| 9hi4ady3iw.page.link/29hQ/?v302 | 142.250.74.129 | 302 Found | 0 B |
URL User Request GET HTTP/29hi4ady3iw.page.link/29hQ/?v302 IP142.250.74.129:443
CertificateIssuerGoogle Trust Services LLC Subject*.page.link Fingerprint74:E0:51:7C:82:1A:77:48:01:8B:E1:E0:14:F9:BB:A2:32:5B:87:2B ValidityMon, 04 Mar 2024 07:27:33 GMT - Mon, 27 May 2024 07:27:32 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /29hQ/?v302 HTTP/1.1
Host: 9hi4ady3iw.page.link
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 302 Found
content-type: application/binary
vary: Sec-Fetch-Dest, Sec-Fetch-Mode, Sec-Fetch-Site
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Thu, 18 Apr 2024 13:34:24 GMT
location: http://candymtch.site/
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Model, Sec-CH-UA-WoW64, Sec-CH-UA-Form-Factor, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
cross-origin-resource-policy: same-site
permissions-policy: ch-ua-arch=*, ch-ua-bitness=*, ch-ua-full-version=*, ch-ua-full-version-list=*, ch-ua-model=*, ch-ua-wow64=*, ch-ua-form-factor=*, ch-ua-platform=*, ch-ua-platform-version=*
cross-origin-opener-policy: unsafe-none
content-security-policy: require-trusted-types-for 'script';report-uri /_/DurableDeepLinkUi/cspreport, script-src 'nonce-xsI2v1mPwt_9LFbwIanOOA' 'unsafe-inline';object-src 'none';base-uri 'self';report-uri /_/DurableDeepLinkUi/cspreport;worker-src 'self', script-src 'unsafe-inline' 'self' https://apis.google.com https://ssl.gstatic.com https://www.google.com https://www.googletagmanager.com https://www.gstatic.com https://www.google-analytics.com https://www.googleapis.com/appsmarket/v2/installedApps/;report-uri /_/DurableDeepLinkUi/cspreport/allowlist
server: ESF
content-length: 0
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| | 162.255.119.48 | 302 Found | 73 B |
URL User Request GET HTTP/1.1IP162.255.119.48:80
File typeHTML document, ASCII text Hashcbbedd5bf3dd3b92b5884d9994bdc2d3 6536bd804c044899c59397e0895eb6a665d749a9 e3504a9e1623017430a67478d180af39cc5a293d13e9b4bb134932fde6accc2b
Analyzer | Verdict | Alert | OpenPhish | phishing | Generic/Spear Phishing |
NIDS | Severity | Alert | suricata | low | ET INFO Namecheap URL Forward |
GET / HTTP/1.1
Host: candymtch.site
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 302 Found
Date: Thu, 18 Apr 2024 13:34:25 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 73
Connection: keep-alive
Location: https://sites.google.com/view/rkhm4rdpyb5pshsked7f
X-Served-By: Namecheap URL Forward
Server: namecheap-nginx
|
|
| www.gstatic.com/_/atari/_/ss/k=atari.vw.D6AAO3dcVYU.L.F4.O/am=wA/d=1/rs=AGEqA5nPO1Y43hCeEySaNGVABl1uPyCCww | 142.250.74.131 | 200 OK | 168 kB |
URL GET HTTP/2www.gstatic.com/_/atari/_/ss/k=atari.vw.D6AAO3dcVYU.L.F4.O/am=wA/d=1/rs=AGEqA5nPO1Y43hCeEySaNGVABl1uPyCCww IP142.250.74.131:443
Requested byhttps://sites.google.com/view/rkhm4rdpyb5pshsked7f CertificateIssuerGoogle Trust Services LLC Subject*.gstatic.com Fingerprint8F:81:43:71:C4:F3:8C:FA:6D:EC:B4:5E:1F:58:71:AA:48:42:0E:E9 ValidityMon, 04 Mar 2024 07:16:39 GMT - Mon, 27 May 2024 07:16:38 GMT
File typeASCII text, with very long lines (65536), with no line terminators Size168 kB (168052 bytes) Hash58f98182952ef409eb6f9dfb87398dd8 bc5996c93f98081fafed488c5e655ff0d0e8a86b 8e33c283f51c80b0a4e520bb2626d1569cdda310fd7e0febb0550ed5b185d542
GET /_/atari/_/ss/k=atari.vw.D6AAO3dcVYU.L.F4.O/am=wA/d=1/rs=AGEqA5nPO1Y43hCeEySaNGVABl1uPyCCww HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://sites.google.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
content-encoding: gzip
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="apps-sites"
report-to: {"group":"apps-sites","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-sites"}]}
content-length: 168052
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 16 Apr 2024 06:44:14 GMT
expires: Wed, 16 Apr 2025 06:44:14 GMT
cache-control: public, max-age=31536000
last-modified: Tue, 09 Apr 2024 09:24:59 GMT
content-type: text/css; charset=UTF-8
vary: Accept-Encoding
age: 197412
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| apis.google.com/js/client.js?onload=gapiLoaded | 142.250.74.110 | 200 OK | 5.9 kB |
URL GET HTTP/2apis.google.com/js/client.js?onload=gapiLoaded IP142.250.74.110:443
Requested byhttps://sites.google.com/view/rkhm4rdpyb5pshsked7f CertificateIssuerGoogle Trust Services LLC Subject*.apis.google.com FingerprintE3:82:77:FB:12:E7:1E:09:41:8D:12:01:82:E8:DB:CC:47:EB:3F:57 ValidityMon, 04 Mar 2024 07:19:24 GMT - Mon, 27 May 2024 07:19:23 GMT
File typeJavaScript source, ASCII text, with very long lines (2054) Hash542d48150899811653a73f6a4f3f63d9 c641ecce1618c634bf9a24232f552bd5c86487f7 0d0ea39e70ff6c98a4cc12ccc1679db8f39f61565a67efa2ccaea810d62d0d2c
GET /js/client.js?onload=gapiLoaded HTTP/1.1
Host: apis.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://sites.google.com/
DNT: 1
Connection: keep-alive
Cookie: SOCS=CAESHAgBEhJnd3NfMjAyMjA5MjktMF9SQzEaAnJvIAEaBgiAkvOZBg; NID=513=NWrAcVUzlgCj1-F-N1t4z7Rs06rmjS8SSVsvWY-ppXkTWgRB9d0QbG42k0Qv5r-OV-6NpPtG3ZoN8x-0UjX8UOi0oJaMw9DYGEEVP8oiJSf_TSNwV99_B_886X-OHZVp-fZurqH9MVHuBFpNPSkzP3MiVL6xeEjEcZb0E0AiV7U
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-type: text/javascript
access-control-allow-origin: *
content-security-policy: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/gapi-team
