https://pro.fontawesome.com https://use.fontawesome.com https://use.typekit.net; report-uri https://csp.withgoogle.com/csp/amp
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="amphtml-china-available"
report-to: {"group":"amphtml-china-available","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/amphtml-china-available"}]}
timing-allow-origin: *
content-length: 5829
date: Mon, 27 Nov 2023 08:07:48 GMT
expires: Mon, 27 Nov 2023 08:07:48 GMT
cache-control: private, max-age=604800, stale-while-revalidate=604800
etag: "d5c10f6b1d53ea05"
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

cdn.ampproject.org/v0.js

142.250.74.161

200 OK

73 kB

URL GET HTTP/2
cdn.ampproject.org/v0.js
IP
142.250.74.161:443
ASN
#15169 GOOGLE

Requested by
https://belanjasantai.com/prpr/365prpr02bii
Certificate
IssuerGoogle Trust Services LLC
Subjectmisc-sni.google.com
FingerprintE4:33:2C:42:1C:4F:E6:01:93:AD:F1:5F:70:4D:33:1F:3B:5F:AB:DE
ValidityMon, 23 Oct 2023 11:20:02 GMT - Mon, 15 Jan 2024 11:20:01 GMT

File type
Unicode text, UTF-8 text, with very long lines (64684)
Size
73 kB (73200 bytes)
Hash
f0365608b7ed1b269e0f9c1c12069b1b
37fc08e32173f6c1a674d90f18d5c56801c8b5f2
908a935e15d34ec51aa5d98fb7c9f11b814fac80cc7e1bc32aed903df3754558

HTTP Headers

GET /v0.js HTTP/1.1
Host: cdn.ampproject.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://belanjasantai.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: br
content-type: text/javascript; charset=UTF-8
access-control-allow-origin: *
content-security-policy: default-src * blob: data:; script-src blob: https://cdn.ampproject.org/lts/ https://cdn.ampproject.org/rtv/ https://cdn.ampproject.org/sw/ https://cdn.ampproject.org/v0.js https://cdn.ampproject.org/v0.mjs https://cdn.ampproject.org/v0/ https://cdn.ampproject.org/viewer/; object-src 'none'; style-src 'unsafe-inline' https://cdn.ampproject.org/rtv/ https://cdn.materialdesignicons.com https://cdnjs.cloudflare.com/ajax/libs/font-awesome/ https://cloud.typography.com https://fast.fonts.net https://fonts.googleapis.com https://maxcdn.bootstrapcdn.com https://p.typekit.net https://pro.fontawesome.com https://use.fontawesome.com https://use.typekit.net; report-uri https://csp.withgoogle.com/csp/amp
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="amphtml-china-available"
report-to: {"group":"amphtml-china-available","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/amphtml-china-available"}]}
timing-allow-origin: *
content-length: 73200
date: Mon, 27 Nov 2023 08:07:48 GMT
expires: Mon, 27 Nov 2023 08:07:48 GMT
cache-control: private, max-age=3000, stale-while-revalidate=1206600
etag: "b209cac081bc437c"
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

belanjasantai.com/prpr/assets/img/main-banner-kaya-belanja-online.jpg

172.67.180.166

200 OK

174 kB

URL GET HTTP/3
belanjasantai.com/prpr/assets/img/main-banner-kaya-belanja-online.jpg
IP
172.67.180.166:443
ASN
#13335 CLOUDFLARENET

Requested by
https://belanjasantai.com/prpr/365prpr02bii
Certificate
IssuerGoogle Trust Services LLC
Subjectbelanjasantai.com
Fingerprint93:D8:03:9E:28:C1:21:A2:65:73:EB:41:68:12:3E:5E:17:51:B4:F1
ValidityMon, 23 Oct 2023 07:28:18 GMT - Sun, 21 Jan 2024 07:28:17 GMT

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 100x100, segment length 16, baseline, precision 8, 521x345, components 3\012- data
Size
174 kB (173482 bytes)
Hash
028c4bd119324bada1816b1296cc0b58
f8663da2ea6a596029cc6b50387382a7a9b65e63
ed2c1229de2f1962206b800c788cddff61a918a1209fb52a1ac5befde866f2d6

HTTP Headers

GET /prpr/assets/img/main-banner-kaya-belanja-online.jpg HTTP/1.1
Host: belanjasantai.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://belanjasantai.com/prpr/365prpr02bii
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Mon, 27 Nov 2023 08:07:49 GMT
content-type: image/jpeg
content-length: 173482
last-modified: Mon, 13 Feb 2023 08:50:04 GMT
etag: "63e9f9bc-2a5aa"
access-control-allow-origin: *
cache-control: public, max-age=2592000
cf-cache-status: HIT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=tj8f84GVLimqaSxUr3BBzPgSfi1JoVgkGDKMkyfGm6wu9bnHdp%2BA8P8zmHt%2BZMRoFsrvDo8sGDEWAHbjj4%2FYhWBguOymEl2K6OFG%2BeE1yytUljXB5L3BVwkKKkF1MUTdadnDdw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 82c8e1321d80568b-OSL
alt-svc: h3=":443"; ma=86400

belanjasantai.com/prpr/assets/img/logo.png

172.67.180.166

200 OK

10 kB

URL GET HTTP/3
belanjasantai.com/prpr/assets/img/logo.png
IP
172.67.180.166:443
ASN
#13335 CLOUDFLARENET

Requested by
https://belanjasantai.com/prpr/365prpr02bii
Certificate
IssuerGoogle Trust Services LLC
Subjectbelanjasantai.com
Fingerprint93:D8:03:9E:28:C1:21:A2:65:73:EB:41:68:12:3E:5E:17:51:B4:F1
ValidityMon, 23 Oct 2023 07:28:18 GMT - Sun, 21 Jan 2024 07:28:17 GMT

File type
PNG image data, 320 x 70, 8-bit/color RGBA, non-interlaced\012- data
Size
10 kB (10007 bytes)
Hash
70f87f7158dcc4c463e3848948a7f559
3fcf529e911cbe58271a1b62b69b42da5ef7b286
29cd0bb7ecddd62afc586b6403d4761f300d8eb3cc9eba03870d81a7569fdbab

HTTP Headers

GET /prpr/assets/img/logo.png HTTP/1.1
Host: belanjasantai.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://belanjasantai.com/prpr/365prpr02bii
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Mon, 27 Nov 2023 08:07:51 GMT
content-type: image/png
content-length: 10007
last-modified: Sat, 24 Dec 2022 07:05:14 GMT
etag: "63a6a4aa-2717"
access-control-allow-origin: *
cache-control: public, max-age=2592000
cf-cache-status: HIT
age: 434733
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=C4k8Ux7KjNa9UjOP5%2FLtYkDvSIn40ANMYl16a28BL94JIHM1a5j7f3ACO7%2FvqwTjdDdaZ1w8VrTBnwiyMG1%2Bra0OKcLq1o12wGSFbxK%2FaBPjrYvWdpIH5XxDHDdq0Wo14ry%2F5g%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 82c8e1405cec568b-OSL
alt-svc: h3=":443"; ma=86400

maxcdn.bootstrapcdn.com/font-awesome/4.7.0/fonts/fontawesome-webfont.woff2?v=4.7.0

104.18.11.207

200 OK

77 kB

URL GET HTTP/3
maxcdn.bootstrapcdn.com/font-awesome/4.7.0/fonts/fontawesome-webfont.woff2?v=4.7.0
IP
104.18.11.207:443
ASN
#13335 CLOUDFLARENET

Requested by
https://belanjasantai.com/prpr/365prpr02bii
Certificate
IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint5B:F7:8F:50:AD:E5:5B:5E:8C:4A:39:3D:0C:98:E8:8C:18:4B:3D:8A
ValidityFri, 30 Dec 2022 00:00:00 GMT - Sat, 30 Dec 2023 23:59:59 GMT

File type
Web Open Font Format (Version 2), TrueType, length 77160, version 4.459\012- data
Size
77 kB (77160 bytes)
Hash
af7ae505a9eed503f8b8e6982036873e
d6f48cba7d076fb6f2fd6ba993a75b9dc1ecbf0c
2adefcbc041e7d18fcf2d417879dc5a09997aa64d675b7a3c4b6ce33da13f3fe

HTTP Headers

GET /font-awesome/4.7.0/fonts/fontawesome-webfont.woff2?v=4.7.0 HTTP/1.1
Host: maxcdn.bootstrapcdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://belanjasantai.com
DNT: 1
Connection: keep-alive
Referer: https://maxcdn.bootstrapcdn.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Mon, 27 Nov 2023 08:07:51 GMT
content-type: font/woff2
content-length: 77160
cdn-pullzone: 252412
cdn-uid: b1941f61-b576-4f40-80de-5677acb38f74
cdn-requestcountrycode: DE
access-control-allow-origin: *
cache-control: public, max-age=31919000
etag: "af7ae505a9eed503f8b8e6982036873e"
last-modified: Mon, 25 Jan 2021 22:04:55 GMT
cdn-cachedat: 10/31/2023 19:08:24
cdn-proxyver: 1.04
cdn-requestpullcode: 200
cdn-requestpullsuccess: True
cdn-edgestorageid: 752
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
cdn-status: 200
cdn-requestid: 56c448880015a136bd219db54397ddae
cdn-cache: HIT
cf-cache-status: HIT
age: 350116
accept-ranges: bytes
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
server: cloudflare
cf-ray: 82c8e1409d8e56c4-OSL
alt-svc: h3=":443"; ma=86400

belanjasantai.com/prpr/assets/img/main-banner-WD16.png

172.67.180.166

200 OK

355 kB

URL GET HTTP/3
belanjasantai.com/prpr/assets/img/main-banner-WD16.png
IP
172.67.180.166:443
ASN
#13335 CLOUDFLARENET

Requested by
https://belanjasantai.com/prpr/365prpr02bii
Certificate
IssuerGoogle Trust Services LLC
Subjectbelanjasantai.com
Fingerprint93:D8:03:9E:28:C1:21:A2:65:73:EB:41:68:12:3E:5E:17:51:B4:F1
ValidityMon, 23 Oct 2023 07:28:18 GMT - Sun, 21 Jan 2024 07:28:17 GMT

File type
PNG image data, 531 x 345, 8-bit/color RGBA, non-interlaced\012- data
Size
355 kB (354557 bytes)
Hash
acdb2d6e266afc7cb6139c3280b98b32
6004353fcd8b3cb4a12df96e26d22754949582dd
9aa2cbee7d56702f9b161c69f112fd4b296827d81558cab08be5c086f7da1d26

HTTP Headers

GET /prpr/assets/img/main-banner-WD16.png HTTP/1.1
Host: belanjasantai.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://belanjasantai.com/prpr/365prpr02bii
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Mon, 27 Nov 2023 08:07:51 GMT
content-type: image/png
content-length: 354557
last-modified: Mon, 20 Nov 2023 11:42:21 GMT
etag: "655b461d-568fd"
access-control-allow-origin: *
cache-control: public, max-age=2592000
cf-cache-status: HIT
age: 201933
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=MEYEAP1jmUjDXKqFU%2FWT%2F5r6q86Q4vfiXejzuBKzsO0wiB9m9ZYicj2rz7UeWUlcg2CXd441ol5rtgGlHR2DDqzMgQIJmKi4G1ZFFbLMfaqBbTw8NY9ePhO%2FUvSXOyRz5HhcUg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 82c8e140ad38568b-OSL
alt-svc: h3=":443"; ma=86400

belanjasantai.com/prpr/assets/img/5%20LIONS%202,3%20miliar.png

172.67.180.166

200 OK

818 kB

URL GET HTTP/3
belanjasantai.com/prpr/assets/img/5%20LIONS%202,3%20miliar.png
IP
172.67.180.166:443
ASN
#13335 CLOUDFLARENET

Requested by
https://belanjasantai.com/prpr/365prpr02bii
Certificate
IssuerGoogle Trust Services LLC
Subjectbelanjasantai.com
Fingerprint93:D8:03:9E:28:C1:21:A2:65:73:EB:41:68:12:3E:5E:17:51:B4:F1
ValidityMon, 23 Oct 2023 07:28:18 GMT - Sun, 21 Jan 2024 07:28:17 GMT

File type
PNG image data, 1080 x 566, 8-bit/color RGBA, non-interlaced\012- data
Size
818 kB (818350 bytes)
Hash
79129a97312d76e39db77e0d3cfe0e25
c9a8fd168da11f0496d221e64c8f95d0fb0a47ac
cb279c78d74c5fc3d91598bc7cf22b088d693d5778e8eda96b9f7d6dbd7dbfec

HTTP Headers

GET /prpr/assets/img/5%20LIONS%202,3%20miliar.png HTTP/1.1
Host: belanjasantai.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://belanjasantai.com/prpr/365prpr02bii
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Mon, 27 Nov 2023 08:07:51 GMT
content-type: image/png
content-length: 818350
last-modified: Tue, 03 Jan 2023 14:18:49 GMT
etag: "63b43949-c7cae"
access-control-allow-origin: *
cache-control: public, max-age=2592000
cf-cache-status: HIT
age: 100380
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=%2FTMHobljMtkzK8Q%2FPSS4J8uxt%2FzZOcJ1ocLTZH7fsAebaLELY9e5F7GtyEwMVw58ir8JMr%2F9z8Tr6erZp1dU8zOzoM0xEfgZz8hzAvCciSCvifjt6zJyIqBVi4jZz%2Fi5%2BFeU%2Bw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 82c8e140ad3b568b-OSL
alt-svc: h3=":443"; ma=86400

fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2

142.250.74.163

200 OK

16 kB

URL GET HTTP/2
fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2
IP
142.250.74.163:443
ASN
#15169 GOOGLE

Requested by
https://belanjasantai.com/prpr/365prpr02bii
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintE5:79:1F:1A:04:3F:B9:B0:FB:41:4E:B5:E5:97:AD:FE:D9:2C:4A:CD
ValidityMon, 23 Oct 2023 11:24:07 GMT - Mon, 15 Jan 2024 11:24:06 GMT

File type
Web Open Font Format (Version 2), TrueType, length 15744, version 1.0\012- data
Size
16 kB (15744 bytes)
Hash
15d9f621c3bd1599f0169dcf0bd5e63e
7ca9c5967f3bb8bffeab24b639b49c1e7d03fa52
f6734f8177112c0839b961f96d813fcb189d81b60e96c33278c1983b6f419615

HTTP Headers

GET /s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://belanjasantai.com
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15744
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 20 Nov 2023 23:43:03 GMT
expires: Tue, 19 Nov 2024 23:43:03 GMT
cache-control: public, max-age=31536000
age: 548688
last-modified: Wed, 11 May 2022 19:24:48 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2

142.250.74.163

200 OK

16 kB

URL GET HTTP/2
fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2
IP
142.250.74.163:443
ASN
#15169 GOOGLE

Requested by
https://belanjasantai.com/prpr/365prpr02bii
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintE5:79:1F:1A:04:3F:B9:B0:FB:41:4E:B5:E5:97:AD:FE:D9:2C:4A:CD
ValidityMon, 23 Oct 2023 11:24:07 GMT - Mon, 15 Jan 2024 11:24:06 GMT

File type
Web Open Font Format (Version 2), TrueType, length 15860, version 1.0\012- data
Size
16 kB (15860 bytes)
Hash
e9f5aaf547f165386cd313b995dddd8e
acdef5603c2387b0e5bffd744b679a24a8bc1968
f5aebdfea35d1e7656ef4acc5db1f243209755ae3300943ef8fc6280f363c860

HTTP Headers

GET /s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://belanjasantai.com
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15860
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 22 Nov 2023 21:52:12 GMT
expires: Thu, 21 Nov 2024 21:52:12 GMT
cache-control: public, max-age=31536000
age: 382539
last-modified: Wed, 11 May 2022 19:24:42 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmYUtfBBc4.woff2

142.250.74.163

200 OK

16 kB

URL GET HTTP/2
fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmYUtfBBc4.woff2
IP
142.250.74.163:443
ASN
#15169 GOOGLE

Requested by
https://belanjasantai.com/prpr/365prpr02bii
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintE5:79:1F:1A:04:3F:B9:B0:FB:41:4E:B5:E5:97:AD:FE:D9:2C:4A:CD
ValidityMon, 23 Oct 2023 11:24:07 GMT - Mon, 15 Jan 2024 11:24:06 GMT

File type
Web Open Font Format (Version 2), TrueType, length 15752, version 1.0\012- data
Size
16 kB (15752 bytes)
Hash
b20371a6daf29d4a1f2e85dbbf40fb20
0355a01c1ccb45cb728e7e07c41c8ebf456f70bb
7e262106f82cc52663e403f5b73795bbeab9ca0630c33c03579354fbcd4fae1e

HTTP Headers

GET /s/roboto/v30/KFOlCnqEu92Fr1MmYUtfBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://belanjasantai.com
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15752
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 22 Nov 2023 21:48:47 GMT
expires: Thu, 21 Nov 2024 21:48:47 GMT
cache-control: public, max-age=31536000
age: 382744
last-modified: Wed, 11 May 2022 19:24:56 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

cdn.ampproject.org/rtv/012310301456000/v0/amp-auto-lightbox-0.1.js

142.250.74.161

200 OK

3.0 kB

URL GET HTTP/3
cdn.ampproject.org/rtv/012310301456000/v0/amp-auto-lightbox-0.1.js
IP
142.250.74.161:443
ASN
#15169 GOOGLE

Requested by
https://belanjasantai.com/prpr/365prpr02bii
Certificate
IssuerGoogle Trust Services LLC
Subjectmisc-sni.google.com
FingerprintE4:33:2C:42:1C:4F:E6:01:93:AD:F1:5F:70:4D:33:1F:3B:5F:AB:DE
ValidityMon, 23 Oct 2023 11:20:02 GMT - Mon, 15 Jan 2024 11:20:01 GMT

File type
ASCII text, with very long lines (7690)
Size
3.0 kB (2975 bytes)
Hash
50d01f9355b127adcc090233772bbb1c
66e0ee80cc12c71c6dda77255230c7f207538447
22d9dc8a34bcbffe719050b949b9872f9af036a9bbfd3ca2e99165d604acaf24

HTTP Headers

GET /rtv/012310301456000/v0/amp-auto-lightbox-0.1.js HTTP/1.1
Host: cdn.ampproject.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://belanjasantai.com
DNT: 1
Connection: keep-alive
Referer: https://belanjasantai.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
accept-ranges: bytes
content-encoding: br
access-control-allow-origin: *
content-security-policy: default-src * blob: data:; script-src blob: https://cdn.ampproject.org/lts/ https://cdn.ampproject.org/rtv/ https://cdn.ampproject.org/sw/ https://cdn.ampproject.org/v0.js https://cdn.ampproject.org/v0.mjs https://cdn.ampproject.org/v0/ https://cdn.ampproject.org/viewer/; object-src 'none'; style-src 'unsafe-inline' https://cdn.ampproject.org/rtv/ https://cdn.materialdesignicons.com https://cdnjs.cloudflare.com/ajax/libs/font-awesome/ https://cloud.typography.com https://fast.fonts.net https://fonts.googleapis.com https://maxcdn.bootstrapcdn.com https://p.typekit.net https://pro.fontawesome.com https://use.fontawesome.com https://use.typekit.net; report-uri https://csp.withgoogle.com/csp/amp
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="amphtml-china-available"
report-to: {"group":"amphtml-china-available","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/amphtml-china-available"}]}
timing-allow-origin: *
content-length: 2975
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 20 Nov 2023 19:33:47 GMT
expires: Tue, 19 Nov 2024 19:33:47 GMT
cache-control: public, max-age=31536000
etag: "ebb1be4e47c7faed"
content-type: text/javascript; charset=UTF-8
vary: Accept-Encoding
age: 563644
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

cdn.ampproject.org/rtv/012310301456000/v0/amp-loader-0.1.js

142.250.74.161

200 OK

3.9 kB

URL GET HTTP/3
cdn.ampproject.org/rtv/012310301456000/v0/amp-loader-0.1.js
IP
142.250.74.161:443
ASN
#15169 GOOGLE

Requested by
https://belanjasantai.com/prpr/365prpr02bii
Certificate
IssuerGoogle Trust Services LLC
Subjectmisc-sni.google.com
FingerprintE4:33:2C:42:1C:4F:E6:01:93:AD:F1:5F:70:4D:33:1F:3B:5F:AB:DE
ValidityMon, 23 Oct 2023 11:20:02 GMT - Mon, 15 Jan 2024 11:20:01 GMT

File type
ASCII text, with very long lines (12615)
Size
3.9 kB (3938 bytes)
Hash
ba715c5679b980da4ecd5c53ba11ca14
8f6893a724c33f5a92893c3f392c6294792dafbd
ff65d80be1d7ee6ad9620de618dc1bd3962d81fa505806c02038dd6acc3641b8

