Report - 0nline.tighocontracts.info/

Report Overview

Submitted URL
0nline.tighocontracts.info/
IP
172.67.173.10
ASN
#13335 CLOUDFLARENET
Submitted
2024-04-24 17:57:30
Access
public
Website Title
bechtel - NW Confidentiality Agreement.pdf - Google Disk
Final URL
drive.google.com/file/d/1zklh84ga2qZwSAxJtunNm9QxqFIYlM66/view
Tags
urlquery detections
No alerts detected

Detections

urlquery
0
Network Intrusion Detection
0
Threat Detection Systems
2

Domain Summary

Domain / FQDN	Rank	Registered	First Seen	Last Seen	Sent	Received	IP
0nline.tighocontracts.info	unknown	unknown	No data	No data	481 B	9.8 kB	104.21.88.52
lh3.googleusercontent.com	66	2008-11-17	2012-05-22	2024-04-23	1.1 kB	159 kB	142.250.74.97
accounts.google.com	81	1997-09-15	2016-03-20	2024-04-23	3.9 kB	7.1 kB	64.233.162.84
fonts.googleapis.com	8877	2005-01-25	2013-06-10	2024-04-24	448 B	2.5 kB	142.250.74.106
fonts.gstatic.com	unknown	2008-02-11	2014-09-09	2024-04-23	2.2 kB	121 kB	216.58.207.227
content.googleapis.com	2972	2005-01-25	2013-08-15	2024-04-19	5.7 kB	4.8 kB	142.250.74.106
blobcomments-pa.clients6.google.com	5190	1997-09-15	2017-03-08	2024-04-12	1.9 kB	2.1 kB	142.250.74.170
www.gstatic.com	unknown	2008-02-11	2016-07-26	2024-04-24	3.8 kB	2.0 MB	142.250.74.35
apis.google.com	105	1997-09-15	2013-05-06	2024-04-23	3.2 kB	150 kB	142.250.74.110
peoplestackwebexperiments-pa.clients6.google.com	316	1997-09-15	2019-12-11	2024-04-06	2.1 kB	2.6 kB	142.250.74.138
ssl.gstatic.com	unknown	2008-02-11	2012-05-23	2024-04-23	1.9 kB	54 kB	142.250.74.67
play.google.com	34	1997-09-15	2013-05-31	2024-04-24	5.4 kB	4.6 kB	142.250.74.14
drive.google.com	321	1997-09-15	2012-10-03	2024-04-24	11 kB	979 kB	142.250.74.142

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

Public InfoSec YARA rules

No alerts detected

OpenPhish

Scan Date	Severity	Indicator	Alert
2024-04-24	medium	0nline.tighocontracts.info/	Outlook

PhishTank

No alerts detected

mnemonic secure dns

No alerts detected

Quad9 DNS

No alerts detected

ThreatFox

No alerts detected

JavaScript (19)

	URL	Size	First Seen	Last Seen
	apis.google.com/js/googleapis.proxy.js?onload=startup	15 kB	2024-04-23	2024-05-05
Pretty URL apis.google.com/js/googleapis.proxy.js?onload=startup IP 142.250.74.110 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2024-04-23 15:57:49 Last Seen2024-05-05 17:23:15 Times Seen70 Hash eab0dc82067fb5758a121009c7040231 8d869354f7a947ecc087b23868999bc53f77bdf7 9c77d6db3131248f92ae41075f189b4ecc2e51bcfdcca143719a83145f8ac070 Loading...

	drive.google.com/file/d/1zklh84ga2qZwSAxJtunNm9QxqFIYlM66/view?usp=drive_link	76 B	2024-02-08	2024-05-05
Pretty URL drive.google.com/file/d/1zklh84ga2qZwSAxJtunNm9QxqFIYlM66/view?usp=drive_link IP 142.250.74.142 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML true Observations First Seen2024-02-08 16:15:58 Last Seen2024-05-05 17:23:14 Times Seen72 Hash 10ffd92e926b7e3a36f07285d37c48ca aaf1480dc933b8a30d7952cebb08f7e8a175bb49 e1c4dcde54e10fb379380c1088b78911f73c7ccd884c8d0abff62e860089e62e Loading...

	drive.google.com/file/d/1zklh84ga2qZwSAxJtunNm9QxqFIYlM66/view?usp=drive_link	9.4 kB	2024-04-24	2024-04-24
Pretty URL drive.google.com/file/d/1zklh84ga2qZwSAxJtunNm9QxqFIYlM66/view?usp=drive_link IP 142.250.74.142 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML true Observations First Seen2024-04-24 19:57:38 Last Seen2024-04-24 19:57:38 Times Seen1 Hash a22d6869c8e8880968269fe80479c3c1 094a52c4bd53cdc230788a6c61a1402ecca77a1a 1f6a6badeb67b8afca96215b4e6d1673d1a8a0eb7e8cab487590e8b3e444964a Loading...

	drive.google.com/file/d/1zklh84ga2qZwSAxJtunNm9QxqFIYlM66/view?usp=drive_link	4.9 kB	2024-04-24	2024-04-24
Pretty URL drive.google.com/file/d/1zklh84ga2qZwSAxJtunNm9QxqFIYlM66/view?usp=drive_link IP 142.250.74.142 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML true Observations First Seen2024-04-24 19:57:38 Last Seen2024-04-24 19:57:38 Times Seen1 Hash 7d1675846ffcc5b705b1d57b88a59510 82941fc3563a93d9d0abe2b198bcc06437ebbd88 a64ade737d96d46727709b638f7dc3d166cf5d7b04ed568e1a1c4c8ddd317ab2 Loading...

	www.gstatic.com/og/_/js/k=og.qtm.en_US.oT1FwJRCVC4.2019.O/rt=j/m=qabr,q_dnp,qapid,qads,q_dg/exm=qaaw,qadd,qaid,qein,qhaw,qhba,qhbr,qhch,qhga,qhid,qhin/d=1/ed=1/rs=AA2YrTvBynad-nWEy1xIb9j1w6LpLOF6IQ	214 kB	2024-04-16	2024-05-01
Pretty URL www.gstatic.com/og/_/js/k=og.qtm.en_US.oT1FwJRCVC4.2019.O/rt=j/m=qabr,q_dnp,qapid,qads,q_dg/exm=qaaw,qadd,qaid,qein,qhaw,qhba,qhbr,qhch,qhga,qhid,qhin/d=1/ed=1/rs=AA2YrTvBynad-nWEy1xIb9j1w6LpLOF6IQ IP 142.250.74.35 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2024-04-16 18:25:06 Last Seen2024-05-01 17:28:59 Times Seen50 Hash dfb1c20b409bcbec4dae300cc3651c6d 4bea498c43ace7b538852dc4bd713cecb370b93e f97bc1115687033194e62ae733fadce1bf41297f835136c10d7fe4f870643909 Loading...

	www.gstatic.com/feedback/js/help/prod/service/lazy.min.js	109 kB	2024-04-19	2024-04-25
Pretty URL www.gstatic.com/feedback/js/help/prod/service/lazy.min.js IP 142.250.74.35 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2024-04-19 09:47:03 Last Seen2024-04-25 18:36:50 Times Seen130 Hash de2f04957196ac8c3c7678ad4c33a46a 4788d5b2576e992626df52268f212a5a2d141d02 e4073a5d69e86546e65b01c6f50f43b91691ceee2a9eedfe2ddfcbb90a8d695b Loading...

	www.gstatic.com/_/apps-fileview/_/js/k=apps-fileview.v.no.iZR-gPbEVN0.O/am=AAw/d=0/rs=AO0039vPH2I2kvE1e0rE-WtGF30RaZyzCA/m=sy5n,sy13,sy5q,sy5y,sy5z,sy61,sy60,sy64,rj51oe,gypOCd	93 kB	2024-04-23	2024-04-24
Pretty URL www.gstatic.com/_/apps-fileview/_/js/k=apps-fileview.v.no.iZR-gPbEVN0.O/am=AAw/d=0/rs=AO0039vPH2I2kvE1e0rE-WtGF30RaZyzCA/m=sy5n,sy13,sy5q,sy5y,sy5z,sy61,sy60,sy64,rj51oe,gypOCd IP 142.250.74.35 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2024-04-23 15:57:49 Last Seen2024-04-24 19:57:39 Times Seen4 Hash 345b96db1d65b8e53d0f6abbee9f5b75 d8580744be7d2a2dcbcb64a1e5810dcdbbc04cec 9d4eb3e85a02748b957cb7d833bb1da34953312f4fd99d2f65bc278679facd13 Loading...

	drive.google.com/file/d/1zklh84ga2qZwSAxJtunNm9QxqFIYlM66/view?usp=drive_link	18 kB	2024-04-24	2024-04-24
Pretty URL drive.google.com/file/d/1zklh84ga2qZwSAxJtunNm9QxqFIYlM66/view?usp=drive_link IP 142.250.74.142 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML true Observations First Seen2024-04-24 19:57:38 Last Seen2024-04-24 19:57:38 Times Seen1 Hash c95c1e0afa7a3b539e5c0c448e15c31d 87940d8b38d22b8453e92dae55515d586c4289dd 2314732c8f2962dfa1f9eb97117c20f5a3a5aa93d1955ef4e0671daea0aa143a Loading...

	drive.google.com/file/d/1zklh84ga2qZwSAxJtunNm9QxqFIYlM66/view?usp=drive_link	1.6 kB	2024-04-16	2024-05-01
Pretty URL drive.google.com/file/d/1zklh84ga2qZwSAxJtunNm9QxqFIYlM66/view?usp=drive_link IP 142.250.74.142 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML true Observations First Seen2024-04-16 18:25:05 Last Seen2024-05-01 17:28:58 Times Seen31 Hash 52ceda434d87c314be346cddb2e6813f c8d1b550ba010cb3046b377ce5f2474c825ce816 b32b12ad2ff3ef0dd891a2b79aeffadd6723514f0b5247e5e72554be073830e9 Loading...

	drive.google.com/file/d/1zklh84ga2qZwSAxJtunNm9QxqFIYlM66/view?usp=drive_link	867 B	2023-03-07	2024-05-04
Pretty URL drive.google.com/file/d/1zklh84ga2qZwSAxJtunNm9QxqFIYlM66/view?usp=drive_link IP 142.250.74.142 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-07 12:22:04 Last Seen2024-05-04 02:06:24 Times Seen38 Hash 223b92e955cc3f7b333f9a77b68013ed 3c52352570f0861411b5b39ffd8dc56b16fdff86 bb1635262dc4ca940f4ad08ed204aadbaf7fe7692bf5d1c388ccd223e9c84a7c Loading...

	www.gstatic.com/_/apps-fileview/_/js/k=apps-fileview.v.no.iZR-gPbEVN0.O/am=AAw/d=0/rs=AO0039vPH2I2kvE1e0rE-WtGF30RaZyzCA/m=MpJwZc,UUJqVe,sy3,s39S4,syl,pw70Gc	6.8 kB	2024-04-21	2024-04-24
Pretty URL www.gstatic.com/_/apps-fileview/_/js/k=apps-fileview.v.no.iZR-gPbEVN0.O/am=AAw/d=0/rs=AO0039vPH2I2kvE1e0rE-WtGF30RaZyzCA/m=MpJwZc,UUJqVe,sy3,s39S4,syl,pw70Gc IP 142.250.74.35 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2024-04-21 07:31:45 Last Seen2024-04-24 19:57:39 Times Seen6 Hash c4e2f9930b7c7e2a68eafb5212f31461 afd4317b6e167c6e2bba479e5adf23dbf9f87312 e3deeaa7847f24032f4daf90ed0c23490e6a08a32498e9e30bab8bb0874007e5 Loading...

	apis.google.com/_/scs/abc-static/_/js/k=gapi.gapi.en.SCWmpDDGjPk.O/m=gapi_iframes,googleapis_client/rt=j/sv=1/d=1/ed=1/am=AAAC/rs=AHpOoo_Pl64J0IIHlj2zBtEJ3ZwdaJC3HA/cb=gapi.loaded_0	122 kB	2024-04-22	2024-05-05
Pretty URL apis.google.com/_/scs/abc-static/_/js/k=gapi.gapi.en.SCWmpDDGjPk.O/m=gapi_iframes,googleapis_client/rt=j/sv=1/d=1/ed=1/am=AAAC/rs=AHpOoo_Pl64J0IIHlj2zBtEJ3ZwdaJC3HA/cb=gapi.loaded_0 IP 142.250.74.110 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2024-04-22 20:08:14 Last Seen2024-05-05 20:57:47 Times Seen1953 Hash f46acd807a10216e6eee8ea51e0f14d6 4702f47070f7046689432dcf605f11364bc0fbed d6b84873d27e7e83cf5184aaef778f1ccb896467576cd8af2cad09b31b3c6086 Loading...

	content.googleapis.com/static/proxy.html?usegapi=1&jsh=m%3B%2F_%2Fscs%2Fabc-static%2F_%2Fjs%2Fk%3Dgapi.gapi.en.SCWmpDDGjPk.O%2Fam%3DAAAC%2Fd%3D1%2Frs%3DAHpOoo_Pl64J0IIHlj2zBtEJ3ZwdaJC3HA%2Fm%3D__features__#parent=https%3A%2F%2Fdrive.google.com&rpctoken=2105545458	0 B	2023-03-07	2024-05-06
Pretty URL content.googleapis.com/static/proxy.html?usegapi=1&jsh=m%3B%2F_%2Fscs%2Fabc-static%2F_%2Fjs%2Fk%3Dgapi.gapi.en.SCWmpDDGjPk.O%2Fam%3DAAAC%2Fd%3D1%2Frs%3DAHpOoo_Pl64J0IIHlj2zBtEJ3ZwdaJC3HA%2Fm%3D__features__#parent=https%3A%2F%2Fdrive.google.com&rpctoken=2105545458 IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-07 01:01:59 Last Seen2024-05-06 01:27:21 Times Seen37371821 Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 Loading...

	apis.google.com/_/scs/abc-static/_/js/k=gapi.gapi.en.SCWmpDDGjPk.O/m=googleapis_proxy/rt=j/sv=1/d=1/ed=1/am=AAAC/rs=AHpOoo_Pl64J0IIHlj2zBtEJ3ZwdaJC3HA/cb=gapi.loaded_0?le=scs	80 kB	2024-04-23	2024-05-05
Pretty URL apis.google.com/_/scs/abc-static/_/js/k=gapi.gapi.en.SCWmpDDGjPk.O/m=googleapis_proxy/rt=j/sv=1/d=1/ed=1/am=AAAC/rs=AHpOoo_Pl64J0IIHlj2zBtEJ3ZwdaJC3HA/cb=gapi.loaded_0?le=scs IP 142.250.74.110 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2024-04-23 15:57:49 Last Seen2024-05-05 17:23:15 Times Seen36 Hash 5845c4b4039a782892ba98eefe3537fe 53094e84be77e96afe3b3f3cf337044a8ac3c4db f730fb8496d16c5f117388bb3f5f2b117db2d49aa9c35e7bfd5318c7253dbfd2 Loading...

	drive.google.com/file/d/1zklh84ga2qZwSAxJtunNm9QxqFIYlM66/view?usp=drive_link	107 B	2023-03-07	2024-05-04
Pretty URL drive.google.com/file/d/1zklh84ga2qZwSAxJtunNm9QxqFIYlM66/view?usp=drive_link IP 142.250.74.142 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-07 12:22:04 Last Seen2024-05-04 02:06:24 Times Seen46 Hash be3591661984aac68dd45a8c3a21bfdf 9a7b331a622fa75d4f175783dddbde01ecfa475f 4de9ecfed374c555f67e271788e4662ba4e2abcd23f693be9870d6a1203c34d6 Loading...

	drive.google.com/file/d/1zklh84ga2qZwSAxJtunNm9QxqFIYlM66/view?usp=drive_link	6.8 kB	2024-04-16	2024-05-01
Pretty URL drive.google.com/file/d/1zklh84ga2qZwSAxJtunNm9QxqFIYlM66/view?usp=drive_link IP 142.250.74.142 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML true Observations First Seen2024-04-16 18:25:05 Last Seen2024-05-01 17:28:59 Times Seen27 Hash e9b05c1e52c1a544dba3c8991afcd7f3 2b944343f6e8ca01b1c96fc769aa9e2a88219248 891c43df6d08248738e2d4f2193a68f7cf31d2053d279a127f7041bdad68eb66 Loading...

	www.gstatic.com/_/apps-fileview/_/js/k=apps-fileview.v.no.iZR-gPbEVN0.O/am=AAw/d=1/rs=AO0039vPH2I2kvE1e0rE-WtGF30RaZyzCA/m=v,wb	1.8 MB	2024-04-21	2024-04-24
Pretty URL www.gstatic.com/_/apps-fileview/_/js/k=apps-fileview.v.no.iZR-gPbEVN0.O/am=AAw/d=1/rs=AO0039vPH2I2kvE1e0rE-WtGF30RaZyzCA/m=v,wb IP 142.250.74.35 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2024-04-21 07:31:46 Last Seen2024-04-24 19:57:39 Times Seen6 Hash 43323d6ef00fbae8855f84cf5ec707ae 039a89a940a58b129eaaf12fc2d171417dd3c078 3067abee46c0f6fe74d789bf60def190d734d56b33bbc6f610de36d902d56413 Loading...

	apis.google.com/_/scs/abc-static/_/js/k=gapi.gapi.en.SCWmpDDGjPk.O/m=client/exm=gapi_iframes,googleapis_client/rt=j/sv=1/d=1/ed=1/am=AAAC/rs=AHpOoo_Pl64J0IIHlj2zBtEJ3ZwdaJC3HA/cb=gapi.loaded_1	208 kB	2024-04-23	2024-05-05
Pretty URL apis.google.com/_/scs/abc-static/_/js/k=gapi.gapi.en.SCWmpDDGjPk.O/m=client/exm=gapi_iframes,googleapis_client/rt=j/sv=1/d=1/ed=1/am=AAAC/rs=AHpOoo_Pl64J0IIHlj2zBtEJ3ZwdaJC3HA/cb=gapi.loaded_1 IP 142.250.74.110 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2024-04-23 15:57:49 Last Seen2024-05-05 17:23:15 Times Seen39 Hash e2965c7b2c07132ba0770965efe81ca4 b1aa82452465dd74bc80bda33c62ce7ecb172064 82b3f379a1bbb41de5081e80dd9583ad5e77c011b501cde5f9317463001f3ca2 Loading...

	www.gstatic.com/_/apps-fileview/_/js/k=apps-fileview.v.no.iZR-gPbEVN0.O/am=AAw/d=0/rs=AO0039vPH2I2kvE1e0rE-WtGF30RaZyzCA/m=dSirkf,sy5l,sy1m,n90YA,ZGAB2e,sLGWFe,sy1h,sy2p,sy1o,sy3d,M79aPc,syq,sys,sy10,sy1j,sy1n,sy1u,sy2i,sy2q,sy2v,sy32,sy3f,sy3s,sy3p,sy53,nJ4XF,sy5m,sy5o,UKcSG,AtsVYc	948 kB	2024-04-21	2024-04-24
Pretty URL www.gstatic.com/_/apps-fileview/_/js/k=apps-fileview.v.no.iZR-gPbEVN0.O/am=AAw/d=0/rs=AO0039vPH2I2kvE1e0rE-WtGF30RaZyzCA/m=dSirkf,sy5l,sy1m,n90YA,ZGAB2e,sLGWFe,sy1h,sy2p,sy1o,sy3d,M79aPc,syq,sys,sy10,sy1j,sy1n,sy1u,sy2i,sy2q,sy2v,sy32,sy3f,sy3s,sy3p,sy53,nJ4XF,sy5m,sy5o,UKcSG,AtsVYc IP 142.250.74.35 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2024-04-21 07:31:46 Last Seen2024-04-24 19:57:39 Times Seen6 Hash b9eda9964a246f920328b9f17c45408f ecf78ae87a640d307df38121f81675bb30801f3c ada29511459e035212c60b6448a5252ab7a20905ffd74e027a5d08a2bcd1533d Loading...