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="gapi-team"
report-to: {"group":"gapi-team","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/gapi-team"}]}
timing-allow-origin: *
content-length: 5905
date: Thu, 18 Apr 2024 13:34:26 GMT
expires: Thu, 18 Apr 2024 13:34:26 GMT
cache-control: private, max-age=1800, stale-while-revalidate=1800
etag: "e892fca8f87fdf38"
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| apis.google.com/_/scs/abc-static/_/js/k=gapi.lb.en.5BIk7BglYEE.O/m=client/rt=j/sv=1/d=1/ed=1/am=AAAC/rs=AHpOoo9V8V9Op_7rn4BCy9pIOBNUyU2IjA/cb=gapi.loaded_0?le=scs | 142.250.74.110 | 200 OK | 111 kB |
URL GET HTTP/2apis.google.com/_/scs/abc-static/_/js/k=gapi.lb.en.5BIk7BglYEE.O/m=client/rt=j/sv=1/d=1/ed=1/am=AAAC/rs=AHpOoo9V8V9Op_7rn4BCy9pIOBNUyU2IjA/cb=gapi.loaded_0?le=scs IP142.250.74.110:443
Requested byhttps://sites.google.com/view/rkhm4rdpyb5pshsked7f CertificateIssuerGoogle Trust Services LLC Subject*.apis.google.com FingerprintE3:82:77:FB:12:E7:1E:09:41:8D:12:01:82:E8:DB:CC:47:EB:3F:57 ValidityMon, 04 Mar 2024 07:19:24 GMT - Mon, 27 May 2024 07:19:23 GMT
File typeJavaScript source, ASCII text, with very long lines (2124) Size111 kB (111004 bytes) Hash9d8cace6dabbc78e36c4aba49c7125b1 797a2f633272abdbf1d88054fbfb3f42adc1415f a4667786f4a20672e060bb8511e66d795c74b5cf705cd316f898cd2de4f68b43
GET /_/scs/abc-static/_/js/k=gapi.lb.en.5BIk7BglYEE.O/m=client/rt=j/sv=1/d=1/ed=1/am=AAAC/rs=AHpOoo9V8V9Op_7rn4BCy9pIOBNUyU2IjA/cb=gapi.loaded_0?le=scs HTTP/1.1
Host: apis.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://sites.google.com/
DNT: 1
Connection: keep-alive
Cookie: SOCS=CAESHAgBEhJnd3NfMjAyMjA5MjktMF9SQzEaAnJvIAEaBgiAkvOZBg; NID=513=NWrAcVUzlgCj1-F-N1t4z7Rs06rmjS8SSVsvWY-ppXkTWgRB9d0QbG42k0Qv5r-OV-6NpPtG3ZoN8x-0UjX8UOi0oJaMw9DYGEEVP8oiJSf_TSNwV99_B_886X-OHZVp-fZurqH9MVHuBFpNPSkzP3MiVL6xeEjEcZb0E0AiV7U
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/social-frontend-mpm-access
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="social-frontend-mpm-access"
report-to: {"group":"social-frontend-mpm-access","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/social-frontend-mpm-access"}]}
content-length: 111004
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 11 Apr 2024 17:06:23 GMT
expires: Fri, 11 Apr 2025 17:06:23 GMT
cache-control: public, max-age=31536000
last-modified: Sun, 31 Mar 2024 15:20:31 GMT
content-type: text/javascript; charset=UTF-8
vary: Accept-Encoding
age: 592083
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| www.gstatic.com/_/atari/_/js/k=atari.vw.en_US.02B9lri3Rts.O/am=wA/d=1/rs=AGEqA5lfNdVOuUqB0NUWAdbgpPXhssj0VA/m=view | 142.250.74.131 | 200 OK | 215 kB |
URL GET HTTP/3www.gstatic.com/_/atari/_/js/k=atari.vw.en_US.02B9lri3Rts.O/am=wA/d=1/rs=AGEqA5lfNdVOuUqB0NUWAdbgpPXhssj0VA/m=view IP142.250.74.131:443
Requested byhttps://sites.google.com/view/rkhm4rdpyb5pshsked7f CertificateIssuerGoogle Trust Services LLC Subject*.gstatic.com Fingerprint8F:81:43:71:C4:F3:8C:FA:6D:EC:B4:5E:1F:58:71:AA:48:42:0E:E9 ValidityMon, 04 Mar 2024 07:16:39 GMT - Mon, 27 May 2024 07:16:38 GMT
File typeJavaScript source, ASCII text, with very long lines (546) Size215 kB (214786 bytes) Hashd7b699f0f427e5a578ae0a91b82af044 bed23207d57286678c3d359b32d4cf0f54eddddf ea061f28b0663f46f17dd73e80f4c677d29dfdc62412f9af4f7a3ed33ba781f5
GET /_/atari/_/js/k=atari.vw.en_US.02B9lri3Rts.O/am=wA/d=1/rs=AGEqA5lfNdVOuUqB0NUWAdbgpPXhssj0VA/m=view HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://sites.google.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
accept-ranges: bytes
content-encoding: gzip
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="apps-sites"
report-to: {"group":"apps-sites","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-sites"}]}
content-length: 214786
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 16 Apr 2024 06:43:50 GMT
expires: Wed, 16 Apr 2025 06:43:50 GMT
cache-control: public, max-age=31536000
last-modified: Tue, 09 Apr 2024 05:16:33 GMT
content-type: text/javascript; charset=UTF-8
vary: Accept-Encoding
age: 197436
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| fonts.gstatic.com/s/googlesans/v58/4UasrENHsxJlGDuGo1OIlJfC6l_24rlCK1Yo_Iqcsih3SAyH6cAwhX9RPjIUvQ.woff2 | 216.58.207.227 | 200 OK | 34 kB |
URL GET HTTP/2fonts.gstatic.com/s/googlesans/v58/4UasrENHsxJlGDuGo1OIlJfC6l_24rlCK1Yo_Iqcsih3SAyH6cAwhX9RPjIUvQ.woff2 IP216.58.207.227:443
Requested byhttps://sites.google.com/view/rkhm4rdpyb5pshsked7f CertificateIssuerGoogle Trust Services LLC Subject*.gstatic.com Fingerprint8F:81:43:71:C4:F3:8C:FA:6D:EC:B4:5E:1F:58:71:AA:48:42:0E:E9 ValidityMon, 04 Mar 2024 07:16:39 GMT - Mon, 27 May 2024 07:16:38 GMT
File typeWeb Open Font Format (Version 2), TrueType, length 34108, version 1.0 Hashc15d33a9508923be839d315a999ab9c7 d17f6e786a1464e13d4ec8e842f4eb121b103842 65c99d3b9f1a1b905046e30d00a97f2d4d605e565c32917e7a89a35926e04b98
GET /s/googlesans/v58/4UasrENHsxJlGDuGo1OIlJfC6l_24rlCK1Yo_Iqcsih3SAyH6cAwhX9RPjIUvQ.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://sites.google.com
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 34108
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 16 Apr 2024 01:58:19 GMT
expires: Wed, 16 Apr 2025 01:58:19 GMT
cache-control: public, max-age=31536000
age: 214567
last-modified: Tue, 23 May 2023 16:35:55 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmEU9fBBc4.woff2 | 216.58.207.227 | 200 OK | 16 kB |