HTTP Headers

GET /rtv/012310301456000/v0/amp-loader-0.1.js HTTP/1.1
Host: cdn.ampproject.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://belanjasantai.com
DNT: 1
Connection: keep-alive
Referer: https://belanjasantai.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
accept-ranges: bytes
content-encoding: br
access-control-allow-origin: *
content-security-policy: default-src * blob: data:; script-src blob: https://cdn.ampproject.org/lts/ https://cdn.ampproject.org/rtv/ https://cdn.ampproject.org/sw/ https://cdn.ampproject.org/v0.js https://cdn.ampproject.org/v0.mjs https://cdn.ampproject.org/v0/ https://cdn.ampproject.org/viewer/; object-src 'none'; style-src 'unsafe-inline' https://cdn.ampproject.org/rtv/ https://cdn.materialdesignicons.com https://cdnjs.cloudflare.com/ajax/libs/font-awesome/ https://cloud.typography.com https://fast.fonts.net https://fonts.googleapis.com https://maxcdn.bootstrapcdn.com https://p.typekit.net https://pro.fontawesome.com https://use.fontawesome.com https://use.typekit.net; report-uri https://csp.withgoogle.com/csp/amp
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="amphtml-china-available"
report-to: {"group":"amphtml-china-available","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/amphtml-china-available"}]}
timing-allow-origin: *
content-length: 3938
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sat, 25 Nov 2023 08:16:21 GMT
expires: Sun, 24 Nov 2024 08:16:21 GMT
cache-control: public, max-age=31536000
etag: "3c281510b2fc8bce"
content-type: text/javascript; charset=UTF-8
vary: Accept-Encoding
age: 172290
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

www.gstatic.com/_/apps-fileview/_/ss/k=apps-fileview.v.vev99aH7UGM.L.F4.O/am=IAw/d=0/rs=AO0039s7yVtIYR4p92sLOLKB05mYezBYtw

142.250.74.131

200 OK

243 kB

URL GET HTTP/2
www.gstatic.com/_/apps-fileview/_/ss/k=apps-fileview.v.vev99aH7UGM.L.F4.O/am=IAw/d=0/rs=AO0039s7yVtIYR4p92sLOLKB05mYezBYtw
IP
142.250.74.131:443
ASN
#15169 GOOGLE

Requested by
https://drive.google.com/file/d/1fBV0J62OChP4aw08EmOlD1OC1ttAbLNC/preview#amp=1
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintE5:79:1F:1A:04:3F:B9:B0:FB:41:4E:B5:E5:97:AD:FE:D9:2C:4A:CD
ValidityMon, 23 Oct 2023 11:24:07 GMT - Mon, 15 Jan 2024 11:24:06 GMT

File type
ASCII text, with very long lines (65536), with no line terminators
Size
243 kB (242899 bytes)
Hash
b9dbf8c8711ad31eddc0ac9cd7445be7
f18574b39e421f52587feb573452c94cc011ca8c
719ada946f1d86db2251b3249943d7eb5a8c4eca1a4bf05c13b3144c80e8057d

HTTP Headers

GET /_/apps-fileview/_/ss/k=apps-fileview.v.vev99aH7UGM.L.F4.O/am=IAw/d=0/rs=AO0039s7yVtIYR4p92sLOLKB05mYezBYtw HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://drive.google.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
content-encoding: gzip
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-fileview
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-fileview"
report-to: {"group":"apps-fileview","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-fileview"}]}
content-length: 242899
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 22 Nov 2023 18:11:04 GMT
expires: Thu, 21 Nov 2024 18:11:04 GMT
cache-control: public, max-age=31536000
last-modified: Thu, 09 Nov 2023 02:23:54 GMT
content-type: text/css; charset=UTF-8
vary: Accept-Encoding, Origin
age: 395807
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

fonts.gstatic.com/s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2

142.250.74.163

200 OK

15 kB

URL GET HTTP/3
fonts.gstatic.com/s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2
IP
142.250.74.163:443
ASN
#15169 GOOGLE

Requested by
https://drive.google.com/file/d/1ce78JWB3CyMnSoeBHAcrnmoNdfGSCYvc/preview#amp=1
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintE5:79:1F:1A:04:3F:B9:B0:FB:41:4E:B5:E5:97:AD:FE:D9:2C:4A:CD
ValidityMon, 23 Oct 2023 11:24:07 GMT - Mon, 15 Jan 2024 11:24:06 GMT

File type
Web Open Font Format (Version 2), TrueType, length 15344, version 1.0\012- data
Size
15 kB (15344 bytes)
Hash
5d4aeb4e5f5ef754e307d7ffaef688bd
06db651cdf354c64a7383ea9c77024ef4fb4cef8
3e253b66056519aa065b00a453bac37ac5ed8f3e6fe7b542e93a9dcdcc11d0bc

HTTP Headers

GET /s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Referer: https://drive.google.com/
Origin: https://drive.google.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15344
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 22 Nov 2023 21:51:07 GMT
expires: Thu, 21 Nov 2024 21:51:07 GMT
cache-control: public, max-age=31536000
age: 382605
last-modified: Mon, 16 Oct 2017 17:32:55 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

fonts.gstatic.com/s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2

142.250.74.163

200 OK

15 kB

URL GET HTTP/3
fonts.gstatic.com/s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2
IP
142.250.74.163:443
ASN
#15169 GOOGLE

Requested by
https://drive.google.com/file/d/1ce78JWB3CyMnSoeBHAcrnmoNdfGSCYvc/preview#amp=1
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintE5:79:1F:1A:04:3F:B9:B0:FB:41:4E:B5:E5:97:AD:FE:D9:2C:4A:CD
ValidityMon, 23 Oct 2023 11:24:07 GMT - Mon, 15 Jan 2024 11:24:06 GMT

File type
Web Open Font Format (Version 2), TrueType, length 15344, version 1.0\012- data
Size
15 kB (15344 bytes)
Hash
5d4aeb4e5f5ef754e307d7ffaef688bd
06db651cdf354c64a7383ea9c77024ef4fb4cef8
3e253b66056519aa065b00a453bac37ac5ed8f3e6fe7b542e93a9dcdcc11d0bc

HTTP Headers

GET /s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Referer: https://drive.google.com/
Origin: https://drive.google.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15344
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 22 Nov 2023 21:51:07 GMT
expires: Thu, 21 Nov 2024 21:51:07 GMT
cache-control: public, max-age=31536000
age: 382605
last-modified: Mon, 16 Oct 2017 17:32:55 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

www.gstatic.com/og/_/js/k=og.qtm.en_US._Y_GrwNhTr8.2019.O/rt=j/m=qabr,q_dnp,qapid,q_dg/exm=qaaw,qadd,qaid,qein,qhaw,qhba,qhbr,qhch,qhga,qhid,qhin/d=1/ed=1/rs=AA2YrTuFdMeuRY-i7JPqP_M8jfztH8nn8Q

142.250.74.131

200 OK

41 kB

URL GET HTTP/3
www.gstatic.com/og/_/js/k=og.qtm.en_US._Y_GrwNhTr8.2019.O/rt=j/m=qabr,q_dnp,qapid,q_dg/exm=qaaw,qadd,qaid,qein,qhaw,qhba,qhbr,qhch,qhga,qhid,qhin/d=1/ed=1/rs=AA2YrTuFdMeuRY-i7JPqP_M8jfztH8nn8Q
IP
142.250.74.131:443
ASN
#15169 GOOGLE

Requested by
https://drive.google.com/file/d/1fBV0J62OChP4aw08EmOlD1OC1ttAbLNC/preview#amp=1
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintE5:79:1F:1A:04:3F:B9:B0:FB:41:4E:B5:E5:97:AD:FE:D9:2C:4A:CD
ValidityMon, 23 Oct 2023 11:24:07 GMT - Mon, 15 Jan 2024 11:24:06 GMT

File type
ASCII text, with very long lines (2119)
Size
41 kB (40948 bytes)
Hash
7a8278710b7c7b7018c86ccda10eecc5
f5b999203cc0907442b1851da634e88fcbf7f760
e04eff2017544710257f635fd5667eeac55e4287691fa13dd51d23f073bcbda6

HTTP Headers

GET /og/_/js/k=og.qtm.en_US._Y_GrwNhTr8.2019.O/rt=j/m=qabr,q_dnp,qapid,q_dg/exm=qaaw,qadd,qaid,qein,qhaw,qhba,qhbr,qhch,qhga,qhid,qhin/d=1/ed=1/rs=AA2YrTuFdMeuRY-i7JPqP_M8jfztH8nn8Q HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://drive.google.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
accept-ranges: bytes
content-encoding: gzip
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/one-google-eng
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="one-google-eng"
report-to: {"group":"one-google-eng","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/one-google-eng"}]}
content-length: 40948
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 22 Nov 2023 21:51:17 GMT
expires: Thu, 21 Nov 2024 21:51:17 GMT
cache-control: public, max-age=31536000
last-modified: Tue, 14 Nov 2023 02:34:53 GMT
content-type: text/javascript; charset=UTF-8
vary: Accept-Encoding, Origin
age: 382595
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

www.gstatic.com/og/_/js/k=og.qtm.en_US._Y_GrwNhTr8.2019.O/rt=j/m=qabr,q_dnp,qapid,q_dg/exm=qaaw,qadd,qaid,qein,qhaw,qhba,qhbr,qhch,qhga,qhid,qhin/d=1/ed=1/rs=AA2YrTuFdMeuRY-i7JPqP_M8jfztH8nn8Q

142.250.74.131

200 OK

41 kB

URL GET HTTP/3
www.gstatic.com/og/_/js/k=og.qtm.en_US._Y_GrwNhTr8.2019.O/rt=j/m=qabr,q_dnp,qapid,q_dg/exm=qaaw,qadd,qaid,qein,qhaw,qhba,qhbr,qhch,qhga,qhid,qhin/d=1/ed=1/rs=AA2YrTuFdMeuRY-i7JPqP_M8jfztH8nn8Q
IP
142.250.74.131:443
ASN
#15169 GOOGLE

Requested by
https://drive.google.com/file/d/1fBV0J62OChP4aw08EmOlD1OC1ttAbLNC/preview#amp=1
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintE5:79:1F:1A:04:3F:B9:B0:FB:41:4E:B5:E5:97:AD:FE:D9:2C:4A:CD
ValidityMon, 23 Oct 2023 11:24:07 GMT - Mon, 15 Jan 2024 11:24:06 GMT

File type
ASCII text, with very long lines (2119)
Size
41 kB (40948 bytes)
Hash
7a8278710b7c7b7018c86ccda10eecc5
f5b999203cc0907442b1851da634e88fcbf7f760
e04eff2017544710257f635fd5667eeac55e4287691fa13dd51d23f073bcbda6

HTTP Headers

GET /og/_/js/k=og.qtm.en_US._Y_GrwNhTr8.2019.O/rt=j/m=qabr,q_dnp,qapid,q_dg/exm=qaaw,qadd,qaid,qein,qhaw,qhba,qhbr,qhch,qhga,qhid,qhin/d=1/ed=1/rs=AA2YrTuFdMeuRY-i7JPqP_M8jfztH8nn8Q HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://drive.google.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
accept-ranges: bytes
content-encoding: gzip
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/one-google-eng
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="one-google-eng"
report-to: {"group":"one-google-eng","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/one-google-eng"}]}
content-length: 40948
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 22 Nov 2023 21:51:17 GMT
expires: Thu, 21 Nov 2024 21:51:17 GMT
cache-control: public, max-age=31536000
last-modified: Tue, 14 Nov 2023 02:34:53 GMT
content-type: text/javascript; charset=UTF-8
vary: Accept-Encoding, Origin
age: 382595
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

www.gstatic.com/_/apps-fileview/_/js/k=apps-fileview.v.no.6G6kAcV7rO0.O/am=IAw/d=1/rs=AO0039vNlYfPQKAw70xNjuzjM8KbOvKUTg/m=v,wb

142.250.74.131

200 OK

483 kB

URL GET HTTP/3
www.gstatic.com/_/apps-fileview/_/js/k=apps-fileview.v.no.6G6kAcV7rO0.O/am=IAw/d=1/rs=AO0039vNlYfPQKAw70xNjuzjM8KbOvKUTg/m=v,wb
IP
142.250.74.131:443
ASN
#15169 GOOGLE

Requested by
https://drive.google.com/file/d/1fBV0J62OChP4aw08EmOlD1OC1ttAbLNC/preview#amp=1
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintE5:79:1F:1A:04:3F:B9:B0:FB:41:4E:B5:E5:97:AD:FE:D9:2C:4A:CD
ValidityMon, 23 Oct 2023 11:24:07 GMT - Mon, 15 Jan 2024 11:24:06 GMT

File type
ASCII text, with very long lines (589)
Size
483 kB (482736 bytes)
Hash
e33228450c0cbd6b73119ead01513543
86c933b6c08ccf6d356fdadfec5a8eac3c1f432b
40ebf2e2c3055108b21c9eff4e96926e6e42abcd465aa4f1523b0370d771397c

HTTP Headers

GET /_/apps-fileview/_/js/k=apps-fileview.v.no.6G6kAcV7rO0.O/am=IAw/d=1/rs=AO0039vNlYfPQKAw70xNjuzjM8KbOvKUTg/m=v,wb HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://drive.google.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
accept-ranges: bytes
content-encoding: gzip
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-fileview
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-fileview"
report-to: {"group":"apps-fileview","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-fileview"}]}
content-length: 482736
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 22 Nov 2023 21:07:47 GMT
expires: Thu, 21 Nov 2024 21:07:47 GMT
cache-control: public, max-age=31536000
last-modified: Tue, 14 Nov 2023 21:14:58 GMT
content-type: text/javascript; charset=UTF-8
vary: Accept-Encoding, Origin
age: 385205
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

www.gstatic.com/_/apps-fileview/_/js/k=apps-fileview.v.no.6G6kAcV7rO0.O/am=IAw/d=1/rs=AO0039vNlYfPQKAw70xNjuzjM8KbOvKUTg/m=v,wb

142.250.74.131

200 OK

483 kB

URL GET HTTP/3
www.gstatic.com/_/apps-fileview/_/js/k=apps-fileview.v.no.6G6kAcV7rO0.O/am=IAw/d=1/rs=AO0039vNlYfPQKAw70xNjuzjM8KbOvKUTg/m=v,wb
IP
142.250.74.131:443
ASN
#15169 GOOGLE

Requested by
https://drive.google.com/file/d/1fBV0J62OChP4aw08EmOlD1OC1ttAbLNC/preview#amp=1
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintE5:79:1F:1A:04:3F:B9:B0:FB:41:4E:B5:E5:97:AD:FE:D9:2C:4A:CD
ValidityMon, 23 Oct 2023 11:24:07 GMT - Mon, 15 Jan 2024 11:24:06 GMT

File type
ASCII text, with very long lines (589)
Size
483 kB (482736 bytes)
Hash
e33228450c0cbd6b73119ead01513543
86c933b6c08ccf6d356fdadfec5a8eac3c1f432b
40ebf2e2c3055108b21c9eff4e96926e6e42abcd465aa4f1523b0370d771397c

HTTP Headers

GET /_/apps-fileview/_/js/k=apps-fileview.v.no.6G6kAcV7rO0.O/am=IAw/d=1/rs=AO0039vNlYfPQKAw70xNjuzjM8KbOvKUTg/m=v,wb HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://drive.google.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
accept-ranges: bytes
content-encoding: gzip
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-fileview
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-fileview"
report-to: {"group":"apps-fileview","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-fileview"}]}
content-length: 482736
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 22 Nov 2023 21:07:47 GMT
expires: Thu, 21 Nov 2024 21:07:47 GMT
cache-control: public, max-age=31536000
last-modified: Tue, 14 Nov 2023 21:14:58 GMT
content-type: text/javascript; charset=UTF-8
vary: Accept-Encoding, Origin
age: 385205
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

apis.google.com/_/scs/abc-static/_/js/k=gapi.gapi.en.CzrNRWo3AFk.O/m=gapi_iframes,googleapis_client/rt=j/sv=1/d=1/ed=1/rs=AHpOoo8xPbrtpW2bPUIcgU2adGqIEpV82Q/cb=gapi.loaded_0

172.217.21.174

200 OK

41 kB

URL GET HTTP/2
apis.google.com/_/scs/abc-static/_/js/k=gapi.gapi.en.CzrNRWo3AFk.O/m=gapi_iframes,googleapis_client/rt=j/sv=1/d=1/ed=1/rs=AHpOoo8xPbrtpW2bPUIcgU2adGqIEpV82Q/cb=gapi.loaded_0
IP
172.217.21.174:443
ASN
#15169 GOOGLE

Requested by
https://drive.google.com/file/d/1ce78JWB3CyMnSoeBHAcrnmoNdfGSCYvc/preview#amp=1
Certificate
IssuerGoogle Trust Services LLC
Subject*.apis.google.com
Fingerprint06:87:C0:63:02:21:98:02:BD:FC:A0:11:93:E9:3A:9F:51:21:06:D8
ValidityMon, 23 Oct 2023 11:25:10 GMT - Mon, 15 Jan 2024 11:25:09 GMT

File type
ASCII text, with very long lines (1505)
Size
41 kB (40799 bytes)
Hash
1ccd95d83b05996630e52aa8dae42f06
027c31f9399bfae7d6ffc8b8d7299b3a9e8e9080
9d4e56038dcccd960ea62bd2ee6925469001254602dfb54b740f1a1adaf0d7b2

HTTP Headers

GET /_/scs/abc-static/_/js/k=gapi.gapi.en.CzrNRWo3AFk.O/m=gapi_iframes,googleapis_client/rt=j/sv=1/d=1/ed=1/rs=AHpOoo8xPbrtpW2bPUIcgU2adGqIEpV82Q/cb=gapi.loaded_0 HTTP/1.1
Host: apis.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://drive.google.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/social-frontend-mpm-access
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="social-frontend-mpm-access"
report-to: {"group":"social-frontend-mpm-access","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/social-frontend-mpm-access"}]}
content-length: 40799
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 21 Nov 2023 21:39:19 GMT
expires: Wed, 20 Nov 2024 21:39:19 GMT
cache-control: public, max-age=31536000
age: 469713
last-modified: Tue, 03 Oct 2023 15:15:50 GMT
content-type: text/javascript; charset=UTF-8
vary: Accept-Encoding
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

apis.google.com/_/scs/abc-static/_/js/k=gapi.gapi.en.CzrNRWo3AFk.O/m=gapi_iframes,googleapis_client/rt=j/sv=1/d=1/ed=1/rs=AHpOoo8xPbrtpW2bPUIcgU2adGqIEpV82Q/cb=gapi.loaded_0

172.217.21.174

200 OK

41 kB

URL GET HTTP/2
apis.google.com/_/scs/abc-static/_/js/k=gapi.gapi.en.CzrNRWo3AFk.O/m=gapi_iframes,googleapis_client/rt=j/sv=1/d=1/ed=1/rs=AHpOoo8xPbrtpW2bPUIcgU2adGqIEpV82Q/cb=gapi.loaded_0
IP
172.217.21.174:443
ASN
#15169 GOOGLE

Requested by
https://drive.google.com/file/d/1ce78JWB3CyMnSoeBHAcrnmoNdfGSCYvc/preview#amp=1
Certificate
IssuerGoogle Trust Services LLC
Subject*.apis.google.com
Fingerprint06:87:C0:63:02:21:98:02:BD:FC:A0:11:93:E9:3A:9F:51:21:06:D8
ValidityMon, 23 Oct 2023 11:25:10 GMT - Mon, 15 Jan 2024 11:25:09 GMT

File type
ASCII text, with very long lines (1505)
Size
41 kB (40799 bytes)
Hash
1ccd95d83b05996630e52aa8dae42f06
027c31f9399bfae7d6ffc8b8d7299b3a9e8e9080
9d4e56038dcccd960ea62bd2ee6925469001254602dfb54b740f1a1adaf0d7b2

HTTP Headers

GET /_/scs/abc-static/_/js/k=gapi.gapi.en.CzrNRWo3AFk.O/m=gapi_iframes,googleapis_client/rt=j/sv=1/d=1/ed=1/rs=AHpOoo8xPbrtpW2bPUIcgU2adGqIEpV82Q/cb=gapi.loaded_0 HTTP/1.1
Host: apis.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://drive.google.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/social-frontend-mpm-access
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="social-frontend-mpm-access"
report-to: {"group":"social-frontend-mpm-access","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/social-frontend-mpm-access"}]}
content-length: 40799
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 21 Nov 2023 21:39:19 GMT
expires: Wed, 20 Nov 2024 21:39:19 GMT
cache-control: public, max-age=31536000
age: 469713
last-modified: Tue, 03 Oct 2023 15:15:50 GMT
content-type: text/javascript; charset=UTF-8
vary: Accept-Encoding
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

www.gstatic.com/feedback/js/help/prod/service/lazy.min.js

142.250.74.131

200 OK

36 kB

URL GET HTTP/3
www.gstatic.com/feedback/js/help/prod/service/lazy.min.js
IP
142.250.74.131:443
ASN
#15169 GOOGLE

Requested by
https://drive.google.com/file/d/1fBV0J62OChP4aw08EmOlD1OC1ttAbLNC/preview#amp=1
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintE5:79:1F:1A:04:3F:B9:B0:FB:41:4E:B5:E5:97:AD:FE:D9:2C:4A:CD
ValidityMon, 23 Oct 2023 11:24:07 GMT - Mon, 15 Jan 2024 11:24:06 GMT

File type
ASCII text, with very long lines (2337)
Size
36 kB (36058 bytes)
Hash
32fe6c0ba19d0222ff50b43db7da2e42
9850ebff4bddfc12cfa0f468a3a06eaeb63e00bc
4e901ebb09fa9903e237ef74d0578bede0331fb3ef264ea7dabf79f894dd9556