HTTP Transactions (54)

URL IP Response Size

0nline.tighocontracts.info/

104.21.88.52

302 Found

9.1 kB

URL User Request GET HTTP/2
0nline.tighocontracts.info/
IP
104.21.88.52:443
ASN
#13335 CLOUDFLARENET

Certificate
IssuerGoogle Trust Services LLC
Subjecttighocontracts.info
Fingerprint38:38:FF:28:AA:50:99:9A:12:D4:85:10:D8:8E:5E:0D:44:30:F2:70
ValiditySun, 21 Apr 2024 19:47:51 GMT - Sat, 20 Jul 2024 19:47:50 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3
Size
9.1 kB (9061 bytes)
Hash
52defdaf751019bfa6dd666b465f5f42
33d975121c9fe3047fa701bceea61fb7ba060528
11a9df441b5b4f43f14a59e27d29f55bb692c89bdc1cc3689167be4b28d8d04c

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Outlook

HTTP Headers

GET / HTTP/1.1
Host: 0nline.tighocontracts.info
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 302 Found
date: Wed, 24 Apr 2024 17:57:01 GMT
content-type: text/html; charset=utf-8
location: https://drive.google.com/file/d/1zklh84ga2qZwSAxJtunNm9QxqFIYlM66/view?usp=drive_link
referrer-policy: no-referrer
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=JEmh9SYklqFV6S8Nalwe4Ot9aVmR8U4LwnJlheoHdUxNZl%2FGt6KOb45I50IhvW27j6j8l31%2B4EEV6UTpWegLALAYK%2FD3pVnZbphCXk800F5cheHEQUUCX8ODjz%2FNt5cikQtWMA6Nfe%2BNcD5P5Q%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8797f9264b5f568d-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

fonts.googleapis.com/css?family=Google+Sans:300,400,500,700

142.250.74.106

200 OK

1.9 kB

URL GET HTTP/2
fonts.googleapis.com/css?family=Google+Sans:300,400,500,700
IP
142.250.74.106:443
ASN
#15169 GOOGLE

Requested by
https://drive.google.com/file/d/1zklh84ga2qZwSAxJtunNm9QxqFIYlM66/view?usp=drive_link
Certificate
IssuerGoogle Trust Services LLC
Subjectupload.video.google.com
Fingerprint15:CB:F7:AC:18:3F:DC:1E:F9:4E:94:D1:98:40:40:61:53:17:28:F2
ValidityMon, 18 Mar 2024 20:35:28 GMT - Mon, 10 Jun 2024 20:35:27 GMT

File type
gzip compressed data, max compression
Size
1.9 kB (1864 bytes)
Hash
599c05c5173329481a2231b93a3aef54
29a0c9fd726c51cc8cafac89a8c6e31484ba65f6
21688bdb7c4c4029c27476a6aafb838684068137191e8952dae4e1de45adf946

HTTP Headers

GET /css?family=Google+Sans:300,400,500,700 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://drive.google.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Wed, 24 Apr 2024 17:57:02 GMT
date: Wed, 24 Apr 2024 17:57:02 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

www.gstatic.com/_/apps-fileview/_/js/k=apps-fileview.v.no.iZR-gPbEVN0.O/am=AAw/d=1/rs=AO0039vPH2I2kvE1e0rE-WtGF30RaZyzCA/m=v,wb

142.250.74.35

200 OK

573 kB

URL GET HTTP/2
www.gstatic.com/_/apps-fileview/_/js/k=apps-fileview.v.no.iZR-gPbEVN0.O/am=AAw/d=1/rs=AO0039vPH2I2kvE1e0rE-WtGF30RaZyzCA/m=v,wb
IP
142.250.74.35:443
ASN
#15169 GOOGLE

Requested by
https://drive.google.com/file/d/1zklh84ga2qZwSAxJtunNm9QxqFIYlM66/view?usp=drive_link
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintF5:5C:D9:68:C6:5F:A3:33:5A:73:C3:79:B6:83:FE:44:2E:A4:83:74
ValidityMon, 18 Mar 2024 20:34:25 GMT - Mon, 10 Jun 2024 20:34:24 GMT

File type
JavaScript source, ASCII text, with very long lines (630)
Size
573 kB (572601 bytes)
Hash
43323d6ef00fbae8855f84cf5ec707ae
039a89a940a58b129eaaf12fc2d171417dd3c078
3067abee46c0f6fe74d789bf60def190d734d56b33bbc6f610de36d902d56413

HTTP Headers

GET /_/apps-fileview/_/js/k=apps-fileview.v.no.iZR-gPbEVN0.O/am=AAw/d=1/rs=AO0039vPH2I2kvE1e0rE-WtGF30RaZyzCA/m=v,wb HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://drive.google.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
content-encoding: gzip
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-fileview
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-fileview"
report-to: {"group":"apps-fileview","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-fileview"}]}
content-length: 572601
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 23 Apr 2024 08:46:08 GMT
expires: Wed, 23 Apr 2025 08:46:08 GMT
cache-control: public, max-age=31536000
last-modified: Thu, 11 Apr 2024 01:19:25 GMT
content-type: text/javascript; charset=UTF-8
vary: Accept-Encoding, Origin
age: 119454
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

www.gstatic.com/_/apps-fileview/_/ss/k=apps-fileview.v.Z_bSvlEEPeU.L.F4.O/am=AAw/d=0/rs=AO0039td66yVsu-38jD9DZTyFI1ZztVV-w

142.250.74.35

200 OK

290 kB

URL GET HTTP/2
www.gstatic.com/_/apps-fileview/_/ss/k=apps-fileview.v.Z_bSvlEEPeU.L.F4.O/am=AAw/d=0/rs=AO0039td66yVsu-38jD9DZTyFI1ZztVV-w
IP
142.250.74.35:443
ASN
#15169 GOOGLE

Requested by
https://drive.google.com/file/d/1zklh84ga2qZwSAxJtunNm9QxqFIYlM66/view?usp=drive_link
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintF5:5C:D9:68:C6:5F:A3:33:5A:73:C3:79:B6:83:FE:44:2E:A4:83:74
ValidityMon, 18 Mar 2024 20:34:25 GMT - Mon, 10 Jun 2024 20:34:24 GMT

File type
ASCII text, with very long lines (65536), with no line terminators
Size
290 kB (289791 bytes)
Hash
e08749943db733d7e31620db5c801e8d
cfc330cd3117f41edf0551e9d001de89c1cccecf
992d5c2a710f45ac6b6df3363322f4615fb8dd1ed9e13b5e6935d37acd373ff1

HTTP Headers

GET /_/apps-fileview/_/ss/k=apps-fileview.v.Z_bSvlEEPeU.L.F4.O/am=AAw/d=0/rs=AO0039td66yVsu-38jD9DZTyFI1ZztVV-w HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://drive.google.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
content-encoding: gzip
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-fileview
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-fileview"
report-to: {"group":"apps-fileview","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-fileview"}]}
content-length: 289791
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 18 Apr 2024 18:32:19 GMT
expires: Fri, 18 Apr 2025 18:32:19 GMT
cache-control: public, max-age=31536000
last-modified: Thu, 11 Apr 2024 01:19:25 GMT
content-type: text/css; charset=UTF-8
vary: Accept-Encoding, Origin
age: 516283
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

lh3.googleusercontent.com/drive-viewer/AKGpihaTtx-7FjhYKNAyMu0EnBaBchKZpokd2GW0NvanFsRTGYvDocXfqCsljfCF8M9ZnaskHFjNzovW9mB7jIMnbAPx-yjjIR3OUsw=s1600-rw-v1

142.250.74.97

200 OK

157 kB

URL GET HTTP/2
lh3.googleusercontent.com/drive-viewer/AKGpihaTtx-7FjhYKNAyMu0EnBaBchKZpokd2GW0NvanFsRTGYvDocXfqCsljfCF8M9ZnaskHFjNzovW9mB7jIMnbAPx-yjjIR3OUsw=s1600-rw-v1
IP
142.250.74.97:443
ASN
#15169 GOOGLE

Requested by
https://drive.google.com/file/d/1zklh84ga2qZwSAxJtunNm9QxqFIYlM66/view?usp=drive_link
Certificate
IssuerGoogle Trust Services LLC
Subject*.googleusercontent.com
Fingerprint6E:66:E1:45:85:5C:3A:EB:60:4A:8E:EF:62:B8:7C:E3:C7:1B:FA:47
ValidityMon, 18 Mar 2024 20:34:07 GMT - Mon, 10 Jun 2024 20:34:06 GMT

File type
RIFF (little-endian) data, Web/P image, VP8 encoding, 1024x1325, Scaling: [none]x[none], YUV color, decoders should clamp
Size
157 kB (156610 bytes)
Hash
016b7c7648c3e0f6264afa58af720490
56c71ffa9517a9c2176f723732234030b9bec415
982f7c17f0e6ea38cc355093ea9d89fb37d1cd4f156c0c62033e95453f90e3e9

HTTP Headers

GET /drive-viewer/AKGpihaTtx-7FjhYKNAyMu0EnBaBchKZpokd2GW0NvanFsRTGYvDocXfqCsljfCF8M9ZnaskHFjNzovW9mB7jIMnbAPx-yjjIR3OUsw=s1600-rw-v1 HTTP/1.1
Host: lh3.googleusercontent.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://drive.google.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
content-type: image/webp
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
access-control-expose-headers: Content-Length
etag: "v1"
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: private, max-age=86400, no-transform
content-disposition: inline;filename="bechtel - NW Confidentiality Agreement.pdf.webp"
x-content-type-options: nosniff
date: Wed, 24 Apr 2024 17:57:02 GMT
server: fife
content-length: 156610
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

www.gstatic.com/og/_/js/k=og.qtm.en_US.oT1FwJRCVC4.2019.O/rt=j/m=qabr,q_dnp,qapid,qads,q_dg/exm=qaaw,qadd,qaid,qein,qhaw,qhba,qhbr,qhch,qhga,qhid,qhin/d=1/ed=1/rs=AA2YrTvBynad-nWEy1xIb9j1w6LpLOF6IQ

142.250.74.35

200 OK

77 kB

URL GET HTTP/3
www.gstatic.com/og/_/js/k=og.qtm.en_US.oT1FwJRCVC4.2019.O/rt=j/m=qabr,q_dnp,qapid,qads,q_dg/exm=qaaw,qadd,qaid,qein,qhaw,qhba,qhbr,qhch,qhga,qhid,qhin/d=1/ed=1/rs=AA2YrTvBynad-nWEy1xIb9j1w6LpLOF6IQ
IP
142.250.74.35:443
ASN
#15169 GOOGLE

Requested by
https://drive.google.com/file/d/1zklh84ga2qZwSAxJtunNm9QxqFIYlM66/view?usp=drive_link
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintF5:5C:D9:68:C6:5F:A3:33:5A:73:C3:79:B6:83:FE:44:2E:A4:83:74
ValidityMon, 18 Mar 2024 20:34:25 GMT - Mon, 10 Jun 2024 20:34:24 GMT

File type
JavaScript source, ASCII text, with very long lines (2114)
Size
77 kB (77040 bytes)
Hash
dfb1c20b409bcbec4dae300cc3651c6d
4bea498c43ace7b538852dc4bd713cecb370b93e
f97bc1115687033194e62ae733fadce1bf41297f835136c10d7fe4f870643909

HTTP Headers

GET /og/_/js/k=og.qtm.en_US.oT1FwJRCVC4.2019.O/rt=j/m=qabr,q_dnp,qapid,qads,q_dg/exm=qaaw,qadd,qaid,qein,qhaw,qhba,qhbr,qhch,qhga,qhid,qhin/d=1/ed=1/rs=AA2YrTvBynad-nWEy1xIb9j1w6LpLOF6IQ HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://drive.google.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
accept-ranges: bytes
content-encoding: gzip
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/one-google-eng
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="one-google-eng"
report-to: {"group":"one-google-eng","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/one-google-eng"}]}
content-length: 77040
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 23 Apr 2024 07:30:55 GMT
expires: Wed, 23 Apr 2025 07:30:55 GMT
cache-control: public, max-age=31536000
last-modified: Sat, 13 Apr 2024 01:39:54 GMT
content-type: text/javascript; charset=UTF-8
vary: Accept-Encoding, Origin
age: 123968
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

fonts.gstatic.com/s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2

216.58.207.227

200 OK

15 kB

URL GET HTTP/2
fonts.gstatic.com/s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2
IP
216.58.207.227:443
ASN
#15169 GOOGLE

Requested by
https://drive.google.com/file/d/1zklh84ga2qZwSAxJtunNm9QxqFIYlM66/view?usp=drive_link
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintF5:5C:D9:68:C6:5F:A3:33:5A:73:C3:79:B6:83:FE:44:2E:A4:83:74
ValidityMon, 18 Mar 2024 20:34:25 GMT - Mon, 10 Jun 2024 20:34:24 GMT

File type
Web Open Font Format (Version 2), TrueType, length 15344, version 1.0
Size
15 kB (15344 bytes)
Hash
5d4aeb4e5f5ef754e307d7ffaef688bd
06db651cdf354c64a7383ea9c77024ef4fb4cef8
3e253b66056519aa065b00a453bac37ac5ed8f3e6fe7b542e93a9dcdcc11d0bc

HTTP Headers

GET /s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Referer: https://drive.google.com/
Origin: https://drive.google.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15344
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 18 Apr 2024 02:43:03 GMT
expires: Fri, 18 Apr 2025 02:43:03 GMT
cache-control: public, max-age=31536000
age: 573240
last-modified: Mon, 16 Oct 2017 17:32:55 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

fonts.gstatic.com/s/googlesans/v58/4UasrENHsxJlGDuGo1OIlJfC6l_24rlCK1Yo_Iqcsih3SAyH6cAwhX9RPjIUvQ.woff2

216.58.207.227

200 OK

34 kB

URL GET HTTP/3
fonts.gstatic.com/s/googlesans/v58/4UasrENHsxJlGDuGo1OIlJfC6l_24rlCK1Yo_Iqcsih3SAyH6cAwhX9RPjIUvQ.woff2
IP
216.58.207.227:443
ASN
#15169 GOOGLE

Requested by
https://drive.google.com/file/d/1zklh84ga2qZwSAxJtunNm9QxqFIYlM66/view?usp=drive_link
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintF5:5C:D9:68:C6:5F:A3:33:5A:73:C3:79:B6:83:FE:44:2E:A4:83:74
ValidityMon, 18 Mar 2024 20:34:25 GMT - Mon, 10 Jun 2024 20:34:24 GMT

File type
Web Open Font Format (Version 2), TrueType, length 34108, version 1.0
Size
34 kB (34108 bytes)
Hash
c15d33a9508923be839d315a999ab9c7
d17f6e786a1464e13d4ec8e842f4eb121b103842
65c99d3b9f1a1b905046e30d00a97f2d4d605e565c32917e7a89a35926e04b98

HTTP Headers

GET /s/googlesans/v58/4UasrENHsxJlGDuGo1OIlJfC6l_24rlCK1Yo_Iqcsih3SAyH6cAwhX9RPjIUvQ.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://drive.google.com
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 34108
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 23 Apr 2024 01:58:19 GMT
expires: Wed, 23 Apr 2025 01:58:19 GMT
cache-control: public, max-age=31536000
age: 143924
last-modified: Tue, 23 May 2023 16:35:55 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

ssl.gstatic.com/images/branding/product/1x/drive_2020q4_32dp.png

142.250.74.67

200 OK

831 B

URL GET HTTP/2
ssl.gstatic.com/images/branding/product/1x/drive_2020q4_32dp.png
IP
142.250.74.67:443
ASN
#15169 GOOGLE

Requested by
https://drive.google.com/file/d/1zklh84ga2qZwSAxJtunNm9QxqFIYlM66/view?usp=drive_link
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintF5:5C:D9:68:C6:5F:A3:33:5A:73:C3:79:B6:83:FE:44:2E:A4:83:74
ValidityMon, 18 Mar 2024 20:34:25 GMT - Mon, 10 Jun 2024 20:34:24 GMT

File type
PNG image data, 32 x 32, 8-bit/color RGBA, non-interlaced
Size
831 B (831 bytes)
Hash
916c9bcccf19525ad9d3cd1514008746
9ccce6978d2417927b5150ffaac22f907ff27b6e
358e814139d3ed8469b36935a071be6696ccad7dd9bdbfdb80c052b068ae2a50

HTTP Headers

GET /images/branding/product/1x/drive_2020q4_32dp.png HTTP/1.1
Host: ssl.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://drive.google.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="static-on-bigtable"
report-to: {"group":"static-on-bigtable","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/static-on-bigtable"}]}
content-length: 831
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 18 Apr 2024 17:34:02 GMT
expires: Fri, 18 Apr 2025 17:34:02 GMT
cache-control: public, max-age=31536000
age: 519781
last-modified: Fri, 21 Aug 2020 00:15:00 GMT
content-type: image/png
vary: Origin
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

apis.google.com/_/scs/abc-static/_/js/k=gapi.gapi.en.SCWmpDDGjPk.O/m=gapi_iframes,googleapis_client/rt=j/sv=1/d=1/ed=1/am=AAAC/rs=AHpOoo_Pl64J0IIHlj2zBtEJ3ZwdaJC3HA/cb=gapi.loaded_0

142.250.74.110

200 OK

41 kB

URL GET HTTP/2
apis.google.com/_/scs/abc-static/_/js/k=gapi.gapi.en.SCWmpDDGjPk.O/m=gapi_iframes,googleapis_client/rt=j/sv=1/d=1/ed=1/am=AAAC/rs=AHpOoo_Pl64J0IIHlj2zBtEJ3ZwdaJC3HA/cb=gapi.loaded_0
IP
142.250.74.110:443
ASN
#15169 GOOGLE

Requested by
https://drive.google.com/file/d/1zklh84ga2qZwSAxJtunNm9QxqFIYlM66/view?usp=drive_link
Certificate
IssuerGoogle Trust Services LLC
Subject*.apis.google.com
FingerprintE8:68:ED:59:65:88:CD:45:4F:B0:64:88:FF:F3:32:D4:8B:C7:75:F0
ValidityMon, 18 Mar 2024 20:39:12 GMT - Mon, 10 Jun 2024 20:39:11 GMT

File type
JavaScript source, ASCII text, with very long lines (2124)
Size
41 kB (41189 bytes)
Hash
f46acd807a10216e6eee8ea51e0f14d6
4702f47070f7046689432dcf605f11364bc0fbed
d6b84873d27e7e83cf5184aaef778f1ccb896467576cd8af2cad09b31b3c6086

HTTP Headers

GET /_/scs/abc-static/_/js/k=gapi.gapi.en.SCWmpDDGjPk.O/m=gapi_iframes,googleapis_client/rt=j/sv=1/d=1/ed=1/am=AAAC/rs=AHpOoo_Pl64J0IIHlj2zBtEJ3ZwdaJC3HA/cb=gapi.loaded_0 HTTP/1.1
Host: apis.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://drive.google.com/
DNT: 1
Connection: keep-alive
Cookie: SOCS=CAESHAgBEhJnd3NfMjAyMjA5MjktMF9SQzEaAnJvIAEaBgiAkvOZBg; NID=513=nNqj3FU-s23g4ssAGQDdmXX4gWaZUBrOoksE1gjg66sClvgdHoSZvJEndqJJT01L4v-A52wHwU820Yu2X89uB3Gi68fKmclxL1xpDegGRsOmriZNT1zKrkQpdOBIx2NOxwITWhObk4zFM5L3fzTGRP2ecHUeJZ90Ts_1bCFn8tw
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/social-frontend-mpm-access
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="social-frontend-mpm-access"
report-to: {"group":"social-frontend-mpm-access","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/social-frontend-mpm-access"}]}
content-length: 41189
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 23 Apr 2024 19:16:48 GMT
expires: Wed, 23 Apr 2025 19:16:48 GMT
cache-control: public, max-age=31536000
age: 81615
last-modified: Mon, 15 Apr 2024 17:34:54 GMT
content-type: text/javascript; charset=UTF-8
vary: Accept-Encoding
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

www.gstatic.com/feedback/js/help/prod/service/lazy.min.js

142.250.74.35

200 OK

37 kB

URL GET HTTP/3
www.gstatic.com/feedback/js/help/prod/service/lazy.min.js
IP
142.250.74.35:443
ASN
#15169 GOOGLE

Requested by
https://drive.google.com/file/d/1zklh84ga2qZwSAxJtunNm9QxqFIYlM66/view?usp=drive_link
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintF5:5C:D9:68:C6:5F:A3:33:5A:73:C3:79:B6:83:FE:44:2E:A4:83:74
ValidityMon, 18 Mar 2024 20:34:25 GMT - Mon, 10 Jun 2024 20:34:24 GMT

File type
JavaScript source, ASCII text, with very long lines (3383)
Size
37 kB (36994 bytes)
Hash
de2f04957196ac8c3c7678ad4c33a46a
4788d5b2576e992626df52268f212a5a2d141d02
e4073a5d69e86546e65b01c6f50f43b91691ceee2a9eedfe2ddfcbb90a8d695b

HTTP Headers

GET /feedback/js/help/prod/service/lazy.min.js HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://drive.google.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
accept-ranges: bytes
content-encoding: gzip
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/product-feedback-gathering
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups; report-to="product-feedback-gathering"
report-to: {"group":"product-feedback-gathering","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/product-feedback-gathering"}]}
content-length: 36994
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 24 Apr 2024 17:42:27 GMT
expires: Wed, 24 Apr 2024 18:32:27 GMT
cache-control: public, max-age=3000
last-modified: Tue, 23 Apr 2024 16:28:31 GMT
content-type: text/javascript
vary: Accept-Encoding, Origin
age: 876
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

www.gstatic.com/_/apps-fileview/_/js/k=apps-fileview.v.no.iZR-gPbEVN0.O/am=AAw/d=0/rs=AO0039vPH2I2kvE1e0rE-WtGF30RaZyzCA/m=MpJwZc,UUJqVe,sy3,s39S4,syl,pw70Gc

142.250.74.35

200 OK

2.7 kB

URL GET HTTP/3
www.gstatic.com/_/apps-fileview/_/js/k=apps-fileview.v.no.iZR-gPbEVN0.O/am=AAw/d=0/rs=AO0039vPH2I2kvE1e0rE-WtGF30RaZyzCA/m=MpJwZc,UUJqVe,sy3,s39S4,syl,pw70Gc
IP
142.250.74.35:443
ASN
#15169 GOOGLE

Requested by
https://drive.google.com/file/d/1zklh84ga2qZwSAxJtunNm9QxqFIYlM66/view?usp=drive_link
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintF5:5C:D9:68:C6:5F:A3:33:5A:73:C3:79:B6:83:FE:44:2E:A4:83:74
ValidityMon, 18 Mar 2024 20:34:25 GMT - Mon, 10 Jun 2024 20:34:24 GMT

File type
JavaScript source, ASCII text, with very long lines (618)
Size
2.7 kB (2739 bytes)
Hash
c4e2f9930b7c7e2a68eafb5212f31461
afd4317b6e167c6e2bba479e5adf23dbf9f87312
e3deeaa7847f24032f4daf90ed0c23490e6a08a32498e9e30bab8bb0874007e5

HTTP Headers

GET /_/apps-fileview/_/js/k=apps-fileview.v.no.iZR-gPbEVN0.O/am=AAw/d=0/rs=AO0039vPH2I2kvE1e0rE-WtGF30RaZyzCA/m=MpJwZc,UUJqVe,sy3,s39S4,syl,pw70Gc HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://drive.google.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
accept-ranges: bytes
content-encoding: gzip
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-fileview
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-fileview"
report-to: {"group":"apps-fileview","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-fileview"}]}
content-length: 2739
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 18 Apr 2024 19:16:54 GMT
expires: Fri, 18 Apr 2025 19:16:54 GMT
cache-control: public, max-age=31536000
last-modified: Thu, 11 Apr 2024 01:19:25 GMT
content-type: text/javascript; charset=UTF-8
vary: Accept-Encoding, Origin
age: 513609
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

apis.google.com/_/scs/abc-static/_/js/k=gapi.gapi.en.SCWmpDDGjPk.O/m=client/exm=gapi_iframes,googleapis_client/rt=j/sv=1/d=1/ed=1/am=AAAC/rs=AHpOoo_Pl64J0IIHlj2zBtEJ3ZwdaJC3HA/cb=gapi.loaded_1

142.250.74.110

200 OK

71 kB

URL GET HTTP/3
apis.google.com/_/scs/abc-static/_/js/k=gapi.gapi.en.SCWmpDDGjPk.O/m=client/exm=gapi_iframes,googleapis_client/rt=j/sv=1/d=1/ed=1/am=AAAC/rs=AHpOoo_Pl64J0IIHlj2zBtEJ3ZwdaJC3HA/cb=gapi.loaded_1
IP
142.250.74.110:443
ASN
#15169 GOOGLE

Requested by
https://drive.google.com/file/d/1zklh84ga2qZwSAxJtunNm9QxqFIYlM66/view?usp=drive_link
Certificate
IssuerGoogle Trust Services LLC
Subject*.google.com
Fingerprint70:CC:1A:8A:58:6C:1F:6D:43:AE:66:75:89:F7:99:7B:BC:7A:74:2D
ValidityMon, 18 Mar 2024 19:37:19 GMT - Mon, 10 Jun 2024 19:37:18 GMT

File type
JavaScript source, ASCII text, with very long lines (1293)
Size
71 kB (71337 bytes)
Hash
e2965c7b2c07132ba0770965efe81ca4
b1aa82452465dd74bc80bda33c62ce7ecb172064
82b3f379a1bbb41de5081e80dd9583ad5e77c011b501cde5f9317463001f3ca2

HTTP Headers

GET /_/scs/abc-static/_/js/k=gapi.gapi.en.SCWmpDDGjPk.O/m=client/exm=gapi_iframes,googleapis_client/rt=j/sv=1/d=1/ed=1/am=AAAC/rs=AHpOoo_Pl64J0IIHlj2zBtEJ3ZwdaJC3HA/cb=gapi.loaded_1 HTTP/1.1
Host: apis.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://drive.google.com/
DNT: 1
Connection: keep-alive
Cookie: SOCS=CAESHAgBEhJnd3NfMjAyMjA5MjktMF9SQzEaAnJvIAEaBgiAkvOZBg; NID=513=nNqj3FU-s23g4ssAGQDdmXX4gWaZUBrOoksE1gjg66sClvgdHoSZvJEndqJJT01L4v-A52wHwU820Yu2X89uB3Gi68fKmclxL1xpDegGRsOmriZNT1zKrkQpdOBIx2NOxwITWhObk4zFM5L3fzTGRP2ecHUeJZ90Ts_1bCFn8tw
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
accept-ranges: bytes
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/social-frontend-mpm-access
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="social-frontend-mpm-access"
report-to: {"group":"social-frontend-mpm-access","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/social-frontend-mpm-access"}]}
content-length: 71337
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 22 Apr 2024 09:25:43 GMT
expires: Tue, 22 Apr 2025 09:25:43 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 15 Apr 2024 17:34:54 GMT
content-type: text/javascript; charset=UTF-8
vary: Accept-Encoding
age: 203480
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

play.google.com/log?format=json&hasfast=true

142.250.74.14

200 OK

131 B

URL POST HTTP/3
play.google.com/log?format=json&hasfast=true
IP
142.250.74.14:443
ASN
#15169 GOOGLE