URL GET HTTP/2fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmEU9fBBc4.woff2 IP216.58.207.227:443
Requested byhttps://sites.google.com/view/rkhm4rdpyb5pshsked7f CertificateIssuerGoogle Trust Services LLC Subject*.gstatic.com Fingerprint8F:81:43:71:C4:F3:8C:FA:6D:EC:B4:5E:1F:58:71:AA:48:42:0E:E9 ValidityMon, 04 Mar 2024 07:16:39 GMT - Mon, 27 May 2024 07:16:38 GMT
File typeWeb Open Font Format (Version 2), TrueType, length 15920, version 1.0 Hash3a44e06eb954b96aa043227f3534189d 23cef6993ddb2b2979e8e7647fc3763694e2ba7d b019538234514166ec7665359d097403358f8a4c991901983922fb4d56989f1e
GET /s/roboto/v30/KFOlCnqEu92Fr1MmEU9fBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://sites.google.com
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15920
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 18 Apr 2024 13:20:56 GMT
expires: Fri, 18 Apr 2025 13:20:56 GMT
cache-control: public, max-age=31536000
age: 810
last-modified: Wed, 11 May 2022 19:24:45 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| fonts.gstatic.com/s/bitter/v33/rax8HiqOu8IVPmn7f4xp.woff2 | 216.58.207.227 | 200 OK | 33 kB |
URL GET HTTP/2fonts.gstatic.com/s/bitter/v33/rax8HiqOu8IVPmn7f4xp.woff2 IP216.58.207.227:443
Requested byhttps://sites.google.com/view/rkhm4rdpyb5pshsked7f CertificateIssuerGoogle Trust Services LLC Subject*.gstatic.com Fingerprint8F:81:43:71:C4:F3:8C:FA:6D:EC:B4:5E:1F:58:71:AA:48:42:0E:E9 ValidityMon, 04 Mar 2024 07:16:39 GMT - Mon, 27 May 2024 07:16:38 GMT
File typeWeb Open Font Format (Version 2), TrueType, length 33148, version 1.0 Hashde781f4524b6f5b640118dbf0a656028 7a9de8ddd6da0ab6ffbf2cb165566a8e9faf40b1 2321d29475d47bd4d70a263c8f59d12ebad686e96aef5ac0a9e9e271ec0dcc47
GET /s/bitter/v33/rax8HiqOu8IVPmn7f4xp.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://sites.google.com
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 33148
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 18 Apr 2024 02:33:06 GMT
expires: Fri, 18 Apr 2025 02:33:06 GMT
cache-control: public, max-age=31536000
age: 39680
last-modified: Wed, 13 Sep 2023 23:16:24 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| lh4.googleusercontent.com/yApwG6DFYEusM9p1WUTWdSVgvDrVzfJT1TcGmQkAQXWQToArpI4qYOO2KMPDeGHREBhahLrgTtEDs-RT56y6ERs=w16383 | 142.250.74.97 | 200 OK | 97 kB |
URL GET HTTP/2lh4.googleusercontent.com/yApwG6DFYEusM9p1WUTWdSVgvDrVzfJT1TcGmQkAQXWQToArpI4qYOO2KMPDeGHREBhahLrgTtEDs-RT56y6ERs=w16383 IP142.250.74.97:443
Requested byhttps://sites.google.com/view/rkhm4rdpyb5pshsked7f CertificateIssuerGoogle Trust Services LLC Subject*.googleusercontent.com FingerprintE0:0C:38:A4:4D:4F:CB:42:05:30:9A:C4:60:B3:64:3F:EF:43:D1:2F ValidityMon, 04 Mar 2024 07:14:32 GMT - Mon, 27 May 2024 07:14:31 GMT
File typePNG image data, 2048 x 2048, 8-bit/color RGBA, non-interlaced Hash41a250e1852c8d71329e0dbecd12838e c7423cda1a0392b8cc18ae25a634df64e597202d 92bb829c6b2d173f181c05a34d819d3b0eb0adbf5a9f1552ee922ce301965a33
GET /yApwG6DFYEusM9p1WUTWdSVgvDrVzfJT1TcGmQkAQXWQToArpI4qYOO2KMPDeGHREBhahLrgTtEDs-RT56y6ERs=w16383 HTTP/1.1
Host: lh4.googleusercontent.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://sites.google.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: image/png
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
access-control-expose-headers: Content-Length
etag: "v1"
expires: Fri, 19 Apr 2024 13:34:26 GMT
cache-control: public, max-age=86400, no-transform
content-disposition: inline;filename="wPJc8ZETWhy4R6jaKuCVvqbLBgz.png"
x-content-type-options: nosniff
date: Thu, 18 Apr 2024 13:34:26 GMT
server: fife
content-length: 96864
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| fonts.gstatic.com/s/montserrat/v26/JTUSjIg1_i6t8kCHKm459Wlhyw.woff2 | 216.58.207.227 | 200 OK | 33 kB |
URL GET HTTP/2fonts.gstatic.com/s/montserrat/v26/JTUSjIg1_i6t8kCHKm459Wlhyw.woff2 IP216.58.207.227:443
Requested byhttps://sites.google.com/view/rkhm4rdpyb5pshsked7f CertificateIssuerGoogle Trust Services LLC Subject*.gstatic.com Fingerprint8F:81:43:71:C4:F3:8C:FA:6D:EC:B4:5E:1F:58:71:AA:48:42:0E:E9 ValidityMon, 04 Mar 2024 07:16:39 GMT - Mon, 27 May 2024 07:16:38 GMT
File typeWeb Open Font Format (Version 2), TrueType, length 33092, version 1.0 Hash057478083c1d55ea0c2182b24f6dd72f caf557cd276a76992084efc4c8857b66791a6b7f bb2f90081933c0f2475883ca2c5cfee94e96d7314a09433fffc42e37f4cffd3b
GET /s/montserrat/v26/JTUSjIg1_i6t8kCHKm459Wlhyw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://sites.google.com
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 33092
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 18 Apr 2024 02:38:02 GMT
expires: Fri, 18 Apr 2025 02:38:02 GMT
cache-control: public, max-age=31536000
age: 39384
last-modified: Wed, 13 Sep 2023 22:51:58 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2 | 216.58.207.227 | 200 OK | 16 kB |
URL GET HTTP/2fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2 IP216.58.207.227:443
Requested byhttps://sites.google.com/view/rkhm4rdpyb5pshsked7f CertificateIssuerGoogle Trust Services LLC Subject*.gstatic.com Fingerprint8F:81:43:71:C4:F3:8C:FA:6D:EC:B4:5E:1F:58:71:AA:48:42:0E:E9 ValidityMon, 04 Mar 2024 07:16:39 GMT - Mon, 27 May 2024 07:16:38 GMT
File typeWeb Open Font Format (Version 2), TrueType, length 15744, version 1.0 Hash15d9f621c3bd1599f0169dcf0bd5e63e 7ca9c5967f3bb8bffeab24b639b49c1e7d03fa52 f6734f8177112c0839b961f96d813fcb189d81b60e96c33278c1983b6f419615