HTTP Headers

GET /feedback/js/help/prod/service/lazy.min.js HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://drive.google.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
accept-ranges: bytes
content-encoding: gzip
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/product-feedback-gathering
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups; report-to="product-feedback-gathering"
report-to: {"group":"product-feedback-gathering","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/product-feedback-gathering"}]}
content-length: 36058
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 27 Nov 2023 07:59:05 GMT
expires: Mon, 27 Nov 2023 08:49:05 GMT
cache-control: public, max-age=3000
last-modified: Tue, 14 Nov 2023 17:41:10 GMT
content-type: text/javascript
vary: Accept-Encoding, Origin
age: 527
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

www.gstatic.com/_/apps-fileview/_/js/k=apps-fileview.v.no.6G6kAcV7rO0.O/am=IAw/d=0/rs=AO0039vNlYfPQKAw70xNjuzjM8KbOvKUTg/m=MpJwZc,UUJqVe,sy1v,sy3,sy1w,s39S4,syk,sy1x,pw70Gc

142.250.74.131

200 OK

4.6 kB

URL GET HTTP/3
www.gstatic.com/_/apps-fileview/_/js/k=apps-fileview.v.no.6G6kAcV7rO0.O/am=IAw/d=0/rs=AO0039vNlYfPQKAw70xNjuzjM8KbOvKUTg/m=MpJwZc,UUJqVe,sy1v,sy3,sy1w,s39S4,syk,sy1x,pw70Gc
IP
142.250.74.131:443
ASN
#15169 GOOGLE

Requested by
https://drive.google.com/file/d/1ce78JWB3CyMnSoeBHAcrnmoNdfGSCYvc/preview#amp=1
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintE5:79:1F:1A:04:3F:B9:B0:FB:41:4E:B5:E5:97:AD:FE:D9:2C:4A:CD
ValidityMon, 23 Oct 2023 11:24:07 GMT - Mon, 15 Jan 2024 11:24:06 GMT

File type
ASCII text, with very long lines (736)
Size
4.6 kB (4562 bytes)
Hash
c0694f12ae5ceb0c5ee220059abdac1d
163724e30e0cdae10f6305cd8a3c7228649e53e8
c276a6cfe723afa4d93d13501cb675e6e6c055fbd376e3ca14435a55b32c4df4

HTTP Headers

GET /_/apps-fileview/_/js/k=apps-fileview.v.no.6G6kAcV7rO0.O/am=IAw/d=0/rs=AO0039vNlYfPQKAw70xNjuzjM8KbOvKUTg/m=MpJwZc,UUJqVe,sy1v,sy3,sy1w,s39S4,syk,sy1x,pw70Gc HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://drive.google.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
accept-ranges: bytes
content-encoding: gzip
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-fileview
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-fileview"
report-to: {"group":"apps-fileview","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-fileview"}]}
content-length: 4562
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 22 Nov 2023 21:07:59 GMT
expires: Thu, 21 Nov 2024 21:07:59 GMT
cache-control: public, max-age=31536000
last-modified: Tue, 14 Nov 2023 21:14:58 GMT
content-type: text/javascript; charset=UTF-8
vary: Accept-Encoding, Origin
age: 385194
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

apis.google.com/_/scs/abc-static/_/js/k=gapi.gapi.en.CzrNRWo3AFk.O/m=client/exm=gapi_iframes,googleapis_client/rt=j/sv=1/d=1/ed=1/rs=AHpOoo8xPbrtpW2bPUIcgU2adGqIEpV82Q/cb=gapi.loaded_1

172.217.21.174

200 OK

71 kB

URL GET HTTP/3
apis.google.com/_/scs/abc-static/_/js/k=gapi.gapi.en.CzrNRWo3AFk.O/m=client/exm=gapi_iframes,googleapis_client/rt=j/sv=1/d=1/ed=1/rs=AHpOoo8xPbrtpW2bPUIcgU2adGqIEpV82Q/cb=gapi.loaded_1
IP
172.217.21.174:443
ASN
#15169 GOOGLE

Requested by
https://drive.google.com/file/d/1ce78JWB3CyMnSoeBHAcrnmoNdfGSCYvc/preview#amp=1
Certificate
IssuerGoogle Trust Services LLC
Subject*.google.com
Fingerprint4C:0D:17:8C:F1:30:7C:3A:6F:9B:8E:B4:83:0E:5C:BD:ED:17:3E:95
ValidityMon, 23 Oct 2023 11:18:24 GMT - Mon, 15 Jan 2024 11:18:23 GMT

File type
ASCII text, with very long lines (1276)
Size
71 kB (70834 bytes)
Hash
54862a8f09fdd39057a710bb3d7e7e66
8337e6e2b655dc83f4325cc70cfbc25fe20c0039
a4848ea89a7964e61e05d3b105bd4fa974f7f81d89a5a02fbc1c1b72c9309562

HTTP Headers

GET /_/scs/abc-static/_/js/k=gapi.gapi.en.CzrNRWo3AFk.O/m=client/exm=gapi_iframes,googleapis_client/rt=j/sv=1/d=1/ed=1/rs=AHpOoo8xPbrtpW2bPUIcgU2adGqIEpV82Q/cb=gapi.loaded_1 HTTP/1.1
Host: apis.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://drive.google.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
accept-ranges: bytes
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/social-frontend-mpm-access
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="social-frontend-mpm-access"
report-to: {"group":"social-frontend-mpm-access","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/social-frontend-mpm-access"}]}
content-length: 70834
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 23 Nov 2023 05:00:16 GMT
expires: Fri, 22 Nov 2024 05:00:16 GMT
cache-control: public, max-age=31536000
age: 356857
last-modified: Tue, 03 Oct 2023 15:15:50 GMT
content-type: text/javascript; charset=UTF-8
vary: Accept-Encoding
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

play.google.com/log?format=json&hasfast=true

142.250.74.78

200 OK

131 B

URL POST HTTP/3
play.google.com/log?format=json&hasfast=true
IP
142.250.74.78:443
ASN
#15169 GOOGLE

Requested by
https://drive.google.com/file/d/1ce78JWB3CyMnSoeBHAcrnmoNdfGSCYvc/preview#amp=1
Certificate
IssuerGoogle Trust Services LLC
Subject*.google.com
Fingerprint4C:0D:17:8C:F1:30:7C:3A:6F:9B:8E:B4:83:0E:5C:BD:ED:17:3E:95
ValidityMon, 23 Oct 2023 11:18:24 GMT - Mon, 15 Jan 2024 11:18:23 GMT

File type
JSON data\012- , ASCII text, with no line terminators
Size
131 B (131 bytes)
Hash
ca0b7e866005f6774d284b9f438ebfd2
53644f5ee3640189bdb223473ba6a2d46606c556
502e9680cfa78fa8be779cbf4f1947c8eaa3d43bf8c7464800ec772b2ddea358

HTTP Headers

POST /log?format=json&hasfast=true HTTP/1.1
Host: play.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://drive.google.com/
Content-Type: application/x-www-form-urlencoded;charset=utf-8
Content-Length: 665
Origin: https://drive.google.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
access-control-allow-origin: https://drive.google.com
cross-origin-resource-policy: cross-origin
access-control-allow-credentials: true
access-control-allow-headers: X-Playlog-Web
content-type: text/plain; charset=UTF-8
content-encoding: gzip
date: Mon, 27 Nov 2023 08:07:53 GMT
server: Playlog
cache-control: private
content-length: 131
x-xss-protection: 0
x-frame-options: SAMEORIGIN
set-cookie: CONSENT=PENDING+406; expires=Wed, 26-Nov-2025 08:07:53 GMT; path=/; domain=.google.com; Secure
p3p: CP="This is not a P3P policy! See g.co/p3phelp for more info."
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
expires: Mon, 27 Nov 2023 08:07:53 GMT
X-Firefox-Spdy: h2

drive.google.com/auth_warmup?origin=https%3A%2F%2Fdrive.google.com

216.58.207.206

200 OK

0 B

URL GET HTTP/3
drive.google.com/auth_warmup?origin=https%3A%2F%2Fdrive.google.com
IP
216.58.207.206:443
ASN
#15169 GOOGLE

Requested by
https://drive.google.com/file/d/1fBV0J62OChP4aw08EmOlD1OC1ttAbLNC/preview#amp=1
Certificate
IssuerGoogle Trust Services LLC
Subject*.google.com
Fingerprint4C:0D:17:8C:F1:30:7C:3A:6F:9B:8E:B4:83:0E:5C:BD:ED:17:3E:95
ValidityMon, 23 Oct 2023 11:18:24 GMT - Mon, 15 Jan 2024 11:18:23 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /auth_warmup?origin=https%3A%2F%2Fdrive.google.com HTTP/1.1
Host: drive.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://drive.google.com/
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
content-type: text/html; charset=utf-8
vary: Sec-Fetch-Dest, Sec-Fetch-Mode, Sec-Fetch-Site
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Mon, 27 Nov 2023 08:07:53 GMT
p3p: CP="This is not a P3P policy! See g.co/p3phelp for more info."
strict-transport-security: max-age=31536000
cross-origin-resource-policy: same-site
permissions-policy: ch-ua-arch=*, ch-ua-bitness=*, ch-ua-full-version=*, ch-ua-full-version-list=*, ch-ua-model=*, ch-ua-wow64=*, ch-ua-form-factor=*, ch-ua-platform=*, ch-ua-platform-version=*
content-security-policy: require-trusted-types-for 'script';report-uri /_/DriveOsidBootstrap/cspreport, script-src 'nonce-wRpJuDwivfZPn4rwOkSCxQ' 'unsafe-inline';object-src 'none';base-uri 'self';report-uri /_/DriveOsidBootstrap/cspreport;worker-src 'self', script-src 'unsafe-inline' 'self' https://apis.google.com https://ssl.gstatic.com https://www.google.com https://www.googletagmanager.com https://www.gstatic.com https://www.google-analytics.com;report-uri /_/DriveOsidBootstrap/cspreport/allowlist
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Model, Sec-CH-UA-WoW64, Sec-CH-UA-Form-Factor, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
cross-origin-opener-policy: same-origin
server: ESF
content-length: 0
x-xss-protection: 0
x-content-type-options: nosniff
set-cookie: NID=511=PERQWB5fUzDcIgJNGO5hAukyeZZuSba0ei-Q-6Nl9Vy8m2ZtPJnkezKbjVGxY36EEW5b-4FLyFgd9J-fAcO8f1jytXMZ8ZCeuqQx1EZvJTA_WKWxaHX9wJhHzSVNCwe4K-A39vxCA1tRVOeJuz-i8H3HDZWGYSKJtTa87LfayYA; expires=Tue, 28-May-2024 08:07:53 GMT; path=/; domain=.google.com; Secure; HttpOnly; SameSite=none
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

www.gstatic.com/feedback/js/help/prod/service/lazy.min.js

142.250.74.131

200 OK

36 kB

URL GET HTTP/3
www.gstatic.com/feedback/js/help/prod/service/lazy.min.js
IP
142.250.74.131:443
ASN
#15169 GOOGLE

Requested by
https://drive.google.com/file/d/1fBV0J62OChP4aw08EmOlD1OC1ttAbLNC/preview#amp=1
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintE5:79:1F:1A:04:3F:B9:B0:FB:41:4E:B5:E5:97:AD:FE:D9:2C:4A:CD
ValidityMon, 23 Oct 2023 11:24:07 GMT - Mon, 15 Jan 2024 11:24:06 GMT

File type
ASCII text, with very long lines (2337)
Size
36 kB (36058 bytes)
Hash
32fe6c0ba19d0222ff50b43db7da2e42
9850ebff4bddfc12cfa0f468a3a06eaeb63e00bc
4e901ebb09fa9903e237ef74d0578bede0331fb3ef264ea7dabf79f894dd9556

HTTP Headers

GET /feedback/js/help/prod/service/lazy.min.js HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://drive.google.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
accept-ranges: bytes
content-encoding: gzip
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/product-feedback-gathering
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups; report-to="product-feedback-gathering"
report-to: {"group":"product-feedback-gathering","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/product-feedback-gathering"}]}
content-length: 36058
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 27 Nov 2023 07:59:05 GMT
expires: Mon, 27 Nov 2023 08:49:05 GMT
cache-control: public, max-age=3000
last-modified: Tue, 14 Nov 2023 17:41:10 GMT
content-type: text/javascript
vary: Accept-Encoding, Origin
age: 528
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

www.gstatic.com/_/apps-fileview/_/js/k=apps-fileview.v.no.6G6kAcV7rO0.O/am=IAw/d=0/rs=AO0039vNlYfPQKAw70xNjuzjM8KbOvKUTg/m=MpJwZc,UUJqVe,sy1v,sy3,sy1w,s39S4,syk,sy1x,pw70Gc

142.250.74.131

200 OK

4.6 kB

URL GET HTTP/3
www.gstatic.com/_/apps-fileview/_/js/k=apps-fileview.v.no.6G6kAcV7rO0.O/am=IAw/d=0/rs=AO0039vNlYfPQKAw70xNjuzjM8KbOvKUTg/m=MpJwZc,UUJqVe,sy1v,sy3,sy1w,s39S4,syk,sy1x,pw70Gc
IP
142.250.74.131:443
ASN
#15169 GOOGLE

Requested by
https://drive.google.com/file/d/1ce78JWB3CyMnSoeBHAcrnmoNdfGSCYvc/preview#amp=1
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintE5:79:1F:1A:04:3F:B9:B0:FB:41:4E:B5:E5:97:AD:FE:D9:2C:4A:CD
ValidityMon, 23 Oct 2023 11:24:07 GMT - Mon, 15 Jan 2024 11:24:06 GMT

File type
ASCII text, with very long lines (736)
Size
4.6 kB (4562 bytes)
Hash
c0694f12ae5ceb0c5ee220059abdac1d
163724e30e0cdae10f6305cd8a3c7228649e53e8
c276a6cfe723afa4d93d13501cb675e6e6c055fbd376e3ca14435a55b32c4df4

HTTP Headers

GET /_/apps-fileview/_/js/k=apps-fileview.v.no.6G6kAcV7rO0.O/am=IAw/d=0/rs=AO0039vNlYfPQKAw70xNjuzjM8KbOvKUTg/m=MpJwZc,UUJqVe,sy1v,sy3,sy1w,s39S4,syk,sy1x,pw70Gc HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://drive.google.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
accept-ranges: bytes
content-encoding: gzip
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-fileview
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-fileview"
report-to: {"group":"apps-fileview","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-fileview"}]}
content-length: 4562
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 22 Nov 2023 21:07:59 GMT
expires: Thu, 21 Nov 2024 21:07:59 GMT
cache-control: public, max-age=31536000
last-modified: Tue, 14 Nov 2023 21:14:58 GMT
content-type: text/javascript; charset=UTF-8
vary: Accept-Encoding, Origin
age: 385194
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

drive.google.com/drivesharing/clientmodel?id=1fBV0J62OChP4aw08EmOlD1OC1ttAbLNC&foreignService=texmex&authuser=0&origin=https%3A%2F%2Fdrive.google.com

216.58.207.206

302 Found

0 B

URL GET HTTP/3
drive.google.com/drivesharing/clientmodel?id=1fBV0J62OChP4aw08EmOlD1OC1ttAbLNC&foreignService=texmex&authuser=0&origin=https%3A%2F%2Fdrive.google.com
IP
216.58.207.206:443
ASN
#15169 GOOGLE

Requested by
https://drive.google.com/file/d/1fBV0J62OChP4aw08EmOlD1OC1ttAbLNC/preview#amp=1
Certificate
IssuerGoogle Trust Services LLC
Subject*.google.com
Fingerprint4C:0D:17:8C:F1:30:7C:3A:6F:9B:8E:B4:83:0E:5C:BD:ED:17:3E:95
ValidityMon, 23 Oct 2023 11:18:24 GMT - Mon, 15 Jan 2024 11:18:23 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /drivesharing/clientmodel?id=1fBV0J62OChP4aw08EmOlD1OC1ttAbLNC&foreignService=texmex&authuser=0&origin=https%3A%2F%2Fdrive.google.com HTTP/1.1
Host: drive.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://drive.google.com/
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 302 Found
content-type: application/binary
vary: Sec-Fetch-Dest, Sec-Fetch-Mode, Sec-Fetch-Site
location: https://accounts.google.com/ServiceLogin?passive=1209600&continue=https://drive.google.com/drivesharing/clientmodel?id%3D1fBV0J62OChP4aw08EmOlD1OC1ttAbLNC%26foreignService%3Dtexmex%26authuser%3D0%26origin%3Dhttps://drive.google.com&followup=https://drive.google.com/drivesharing/clientmodel?id%3D1fBV0J62OChP4aw08EmOlD1OC1ttAbLNC%26foreignService%3Dtexmex%26authuser%3D0%26origin%3Dhttps://drive.google.com
p3p: CP="This is not a P3P policy! See g.co/p3phelp for more info."
strict-transport-security: max-age=31536000
content-security-policy: script-src 'nonce-TevL-R0nG2iVh8xDJlXXVQ' 'unsafe-inline';object-src 'none';base-uri 'self';report-uri /drivesharing/_/DriveShareDialogUi/cspreport;worker-src 'self', script-src 'unsafe-inline' 'self' https://apis.google.com https://ssl.gstatic.com https://www.google.com https://www.googletagmanager.com https://www.gstatic.com https://www.google-analytics.com;report-uri /drivesharing/_/DriveShareDialogUi/cspreport/allowlist, require-trusted-types-for 'script';report-uri /drivesharing/_/DriveShareDialogUi/cspreport
cross-origin-opener-policy: same-origin
cross-origin-resource-policy: same-site
permissions-policy: ch-ua-arch=*, ch-ua-bitness=*, ch-ua-full-version=*, ch-ua-full-version-list=*, ch-ua-model=*, ch-ua-wow64=*, ch-ua-form-factor=*, ch-ua-platform=*, ch-ua-platform-version=*
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Model, Sec-CH-UA-WoW64, Sec-CH-UA-Form-Factor, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
date: Mon, 27 Nov 2023 08:07:53 GMT
server: ESF
content-length: 0
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
set-cookie: NID=511=UjdSzZfXT41-h3UqWBPMSG-eMjEKJhZFq8AeLm6WrcFVGNUPeJyv3CX2FvsJh4vv2K-MPrGfnW5GJlWmP422VGga7AYfkUKyTSgyvqtU8JJm9BUT45krJTwgERyTis6e1Fc8cE45LnPz0_2Rv6xjqB99-gPBb1uAx_K6CmR2Lwg; expires=Tue, 28-May-2024 08:07:53 GMT; path=/; domain=.google.com; Secure; HttpOnly; SameSite=none
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

apis.google.com/_/scs/abc-static/_/js/k=gapi.gapi.en.CzrNRWo3AFk.O/m=client/exm=gapi_iframes,googleapis_client/rt=j/sv=1/d=1/ed=1/rs=AHpOoo8xPbrtpW2bPUIcgU2adGqIEpV82Q/cb=gapi.loaded_1

172.217.21.174

200 OK

71 kB

URL GET HTTP/3
apis.google.com/_/scs/abc-static/_/js/k=gapi.gapi.en.CzrNRWo3AFk.O/m=client/exm=gapi_iframes,googleapis_client/rt=j/sv=1/d=1/ed=1/rs=AHpOoo8xPbrtpW2bPUIcgU2adGqIEpV82Q/cb=gapi.loaded_1
IP
172.217.21.174:443
ASN
#15169 GOOGLE

Requested by
https://drive.google.com/file/d/1ce78JWB3CyMnSoeBHAcrnmoNdfGSCYvc/preview#amp=1
Certificate
IssuerGoogle Trust Services LLC
Subject*.google.com
Fingerprint4C:0D:17:8C:F1:30:7C:3A:6F:9B:8E:B4:83:0E:5C:BD:ED:17:3E:95
ValidityMon, 23 Oct 2023 11:18:24 GMT - Mon, 15 Jan 2024 11:18:23 GMT

File type
ASCII text, with very long lines (1276)
Size
71 kB (70834 bytes)
Hash
54862a8f09fdd39057a710bb3d7e7e66
8337e6e2b655dc83f4325cc70cfbc25fe20c0039
a4848ea89a7964e61e05d3b105bd4fa974f7f81d89a5a02fbc1c1b72c9309562

HTTP Headers

GET /_/scs/abc-static/_/js/k=gapi.gapi.en.CzrNRWo3AFk.O/m=client/exm=gapi_iframes,googleapis_client/rt=j/sv=1/d=1/ed=1/rs=AHpOoo8xPbrtpW2bPUIcgU2adGqIEpV82Q/cb=gapi.loaded_1 HTTP/1.1
Host: apis.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://drive.google.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
accept-ranges: bytes
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/social-frontend-mpm-access
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="social-frontend-mpm-access"
report-to: {"group":"social-frontend-mpm-access","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/social-frontend-mpm-access"}]}
content-length: 70834
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 23 Nov 2023 05:00:16 GMT
expires: Fri, 22 Nov 2024 05:00:16 GMT
cache-control: public, max-age=31536000
age: 356857
last-modified: Tue, 03 Oct 2023 15:15:50 GMT
content-type: text/javascript; charset=UTF-8
vary: Accept-Encoding
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

play.google.com/log?format=json&hasfast=true

142.250.74.78

200 OK

131 B

URL POST HTTP/3
play.google.com/log?format=json&hasfast=true
IP
142.250.74.78:443
ASN
#15169 GOOGLE