Requested by
https://drive.google.com/file/d/1zklh84ga2qZwSAxJtunNm9QxqFIYlM66/view?usp=drive_link
Certificate
IssuerGoogle Trust Services LLC
Subject*.google.com
Fingerprint70:CC:1A:8A:58:6C:1F:6D:43:AE:66:75:89:F7:99:7B:BC:7A:74:2D
ValidityMon, 18 Mar 2024 19:37:19 GMT - Mon, 10 Jun 2024 19:37:18 GMT

File type
JSON text data
Size
131 B (131 bytes)
Hash
ca0b7e866005f6774d284b9f438ebfd2
53644f5ee3640189bdb223473ba6a2d46606c556
502e9680cfa78fa8be779cbf4f1947c8eaa3d43bf8c7464800ec772b2ddea358

HTTP Headers

POST /log?format=json&hasfast=true HTTP/1.1
Host: play.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://drive.google.com/
Content-Type: text/plain;charset=UTF-8
Content-Length: 1848
Origin: https://drive.google.com
DNT: 1
Connection: keep-alive
Cookie: SOCS=CAESHAgBEhJnd3NfMjAyMjA5MjktMF9SQzEaAnJvIAEaBgiAkvOZBg; NID=513=nNqj3FU-s23g4ssAGQDdmXX4gWaZUBrOoksE1gjg66sClvgdHoSZvJEndqJJT01L4v-A52wHwU820Yu2X89uB3Gi68fKmclxL1xpDegGRsOmriZNT1zKrkQpdOBIx2NOxwITWhObk4zFM5L3fzTGRP2ecHUeJZ90Ts_1bCFn8tw
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
access-control-allow-origin: https://drive.google.com
cross-origin-resource-policy: cross-origin
access-control-allow-credentials: true
access-control-allow-headers: X-Playlog-Web
set-cookie: NID=513=c5bb5qe8561Qs5s34Gn9r7YSFMoELkOltYWUeJjpVJPZCT4VpqEvQPQktJAcg3tkrhUkoF68YZta2tDZ7J2VIP28dWKK97ZuCm6TJHYB7NE_eXrjxyaAO8mKcv4sPbMP66WfSjxzRWKKIQ1T_208Oj8Rs0THoo1Nj3g7r75q6QU; expires=Thu, 24-Oct-2024 17:57:04 GMT; path=/; domain=.google.com; Secure; HttpOnly; SameSite=none
p3p: CP="This is not a P3P policy! See g.co/p3phelp for more info."
content-type: text/plain; charset=UTF-8
content-encoding: gzip
date: Wed, 24 Apr 2024 17:57:04 GMT
server: Playlog
cache-control: private
content-length: 131
x-xss-protection: 0
x-frame-options: SAMEORIGIN
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
expires: Wed, 24 Apr 2024 17:57:04 GMT
X-Firefox-Spdy: h2

drive.google.com/auth_warmup

142.250.74.142

200 OK

0 B

URL GET HTTP/3
drive.google.com/auth_warmup
IP
142.250.74.142:443
ASN
#15169 GOOGLE

Requested by
https://drive.google.com/file/d/1zklh84ga2qZwSAxJtunNm9QxqFIYlM66/view?usp=drive_link
Certificate
IssuerGoogle Trust Services LLC
Subject*.google.com
Fingerprint70:CC:1A:8A:58:6C:1F:6D:43:AE:66:75:89:F7:99:7B:BC:7A:74:2D
ValidityMon, 18 Mar 2024 19:37:19 GMT - Mon, 10 Jun 2024 19:37:18 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /auth_warmup HTTP/1.1
Host: drive.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://drive.google.com/
DNT: 1
Connection: keep-alive
Cookie: SOCS=CAESHAgBEhJnd3NfMjAyMjA5MjktMF9SQzEaAnJvIAEaBgiAkvOZBg; NID=513=nNqj3FU-s23g4ssAGQDdmXX4gWaZUBrOoksE1gjg66sClvgdHoSZvJEndqJJT01L4v-A52wHwU820Yu2X89uB3Gi68fKmclxL1xpDegGRsOmriZNT1zKrkQpdOBIx2NOxwITWhObk4zFM5L3fzTGRP2ecHUeJZ90Ts_1bCFn8tw
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
content-type: text/html; charset=utf-8
vary: Sec-Fetch-Dest, Sec-Fetch-Mode, Sec-Fetch-Site
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Wed, 24 Apr 2024 17:57:04 GMT
strict-transport-security: max-age=31536000
content-security-policy: script-src 'nonce-NH6ATDCCd7FbMB3OtbmXXA' 'unsafe-inline';object-src 'none';base-uri 'self';report-uri /_/DriveOsidBootstrap/cspreport;worker-src 'self', script-src 'unsafe-inline' 'self' https://apis.google.com https://ssl.gstatic.com https://www.google.com https://www.googletagmanager.com https://www.gstatic.com https://www.google-analytics.com;report-uri /_/DriveOsidBootstrap/cspreport/allowlist, require-trusted-types-for 'script';report-uri /_/DriveOsidBootstrap/cspreport
cross-origin-resource-policy: same-site
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Model, Sec-CH-UA-WoW64, Sec-CH-UA-Form-Factor, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
permissions-policy: ch-ua-arch=*, ch-ua-bitness=*, ch-ua-full-version=*, ch-ua-full-version-list=*, ch-ua-model=*, ch-ua-wow64=*, ch-ua-form-factor=*, ch-ua-platform=*, ch-ua-platform-version=*
cross-origin-opener-policy: same-origin
reporting-endpoints: default="/_/DriveOsidBootstrap/web-reports?context=eJzjEtDikmII1pBicEqfwRoExELcHB_6l25kE1iwbBsnAGitCK8"
server: ESF
content-length: 0
x-xss-protection: 0
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

ssl.gstatic.com/docs/common/cleardot.gif?zx=hhsfxgomqdua

142.250.74.67

200 OK

43 B

URL GET HTTP/3
ssl.gstatic.com/docs/common/cleardot.gif?zx=hhsfxgomqdua
IP
142.250.74.67:443
ASN
#15169 GOOGLE

Requested by
https://drive.google.com/file/d/1zklh84ga2qZwSAxJtunNm9QxqFIYlM66/view?usp=drive_link
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintF5:5C:D9:68:C6:5F:A3:33:5A:73:C3:79:B6:83:FE:44:2E:A4:83:74
ValidityMon, 18 Mar 2024 20:34:25 GMT - Mon, 10 Jun 2024 20:34:24 GMT

File type
GIF image data, version 89a, 1 x 1
Size
43 B (43 bytes)
Hash
fc94fb0c3ed8a8f909dbc7630a0987ff
56d45f8a17f5078a20af9962c992ca4678450765
2dfe28cbdb83f01c940de6a88ab86200154fd772d568035ac568664e52068363

HTTP Headers

GET /docs/common/cleardot.gif?zx=hhsfxgomqdua HTTP/1.1
Host: ssl.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://drive.google.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
accept-ranges: bytes
content-type: image/gif
vary: Origin
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/docs
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="docs"
report-to: {"group":"docs","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/docs"}]}
content-length: 43
date: Wed, 24 Apr 2024 17:57:04 GMT
expires: Thu, 24 Apr 2025 17:57:04 GMT
cache-control: public, max-age=31536000
last-modified: Thu, 02 Nov 2023 22:48:00 GMT
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

fonts.gstatic.com/s/googlesans/v58/4UasrENHsxJlGDuGo1OIlJfC6l_24rlCK1Yo_Iqcsih3SAyH6cAwhX9RPjIUvQ.woff2

216.58.207.227

200 OK

34 kB

URL GET HTTP/3
fonts.gstatic.com/s/googlesans/v58/4UasrENHsxJlGDuGo1OIlJfC6l_24rlCK1Yo_Iqcsih3SAyH6cAwhX9RPjIUvQ.woff2
IP
216.58.207.227:443
ASN
#15169 GOOGLE

Requested by
https://drive.google.com/file/d/1zklh84ga2qZwSAxJtunNm9QxqFIYlM66/view?usp=drive_link
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintF5:5C:D9:68:C6:5F:A3:33:5A:73:C3:79:B6:83:FE:44:2E:A4:83:74
ValidityMon, 18 Mar 2024 20:34:25 GMT - Mon, 10 Jun 2024 20:34:24 GMT

File type
Web Open Font Format (Version 2), TrueType, length 34108, version 1.0
Size
34 kB (34108 bytes)
Hash
c15d33a9508923be839d315a999ab9c7
d17f6e786a1464e13d4ec8e842f4eb121b103842
65c99d3b9f1a1b905046e30d00a97f2d4d605e565c32917e7a89a35926e04b98

HTTP Headers

GET /s/googlesans/v58/4UasrENHsxJlGDuGo1OIlJfC6l_24rlCK1Yo_Iqcsih3SAyH6cAwhX9RPjIUvQ.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://drive.google.com
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 34108
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 23 Apr 2024 01:58:19 GMT
expires: Wed, 23 Apr 2025 01:58:19 GMT
cache-control: public, max-age=31536000
age: 143925
last-modified: Tue, 23 May 2023 16:35:55 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

ssl.gstatic.com/docs/common/viewer/v3/v-sprite56.svg

142.250.74.67

200 OK

50 kB

URL GET HTTP/3
ssl.gstatic.com/docs/common/viewer/v3/v-sprite56.svg
IP
142.250.74.67:443
ASN
#15169 GOOGLE

Requested by
https://drive.google.com/file/d/1zklh84ga2qZwSAxJtunNm9QxqFIYlM66/view?usp=drive_link
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintF5:5C:D9:68:C6:5F:A3:33:5A:73:C3:79:B6:83:FE:44:2E:A4:83:74
ValidityMon, 18 Mar 2024 20:34:25 GMT - Mon, 10 Jun 2024 20:34:24 GMT

File type
SVG Scalable Vector Graphics image
Size
50 kB (50079 bytes)
Hash
ba7ab7044d6c6c0240c3917858948cff
3b840b104cb3d74d5a35fbd193aca32d27815d3e
0189f7c6ed35a7be5e51a30366fbc54c9c9e27d2511db44895d85a1458f83ab5

HTTP Headers

GET /docs/common/viewer/v3/v-sprite56.svg HTTP/1.1
Host: ssl.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.gstatic.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
accept-ranges: bytes
content-encoding: br
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/docs
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="docs"
report-to: {"group":"docs","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/docs"}]}
content-length: 50079
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 22 Apr 2024 15:15:28 GMT
expires: Tue, 22 Apr 2025 15:15:28 GMT
cache-control: public, max-age=31536000
last-modified: Thu, 15 Feb 2024 22:18:00 GMT
content-type: image/svg+xml
vary: Accept-Encoding, Origin
age: 182496
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

drive.google.com/drivesharing/clientmodel?id=1zklh84ga2qZwSAxJtunNm9QxqFIYlM66&foreignService=texmex&authuser=0&origin=https%3A%2F%2Fdrive.google.com

142.250.74.142

302 Found

0 B

URL GET HTTP/3
drive.google.com/drivesharing/clientmodel?id=1zklh84ga2qZwSAxJtunNm9QxqFIYlM66&foreignService=texmex&authuser=0&origin=https%3A%2F%2Fdrive.google.com
IP
142.250.74.142:443
ASN
#15169 GOOGLE

Requested by
https://drive.google.com/file/d/1zklh84ga2qZwSAxJtunNm9QxqFIYlM66/view?usp=drive_link
Certificate
IssuerGoogle Trust Services LLC
Subject*.google.com
Fingerprint70:CC:1A:8A:58:6C:1F:6D:43:AE:66:75:89:F7:99:7B:BC:7A:74:2D
ValidityMon, 18 Mar 2024 19:37:19 GMT - Mon, 10 Jun 2024 19:37:18 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /drivesharing/clientmodel?id=1zklh84ga2qZwSAxJtunNm9QxqFIYlM66&foreignService=texmex&authuser=0&origin=https%3A%2F%2Fdrive.google.com HTTP/1.1
Host: drive.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://drive.google.com/
DNT: 1
Connection: keep-alive
Cookie: SOCS=CAESHAgBEhJnd3NfMjAyMjA5MjktMF9SQzEaAnJvIAEaBgiAkvOZBg; NID=513=nNqj3FU-s23g4ssAGQDdmXX4gWaZUBrOoksE1gjg66sClvgdHoSZvJEndqJJT01L4v-A52wHwU820Yu2X89uB3Gi68fKmclxL1xpDegGRsOmriZNT1zKrkQpdOBIx2NOxwITWhObk4zFM5L3fzTGRP2ecHUeJZ90Ts_1bCFn8tw
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 302 Found
content-type: application/binary
x-frame-options: ALLOW-FROM https://drive.google.com
vary: Sec-Fetch-Dest, Sec-Fetch-Mode, Sec-Fetch-Site
content-security-policy: frame-ancestors https://drive.google.com, require-trusted-types-for 'script';report-uri /drivesharing/_/DriveShareDialogUi/cspreport, script-src 'nonce-ZIMN4XdwjeyGTvpLUe35Bg' 'unsafe-inline';object-src 'none';base-uri 'self';report-uri /drivesharing/_/DriveShareDialogUi/cspreport;worker-src 'self', script-src 'unsafe-inline' 'self' https://apis.google.com https://ssl.gstatic.com https://www.google.com https://www.googletagmanager.com https://www.gstatic.com https://www.google-analytics.com;report-uri /drivesharing/_/DriveShareDialogUi/cspreport/allowlist
location: https://accounts.google.com/ServiceLogin?passive=1209600&osid=1&continue=https://drive.google.com/drivesharing/clientmodel?id%3D1zklh84ga2qZwSAxJtunNm9QxqFIYlM66%26foreignService%3Dtexmex%26authuser%3D0%26origin%3Dhttps://drive.google.com&followup=https://drive.google.com/drivesharing/clientmodel?id%3D1zklh84ga2qZwSAxJtunNm9QxqFIYlM66%26foreignService%3Dtexmex%26authuser%3D0%26origin%3Dhttps://drive.google.com
strict-transport-security: max-age=31536000
cross-origin-resource-policy: same-site
permissions-policy: ch-ua-arch=*, ch-ua-bitness=*, ch-ua-full-version=*, ch-ua-full-version-list=*, ch-ua-model=*, ch-ua-wow64=*, ch-ua-form-factor=*, ch-ua-platform=*, ch-ua-platform-version=*
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Model, Sec-CH-UA-WoW64, Sec-CH-UA-Form-Factor, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
cross-origin-opener-policy: same-origin
date: Wed, 24 Apr 2024 17:57:04 GMT
server: ESF
content-length: 0
x-xss-protection: 0
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

www.gstatic.com/_/apps-fileview/_/js/k=apps-fileview.v.no.iZR-gPbEVN0.O/am=AAw/d=0/rs=AO0039vPH2I2kvE1e0rE-WtGF30RaZyzCA/m=sy5n,sy13,sy5q,sy5y,sy5z,sy61,sy60,sy64,rj51oe,gypOCd

142.250.74.35

200 OK

28 kB

URL GET HTTP/3
www.gstatic.com/_/apps-fileview/_/js/k=apps-fileview.v.no.iZR-gPbEVN0.O/am=AAw/d=0/rs=AO0039vPH2I2kvE1e0rE-WtGF30RaZyzCA/m=sy5n,sy13,sy5q,sy5y,sy5z,sy61,sy60,sy64,rj51oe,gypOCd
IP
142.250.74.35:443
ASN
#15169 GOOGLE

Requested by
https://drive.google.com/file/d/1zklh84ga2qZwSAxJtunNm9QxqFIYlM66/view?usp=drive_link
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintF5:5C:D9:68:C6:5F:A3:33:5A:73:C3:79:B6:83:FE:44:2E:A4:83:74
ValidityMon, 18 Mar 2024 20:34:25 GMT - Mon, 10 Jun 2024 20:34:24 GMT

File type
JavaScript source, ASCII text, with very long lines (2101)
Size
28 kB (28171 bytes)
Hash
345b96db1d65b8e53d0f6abbee9f5b75
d8580744be7d2a2dcbcb64a1e5810dcdbbc04cec
9d4eb3e85a02748b957cb7d833bb1da34953312f4fd99d2f65bc278679facd13

HTTP Headers

GET /_/apps-fileview/_/js/k=apps-fileview.v.no.iZR-gPbEVN0.O/am=AAw/d=0/rs=AO0039vPH2I2kvE1e0rE-WtGF30RaZyzCA/m=sy5n,sy13,sy5q,sy5y,sy5z,sy61,sy60,sy64,rj51oe,gypOCd HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://drive.google.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
accept-ranges: bytes
content-encoding: gzip
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-fileview
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-fileview"
report-to: {"group":"apps-fileview","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-fileview"}]}
content-length: 28171
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 18 Apr 2024 19:20:52 GMT
expires: Fri, 18 Apr 2025 19:20:52 GMT
cache-control: public, max-age=31536000
last-modified: Thu, 11 Apr 2024 01:19:25 GMT
content-type: text/javascript; charset=UTF-8
vary: Accept-Encoding, Origin
age: 513372
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

fonts.gstatic.com/s/googlesans/v58/4UasrENHsxJlGDuGo1OIlJfC6l_24rlCK1Yo_Iqcsih3SAyH6cAwhX9RPjIUvQ.woff2

216.58.207.227

200 OK

34 kB

URL GET HTTP/3
fonts.gstatic.com/s/googlesans/v58/4UasrENHsxJlGDuGo1OIlJfC6l_24rlCK1Yo_Iqcsih3SAyH6cAwhX9RPjIUvQ.woff2
IP
216.58.207.227:443
ASN
#15169 GOOGLE

Requested by
https://drive.google.com/file/d/1zklh84ga2qZwSAxJtunNm9QxqFIYlM66/view?usp=drive_link
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintF5:5C:D9:68:C6:5F:A3:33:5A:73:C3:79:B6:83:FE:44:2E:A4:83:74
ValidityMon, 18 Mar 2024 20:34:25 GMT - Mon, 10 Jun 2024 20:34:24 GMT

File type
Web Open Font Format (Version 2), TrueType, length 34108, version 1.0
Size
34 kB (34108 bytes)
Hash
c15d33a9508923be839d315a999ab9c7
d17f6e786a1464e13d4ec8e842f4eb121b103842
65c99d3b9f1a1b905046e30d00a97f2d4d605e565c32917e7a89a35926e04b98

HTTP Headers

GET /s/googlesans/v58/4UasrENHsxJlGDuGo1OIlJfC6l_24rlCK1Yo_Iqcsih3SAyH6cAwhX9RPjIUvQ.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://drive.google.com
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 34108
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 23 Apr 2024 01:58:19 GMT
expires: Wed, 23 Apr 2025 01:58:19 GMT
cache-control: public, max-age=31536000
age: 143925
last-modified: Tue, 23 May 2023 16:35:55 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

content.googleapis.com/static/proxy.html?usegapi=1&jsh=m%3B%2F_%2Fscs%2Fabc-static%2F_%2Fjs%2Fk%3Dgapi.gapi.en.SCWmpDDGjPk.O%2Fam%3DAAAC%2Fd%3D1%2Frs%3DAHpOoo_Pl64J0IIHlj2zBtEJ3ZwdaJC3HA%2Fm%3D__features__

142.250.74.106

274 B

URL
content.googleapis.com/static/proxy.html?usegapi=1&jsh=m%3B%2F_%2Fscs%2Fabc-static%2F_%2Fjs%2Fk%3Dgapi.gapi.en.SCWmpDDGjPk.O%2Fam%3DAAAC%2Fd%3D1%2Frs%3DAHpOoo_Pl64J0IIHlj2zBtEJ3ZwdaJC3HA%2Fm%3D__features__
IP
142.250.74.106:0
ASN
#15169 GOOGLE

File type
HTML document, ASCII text
Size
274 B (274 bytes)
Hash
ebf19e3edddb6b3b3685517680b5797a
db5aa5cdc8117b8f9ec334c9f3d71704416fa0b8
067e58ea8e32977628ab34e769ab47de0eb7d731a22dac114d8f245db719a97c

HTTP Headers

GET /static/proxy.html?usegapi=1&jsh=m%3B%2F_%2Fscs%2Fabc-static%2F_%2Fjs%2Fk%3Dgapi.gapi.en.SCWmpDDGjPk.O%2Fam%3DAAAC%2Fd%3D1%2Frs%3DAHpOoo_Pl64J0IIHlj2zBtEJ3ZwdaJC3HA%2Fm%3D__features__ HTTP/1.1
Host: content.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://drive.google.com/
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-type: text/html
content-security-policy: script-src 'nonce-a4hmdPFU1h58EJvjWw3SFg' 'report-sample' 'strict-dynamic' 'unsafe-eval' 'unsafe-inline' http: https:; object-src 'none'; report-uri https://csp.withgoogle.com/csp/apiserving; base-uri 'none', require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apiserving
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="apiserving"
report-to: {"group":"apiserving","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apiserving"}]}
content-length: 274
date: Wed, 24 Apr 2024 17:57:04 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
last-modified: Tue, 12 Mar 2024 05:08:00 GMT
x-content-type-options: nosniff
cross-origin-embedder-policy: require-corp; report-to="apiserving"
content-encoding: gzip
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

ssl.gstatic.com/docs/doclist/images/mediatype/icon_3_pdf_x16.png

142.250.74.67

200 OK

259 B

URL GET HTTP/3
ssl.gstatic.com/docs/doclist/images/mediatype/icon_3_pdf_x16.png
IP
142.250.74.67:443
ASN
#15169 GOOGLE

Requested by
https://drive.google.com/file/d/1zklh84ga2qZwSAxJtunNm9QxqFIYlM66/view?usp=drive_link
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintF5:5C:D9:68:C6:5F:A3:33:5A:73:C3:79:B6:83:FE:44:2E:A4:83:74
ValidityMon, 18 Mar 2024 20:34:25 GMT - Mon, 10 Jun 2024 20:34:24 GMT

File type
PNG image data, 16 x 16, 8-bit/color RGBA, non-interlaced
Size
259 B (259 bytes)
Hash
af848aee503a57e479b0fb57318f3f2f
68fe7097531d492691c6fa3454c8192d13e8572f
33dd0582f6972dddb05bee6fd5ea0312fbd782a8003f4c7876afebd0f08f49ad

HTTP Headers

GET /docs/doclist/images/mediatype/icon_3_pdf_x16.png HTTP/1.1
Host: ssl.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://drive.google.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
accept-ranges: bytes
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/docs
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="docs"
report-to: {"group":"docs","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/docs"}]}
content-length: 259
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 18 Apr 2024 02:57:31 GMT
expires: Fri, 18 Apr 2025 02:57:31 GMT
cache-control: public, max-age=31536000
age: 572373
last-modified: Tue, 27 Jun 2023 04:48:00 GMT
content-type: image/png
vary: Origin
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

play.google.com/log?format=json&hasfast=true

142.250.74.14

200 OK

131 B

URL POST HTTP/3
play.google.com/log?format=json&hasfast=true
IP
142.250.74.14:443
ASN
#15169 GOOGLE