GET /s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://sites.google.com
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15744
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 16 Apr 2024 16:27:38 GMT
expires: Wed, 16 Apr 2025 16:27:38 GMT
cache-control: public, max-age=31536000
age: 162408
last-modified: Wed, 11 May 2022 19:24:48 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| www.gstatic.com/_/atari/_/js/k=atari.vw.en_US.02B9lri3Rts.O/am=wA/d=0/rs=AGEqA5lfNdVOuUqB0NUWAdbgpPXhssj0VA/m=sy1b,sy1c,sy1a,FoQBg | 142.250.74.131 | 200 OK | 13 kB |
URL GET HTTP/3www.gstatic.com/_/atari/_/js/k=atari.vw.en_US.02B9lri3Rts.O/am=wA/d=0/rs=AGEqA5lfNdVOuUqB0NUWAdbgpPXhssj0VA/m=sy1b,sy1c,sy1a,FoQBg IP142.250.74.131:443
Requested byhttps://sites.google.com/view/rkhm4rdpyb5pshsked7f CertificateIssuerGoogle Trust Services LLC Subject*.gstatic.com Fingerprint8F:81:43:71:C4:F3:8C:FA:6D:EC:B4:5E:1F:58:71:AA:48:42:0E:E9 ValidityMon, 04 Mar 2024 07:16:39 GMT - Mon, 27 May 2024 07:16:38 GMT
File typeJavaScript source, ASCII text, with very long lines (1900) Hash7e8df86479c9697cb180654c5a875db8 dee6f5bc627e6b07aa9c8df7ed4e08305ad0b114 c151c14b042f6888c0d2784514737ecebfebde3384467df0d330012a313db4c9
GET /_/atari/_/js/k=atari.vw.en_US.02B9lri3Rts.O/am=wA/d=0/rs=AGEqA5lfNdVOuUqB0NUWAdbgpPXhssj0VA/m=sy1b,sy1c,sy1a,FoQBg HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://sites.google.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
accept-ranges: bytes
content-encoding: gzip
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="apps-sites"
report-to: {"group":"apps-sites","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-sites"}]}
content-length: 12828
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 16 Apr 2024 06:49:01 GMT
expires: Wed, 16 Apr 2025 06:49:01 GMT
cache-control: public, max-age=31536000
last-modified: Tue, 09 Apr 2024 05:16:33 GMT
content-type: text/javascript; charset=UTF-8
vary: Accept-Encoding
age: 197125
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| www.gstatic.com/_/atari/_/js/k=atari.vw.en_US.02B9lri3Rts.O/am=wA/d=0/rs=AGEqA5lfNdVOuUqB0NUWAdbgpPXhssj0VA/m=sy2v,TRvtze | 142.250.74.131 | 200 OK | 505 B |
URL GET HTTP/3www.gstatic.com/_/atari/_/js/k=atari.vw.en_US.02B9lri3Rts.O/am=wA/d=0/rs=AGEqA5lfNdVOuUqB0NUWAdbgpPXhssj0VA/m=sy2v,TRvtze IP142.250.74.131:443
Requested byhttps://sites.google.com/view/rkhm4rdpyb5pshsked7f CertificateIssuerGoogle Trust Services LLC Subject*.gstatic.com Fingerprint8F:81:43:71:C4:F3:8C:FA:6D:EC:B4:5E:1F:58:71:AA:48:42:0E:E9 ValidityMon, 04 Mar 2024 07:16:39 GMT - Mon, 27 May 2024 07:16:38 GMT
File typeJavaScript source, ASCII text, with very long lines (383) Hash7cd01e6ea938e5504db164e204ac809b 2caa1d13605520343edacaf4ba0e82ce37c89287 99c0e62088b8c1ab9c721c76853c6fc50fce6e90d1cf46819198811a3daffdb5
GET /_/atari/_/js/k=atari.vw.en_US.02B9lri3Rts.O/am=wA/d=0/rs=AGEqA5lfNdVOuUqB0NUWAdbgpPXhssj0VA/m=sy2v,TRvtze HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://sites.google.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
accept-ranges: bytes
content-encoding: gzip
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="apps-sites"
report-to: {"group":"apps-sites","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-sites"}]}
content-length: 505
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 16 Apr 2024 06:49:01 GMT
expires: Wed, 16 Apr 2025 06:49:01 GMT
cache-control: public, max-age=31536000
last-modified: Tue, 09 Apr 2024 05:16:33 GMT
content-type: text/javascript; charset=UTF-8
vary: Accept-Encoding
age: 197125
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| www.gstatic.com/_/atari/_/js/k=atari.vw.en_US.02B9lri3Rts.O/am=wA/d=0/rs=AGEqA5lfNdVOuUqB0NUWAdbgpPXhssj0VA/m=MpJwZc,n73qwf,A4UTCb,mzzZzc,CHCSlb,qAKInc,HIeYee,QxOCld,syx,YXyON,sy2w,abQiW,syv,PVlQOd,NPKaK,sy5,BVgquf,fmklff,TGYpv,syj,ruhlUe,KUM7Z,zPx2U,qEW1W,oNFsLb,sy3r,yxTchf,sy3s,sy3t,xQtZb,yf2Bs,sy2,sy9,yyxWAc,qddgKe,sy2y,SM1lmd,sy7,sy6,syw,RRzQxe,syy,YV8yqd,sy8,syb,sy25,syk,sya,fNFZH,sy2x,syl,RrXLpc,cgRV2c,sy1o,o1L5Wb,X4BaPc,syf,sy14,Md9ENb | 142.250.74.131 | 200 OK | 26 kB |
URL GET HTTP/3www.gstatic.com/_/atari/_/js/k=atari.vw.en_US.02B9lri3Rts.O/am=wA/d=0/rs=AGEqA5lfNdVOuUqB0NUWAdbgpPXhssj0VA/m=MpJwZc,n73qwf,A4UTCb,mzzZzc,CHCSlb,qAKInc,HIeYee,QxOCld,syx,YXyON,sy2w,abQiW,syv,PVlQOd,NPKaK,sy5,BVgquf,fmklff,TGYpv,syj,ruhlUe,KUM7Z,zPx2U,qEW1W,oNFsLb,sy3r,yxTchf,sy3s,sy3t,xQtZb,yf2Bs,sy2,sy9,yyxWAc,qddgKe,sy2y,SM1lmd,sy7,sy6,syw,RRzQxe,syy,YV8yqd,sy8,syb,sy25,syk,sya,fNFZH,sy2x,syl,RrXLpc,cgRV2c,sy1o,o1L5Wb,X4BaPc,syf,sy14,Md9ENb IP142.250.74.131:443
Requested byhttps://sites.google.com/view/rkhm4rdpyb5pshsked7f CertificateIssuerGoogle Trust Services LLC Subject*.gstatic.com Fingerprint8F:81:43:71:C4:F3:8C:FA:6D:EC:B4:5E:1F:58:71:AA:48:42:0E:E9 ValidityMon, 04 Mar 2024 07:16:39 GMT - Mon, 27 May 2024 07:16:38 GMT
File typeJavaScript source, ASCII text, with very long lines (1283) Hash5ae4ac6488c655b2cb9f7b7d99b0e9c5 578f7d80d48aa9dabaf9701c434a5affb106ebb9 d4a97f2bdd77d6828855cf6c2e873d7b94d9f4e9f939af4ed738d8635fdf587e