Requested by
https://drive.google.com/file/d/1ce78JWB3CyMnSoeBHAcrnmoNdfGSCYvc/preview#amp=1
Certificate
IssuerGoogle Trust Services LLC
Subject*.google.com
Fingerprint4C:0D:17:8C:F1:30:7C:3A:6F:9B:8E:B4:83:0E:5C:BD:ED:17:3E:95
ValidityMon, 23 Oct 2023 11:18:24 GMT - Mon, 15 Jan 2024 11:18:23 GMT

File type
JSON data\012- , ASCII text, with no line terminators
Size
131 B (131 bytes)
Hash
ca0b7e866005f6774d284b9f438ebfd2
53644f5ee3640189bdb223473ba6a2d46606c556
502e9680cfa78fa8be779cbf4f1947c8eaa3d43bf8c7464800ec772b2ddea358

HTTP Headers

POST /log?format=json&hasfast=true HTTP/1.1
Host: play.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://drive.google.com/
Content-Type: application/x-www-form-urlencoded;charset=utf-8
Content-Length: 665
Origin: https://drive.google.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
access-control-allow-origin: https://drive.google.com
cross-origin-resource-policy: cross-origin
access-control-allow-credentials: true
access-control-allow-headers: X-Playlog-Web
content-type: text/plain; charset=UTF-8
content-encoding: gzip
date: Mon, 27 Nov 2023 08:07:53 GMT
server: Playlog
cache-control: private
content-length: 131
x-xss-protection: 0
x-frame-options: SAMEORIGIN
set-cookie: CONSENT=PENDING+668; expires=Wed, 26-Nov-2025 08:07:53 GMT; path=/; domain=.google.com; Secure
p3p: CP="This is not a P3P policy! See g.co/p3phelp for more info."
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
expires: Mon, 27 Nov 2023 08:07:53 GMT

accounts.google.com/ServiceLogin?passive=1209600&continue=https://drive.google.com/drivesharing/clientmodel?id%3D1fBV0J62OChP4aw08EmOlD1OC1ttAbLNC%26foreignService%3Dtexmex%26authuser%3D0%26origin%3Dhttps://drive.google.com&followup=https://drive.google.com/drivesharing/clientmodel?id%3D1fBV0J62OChP4aw08EmOlD1OC1ttAbLNC%26foreignService%3Dtexmex%26authuser%3D0%26origin%3Dhttps://drive.google.com

142.250.74.109

302 Found

0 B

URL GET HTTP/2
accounts.google.com/ServiceLogin?passive=1209600&continue=https://drive.google.com/drivesharing/clientmodel?id%3D1fBV0J62OChP4aw08EmOlD1OC1ttAbLNC%26foreignService%3Dtexmex%26authuser%3D0%26origin%3Dhttps://drive.google.com&followup=https://drive.google.com/drivesharing/clientmodel?id%3D1fBV0J62OChP4aw08EmOlD1OC1ttAbLNC%26foreignService%3Dtexmex%26authuser%3D0%26origin%3Dhttps://drive.google.com
IP
142.250.74.109:443
ASN
#15169 GOOGLE

Requested by
https://drive.google.com/file/d/1fBV0J62OChP4aw08EmOlD1OC1ttAbLNC/preview#amp=1
Certificate
IssuerGoogle Trust Services LLC
Subjectaccounts.google.com
Fingerprint1E:A9:E1:96:78:1D:08:FC:96:C8:C2:34:4F:02:D3:3D:FA:9A:D2:6B
ValidityMon, 23 Oct 2023 11:25:04 GMT - Mon, 15 Jan 2024 11:25:03 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /ServiceLogin?passive=1209600&continue=https://drive.google.com/drivesharing/clientmodel?id%3D1fBV0J62OChP4aw08EmOlD1OC1ttAbLNC%26foreignService%3Dtexmex%26authuser%3D0%26origin%3Dhttps://drive.google.com&followup=https://drive.google.com/drivesharing/clientmodel?id%3D1fBV0J62OChP4aw08EmOlD1OC1ttAbLNC%26foreignService%3Dtexmex%26authuser%3D0%26origin%3Dhttps://drive.google.com HTTP/1.1
Host: accounts.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://drive.google.com/
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 302 Found
content-type: application/binary
set-cookie: __Host-GAPS=1:MF4s7tO2qbZUvEW7owC24nj4hannbA:Uaey2Mr968lSIw7N; Expires=Wed, 26-Nov-2025 08:07:53 GMT; Path=/; Secure; HttpOnly; Priority=HIGH
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Mon, 27 Nov 2023 08:07:53 GMT
location: https://accounts.google.com/InteractiveLogin?continue=https://drive.google.com/drivesharing/clientmodel?id%3D1fBV0J62OChP4aw08EmOlD1OC1ttAbLNC%26foreignService%3Dtexmex%26authuser%3D0%26origin%3Dhttps://drive.google.com&followup=https://drive.google.com/drivesharing/clientmodel?id%3D1fBV0J62OChP4aw08EmOlD1OC1ttAbLNC%26foreignService%3Dtexmex%26authuser%3D0%26origin%3Dhttps://drive.google.com&passive=1209600&ifkv=ASKXGp1GwPYp3HvDa6jPwN7cVZwzWaGhUbkBdSllviOlFsX4zH7ji30DO0pJHMBZ34GAM3cwmg_kmQ
strict-transport-security: max-age=31536000; includeSubDomains
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Model, Sec-CH-UA-WoW64, Sec-CH-UA-Form-Factor, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
cross-origin-opener-policy: unsafe-none
content-security-policy: require-trusted-types-for 'script';report-uri /_/AccountsSigninPassiveLoginHttp/cspreport, script-src 'nonce-qV11_0ZjBp0y9M27Tko2mw' 'unsafe-inline';object-src 'none';base-uri 'self';report-uri /_/AccountsSigninPassiveLoginHttp/cspreport;worker-src 'self', script-src 'unsafe-inline' 'self' https://apis.google.com https://ssl.gstatic.com https://www.google.com https://www.googletagmanager.com https://www.gstatic.com https://www.google-analytics.com;report-uri /_/AccountsSigninPassiveLoginHttp/cspreport/allowlist
permissions-policy: ch-ua-arch=*, ch-ua-bitness=*, ch-ua-full-version=*, ch-ua-full-version-list=*, ch-ua-model=*, ch-ua-wow64=*, ch-ua-form-factor=*, ch-ua-platform=*, ch-ua-platform-version=*
cross-origin-resource-policy: cross-origin
server: ESF
content-length: 0
x-xss-protection: 0
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

drive.google.com/auth_warmup?origin=https%3A%2F%2Fdrive.google.com

216.58.207.206

200 OK

0 B

URL GET HTTP/3
drive.google.com/auth_warmup?origin=https%3A%2F%2Fdrive.google.com
IP
216.58.207.206:443
ASN
#15169 GOOGLE

Requested by
https://drive.google.com/file/d/1fBV0J62OChP4aw08EmOlD1OC1ttAbLNC/preview#amp=1
Certificate
IssuerGoogle Trust Services LLC
Subject*.google.com
Fingerprint4C:0D:17:8C:F1:30:7C:3A:6F:9B:8E:B4:83:0E:5C:BD:ED:17:3E:95
ValidityMon, 23 Oct 2023 11:18:24 GMT - Mon, 15 Jan 2024 11:18:23 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /auth_warmup?origin=https%3A%2F%2Fdrive.google.com HTTP/1.1
Host: drive.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://drive.google.com/
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
content-type: text/html; charset=utf-8
vary: Sec-Fetch-Dest, Sec-Fetch-Mode, Sec-Fetch-Site
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Mon, 27 Nov 2023 08:07:53 GMT
p3p: CP="This is not a P3P policy! See g.co/p3phelp for more info."
strict-transport-security: max-age=31536000
cross-origin-resource-policy: same-site
cross-origin-opener-policy: same-origin
content-security-policy: require-trusted-types-for 'script';report-uri /_/DriveOsidBootstrap/cspreport, script-src 'nonce-pQzlMMpvZTPefoPHxwyRYA' 'unsafe-inline';object-src 'none';base-uri 'self';report-uri /_/DriveOsidBootstrap/cspreport;worker-src 'self', script-src 'unsafe-inline' 'self' https://apis.google.com https://ssl.gstatic.com https://www.google.com https://www.googletagmanager.com https://www.gstatic.com https://www.google-analytics.com;report-uri /_/DriveOsidBootstrap/cspreport/allowlist
permissions-policy: ch-ua-arch=*, ch-ua-bitness=*, ch-ua-full-version=*, ch-ua-full-version-list=*, ch-ua-model=*, ch-ua-wow64=*, ch-ua-form-factor=*, ch-ua-platform=*, ch-ua-platform-version=*
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Model, Sec-CH-UA-WoW64, Sec-CH-UA-Form-Factor, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
server: ESF
content-length: 0
x-xss-protection: 0
x-content-type-options: nosniff
set-cookie: NID=511=O7g9dCgt-qeF2pHiTTlu3JgFNj-uazbYwazFIu7YosA_CEcxS5PXXOz2SfawNiK5yQVRGYg5s1-KOaSAVqAfOXpkcmnJb3Gal2ghZPckvEBH9AER1VtrpynElDg0xcA1LigX4TB35xZCLaxs3ovH6dkhRqRY4phsETlx6_sls5w; expires=Tue, 28-May-2024 08:07:53 GMT; path=/; domain=.google.com; Secure; HttpOnly; SameSite=none
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

accounts.google.com/InteractiveLogin?continue=https://drive.google.com/drivesharing/clientmodel?id%3D1fBV0J62OChP4aw08EmOlD1OC1ttAbLNC%26foreignService%3Dtexmex%26authuser%3D0%26origin%3Dhttps://drive.google.com&followup=https://drive.google.com/drivesharing/clientmodel?id%3D1fBV0J62OChP4aw08EmOlD1OC1ttAbLNC%26foreignService%3Dtexmex%26authuser%3D0%26origin%3Dhttps://drive.google.com&passive=1209600&ifkv=ASKXGp1GwPYp3HvDa6jPwN7cVZwzWaGhUbkBdSllviOlFsX4zH7ji30DO0pJHMBZ34GAM3cwmg_kmQ

142.250.74.109

302 Found

474 B

URL GET HTTP/2
accounts.google.com/InteractiveLogin?continue=https://drive.google.com/drivesharing/clientmodel?id%3D1fBV0J62OChP4aw08EmOlD1OC1ttAbLNC%26foreignService%3Dtexmex%26authuser%3D0%26origin%3Dhttps://drive.google.com&followup=https://drive.google.com/drivesharing/clientmodel?id%3D1fBV0J62OChP4aw08EmOlD1OC1ttAbLNC%26foreignService%3Dtexmex%26authuser%3D0%26origin%3Dhttps://drive.google.com&passive=1209600&ifkv=ASKXGp1GwPYp3HvDa6jPwN7cVZwzWaGhUbkBdSllviOlFsX4zH7ji30DO0pJHMBZ34GAM3cwmg_kmQ
IP
142.250.74.109:443
ASN
#15169 GOOGLE

Requested by
https://drive.google.com/file/d/1fBV0J62OChP4aw08EmOlD1OC1ttAbLNC/preview#amp=1
Certificate
IssuerGoogle Trust Services LLC
Subjectaccounts.google.com
Fingerprint1E:A9:E1:96:78:1D:08:FC:96:C8:C2:34:4F:02:D3:3D:FA:9A:D2:6B
ValidityMon, 23 Oct 2023 11:25:04 GMT - Mon, 15 Jan 2024 11:25:03 GMT

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ASCII text, with very long lines (698)
Size
474 B (474 bytes)
Hash
4b0fd27c637a62c41a7b603519197a22
8b0acb832dd0aaecf199d05f2aa1c51f5b0e9786
f477806fbded25f7466b5182055852a77493d3f7d9421cc485c70d15774b889f

HTTP Headers

GET /InteractiveLogin?continue=https://drive.google.com/drivesharing/clientmodel?id%3D1fBV0J62OChP4aw08EmOlD1OC1ttAbLNC%26foreignService%3Dtexmex%26authuser%3D0%26origin%3Dhttps://drive.google.com&followup=https://drive.google.com/drivesharing/clientmodel?id%3D1fBV0J62OChP4aw08EmOlD1OC1ttAbLNC%26foreignService%3Dtexmex%26authuser%3D0%26origin%3Dhttps://drive.google.com&passive=1209600&ifkv=ASKXGp1GwPYp3HvDa6jPwN7cVZwzWaGhUbkBdSllviOlFsX4zH7ji30DO0pJHMBZ34GAM3cwmg_kmQ HTTP/1.1
Host: accounts.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://drive.google.com/
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 302 Found
content-type: text/html; charset=UTF-8
set-cookie: __Host-GAPS=1:dEGUC05fsaQhdVxFsvZnruQzerSWqg:_W2t5fRDqwKWjWFE;Path=/;Expires=Wed, 26-Nov-2025 08:07:53 GMT;Secure;HttpOnly;Priority=HIGH
x-frame-options: DENY
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Mon, 27 Nov 2023 08:07:53 GMT
location: https://accounts.google.com/v3/signin/identifier?continue=https%3A%2F%2Fdrive.google.com%2Fdrivesharing%2Fclientmodel%3Fid%3D1fBV0J62OChP4aw08EmOlD1OC1ttAbLNC%26foreignService%3Dtexmex%26authuser%3D0%26origin%3Dhttps%3A%2F%2Fdrive.google.com&followup=https%3A%2F%2Fdrive.google.com%2Fdrivesharing%2Fclientmodel%3Fid%3D1fBV0J62OChP4aw08EmOlD1OC1ttAbLNC%26foreignService%3Dtexmex%26authuser%3D0%26origin%3Dhttps%3A%2F%2Fdrive.google.com&ifkv=ASKXGp3rw8nO3q1WqMa3MwpEj4NEgUbwYhd7xpXvTjRxpNghdFRqW2yJvXtC2Bv1G6SnDRflm3Zh9A&passive=1209600&flowName=GlifWebSignIn&flowEntry=ServiceLogin&dsh=S-2012620695%3A1701072473393138&theme=glif
strict-transport-security: max-age=31536000; includeSubDomains
content-security-policy: script-src 'nonce-j3fLNY9brh6_RuBPIvYAlg' 'unsafe-inline' 'unsafe-eval';object-src 'none';base-uri 'self';report-uri /cspreport, require-trusted-types-for 'script';report-uri /cspreport
report-to: {"group":"coop_gse_qebhlk","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/gse_qebhlk"}]}
cross-origin-opener-policy-report-only: same-origin; report-to="coop_gse_qebhlk"
content-encoding: gzip
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
content-length: 474
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

drive.google.com/drivesharing/clientmodel?id=1ce78JWB3CyMnSoeBHAcrnmoNdfGSCYvc&foreignService=texmex&authuser=0&origin=https%3A%2F%2Fdrive.google.com

216.58.207.206

302 Found

0 B

URL GET HTTP/3
drive.google.com/drivesharing/clientmodel?id=1ce78JWB3CyMnSoeBHAcrnmoNdfGSCYvc&foreignService=texmex&authuser=0&origin=https%3A%2F%2Fdrive.google.com
IP
216.58.207.206:443
ASN
#15169 GOOGLE

Requested by
https://drive.google.com/file/d/1ce78JWB3CyMnSoeBHAcrnmoNdfGSCYvc/preview#amp=1
Certificate
IssuerGoogle Trust Services LLC
Subject*.google.com
Fingerprint4C:0D:17:8C:F1:30:7C:3A:6F:9B:8E:B4:83:0E:5C:BD:ED:17:3E:95
ValidityMon, 23 Oct 2023 11:18:24 GMT - Mon, 15 Jan 2024 11:18:23 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /drivesharing/clientmodel?id=1ce78JWB3CyMnSoeBHAcrnmoNdfGSCYvc&foreignService=texmex&authuser=0&origin=https%3A%2F%2Fdrive.google.com HTTP/1.1
Host: drive.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://drive.google.com/
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 302 Found
content-type: application/binary
vary: Sec-Fetch-Dest, Sec-Fetch-Mode, Sec-Fetch-Site
location: https://accounts.google.com/ServiceLogin?passive=1209600&continue=https://drive.google.com/drivesharing/clientmodel?id%3D1ce78JWB3CyMnSoeBHAcrnmoNdfGSCYvc%26foreignService%3Dtexmex%26authuser%3D0%26origin%3Dhttps://drive.google.com&followup=https://drive.google.com/drivesharing/clientmodel?id%3D1ce78JWB3CyMnSoeBHAcrnmoNdfGSCYvc%26foreignService%3Dtexmex%26authuser%3D0%26origin%3Dhttps://drive.google.com
p3p: CP="This is not a P3P policy! See g.co/p3phelp for more info."
strict-transport-security: max-age=31536000
content-security-policy: require-trusted-types-for 'script';report-uri /drivesharing/_/DriveShareDialogUi/cspreport, script-src 'nonce-wQalzzWIwf0S1y1Bda_zPA' 'unsafe-inline';object-src 'none';base-uri 'self';report-uri /drivesharing/_/DriveShareDialogUi/cspreport;worker-src 'self', script-src 'unsafe-inline' 'self' https://apis.google.com https://ssl.gstatic.com https://www.google.com https://www.googletagmanager.com https://www.gstatic.com https://www.google-analytics.com;report-uri /drivesharing/_/DriveShareDialogUi/cspreport/allowlist
cross-origin-resource-policy: same-site
cross-origin-opener-policy: same-origin
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Model, Sec-CH-UA-WoW64, Sec-CH-UA-Form-Factor, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
permissions-policy: ch-ua-arch=*, ch-ua-bitness=*, ch-ua-full-version=*, ch-ua-full-version-list=*, ch-ua-model=*, ch-ua-wow64=*, ch-ua-form-factor=*, ch-ua-platform=*, ch-ua-platform-version=*
date: Mon, 27 Nov 2023 08:07:53 GMT
server: ESF
content-length: 0
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
set-cookie: NID=511=Y5bqTIG1sYt4qKB7iek7WBifyo8RRGWufEFlTg5xRrPaY_aJMbsoF_UIWil9-AruZ_EUQAEPMXnldDZJ0VJ0Ho2IngvFDyJWv9msp8AjyZtdMIinKKi1qHKVXJNedUe8A0t1CVzkxpREuZ5TvxNkOYPx9xcqGcub7iM_wlcovCk; expires=Tue, 28-May-2024 08:07:53 GMT; path=/; domain=.google.com; Secure; HttpOnly; SameSite=none
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

accounts.google.com/v3/signin/identifier?continue=https%3A%2F%2Fdrive.google.com%2Fdrivesharing%2Fclientmodel%3Fid%3D1fBV0J62OChP4aw08EmOlD1OC1ttAbLNC%26foreignService%3Dtexmex%26authuser%3D0%26origin%3Dhttps%3A%2F%2Fdrive.google.com&followup=https%3A%2F%2Fdrive.google.com%2Fdrivesharing%2Fclientmodel%3Fid%3D1fBV0J62OChP4aw08EmOlD1OC1ttAbLNC%26foreignService%3Dtexmex%26authuser%3D0%26origin%3Dhttps%3A%2F%2Fdrive.google.com&ifkv=ASKXGp3rw8nO3q1WqMa3MwpEj4NEgUbwYhd7xpXvTjRxpNghdFRqW2yJvXtC2Bv1G6SnDRflm3Zh9A&passive=1209600&flowName=GlifWebSignIn&flowEntry=ServiceLogin&dsh=S-2012620695%3A1701072473393138&theme=glif

142.250.74.109

403 Forbidden

35 kB

URL GET HTTP/3
accounts.google.com/v3/signin/identifier?continue=https%3A%2F%2Fdrive.google.com%2Fdrivesharing%2Fclientmodel%3Fid%3D1fBV0J62OChP4aw08EmOlD1OC1ttAbLNC%26foreignService%3Dtexmex%26authuser%3D0%26origin%3Dhttps%3A%2F%2Fdrive.google.com&followup=https%3A%2F%2Fdrive.google.com%2Fdrivesharing%2Fclientmodel%3Fid%3D1fBV0J62OChP4aw08EmOlD1OC1ttAbLNC%26foreignService%3Dtexmex%26authuser%3D0%26origin%3Dhttps%3A%2F%2Fdrive.google.com&ifkv=ASKXGp3rw8nO3q1WqMa3MwpEj4NEgUbwYhd7xpXvTjRxpNghdFRqW2yJvXtC2Bv1G6SnDRflm3Zh9A&passive=1209600&flowName=GlifWebSignIn&flowEntry=ServiceLogin&dsh=S-2012620695%3A1701072473393138&theme=glif
IP
142.250.74.109:443
ASN
#15169 GOOGLE

Requested by
https://drive.google.com/file/d/1fBV0J62OChP4aw08EmOlD1OC1ttAbLNC/preview#amp=1
Certificate
IssuerGoogle Trust Services LLC
Subject*.google.com
Fingerprint4C:0D:17:8C:F1:30:7C:3A:6F:9B:8E:B4:83:0E:5C:BD:ED:17:3E:95
ValidityMon, 23 Oct 2023 11:18:24 GMT - Mon, 15 Jan 2024 11:18:23 GMT

File type
gzip compressed data, max compression\012- data
Size
35 kB (34915 bytes)
Hash
f0e47576e2fd32883629f1c00c2c9023
46218dcad9f18e3342000c17c0634e7f5182e0a4
dc1288040692c21272bf00589e123330fad383eed7da3333030e5245898b844b