Requested by
https://drive.google.com/file/d/1zklh84ga2qZwSAxJtunNm9QxqFIYlM66/view?usp=drive_link
Certificate
IssuerGoogle Trust Services LLC
Subject*.google.com
Fingerprint70:CC:1A:8A:58:6C:1F:6D:43:AE:66:75:89:F7:99:7B:BC:7A:74:2D
ValidityMon, 18 Mar 2024 19:37:19 GMT - Mon, 10 Jun 2024 19:37:18 GMT

File type
JSON text data
Size
131 B (131 bytes)
Hash
ca0b7e866005f6774d284b9f438ebfd2
53644f5ee3640189bdb223473ba6a2d46606c556
502e9680cfa78fa8be779cbf4f1947c8eaa3d43bf8c7464800ec772b2ddea358

HTTP Headers

POST /log?format=json&hasfast=true HTTP/1.1
Host: play.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://drive.google.com/
Content-Type: text/plain;charset=UTF-8
Content-Length: 3880
Origin: https://drive.google.com
DNT: 1
Connection: keep-alive
Cookie: SOCS=CAESHAgBEhJnd3NfMjAyMjA5MjktMF9SQzEaAnJvIAEaBgiAkvOZBg; NID=513=c5bb5qe8561Qs5s34Gn9r7YSFMoELkOltYWUeJjpVJPZCT4VpqEvQPQktJAcg3tkrhUkoF68YZta2tDZ7J2VIP28dWKK97ZuCm6TJHYB7NE_eXrjxyaAO8mKcv4sPbMP66WfSjxzRWKKIQ1T_208Oj8Rs0THoo1Nj3g7r75q6QU
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
access-control-allow-origin: https://drive.google.com
cross-origin-resource-policy: cross-origin
access-control-allow-credentials: true
access-control-allow-headers: X-Playlog-Web
content-type: text/plain; charset=UTF-8
content-encoding: gzip
date: Wed, 24 Apr 2024 17:57:04 GMT
server: Playlog
cache-control: private
content-length: 131
x-xss-protection: 0
x-frame-options: SAMEORIGIN
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

play.google.com/log?format=json&hasfast=true

142.250.74.14

200 OK

131 B

URL POST HTTP/3
play.google.com/log?format=json&hasfast=true
IP
142.250.74.14:443
ASN
#15169 GOOGLE

Requested by
https://drive.google.com/file/d/1zklh84ga2qZwSAxJtunNm9QxqFIYlM66/view?usp=drive_link
Certificate
IssuerGoogle Trust Services LLC
Subject*.google.com
Fingerprint70:CC:1A:8A:58:6C:1F:6D:43:AE:66:75:89:F7:99:7B:BC:7A:74:2D
ValidityMon, 18 Mar 2024 19:37:19 GMT - Mon, 10 Jun 2024 19:37:18 GMT

File type
JSON text data
Size
131 B (131 bytes)
Hash
ca0b7e866005f6774d284b9f438ebfd2
53644f5ee3640189bdb223473ba6a2d46606c556
502e9680cfa78fa8be779cbf4f1947c8eaa3d43bf8c7464800ec772b2ddea358

HTTP Headers

POST /log?format=json&hasfast=true HTTP/1.1
Host: play.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://drive.google.com/
Content-Type: text/plain;charset=UTF-8
Content-Length: 3104
Origin: https://drive.google.com
DNT: 1
Connection: keep-alive
Cookie: SOCS=CAESHAgBEhJnd3NfMjAyMjA5MjktMF9SQzEaAnJvIAEaBgiAkvOZBg; NID=513=c5bb5qe8561Qs5s34Gn9r7YSFMoELkOltYWUeJjpVJPZCT4VpqEvQPQktJAcg3tkrhUkoF68YZta2tDZ7J2VIP28dWKK97ZuCm6TJHYB7NE_eXrjxyaAO8mKcv4sPbMP66WfSjxzRWKKIQ1T_208Oj8Rs0THoo1Nj3g7r75q6QU
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
access-control-allow-origin: https://drive.google.com
cross-origin-resource-policy: cross-origin
access-control-allow-credentials: true
access-control-allow-headers: X-Playlog-Web
content-type: text/plain; charset=UTF-8
content-encoding: gzip
date: Wed, 24 Apr 2024 17:57:04 GMT
server: Playlog
cache-control: private
content-length: 131
x-xss-protection: 0
x-frame-options: SAMEORIGIN
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

accounts.google.com/ServiceLogin?passive=1209600&osid=1&continue=https://drive.google.com/drivesharing/clientmodel?id%3D1zklh84ga2qZwSAxJtunNm9QxqFIYlM66%26foreignService%3Dtexmex%26authuser%3D0%26origin%3Dhttps://drive.google.com&followup=https://drive.google.com/drivesharing/clientmodel?id%3D1zklh84ga2qZwSAxJtunNm9QxqFIYlM66%26foreignService%3Dtexmex%26authuser%3D0%26origin%3Dhttps://drive.google.com

64.233.162.84

302 Found

0 B

URL GET HTTP/2
accounts.google.com/ServiceLogin?passive=1209600&osid=1&continue=https://drive.google.com/drivesharing/clientmodel?id%3D1zklh84ga2qZwSAxJtunNm9QxqFIYlM66%26foreignService%3Dtexmex%26authuser%3D0%26origin%3Dhttps://drive.google.com&followup=https://drive.google.com/drivesharing/clientmodel?id%3D1zklh84ga2qZwSAxJtunNm9QxqFIYlM66%26foreignService%3Dtexmex%26authuser%3D0%26origin%3Dhttps://drive.google.com
IP
64.233.162.84:443
ASN
#15169 GOOGLE

Requested by
https://drive.google.com/file/d/1zklh84ga2qZwSAxJtunNm9QxqFIYlM66/view?usp=drive_link
Certificate
IssuerGoogle Trust Services LLC
Subjectaccounts.google.com
FingerprintCC:CB:DD:14:30:B0:75:6A:EE:1D:20:F1:9E:C5:DD:5F:DD:68:4F:7B
ValidityMon, 18 Mar 2024 20:38:53 GMT - Mon, 10 Jun 2024 20:38:52 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /ServiceLogin?passive=1209600&osid=1&continue=https://drive.google.com/drivesharing/clientmodel?id%3D1zklh84ga2qZwSAxJtunNm9QxqFIYlM66%26foreignService%3Dtexmex%26authuser%3D0%26origin%3Dhttps://drive.google.com&followup=https://drive.google.com/drivesharing/clientmodel?id%3D1zklh84ga2qZwSAxJtunNm9QxqFIYlM66%26foreignService%3Dtexmex%26authuser%3D0%26origin%3Dhttps://drive.google.com HTTP/1.1
Host: accounts.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://drive.google.com/
DNT: 1
Connection: keep-alive
Cookie: SOCS=CAESHAgBEhJnd3NfMjAyMjA5MjktMF9SQzEaAnJvIAEaBgiAkvOZBg; NID=513=c5bb5qe8561Qs5s34Gn9r7YSFMoELkOltYWUeJjpVJPZCT4VpqEvQPQktJAcg3tkrhUkoF68YZta2tDZ7J2VIP28dWKK97ZuCm6TJHYB7NE_eXrjxyaAO8mKcv4sPbMP66WfSjxzRWKKIQ1T_208Oj8Rs0THoo1Nj3g7r75q6QU
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 302 Found
content-type: application/binary
set-cookie: __Host-GAPS=1:TL6wYK9GiehFrmJjKRI0ub7SLCuHzA:oissRxVXXKlzu_T7; Expires=Fri, 24-Apr-2026 17:57:04 GMT; Path=/; Secure; HttpOnly; Priority=HIGH
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Wed, 24 Apr 2024 17:57:04 GMT
location: https://accounts.google.com/InteractiveLogin?continue=https://drive.google.com/drivesharing/clientmodel?id%3D1zklh84ga2qZwSAxJtunNm9QxqFIYlM66%26foreignService%3Dtexmex%26authuser%3D0%26origin%3Dhttps://drive.google.com&followup=https://drive.google.com/drivesharing/clientmodel?id%3D1zklh84ga2qZwSAxJtunNm9QxqFIYlM66%26foreignService%3Dtexmex%26authuser%3D0%26origin%3Dhttps://drive.google.com&osid=1&passive=1209600&ifkv=AaSxoQwGPUBbOBro-fLBH-Jh6AU5goxGH_4ieqwbaBJax79lv8ambyP698uQjo24AxQlNWAvQdqpew
strict-transport-security: max-age=31536000; includeSubDomains
content-security-policy: script-src 'nonce-PR2DaN7AAxrl5c9cHSGgPQ' 'unsafe-inline';object-src 'none';base-uri 'self';report-uri /_/AccountsSigninPassiveLoginHttp/cspreport;worker-src 'self', script-src 'unsafe-inline' 'self' https://apis.google.com https://ssl.gstatic.com https://www.google.com https://www.googletagmanager.com https://www.gstatic.com https://www.google-analytics.com;report-uri /_/AccountsSigninPassiveLoginHttp/cspreport/allowlist, require-trusted-types-for 'script';report-uri /_/AccountsSigninPassiveLoginHttp/cspreport
permissions-policy: ch-ua-arch=*, ch-ua-bitness=*, ch-ua-full-version=*, ch-ua-full-version-list=*, ch-ua-model=*, ch-ua-wow64=*, ch-ua-form-factor=*, ch-ua-platform=*, ch-ua-platform-version=*
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: unsafe-none
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Model, Sec-CH-UA-WoW64, Sec-CH-UA-Form-Factor, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
server: ESF
content-length: 0
x-xss-protection: 0
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

apis.google.com/js/googleapis.proxy.js?onload=startup

142.250.74.110

200 OK

5.9 kB

URL GET HTTP/3
apis.google.com/js/googleapis.proxy.js?onload=startup
IP
142.250.74.110:443
ASN
#15169 GOOGLE

Requested by
https://content.googleapis.com/static/proxy.html?usegapi=1&jsh=m%3B%2F_%2Fscs%2Fabc-static%2F_%2Fjs%2Fk%3Dgapi.gapi.en.SCWmpDDGjPk.O%2Fam%3DAAAC%2Fd%3D1%2Frs%3DAHpOoo_Pl64J0IIHlj2zBtEJ3ZwdaJC3HA%2Fm%3D__features__#parent=https%3A%2F%2Fdrive.google.com&rpctoken=2105545458
Certificate
IssuerGoogle Trust Services LLC
Subject*.google.com
Fingerprint70:CC:1A:8A:58:6C:1F:6D:43:AE:66:75:89:F7:99:7B:BC:7A:74:2D
ValidityMon, 18 Mar 2024 19:37:19 GMT - Mon, 10 Jun 2024 19:37:18 GMT

File type
JavaScript source, ASCII text, with very long lines (2054)
Size
5.9 kB (5903 bytes)
Hash
eab0dc82067fb5758a121009c7040231
8d869354f7a947ecc087b23868999bc53f77bdf7
9c77d6db3131248f92ae41075f189b4ecc2e51bcfdcca143719a83145f8ac070

HTTP Headers

GET /js/googleapis.proxy.js?onload=startup HTTP/1.1
Host: apis.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://content.googleapis.com/
Cookie: SOCS=CAESHAgBEhJnd3NfMjAyMjA5MjktMF9SQzEaAnJvIAEaBgiAkvOZBg; NID=513=c5bb5qe8561Qs5s34Gn9r7YSFMoELkOltYWUeJjpVJPZCT4VpqEvQPQktJAcg3tkrhUkoF68YZta2tDZ7J2VIP28dWKK97ZuCm6TJHYB7NE_eXrjxyaAO8mKcv4sPbMP66WfSjxzRWKKIQ1T_208Oj8Rs0THoo1Nj3g7r75q6QU
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-type: text/javascript
access-control-allow-origin: *
content-security-policy: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/gapi-team
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="gapi-team"
report-to: {"group":"gapi-team","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/gapi-team"}]}
timing-allow-origin: *
content-length: 5903
date: Wed, 24 Apr 2024 17:57:04 GMT
expires: Wed, 24 Apr 2024 17:57:04 GMT
cache-control: private, max-age=1800, stale-while-revalidate=1800
etag: "9bc2326c55ad9a5d"
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

apis.google.com/_/scs/abc-static/_/js/k=gapi.gapi.en.SCWmpDDGjPk.O/m=googleapis_proxy/rt=j/sv=1/d=1/ed=1/am=AAAC/rs=AHpOoo_Pl64J0IIHlj2zBtEJ3ZwdaJC3HA/cb=gapi.loaded_0?le=scs

142.250.74.110

200 OK

28 kB

URL GET HTTP/3
apis.google.com/_/scs/abc-static/_/js/k=gapi.gapi.en.SCWmpDDGjPk.O/m=googleapis_proxy/rt=j/sv=1/d=1/ed=1/am=AAAC/rs=AHpOoo_Pl64J0IIHlj2zBtEJ3ZwdaJC3HA/cb=gapi.loaded_0?le=scs
IP
142.250.74.110:443
ASN
#15169 GOOGLE

Requested by
https://content.googleapis.com/static/proxy.html?usegapi=1&jsh=m%3B%2F_%2Fscs%2Fabc-static%2F_%2Fjs%2Fk%3Dgapi.gapi.en.SCWmpDDGjPk.O%2Fam%3DAAAC%2Fd%3D1%2Frs%3DAHpOoo_Pl64J0IIHlj2zBtEJ3ZwdaJC3HA%2Fm%3D__features__#parent=https%3A%2F%2Fdrive.google.com&rpctoken=2105545458
Certificate
IssuerGoogle Trust Services LLC
Subject*.google.com
Fingerprint70:CC:1A:8A:58:6C:1F:6D:43:AE:66:75:89:F7:99:7B:BC:7A:74:2D
ValidityMon, 18 Mar 2024 19:37:19 GMT - Mon, 10 Jun 2024 19:37:18 GMT

File type
JavaScript source, ASCII text, with very long lines (2124)
Size
28 kB (28130 bytes)
Hash
5845c4b4039a782892ba98eefe3537fe
53094e84be77e96afe3b3f3cf337044a8ac3c4db
f730fb8496d16c5f117388bb3f5f2b117db2d49aa9c35e7bfd5318c7253dbfd2

HTTP Headers

GET /_/scs/abc-static/_/js/k=gapi.gapi.en.SCWmpDDGjPk.O/m=googleapis_proxy/rt=j/sv=1/d=1/ed=1/am=AAAC/rs=AHpOoo_Pl64J0IIHlj2zBtEJ3ZwdaJC3HA/cb=gapi.loaded_0?le=scs HTTP/1.1
Host: apis.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://content.googleapis.com/
Cookie: SOCS=CAESHAgBEhJnd3NfMjAyMjA5MjktMF9SQzEaAnJvIAEaBgiAkvOZBg; NID=513=c5bb5qe8561Qs5s34Gn9r7YSFMoELkOltYWUeJjpVJPZCT4VpqEvQPQktJAcg3tkrhUkoF68YZta2tDZ7J2VIP28dWKK97ZuCm6TJHYB7NE_eXrjxyaAO8mKcv4sPbMP66WfSjxzRWKKIQ1T_208Oj8Rs0THoo1Nj3g7r75q6QU
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
accept-ranges: bytes
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/social-frontend-mpm-access
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="social-frontend-mpm-access"
report-to: {"group":"social-frontend-mpm-access","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/social-frontend-mpm-access"}]}
content-length: 28130
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 23 Apr 2024 19:16:49 GMT
expires: Wed, 23 Apr 2025 19:16:49 GMT
cache-control: public, max-age=31536000
age: 81615
last-modified: Mon, 15 Apr 2024 17:34:54 GMT
content-type: text/javascript; charset=UTF-8
vary: Accept-Encoding
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

accounts.google.com/InteractiveLogin?continue=https://drive.google.com/drivesharing/clientmodel?id%3D1zklh84ga2qZwSAxJtunNm9QxqFIYlM66%26foreignService%3Dtexmex%26authuser%3D0%26origin%3Dhttps://drive.google.com&followup=https://drive.google.com/drivesharing/clientmodel?id%3D1zklh84ga2qZwSAxJtunNm9QxqFIYlM66%26foreignService%3Dtexmex%26authuser%3D0%26origin%3Dhttps://drive.google.com&osid=1&passive=1209600&ifkv=AaSxoQwGPUBbOBro-fLBH-Jh6AU5goxGH_4ieqwbaBJax79lv8ambyP698uQjo24AxQlNWAvQdqpew

64.233.162.84

302 Found

504 B

URL GET HTTP/2
accounts.google.com/InteractiveLogin?continue=https://drive.google.com/drivesharing/clientmodel?id%3D1zklh84ga2qZwSAxJtunNm9QxqFIYlM66%26foreignService%3Dtexmex%26authuser%3D0%26origin%3Dhttps://drive.google.com&followup=https://drive.google.com/drivesharing/clientmodel?id%3D1zklh84ga2qZwSAxJtunNm9QxqFIYlM66%26foreignService%3Dtexmex%26authuser%3D0%26origin%3Dhttps://drive.google.com&osid=1&passive=1209600&ifkv=AaSxoQwGPUBbOBro-fLBH-Jh6AU5goxGH_4ieqwbaBJax79lv8ambyP698uQjo24AxQlNWAvQdqpew
IP
64.233.162.84:443
ASN
#15169 GOOGLE

Requested by
https://drive.google.com/file/d/1zklh84ga2qZwSAxJtunNm9QxqFIYlM66/view?usp=drive_link
Certificate
IssuerGoogle Trust Services LLC
Subjectaccounts.google.com
FingerprintCC:CB:DD:14:30:B0:75:6A:EE:1D:20:F1:9E:C5:DD:5F:DD:68:4F:7B
ValidityMon, 18 Mar 2024 20:38:53 GMT - Mon, 10 Jun 2024 20:38:52 GMT

File type
HTML document, ASCII text, with very long lines (716)
Size
504 B (504 bytes)
Hash
294606cf34ede0759c420e22590de442
ad9f204d292c5a12f60c53684ec02e51fa4ef176
c3fe35fd438c5d814e345b62f5bb2b9760a8a5ae048aa5df4ebaa6400d4663c3

HTTP Headers

GET /InteractiveLogin?continue=https://drive.google.com/drivesharing/clientmodel?id%3D1zklh84ga2qZwSAxJtunNm9QxqFIYlM66%26foreignService%3Dtexmex%26authuser%3D0%26origin%3Dhttps://drive.google.com&followup=https://drive.google.com/drivesharing/clientmodel?id%3D1zklh84ga2qZwSAxJtunNm9QxqFIYlM66%26foreignService%3Dtexmex%26authuser%3D0%26origin%3Dhttps://drive.google.com&osid=1&passive=1209600&ifkv=AaSxoQwGPUBbOBro-fLBH-Jh6AU5goxGH_4ieqwbaBJax79lv8ambyP698uQjo24AxQlNWAvQdqpew HTTP/1.1
Host: accounts.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://drive.google.com/
DNT: 1
Connection: keep-alive
Cookie: SOCS=CAESHAgBEhJnd3NfMjAyMjA5MjktMF9SQzEaAnJvIAEaBgiAkvOZBg; NID=513=c5bb5qe8561Qs5s34Gn9r7YSFMoELkOltYWUeJjpVJPZCT4VpqEvQPQktJAcg3tkrhUkoF68YZta2tDZ7J2VIP28dWKK97ZuCm6TJHYB7NE_eXrjxyaAO8mKcv4sPbMP66WfSjxzRWKKIQ1T_208Oj8Rs0THoo1Nj3g7r75q6QU; __Host-GAPS=1:TL6wYK9GiehFrmJjKRI0ub7SLCuHzA:oissRxVXXKlzu_T7
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 302 Found
content-type: text/html; charset=UTF-8
x-frame-options: DENY
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Wed, 24 Apr 2024 17:57:04 GMT
location: https://accounts.google.com/v3/signin/identifier?continue=https%3A%2F%2Fdrive.google.com%2Fdrivesharing%2Fclientmodel%3Fid%3D1zklh84ga2qZwSAxJtunNm9QxqFIYlM66%26foreignService%3Dtexmex%26authuser%3D0%26origin%3Dhttps%3A%2F%2Fdrive.google.com&followup=https%3A%2F%2Fdrive.google.com%2Fdrivesharing%2Fclientmodel%3Fid%3D1zklh84ga2qZwSAxJtunNm9QxqFIYlM66%26foreignService%3Dtexmex%26authuser%3D0%26origin%3Dhttps%3A%2F%2Fdrive.google.com&ifkv=AaSxoQwBZDzqRN99Fbto1lE0vZdFqseNrKzV5sarH_QlcgE58hXrNI3UJiq6h96nsqMAjkWzg49JcQ&osid=1&passive=1209600&flowName=GlifWebSignIn&flowEntry=ServiceLogin&dsh=S-989580472%3A1713981424401766&theme=mn&ddm=0
strict-transport-security: max-age=31536000; includeSubDomains
content-security-policy: script-src 'nonce-2UpAxjJcAQv3bCM6U9Tu8w' 'unsafe-inline' 'unsafe-eval';object-src 'none';base-uri 'self';report-uri /cspreport, require-trusted-types-for 'script';report-uri /cspreport
cross-origin-opener-policy-report-only: same-origin; report-to="coop_gse_qebhlk"
report-to: {"group":"coop_gse_qebhlk","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/gse_qebhlk"}]}
content-encoding: gzip
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
content-length: 504
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

blobcomments-pa.clients6.google.com/v1/metadata?docId=1zklh84ga2qZwSAxJtunNm9QxqFIYlM66&revisionId=0B_9p5QanrZ5PQ0F0akFVNzJoTzRDWHZVUXZwaTUxcnFDUkF3PQ&userLocale=no&timeZoneId=Etc%2FGMT&documentResourceKey.resourceKey&forceImportEnabled=true&key=AIzaSyCMp6sr4oTC18AWkE2Ii4UBZHTHEpGZWZM&%24unique=gc797

142.250.74.170

200 OK

0 B

URL GET HTTP/2
blobcomments-pa.clients6.google.com/v1/metadata?docId=1zklh84ga2qZwSAxJtunNm9QxqFIYlM66&revisionId=0B_9p5QanrZ5PQ0F0akFVNzJoTzRDWHZVUXZwaTUxcnFDUkF3PQ&userLocale=no&timeZoneId=Etc%2FGMT&documentResourceKey.resourceKey&forceImportEnabled=true&key=AIzaSyCMp6sr4oTC18AWkE2Ii4UBZHTHEpGZWZM&%24unique=gc797
IP
142.250.74.170:443
ASN
#15169 GOOGLE

Requested by
https://drive.google.com/file/d/1zklh84ga2qZwSAxJtunNm9QxqFIYlM66/view?usp=drive_link
Certificate
IssuerGoogle Trust Services LLC
Subject*.googleapis.com
Fingerprint10:2A:34:1F:55:08:BB:14:7D:E4:09:34:41:66:80:62:F8:C6:AC:EF
ValidityMon, 18 Mar 2024 20:27:44 GMT - Mon, 10 Jun 2024 20:27:43 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