GET /_/atari/_/js/k=atari.vw.en_US.02B9lri3Rts.O/am=wA/d=0/rs=AGEqA5lfNdVOuUqB0NUWAdbgpPXhssj0VA/m=MpJwZc,n73qwf,A4UTCb,mzzZzc,CHCSlb,qAKInc,HIeYee,QxOCld,syx,YXyON,sy2w,abQiW,syv,PVlQOd,NPKaK,sy5,BVgquf,fmklff,TGYpv,syj,ruhlUe,KUM7Z,zPx2U,qEW1W,oNFsLb,sy3r,yxTchf,sy3s,sy3t,xQtZb,yf2Bs,sy2,sy9,yyxWAc,qddgKe,sy2y,SM1lmd,sy7,sy6,syw,RRzQxe,syy,YV8yqd,sy8,syb,sy25,syk,sya,fNFZH,sy2x,syl,RrXLpc,cgRV2c,sy1o,o1L5Wb,X4BaPc,syf,sy14,Md9ENb HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://sites.google.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
accept-ranges: bytes
content-encoding: gzip
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="apps-sites"
report-to: {"group":"apps-sites","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-sites"}]}
content-length: 26500
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 16 Apr 2024 06:49:01 GMT
expires: Wed, 16 Apr 2025 06:49:01 GMT
cache-control: public, max-age=31536000
last-modified: Tue, 09 Apr 2024 05:16:33 GMT
content-type: text/javascript; charset=UTF-8
vary: Accept-Encoding
age: 197125
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| www.gstatic.com/_/atari/_/js/k=atari.vw.en_US.02B9lri3Rts.O/am=wA/d=0/rs=AGEqA5lfNdVOuUqB0NUWAdbgpPXhssj0VA/m=sy2r,IZT63,vfuNJf,sy3f,sy3j,sy3l,sy3w,sy3u,sy3v,siKnQd,sy3d,sy3k,sy3m,sy2s,YNjGDd,sy3n,PrPYRd,iFQyKf,hc6Ubd,sy3x,SpsfSb,sy3g,sy3i,wR5FRb,pXdRYb,dIoSBb,zbML3c | 142.250.74.131 | 200 OK | 11 kB |
URL GET HTTP/3www.gstatic.com/_/atari/_/js/k=atari.vw.en_US.02B9lri3Rts.O/am=wA/d=0/rs=AGEqA5lfNdVOuUqB0NUWAdbgpPXhssj0VA/m=sy2r,IZT63,vfuNJf,sy3f,sy3j,sy3l,sy3w,sy3u,sy3v,siKnQd,sy3d,sy3k,sy3m,sy2s,YNjGDd,sy3n,PrPYRd,iFQyKf,hc6Ubd,sy3x,SpsfSb,sy3g,sy3i,wR5FRb,pXdRYb,dIoSBb,zbML3c IP142.250.74.131:443
Requested byhttps://sites.google.com/view/rkhm4rdpyb5pshsked7f CertificateIssuerGoogle Trust Services LLC Subject*.gstatic.com Fingerprint8F:81:43:71:C4:F3:8C:FA:6D:EC:B4:5E:1F:58:71:AA:48:42:0E:E9 ValidityMon, 04 Mar 2024 07:16:39 GMT - Mon, 27 May 2024 07:16:38 GMT
File typeJavaScript source, ASCII text, with very long lines (1162) Hashae2b0b5c48a28af8e57ae33f75403bd4 b638d4d37e63162832ec7360be263b649a09bd93 8bdd38bceb1d70c69487c31628740fba721fcd9cead245c922a0e4d14fd5dfcd
GET /_/atari/_/js/k=atari.vw.en_US.02B9lri3Rts.O/am=wA/d=0/rs=AGEqA5lfNdVOuUqB0NUWAdbgpPXhssj0VA/m=sy2r,IZT63,vfuNJf,sy3f,sy3j,sy3l,sy3w,sy3u,sy3v,siKnQd,sy3d,sy3k,sy3m,sy2s,YNjGDd,sy3n,PrPYRd,iFQyKf,hc6Ubd,sy3x,SpsfSb,sy3g,sy3i,wR5FRb,pXdRYb,dIoSBb,zbML3c HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://sites.google.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
accept-ranges: bytes
content-encoding: gzip
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="apps-sites"
report-to: {"group":"apps-sites","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-sites"}]}
content-length: 10788
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 16 Apr 2024 06:49:01 GMT
expires: Wed, 16 Apr 2025 06:49:01 GMT
cache-control: public, max-age=31536000
last-modified: Tue, 09 Apr 2024 05:16:33 GMT
content-type: text/javascript; charset=UTF-8
vary: Accept-Encoding
age: 197125
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| ssl.gstatic.com/atari/images/public/favicon.ico | 142.250.74.163 | | 107 B |
URL GET ssl.gstatic.com/atari/images/public/favicon.ico IP142.250.74.163:0
Requested byhttps://sites.google.com/view/rkhm4rdpyb5pshsked7f CertificateIssuerGoogle Trust Services LLC Subject*.gstatic.com Fingerprint8F:81:43:71:C4:F3:8C:FA:6D:EC:B4:5E:1F:58:71:AA:48:42:0E:E9 ValidityMon, 04 Mar 2024 07:16:39 GMT - Mon, 27 May 2024 07:16:38 GMT
File typeMS Windows icon resource - 1 icon, 16x16, 32 bits/pixel Hashea69a3f95dd5484853d128186db7e13d 5fdb5fe05108fd6e5386bbda06778af4b446dc6a 8179e80bcfef62154d1ff7371a1c60bd2c6c1e71c3da2f4a8b1db518a1900ec2
GET /atari/images/public/favicon.ico HTTP/1.1
Host: ssl.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://sites.google.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
content-encoding: br
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="apps-sites"
report-to: {"group":"apps-sites","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-sites"}]}
content-length: 107
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 16 Apr 2024 13:47:56 GMT
expires: Wed, 16 Apr 2025 13:47:56 GMT
cache-control: public, max-age=31536000
age: 171990
last-modified: Tue, 27 Jun 2023 04:48:00 GMT
content-type: image/x-icon
vary: Accept-Encoding
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| www.gstatic.com/_/atari/_/js/k=atari.vw.en_US.02B9lri3Rts.O/am=wA/d=0/rs=AGEqA5lfNdVOuUqB0NUWAdbgpPXhssj0VA/m=sy16,sy11,sy12,sy13,sy15,fuVYe,vVEdxc,sy17,sy18,sy19,CG0Qwb | 142.250.74.131 | 200 OK | 16 kB |
URL GET HTTP/3www.gstatic.com/_/atari/_/js/k=atari.vw.en_US.02B9lri3Rts.O/am=wA/d=0/rs=AGEqA5lfNdVOuUqB0NUWAdbgpPXhssj0VA/m=sy16,sy11,sy12,sy13,sy15,fuVYe,vVEdxc,sy17,sy18,sy19,CG0Qwb IP142.250.74.131:443
Requested byhttps://sites.google.com/view/rkhm4rdpyb5pshsked7f CertificateIssuerGoogle Trust Services LLC Subject*.gstatic.com Fingerprint8F:81:43:71:C4:F3:8C:FA:6D:EC:B4:5E:1F:58:71:AA:48:42:0E:E9 ValidityMon, 04 Mar 2024 07:16:39 GMT - Mon, 27 May 2024 07:16:38 GMT
File typeJavaScript source, ASCII text, with very long lines (1852) Hash6bec4185dd4d8cb8cb49f429860f88d6 a3b5cb0705928177453337a6e35d3d90fd15a3a3 a669de638fddc6fc7e22ed7e1a6df87a6468309ca94b2ca84a90025f33307d87
GET /_/atari/_/js/k=atari.vw.en_US.02B9lri3Rts.O/am=wA/d=0/rs=AGEqA5lfNdVOuUqB0NUWAdbgpPXhssj0VA/m=sy16,sy11,sy12,sy13,sy15,fuVYe,vVEdxc,sy17,sy18,sy19,CG0Qwb HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://sites.google.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