HTTP Headers

GET /v3/signin/identifier?continue=https%3A%2F%2Fdrive.google.com%2Fdrivesharing%2Fclientmodel%3Fid%3D1fBV0J62OChP4aw08EmOlD1OC1ttAbLNC%26foreignService%3Dtexmex%26authuser%3D0%26origin%3Dhttps%3A%2F%2Fdrive.google.com&followup=https%3A%2F%2Fdrive.google.com%2Fdrivesharing%2Fclientmodel%3Fid%3D1fBV0J62OChP4aw08EmOlD1OC1ttAbLNC%26foreignService%3Dtexmex%26authuser%3D0%26origin%3Dhttps%3A%2F%2Fdrive.google.com&ifkv=ASKXGp3rw8nO3q1WqMa3MwpEj4NEgUbwYhd7xpXvTjRxpNghdFRqW2yJvXtC2Bv1G6SnDRflm3Zh9A&passive=1209600&flowName=GlifWebSignIn&flowEntry=ServiceLogin&dsh=S-2012620695%3A1701072473393138&theme=glif HTTP/1.1
Host: accounts.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://drive.google.com/
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 403 Forbidden
content-type: text/html; charset=utf-8
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Mon, 27 Nov 2023 08:07:53 GMT
vary: Sec-Fetch-Dest, Sec-Fetch-Mode, Sec-Fetch-Site
strict-transport-security: max-age=31536000; includeSubDomains
content-security-policy: require-trusted-types-for 'script';report-uri /v3/signin/_/AccountsSignInUi/cspreport, script-src 'nonce-xDYpsWoT0hVMxeJGmwDPZA' 'unsafe-inline';object-src 'none';base-uri 'self';report-uri /v3/signin/_/AccountsSignInUi/cspreport;worker-src 'self', script-src 'unsafe-inline' 'self' https://apis.google.com https://ssl.gstatic.com https://www.google.com https://www.googletagmanager.com https://www.gstatic.com https://www.google-analytics.com;report-uri /v3/signin/_/AccountsSignInUi/cspreport/allowlist
cross-origin-opener-policy-report-only: same-origin; report-to="AccountsSignInUi"
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Model, Sec-CH-UA-WoW64, Sec-CH-UA-Form-Factor, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
permissions-policy: ch-ua-arch=*, ch-ua-bitness=*, ch-ua-full-version=*, ch-ua-full-version-list=*, ch-ua-model=*, ch-ua-wow64=*, ch-ua-form-factor=*, ch-ua-platform=*, ch-ua-platform-version=*
report-to: {"group":"AccountsSignInUi","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/AccountsSignInUi"}]}
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

accounts.google.com/ServiceLogin?passive=1209600&continue=https://drive.google.com/drivesharing/clientmodel?id%3D1ce78JWB3CyMnSoeBHAcrnmoNdfGSCYvc%26foreignService%3Dtexmex%26authuser%3D0%26origin%3Dhttps://drive.google.com&followup=https://drive.google.com/drivesharing/clientmodel?id%3D1ce78JWB3CyMnSoeBHAcrnmoNdfGSCYvc%26foreignService%3Dtexmex%26authuser%3D0%26origin%3Dhttps://drive.google.com

142.250.74.109

302 Found

0 B

URL GET HTTP/3
accounts.google.com/ServiceLogin?passive=1209600&continue=https://drive.google.com/drivesharing/clientmodel?id%3D1ce78JWB3CyMnSoeBHAcrnmoNdfGSCYvc%26foreignService%3Dtexmex%26authuser%3D0%26origin%3Dhttps://drive.google.com&followup=https://drive.google.com/drivesharing/clientmodel?id%3D1ce78JWB3CyMnSoeBHAcrnmoNdfGSCYvc%26foreignService%3Dtexmex%26authuser%3D0%26origin%3Dhttps://drive.google.com
IP
142.250.74.109:443
ASN
#15169 GOOGLE

Requested by
https://drive.google.com/file/d/1ce78JWB3CyMnSoeBHAcrnmoNdfGSCYvc/preview#amp=1
Certificate
IssuerGoogle Trust Services LLC
Subject*.google.com
Fingerprint4C:0D:17:8C:F1:30:7C:3A:6F:9B:8E:B4:83:0E:5C:BD:ED:17:3E:95
ValidityMon, 23 Oct 2023 11:18:24 GMT - Mon, 15 Jan 2024 11:18:23 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /ServiceLogin?passive=1209600&continue=https://drive.google.com/drivesharing/clientmodel?id%3D1ce78JWB3CyMnSoeBHAcrnmoNdfGSCYvc%26foreignService%3Dtexmex%26authuser%3D0%26origin%3Dhttps://drive.google.com&followup=https://drive.google.com/drivesharing/clientmodel?id%3D1ce78JWB3CyMnSoeBHAcrnmoNdfGSCYvc%26foreignService%3Dtexmex%26authuser%3D0%26origin%3Dhttps://drive.google.com HTTP/1.1
Host: accounts.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://drive.google.com/
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 302 Found
content-type: application/binary
set-cookie: __Host-GAPS=1:d6Zeiq0pKLg8ffLEv9a7mjnxsEBt3g:eXeDZE5vGYS_-59-; Expires=Wed, 26-Nov-2025 08:07:53 GMT; Path=/; Secure; HttpOnly; Priority=HIGH
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Mon, 27 Nov 2023 08:07:53 GMT
location: https://accounts.google.com/InteractiveLogin?continue=https://drive.google.com/drivesharing/clientmodel?id%3D1ce78JWB3CyMnSoeBHAcrnmoNdfGSCYvc%26foreignService%3Dtexmex%26authuser%3D0%26origin%3Dhttps://drive.google.com&followup=https://drive.google.com/drivesharing/clientmodel?id%3D1ce78JWB3CyMnSoeBHAcrnmoNdfGSCYvc%26foreignService%3Dtexmex%26authuser%3D0%26origin%3Dhttps://drive.google.com&passive=1209600&ifkv=ASKXGp0RQx454xW4uZqNJHuhUlyZfk-5PJoNux6cf4CN-fZbSfTImCAnUsriAH7xaPAj9soZxpZLGw
strict-transport-security: max-age=31536000; includeSubDomains
permissions-policy: ch-ua-arch=*, ch-ua-bitness=*, ch-ua-full-version=*, ch-ua-full-version-list=*, ch-ua-model=*, ch-ua-wow64=*, ch-ua-form-factor=*, ch-ua-platform=*, ch-ua-platform-version=*
content-security-policy: script-src 'nonce-K-Ad1BGrFkgKhm36wRsJoQ' 'unsafe-inline';object-src 'none';base-uri 'self';report-uri /_/AccountsSigninPassiveLoginHttp/cspreport;worker-src 'self', script-src 'unsafe-inline' 'self' https://apis.google.com https://ssl.gstatic.com https://www.google.com https://www.googletagmanager.com https://www.gstatic.com https://www.google-analytics.com;report-uri /_/AccountsSigninPassiveLoginHttp/cspreport/allowlist, require-trusted-types-for 'script';report-uri /_/AccountsSigninPassiveLoginHttp/cspreport
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Model, Sec-CH-UA-WoW64, Sec-CH-UA-Form-Factor, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
cross-origin-opener-policy: unsafe-none
cross-origin-resource-policy: cross-origin
server: ESF
content-length: 0
x-xss-protection: 0
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

www.gstatic.com/_/apps-fileview/_/js/k=apps-fileview.v.no.6G6kAcV7rO0.O/am=IAw/d=0/rs=AO0039vNlYfPQKAw70xNjuzjM8KbOvKUTg/m=sy11,sy34,sAbmxd

142.250.74.131

200 OK

6.2 kB

URL GET HTTP/3
www.gstatic.com/_/apps-fileview/_/js/k=apps-fileview.v.no.6G6kAcV7rO0.O/am=IAw/d=0/rs=AO0039vNlYfPQKAw70xNjuzjM8KbOvKUTg/m=sy11,sy34,sAbmxd
IP
142.250.74.131:443
ASN
#15169 GOOGLE

Requested by
https://drive.google.com/file/d/1ce78JWB3CyMnSoeBHAcrnmoNdfGSCYvc/preview#amp=1
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintE5:79:1F:1A:04:3F:B9:B0:FB:41:4E:B5:E5:97:AD:FE:D9:2C:4A:CD
ValidityMon, 23 Oct 2023 11:24:07 GMT - Mon, 15 Jan 2024 11:24:06 GMT

File type
ASCII text, with very long lines (797)
Size
6.2 kB (6222 bytes)
Hash
af81d5d3007ed141bc7af427718dcff9
9d0f006e599771f38c3752173aae8374281cc056
73c2963ad4fce0b63f3b7c4193dbf37963fa0d24bae613afd7b316c88995c475

HTTP Headers

GET /_/apps-fileview/_/js/k=apps-fileview.v.no.6G6kAcV7rO0.O/am=IAw/d=0/rs=AO0039vNlYfPQKAw70xNjuzjM8KbOvKUTg/m=sy11,sy34,sAbmxd HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://drive.google.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
accept-ranges: bytes
content-encoding: gzip
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-fileview
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-fileview"
report-to: {"group":"apps-fileview","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-fileview"}]}
content-length: 6222
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 22 Nov 2023 21:15:28 GMT
expires: Thu, 21 Nov 2024 21:15:28 GMT
cache-control: public, max-age=31536000
last-modified: Tue, 14 Nov 2023 21:14:58 GMT
content-type: text/javascript; charset=UTF-8
vary: Accept-Encoding, Origin
age: 384745
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

ssl.gstatic.com/docs/common/viewer/v3/v-sprite54.svg

142.250.74.131

200 OK

49 kB

URL GET HTTP/3
ssl.gstatic.com/docs/common/viewer/v3/v-sprite54.svg
IP
142.250.74.131:443
ASN
#15169 GOOGLE

Requested by
https://drive.google.com/file/d/1fBV0J62OChP4aw08EmOlD1OC1ttAbLNC/preview#amp=1
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintE5:79:1F:1A:04:3F:B9:B0:FB:41:4E:B5:E5:97:AD:FE:D9:2C:4A:CD
ValidityMon, 23 Oct 2023 11:24:07 GMT - Mon, 15 Jan 2024 11:24:06 GMT

File type
SVG Scalable Vector Graphics image\012- SVG XML document\012- XML 1.0 document text\012- SVG XML document\012- XML document text\012- exported SGML document, ASCII text, with very long lines (42745)
Size
49 kB (49026 bytes)
Hash
06788645bc4244c613333961e7471746
95f468d841d04455a2457c14fe2112067885a61f
d64db3530653f3c614e2ef2daa616a5ab601c0cd3201b01f8b7842a0e666cbde

HTTP Headers

GET /docs/common/viewer/v3/v-sprite54.svg HTTP/1.1
Host: ssl.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.gstatic.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
accept-ranges: bytes
content-encoding: br
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/docs
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="docs"
report-to: {"group":"docs","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/docs"}]}
content-length: 49026
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 22 Nov 2023 21:48:48 GMT
expires: Thu, 21 Nov 2024 21:48:48 GMT
cache-control: public, max-age=31536000
last-modified: Thu, 02 Nov 2023 22:48:00 GMT
content-type: image/svg+xml
vary: Accept-Encoding, Origin
age: 382745
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

play.google.com/log?format=json&hasfast=true

142.250.74.78

200 OK

131 B

URL POST HTTP/3
play.google.com/log?format=json&hasfast=true
IP
142.250.74.78:443
ASN
#15169 GOOGLE

Requested by
https://drive.google.com/file/d/1ce78JWB3CyMnSoeBHAcrnmoNdfGSCYvc/preview#amp=1
Certificate
IssuerGoogle Trust Services LLC
Subject*.google.com
Fingerprint4C:0D:17:8C:F1:30:7C:3A:6F:9B:8E:B4:83:0E:5C:BD:ED:17:3E:95
ValidityMon, 23 Oct 2023 11:18:24 GMT - Mon, 15 Jan 2024 11:18:23 GMT

File type
JSON data\012- , ASCII text, with no line terminators
Size
131 B (131 bytes)
Hash
ca0b7e866005f6774d284b9f438ebfd2
53644f5ee3640189bdb223473ba6a2d46606c556
502e9680cfa78fa8be779cbf4f1947c8eaa3d43bf8c7464800ec772b2ddea358

HTTP Headers

POST /log?format=json&hasfast=true HTTP/1.1
Host: play.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://drive.google.com/
Content-Type: application/x-www-form-urlencoded;charset=utf-8
Content-Length: 2653
Origin: https://drive.google.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
access-control-allow-origin: https://drive.google.com
cross-origin-resource-policy: cross-origin
access-control-allow-credentials: true
access-control-allow-headers: X-Playlog-Web
content-type: text/plain; charset=UTF-8
content-encoding: gzip
date: Mon, 27 Nov 2023 08:07:53 GMT
server: Playlog
cache-control: private
content-length: 131
x-xss-protection: 0
x-frame-options: SAMEORIGIN
set-cookie: CONSENT=PENDING+855; expires=Wed, 26-Nov-2025 08:07:53 GMT; path=/; domain=.google.com; Secure
p3p: CP="This is not a P3P policy! See g.co/p3phelp for more info."
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
expires: Mon, 27 Nov 2023 08:07:53 GMT

accounts.google.com/InteractiveLogin?continue=https://drive.google.com/drivesharing/clientmodel?id%3D1ce78JWB3CyMnSoeBHAcrnmoNdfGSCYvc%26foreignService%3Dtexmex%26authuser%3D0%26origin%3Dhttps://drive.google.com&followup=https://drive.google.com/drivesharing/clientmodel?id%3D1ce78JWB3CyMnSoeBHAcrnmoNdfGSCYvc%26foreignService%3Dtexmex%26authuser%3D0%26origin%3Dhttps://drive.google.com&passive=1209600&ifkv=ASKXGp0RQx454xW4uZqNJHuhUlyZfk-5PJoNux6cf4CN-fZbSfTImCAnUsriAH7xaPAj9soZxpZLGw

142.250.74.109

302 Found

472 B

URL GET HTTP/3
accounts.google.com/InteractiveLogin?continue=https://drive.google.com/drivesharing/clientmodel?id%3D1ce78JWB3CyMnSoeBHAcrnmoNdfGSCYvc%26foreignService%3Dtexmex%26authuser%3D0%26origin%3Dhttps://drive.google.com&followup=https://drive.google.com/drivesharing/clientmodel?id%3D1ce78JWB3CyMnSoeBHAcrnmoNdfGSCYvc%26foreignService%3Dtexmex%26authuser%3D0%26origin%3Dhttps://drive.google.com&passive=1209600&ifkv=ASKXGp0RQx454xW4uZqNJHuhUlyZfk-5PJoNux6cf4CN-fZbSfTImCAnUsriAH7xaPAj9soZxpZLGw
IP
142.250.74.109:443
ASN
#15169 GOOGLE

Requested by
https://drive.google.com/file/d/1ce78JWB3CyMnSoeBHAcrnmoNdfGSCYvc/preview#amp=1
Certificate
IssuerGoogle Trust Services LLC
Subject*.google.com
Fingerprint4C:0D:17:8C:F1:30:7C:3A:6F:9B:8E:B4:83:0E:5C:BD:ED:17:3E:95
ValidityMon, 23 Oct 2023 11:18:24 GMT - Mon, 15 Jan 2024 11:18:23 GMT

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ASCII text, with very long lines (697)
Size
472 B (472 bytes)
Hash
9fabe4c662c014096305fa07e272cf8d
ff5e1eeaca619f53825368b9b1e8667c9fa64155
dff7575b578504dbbce13b6f886f4a6e9c3a434cd0669475bf5bbb3df03ccda8

HTTP Headers

GET /InteractiveLogin?continue=https://drive.google.com/drivesharing/clientmodel?id%3D1ce78JWB3CyMnSoeBHAcrnmoNdfGSCYvc%26foreignService%3Dtexmex%26authuser%3D0%26origin%3Dhttps://drive.google.com&followup=https://drive.google.com/drivesharing/clientmodel?id%3D1ce78JWB3CyMnSoeBHAcrnmoNdfGSCYvc%26foreignService%3Dtexmex%26authuser%3D0%26origin%3Dhttps://drive.google.com&passive=1209600&ifkv=ASKXGp0RQx454xW4uZqNJHuhUlyZfk-5PJoNux6cf4CN-fZbSfTImCAnUsriAH7xaPAj9soZxpZLGw HTTP/1.1
Host: accounts.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://drive.google.com/
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 302 Found
content-type: text/html; charset=UTF-8
set-cookie: __Host-GAPS=1:acowyVWI5BY7ZRJlZQbumw5BzAc39Q:6gf8tf-Cxq45wtqx;Path=/;Expires=Wed, 26-Nov-2025 08:07:53 GMT;Secure;HttpOnly;Priority=HIGH
x-frame-options: DENY
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Mon, 27 Nov 2023 08:07:53 GMT
location: https://accounts.google.com/v3/signin/identifier?continue=https%3A%2F%2Fdrive.google.com%2Fdrivesharing%2Fclientmodel%3Fid%3D1ce78JWB3CyMnSoeBHAcrnmoNdfGSCYvc%26foreignService%3Dtexmex%26authuser%3D0%26origin%3Dhttps%3A%2F%2Fdrive.google.com&followup=https%3A%2F%2Fdrive.google.com%2Fdrivesharing%2Fclientmodel%3Fid%3D1ce78JWB3CyMnSoeBHAcrnmoNdfGSCYvc%26foreignService%3Dtexmex%26authuser%3D0%26origin%3Dhttps%3A%2F%2Fdrive.google.com&ifkv=ASKXGp3hntlPrz6wuG0AqD9Z08pb22k7wcFC3kn3GgyytlYR3a5uMgQ39yNcX1r9tA12gE_eq5s8sQ&passive=1209600&flowName=GlifWebSignIn&flowEntry=ServiceLogin&dsh=S1409496218%3A1701072473607974&theme=glif
strict-transport-security: max-age=31536000; includeSubDomains
content-security-policy: script-src 'nonce-4ALePm-XpjG9u134fkLbFA' 'unsafe-inline' 'unsafe-eval';object-src 'none';base-uri 'self';report-uri /cspreport, require-trusted-types-for 'script';report-uri /cspreport
report-to: {"group":"coop_gse_qebhlk","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/gse_qebhlk"}]}
cross-origin-opener-policy-report-only: same-origin; report-to="coop_gse_qebhlk"
content-encoding: gzip
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
content-length: 472
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

content.googleapis.com/static/proxy.html?usegapi=1&jsh=m%3B%2F_%2Fscs%2Fabc-static%2F_%2Fjs%2Fk%3Dgapi.gapi.en.CzrNRWo3AFk.O%2Fd%3D1%2Frs%3DAHpOoo8xPbrtpW2bPUIcgU2adGqIEpV82Q%2Fm%3D__features__

142.250.74.138

274 B

URL
content.googleapis.com/static/proxy.html?usegapi=1&jsh=m%3B%2F_%2Fscs%2Fabc-static%2F_%2Fjs%2Fk%3Dgapi.gapi.en.CzrNRWo3AFk.O%2Fd%3D1%2Frs%3DAHpOoo8xPbrtpW2bPUIcgU2adGqIEpV82Q%2Fm%3D__features__
IP
142.250.74.138:0
ASN
#15169 GOOGLE

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Size
274 B (274 bytes)
Hash
405bac99c77e23d08bfcbb065c1f2fc7
82c2b47eb8dd01c0c9afd53823c131414431df7d
ced4480ba05e875075a84339dc09222c777c20815b62321866fafee7830aadb5

HTTP Headers

GET /static/proxy.html?usegapi=1&jsh=m%3B%2F_%2Fscs%2Fabc-static%2F_%2Fjs%2Fk%3Dgapi.gapi.en.CzrNRWo3AFk.O%2Fd%3D1%2Frs%3DAHpOoo8xPbrtpW2bPUIcgU2adGqIEpV82Q%2Fm%3D__features__ HTTP/1.1
Host: content.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://drive.google.com/
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-type: text/html
content-security-policy: script-src 'nonce-edR3InIK2P0fzx9na46MMA' 'report-sample' 'strict-dynamic' 'unsafe-eval' 'unsafe-inline' http: https:; object-src 'none'; report-uri https://csp.withgoogle.com/csp/apiserving; base-uri 'none', require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apiserving
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="apiserving"
report-to: {"group":"apiserving","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apiserving"}]}
content-length: 274
date: Mon, 27 Nov 2023 08:07:53 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
last-modified: Tue, 14 Nov 2023 14:08:00 GMT
x-content-type-options: nosniff
cross-origin-embedder-policy: require-corp; report-to="apiserving"
content-encoding: gzip
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

fonts.gstatic.com/s/googlesans/v58/4UasrENHsxJlGDuGo1OIlJfC6l_24rlCK1Yo_Iqcsih3SAyH6cAwhX9RPjIUvbQui-A3tw.woff2

142.250.74.163

200 OK

34 kB

URL GET HTTP/3
fonts.gstatic.com/s/googlesans/v58/4UasrENHsxJlGDuGo1OIlJfC6l_24rlCK1Yo_Iqcsih3SAyH6cAwhX9RPjIUvbQui-A3tw.woff2
IP
142.250.74.163:443
ASN
#15169 GOOGLE