OPTIONS /v1/metadata?docId=1zklh84ga2qZwSAxJtunNm9QxqFIYlM66&revisionId=0B_9p5QanrZ5PQ0F0akFVNzJoTzRDWHZVUXZwaTUxcnFDUkF3PQ&userLocale=no&timeZoneId=Etc%2FGMT&documentResourceKey.resourceKey&forceImportEnabled=true&key=AIzaSyCMp6sr4oTC18AWkE2Ii4UBZHTHEpGZWZM&%24unique=gc797 HTTP/1.1
Host: blobcomments-pa.clients6.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: GET
Access-Control-Request-Headers: x-clientdetails,x-goog-authuser,x-goog-encode-response-if-executable,x-javascript-user-agent,x-requested-with
Referer: https://drive.google.com/
Origin: https://drive.google.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
access-control-allow-origin: https://drive.google.com
vary: origin, referer, x-origin
access-control-allow-credentials: true
access-control-allow-methods: DELETE,GET,HEAD,OPTIONS,PATCH,POST,PUT
access-control-allow-headers: x-clientdetails,x-goog-authuser,x-goog-encode-response-if-executable,x-javascript-user-agent,x-requested-with
access-control-max-age: 3600
date: Wed, 24 Apr 2024 17:57:04 GMT
content-type: text/html
server: ESF
content-length: 0
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

accounts.google.com/v3/signin/identifier?continue=https%3A%2F%2Fdrive.google.com%2Fdrivesharing%2Fclientmodel%3Fid%3D1zklh84ga2qZwSAxJtunNm9QxqFIYlM66%26foreignService%3Dtexmex%26authuser%3D0%26origin%3Dhttps%3A%2F%2Fdrive.google.com&followup=https%3A%2F%2Fdrive.google.com%2Fdrivesharing%2Fclientmodel%3Fid%3D1zklh84ga2qZwSAxJtunNm9QxqFIYlM66%26foreignService%3Dtexmex%26authuser%3D0%26origin%3Dhttps%3A%2F%2Fdrive.google.com&ifkv=AaSxoQwBZDzqRN99Fbto1lE0vZdFqseNrKzV5sarH_QlcgE58hXrNI3UJiq6h96nsqMAjkWzg49JcQ&osid=1&passive=1209600&flowName=GlifWebSignIn&flowEntry=ServiceLogin&dsh=S-989580472%3A1713981424401766&theme=mn&ddm=0

64.233.162.84

403 Forbidden

1.3 kB

URL GET HTTP/3
accounts.google.com/v3/signin/identifier?continue=https%3A%2F%2Fdrive.google.com%2Fdrivesharing%2Fclientmodel%3Fid%3D1zklh84ga2qZwSAxJtunNm9QxqFIYlM66%26foreignService%3Dtexmex%26authuser%3D0%26origin%3Dhttps%3A%2F%2Fdrive.google.com&followup=https%3A%2F%2Fdrive.google.com%2Fdrivesharing%2Fclientmodel%3Fid%3D1zklh84ga2qZwSAxJtunNm9QxqFIYlM66%26foreignService%3Dtexmex%26authuser%3D0%26origin%3Dhttps%3A%2F%2Fdrive.google.com&ifkv=AaSxoQwBZDzqRN99Fbto1lE0vZdFqseNrKzV5sarH_QlcgE58hXrNI3UJiq6h96nsqMAjkWzg49JcQ&osid=1&passive=1209600&flowName=GlifWebSignIn&flowEntry=ServiceLogin&dsh=S-989580472%3A1713981424401766&theme=mn&ddm=0
IP
64.233.162.84:443
ASN
#15169 GOOGLE

Requested by
https://drive.google.com/file/d/1zklh84ga2qZwSAxJtunNm9QxqFIYlM66/view?usp=drive_link
Certificate
IssuerGoogle Trust Services LLC
Subject*.google.com
Fingerprint70:CC:1A:8A:58:6C:1F:6D:43:AE:66:75:89:F7:99:7B:BC:7A:74:2D
ValidityMon, 18 Mar 2024 19:37:19 GMT - Mon, 10 Jun 2024 19:37:18 GMT

File type
gzip compressed data, max compression
Size
1.3 kB (1279 bytes)
Hash
03ff4a5bebc23f7a5721d4d7409f3030
f922b06f36c320d26f1904fd8b70baaf954ee551
53734f0585288222ee51099bc834a8a06ffba8dcf47b603bf90e32d15de71f18

HTTP Headers

GET /v3/signin/identifier?continue=https%3A%2F%2Fdrive.google.com%2Fdrivesharing%2Fclientmodel%3Fid%3D1zklh84ga2qZwSAxJtunNm9QxqFIYlM66%26foreignService%3Dtexmex%26authuser%3D0%26origin%3Dhttps%3A%2F%2Fdrive.google.com&followup=https%3A%2F%2Fdrive.google.com%2Fdrivesharing%2Fclientmodel%3Fid%3D1zklh84ga2qZwSAxJtunNm9QxqFIYlM66%26foreignService%3Dtexmex%26authuser%3D0%26origin%3Dhttps%3A%2F%2Fdrive.google.com&ifkv=AaSxoQwBZDzqRN99Fbto1lE0vZdFqseNrKzV5sarH_QlcgE58hXrNI3UJiq6h96nsqMAjkWzg49JcQ&osid=1&passive=1209600&flowName=GlifWebSignIn&flowEntry=ServiceLogin&dsh=S-989580472%3A1713981424401766&theme=mn&ddm=0 HTTP/1.1
Host: accounts.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://drive.google.com/
DNT: 1
Connection: keep-alive
Cookie: SOCS=CAESHAgBEhJnd3NfMjAyMjA5MjktMF9SQzEaAnJvIAEaBgiAkvOZBg; NID=513=c5bb5qe8561Qs5s34Gn9r7YSFMoELkOltYWUeJjpVJPZCT4VpqEvQPQktJAcg3tkrhUkoF68YZta2tDZ7J2VIP28dWKK97ZuCm6TJHYB7NE_eXrjxyaAO8mKcv4sPbMP66WfSjxzRWKKIQ1T_208Oj8Rs0THoo1Nj3g7r75q6QU; __Host-GAPS=1:TL6wYK9GiehFrmJjKRI0ub7SLCuHzA:oissRxVXXKlzu_T7
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 403 Forbidden
content-type: text/html; charset=utf-8
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Wed, 24 Apr 2024 17:57:04 GMT
vary: Sec-Fetch-Dest, Sec-Fetch-Mode, Sec-Fetch-Site
strict-transport-security: max-age=31536000; includeSubDomains
content-security-policy: script-src 'nonce-9TP0x1UETlRlUmXKb8zlyg' 'unsafe-inline';object-src 'none';base-uri 'self';report-uri /v3/signin/_/AccountsSignInUi/cspreport;worker-src 'self', script-src 'unsafe-inline' 'self' https://apis.google.com https://ssl.gstatic.com https://www.google.com https://www.googletagmanager.com https://www.gstatic.com https://www.google-analytics.com;report-uri /v3/signin/_/AccountsSignInUi/cspreport/allowlist, require-trusted-types-for 'script';report-uri /v3/signin/_/AccountsSignInUi/cspreport
cross-origin-opener-policy-report-only: same-origin; report-to="AccountsSignInUi"
report-to: {"group":"AccountsSignInUi","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/AccountsSignInUi"}]}
permissions-policy: ch-ua-arch=*, ch-ua-bitness=*, ch-ua-full-version=*, ch-ua-full-version-list=*, ch-ua-model=*, ch-ua-wow64=*, ch-ua-form-factor=*, ch-ua-platform=*, ch-ua-platform-version=*
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Model, Sec-CH-UA-WoW64, Sec-CH-UA-Form-Factor, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

142.250.74.170

200 OK

793 B

URL GET HTTP/2
blobcomments-pa.clients6.google.com/v1/metadata?docId=1zklh84ga2qZwSAxJtunNm9QxqFIYlM66&revisionId=0B_9p5QanrZ5PQ0F0akFVNzJoTzRDWHZVUXZwaTUxcnFDUkF3PQ&userLocale=no&timeZoneId=Etc%2FGMT&documentResourceKey.resourceKey&forceImportEnabled=true&key=AIzaSyCMp6sr4oTC18AWkE2Ii4UBZHTHEpGZWZM&%24unique=gc797
IP
142.250.74.170:443
ASN
#15169 GOOGLE

Requested by
https://drive.google.com/file/d/1zklh84ga2qZwSAxJtunNm9QxqFIYlM66/view?usp=drive_link
Certificate
IssuerGoogle Trust Services LLC
Subject*.googleapis.com
Fingerprint10:2A:34:1F:55:08:BB:14:7D:E4:09:34:41:66:80:62:F8:C6:AC:EF
ValidityMon, 18 Mar 2024 20:27:44 GMT - Mon, 10 Jun 2024 20:27:43 GMT

File type
JSON text data
Size
793 B (793 bytes)
Hash
efcecc76d7fe94d97ad4a21b8bcddf4a
a63c606fdd0f113bb901f6da422ce1a5c4b692d5
08edd5686767745eaec1c61a831d06c4aa6fa71795a1dcb92897ebd12187b234

HTTP Headers

GET /v1/metadata?docId=1zklh84ga2qZwSAxJtunNm9QxqFIYlM66&revisionId=0B_9p5QanrZ5PQ0F0akFVNzJoTzRDWHZVUXZwaTUxcnFDUkF3PQ&userLocale=no&timeZoneId=Etc%2FGMT&documentResourceKey.resourceKey&forceImportEnabled=true&key=AIzaSyCMp6sr4oTC18AWkE2Ii4UBZHTHEpGZWZM&%24unique=gc797 HTTP/1.1
Host: blobcomments-pa.clients6.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://drive.google.com/
X-Goog-AuthUser: 0
X-JavaScript-User-Agent: google-api-javascript-client/1.1.0
X-Requested-With: XMLHttpRequest
X-Goog-Encode-Response-If-Executable: base64
X-ClientDetails: appVersion=5.0%20(X11)&platform=Linux%20x86_64&userAgent=Mozilla%2F5.0%20(X11%3B%20Linux%20x86_64%3B%20rv%3A96.0)%20Gecko%2F20100101%20Firefox%2F96.0
Origin: https://drive.google.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
content-type: application/json; charset=UTF-8
strict-transport-security: max-age=10886400; includeSubdomains
vary: Origin, X-Origin, Referer
content-encoding: gzip
date: Wed, 24 Apr 2024 17:57:04 GMT
server: ESF
cache-control: private
content-length: 793
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
access-control-allow-origin: https://drive.google.com
access-control-allow-credentials: true
access-control-expose-headers: vary,vary,vary,content-encoding,date,server,content-length
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

content.googleapis.com/drive/v2internal/viewerimpressions?key=AIzaSyC1eQ1xj69IdTMeii5r7brs3R90eck-m7k&alt=json

142.250.74.106

204 No Content

0 B

URL POST HTTP/3
content.googleapis.com/drive/v2internal/viewerimpressions?key=AIzaSyC1eQ1xj69IdTMeii5r7brs3R90eck-m7k&alt=json
IP
142.250.74.106:443
ASN
#15169 GOOGLE

Requested by
https://content.googleapis.com/static/proxy.html?usegapi=1&jsh=m%3B%2F_%2Fscs%2Fabc-static%2F_%2Fjs%2Fk%3Dgapi.gapi.en.SCWmpDDGjPk.O%2Fam%3DAAAC%2Fd%3D1%2Frs%3DAHpOoo_Pl64J0IIHlj2zBtEJ3ZwdaJC3HA%2Fm%3D__features__#parent=https%3A%2F%2Fdrive.google.com&rpctoken=2105545458
Certificate
IssuerGoogle Trust Services LLC
Subjectupload.video.google.com
Fingerprint15:CB:F7:AC:18:3F:DC:1E:F9:4E:94:D1:98:40:40:61:53:17:28:F2
ValidityMon, 18 Mar 2024 20:35:28 GMT - Mon, 10 Jun 2024 20:35:27 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

POST /drive/v2internal/viewerimpressions?key=AIzaSyC1eQ1xj69IdTMeii5r7brs3R90eck-m7k&alt=json HTTP/1.1
Host: content.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-ClientDetails: appVersion=5.0%20(X11)&platform=Linux%20x86_64&userAgent=Mozilla%2F5.0%20(X11%3B%20Linux%20x86_64%3B%20rv%3A96.0)%20Gecko%2F20100101%20Firefox%2F96.0
Content-Type: application/json
X-Requested-With: XMLHttpRequest
X-JavaScript-User-Agent: google-api-javascript-client/1.1.0
X-Goog-AuthUser: 0
X-Origin: https://drive.google.com
X-Referer: https://drive.google.com
X-Goog-Encode-Response-If-Executable: base64
Content-Length: 793
Origin: https://content.googleapis.com
DNT: 1
Connection: keep-alive
Referer: https://content.googleapis.com/static/proxy.html?usegapi=1&jsh=m%3B%2F_%2Fscs%2Fabc-static%2F_%2Fjs%2Fk%3Dgapi.gapi.en.SCWmpDDGjPk.O%2Fam%3DAAAC%2Fd%3D1%2Frs%3DAHpOoo_Pl64J0IIHlj2zBtEJ3ZwdaJC3HA%2Fm%3D__features__
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 204 No Content
etag: "vyGp6PvFo4RvsFtPoIWeCReyIC8"
vary: Origin, X-Origin
date: Wed, 24 Apr 2024 17:57:04 GMT
expires: Mon, 01 Jan 1990 00:00:00 GMT
pragma: no-cache
cache-control: no-cache, no-store, max-age=0, must-revalidate
content-type: text/html
server: ESF
content-length: 0
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

drive.google.com/viewer2/prod-03/presspage?ck=drive&ds=APznzabjBeB0GbRXcMIgGmuw0IV8jFdBICyGvmXb2GzTA5dm13UYG-fY2SthnrmlHL-OS0Qo1refXMStRMNcoE5BjUkWOhfBiNy00RLBT7rQEP4ZlaNTchWuqANtEddss-x7OrIPTnnkwPaHkZ1cFdWIiFC1ow9EEOwmgT2o6unoMHt6hB6Wec3D0RNjFztBTduq3hiDH6Qi8fwI_9Iby8Ur-KCb_pdafswtqFnkSL1iXykRo_tJRWi7ciqSlHnwkvkkksyMbOCN_XDMpfv3a29F66N1CLPxK52vpq56GU2LPs6XW0zhZmY1mFglq6mE8TWjQ5P3SI1pS8kPq_YxTqivNmHY1AquiQBuu5PxzOpH4B8Xa98SHWAmd0eJp5cNgEKVIoW_1SSNdd_xOSIi8ShAtdgIY7dWdA%3D%3D&authuser=0&page=0

142.250.74.142

200 OK

298 kB

URL GET HTTP/3
drive.google.com/viewer2/prod-03/presspage?ck=drive&ds=APznzabjBeB0GbRXcMIgGmuw0IV8jFdBICyGvmXb2GzTA5dm13UYG-fY2SthnrmlHL-OS0Qo1refXMStRMNcoE5BjUkWOhfBiNy00RLBT7rQEP4ZlaNTchWuqANtEddss-x7OrIPTnnkwPaHkZ1cFdWIiFC1ow9EEOwmgT2o6unoMHt6hB6Wec3D0RNjFztBTduq3hiDH6Qi8fwI_9Iby8Ur-KCb_pdafswtqFnkSL1iXykRo_tJRWi7ciqSlHnwkvkkksyMbOCN_XDMpfv3a29F66N1CLPxK52vpq56GU2LPs6XW0zhZmY1mFglq6mE8TWjQ5P3SI1pS8kPq_YxTqivNmHY1AquiQBuu5PxzOpH4B8Xa98SHWAmd0eJp5cNgEKVIoW_1SSNdd_xOSIi8ShAtdgIY7dWdA%3D%3D&authuser=0&page=0
IP
142.250.74.142:443
ASN
#15169 GOOGLE

Requested by
https://drive.google.com/file/d/1zklh84ga2qZwSAxJtunNm9QxqFIYlM66/view?usp=drive_link
Certificate
IssuerGoogle Trust Services LLC
Subject*.google.com
Fingerprint70:CC:1A:8A:58:6C:1F:6D:43:AE:66:75:89:F7:99:7B:BC:7A:74:2D
ValidityMon, 18 Mar 2024 19:37:19 GMT - Mon, 10 Jun 2024 19:37:18 GMT

File type
Unicode text, UTF-8 text, with very long lines (15386)
Size
298 kB (298238 bytes)
Hash
14cd5cf6cfb8c27ab29a7fe37f543937
296c203ca6005b928bee7b2ff5392c7115b8ab95
c55ebd8e8ce6e664db3dd54e43710cde3605d75dfaa1395f03a53d8363954e5a

HTTP Headers

GET /viewer2/prod-03/presspage?ck=drive&ds=APznzabjBeB0GbRXcMIgGmuw0IV8jFdBICyGvmXb2GzTA5dm13UYG-fY2SthnrmlHL-OS0Qo1refXMStRMNcoE5BjUkWOhfBiNy00RLBT7rQEP4ZlaNTchWuqANtEddss-x7OrIPTnnkwPaHkZ1cFdWIiFC1ow9EEOwmgT2o6unoMHt6hB6Wec3D0RNjFztBTduq3hiDH6Qi8fwI_9Iby8Ur-KCb_pdafswtqFnkSL1iXykRo_tJRWi7ciqSlHnwkvkkksyMbOCN_XDMpfv3a29F66N1CLPxK52vpq56GU2LPs6XW0zhZmY1mFglq6mE8TWjQ5P3SI1pS8kPq_YxTqivNmHY1AquiQBuu5PxzOpH4B8Xa98SHWAmd0eJp5cNgEKVIoW_1SSNdd_xOSIi8ShAtdgIY7dWdA%3D%3D&authuser=0&page=0 HTTP/1.1
Host: drive.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://drive.google.com/
DNT: 1
Connection: keep-alive
Cookie: SOCS=CAESHAgBEhJnd3NfMjAyMjA5MjktMF9SQzEaAnJvIAEaBgiAkvOZBg; NID=513=c5bb5qe8561Qs5s34Gn9r7YSFMoELkOltYWUeJjpVJPZCT4VpqEvQPQktJAcg3tkrhUkoF68YZta2tDZ7J2VIP28dWKK97ZuCm6TJHYB7NE_eXrjxyaAO8mKcv4sPbMP66WfSjxzRWKKIQ1T_208Oj8Rs0THoo1Nj3g7r75q6QU
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
content-type: application/json; charset=utf-8
vary: Sec-Fetch-Dest, Sec-Fetch-Mode, Sec-Fetch-Site
x-content-type-options: nosniff
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Wed, 24 Apr 2024 17:57:04 GMT
content-disposition: attachment; filename="json.txt"; filename*=UTF-8''json.txt
strict-transport-security: max-age=31536000
cross-origin-embedder-policy-report-only: require-corp; report-to="AppsViewerFrontendHttp"
content-security-policy: require-trusted-types-for 'script';report-uri /_/AppsViewerFrontendHttp/cspreport, script-src 'nonce-y_wegEvTobliYBIdbJO-mA' 'unsafe-inline';object-src 'none';base-uri 'self';report-uri /_/AppsViewerFrontendHttp/cspreport;worker-src 'self', script-src 'unsafe-inline' 'self' https://apis.google.com https://ssl.gstatic.com https://www.google.com https://www.googletagmanager.com https://www.gstatic.com https://www.google-analytics.com;report-uri /_/AppsViewerFrontendHttp/cspreport/allowlist
permissions-policy: ch-ua-arch=*, ch-ua-bitness=*, ch-ua-full-version=*, ch-ua-full-version-list=*, ch-ua-model=*, ch-ua-wow64=*, ch-ua-form-factor=*, ch-ua-platform=*, ch-ua-platform-version=*
cross-origin-opener-policy: same-origin
report-to: {"group":"AppsViewerFrontendHttp","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/AppsViewerFrontendHttp"}]}
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Model, Sec-CH-UA-WoW64, Sec-CH-UA-Form-Factor, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
reporting-endpoints: default="/_/AppsViewerFrontendHttp/web-reports?context=eJzjMtDikmII1pBicNu9k8kbiCU5bzPJAbEaEGsD8QWpx0xXgdgpfQZrABAL8XB86F-6kU3gwMv3L5kATX4VjA"
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

content.googleapis.com/drive/v2beta/files/1zklh84ga2qZwSAxJtunNm9QxqFIYlM66?fields=alternateLink%2CcopyRequiresWriterPermission%2CcreatedDate%2Cdescription%2CdriveId%2CfileSize%2CiconLink%2Cid%2Clabels(starred%2C%20trashed)%2ClastViewedByMeDate%2CmodifiedDate%2Cshared%2CteamDriveId%2CabuseNoticeReason%2ClabelInfo%2CuserPermission(id%2Cname%2CemailAddress%2Cdomain%2Crole%2CadditionalRoles%2CphotoLink%2Ctype%2CwithLink)%2Cpermissions(id%2Cname%2CemailAddress%2Cdomain%2Crole%2CadditionalRoles%2CphotoLink%2Ctype%2CwithLink)%2Cparents(id)%2Ccapabilities(canMoveItemWithinDrive%2CcanMoveItemOutOfDrive%2CcanMoveItemOutOfTeamDrive%2CcanAddChildren%2CcanDownload%2CcanComment%2CcanEdit%2CcanInitiateEsignature%2CcanMoveChildrenWithinDrive%2CcanMoveItemIntoTeamDrive%2CcanRename%2CcanRemoveChildren)%2Ckind&supportsTeamDrives=true&includeBadgedLabels=true&enforceSingleParent=true&key=AIzaSyC1eQ1xj69IdTMeii5r7brs3R90eck-m7k

142.250.74.106

200 OK

650 B

URL GET HTTP/3
content.googleapis.com/drive/v2beta/files/1zklh84ga2qZwSAxJtunNm9QxqFIYlM66?fields=alternateLink%2CcopyRequiresWriterPermission%2CcreatedDate%2Cdescription%2CdriveId%2CfileSize%2CiconLink%2Cid%2Clabels(starred%2C%20trashed)%2ClastViewedByMeDate%2CmodifiedDate%2Cshared%2CteamDriveId%2CabuseNoticeReason%2ClabelInfo%2CuserPermission(id%2Cname%2CemailAddress%2Cdomain%2Crole%2CadditionalRoles%2CphotoLink%2Ctype%2CwithLink)%2Cpermissions(id%2Cname%2CemailAddress%2Cdomain%2Crole%2CadditionalRoles%2CphotoLink%2Ctype%2CwithLink)%2Cparents(id)%2Ccapabilities(canMoveItemWithinDrive%2CcanMoveItemOutOfDrive%2CcanMoveItemOutOfTeamDrive%2CcanAddChildren%2CcanDownload%2CcanComment%2CcanEdit%2CcanInitiateEsignature%2CcanMoveChildrenWithinDrive%2CcanMoveItemIntoTeamDrive%2CcanRename%2CcanRemoveChildren)%2Ckind&supportsTeamDrives=true&includeBadgedLabels=true&enforceSingleParent=true&key=AIzaSyC1eQ1xj69IdTMeii5r7brs3R90eck-m7k
IP
142.250.74.106:443
ASN
#15169 GOOGLE

Requested by
https://content.googleapis.com/static/proxy.html?usegapi=1&jsh=m%3B%2F_%2Fscs%2Fabc-static%2F_%2Fjs%2Fk%3Dgapi.gapi.en.SCWmpDDGjPk.O%2Fam%3DAAAC%2Fd%3D1%2Frs%3DAHpOoo_Pl64J0IIHlj2zBtEJ3ZwdaJC3HA%2Fm%3D__features__#parent=https%3A%2F%2Fdrive.google.com&rpctoken=2105545458
Certificate
IssuerGoogle Trust Services LLC
Subjectupload.video.google.com
Fingerprint15:CB:F7:AC:18:3F:DC:1E:F9:4E:94:D1:98:40:40:61:53:17:28:F2
ValidityMon, 18 Mar 2024 20:35:28 GMT - Mon, 10 Jun 2024 20:35:27 GMT