accept-ranges: bytes
content-encoding: gzip
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="apps-sites"
report-to: {"group":"apps-sites","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-sites"}]}
content-length: 16473
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 16 Apr 2024 06:49:01 GMT
expires: Wed, 16 Apr 2025 06:49:01 GMT
cache-control: public, max-age=31536000
last-modified: Tue, 09 Apr 2024 05:16:33 GMT
content-type: text/javascript; charset=UTF-8
vary: Accept-Encoding
age: 197125
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| play.google.com/log?format=json&hasfast=true&authuser=0 | 142.250.74.14 | 200 OK | 0 B |
URL POST HTTP/2play.google.com/log?format=json&hasfast=true&authuser=0 IP142.250.74.14:443
Requested byhttps://sites.google.com/view/rkhm4rdpyb5pshsked7f CertificateIssuerGoogle Trust Services LLC Subject*.google.com Fingerprint02:6C:2F:38:A0:8A:95:AC:E8:2B:67:AA:69:A4:34:6E:15:99:F5:1D ValidityMon, 04 Mar 2024 06:35:50 GMT - Mon, 27 May 2024 06:35:49 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /log?format=json&hasfast=true&authuser=0 HTTP/1.1
Host: play.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: x-goog-authuser
Referer: https://sites.google.com/
Origin: https://sites.google.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
access-control-allow-origin: https://sites.google.com
access-control-allow-methods: GET, POST, OPTIONS
access-control-max-age: 86400
access-control-allow-credentials: true
access-control-allow-headers: X-Playlog-Web,authorization,origin,x-goog-authuser
content-type: text/plain; charset=UTF-8
date: Thu, 18 Apr 2024 13:34:26 GMT
server: Playlog
content-length: 0
x-xss-protection: 0
x-frame-options: SAMEORIGIN
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| www.gstatic.com/_/atari/_/js/k=atari.vw.en_US.02B9lri3Rts.O/am=wA/d=0/rs=AGEqA5lfNdVOuUqB0NUWAdbgpPXhssj0VA/m=NTMZac,m9oV,rCcCxc,RAnnUd,sy2q,gJzDyc,sy2z,sy30,uu7UOe,sy31,soHxf,sy32,uY3Nvd,syt,sys,sy1s,sy2k,HYv29e | 142.250.74.131 | 200 OK | 29 kB |
URL GET HTTP/3www.gstatic.com/_/atari/_/js/k=atari.vw.en_US.02B9lri3Rts.O/am=wA/d=0/rs=AGEqA5lfNdVOuUqB0NUWAdbgpPXhssj0VA/m=NTMZac,m9oV,rCcCxc,RAnnUd,sy2q,gJzDyc,sy2z,sy30,uu7UOe,sy31,soHxf,sy32,uY3Nvd,syt,sys,sy1s,sy2k,HYv29e IP142.250.74.131:443
Requested byhttps://sites.google.com/view/rkhm4rdpyb5pshsked7f CertificateIssuerGoogle Trust Services LLC Subject*.gstatic.com Fingerprint8F:81:43:71:C4:F3:8C:FA:6D:EC:B4:5E:1F:58:71:AA:48:42:0E:E9 ValidityMon, 04 Mar 2024 07:16:39 GMT - Mon, 27 May 2024 07:16:38 GMT
File typeJavaScript source, ASCII text, with very long lines (1318) Hash21a7a6b073817a303867797052cc806f f1fe783121a06041b49ea4bda0fe7097f667808e aaae89897abcb61064c1a1a942c7bb20b5e16ae558f0db0faaaee46c8c376da3
GET /_/atari/_/js/k=atari.vw.en_US.02B9lri3Rts.O/am=wA/d=0/rs=AGEqA5lfNdVOuUqB0NUWAdbgpPXhssj0VA/m=NTMZac,m9oV,rCcCxc,RAnnUd,sy2q,gJzDyc,sy2z,sy30,uu7UOe,sy31,soHxf,sy32,uY3Nvd,syt,sys,sy1s,sy2k,HYv29e HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://sites.google.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
accept-ranges: bytes
content-encoding: gzip
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="apps-sites"
report-to: {"group":"apps-sites","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-sites"}]}
content-length: 29307
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 16 Apr 2024 07:10:24 GMT
expires: Wed, 16 Apr 2025 07:10:24 GMT
cache-control: public, max-age=31536000
last-modified: Tue, 09 Apr 2024 05:16:33 GMT
content-type: text/javascript; charset=UTF-8
vary: Accept-Encoding
age: 195842
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| play.google.com/log?format=json&hasfast=true&authuser=0 | 142.250.74.14 | 200 OK | 131 B |
URL POST HTTP/2play.google.com/log?format=json&hasfast=true&authuser=0 IP142.250.74.14:443
Requested byhttps://sites.google.com/view/rkhm4rdpyb5pshsked7f CertificateIssuerGoogle Trust Services LLC Subject*.google.com Fingerprint02:6C:2F:38:A0:8A:95:AC:E8:2B:67:AA:69:A4:34:6E:15:99:F5:1D ValidityMon, 04 Mar 2024 06:35:50 GMT - Mon, 27 May 2024 06:35:49 GMT
Hashca0b7e866005f6774d284b9f438ebfd2 53644f5ee3640189bdb223473ba6a2d46606c556 502e9680cfa78fa8be779cbf4f1947c8eaa3d43bf8c7464800ec772b2ddea358
POST /log?format=json&hasfast=true&authuser=0 HTTP/1.1
Host: play.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://sites.google.com/
X-Goog-AuthUser: 0
Content-Type: text/plain;charset=UTF-8
Content-Length: 2521
Origin: https://sites.google.com
DNT: 1
Connection: keep-alive
Cookie: SOCS=CAESHAgBEhJnd3NfMjAyMjA5MjktMF9SQzEaAnJvIAEaBgiAkvOZBg; NID=513=NWrAcVUzlgCj1-F-N1t4z7Rs06rmjS8SSVsvWY-ppXkTWgRB9d0QbG42k0Qv5r-OV-6NpPtG3ZoN8x-0UjX8UOi0oJaMw9DYGEEVP8oiJSf_TSNwV99_B_886X-OHZVp-fZurqH9MVHuBFpNPSkzP3MiVL6xeEjEcZb0E0AiV7U
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
access-control-allow-origin: https://sites.google.com
cross-origin-resource-policy: cross-origin
access-control-allow-credentials: true
access-control-allow-headers: X-Playlog-Web
set-cookie: NID=513=kTi5l8bov6rvCxAhxNosNfawaXMOzaUzeYckRdaQYdtu5_E9q-v6CtePLAEStInuYDgwX5d3CGVXJZMGanDA5YKuvvduF-jOUEC8z7HxlZFPctGHW9tyac4rYI2QiM_-71uCpqLvqWoeQBZ2-ixLlfO7Jqqecxd-zcU56mzBSbw; expires=Fri, 18-Oct-2024 13:34:26 GMT; path=/; domain=.google.com; Secure; HttpOnly; SameSite=none
p3p: CP="This is not a P3P policy! See g.co/p3phelp for more info."