Requested by
https://drive.google.com/file/d/1ce78JWB3CyMnSoeBHAcrnmoNdfGSCYvc/preview#amp=1
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintE5:79:1F:1A:04:3F:B9:B0:FB:41:4E:B5:E5:97:AD:FE:D9:2C:4A:CD
ValidityMon, 23 Oct 2023 11:24:07 GMT - Mon, 15 Jan 2024 11:24:06 GMT

File type
Web Open Font Format (Version 2), TrueType, length 34108, version 1.0\012- data
Size
34 kB (34108 bytes)
Hash
c15d33a9508923be839d315a999ab9c7
d17f6e786a1464e13d4ec8e842f4eb121b103842
65c99d3b9f1a1b905046e30d00a97f2d4d605e565c32917e7a89a35926e04b98

HTTP Headers

GET /s/googlesans/v58/4UasrENHsxJlGDuGo1OIlJfC6l_24rlCK1Yo_Iqcsih3SAyH6cAwhX9RPjIUvbQui-A3tw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://drive.google.com
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 34108
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 21 Nov 2023 21:16:36 GMT
expires: Wed, 20 Nov 2024 21:16:36 GMT
cache-control: public, max-age=31536000
age: 471077
last-modified: Tue, 23 May 2023 16:36:00 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

www.gstatic.com/_/apps-fileview/_/js/k=apps-fileview.v.no.6G6kAcV7rO0.O/am=IAw/d=0/rs=AO0039vNlYfPQKAw70xNjuzjM8KbOvKUTg/m=sy11,sy34,sAbmxd

142.250.74.131

200 OK

6.2 kB

URL GET HTTP/3
www.gstatic.com/_/apps-fileview/_/js/k=apps-fileview.v.no.6G6kAcV7rO0.O/am=IAw/d=0/rs=AO0039vNlYfPQKAw70xNjuzjM8KbOvKUTg/m=sy11,sy34,sAbmxd
IP
142.250.74.131:443
ASN
#15169 GOOGLE

Requested by
https://drive.google.com/file/d/1ce78JWB3CyMnSoeBHAcrnmoNdfGSCYvc/preview#amp=1
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintE5:79:1F:1A:04:3F:B9:B0:FB:41:4E:B5:E5:97:AD:FE:D9:2C:4A:CD
ValidityMon, 23 Oct 2023 11:24:07 GMT - Mon, 15 Jan 2024 11:24:06 GMT

File type
ASCII text, with very long lines (797)
Size
6.2 kB (6222 bytes)
Hash
af81d5d3007ed141bc7af427718dcff9
9d0f006e599771f38c3752173aae8374281cc056
73c2963ad4fce0b63f3b7c4193dbf37963fa0d24bae613afd7b316c88995c475

HTTP Headers

GET /_/apps-fileview/_/js/k=apps-fileview.v.no.6G6kAcV7rO0.O/am=IAw/d=0/rs=AO0039vNlYfPQKAw70xNjuzjM8KbOvKUTg/m=sy11,sy34,sAbmxd HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://drive.google.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
accept-ranges: bytes
content-encoding: gzip
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-fileview
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-fileview"
report-to: {"group":"apps-fileview","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-fileview"}]}
content-length: 6222
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 22 Nov 2023 21:15:28 GMT
expires: Thu, 21 Nov 2024 21:15:28 GMT
cache-control: public, max-age=31536000
last-modified: Tue, 14 Nov 2023 21:14:58 GMT
content-type: text/javascript; charset=UTF-8
vary: Accept-Encoding, Origin
age: 384745
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

content.googleapis.com/static/proxy.html?usegapi=1&jsh=m%3B%2F_%2Fscs%2Fabc-static%2F_%2Fjs%2Fk%3Dgapi.gapi.en.CzrNRWo3AFk.O%2Fd%3D1%2Frs%3DAHpOoo8xPbrtpW2bPUIcgU2adGqIEpV82Q%2Fm%3D__features__

142.250.74.138

273 B

URL
content.googleapis.com/static/proxy.html?usegapi=1&jsh=m%3B%2F_%2Fscs%2Fabc-static%2F_%2Fjs%2Fk%3Dgapi.gapi.en.CzrNRWo3AFk.O%2Fd%3D1%2Frs%3DAHpOoo8xPbrtpW2bPUIcgU2adGqIEpV82Q%2Fm%3D__features__
IP
142.250.74.138:0
ASN
#15169 GOOGLE

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Size
273 B (273 bytes)
Hash
76a50f3e8768e20f49ecc03cc302b3a8
5596658268a27bf827a193693be5763ac7262289
e1f1cb042225cbe430a0670b8804f70c20cd808403e122d849a10020657cc311

HTTP Headers

GET /static/proxy.html?usegapi=1&jsh=m%3B%2F_%2Fscs%2Fabc-static%2F_%2Fjs%2Fk%3Dgapi.gapi.en.CzrNRWo3AFk.O%2Fd%3D1%2Frs%3DAHpOoo8xPbrtpW2bPUIcgU2adGqIEpV82Q%2Fm%3D__features__ HTTP/1.1
Host: content.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://drive.google.com/
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-type: text/html
content-security-policy: script-src 'nonce-vpK3tWh9AcYYl7AhhFUEVA' 'report-sample' 'strict-dynamic' 'unsafe-eval' 'unsafe-inline' http: https:; object-src 'none'; report-uri https://csp.withgoogle.com/csp/apiserving; base-uri 'none', require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apiserving
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="apiserving"
report-to: {"group":"apiserving","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apiserving"}]}
content-length: 273
date: Mon, 27 Nov 2023 08:07:53 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
last-modified: Tue, 14 Nov 2023 14:08:00 GMT
x-content-type-options: nosniff
cross-origin-embedder-policy: require-corp; report-to="apiserving"
content-encoding: gzip
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

play.google.com/log?format=json&hasfast=true

142.250.74.78

200 OK

131 B

URL POST HTTP/3
play.google.com/log?format=json&hasfast=true
IP
142.250.74.78:443
ASN
#15169 GOOGLE

Requested by
https://drive.google.com/file/d/1ce78JWB3CyMnSoeBHAcrnmoNdfGSCYvc/preview#amp=1
Certificate
IssuerGoogle Trust Services LLC
Subject*.google.com
Fingerprint4C:0D:17:8C:F1:30:7C:3A:6F:9B:8E:B4:83:0E:5C:BD:ED:17:3E:95
ValidityMon, 23 Oct 2023 11:18:24 GMT - Mon, 15 Jan 2024 11:18:23 GMT

File type
JSON data\012- , ASCII text, with no line terminators
Size
131 B (131 bytes)
Hash
ca0b7e866005f6774d284b9f438ebfd2
53644f5ee3640189bdb223473ba6a2d46606c556
502e9680cfa78fa8be779cbf4f1947c8eaa3d43bf8c7464800ec772b2ddea358

HTTP Headers

POST /log?format=json&hasfast=true HTTP/1.1
Host: play.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://drive.google.com/
Content-Type: application/x-www-form-urlencoded;charset=utf-8
Content-Length: 2654
Origin: https://drive.google.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
access-control-allow-origin: https://drive.google.com
cross-origin-resource-policy: cross-origin
access-control-allow-credentials: true
access-control-allow-headers: X-Playlog-Web
content-type: text/plain; charset=UTF-8
content-encoding: gzip
date: Mon, 27 Nov 2023 08:07:53 GMT
server: Playlog
cache-control: private
content-length: 131
x-xss-protection: 0
x-frame-options: SAMEORIGIN
set-cookie: CONSENT=PENDING+459; expires=Wed, 26-Nov-2025 08:07:53 GMT; path=/; domain=.google.com; Secure
p3p: CP="This is not a P3P policy! See g.co/p3phelp for more info."
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
expires: Mon, 27 Nov 2023 08:07:53 GMT

ssl.gstatic.com/s2/tt/images/play-overlay.png

142.250.74.131

200 OK

1.6 kB

URL GET HTTP/3
ssl.gstatic.com/s2/tt/images/play-overlay.png
IP
142.250.74.131:443
ASN
#15169 GOOGLE

Requested by
https://drive.google.com/file/d/1fBV0J62OChP4aw08EmOlD1OC1ttAbLNC/preview#amp=1
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintE5:79:1F:1A:04:3F:B9:B0:FB:41:4E:B5:E5:97:AD:FE:D9:2C:4A:CD
ValidityMon, 23 Oct 2023 11:24:07 GMT - Mon, 15 Jan 2024 11:24:06 GMT

File type
PNG image data, 77 x 77, 8-bit/color RGBA, non-interlaced\012- data
Size
1.6 kB (1638 bytes)
Hash
cb8e139cdf890b2fe079a30c32f7a137
d2840be49d276f3bfb349217007cba1f2732ddc2
08cce022c4202effcfcbebaea07eb5df4e18569c64b438636ee1efa8547d56f8

HTTP Headers

GET /s2/tt/images/play-overlay.png HTTP/1.1
Host: ssl.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.gstatic.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
accept-ranges: bytes
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/focus
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="focus"
report-to: {"group":"focus","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/focus"}]}
content-length: 1638
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 22 Nov 2023 21:49:00 GMT
expires: Thu, 21 Nov 2024 21:49:00 GMT
cache-control: public, max-age=31536000
age: 382733
last-modified: Sun, 25 Jun 2023 02:58:00 GMT
content-type: image/png
vary: Origin
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

apis.google.com/js/googleapis.proxy.js?onload=startup

172.217.21.174

200 OK

7.1 kB

URL GET HTTP/3
apis.google.com/js/googleapis.proxy.js?onload=startup
IP
172.217.21.174:443
ASN
#15169 GOOGLE

Requested by
https://content.googleapis.com/static/proxy.html?usegapi=1&jsh=m%3B%2F_%2Fscs%2Fabc-static%2F_%2Fjs%2Fk%3Dgapi.gapi.en.CzrNRWo3AFk.O%2Fd%3D1%2Frs%3DAHpOoo8xPbrtpW2bPUIcgU2adGqIEpV82Q%2Fm%3D__features__#parent=https%3A%2F%2Fdrive.google.com&rpctoken=311140860
Certificate
IssuerGoogle Trust Services LLC
Subject*.google.com
Fingerprint4C:0D:17:8C:F1:30:7C:3A:6F:9B:8E:B4:83:0E:5C:BD:ED:17:3E:95
ValidityMon, 23 Oct 2023 11:18:24 GMT - Mon, 15 Jan 2024 11:18:23 GMT

File type
ASCII text, with very long lines (2056)
Size
7.1 kB (7117 bytes)
Hash
a652c99342a60e6c01af3b070abca897
bfb2432d813541b35134b63606efd3d32c715224
f92e7baf6054ada951110842b4751571b3b16b43e826ff46eb36520f0294f59d

HTTP Headers

GET /js/googleapis.proxy.js?onload=startup HTTP/1.1
Host: apis.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://content.googleapis.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-type: text/javascript
access-control-allow-origin: *
content-security-policy: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/gapi-team
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="gapi-team"
report-to: {"group":"gapi-team","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/gapi-team"}]}
timing-allow-origin: *
p3p: CP="This is not a P3P policy! See g.co/p3phelp for more info."
content-length: 7117
date: Mon, 27 Nov 2023 08:07:53 GMT
expires: Mon, 27 Nov 2023 08:07:53 GMT
cache-control: private, max-age=1800, stale-while-revalidate=1800
etag: "5f95998ecb7c0577"
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
set-cookie: NID=511=emjYhjMGig7FfpZ19siByUPP8aXs91fkKEG2_1AuBc3Ko9yYb6JmvZRR16JbvKxbFnzCPJa3miLNjLi8gQN_9YDN0cvzd3PF_YygRaXO9bAzLeYtidw-wbwd7RAfOtr82cWMAZ3gvplrWVIWbB0MEJbLz1jG9jevr6QY8MrE0TU; expires=Tue, 28-May-2024 08:07:53 GMT; path=/; domain=.google.com; Secure; HttpOnly; SameSite=none
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

apis.google.com/js/googleapis.proxy.js?onload=startup

172.217.21.174

200 OK

7.1 kB

URL GET HTTP/3
apis.google.com/js/googleapis.proxy.js?onload=startup
IP
172.217.21.174:443
ASN
#15169 GOOGLE

Requested by
https://content.googleapis.com/static/proxy.html?usegapi=1&jsh=m%3B%2F_%2Fscs%2Fabc-static%2F_%2Fjs%2Fk%3Dgapi.gapi.en.CzrNRWo3AFk.O%2Fd%3D1%2Frs%3DAHpOoo8xPbrtpW2bPUIcgU2adGqIEpV82Q%2Fm%3D__features__#parent=https%3A%2F%2Fdrive.google.com&rpctoken=311140860
Certificate
IssuerGoogle Trust Services LLC
Subject*.google.com
Fingerprint4C:0D:17:8C:F1:30:7C:3A:6F:9B:8E:B4:83:0E:5C:BD:ED:17:3E:95
ValidityMon, 23 Oct 2023 11:18:24 GMT - Mon, 15 Jan 2024 11:18:23 GMT

File type
ASCII text, with very long lines (2056)
Size
7.1 kB (7117 bytes)
Hash
a652c99342a60e6c01af3b070abca897
bfb2432d813541b35134b63606efd3d32c715224
f92e7baf6054ada951110842b4751571b3b16b43e826ff46eb36520f0294f59d

HTTP Headers

GET /js/googleapis.proxy.js?onload=startup HTTP/1.1
Host: apis.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://content.googleapis.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-type: text/javascript
access-control-allow-origin: *
content-security-policy: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/gapi-team
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="gapi-team"
report-to: {"group":"gapi-team","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/gapi-team"}]}
timing-allow-origin: *
p3p: CP="This is not a P3P policy! See g.co/p3phelp for more info."
content-length: 7117
date: Mon, 27 Nov 2023 08:07:53 GMT
expires: Mon, 27 Nov 2023 08:07:53 GMT
cache-control: private, max-age=1800, stale-while-revalidate=1800
etag: "5f95998ecb7c0577"
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
set-cookie: NID=511=eAgo93MSueUF41W1tRzBy-sfvRpgcow35ElJjHwk9I103LVjJIA__Gnfta2Z2qYyIR96eWNXVtoX9R7bti6eNsEfS9S3yaTaygW8SCMkmz_UzayJSANoNpJw9POG8UnkdgTdSdrBTP_oTWosuBhyb84erNrVmXJX8KEUXWsXnF4; expires=Tue, 28-May-2024 08:07:53 GMT; path=/; domain=.google.com; Secure; HttpOnly; SameSite=none
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

lh3.googleusercontent.com/drive-viewer/AK7aPaDQvfuNpofUE8Y4KqYk0qBabtni7EZwx2an3rQf612TsUX1SjnkHoqTks683NLGW8a7HOL6MUboXp48VMmTCXJx-8b6=w1920-h1080-k-pd

142.250.74.97

200 OK

460 kB

URL GET HTTP/2
lh3.googleusercontent.com/drive-viewer/AK7aPaDQvfuNpofUE8Y4KqYk0qBabtni7EZwx2an3rQf612TsUX1SjnkHoqTks683NLGW8a7HOL6MUboXp48VMmTCXJx-8b6=w1920-h1080-k-pd
IP
142.250.74.97:443
ASN
#15169 GOOGLE

Requested by
https://drive.google.com/file/d/1fBV0J62OChP4aw08EmOlD1OC1ttAbLNC/preview#amp=1
Certificate
IssuerGoogle Trust Services LLC
Subject*.googleusercontent.com
Fingerprint2E:01:38:64:37:3C:F9:F4:3C:95:49:F1:9E:D9:61:5F:63:48:CF:CE
ValidityMon, 23 Oct 2023 11:23:50 GMT - Mon, 15 Jan 2024 11:23:49 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 1920x1080, components 3\012- data
Size
460 kB (459571 bytes)
Hash
5e0162bbc2d1ee23ca4acdfcac7c8c94
373a0eb59a6a43be8c4c7f634aa1cb8150ef0852
611c53c71e99ec41336242ff3076dbb689c334b21f388a9fe4f7e8ced4ee2ed7

HTTP Headers

GET /drive-viewer/AK7aPaDQvfuNpofUE8Y4KqYk0qBabtni7EZwx2an3rQf612TsUX1SjnkHoqTks683NLGW8a7HOL6MUboXp48VMmTCXJx-8b6=w1920-h1080-k-pd HTTP/1.1
Host: lh3.googleusercontent.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://drive.google.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: image/jpeg
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
access-control-expose-headers: Content-Length
etag: "v1"
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: private, max-age=86400, no-transform
content-disposition: inline;filename="5 LIONS 69 juta miliar.jpg"
x-content-type-options: nosniff
date: Mon, 27 Nov 2023 08:07:53 GMT
server: fife
content-length: 459571
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

lh3.googleusercontent.com/drive-viewer/AK7aPaAvexLl4ZiJ0ibVT6NgqEZILKWAA7JsMXwWLrgWQFhNXlVur9oin40frbZEMMxt9KY9KvRB1bNHg15q_CyXcCFisuyjqQ=w1920-h1080-k-pd

142.250.74.97

200 OK

394 kB

URL GET HTTP/2
lh3.googleusercontent.com/drive-viewer/AK7aPaAvexLl4ZiJ0ibVT6NgqEZILKWAA7JsMXwWLrgWQFhNXlVur9oin40frbZEMMxt9KY9KvRB1bNHg15q_CyXcCFisuyjqQ=w1920-h1080-k-pd
IP
142.250.74.97:443
ASN
#15169 GOOGLE

Requested by
https://drive.google.com/file/d/1ce78JWB3CyMnSoeBHAcrnmoNdfGSCYvc/preview#amp=1
Certificate
IssuerGoogle Trust Services LLC
Subject*.googleusercontent.com
Fingerprint2E:01:38:64:37:3C:F9:F4:3C:95:49:F1:9E:D9:61:5F:63:48:CF:CE
ValidityMon, 23 Oct 2023 11:23:50 GMT - Mon, 15 Jan 2024 11:23:49 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 1920x1080, components 3\012- data
Size
394 kB (393801 bytes)
Hash
fb8c019add2d38b7181328c32cd3fff9
b71ea8f5f3f09faeeeee551ffcb981e9d954722d
091d81781c0e4502316214832ecc1243a7575153aa683a6885928c27b23d3f18

HTTP Headers

GET /drive-viewer/AK7aPaAvexLl4ZiJ0ibVT6NgqEZILKWAA7JsMXwWLrgWQFhNXlVur9oin40frbZEMMxt9KY9KvRB1bNHg15q_CyXcCFisuyjqQ=w1920-h1080-k-pd HTTP/1.1
Host: lh3.googleusercontent.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://drive.google.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
content-type: image/jpeg
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
access-control-expose-headers: Content-Length
etag: "v1"
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: private, max-age=86400, no-transform
content-disposition: inline;filename="5 LIONS 2,3 miliar.jpg"
x-content-type-options: nosniff
date: Mon, 27 Nov 2023 08:07:53 GMT
server: fife
content-length: 393801
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

apis.google.com/_/scs/abc-static/_/js/k=gapi.gapi.en.CzrNRWo3AFk.O/m=googleapis_proxy/rt=j/sv=1/d=1/ed=1/rs=AHpOoo8xPbrtpW2bPUIcgU2adGqIEpV82Q/cb=gapi.loaded_0?le=scs

172.217.21.174

200 OK

28 kB

URL GET HTTP/3
apis.google.com/_/scs/abc-static/_/js/k=gapi.gapi.en.CzrNRWo3AFk.O/m=googleapis_proxy/rt=j/sv=1/d=1/ed=1/rs=AHpOoo8xPbrtpW2bPUIcgU2adGqIEpV82Q/cb=gapi.loaded_0?le=scs
IP
172.217.21.174:443
ASN
#15169 GOOGLE

Requested by
https://content.googleapis.com/static/proxy.html?usegapi=1&jsh=m%3B%2F_%2Fscs%2Fabc-static%2F_%2Fjs%2Fk%3Dgapi.gapi.en.CzrNRWo3AFk.O%2Fd%3D1%2Frs%3DAHpOoo8xPbrtpW2bPUIcgU2adGqIEpV82Q%2Fm%3D__features__#parent=https%3A%2F%2Fdrive.google.com&rpctoken=331092803
Certificate
IssuerGoogle Trust Services LLC
Subject*.google.com
Fingerprint4C:0D:17:8C:F1:30:7C:3A:6F:9B:8E:B4:83:0E:5C:BD:ED:17:3E:95
ValidityMon, 23 Oct 2023 11:18:24 GMT - Mon, 15 Jan 2024 11:18:23 GMT

File type
ASCII text, with very long lines (2488)
Size
28 kB (27742 bytes)
Hash
5869f7cb07ea8de5fdd7bf366f7cfcda
c21e15f6ff514b938a1b502d88658680d127462d
51bfed53838c4fc38e50188149988cbd23697cfd7460a2f9d24184ab6ba5f42c