File type
JSON text data
Size
650 B (650 bytes)
Hash
76a7b834b736c3bafb188faaf0c7bfb0
38db625b691fac5419686baee035c50b0e00a3e4
fccbebcfdf0d04c4931b253f45e9db99d28085e30d57d35d306799235022ac5e

HTTP Headers

GET /drive/v2beta/files/1zklh84ga2qZwSAxJtunNm9QxqFIYlM66?fields=alternateLink%2CcopyRequiresWriterPermission%2CcreatedDate%2Cdescription%2CdriveId%2CfileSize%2CiconLink%2Cid%2Clabels(starred%2C%20trashed)%2ClastViewedByMeDate%2CmodifiedDate%2Cshared%2CteamDriveId%2CabuseNoticeReason%2ClabelInfo%2CuserPermission(id%2Cname%2CemailAddress%2Cdomain%2Crole%2CadditionalRoles%2CphotoLink%2Ctype%2CwithLink)%2Cpermissions(id%2Cname%2CemailAddress%2Cdomain%2Crole%2CadditionalRoles%2CphotoLink%2Ctype%2CwithLink)%2Cparents(id)%2Ccapabilities(canMoveItemWithinDrive%2CcanMoveItemOutOfDrive%2CcanMoveItemOutOfTeamDrive%2CcanAddChildren%2CcanDownload%2CcanComment%2CcanEdit%2CcanInitiateEsignature%2CcanMoveChildrenWithinDrive%2CcanMoveItemIntoTeamDrive%2CcanRename%2CcanRemoveChildren)%2Ckind&supportsTeamDrives=true&includeBadgedLabels=true&enforceSingleParent=true&key=AIzaSyC1eQ1xj69IdTMeii5r7brs3R90eck-m7k HTTP/1.1
Host: content.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-ClientDetails: appVersion=5.0%20(X11)&platform=Linux%20x86_64&userAgent=Mozilla%2F5.0%20(X11%3B%20Linux%20x86_64%3B%20rv%3A96.0)%20Gecko%2F20100101%20Firefox%2F96.0
X-Requested-With: XMLHttpRequest
X-JavaScript-User-Agent: google-api-javascript-client/1.1.0
X-Goog-AuthUser: 0
X-Origin: https://drive.google.com
X-Referer: https://drive.google.com
X-Goog-Encode-Response-If-Executable: base64
DNT: 1
Connection: keep-alive
Referer: https://content.googleapis.com/static/proxy.html?usegapi=1&jsh=m%3B%2F_%2Fscs%2Fabc-static%2F_%2Fjs%2Fk%3Dgapi.gapi.en.SCWmpDDGjPk.O%2Fam%3DAAAC%2Fd%3D1%2Frs%3DAHpOoo_Pl64J0IIHlj2zBtEJ3ZwdaJC3HA%2Fm%3D__features__
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
etag: "78Z9ae1cHmAgf8r5WU53RtwzQYM"
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
vary: Origin, X-Origin
date: Wed, 24 Apr 2024 17:57:04 GMT
expires: Mon, 01 Jan 1990 00:00:00 GMT
content-type: application/json; charset=UTF-8
content-encoding: gzip
server: ESF
content-length: 650
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

content.googleapis.com/drive/v2internal/viewerimpressions?key=AIzaSyC1eQ1xj69IdTMeii5r7brs3R90eck-m7k&alt=json

142.250.74.106

204 No Content

0 B

URL POST HTTP/3
content.googleapis.com/drive/v2internal/viewerimpressions?key=AIzaSyC1eQ1xj69IdTMeii5r7brs3R90eck-m7k&alt=json
IP
142.250.74.106:443
ASN
#15169 GOOGLE

Requested by
https://content.googleapis.com/static/proxy.html?usegapi=1&jsh=m%3B%2F_%2Fscs%2Fabc-static%2F_%2Fjs%2Fk%3Dgapi.gapi.en.SCWmpDDGjPk.O%2Fam%3DAAAC%2Fd%3D1%2Frs%3DAHpOoo_Pl64J0IIHlj2zBtEJ3ZwdaJC3HA%2Fm%3D__features__#parent=https%3A%2F%2Fdrive.google.com&rpctoken=2105545458
Certificate
IssuerGoogle Trust Services LLC
Subjectupload.video.google.com
Fingerprint15:CB:F7:AC:18:3F:DC:1E:F9:4E:94:D1:98:40:40:61:53:17:28:F2
ValidityMon, 18 Mar 2024 20:35:28 GMT - Mon, 10 Jun 2024 20:35:27 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

POST /drive/v2internal/viewerimpressions?key=AIzaSyC1eQ1xj69IdTMeii5r7brs3R90eck-m7k&alt=json HTTP/1.1
Host: content.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-ClientDetails: appVersion=5.0%20(X11)&platform=Linux%20x86_64&userAgent=Mozilla%2F5.0%20(X11%3B%20Linux%20x86_64%3B%20rv%3A96.0)%20Gecko%2F20100101%20Firefox%2F96.0
Content-Type: application/json
X-Requested-With: XMLHttpRequest
X-JavaScript-User-Agent: google-api-javascript-client/1.1.0
X-Goog-AuthUser: 0
X-Origin: https://drive.google.com
X-Referer: https://drive.google.com
X-Goog-Encode-Response-If-Executable: base64
Content-Length: 759
Origin: https://content.googleapis.com
DNT: 1
Connection: keep-alive
Referer: https://content.googleapis.com/static/proxy.html?usegapi=1&jsh=m%3B%2F_%2Fscs%2Fabc-static%2F_%2Fjs%2Fk%3Dgapi.gapi.en.SCWmpDDGjPk.O%2Fam%3DAAAC%2Fd%3D1%2Frs%3DAHpOoo_Pl64J0IIHlj2zBtEJ3ZwdaJC3HA%2Fm%3D__features__
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 204 No Content
etag: "vyGp6PvFo4RvsFtPoIWeCReyIC8"
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Wed, 24 Apr 2024 17:57:04 GMT
vary: Origin, X-Origin
content-type: text/html
server: ESF
content-length: 0
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

peoplestackwebexperiments-pa.clients6.google.com/$rpc/peoplestackwebexperiments.PeopleStackExperimentsService/GetExperimentFlags

142.250.74.138

401 Unauthorized

0 B

URL POST HTTP/2
peoplestackwebexperiments-pa.clients6.google.com/$rpc/peoplestackwebexperiments.PeopleStackExperimentsService/GetExperimentFlags
IP
142.250.74.138:443
ASN
#15169 GOOGLE

Requested by
https://drive.google.com/file/d/1zklh84ga2qZwSAxJtunNm9QxqFIYlM66/view?usp=drive_link
Certificate
IssuerGoogle Trust Services LLC
Subject*.googleapis.com
Fingerprint10:2A:34:1F:55:08:BB:14:7D:E4:09:34:41:66:80:62:F8:C6:AC:EF
ValidityMon, 18 Mar 2024 20:27:44 GMT - Mon, 10 Jun 2024 20:27:43 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

OPTIONS /$rpc/peoplestackwebexperiments.PeopleStackExperimentsService/GetExperimentFlags HTTP/1.1
Host: peoplestackwebexperiments-pa.clients6.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type,x-goog-api-key,x-user-agent
Referer: https://drive.google.com/
Origin: https://drive.google.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
access-control-allow-origin: https://drive.google.com
vary: origin, referer, x-origin
access-control-allow-credentials: true
access-control-allow-methods: DELETE,GET,HEAD,OPTIONS,PATCH,POST,PUT
access-control-allow-headers: content-type,x-goog-api-key,x-user-agent
access-control-max-age: 3600
date: Wed, 24 Apr 2024 17:57:05 GMT
content-type: text/html
server: scaffolding on HTTPServer2
content-length: 0
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

drive.google.com/viewer2/prod-03/img?ck=drive&ds=APznzabjBeB0GbRXcMIgGmuw0IV8jFdBICyGvmXb2GzTA5dm13UYG-fY2SthnrmlHL-OS0Qo1refXMStRMNcoE5BjUkWOhfBiNy00RLBT7rQEP4ZlaNTchWuqANtEddss-x7OrIPTnnkwPaHkZ1cFdWIiFC1ow9EEOwmgT2o6unoMHt6hB6Wec3D0RNjFztBTduq3hiDH6Qi8fwI_9Iby8Ur-KCb_pdafswtqFnkSL1iXykRo_tJRWi7ciqSlHnwkvkkksyMbOCN_XDMpfv3a29F66N1CLPxK52vpq56GU2LPs6XW0zhZmY1mFglq6mE8TWjQ5P3SI1pS8kPq_YxTqivNmHY1AquiQBuu5PxzOpH4B8Xa98SHWAmd0eJp5cNgEKVIoW_1SSNdd_xOSIi8ShAtdgIY7dWdA%3D%3D&authuser=0&page=2&skiphighlight=true&w=800

142.250.74.142

200 OK

14 kB

URL GET HTTP/3
drive.google.com/viewer2/prod-03/img?ck=drive&ds=APznzabjBeB0GbRXcMIgGmuw0IV8jFdBICyGvmXb2GzTA5dm13UYG-fY2SthnrmlHL-OS0Qo1refXMStRMNcoE5BjUkWOhfBiNy00RLBT7rQEP4ZlaNTchWuqANtEddss-x7OrIPTnnkwPaHkZ1cFdWIiFC1ow9EEOwmgT2o6unoMHt6hB6Wec3D0RNjFztBTduq3hiDH6Qi8fwI_9Iby8Ur-KCb_pdafswtqFnkSL1iXykRo_tJRWi7ciqSlHnwkvkkksyMbOCN_XDMpfv3a29F66N1CLPxK52vpq56GU2LPs6XW0zhZmY1mFglq6mE8TWjQ5P3SI1pS8kPq_YxTqivNmHY1AquiQBuu5PxzOpH4B8Xa98SHWAmd0eJp5cNgEKVIoW_1SSNdd_xOSIi8ShAtdgIY7dWdA%3D%3D&authuser=0&page=2&skiphighlight=true&w=800
IP
142.250.74.142:443
ASN
#15169 GOOGLE

Requested by
https://drive.google.com/file/d/1zklh84ga2qZwSAxJtunNm9QxqFIYlM66/view?usp=drive_link
Certificate
IssuerGoogle Trust Services LLC
Subject*.google.com
Fingerprint70:CC:1A:8A:58:6C:1F:6D:43:AE:66:75:89:F7:99:7B:BC:7A:74:2D
ValidityMon, 18 Mar 2024 19:37:19 GMT - Mon, 10 Jun 2024 19:37:18 GMT

File type
PNG image data, 800 x 1035, 8-bit/color RGB, non-interlaced
Size
14 kB (13818 bytes)
Hash
f8ba3504d02ad9bf712a9aa210afd97d
40a83e88882158f438d0f781e7da826e0dc65960
5176f1492d19e9cd1e117cdccb5b35aeff35b934853ee321f9d848947546d5b3

HTTP Headers

GET /viewer2/prod-03/img?ck=drive&ds=APznzabjBeB0GbRXcMIgGmuw0IV8jFdBICyGvmXb2GzTA5dm13UYG-fY2SthnrmlHL-OS0Qo1refXMStRMNcoE5BjUkWOhfBiNy00RLBT7rQEP4ZlaNTchWuqANtEddss-x7OrIPTnnkwPaHkZ1cFdWIiFC1ow9EEOwmgT2o6unoMHt6hB6Wec3D0RNjFztBTduq3hiDH6Qi8fwI_9Iby8Ur-KCb_pdafswtqFnkSL1iXykRo_tJRWi7ciqSlHnwkvkkksyMbOCN_XDMpfv3a29F66N1CLPxK52vpq56GU2LPs6XW0zhZmY1mFglq6mE8TWjQ5P3SI1pS8kPq_YxTqivNmHY1AquiQBuu5PxzOpH4B8Xa98SHWAmd0eJp5cNgEKVIoW_1SSNdd_xOSIi8ShAtdgIY7dWdA%3D%3D&authuser=0&page=2&skiphighlight=true&w=800 HTTP/1.1
Host: drive.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://drive.google.com/
DNT: 1
Connection: keep-alive
Cookie: SOCS=CAESHAgBEhJnd3NfMjAyMjA5MjktMF9SQzEaAnJvIAEaBgiAkvOZBg; NID=513=c5bb5qe8561Qs5s34Gn9r7YSFMoELkOltYWUeJjpVJPZCT4VpqEvQPQktJAcg3tkrhUkoF68YZta2tDZ7J2VIP28dWKK97ZuCm6TJHYB7NE_eXrjxyaAO8mKcv4sPbMP66WfSjxzRWKKIQ1T_208Oj8Rs0THoo1Nj3g7r75q6QU
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
content-type: image/png
vary: Sec-Fetch-Dest, Sec-Fetch-Mode, Sec-Fetch-Site
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Wed, 24 Apr 2024 17:57:04 GMT
strict-transport-security: max-age=31536000
cross-origin-opener-policy: same-origin
report-to: {"group":"AppsViewerFrontendHttp","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/AppsViewerFrontendHttp"}]}
content-security-policy: require-trusted-types-for 'script';report-uri /_/AppsViewerFrontendHttp/cspreport, script-src 'nonce-_ul8HxjNCfBal0uhRNVtcg' 'unsafe-inline';object-src 'none';base-uri 'self';report-uri /_/AppsViewerFrontendHttp/cspreport;worker-src 'self', script-src 'unsafe-inline' 'self' https://apis.google.com https://ssl.gstatic.com https://www.google.com https://www.googletagmanager.com https://www.gstatic.com https://www.google-analytics.com;report-uri /_/AppsViewerFrontendHttp/cspreport/allowlist
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Model, Sec-CH-UA-WoW64, Sec-CH-UA-Form-Factor, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
permissions-policy: ch-ua-arch=*, ch-ua-bitness=*, ch-ua-full-version=*, ch-ua-full-version-list=*, ch-ua-model=*, ch-ua-wow64=*, ch-ua-form-factor=*, ch-ua-platform=*, ch-ua-platform-version=*
cross-origin-embedder-policy-report-only: require-corp; report-to="AppsViewerFrontendHttp"
reporting-endpoints: default="/_/AppsViewerFrontendHttp/web-reports?context=eJzjMtDikmII1pBicNu9k8kbiCU5bzPJAbEaEGsD8QWpx0xXgdgpfQZrABAL8XB86F-6kU2gY_3ew8wASp0Uww"
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

peoplestackwebexperiments-pa.clients6.google.com/$rpc/peoplestackwebexperiments.PeopleStackExperimentsService/GetExperimentFlags

142.250.74.138

401 Unauthorized

273 B

URL POST HTTP/2
peoplestackwebexperiments-pa.clients6.google.com/$rpc/peoplestackwebexperiments.PeopleStackExperimentsService/GetExperimentFlags
IP
142.250.74.138:443
ASN
#15169 GOOGLE

Requested by
https://drive.google.com/file/d/1zklh84ga2qZwSAxJtunNm9QxqFIYlM66/view?usp=drive_link
Certificate
IssuerGoogle Trust Services LLC
Subject*.googleapis.com
Fingerprint10:2A:34:1F:55:08:BB:14:7D:E4:09:34:41:66:80:62:F8:C6:AC:EF
ValidityMon, 18 Mar 2024 20:27:44 GMT - Mon, 10 Jun 2024 20:27:43 GMT

File type
JSON text data
Size
273 B (273 bytes)
Hash
c92ef536fbf026279cf8ff07c9bc16be
e4692263323f5a09c6877f83e0f48aacdc4dba8f
daea32ccb3eca1ebc19a1e97f10f9b0f893cbbcdadd7791d1d09238a15be6579

HTTP Headers

POST /$rpc/peoplestackwebexperiments.PeopleStackExperimentsService/GetExperimentFlags HTTP/1.1
Host: peoplestackwebexperiments-pa.clients6.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://drive.google.com/
X-Goog-Api-Key: AIzaSyABqJ85_R2irnKzMtGBL0iHuyFBi6Efk1w
Content-Type: application/json+protobuf
X-User-Agent: grpc-web-javascript/0.1
Content-Length: 30
Origin: https://drive.google.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 401 Unauthorized
www-authenticate: Bearer realm="https://accounts.google.com/"
strict-transport-security: max-age=10886400; includeSubdomains
vary: Origin, X-Origin, Referer
content-type: application/json+protobuf; charset=UTF-8
content-encoding: gzip
date: Wed, 24 Apr 2024 17:57:05 GMT
server: scaffolding on HTTPServer2
cache-control: private
content-length: 273
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
access-control-allow-origin: https://drive.google.com
access-control-allow-credentials: true
access-control-expose-headers: www-authenticate,vary,vary,vary,content-encoding,date,server,content-length
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

peoplestackwebexperiments-pa.clients6.google.com/$rpc/peoplestackwebexperiments.PeopleStackExperimentsService/GetExperimentFlags

142.250.74.138

401 Unauthorized

274 B

URL POST HTTP/2
peoplestackwebexperiments-pa.clients6.google.com/$rpc/peoplestackwebexperiments.PeopleStackExperimentsService/GetExperimentFlags
IP
142.250.74.138:443
ASN
#15169 GOOGLE

Requested by
https://drive.google.com/file/d/1zklh84ga2qZwSAxJtunNm9QxqFIYlM66/view?usp=drive_link
Certificate
IssuerGoogle Trust Services LLC
Subject*.googleapis.com
Fingerprint10:2A:34:1F:55:08:BB:14:7D:E4:09:34:41:66:80:62:F8:C6:AC:EF
ValidityMon, 18 Mar 2024 20:27:44 GMT - Mon, 10 Jun 2024 20:27:43 GMT

File type
JSON text data
Size
274 B (274 bytes)
Hash
8044cee3350850408c48727f0d91702a
b04e2ea1e8fd6b069f16845b2129e5796e3adca2
779d0f361aa0fff642d92b44a16fa766dfa517af73b158b631dd6cb7e8d60090

HTTP Headers

POST /$rpc/peoplestackwebexperiments.PeopleStackExperimentsService/GetExperimentFlags HTTP/1.1
Host: peoplestackwebexperiments-pa.clients6.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://drive.google.com/
X-Goog-Api-Key: AIzaSyABqJ85_R2irnKzMtGBL0iHuyFBi6Efk1w
Content-Type: application/json+protobuf
X-User-Agent: grpc-web-javascript/0.1
Content-Length: 30
Origin: https://drive.google.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 401 Unauthorized
www-authenticate: Bearer realm="https://accounts.google.com/"
strict-transport-security: max-age=10886400; includeSubdomains
vary: Origin, X-Origin, Referer
content-type: application/json+protobuf; charset=UTF-8
content-encoding: gzip
date: Wed, 24 Apr 2024 17:57:05 GMT
server: scaffolding on HTTPServer2
cache-control: private
content-length: 274
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
access-control-allow-origin: https://drive.google.com
access-control-allow-credentials: true
access-control-expose-headers: www-authenticate,vary,vary,vary,content-encoding,date,server,content-length
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

lh3.googleusercontent.com/a-/ALV-UjX9tYK3XSQVtpeAVZxBJQVp3Fp9XEtoZmUcX20iKE97QCGA5w=s64

142.250.74.97

200 OK

980 B

URL GET HTTP/3
lh3.googleusercontent.com/a-/ALV-UjX9tYK3XSQVtpeAVZxBJQVp3Fp9XEtoZmUcX20iKE97QCGA5w=s64
IP
142.250.74.97:443
ASN
#15169 GOOGLE

Requested by
https://drive.google.com/file/d/1zklh84ga2qZwSAxJtunNm9QxqFIYlM66/view?usp=drive_link
Certificate
IssuerGoogle Trust Services LLC
Subject*.googleusercontent.com
Fingerprint6E:66:E1:45:85:5C:3A:EB:60:4A:8E:EF:62:B8:7C:E3:C7:1B:FA:47
ValidityMon, 18 Mar 2024 20:34:07 GMT - Mon, 10 Jun 2024 20:34:06 GMT

File type
PNG image data, 64 x 64, 8-bit/color RGB, non-interlaced
Size
980 B (980 bytes)
Hash
90b5e9c2d4b21fee7360e13315938708
21e9bd7088eb9ae98c6a9ec0e026f7ed5e41d3e8
ee5ce812e0d2dd3f22e7eeb625219e03eb5834c8c1c32452cafc78c10141319e

HTTP Headers

GET /a-/ALV-UjX9tYK3XSQVtpeAVZxBJQVp3Fp9XEtoZmUcX20iKE97QCGA5w=s64 HTTP/1.1
Host: lh3.googleusercontent.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://drive.google.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
content-type: image/png
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
access-control-expose-headers: Content-Length
expires: Thu, 25 Apr 2024 17:57:05 GMT
cache-control: public, max-age=86400, no-transform
content-disposition: inline;filename="unnamed.png"
x-content-type-options: nosniff
date: Wed, 24 Apr 2024 17:57:05 GMT
server: fife
content-length: 980
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

play.google.com/log?format=json&hasfast=true

142.250.74.14

200 OK

131 B

URL POST HTTP/3
play.google.com/log?format=json&hasfast=true
IP
142.250.74.14:443
ASN
#15169 GOOGLE

Requested by
https://drive.google.com/file/d/1zklh84ga2qZwSAxJtunNm9QxqFIYlM66/view?usp=drive_link
Certificate
IssuerGoogle Trust Services LLC
Subject*.google.com
Fingerprint70:CC:1A:8A:58:6C:1F:6D:43:AE:66:75:89:F7:99:7B:BC:7A:74:2D
ValidityMon, 18 Mar 2024 19:37:19 GMT - Mon, 10 Jun 2024 19:37:18 GMT

File type
JSON text data
Size
131 B (131 bytes)
Hash
ca0b7e866005f6774d284b9f438ebfd2
53644f5ee3640189bdb223473ba6a2d46606c556
502e9680cfa78fa8be779cbf4f1947c8eaa3d43bf8c7464800ec772b2ddea358

HTTP Headers

POST /log?format=json&hasfast=true HTTP/1.1
Host: play.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://drive.google.com/
Content-Type: text/plain;charset=UTF-8
Content-Length: 9588
Origin: https://drive.google.com
DNT: 1
Connection: keep-alive
Cookie: SOCS=CAESHAgBEhJnd3NfMjAyMjA5MjktMF9SQzEaAnJvIAEaBgiAkvOZBg; NID=513=c5bb5qe8561Qs5s34Gn9r7YSFMoELkOltYWUeJjpVJPZCT4VpqEvQPQktJAcg3tkrhUkoF68YZta2tDZ7J2VIP28dWKK97ZuCm6TJHYB7NE_eXrjxyaAO8mKcv4sPbMP66WfSjxzRWKKIQ1T_208Oj8Rs0THoo1Nj3g7r75q6QU
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
access-control-allow-origin: https://drive.google.com
cross-origin-resource-policy: cross-origin
access-control-allow-credentials: true
access-control-allow-headers: X-Playlog-Web
content-type: text/plain; charset=UTF-8
content-encoding: gzip
date: Wed, 24 Apr 2024 17:57:06 GMT
server: Playlog
cache-control: private
content-length: 131
x-xss-protection: 0
x-frame-options: SAMEORIGIN
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

play.google.com/log?format=json&hasfast=true

142.250.74.14

200 OK

131 B

URL POST HTTP/3
play.google.com/log?format=json&hasfast=true
IP
142.250.74.14:443
ASN
#15169 GOOGLE