content-type: text/plain; charset=UTF-8
content-encoding: gzip
date: Thu, 18 Apr 2024 13:34:26 GMT
server: Playlog
cache-control: private
content-length: 131
x-xss-protection: 0
x-frame-options: SAMEORIGIN
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
expires: Thu, 18 Apr 2024 13:34:26 GMT
X-Firefox-Spdy: h2
|
|
| play.google.com/log?format=json&hasfast=true&authuser=0 | 142.250.74.14 | 200 OK | 0 B |
URL POST HTTP/2play.google.com/log?format=json&hasfast=true&authuser=0 IP142.250.74.14:443
Requested byhttps://sites.google.com/view/rkhm4rdpyb5pshsked7f CertificateIssuerGoogle Trust Services LLC Subject*.google.com Fingerprint02:6C:2F:38:A0:8A:95:AC:E8:2B:67:AA:69:A4:34:6E:15:99:F5:1D ValidityMon, 04 Mar 2024 06:35:50 GMT - Mon, 27 May 2024 06:35:49 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /log?format=json&hasfast=true&authuser=0 HTTP/1.1
Host: play.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: x-goog-authuser
Referer: https://sites.google.com/
Origin: https://sites.google.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
access-control-allow-origin: https://sites.google.com
access-control-allow-methods: GET, POST, OPTIONS
access-control-max-age: 86400
access-control-allow-credentials: true
access-control-allow-headers: X-Playlog-Web,authorization,origin,x-goog-authuser
content-type: text/plain; charset=UTF-8
date: Thu, 18 Apr 2024 13:34:29 GMT
server: Playlog
content-length: 0
x-xss-protection: 0
x-frame-options: SAMEORIGIN
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| play.google.com/log?format=json&hasfast=true&authuser=0 | 142.250.74.14 | 200 OK | 131 B |
URL POST HTTP/2play.google.com/log?format=json&hasfast=true&authuser=0 IP142.250.74.14:443
Requested byhttps://sites.google.com/view/rkhm4rdpyb5pshsked7f CertificateIssuerGoogle Trust Services LLC Subject*.google.com Fingerprint02:6C:2F:38:A0:8A:95:AC:E8:2B:67:AA:69:A4:34:6E:15:99:F5:1D ValidityMon, 04 Mar 2024 06:35:50 GMT - Mon, 27 May 2024 06:35:49 GMT
Hashca0b7e866005f6774d284b9f438ebfd2 53644f5ee3640189bdb223473ba6a2d46606c556 502e9680cfa78fa8be779cbf4f1947c8eaa3d43bf8c7464800ec772b2ddea358
POST /log?format=json&hasfast=true&authuser=0 HTTP/1.1
Host: play.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://sites.google.com/
X-Goog-AuthUser: 0
Content-Type: text/plain;charset=UTF-8
Content-Length: 3496
Origin: https://sites.google.com
DNT: 1
Connection: keep-alive
Cookie: SOCS=CAESHAgBEhJnd3NfMjAyMjA5MjktMF9SQzEaAnJvIAEaBgiAkvOZBg; NID=513=kTi5l8bov6rvCxAhxNosNfawaXMOzaUzeYckRdaQYdtu5_E9q-v6CtePLAEStInuYDgwX5d3CGVXJZMGanDA5YKuvvduF-jOUEC8z7HxlZFPctGHW9tyac4rYI2QiM_-71uCpqLvqWoeQBZ2-ixLlfO7Jqqecxd-zcU56mzBSbw
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
access-control-allow-origin: https://sites.google.com
cross-origin-resource-policy: cross-origin
access-control-allow-credentials: true
access-control-allow-headers: X-Playlog-Web
content-type: text/plain; charset=UTF-8
content-encoding: gzip
date: Thu, 18 Apr 2024 13:34:29 GMT
server: Playlog
cache-control: private
content-length: 131
x-xss-protection: 0
x-frame-options: SAMEORIGIN
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| sites.google.com/_/view/logImpressions?authuser=0 | 142.250.74.78 | 200 OK | 16 B |
URL POST HTTP/3sites.google.com/_/view/logImpressions?authuser=0 IP142.250.74.78:443
Requested byhttps://sites.google.com/view/rkhm4rdpyb5pshsked7f CertificateIssuerGoogle Trust Services LLC Subject*.google.com Fingerprint02:6C:2F:38:A0:8A:95:AC:E8:2B:67:AA:69:A4:34:6E:15:99:F5:1D ValidityMon, 04 Mar 2024 06:35:50 GMT - Mon, 27 May 2024 06:35:49 GMT
File typeASCII text, with no line terminators Hash342c3f33157c9a6c4f4064b8d42e6604 ea3c78431162ca72fbbe4d9641e605a3d7163797 dd75a5d8fb9f21a7e5b79a0c070fc21d1e26874d8af4d90a2f0ff089a4751392
POST /_/view/logImpressions?authuser=0 HTTP/1.1
Host: sites.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://sites.google.com/view/rkhm4rdpyb5pshsked7f
Content-Type: application/x-www-form-urlencoded;charset=utf-8
Content-Length: 2994
Origin: https://sites.google.com
DNT: 1
Connection: keep-alive
Cookie: SOCS=CAESHAgBEhJnd3NfMjAyMjA5MjktMF9SQzEaAnJvIAEaBgiAkvOZBg; NID=513=NWrAcVUzlgCj1-F-N1t4z7Rs06rmjS8SSVsvWY-ppXkTWgRB9d0QbG42k0Qv5r-OV-6NpPtG3ZoN8x-0UjX8UOi0oJaMw9DYGEEVP8oiJSf_TSNwV99_B_886X-OHZVp-fZurqH9MVHuBFpNPSkzP3MiVL6xeEjEcZb0E0AiV7U
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
content-type: application/json; charset=utf-8
vary: Sec-Fetch-Dest, Sec-Fetch-Mode, Sec-Fetch-Site
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Thu, 18 Apr 2024 13:34:26 GMT
content-disposition: attachment; filename="response.bin"; filename*=UTF-8''response.bin
x-content-type-options: nosniff
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: same-site
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| fonts.googleapis.com/css?family=Montserrat%3A400%2C700%7CBitter%3A400%2C700&display=swap | 142.250.74.106 | 200 OK | 7.2 kB |
URL GET HTTP/2fonts.googleapis.com/css?family=Montserrat%3A400%2C700%7CBitter%3A400%2C700&display=swap IP142.250.74.106:443
Requested byhttps://sites.google.com/view/rkhm4rdpyb5pshsked7f CertificateIssuerGoogle Trust Services LLC Subjectupload.video.google.com Fingerprint47:5A:64:7D:9F:47:34:07:31:91:97:F7:04:42:7A:D5:EA:AD:07:4E ValidityMon, 04 Mar 2024 07:16:44 GMT - Mon, 27 May 2024 07:16:43 GMT
File typeASCII text, with very long lines (7368), with no line terminators Hashdd5f4ecd86159e011a775ae661622aec c139a5521587066b6f72a9e2255b03e7ffb10597 c2946c19d37c6714a3fbe5eb2cd415394c920739bd77e18697d3e2956f7da942
GET /css?family=Montserrat%3A400%2C700%7CBitter%3A400%2C700&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://sites.google.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Thu, 18 Apr 2024 13:34:26 GMT
date: Thu, 18 Apr 2024 13:34:26 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| sites.google.com/_/view/logImpressions?authuser=0 | 142.250.74.78 | 200 OK | 16 B |
URL POST HTTP/3sites.google.com/_/view/logImpressions?authuser=0 IP142.250.74.78:443
Requested byhttps://sites.google.com/view/rkhm4rdpyb5pshsked7f CertificateIssuerGoogle Trust Services LLC Subject*.google.com Fingerprint02:6C:2F:38:A0:8A:95:AC:E8:2B:67:AA:69:A4:34:6E:15:99:F5:1D ValidityMon, 04 Mar 2024 06:35:50 GMT - Mon, 27 May 2024 06:35:49 GMT
File typeASCII text, with no line terminators Hash342c3f33157c9a6c4f4064b8d42e6604 ea3c78431162ca72fbbe4d9641e605a3d7163797 dd75a5d8fb9f21a7e5b79a0c070fc21d1e26874d8af4d90a2f0ff089a4751392
POST /_/view/logImpressions?authuser=0 HTTP/1.1
Host: sites.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://sites.google.com/view/rkhm4rdpyb5pshsked7f
Content-Type: application/x-www-form-urlencoded;charset=utf-8
Content-Length: 4451
Origin: https://sites.google.com
DNT: 1
Connection: keep-alive
Cookie: SOCS=CAESHAgBEhJnd3NfMjAyMjA5MjktMF9SQzEaAnJvIAEaBgiAkvOZBg; NID=513=kTi5l8bov6rvCxAhxNosNfawaXMOzaUzeYckRdaQYdtu5_E9q-v6CtePLAEStInuYDgwX5d3CGVXJZMGanDA5YKuvvduF-jOUEC8z7HxlZFPctGHW9tyac4rYI2QiM_-71uCpqLvqWoeQBZ2-ixLlfO7Jqqecxd-zcU56mzBSbw
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
content-type: application/json; charset=utf-8
vary: Sec-Fetch-Dest, Sec-Fetch-Mode, Sec-Fetch-Site
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Thu, 18 Apr 2024 13:34:29 GMT
content-disposition: attachment; filename="response.bin"; filename*=UTF-8''response.bin
x-content-type-options: nosniff
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: same-site
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| sites.google.com/view/rkhm4rdpyb5pshsked7f | 142.250.74.78 | 200 OK | 50 kB |
URL User Request GET HTTP/2sites.google.com/view/rkhm4rdpyb5pshsked7f IP142.250.74.78:443
CertificateIssuerGoogle Trust Services LLC Subject*.google.com Fingerprint02:6C:2F:38:A0:8A:95:AC:E8:2B:67:AA:69:A4:34:6E:15:99:F5:1D ValidityMon, 04 Mar 2024 06:35:50 GMT - Mon, 27 May 2024 06:35:49 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /view/rkhm4rdpyb5pshsked7f HTTP/1.1
Host: sites.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Cookie: SOCS=CAESHAgBEhJnd3NfMjAyMjA5MjktMF9SQzEaAnJvIAEaBgiAkvOZBg
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: text/html; charset=utf-8
x-frame-options: DENY
vary: Sec-Fetch-Dest, Sec-Fetch-Mode, Sec-Fetch-Site
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Thu, 18 Apr 2024 13:34:25 GMT
p3p: CP="This is not a P3P policy! See g.co/p3phelp for more info."
cross-origin-opener-policy: unsafe-none
content-security-policy: base-uri 'self';object-src 'none';report-uri /_/view/cspreport;script-src 'nonce-exA6u93zwoRibICPqVbdeQ' 'unsafe-inline' 'unsafe-eval';worker-src 'self';frame-ancestors https://google-admin.corp.google.com/
cross-origin-resource-policy: same-site
referrer-policy: strict-origin-when-cross-origin
reporting-endpoints: default="/web-reports?jobset=prod&context=eJwNw3tMjXEYB_DH731eWowkrFR2DE200B-16lTnVkkbK_zeRTEJXZZrtbCSbltqyKxarJSttrJOIbW15DKKtbmM-oMRZWuYFUen0Tm-n-3j2rqgwUXS7YWSdnpI2oUPVkrKLpVUgCFVkmJx6WVJOnTUSlpcJ4mbJHmgoUtSwD1Jejz8TFIujg1JmsK0YUk5OPhS0ijKj5KOYPyEpH34-LukN3j9t6R2bJiV1IHpDkn5eGeRRo8xxVOjbPy7SqOF3hr99tGIfTXKWatRKXr5aeSPk1EazWKqRaNTmIflGJSikQlXHNBoPfqd0CgY009qlI_1ORq1YejGEXLg_E0j5IvLkqfEKkw4OiWScHX1tPDDHzXTwoaRn6dFDN4u_CXuoV-gTQRi6WabqMKfRTYxg_mZM6IIh8Lt4hX26e3iCdYb7KIZ_6TZhQNbKuyiAw8-nxUZeDfon-jDlnNzogNrExyiEbPJKXLR7u0U5OMUCWecIgmvuJFSh_HHSNmFVeOkXMPuU0Lpx8JhoZTj7CehzBsTyg5FUSR6vFAUb4xbEsYJuPR8GHvirckwbsdAWxgHo6gNZ1fsbQ_nh5hl1PNpnOvUs9qlZ6tnBPege1AEe-GFQxFcgWvUSPbHbi2S-zF0KJKNqMuM4g3o0hbFbvgh2sAT6FljYB2Kq0Z2xZ42Iw9g4iMj78WCd0Yuw2vHTXwDU3NNnIm6sybegFuKTWxAYTWxK7a-NbEVs3VmzsV-o5mfon-Gmbfi8otm9sHiATNfxKYJM3dh1jczn8YK1cLVuO6EhQPQ2GDhOCz5auFKDNkfzUuqo3klBl6K4WDc3RjLybj9dSwn4hf3bfwNC89s43JsVePYiu8XxPE4jt5vUD9hyVijWomdozfVXiwYalLL0PmrWXVf5DL2qKRzvttg30iL8OI96Wl5_wGYl0rt"
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-content-type-options: nosniff
set-cookie: NID=513=NWrAcVUzlgCj1-F-N1t4z7Rs06rmjS8SSVsvWY-ppXkTWgRB9d0QbG42k0Qv5r-OV-6NpPtG3ZoN8x-0UjX8UOi0oJaMw9DYGEEVP8oiJSf_TSNwV99_B_886X-OHZVp-fZurqH9MVHuBFpNPSkzP3MiVL6xeEjEcZb0E0AiV7U; expires=Fri, 18-Oct-2024 13:34:25 GMT; path=/; domain=.google.com; Secure; HttpOnly; SameSite=none
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| fonts.googleapis.com/css?family=Google+Sans:400,500|Roboto:300,400,500,700|Source+Code+Pro:400,700&display=swap | 142.250.74.106 | 200 OK | 30 kB |
URL GET HTTP/2fonts.googleapis.com/css?family=Google+Sans:400,500|Roboto:300,400,500,700|Source+Code+Pro:400,700&display=swap IP142.250.74.106:443
Requested byhttps://sites.google.com/view/rkhm4rdpyb5pshsked7f CertificateIssuerGoogle Trust Services LLC Subjectupload.video.google.com Fingerprint47:5A:64:7D:9F:47:34:07:31:91:97:F7:04:42:7A:D5:EA:AD:07:4E ValidityMon, 04 Mar 2024 07:16:44 GMT - Mon, 27 May 2024 07:16:43 GMT
Hash0ebb7b6ea38fd3796236ddafbfd00d04 63f706c63220b76fe8d8a0ab16c8f15e88d88318 c886f70fd06ee5bf0b7087f389154f625c98d079d42dc4a1964f5bb1ba3330bd
GET /css?family=Google+Sans:400,500|Roboto:300,400,500,700|Source+Code+Pro:400,700&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://sites.google.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Thu, 18 Apr 2024 13:34:26 GMT
date: Thu, 18 Apr 2024 13:34:26 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|