HTTP Headers

GET /_/scs/abc-static/_/js/k=gapi.gapi.en.CzrNRWo3AFk.O/m=googleapis_proxy/rt=j/sv=1/d=1/ed=1/rs=AHpOoo8xPbrtpW2bPUIcgU2adGqIEpV82Q/cb=gapi.loaded_0?le=scs HTTP/1.1
Host: apis.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://content.googleapis.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
accept-ranges: bytes
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/social-frontend-mpm-access
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="social-frontend-mpm-access"
report-to: {"group":"social-frontend-mpm-access","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/social-frontend-mpm-access"}]}
content-length: 27742
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 21 Nov 2023 21:36:48 GMT
expires: Wed, 20 Nov 2024 21:36:48 GMT
cache-control: public, max-age=31536000
age: 469866
last-modified: Tue, 03 Oct 2023 15:15:50 GMT
content-type: text/javascript; charset=UTF-8
vary: Accept-Encoding
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

apis.google.com/_/scs/abc-static/_/js/k=gapi.gapi.en.CzrNRWo3AFk.O/m=googleapis_proxy/rt=j/sv=1/d=1/ed=1/rs=AHpOoo8xPbrtpW2bPUIcgU2adGqIEpV82Q/cb=gapi.loaded_0?le=scs

172.217.21.174

200 OK

28 kB

URL GET HTTP/3
apis.google.com/_/scs/abc-static/_/js/k=gapi.gapi.en.CzrNRWo3AFk.O/m=googleapis_proxy/rt=j/sv=1/d=1/ed=1/rs=AHpOoo8xPbrtpW2bPUIcgU2adGqIEpV82Q/cb=gapi.loaded_0?le=scs
IP
172.217.21.174:443
ASN
#15169 GOOGLE

Requested by
https://content.googleapis.com/static/proxy.html?usegapi=1&jsh=m%3B%2F_%2Fscs%2Fabc-static%2F_%2Fjs%2Fk%3Dgapi.gapi.en.CzrNRWo3AFk.O%2Fd%3D1%2Frs%3DAHpOoo8xPbrtpW2bPUIcgU2adGqIEpV82Q%2Fm%3D__features__#parent=https%3A%2F%2Fdrive.google.com&rpctoken=331092803
Certificate
IssuerGoogle Trust Services LLC
Subject*.google.com
Fingerprint4C:0D:17:8C:F1:30:7C:3A:6F:9B:8E:B4:83:0E:5C:BD:ED:17:3E:95
ValidityMon, 23 Oct 2023 11:18:24 GMT - Mon, 15 Jan 2024 11:18:23 GMT

File type
ASCII text, with very long lines (2488)
Size
28 kB (27742 bytes)
Hash
5869f7cb07ea8de5fdd7bf366f7cfcda
c21e15f6ff514b938a1b502d88658680d127462d
51bfed53838c4fc38e50188149988cbd23697cfd7460a2f9d24184ab6ba5f42c

HTTP Headers

GET /_/scs/abc-static/_/js/k=gapi.gapi.en.CzrNRWo3AFk.O/m=googleapis_proxy/rt=j/sv=1/d=1/ed=1/rs=AHpOoo8xPbrtpW2bPUIcgU2adGqIEpV82Q/cb=gapi.loaded_0?le=scs HTTP/1.1
Host: apis.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://content.googleapis.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
accept-ranges: bytes
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/social-frontend-mpm-access
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="social-frontend-mpm-access"
report-to: {"group":"social-frontend-mpm-access","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/social-frontend-mpm-access"}]}
content-length: 27742
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 21 Nov 2023 21:36:48 GMT
expires: Wed, 20 Nov 2024 21:36:48 GMT
cache-control: public, max-age=31536000
age: 469866
last-modified: Tue, 03 Oct 2023 15:15:50 GMT
content-type: text/javascript; charset=UTF-8
vary: Accept-Encoding
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

play.google.com/log?format=json&hasfast=true

142.250.74.78

200 OK

131 B

URL POST HTTP/3
play.google.com/log?format=json&hasfast=true
IP
142.250.74.78:443
ASN
#15169 GOOGLE

Requested by
https://drive.google.com/file/d/1ce78JWB3CyMnSoeBHAcrnmoNdfGSCYvc/preview#amp=1
Certificate
IssuerGoogle Trust Services LLC
Subject*.google.com
Fingerprint4C:0D:17:8C:F1:30:7C:3A:6F:9B:8E:B4:83:0E:5C:BD:ED:17:3E:95
ValidityMon, 23 Oct 2023 11:18:24 GMT - Mon, 15 Jan 2024 11:18:23 GMT

File type
JSON data\012- , ASCII text, with no line terminators
Size
131 B (131 bytes)
Hash
ca0b7e866005f6774d284b9f438ebfd2
53644f5ee3640189bdb223473ba6a2d46606c556
502e9680cfa78fa8be779cbf4f1947c8eaa3d43bf8c7464800ec772b2ddea358

HTTP Headers

POST /log?format=json&hasfast=true HTTP/1.1
Host: play.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://drive.google.com/
Content-Type: application/x-www-form-urlencoded;charset=utf-8
Content-Length: 1813
Origin: https://drive.google.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
access-control-allow-origin: https://drive.google.com
cross-origin-resource-policy: cross-origin
access-control-allow-credentials: true
access-control-allow-headers: X-Playlog-Web
content-type: text/plain; charset=UTF-8
content-encoding: gzip
date: Mon, 27 Nov 2023 08:07:54 GMT
server: Playlog
cache-control: private
content-length: 131
x-xss-protection: 0
x-frame-options: SAMEORIGIN
set-cookie: CONSENT=PENDING+872; expires=Wed, 26-Nov-2025 08:07:54 GMT; path=/; domain=.google.com; Secure
p3p: CP="This is not a P3P policy! See g.co/p3phelp for more info."
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
expires: Mon, 27 Nov 2023 08:07:54 GMT

play.google.com/log?format=json&hasfast=true

142.250.74.78

200 OK

131 B

URL POST HTTP/3
play.google.com/log?format=json&hasfast=true
IP
142.250.74.78:443
ASN
#15169 GOOGLE

Requested by
https://drive.google.com/file/d/1ce78JWB3CyMnSoeBHAcrnmoNdfGSCYvc/preview#amp=1
Certificate
IssuerGoogle Trust Services LLC
Subject*.google.com
Fingerprint4C:0D:17:8C:F1:30:7C:3A:6F:9B:8E:B4:83:0E:5C:BD:ED:17:3E:95
ValidityMon, 23 Oct 2023 11:18:24 GMT - Mon, 15 Jan 2024 11:18:23 GMT

File type
JSON data\012- , ASCII text, with no line terminators
Size
131 B (131 bytes)
Hash
ca0b7e866005f6774d284b9f438ebfd2
53644f5ee3640189bdb223473ba6a2d46606c556
502e9680cfa78fa8be779cbf4f1947c8eaa3d43bf8c7464800ec772b2ddea358

HTTP Headers

POST /log?format=json&hasfast=true HTTP/1.1
Host: play.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://drive.google.com/
Content-Type: application/x-www-form-urlencoded;charset=utf-8
Content-Length: 1813
Origin: https://drive.google.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
access-control-allow-origin: https://drive.google.com
cross-origin-resource-policy: cross-origin
access-control-allow-credentials: true
access-control-allow-headers: X-Playlog-Web
content-type: text/plain; charset=UTF-8
content-encoding: gzip
date: Mon, 27 Nov 2023 08:07:54 GMT
server: Playlog
cache-control: private
content-length: 131
x-xss-protection: 0
x-frame-options: SAMEORIGIN
set-cookie: CONSENT=PENDING+986; expires=Wed, 26-Nov-2025 08:07:54 GMT; path=/; domain=.google.com; Secure
p3p: CP="This is not a P3P policy! See g.co/p3phelp for more info."
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
expires: Mon, 27 Nov 2023 08:07:54 GMT

content.googleapis.com/drive/v2internal/viewerimpressions?key=AIzaSyC1eQ1xj69IdTMeii5r7brs3R90eck-m7k&alt=json

142.250.74.138

204 No Content

0 B

URL POST HTTP/3
content.googleapis.com/drive/v2internal/viewerimpressions?key=AIzaSyC1eQ1xj69IdTMeii5r7brs3R90eck-m7k&alt=json
IP
142.250.74.138:443
ASN
#15169 GOOGLE

Requested by
https://content.googleapis.com/static/proxy.html?usegapi=1&jsh=m%3B%2F_%2Fscs%2Fabc-static%2F_%2Fjs%2Fk%3Dgapi.gapi.en.CzrNRWo3AFk.O%2Fd%3D1%2Frs%3DAHpOoo8xPbrtpW2bPUIcgU2adGqIEpV82Q%2Fm%3D__features__#parent=https%3A%2F%2Fdrive.google.com&rpctoken=311140860
Certificate
IssuerGoogle Trust Services LLC
Subjectupload.video.google.com
FingerprintCC:96:E0:52:E0:9B:EA:A9:A0:F8:88:9A:90:20:11:47:61:00:3C:42
ValidityMon, 23 Oct 2023 11:24:07 GMT - Mon, 15 Jan 2024 11:24:06 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

POST /drive/v2internal/viewerimpressions?key=AIzaSyC1eQ1xj69IdTMeii5r7brs3R90eck-m7k&alt=json HTTP/1.1
Host: content.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-ClientDetails: appVersion=5.0%20(X11)&platform=Linux%20x86_64&userAgent=Mozilla%2F5.0%20(Windows%20NT%2010.0%3B%20Win64%3B%20x64%3B%20rv%3A105.0)%20Gecko%2F20100101%20Firefox%2F105.0
Content-Type: application/json
X-Requested-With: XMLHttpRequest
X-JavaScript-User-Agent: google-api-javascript-client/1.1.0
X-Goog-AuthUser: 0
X-Origin: https://drive.google.com
X-Referer: https://drive.google.com
X-Goog-Encode-Response-If-Executable: base64
Content-Length: 683
Origin: https://content.googleapis.com
DNT: 1
Connection: keep-alive
Referer: https://content.googleapis.com/static/proxy.html?usegapi=1&jsh=m%3B%2F_%2Fscs%2Fabc-static%2F_%2Fjs%2Fk%3Dgapi.gapi.en.CzrNRWo3AFk.O%2Fd%3D1%2Frs%3DAHpOoo8xPbrtpW2bPUIcgU2adGqIEpV82Q%2Fm%3D__features__
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 204 No Content
etag: "vyGp6PvFo4RvsFtPoIWeCReyIC8"
vary: Origin, X-Origin
date: Mon, 27 Nov 2023 08:07:54 GMT
expires: Mon, 01 Jan 1990 00:00:00 GMT
pragma: no-cache
cache-control: no-cache, no-store, max-age=0, must-revalidate
content-type: text/html
server: ESF
content-length: 0
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

content.googleapis.com/drive/v2internal/viewerimpressions?key=AIzaSyC1eQ1xj69IdTMeii5r7brs3R90eck-m7k&alt=json

142.250.74.138

204 No Content

0 B

URL POST HTTP/3
content.googleapis.com/drive/v2internal/viewerimpressions?key=AIzaSyC1eQ1xj69IdTMeii5r7brs3R90eck-m7k&alt=json
IP
142.250.74.138:443
ASN
#15169 GOOGLE

Requested by
https://content.googleapis.com/static/proxy.html?usegapi=1&jsh=m%3B%2F_%2Fscs%2Fabc-static%2F_%2Fjs%2Fk%3Dgapi.gapi.en.CzrNRWo3AFk.O%2Fd%3D1%2Frs%3DAHpOoo8xPbrtpW2bPUIcgU2adGqIEpV82Q%2Fm%3D__features__#parent=https%3A%2F%2Fdrive.google.com&rpctoken=311140860
Certificate
IssuerGoogle Trust Services LLC
Subjectupload.video.google.com
FingerprintCC:96:E0:52:E0:9B:EA:A9:A0:F8:88:9A:90:20:11:47:61:00:3C:42
ValidityMon, 23 Oct 2023 11:24:07 GMT - Mon, 15 Jan 2024 11:24:06 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

POST /drive/v2internal/viewerimpressions?key=AIzaSyC1eQ1xj69IdTMeii5r7brs3R90eck-m7k&alt=json HTTP/1.1
Host: content.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-ClientDetails: appVersion=5.0%20(X11)&platform=Linux%20x86_64&userAgent=Mozilla%2F5.0%20(Windows%20NT%2010.0%3B%20Win64%3B%20x64%3B%20rv%3A105.0)%20Gecko%2F20100101%20Firefox%2F105.0
Content-Type: application/json
X-Requested-With: XMLHttpRequest
X-JavaScript-User-Agent: google-api-javascript-client/1.1.0
X-Goog-AuthUser: 0
X-Origin: https://drive.google.com
X-Referer: https://drive.google.com
X-Goog-Encode-Response-If-Executable: base64
Content-Length: 683
Origin: https://content.googleapis.com
DNT: 1
Connection: keep-alive
Referer: https://content.googleapis.com/static/proxy.html?usegapi=1&jsh=m%3B%2F_%2Fscs%2Fabc-static%2F_%2Fjs%2Fk%3Dgapi.gapi.en.CzrNRWo3AFk.O%2Fd%3D1%2Frs%3DAHpOoo8xPbrtpW2bPUIcgU2adGqIEpV82Q%2Fm%3D__features__
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 204 No Content
etag: "vyGp6PvFo4RvsFtPoIWeCReyIC8"
cache-control: no-cache, no-store, max-age=0, must-revalidate
vary: Origin, X-Origin
expires: Mon, 01 Jan 1990 00:00:00 GMT
pragma: no-cache
date: Mon, 27 Nov 2023 08:07:54 GMT
content-type: text/html
server: ESF
content-length: 0
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

content.googleapis.com/drive/v2internal/viewerimpressions?key=AIzaSyC1eQ1xj69IdTMeii5r7brs3R90eck-m7k&alt=json

142.250.74.138

204 No Content

0 B

URL POST HTTP/3
content.googleapis.com/drive/v2internal/viewerimpressions?key=AIzaSyC1eQ1xj69IdTMeii5r7brs3R90eck-m7k&alt=json
IP
142.250.74.138:443
ASN
#15169 GOOGLE

Requested by
https://content.googleapis.com/static/proxy.html?usegapi=1&jsh=m%3B%2F_%2Fscs%2Fabc-static%2F_%2Fjs%2Fk%3Dgapi.gapi.en.CzrNRWo3AFk.O%2Fd%3D1%2Frs%3DAHpOoo8xPbrtpW2bPUIcgU2adGqIEpV82Q%2Fm%3D__features__#parent=https%3A%2F%2Fdrive.google.com&rpctoken=311140860
Certificate
IssuerGoogle Trust Services LLC
Subjectupload.video.google.com
FingerprintCC:96:E0:52:E0:9B:EA:A9:A0:F8:88:9A:90:20:11:47:61:00:3C:42
ValidityMon, 23 Oct 2023 11:24:07 GMT - Mon, 15 Jan 2024 11:24:06 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

POST /drive/v2internal/viewerimpressions?key=AIzaSyC1eQ1xj69IdTMeii5r7brs3R90eck-m7k&alt=json HTTP/1.1
Host: content.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-ClientDetails: appVersion=5.0%20(X11)&platform=Linux%20x86_64&userAgent=Mozilla%2F5.0%20(Windows%20NT%2010.0%3B%20Win64%3B%20x64%3B%20rv%3A105.0)%20Gecko%2F20100101%20Firefox%2F105.0
Content-Type: application/json
X-Requested-With: XMLHttpRequest
X-JavaScript-User-Agent: google-api-javascript-client/1.1.0
X-Goog-AuthUser: 0
X-Origin: https://drive.google.com
X-Referer: https://drive.google.com
X-Goog-Encode-Response-If-Executable: base64
Content-Length: 777
Origin: https://content.googleapis.com
DNT: 1
Connection: keep-alive
Referer: https://content.googleapis.com/static/proxy.html?usegapi=1&jsh=m%3B%2F_%2Fscs%2Fabc-static%2F_%2Fjs%2Fk%3Dgapi.gapi.en.CzrNRWo3AFk.O%2Fd%3D1%2Frs%3DAHpOoo8xPbrtpW2bPUIcgU2adGqIEpV82Q%2Fm%3D__features__
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 204 No Content
etag: "vyGp6PvFo4RvsFtPoIWeCReyIC8"
vary: Origin, X-Origin
date: Mon, 27 Nov 2023 08:07:54 GMT
cache-control: no-cache, no-store, max-age=0, must-revalidate
expires: Mon, 01 Jan 1990 00:00:00 GMT
pragma: no-cache
content-type: text/html
server: ESF
content-length: 0
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

content.googleapis.com/drive/v2internal/viewerimpressions?key=AIzaSyC1eQ1xj69IdTMeii5r7brs3R90eck-m7k&alt=json

142.250.74.138

204 No Content

0 B

URL POST HTTP/3
content.googleapis.com/drive/v2internal/viewerimpressions?key=AIzaSyC1eQ1xj69IdTMeii5r7brs3R90eck-m7k&alt=json
IP
142.250.74.138:443
ASN
#15169 GOOGLE

Requested by
https://content.googleapis.com/static/proxy.html?usegapi=1&jsh=m%3B%2F_%2Fscs%2Fabc-static%2F_%2Fjs%2Fk%3Dgapi.gapi.en.CzrNRWo3AFk.O%2Fd%3D1%2Frs%3DAHpOoo8xPbrtpW2bPUIcgU2adGqIEpV82Q%2Fm%3D__features__#parent=https%3A%2F%2Fdrive.google.com&rpctoken=311140860
Certificate
IssuerGoogle Trust Services LLC
Subjectupload.video.google.com
FingerprintCC:96:E0:52:E0:9B:EA:A9:A0:F8:88:9A:90:20:11:47:61:00:3C:42
ValidityMon, 23 Oct 2023 11:24:07 GMT - Mon, 15 Jan 2024 11:24:06 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

POST /drive/v2internal/viewerimpressions?key=AIzaSyC1eQ1xj69IdTMeii5r7brs3R90eck-m7k&alt=json HTTP/1.1
Host: content.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-ClientDetails: appVersion=5.0%20(X11)&platform=Linux%20x86_64&userAgent=Mozilla%2F5.0%20(Windows%20NT%2010.0%3B%20Win64%3B%20x64%3B%20rv%3A105.0)%20Gecko%2F20100101%20Firefox%2F105.0
Content-Type: application/json
X-Requested-With: XMLHttpRequest
X-JavaScript-User-Agent: google-api-javascript-client/1.1.0
X-Goog-AuthUser: 0
X-Origin: https://drive.google.com
X-Referer: https://drive.google.com
X-Goog-Encode-Response-If-Executable: base64
Content-Length: 777
Origin: https://content.googleapis.com
DNT: 1
Connection: keep-alive
Referer: https://content.googleapis.com/static/proxy.html?usegapi=1&jsh=m%3B%2F_%2Fscs%2Fabc-static%2F_%2Fjs%2Fk%3Dgapi.gapi.en.CzrNRWo3AFk.O%2Fd%3D1%2Frs%3DAHpOoo8xPbrtpW2bPUIcgU2adGqIEpV82Q%2Fm%3D__features__
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 204 No Content
etag: "vyGp6PvFo4RvsFtPoIWeCReyIC8"
date: Mon, 27 Nov 2023 08:07:54 GMT
cache-control: no-cache, no-store, max-age=0, must-revalidate
vary: Origin, X-Origin
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
content-type: text/html
server: ESF
content-length: 0
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

content.googleapis.com/static/proxy.html?usegapi=1&jsh=m%3B%2F_%2Fscs%2Fabc-static%2F_%2Fjs%2Fk%3Dgapi.gapi.en.CzrNRWo3AFk.O%2Fd%3D1%2Frs%3DAHpOoo8xPbrtpW2bPUIcgU2adGqIEpV82Q%2Fm%3D__features__

142.250.74.138

200 OK

382 B

URL GET HTTP/3
content.googleapis.com/static/proxy.html?usegapi=1&jsh=m%3B%2F_%2Fscs%2Fabc-static%2F_%2Fjs%2Fk%3Dgapi.gapi.en.CzrNRWo3AFk.O%2Fd%3D1%2Frs%3DAHpOoo8xPbrtpW2bPUIcgU2adGqIEpV82Q%2Fm%3D__features__
IP
142.250.74.138:443
ASN
#15169 GOOGLE

Requested by
https://drive.google.com/file/d/1ce78JWB3CyMnSoeBHAcrnmoNdfGSCYvc/preview#amp=1
Certificate
IssuerGoogle Trust Services LLC
Subjectupload.video.google.com
FingerprintCC:96:E0:52:E0:9B:EA:A9:A0:F8:88:9A:90:20:11:47:61:00:3C:42
ValidityMon, 23 Oct 2023 11:24:07 GMT - Mon, 15 Jan 2024 11:24:06 GMT

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (407), with no line terminators
Size
382 B (382 bytes)
Hash
05c0acdb5d81cdcb78b9302b4b399ca2
f9c10a5c1eb357f064e390a40268249a1d72470a
8a0380f4fc22b7bbc6019d2343a87b7bae2b517cc333f0ff1f5da1592a0b980e

HTTP Headers

GET /static/proxy.html?usegapi=1&jsh=m%3B%2F_%2Fscs%2Fabc-static%2F_%2Fjs%2Fk%3Dgapi.gapi.en.CzrNRWo3AFk.O%2Fd%3D1%2Frs%3DAHpOoo8xPbrtpW2bPUIcgU2adGqIEpV82Q%2Fm%3D__features__ HTTP/1.1
Host: content.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://drive.google.com/
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-type: text/html
content-security-policy: script-src 'nonce-vpK3tWh9AcYYl7AhhFUEVA' 'report-sample' 'strict-dynamic' 'unsafe-eval' 'unsafe-inline' http: https:; object-src 'none'; report-uri https://csp.withgoogle.com/csp/apiserving; base-uri 'none', require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apiserving
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="apiserving"
report-to: {"group":"apiserving","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apiserving"}]}
content-length: 273
date: Mon, 27 Nov 2023 08:07:53 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
last-modified: Tue, 14 Nov 2023 14:08:00 GMT
x-content-type-options: nosniff
cross-origin-embedder-policy: require-corp; report-to="apiserving"
content-encoding: gzip
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

fonts.googleapis.com/css?family=Roboto:100,100i,300,300i,400,400i,500,500i,700,700i,900,900i

142.250.74.138

200 OK

26 kB

URL GET HTTP/2
fonts.googleapis.com/css?family=Roboto:100,100i,300,300i,400,400i,500,500i,700,700i,900,900i
IP
142.250.74.138:443
ASN
#15169 GOOGLE

Requested by
https://belanjasantai.com/prpr/365prpr02bii
Certificate
IssuerGoogle Trust Services LLC
Subjectupload.video.google.com
FingerprintCC:96:E0:52:E0:9B:EA:A9:A0:F8:88:9A:90:20:11:47:61:00:3C:42
ValidityMon, 23 Oct 2023 11:24:07 GMT - Mon, 15 Jan 2024 11:24:06 GMT

File type
ASCII text
Size
26 kB (25610 bytes)
Hash
f5d1b487fac71a08cb759bd21a2428bf
1d81069808f53058288bb3035e8dbaa94c757e9d
2ece1ce88d0c0ee1733e95c7bab6fc3795dc0fefc8e09027c67302d621479b47

HTTP Headers

GET /css?family=Roboto:100,100i,300,300i,400,400i,500,500i,700,700i,900,900i HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://belanjasantai.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Mon, 27 Nov 2023 08:07:48 GMT
date: Mon, 27 Nov 2023 08:07:48 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

207.148.124.70/365prpr02bii?&se_referrer=&default_keyword=Garuda365%20%3E%20Slot%20Modal%20Recehan%2C%20Gacor%20Sampe%20Jadi%20Sultan!&&frm63f4c48911682=script63f4c48911683&_cid=c5717932-d669-6503-4e8f-dc7b23855275

0.0.0.0

0 B

URL GET
207.148.124.70/365prpr02bii?&se_referrer=&default_keyword=Garuda365%20%3E%20Slot%20Modal%20Recehan%2C%20Gacor%20Sampe%20Jadi%20Sultan!&&frm63f4c48911682=script63f4c48911683&_cid=c5717932-d669-6503-4e8f-dc7b23855275
IP
0.0.0.0:0
ASN
#0

Requested by
https://belanjasantai.com/prpr/365prpr02bii

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /365prpr02bii?&se_referrer=&default_keyword=Garuda365%20%3E%20Slot%20Modal%20Recehan%2C%20Gacor%20Sampe%20Jadi%20Sultan!&&frm63f4c48911682=script63f4c48911683&_cid=c5717932-d669-6503-4e8f-dc7b23855275 HTTP/1.1
Host: 207.148.124.70
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://belanjasantai.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

fonts.googleapis.com/css?family=Google+Sans:300,400,500,700

142.250.74.138

200 OK

22 kB

URL GET HTTP/3
fonts.googleapis.com/css?family=Google+Sans:300,400,500,700
IP
142.250.74.138:443
ASN
#15169 GOOGLE

Requested by
https://drive.google.com/file/d/1fBV0J62OChP4aw08EmOlD1OC1ttAbLNC/preview#amp=1
Certificate
IssuerGoogle Trust Services LLC
Subjectupload.video.google.com
FingerprintCC:96:E0:52:E0:9B:EA:A9:A0:F8:88:9A:90:20:11:47:61:00:3C:42
ValidityMon, 23 Oct 2023 11:24:07 GMT - Mon, 15 Jan 2024 11:24:06 GMT

File type
ASCII text
Size
22 kB (21563 bytes)
Hash
dacb56028e593b69b5600af613558ae5
33461b44be985314aaf48cdcaa16d325c87387b2
00e22bbe1af5c6e36ff1d538af8a881ce1f7d95352d1e268db31a1f357c832b5

HTTP Headers

GET /css?family=Google+Sans:300,400,500,700 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://drive.google.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Mon, 27 Nov 2023 08:07:51 GMT
date: Mon, 27 Nov 2023 08:07:51 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

accounts.google.com/v3/signin/identifier?continue=https%3A%2F%2Fdrive.google.com%2Fdrivesharing%2Fclientmodel%3Fid%3D1ce78JWB3CyMnSoeBHAcrnmoNdfGSCYvc%26foreignService%3Dtexmex%26authuser%3D0%26origin%3Dhttps%3A%2F%2Fdrive.google.com&followup=https%3A%2F%2Fdrive.google.com%2Fdrivesharing%2Fclientmodel%3Fid%3D1ce78JWB3CyMnSoeBHAcrnmoNdfGSCYvc%26foreignService%3Dtexmex%26authuser%3D0%26origin%3Dhttps%3A%2F%2Fdrive.google.com&ifkv=ASKXGp3hntlPrz6wuG0AqD9Z08pb22k7wcFC3kn3GgyytlYR3a5uMgQ39yNcX1r9tA12gE_eq5s8sQ&passive=1209600&flowName=GlifWebSignIn&flowEntry=ServiceLogin&dsh=S1409496218%3A1701072473607974&theme=glif

142.250.74.109

403 Forbidden

1.6 kB

URL GET HTTP/3
accounts.google.com/v3/signin/identifier?continue=https%3A%2F%2Fdrive.google.com%2Fdrivesharing%2Fclientmodel%3Fid%3D1ce78JWB3CyMnSoeBHAcrnmoNdfGSCYvc%26foreignService%3Dtexmex%26authuser%3D0%26origin%3Dhttps%3A%2F%2Fdrive.google.com&followup=https%3A%2F%2Fdrive.google.com%2Fdrivesharing%2Fclientmodel%3Fid%3D1ce78JWB3CyMnSoeBHAcrnmoNdfGSCYvc%26foreignService%3Dtexmex%26authuser%3D0%26origin%3Dhttps%3A%2F%2Fdrive.google.com&ifkv=ASKXGp3hntlPrz6wuG0AqD9Z08pb22k7wcFC3kn3GgyytlYR3a5uMgQ39yNcX1r9tA12gE_eq5s8sQ&passive=1209600&flowName=GlifWebSignIn&flowEntry=ServiceLogin&dsh=S1409496218%3A1701072473607974&theme=glif
IP
142.250.74.109:443
ASN
#15169 GOOGLE

Requested by
https://drive.google.com/file/d/1ce78JWB3CyMnSoeBHAcrnmoNdfGSCYvc/preview#amp=1
Certificate
IssuerGoogle Trust Services LLC
Subject*.google.com
Fingerprint4C:0D:17:8C:F1:30:7C:3A:6F:9B:8E:B4:83:0E:5C:BD:ED:17:3E:95
ValidityMon, 23 Oct 2023 11:18:24 GMT - Mon, 15 Jan 2024 11:18:23 GMT

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document, Unicode text, UTF-8 text, with very long lines (1652), with no line terminators
Size
1.6 kB (1648 bytes)
Hash
89bcf7474d2a48946712ab8d30dc53a0
765a5fbd499a35c3e36cddfdb32a426e574d0008
45e56003ad0988975b4a1642f114584c9768b2217089976ffe40452250323ade

HTTP Headers

GET /v3/signin/identifier?continue=https%3A%2F%2Fdrive.google.com%2Fdrivesharing%2Fclientmodel%3Fid%3D1ce78JWB3CyMnSoeBHAcrnmoNdfGSCYvc%26foreignService%3Dtexmex%26authuser%3D0%26origin%3Dhttps%3A%2F%2Fdrive.google.com&followup=https%3A%2F%2Fdrive.google.com%2Fdrivesharing%2Fclientmodel%3Fid%3D1ce78JWB3CyMnSoeBHAcrnmoNdfGSCYvc%26foreignService%3Dtexmex%26authuser%3D0%26origin%3Dhttps%3A%2F%2Fdrive.google.com&ifkv=ASKXGp3hntlPrz6wuG0AqD9Z08pb22k7wcFC3kn3GgyytlYR3a5uMgQ39yNcX1r9tA12gE_eq5s8sQ&passive=1209600&flowName=GlifWebSignIn&flowEntry=ServiceLogin&dsh=S1409496218%3A1701072473607974&theme=glif HTTP/1.1
Host: accounts.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://drive.google.com/
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 403 Forbidden
content-type: text/html; charset=utf-8
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Mon, 27 Nov 2023 08:07:53 GMT
vary: Sec-Fetch-Dest, Sec-Fetch-Mode, Sec-Fetch-Site
strict-transport-security: max-age=31536000; includeSubDomains
content-security-policy: script-src 'nonce-S83n9uYtA2YJlHvHdQVGzg' 'unsafe-inline';object-src 'none';base-uri 'self';report-uri /v3/signin/_/AccountsSignInUi/cspreport;worker-src 'self', script-src 'unsafe-inline' 'self' https://apis.google.com https://ssl.gstatic.com https://www.google.com https://www.googletagmanager.com https://www.gstatic.com https://www.google-analytics.com;report-uri /v3/signin/_/AccountsSignInUi/cspreport/allowlist, require-trusted-types-for 'script';report-uri /v3/signin/_/AccountsSignInUi/cspreport
cross-origin-opener-policy-report-only: same-origin; report-to="AccountsSignInUi"
report-to: {"group":"AccountsSignInUi","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/AccountsSignInUi"}]}
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Model, Sec-CH-UA-WoW64, Sec-CH-UA-Form-Factor, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
permissions-policy: ch-ua-arch=*, ch-ua-bitness=*, ch-ua-full-version=*, ch-ua-full-version-list=*, ch-ua-model=*, ch-ua-wow64=*, ch-ua-form-factor=*, ch-ua-platform=*, ch-ua-platform-version=*
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

drive.google.com/file/d/1ce78JWB3CyMnSoeBHAcrnmoNdfGSCYvc/preview

216.58.207.206

200 OK

71 kB

URL GET HTTP/2
drive.google.com/file/d/1ce78JWB3CyMnSoeBHAcrnmoNdfGSCYvc/preview
IP
216.58.207.206:443
ASN
#15169 GOOGLE

Requested by
https://belanjasantai.com/prpr/365prpr02bii
Certificate
IssuerGoogle Trust Services LLC
Subject*.google.com
Fingerprint4C:0D:17:8C:F1:30:7C:3A:6F:9B:8E:B4:83:0E:5C:BD:ED:17:3E:95
ValidityMon, 23 Oct 2023 11:18:24 GMT - Mon, 15 Jan 2024 11:18:23 GMT

File type

Size
71 kB (71136 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /file/d/1ce78JWB3CyMnSoeBHAcrnmoNdfGSCYvc/preview HTTP/1.1
Host: drive.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://belanjasantai.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: text/html; charset=utf-8
x-robots-tag: noindex, nofollow, nosnippet
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Mon, 27 Nov 2023 08:07:51 GMT
content-encoding: gzip
p3p: CP="This is not a P3P policy! See g.co/p3phelp for more info."
content-security-policy: require-trusted-types-for 'script';report-uri https://csp.withgoogle.com/csp/docs-tt, script-src 'report-sample' 'nonce-Jvhxzf9gth0c273v8Bq6AQ' 'unsafe-inline' 'unsafe-eval' 'strict-dynamic' https: http:;object-src 'none';base-uri 'self';report-uri https://csp.withgoogle.com/csp/viewer/
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
server: GSE
set-cookie: NID=511=dWBEat59qZl-eEREzCI7DUYj81iG0r_FR82VwV9XJowMqLpE3qiLehBg3_JBny7wbb4LNt5uxJ4q5u3dfYfZSA7AfJ1BiozGURWDrKY3EUg7i52vjFps7zkZVPd7p7kHyQwPc58RM9GiQOm_4jEZ_J1PCntuYQTe1_T7KHdPjOU; expires=Tue, 28-May-2024 08:07:51 GMT; path=/; domain=.google.com; Secure; HttpOnly; SameSite=none
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

belanjasantai.com/prpr/assets/img/fav.ico

172.67.180.166

200 OK

4.3 kB

URL GET HTTP/3
belanjasantai.com/prpr/assets/img/fav.ico
IP
172.67.180.166:443
ASN
#13335 CLOUDFLARENET

Requested by
https://belanjasantai.com/prpr/365prpr02bii
Certificate
IssuerGoogle Trust Services LLC
Subjectbelanjasantai.com
Fingerprint93:D8:03:9E:28:C1:21:A2:65:73:EB:41:68:12:3E:5E:17:51:B4:F1
ValidityMon, 23 Oct 2023 07:28:18 GMT - Sun, 21 Jan 2024 07:28:17 GMT

File type
MS Windows icon resource - 1 icon, 32x32, 32 bits/pixel\012- data
Size
4.3 kB (4286 bytes)
Hash
4a1361b214584bf313485e32675710d3
71aaa60edd84acbf97a2e3bd30580f11ae072a55
1cbb6f0432ac3a737414232568238c4d69dfc5019fdc1fe616ebf0f5e79e249d

HTTP Headers

GET /prpr/assets/img/fav.ico HTTP/1.1
Host: belanjasantai.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://belanjasantai.com/prpr/365prpr02bii
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Mon, 27 Nov 2023 08:07:51 GMT
content-type: image/x-icon
last-modified: Sat, 24 Dec 2022 09:47:16 GMT
vary: Accept-Encoding
etag: W/"63a6caa4-10be"
access-control-allow-origin: *
cache-control: public, max-age=2592000
cf-cache-status: HIT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=I%2BJkJh5f8q%2FDnCzMOsuzHR65rDhhuYYgAZLlQvLdd%2BS0Dq5U%2F8QMXuv76HNmZLPNdLiLqA4SWozR%2BHtCdNnice7ZgqnlRI%2FeOqeKhla8ekF1TzH4M42vBkyK94l09JE%2FsyeIuQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 82c8e142ff79568b-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

content.googleapis.com/static/proxy.html?usegapi=1&jsh=m%3B%2F_%2Fscs%2Fabc-static%2F_%2Fjs%2Fk%3Dgapi.gapi.en.CzrNRWo3AFk.O%2Fd%3D1%2Frs%3DAHpOoo8xPbrtpW2bPUIcgU2adGqIEpV82Q%2Fm%3D__features__

142.250.74.138

200 OK

382 B

URL GET HTTP/3
content.googleapis.com/static/proxy.html?usegapi=1&jsh=m%3B%2F_%2Fscs%2Fabc-static%2F_%2Fjs%2Fk%3Dgapi.gapi.en.CzrNRWo3AFk.O%2Fd%3D1%2Frs%3DAHpOoo8xPbrtpW2bPUIcgU2adGqIEpV82Q%2Fm%3D__features__
IP
142.250.74.138:443
ASN
#15169 GOOGLE

Requested by
https://drive.google.com/file/d/1fBV0J62OChP4aw08EmOlD1OC1ttAbLNC/preview#amp=1
Certificate
IssuerGoogle Trust Services LLC
Subjectupload.video.google.com
FingerprintCC:96:E0:52:E0:9B:EA:A9:A0:F8:88:9A:90:20:11:47:61:00:3C:42
ValidityMon, 23 Oct 2023 11:24:07 GMT - Mon, 15 Jan 2024 11:24:06 GMT

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (407), with no line terminators
Size
382 B (382 bytes)
Hash
6ad8359723c98c4c0e2999151da36d20
4a21156144612094fcca6c6d6771d97f192953fb
9576bd66408dd74d81541157e8e8f0bafd8b606dea859a304ca473f6e26fd883

HTTP Headers

GET /static/proxy.html?usegapi=1&jsh=m%3B%2F_%2Fscs%2Fabc-static%2F_%2Fjs%2Fk%3Dgapi.gapi.en.CzrNRWo3AFk.O%2Fd%3D1%2Frs%3DAHpOoo8xPbrtpW2bPUIcgU2adGqIEpV82Q%2Fm%3D__features__ HTTP/1.1
Host: content.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://drive.google.com/
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-type: text/html
content-security-policy: script-src 'nonce-edR3InIK2P0fzx9na46MMA' 'report-sample' 'strict-dynamic' 'unsafe-eval' 'unsafe-inline' http: https:; object-src 'none'; report-uri https://csp.withgoogle.com/csp/apiserving; base-uri 'none', require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apiserving
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="apiserving"
report-to: {"group":"apiserving","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apiserving"}]}
content-length: 274
date: Mon, 27 Nov 2023 08:07:53 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
last-modified: Tue, 14 Nov 2023 14:08:00 GMT
x-content-type-options: nosniff
cross-origin-embedder-policy: require-corp; report-to="apiserving"
content-encoding: gzip
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

drive.google.com/file/d/1fBV0J62OChP4aw08EmOlD1OC1ttAbLNC/preview

216.58.207.206

200 OK

71 kB

URL GET HTTP/2
drive.google.com/file/d/1fBV0J62OChP4aw08EmOlD1OC1ttAbLNC/preview
IP
216.58.207.206:443
ASN
#15169 GOOGLE

Requested by
https://belanjasantai.com/prpr/365prpr02bii
Certificate
IssuerGoogle Trust Services LLC
Subject*.google.com
Fingerprint4C:0D:17:8C:F1:30:7C:3A:6F:9B:8E:B4:83:0E:5C:BD:ED:17:3E:95
ValidityMon, 23 Oct 2023 11:18:24 GMT - Mon, 15 Jan 2024 11:18:23 GMT

File type

Size
71 kB (71162 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /file/d/1fBV0J62OChP4aw08EmOlD1OC1ttAbLNC/preview HTTP/1.1
Host: drive.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://belanjasantai.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: text/html; charset=utf-8
x-robots-tag: noindex, nofollow, nosnippet
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Mon, 27 Nov 2023 08:07:51 GMT
content-encoding: gzip
p3p: CP="This is not a P3P policy! See g.co/p3phelp for more info."
content-security-policy: require-trusted-types-for 'script';report-uri https://csp.withgoogle.com/csp/docs-tt, script-src 'report-sample' 'nonce-D4KqqcJJFNE9KsDcxm2VvA' 'unsafe-inline' 'unsafe-eval' 'strict-dynamic' https: http:;object-src 'none';base-uri 'self';report-uri https://csp.withgoogle.com/csp/viewer/
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
server: GSE
set-cookie: NID=511=ttQVZcEBl589daZkNw1ATXehOcROZxYsqG_JExD6C2bPOl1zS1ld-jdYrkPbiJsUW0IN7h1LlqZraxYYubV_zT06Uyn-yxnMhWV313ylTk0rjC4IjLEA11Z0lpI50RSrpqWUpnEvKIAqB4V7hQdcu2EAhmjvniUVxoUYpN4LpjQ; expires=Tue, 28-May-2024 08:07:51 GMT; path=/; domain=.google.com; Secure; HttpOnly; SameSite=none
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

cdn.ampproject.org/v0/amp-carousel-0.1.js

142.250.74.161

200 OK

39 kB

URL GET HTTP/2
cdn.ampproject.org/v0/amp-carousel-0.1.js
IP
142.250.74.161:443
ASN
#15169 GOOGLE

Requested by
https://belanjasantai.com/prpr/365prpr02bii
Certificate
IssuerGoogle Trust Services LLC
Subjectmisc-sni.google.com
FingerprintE4:33:2C:42:1C:4F:E6:01:93:AD:F1:5F:70:4D:33:1F:3B:5F:AB:DE
ValidityMon, 23 Oct 2023 11:20:02 GMT - Mon, 15 Jan 2024 11:20:01 GMT

File type

Size
39 kB (38758 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /v0/amp-carousel-0.1.js HTTP/1.1
Host: cdn.ampproject.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://belanjasantai.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: br
content-type: text/javascript; charset=UTF-8
access-control-allow-origin: *
content-security-policy: default-src * blob: data:; script-src blob: https://cdn.ampproject.org/lts/ https://cdn.ampproject.org/rtv/ https://cdn.ampproject.org/sw/ https://cdn.ampproject.org/v0.js https://cdn.ampproject.org/v0.mjs https://cdn.ampproject.org/v0/ https://cdn.ampproject.org/viewer/; object-src 'none'; style-src 'unsafe-inline' https://cdn.ampproject.org/rtv/ https://cdn.materialdesignicons.com https://cdnjs.cloudflare.com/ajax/libs/font-awesome/ https://cloud.typography.com https://fast.fonts.net https://fonts.googleapis.com https://maxcdn.bootstrapcdn.com https://p.typekit.net https://pro.fontawesome.com https://use.fontawesome.com https://use.typekit.net; report-uri https://csp.withgoogle.com/csp/amp
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="amphtml-china-available"
report-to: {"group":"amphtml-china-available","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/amphtml-china-available"}]}
timing-allow-origin: *
content-length: 11506
date: Mon, 27 Nov 2023 08:07:48 GMT
expires: Mon, 27 Nov 2023 08:07:48 GMT
cache-control: private, max-age=604800, stale-while-revalidate=604800
etag: "433f67e9775eb39f"
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

Report Overview

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

Public InfoSec YARA rules

OpenPhish

PhishTank

mnemonic secure dns

Quad9 DNS

ThreatFox

JavaScript (32)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by