Requested by
https://drive.google.com/file/d/1zklh84ga2qZwSAxJtunNm9QxqFIYlM66/view?usp=drive_link
Certificate
IssuerGoogle Trust Services LLC
Subject*.google.com
Fingerprint70:CC:1A:8A:58:6C:1F:6D:43:AE:66:75:89:F7:99:7B:BC:7A:74:2D
ValidityMon, 18 Mar 2024 19:37:19 GMT - Mon, 10 Jun 2024 19:37:18 GMT

File type
JSON text data
Size
131 B (131 bytes)
Hash
ca0b7e866005f6774d284b9f438ebfd2
53644f5ee3640189bdb223473ba6a2d46606c556
502e9680cfa78fa8be779cbf4f1947c8eaa3d43bf8c7464800ec772b2ddea358

HTTP Headers

POST /log?format=json&hasfast=true HTTP/1.1
Host: play.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://drive.google.com/
Content-Type: text/plain;charset=UTF-8
Content-Length: 858
Origin: https://drive.google.com
DNT: 1
Connection: keep-alive
Cookie: SOCS=CAESHAgBEhJnd3NfMjAyMjA5MjktMF9SQzEaAnJvIAEaBgiAkvOZBg; NID=513=c5bb5qe8561Qs5s34Gn9r7YSFMoELkOltYWUeJjpVJPZCT4VpqEvQPQktJAcg3tkrhUkoF68YZta2tDZ7J2VIP28dWKK97ZuCm6TJHYB7NE_eXrjxyaAO8mKcv4sPbMP66WfSjxzRWKKIQ1T_208Oj8Rs0THoo1Nj3g7r75q6QU
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
access-control-allow-origin: https://drive.google.com
cross-origin-resource-policy: cross-origin
access-control-allow-credentials: true
access-control-allow-headers: X-Playlog-Web
content-type: text/plain; charset=UTF-8
content-encoding: gzip
date: Wed, 24 Apr 2024 17:57:15 GMT
server: Playlog
cache-control: private
content-length: 131
x-xss-protection: 0
x-frame-options: SAMEORIGIN
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

play.google.com/log?format=json&hasfast=true

142.250.74.14

200 OK

131 B

URL POST HTTP/3
play.google.com/log?format=json&hasfast=true
IP
142.250.74.14:443
ASN
#15169 GOOGLE

Requested by
https://drive.google.com/file/d/1zklh84ga2qZwSAxJtunNm9QxqFIYlM66/view?usp=drive_link
Certificate
IssuerGoogle Trust Services LLC
Subject*.google.com
Fingerprint70:CC:1A:8A:58:6C:1F:6D:43:AE:66:75:89:F7:99:7B:BC:7A:74:2D
ValidityMon, 18 Mar 2024 19:37:19 GMT - Mon, 10 Jun 2024 19:37:18 GMT

File type
JSON text data
Size
131 B (131 bytes)
Hash
ca0b7e866005f6774d284b9f438ebfd2
53644f5ee3640189bdb223473ba6a2d46606c556
502e9680cfa78fa8be779cbf4f1947c8eaa3d43bf8c7464800ec772b2ddea358

HTTP Headers

POST /log?format=json&hasfast=true HTTP/1.1
Host: play.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://drive.google.com/
Content-Type: text/plain;charset=UTF-8
Content-Length: 507
Origin: https://drive.google.com
DNT: 1
Connection: keep-alive
Cookie: SOCS=CAESHAgBEhJnd3NfMjAyMjA5MjktMF9SQzEaAnJvIAEaBgiAkvOZBg; NID=513=c5bb5qe8561Qs5s34Gn9r7YSFMoELkOltYWUeJjpVJPZCT4VpqEvQPQktJAcg3tkrhUkoF68YZta2tDZ7J2VIP28dWKK97ZuCm6TJHYB7NE_eXrjxyaAO8mKcv4sPbMP66WfSjxzRWKKIQ1T_208Oj8Rs0THoo1Nj3g7r75q6QU
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
access-control-allow-origin: https://drive.google.com
cross-origin-resource-policy: cross-origin
access-control-allow-credentials: true
access-control-allow-headers: X-Playlog-Web
content-type: text/plain; charset=UTF-8
content-encoding: gzip
date: Wed, 24 Apr 2024 17:57:15 GMT
server: Playlog
cache-control: private
content-length: 131
x-xss-protection: 0
x-frame-options: SAMEORIGIN
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

play.google.com/log?format=json&hasfast=true

142.250.74.14

200 OK

131 B

URL POST HTTP/3
play.google.com/log?format=json&hasfast=true
IP
142.250.74.14:443
ASN
#15169 GOOGLE

Requested by
https://drive.google.com/file/d/1zklh84ga2qZwSAxJtunNm9QxqFIYlM66/view?usp=drive_link
Certificate
IssuerGoogle Trust Services LLC
Subject*.google.com
Fingerprint70:CC:1A:8A:58:6C:1F:6D:43:AE:66:75:89:F7:99:7B:BC:7A:74:2D
ValidityMon, 18 Mar 2024 19:37:19 GMT - Mon, 10 Jun 2024 19:37:18 GMT

File type
JSON text data
Size
131 B (131 bytes)
Hash
ca0b7e866005f6774d284b9f438ebfd2
53644f5ee3640189bdb223473ba6a2d46606c556
502e9680cfa78fa8be779cbf4f1947c8eaa3d43bf8c7464800ec772b2ddea358

HTTP Headers

POST /log?format=json&hasfast=true HTTP/1.1
Host: play.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://drive.google.com/
Content-Type: text/plain;charset=UTF-8
Content-Length: 2362
Origin: https://drive.google.com
DNT: 1
Connection: keep-alive
Cookie: SOCS=CAESHAgBEhJnd3NfMjAyMjA5MjktMF9SQzEaAnJvIAEaBgiAkvOZBg; NID=513=c5bb5qe8561Qs5s34Gn9r7YSFMoELkOltYWUeJjpVJPZCT4VpqEvQPQktJAcg3tkrhUkoF68YZta2tDZ7J2VIP28dWKK97ZuCm6TJHYB7NE_eXrjxyaAO8mKcv4sPbMP66WfSjxzRWKKIQ1T_208Oj8Rs0THoo1Nj3g7r75q6QU
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
access-control-allow-origin: https://drive.google.com
cross-origin-resource-policy: cross-origin
access-control-allow-credentials: true
access-control-allow-headers: X-Playlog-Web
content-type: text/plain; charset=UTF-8
content-encoding: gzip
date: Wed, 24 Apr 2024 17:57:26 GMT
server: Playlog
cache-control: private
content-length: 131
x-xss-protection: 0
x-frame-options: SAMEORIGIN
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

142.250.74.142

200 OK

258 kB

URL GET HTTP/3
drive.google.com/viewer2/prod-03/img?ck=drive&ds=APznzabjBeB0GbRXcMIgGmuw0IV8jFdBICyGvmXb2GzTA5dm13UYG-fY2SthnrmlHL-OS0Qo1refXMStRMNcoE5BjUkWOhfBiNy00RLBT7rQEP4ZlaNTchWuqANtEddss-x7OrIPTnnkwPaHkZ1cFdWIiFC1ow9EEOwmgT2o6unoMHt6hB6Wec3D0RNjFztBTduq3hiDH6Qi8fwI_9Iby8Ur-KCb_pdafswtqFnkSL1iXykRo_tJRWi7ciqSlHnwkvkkksyMbOCN_XDMpfv3a29F66N1CLPxK52vpq56GU2LPs6XW0zhZmY1mFglq6mE8TWjQ5P3SI1pS8kPq_YxTqivNmHY1AquiQBuu5PxzOpH4B8Xa98SHWAmd0eJp5cNgEKVIoW_1SSNdd_xOSIi8ShAtdgIY7dWdA%3D%3D&authuser=0&page=1&skiphighlight=true&w=800
IP
142.250.74.142:443
ASN
#15169 GOOGLE

Requested by
https://drive.google.com/file/d/1zklh84ga2qZwSAxJtunNm9QxqFIYlM66/view?usp=drive_link
Certificate
IssuerGoogle Trust Services LLC
Subject*.google.com
Fingerprint70:CC:1A:8A:58:6C:1F:6D:43:AE:66:75:89:F7:99:7B:BC:7A:74:2D
ValidityMon, 18 Mar 2024 19:37:19 GMT - Mon, 10 Jun 2024 19:37:18 GMT

File type
PNG image data, 800 x 1035, 8-bit/color RGB, non-interlaced
Size
258 kB (257818 bytes)
Hash
81cf680df2e3350d22ad8565004b1e98
5560addbdead47bb8dd2e4efcc80e4362a8636d3
47e8f2e8332416cf8752870f601580458805bb00270a16eebf6fd1decd9f8a1f

HTTP Headers

GET /viewer2/prod-03/img?ck=drive&ds=APznzabjBeB0GbRXcMIgGmuw0IV8jFdBICyGvmXb2GzTA5dm13UYG-fY2SthnrmlHL-OS0Qo1refXMStRMNcoE5BjUkWOhfBiNy00RLBT7rQEP4ZlaNTchWuqANtEddss-x7OrIPTnnkwPaHkZ1cFdWIiFC1ow9EEOwmgT2o6unoMHt6hB6Wec3D0RNjFztBTduq3hiDH6Qi8fwI_9Iby8Ur-KCb_pdafswtqFnkSL1iXykRo_tJRWi7ciqSlHnwkvkkksyMbOCN_XDMpfv3a29F66N1CLPxK52vpq56GU2LPs6XW0zhZmY1mFglq6mE8TWjQ5P3SI1pS8kPq_YxTqivNmHY1AquiQBuu5PxzOpH4B8Xa98SHWAmd0eJp5cNgEKVIoW_1SSNdd_xOSIi8ShAtdgIY7dWdA%3D%3D&authuser=0&page=1&skiphighlight=true&w=800 HTTP/1.1
Host: drive.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://drive.google.com/
DNT: 1
Connection: keep-alive
Cookie: SOCS=CAESHAgBEhJnd3NfMjAyMjA5MjktMF9SQzEaAnJvIAEaBgiAkvOZBg; NID=513=c5bb5qe8561Qs5s34Gn9r7YSFMoELkOltYWUeJjpVJPZCT4VpqEvQPQktJAcg3tkrhUkoF68YZta2tDZ7J2VIP28dWKK97ZuCm6TJHYB7NE_eXrjxyaAO8mKcv4sPbMP66WfSjxzRWKKIQ1T_208Oj8Rs0THoo1Nj3g7r75q6QU
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
content-type: image/png
vary: Sec-Fetch-Dest, Sec-Fetch-Mode, Sec-Fetch-Site
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Wed, 24 Apr 2024 17:57:04 GMT
strict-transport-security: max-age=31536000
cross-origin-embedder-policy-report-only: require-corp; report-to="AppsViewerFrontendHttp"
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Model, Sec-CH-UA-WoW64, Sec-CH-UA-Form-Factor, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
cross-origin-opener-policy: same-origin
content-security-policy: require-trusted-types-for 'script';report-uri /_/AppsViewerFrontendHttp/cspreport, script-src 'nonce-lWzOYtFh_onVrTpSNOoROw' 'unsafe-inline';object-src 'none';base-uri 'self';report-uri /_/AppsViewerFrontendHttp/cspreport;worker-src 'self', script-src 'unsafe-inline' 'self' https://apis.google.com https://ssl.gstatic.com https://www.google.com https://www.googletagmanager.com https://www.gstatic.com https://www.google-analytics.com;report-uri /_/AppsViewerFrontendHttp/cspreport/allowlist
permissions-policy: ch-ua-arch=*, ch-ua-bitness=*, ch-ua-full-version=*, ch-ua-full-version-list=*, ch-ua-model=*, ch-ua-wow64=*, ch-ua-form-factor=*, ch-ua-platform=*, ch-ua-platform-version=*
report-to: {"group":"AppsViewerFrontendHttp","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/AppsViewerFrontendHttp"}]}
reporting-endpoints: default="/_/AppsViewerFrontendHttp/web-reports?context=eJzjMtDikmII1pBicNu9k8kbiCU5bzPJAbEaEGsD8QWpx0xXgdgpfQZrABAL8XB86F-6kU3gQ_eUCcwASzQUqw"
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

142.250.74.106

200 OK

382 B

URL GET HTTP/3
content.googleapis.com/static/proxy.html?usegapi=1&jsh=m%3B%2F_%2Fscs%2Fabc-static%2F_%2Fjs%2Fk%3Dgapi.gapi.en.SCWmpDDGjPk.O%2Fam%3DAAAC%2Fd%3D1%2Frs%3DAHpOoo_Pl64J0IIHlj2zBtEJ3ZwdaJC3HA%2Fm%3D__features__
IP
142.250.74.106:443
ASN
#15169 GOOGLE

Requested by
https://drive.google.com/file/d/1zklh84ga2qZwSAxJtunNm9QxqFIYlM66/view?usp=drive_link
Certificate
IssuerGoogle Trust Services LLC
Subjectupload.video.google.com
Fingerprint15:CB:F7:AC:18:3F:DC:1E:F9:4E:94:D1:98:40:40:61:53:17:28:F2
ValidityMon, 18 Mar 2024 20:35:28 GMT - Mon, 10 Jun 2024 20:35:27 GMT

File type
HTML document, ASCII text, with very long lines (407), with no line terminators
Size
382 B (382 bytes)
Hash
a6fe9df2bb7db9f6892db474d66c975d
7e76e03c45f301091b3ac0346aa11386c8407f1a
56d055bef98b64fc9042f651472afb8b7a7830900a0008f7e7ae7287851085d3

HTTP Headers

GET /static/proxy.html?usegapi=1&jsh=m%3B%2F_%2Fscs%2Fabc-static%2F_%2Fjs%2Fk%3Dgapi.gapi.en.SCWmpDDGjPk.O%2Fam%3DAAAC%2Fd%3D1%2Frs%3DAHpOoo_Pl64J0IIHlj2zBtEJ3ZwdaJC3HA%2Fm%3D__features__ HTTP/1.1
Host: content.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://drive.google.com/
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-type: text/html
content-security-policy: script-src 'nonce-a4hmdPFU1h58EJvjWw3SFg' 'report-sample' 'strict-dynamic' 'unsafe-eval' 'unsafe-inline' http: https:; object-src 'none'; report-uri https://csp.withgoogle.com/csp/apiserving; base-uri 'none', require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apiserving
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="apiserving"
report-to: {"group":"apiserving","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apiserving"}]}
content-length: 274
date: Wed, 24 Apr 2024 17:57:04 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
last-modified: Tue, 12 Mar 2024 05:08:00 GMT
x-content-type-options: nosniff
cross-origin-embedder-policy: require-corp; report-to="apiserving"
content-encoding: gzip
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

drive.google.com/file/d/1zklh84ga2qZwSAxJtunNm9QxqFIYlM66/view?usp=drive_link

142.250.74.142

200 OK

78 kB

URL User Request GET HTTP/2
drive.google.com/file/d/1zklh84ga2qZwSAxJtunNm9QxqFIYlM66/view?usp=drive_link
IP
142.250.74.142:443
ASN
#15169 GOOGLE

Certificate
IssuerGoogle Trust Services LLC
Subject*.google.com
Fingerprint70:CC:1A:8A:58:6C:1F:6D:43:AE:66:75:89:F7:99:7B:BC:7A:74:2D
ValidityMon, 18 Mar 2024 19:37:19 GMT - Mon, 10 Jun 2024 19:37:18 GMT

File type

Size
78 kB (77724 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /file/d/1zklh84ga2qZwSAxJtunNm9QxqFIYlM66/view?usp=drive_link HTTP/1.1
Host: drive.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Cookie: SOCS=CAESHAgBEhJnd3NfMjAyMjA5MjktMF9SQzEaAnJvIAEaBgiAkvOZBg
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: text/html; charset=utf-8
vary: Sec-Fetch-Dest, Sec-Fetch-Mode, Sec-Fetch-Site
x-robots-tag: noindex, nofollow, nosnippet
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Wed, 24 Apr 2024 17:57:02 GMT
content-encoding: gzip
p3p: CP="This is not a P3P policy! See g.co/p3phelp for more info."
content-security-policy: script-src 'report-sample' 'nonce-ynkPgVfuLC9yc5KDx49tkA' 'unsafe-inline' 'unsafe-eval' 'strict-dynamic' https: http:;object-src 'none';base-uri 'self';report-uri https://csp.withgoogle.com/csp/viewer/, require-trusted-types-for 'script';report-uri https://csp.withgoogle.com/csp/docs-tt
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
server: GSE
set-cookie: NID=513=nNqj3FU-s23g4ssAGQDdmXX4gWaZUBrOoksE1gjg66sClvgdHoSZvJEndqJJT01L4v-A52wHwU820Yu2X89uB3Gi68fKmclxL1xpDegGRsOmriZNT1zKrkQpdOBIx2NOxwITWhObk4zFM5L3fzTGRP2ecHUeJZ90Ts_1bCFn8tw; expires=Thu, 24-Oct-2024 17:57:01 GMT; path=/; domain=.google.com; Secure; HttpOnly; SameSite=none
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

drive.google.com/viewer2/prod-03/meta?ck=drive&ds=APznzabjBeB0GbRXcMIgGmuw0IV8jFdBICyGvmXb2GzTA5dm13UYG-fY2SthnrmlHL-OS0Qo1refXMStRMNcoE5BjUkWOhfBiNy00RLBT7rQEP4ZlaNTchWuqANtEddss-x7OrIPTnnkwPaHkZ1cFdWIiFC1ow9EEOwmgT2o6unoMHt6hB6Wec3D0RNjFztBTduq3hiDH6Qi8fwI_9Iby8Ur-KCb_pdafswtqFnkSL1iXykRo_tJRWi7ciqSlHnwkvkkksyMbOCN_XDMpfv3a29F66N1CLPxK52vpq56GU2LPs6XW0zhZmY1mFglq6mE8TWjQ5P3SI1pS8kPq_YxTqivNmHY1AquiQBuu5PxzOpH4B8Xa98SHWAmd0eJp5cNgEKVIoW_1SSNdd_xOSIi8ShAtdgIY7dWdA%3D%3D&authuser=0

142.250.74.142

200 OK

649 B

URL GET HTTP/3
drive.google.com/viewer2/prod-03/meta?ck=drive&ds=APznzabjBeB0GbRXcMIgGmuw0IV8jFdBICyGvmXb2GzTA5dm13UYG-fY2SthnrmlHL-OS0Qo1refXMStRMNcoE5BjUkWOhfBiNy00RLBT7rQEP4ZlaNTchWuqANtEddss-x7OrIPTnnkwPaHkZ1cFdWIiFC1ow9EEOwmgT2o6unoMHt6hB6Wec3D0RNjFztBTduq3hiDH6Qi8fwI_9Iby8Ur-KCb_pdafswtqFnkSL1iXykRo_tJRWi7ciqSlHnwkvkkksyMbOCN_XDMpfv3a29F66N1CLPxK52vpq56GU2LPs6XW0zhZmY1mFglq6mE8TWjQ5P3SI1pS8kPq_YxTqivNmHY1AquiQBuu5PxzOpH4B8Xa98SHWAmd0eJp5cNgEKVIoW_1SSNdd_xOSIi8ShAtdgIY7dWdA%3D%3D&authuser=0
IP
142.250.74.142:443
ASN
#15169 GOOGLE

Requested by
https://drive.google.com/file/d/1zklh84ga2qZwSAxJtunNm9QxqFIYlM66/view?usp=drive_link
Certificate
IssuerGoogle Trust Services LLC
Subject*.google.com
Fingerprint70:CC:1A:8A:58:6C:1F:6D:43:AE:66:75:89:F7:99:7B:BC:7A:74:2D
ValidityMon, 18 Mar 2024 19:37:19 GMT - Mon, 10 Jun 2024 19:37:18 GMT

File type
ASCII text, with very long lines (669), with no line terminators
Size
649 B (649 bytes)
Hash
36791bba916dd13b6ac939fb5cb82d88
bf8d832174211df20e747ecfb18330d173132429
40ea14a828406d71bfb9360a4972c55e37acd93b1e187e6e90e757115edec6be

HTTP Headers

GET /viewer2/prod-03/meta?ck=drive&ds=APznzabjBeB0GbRXcMIgGmuw0IV8jFdBICyGvmXb2GzTA5dm13UYG-fY2SthnrmlHL-OS0Qo1refXMStRMNcoE5BjUkWOhfBiNy00RLBT7rQEP4ZlaNTchWuqANtEddss-x7OrIPTnnkwPaHkZ1cFdWIiFC1ow9EEOwmgT2o6unoMHt6hB6Wec3D0RNjFztBTduq3hiDH6Qi8fwI_9Iby8Ur-KCb_pdafswtqFnkSL1iXykRo_tJRWi7ciqSlHnwkvkkksyMbOCN_XDMpfv3a29F66N1CLPxK52vpq56GU2LPs6XW0zhZmY1mFglq6mE8TWjQ5P3SI1pS8kPq_YxTqivNmHY1AquiQBuu5PxzOpH4B8Xa98SHWAmd0eJp5cNgEKVIoW_1SSNdd_xOSIi8ShAtdgIY7dWdA%3D%3D&authuser=0 HTTP/1.1
Host: drive.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://drive.google.com/
DNT: 1
Connection: keep-alive
Cookie: SOCS=CAESHAgBEhJnd3NfMjAyMjA5MjktMF9SQzEaAnJvIAEaBgiAkvOZBg; NID=513=c5bb5qe8561Qs5s34Gn9r7YSFMoELkOltYWUeJjpVJPZCT4VpqEvQPQktJAcg3tkrhUkoF68YZta2tDZ7J2VIP28dWKK97ZuCm6TJHYB7NE_eXrjxyaAO8mKcv4sPbMP66WfSjxzRWKKIQ1T_208Oj8Rs0THoo1Nj3g7r75q6QU
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
content-type: application/json; charset=utf-8
vary: Sec-Fetch-Dest, Sec-Fetch-Mode, Sec-Fetch-Site
x-content-type-options: nosniff
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Wed, 24 Apr 2024 17:57:04 GMT
content-disposition: attachment; filename="json.txt"; filename*=UTF-8''json.txt
strict-transport-security: max-age=31536000
cross-origin-embedder-policy-report-only: require-corp; report-to="AppsViewerFrontendHttp"
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Model, Sec-CH-UA-WoW64, Sec-CH-UA-Form-Factor, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
cross-origin-opener-policy: same-origin
content-security-policy: require-trusted-types-for 'script';report-uri /_/AppsViewerFrontendHttp/cspreport, script-src 'nonce-Sbis2RkcEiJWJAuTS-dmkw' 'unsafe-inline';object-src 'none';base-uri 'self';report-uri /_/AppsViewerFrontendHttp/cspreport;worker-src 'self', script-src 'unsafe-inline' 'self' https://apis.google.com https://ssl.gstatic.com https://www.google.com https://www.googletagmanager.com https://www.gstatic.com https://www.google-analytics.com;report-uri /_/AppsViewerFrontendHttp/cspreport/allowlist
permissions-policy: ch-ua-arch=*, ch-ua-bitness=*, ch-ua-full-version=*, ch-ua-full-version-list=*, ch-ua-model=*, ch-ua-wow64=*, ch-ua-form-factor=*, ch-ua-platform=*, ch-ua-platform-version=*
report-to: {"group":"AppsViewerFrontendHttp","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/AppsViewerFrontendHttp"}]}
reporting-endpoints: default="/_/AppsViewerFrontendHttp/web-reports?context=eJzjMtDikmII1pBicNu9k8kbiCU5bzPJAbEaEGsD8QWpx0xXgdgpfQZrABAL8XB86F-6kU1gx5r2RYwASpsUlw"
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

142.250.74.142

200 OK

296 kB

URL GET HTTP/3
drive.google.com/viewer2/prod-03/img?ck=drive&ds=APznzabjBeB0GbRXcMIgGmuw0IV8jFdBICyGvmXb2GzTA5dm13UYG-fY2SthnrmlHL-OS0Qo1refXMStRMNcoE5BjUkWOhfBiNy00RLBT7rQEP4ZlaNTchWuqANtEddss-x7OrIPTnnkwPaHkZ1cFdWIiFC1ow9EEOwmgT2o6unoMHt6hB6Wec3D0RNjFztBTduq3hiDH6Qi8fwI_9Iby8Ur-KCb_pdafswtqFnkSL1iXykRo_tJRWi7ciqSlHnwkvkkksyMbOCN_XDMpfv3a29F66N1CLPxK52vpq56GU2LPs6XW0zhZmY1mFglq6mE8TWjQ5P3SI1pS8kPq_YxTqivNmHY1AquiQBuu5PxzOpH4B8Xa98SHWAmd0eJp5cNgEKVIoW_1SSNdd_xOSIi8ShAtdgIY7dWdA%3D%3D&authuser=0&page=0&skiphighlight=true&w=800
IP
142.250.74.142:443
ASN
#15169 GOOGLE

Requested by
https://drive.google.com/file/d/1zklh84ga2qZwSAxJtunNm9QxqFIYlM66/view?usp=drive_link
Certificate
IssuerGoogle Trust Services LLC
Subject*.google.com
Fingerprint70:CC:1A:8A:58:6C:1F:6D:43:AE:66:75:89:F7:99:7B:BC:7A:74:2D
ValidityMon, 18 Mar 2024 19:37:19 GMT - Mon, 10 Jun 2024 19:37:18 GMT

File type
PNG image data, 800 x 1035, 8-bit/color RGB, non-interlaced
Size
296 kB (296414 bytes)
Hash
72dadd4da1e7549307057f4761af2334
06090c642802a139c895e8a50c465f0242373b3f
2fcd5f8a04a821582a01b04bc349046cd90e6746952eb12a201bdf2ca8780e7c

HTTP Headers

GET /viewer2/prod-03/img?ck=drive&ds=APznzabjBeB0GbRXcMIgGmuw0IV8jFdBICyGvmXb2GzTA5dm13UYG-fY2SthnrmlHL-OS0Qo1refXMStRMNcoE5BjUkWOhfBiNy00RLBT7rQEP4ZlaNTchWuqANtEddss-x7OrIPTnnkwPaHkZ1cFdWIiFC1ow9EEOwmgT2o6unoMHt6hB6Wec3D0RNjFztBTduq3hiDH6Qi8fwI_9Iby8Ur-KCb_pdafswtqFnkSL1iXykRo_tJRWi7ciqSlHnwkvkkksyMbOCN_XDMpfv3a29F66N1CLPxK52vpq56GU2LPs6XW0zhZmY1mFglq6mE8TWjQ5P3SI1pS8kPq_YxTqivNmHY1AquiQBuu5PxzOpH4B8Xa98SHWAmd0eJp5cNgEKVIoW_1SSNdd_xOSIi8ShAtdgIY7dWdA%3D%3D&authuser=0&page=0&skiphighlight=true&w=800 HTTP/1.1
Host: drive.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://drive.google.com/
DNT: 1
Connection: keep-alive
Cookie: SOCS=CAESHAgBEhJnd3NfMjAyMjA5MjktMF9SQzEaAnJvIAEaBgiAkvOZBg; NID=513=c5bb5qe8561Qs5s34Gn9r7YSFMoELkOltYWUeJjpVJPZCT4VpqEvQPQktJAcg3tkrhUkoF68YZta2tDZ7J2VIP28dWKK97ZuCm6TJHYB7NE_eXrjxyaAO8mKcv4sPbMP66WfSjxzRWKKIQ1T_208Oj8Rs0THoo1Nj3g7r75q6QU
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
content-type: image/png
vary: Sec-Fetch-Dest, Sec-Fetch-Mode, Sec-Fetch-Site
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Wed, 24 Apr 2024 17:57:04 GMT
strict-transport-security: max-age=31536000
cross-origin-opener-policy: same-origin
cross-origin-embedder-policy-report-only: require-corp; report-to="AppsViewerFrontendHttp"
permissions-policy: ch-ua-arch=*, ch-ua-bitness=*, ch-ua-full-version=*, ch-ua-full-version-list=*, ch-ua-model=*, ch-ua-wow64=*, ch-ua-form-factor=*, ch-ua-platform=*, ch-ua-platform-version=*
content-security-policy: require-trusted-types-for 'script';report-uri /_/AppsViewerFrontendHttp/cspreport, script-src 'nonce-HiGhJbSiMqsmbAcztLP-8Q' 'unsafe-inline';object-src 'none';base-uri 'self';report-uri /_/AppsViewerFrontendHttp/cspreport;worker-src 'self', script-src 'unsafe-inline' 'self' https://apis.google.com https://ssl.gstatic.com https://www.google.com https://www.googletagmanager.com https://www.gstatic.com https://www.google-analytics.com;report-uri /_/AppsViewerFrontendHttp/cspreport/allowlist
report-to: {"group":"AppsViewerFrontendHttp","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/AppsViewerFrontendHttp"}]}
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Model, Sec-CH-UA-WoW64, Sec-CH-UA-Form-Factor, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
reporting-endpoints: default="/_/AppsViewerFrontendHttp/web-reports?context=eJzjMtDikmII1pBicNu9k8kbiCU5bzPJAbEaEGsD8QWpx0xXgdgpfQZrABAL8XB86F-6kU1gxb6JfcwASosUkQ"
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

142.250.74.142

200 OK

15 kB

URL GET HTTP/3
drive.google.com/viewer2/prod-03/presspage?ck=drive&ds=APznzabjBeB0GbRXcMIgGmuw0IV8jFdBICyGvmXb2GzTA5dm13UYG-fY2SthnrmlHL-OS0Qo1refXMStRMNcoE5BjUkWOhfBiNy00RLBT7rQEP4ZlaNTchWuqANtEddss-x7OrIPTnnkwPaHkZ1cFdWIiFC1ow9EEOwmgT2o6unoMHt6hB6Wec3D0RNjFztBTduq3hiDH6Qi8fwI_9Iby8Ur-KCb_pdafswtqFnkSL1iXykRo_tJRWi7ciqSlHnwkvkkksyMbOCN_XDMpfv3a29F66N1CLPxK52vpq56GU2LPs6XW0zhZmY1mFglq6mE8TWjQ5P3SI1pS8kPq_YxTqivNmHY1AquiQBuu5PxzOpH4B8Xa98SHWAmd0eJp5cNgEKVIoW_1SSNdd_xOSIi8ShAtdgIY7dWdA%3D%3D&authuser=0&page=1
IP
142.250.74.142:443
ASN
#15169 GOOGLE

Requested by
https://drive.google.com/file/d/1zklh84ga2qZwSAxJtunNm9QxqFIYlM66/view?usp=drive_link
Certificate
IssuerGoogle Trust Services LLC
Subject*.google.com
Fingerprint70:CC:1A:8A:58:6C:1F:6D:43:AE:66:75:89:F7:99:7B:BC:7A:74:2D
ValidityMon, 18 Mar 2024 19:37:19 GMT - Mon, 10 Jun 2024 19:37:18 GMT

File type

Size
15 kB (15048 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /viewer2/prod-03/presspage?ck=drive&ds=APznzabjBeB0GbRXcMIgGmuw0IV8jFdBICyGvmXb2GzTA5dm13UYG-fY2SthnrmlHL-OS0Qo1refXMStRMNcoE5BjUkWOhfBiNy00RLBT7rQEP4ZlaNTchWuqANtEddss-x7OrIPTnnkwPaHkZ1cFdWIiFC1ow9EEOwmgT2o6unoMHt6hB6Wec3D0RNjFztBTduq3hiDH6Qi8fwI_9Iby8Ur-KCb_pdafswtqFnkSL1iXykRo_tJRWi7ciqSlHnwkvkkksyMbOCN_XDMpfv3a29F66N1CLPxK52vpq56GU2LPs6XW0zhZmY1mFglq6mE8TWjQ5P3SI1pS8kPq_YxTqivNmHY1AquiQBuu5PxzOpH4B8Xa98SHWAmd0eJp5cNgEKVIoW_1SSNdd_xOSIi8ShAtdgIY7dWdA%3D%3D&authuser=0&page=1 HTTP/1.1
Host: drive.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://drive.google.com/
DNT: 1
Connection: keep-alive
Cookie: SOCS=CAESHAgBEhJnd3NfMjAyMjA5MjktMF9SQzEaAnJvIAEaBgiAkvOZBg; NID=513=c5bb5qe8561Qs5s34Gn9r7YSFMoELkOltYWUeJjpVJPZCT4VpqEvQPQktJAcg3tkrhUkoF68YZta2tDZ7J2VIP28dWKK97ZuCm6TJHYB7NE_eXrjxyaAO8mKcv4sPbMP66WfSjxzRWKKIQ1T_208Oj8Rs0THoo1Nj3g7r75q6QU
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
content-type: application/json; charset=utf-8
vary: Sec-Fetch-Dest, Sec-Fetch-Mode, Sec-Fetch-Site
x-content-type-options: nosniff
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Wed, 24 Apr 2024 17:57:04 GMT
content-disposition: attachment; filename="json.txt"; filename*=UTF-8''json.txt
strict-transport-security: max-age=31536000
permissions-policy: ch-ua-arch=*, ch-ua-bitness=*, ch-ua-full-version=*, ch-ua-full-version-list=*, ch-ua-model=*, ch-ua-wow64=*, ch-ua-form-factor=*, ch-ua-platform=*, ch-ua-platform-version=*
report-to: {"group":"AppsViewerFrontendHttp","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/AppsViewerFrontendHttp"}]}
content-security-policy: script-src 'nonce-VFJg9b0fND4qA3yn8tpgAw' 'unsafe-inline';object-src 'none';base-uri 'self';report-uri /_/AppsViewerFrontendHttp/cspreport;worker-src 'self', script-src 'unsafe-inline' 'self' https://apis.google.com https://ssl.gstatic.com https://www.google.com https://www.googletagmanager.com https://www.gstatic.com https://www.google-analytics.com;report-uri /_/AppsViewerFrontendHttp/cspreport/allowlist, require-trusted-types-for 'script';report-uri /_/AppsViewerFrontendHttp/cspreport
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Model, Sec-CH-UA-WoW64, Sec-CH-UA-Form-Factor, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
cross-origin-opener-policy: same-origin
cross-origin-embedder-policy-report-only: require-corp; report-to="AppsViewerFrontendHttp"
reporting-endpoints: default="/_/AppsViewerFrontendHttp/web-reports?context=eJzjMtDikmII1pBicNu9k8kbiCU5bzPJAbEaEGsD8QWpx0xXgdgpfQZrABAL8XB86F-6kU3gxoLnT5kATLIVTw"
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

142.250.74.142

200 OK

694 B

URL GET HTTP/3
drive.google.com/viewer2/prod-03/presspage?ck=drive&ds=APznzabjBeB0GbRXcMIgGmuw0IV8jFdBICyGvmXb2GzTA5dm13UYG-fY2SthnrmlHL-OS0Qo1refXMStRMNcoE5BjUkWOhfBiNy00RLBT7rQEP4ZlaNTchWuqANtEddss-x7OrIPTnnkwPaHkZ1cFdWIiFC1ow9EEOwmgT2o6unoMHt6hB6Wec3D0RNjFztBTduq3hiDH6Qi8fwI_9Iby8Ur-KCb_pdafswtqFnkSL1iXykRo_tJRWi7ciqSlHnwkvkkksyMbOCN_XDMpfv3a29F66N1CLPxK52vpq56GU2LPs6XW0zhZmY1mFglq6mE8TWjQ5P3SI1pS8kPq_YxTqivNmHY1AquiQBuu5PxzOpH4B8Xa98SHWAmd0eJp5cNgEKVIoW_1SSNdd_xOSIi8ShAtdgIY7dWdA%3D%3D&authuser=0&page=2
IP
142.250.74.142:443
ASN
#15169 GOOGLE

Requested by
https://drive.google.com/file/d/1zklh84ga2qZwSAxJtunNm9QxqFIYlM66/view?usp=drive_link
Certificate
IssuerGoogle Trust Services LLC
Subject*.google.com
Fingerprint70:CC:1A:8A:58:6C:1F:6D:43:AE:66:75:89:F7:99:7B:BC:7A:74:2D
ValidityMon, 18 Mar 2024 19:37:19 GMT - Mon, 10 Jun 2024 19:37:18 GMT

File type
ASCII text, with very long lines (717), with no line terminators
Size
694 B (694 bytes)
Hash
c1c1ac3ac816622264888c72586321f2
14cd6efa84b4cf0afe24ac2b4da98fa03bd9bec1
2c242563945da1e058ac2fd315aef1959a09a0ac0d793ebba85781ceb4d5a9fa

HTTP Headers

GET /viewer2/prod-03/presspage?ck=drive&ds=APznzabjBeB0GbRXcMIgGmuw0IV8jFdBICyGvmXb2GzTA5dm13UYG-fY2SthnrmlHL-OS0Qo1refXMStRMNcoE5BjUkWOhfBiNy00RLBT7rQEP4ZlaNTchWuqANtEddss-x7OrIPTnnkwPaHkZ1cFdWIiFC1ow9EEOwmgT2o6unoMHt6hB6Wec3D0RNjFztBTduq3hiDH6Qi8fwI_9Iby8Ur-KCb_pdafswtqFnkSL1iXykRo_tJRWi7ciqSlHnwkvkkksyMbOCN_XDMpfv3a29F66N1CLPxK52vpq56GU2LPs6XW0zhZmY1mFglq6mE8TWjQ5P3SI1pS8kPq_YxTqivNmHY1AquiQBuu5PxzOpH4B8Xa98SHWAmd0eJp5cNgEKVIoW_1SSNdd_xOSIi8ShAtdgIY7dWdA%3D%3D&authuser=0&page=2 HTTP/1.1
Host: drive.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://drive.google.com/
DNT: 1
Connection: keep-alive
Cookie: SOCS=CAESHAgBEhJnd3NfMjAyMjA5MjktMF9SQzEaAnJvIAEaBgiAkvOZBg; NID=513=c5bb5qe8561Qs5s34Gn9r7YSFMoELkOltYWUeJjpVJPZCT4VpqEvQPQktJAcg3tkrhUkoF68YZta2tDZ7J2VIP28dWKK97ZuCm6TJHYB7NE_eXrjxyaAO8mKcv4sPbMP66WfSjxzRWKKIQ1T_208Oj8Rs0THoo1Nj3g7r75q6QU
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
content-type: application/json; charset=utf-8
vary: Sec-Fetch-Dest, Sec-Fetch-Mode, Sec-Fetch-Site
x-content-type-options: nosniff
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Wed, 24 Apr 2024 17:57:04 GMT
content-disposition: attachment; filename="json.txt"; filename*=UTF-8''json.txt
strict-transport-security: max-age=31536000
content-security-policy: require-trusted-types-for 'script';report-uri /_/AppsViewerFrontendHttp/cspreport, script-src 'nonce-bDMY7JP1kU01d0l_C8k6KA' 'unsafe-inline';object-src 'none';base-uri 'self';report-uri /_/AppsViewerFrontendHttp/cspreport;worker-src 'self', script-src 'unsafe-inline' 'self' https://apis.google.com https://ssl.gstatic.com https://www.google.com https://www.googletagmanager.com https://www.gstatic.com https://www.google-analytics.com;report-uri /_/AppsViewerFrontendHttp/cspreport/allowlist
cross-origin-opener-policy: same-origin
report-to: {"group":"AppsViewerFrontendHttp","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/AppsViewerFrontendHttp"}]}
permissions-policy: ch-ua-arch=*, ch-ua-bitness=*, ch-ua-full-version=*, ch-ua-full-version-list=*, ch-ua-model=*, ch-ua-wow64=*, ch-ua-form-factor=*, ch-ua-platform=*, ch-ua-platform-version=*
cross-origin-embedder-policy-report-only: require-corp; report-to="AppsViewerFrontendHttp"
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Model, Sec-CH-UA-WoW64, Sec-CH-UA-Form-Factor, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
reporting-endpoints: default="/_/AppsViewerFrontendHttp/web-reports?context=eJzjMtDikmII1pBicNu9k8kbiCU5bzPJAbEaEGsD8QWpx0xXgdgpfQZrABAL8XB86F-6kU1gwvbf05gBS0UU5A"
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

www.gstatic.com/_/apps-fileview/_/js/k=apps-fileview.v.no.iZR-gPbEVN0.O/am=AAw/d=0/rs=AO0039vPH2I2kvE1e0rE-WtGF30RaZyzCA/m=dSirkf,sy5l,sy1m,n90YA,ZGAB2e,sLGWFe,sy1h,sy2p,sy1o,sy3d,M79aPc,syq,sys,sy10,sy1j,sy1n,sy1u,sy2i,sy2q,sy2v,sy32,sy3f,sy3s,sy3p,sy53,nJ4XF,sy5m,sy5o,UKcSG,AtsVYc

142.250.74.35

200 OK

948 kB

URL GET HTTP/3
www.gstatic.com/_/apps-fileview/_/js/k=apps-fileview.v.no.iZR-gPbEVN0.O/am=AAw/d=0/rs=AO0039vPH2I2kvE1e0rE-WtGF30RaZyzCA/m=dSirkf,sy5l,sy1m,n90YA,ZGAB2e,sLGWFe,sy1h,sy2p,sy1o,sy3d,M79aPc,syq,sys,sy10,sy1j,sy1n,sy1u,sy2i,sy2q,sy2v,sy32,sy3f,sy3s,sy3p,sy53,nJ4XF,sy5m,sy5o,UKcSG,AtsVYc
IP
142.250.74.35:443
ASN
#15169 GOOGLE

Requested by
https://drive.google.com/file/d/1zklh84ga2qZwSAxJtunNm9QxqFIYlM66/view?usp=drive_link
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintF5:5C:D9:68:C6:5F:A3:33:5A:73:C3:79:B6:83:FE:44:2E:A4:83:74
ValidityMon, 18 Mar 2024 20:34:25 GMT - Mon, 10 Jun 2024 20:34:24 GMT

File type
JavaScript source, ASCII text, with very long lines (1843)
Size
948 kB (947557 bytes)
Hash
b9eda9964a246f920328b9f17c45408f
ecf78ae87a640d307df38121f81675bb30801f3c
ada29511459e035212c60b6448a5252ab7a20905ffd74e027a5d08a2bcd1533d

HTTP Headers

GET /_/apps-fileview/_/js/k=apps-fileview.v.no.iZR-gPbEVN0.O/am=AAw/d=0/rs=AO0039vPH2I2kvE1e0rE-WtGF30RaZyzCA/m=dSirkf,sy5l,sy1m,n90YA,ZGAB2e,sLGWFe,sy1h,sy2p,sy1o,sy3d,M79aPc,syq,sys,sy10,sy1j,sy1n,sy1u,sy2i,sy2q,sy2v,sy32,sy3f,sy3s,sy3p,sy53,nJ4XF,sy5m,sy5o,UKcSG,AtsVYc HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://drive.google.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
accept-ranges: bytes
content-encoding: gzip
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-fileview
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-fileview"
report-to: {"group":"apps-fileview","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-fileview"}]}
content-length: 293900
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 18 Apr 2024 19:20:53 GMT
expires: Fri, 18 Apr 2025 19:20:53 GMT
cache-control: public, max-age=31536000
last-modified: Thu, 11 Apr 2024 01:19:25 GMT
content-type: text/javascript; charset=UTF-8
vary: Accept-Encoding, Origin
age: 513371
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

drive.google.com/file/d/1zklh84ga2qZwSAxJtunNm9QxqFIYlM66/docos/p/sync?resourcekey&id=1zklh84ga2qZwSAxJtunNm9QxqFIYlM66&reqid=0

142.250.74.142

200 OK

43 B

URL POST HTTP/3
drive.google.com/file/d/1zklh84ga2qZwSAxJtunNm9QxqFIYlM66/docos/p/sync?resourcekey&id=1zklh84ga2qZwSAxJtunNm9QxqFIYlM66&reqid=0
IP
142.250.74.142:443
ASN
#15169 GOOGLE

Requested by
https://drive.google.com/file/d/1zklh84ga2qZwSAxJtunNm9QxqFIYlM66/view?usp=drive_link
Certificate
IssuerGoogle Trust Services LLC
Subject*.google.com
Fingerprint70:CC:1A:8A:58:6C:1F:6D:43:AE:66:75:89:F7:99:7B:BC:7A:74:2D
ValidityMon, 18 Mar 2024 19:37:19 GMT - Mon, 10 Jun 2024 19:37:18 GMT

File type
ASCII text, with no line terminators
Size
43 B (43 bytes)
Hash
3b4e51cf69d905fbf8837abc374a93e4
64ceebcb9ad6733f670bed5a8ce257c993f20c59
25e0069f799ad43096a54e7d590073981e8d83a14dbe373c5d1909386ec6cca6

HTTP Headers

POST /file/d/1zklh84ga2qZwSAxJtunNm9QxqFIYlM66/docos/p/sync?resourcekey&id=1zklh84ga2qZwSAxJtunNm9QxqFIYlM66&reqid=0 HTTP/1.1
Host: drive.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://drive.google.com/
X-Same-Domain: 1
X-Build: apps-fileview.texmex_20240410.07_p1
Content-Type: application/x-www-form-urlencoded;charset=utf-8
Content-Length: 75
Origin: https://drive.google.com
DNT: 1
Connection: keep-alive
Cookie: SOCS=CAESHAgBEhJnd3NfMjAyMjA5MjktMF9SQzEaAnJvIAEaBgiAkvOZBg; NID=513=c5bb5qe8561Qs5s34Gn9r7YSFMoELkOltYWUeJjpVJPZCT4VpqEvQPQktJAcg3tkrhUkoF68YZta2tDZ7J2VIP28dWKK97ZuCm6TJHYB7NE_eXrjxyaAO8mKcv4sPbMP66WfSjxzRWKKIQ1T_208Oj8Rs0THoo1Nj3g7r75q6QU
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
content-type: application/json; charset=utf-8
x-robots-tag: noindex, nofollow, nosnippet
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Wed, 24 Apr 2024 17:57:05 GMT
content-disposition: attachment; filename="response.bin"; filename*=UTF-8''response.bin
x-content-type-options: nosniff
content-encoding: gzip
content-security-policy: require-trusted-types-for 'script';report-uri https://csp.withgoogle.com/csp/docs-tt
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

Public InfoSec YARA rules

OpenPhish

PhishTank

mnemonic secure dns

Quad9 DNS

ThreatFox

JavaScript (19)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML