Report - students-help.ga/

Report Overview

Submitted URL
students-help.ga/
IP
174.129.25.170
ASN
#14618 AMAZON-AES
Submitted
2023-03-18 14:28:20
Access
public
Website Title
Final URL
Tags
urlquery detections
No alerts detected

Detections

urlquery
0
Network Intrusion Detection
4
Threat Detection Systems
0

Domain Summary

Domain / FQDN	Rank	First Seen	Last Seen	Sent	Received	IP
students-help.ga	unknown	2023-01-24T17:08:29Z	2023-03-18T15:27:57Z	348 B	370 B	174.129.25.170
lh6.googleusercontent.com	458	2012-06-26T18:02:26Z	2023-03-25T05:10:23Z	1.5 kB	6.3 MB	216.58.211.1
mc.yandex.ru	2672	2012-05-21T11:38:30Z	2023-03-26T05:09:31Z	821 B	75 kB	93.158.134.119
r3.o.lencr.org	344	2020-12-02T09:52:13Z	2023-03-25T18:12:03Z	1.7 kB	4.4 kB	23.36.76.226
lh4.googleusercontent.com	454	2012-06-26T18:52:04Z	2023-03-25T17:15:45Z	960 B	21 kB	216.58.211.1
fonts.googleapis.com	8877	2013-06-10T22:14:26Z	2023-03-26T06:22:54Z	1.4 kB	1.9 kB	142.250.74.106
ocsp.globalsign.com	2075	2012-07-20T19:46:16Z	2023-03-26T05:09:32Z	359 B	1.4 kB	104.18.20.226
content-signature-2.cdn.mozilla.net	1152	2020-11-03T13:26:46Z	2023-03-26T05:11:12Z	413 B	5.9 kB	34.160.144.191
apis.google.com	105	2013-05-06T22:20:21Z	2023-03-26T05:11:23Z	386 B	7.8 kB	142.250.74.46
push.services.mozilla.com	2140	2014-10-24T10:27:06Z	2023-03-26T05:10:29Z	606 B	127 B	44.226.72.95
fonts.gstatic.com	unknown	2014-09-09T02:40:21Z	2023-03-25T22:19:37Z	4.5 kB	274 kB	142.250.74.35
img-getpocket.cdn.mozilla.net	1631	2018-06-22T01:36:00Z	2023-03-26T05:09:08Z	3.3 kB	55 kB	34.120.237.76
region1.google-analytics.com	unknown	2022-03-17T12:26:33Z	2023-03-26T05:15:01Z	1.3 kB	451 B	216.239.32.36
lh3.googleusercontent.com	66	2012-05-22T09:35:05Z	2023-03-26T05:15:56Z	2.0 kB	575 kB	216.58.211.1
lh5.googleusercontent.com	157	2012-05-22T09:35:05Z	2023-03-25T05:10:23Z	1.9 kB	56 kB	216.58.211.1
firefox.settings.services.mozilla.com	867	2020-06-04T22:08:41Z	2023-03-25T18:14:26Z	782 B	2.4 kB	35.241.9.150
contile.services.mozilla.com	1114	2021-05-27T20:32:35Z	2023-03-26T05:11:59Z	333 B	391 B	34.117.237.239
www.students-help.ga	unknown	2021-03-09T19:21:31Z	2023-03-18T15:28:08Z	2.0 kB	2.7 kB	142.250.74.147
ocsp.pki.goog	175	2018-07-01T08:43:07Z	2023-03-26T05:10:41Z	5.8 kB	12 kB	142.250.74.131
www.gstatic.com	unknown	2016-07-26T11:37:06Z	2023-03-26T05:56:25Z	454 B	140 kB	216.58.211.3
www.googletagmanager.com	75	2013-05-22T04:07:37Z	2023-03-26T05:35:01Z	388 B	79 kB	142.250.74.40

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Timestamp	Severity	Source IP	Destination IP	Alert
2023-03-18 14:28:07	low	Client IP	Internal IP	ET INFO DNS Query for Suspicious .ga Domain
2023-03-18 14:28:08	medium	Client IP	174.129.25.170	ET INFO HTTP Request to a *.ga domain
2023-03-18 14:28:08	medium	Client IP	142.250.74.147	ET INFO HTTP Request to a *.ga domain
2023-03-18 14:28:08	low	Client IP	142.250.74.147	ET INFO Suspicious Domain (*.ga) in TLS SNI

Threat Detection Systems

OpenPhish

No alerts detected

PhishTank

No alerts detected

Fortinet's Web Filter

No alerts detected

mnemonic secure dns

No alerts detected

Quad9 DNS

No alerts detected

ThreatFox

No alerts detected

JavaScript (25)

	URL	Size	First Seen	Last Seen
	apis.google.com/js/client.js?onload=gapiLoaded	18 kB	2023-03-14	2023-03-29
Pretty URL apis.google.com/js/client.js?onload=gapiLoaded IP 142.250.74.46 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-14 08:39:35 Last Seen2023-03-29 20:59:55 Times Seen132 Hash b9056622d7a9860845bd58746b08aced 6867df1e9c7e50424cc5dd26f3da1baf7802bd84 5010c60273539ada2860044ed040e1562f729a71c2869367a1defd9187f8f373 Loading...

	www.students-help.ga/	593 B	2023-03-26	2023-03-26
Pretty URL www.students-help.ga/ IP 142.250.74.147 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-26 09:46:04 Last Seen2023-03-26 09:46:04 Times Seen1 Hash cb80712d2a135fa935b9736ec1c4a0c2 889a5b4fc78649c63f615b917a520c118bea916b d2af2abe92e5db68540ae5e670f3d6356ec74532d02829aea48f311db7706c71 Loading...

	www.gstatic.com/_/atari/_/js/k=atari.vw.en_US.atqA6A2Tm0c.O/d=0/rs=AGEqA5nIlXtUuUmJpQ0nNwtI-q9UM9xbhQ/m=sy2m,TRvtze	850 B	2023-03-26	2023-03-26
Pretty URL www.gstatic.com/_/atari/_/js/k=atari.vw.en_US.atqA6A2Tm0c.O/d=0/rs=AGEqA5nIlXtUuUmJpQ0nNwtI-q9UM9xbhQ/m=sy2m,TRvtze IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-26 07:57:49 Last Seen2023-03-26 12:42:32 Times Seen92 Hash 8308ec31e9b36be6bf931bcda4654bba 18908004a4f37350820269472b609c2df561243a 90d2d6766b8d477cf68cc49fa103aab1627b28e9a7dac22fd338bfce321d2992 Loading...

	www.gstatic.com/atari/embeds/7925c5f8e01bacb9b4b0a3783ae0b867/intermediate-frame-minified.html?jsh=m%3B%2F_%2Fscs%2Fabc-static%2F_%2Fjs%2Fk%3Dgapi.lb.en.Oupypiulh58.O%2Fd%3D1%2Frs%3DAHpOoo_CVmSAWqMsGCHgMRyaSvlE8hY6sw%2Fm%3D__features__&r=379112151	1.7 kB	2023-03-07	2023-03-29
Pretty URL www.gstatic.com/atari/embeds/7925c5f8e01bacb9b4b0a3783ae0b867/intermediate-frame-minified.html?jsh=m%3B%2F_%2Fscs%2Fabc-static%2F_%2Fjs%2Fk%3Dgapi.lb.en.Oupypiulh58.O%2Fd%3D1%2Frs%3DAHpOoo_CVmSAWqMsGCHgMRyaSvlE8hY6sw%2Fm%3D__features__&r=379112151 IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:35:43 Last Seen2023-03-29 22:26:37 Times Seen8 Hash d662957f69c5f5f4943de1db3abd15c5 dbea22742ad3c67efe9cadd14a2bf255d37ebb98 77e9a557a17e16305e064b05825a94ad7110e542e24ff62d085f6ae8622888ba Loading...

	apis.google.com/_/scs/abc-static/_/js/k=gapi.lb.en.Oupypiulh58.O/m=gapi_rpc/rt=j/sv=1/d=1/ed=1/rs=AHpOoo_CVmSAWqMsGCHgMRyaSvlE8hY6sw/cb=gapi.loaded_0?le=scs	51 kB	2023-03-14	2023-03-26
Pretty URL apis.google.com/_/scs/abc-static/_/js/k=gapi.lb.en.Oupypiulh58.O/m=gapi_rpc/rt=j/sv=1/d=1/ed=1/rs=AHpOoo_CVmSAWqMsGCHgMRyaSvlE8hY6sw/cb=gapi.loaded_0?le=scs IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-14 19:25:34 Last Seen2023-03-26 11:38:43 Times Seen5 Hash 2c1460deeb04f417d96583dfad3d09ca 91fe3e7daca9ecc74fe7080694d3923c9032559d 4e96eae64b01f1f510f1a3e4c96f8899c6357c1f4e9106edbc9f18d09bf79b4c Loading...

	810463162-atari-embeds.googleusercontent.com/embeds/16cb204cf3a9d4d223a0a3fd8b0eec5d/inner-frame-minified.html?jsh=m%3B%2F_%2Fscs%2Fabc-static%2F_%2Fjs%2Fk%3Dgapi.lb.en.Oupypiulh58.O%2Fd%3D1%2Frs%3DAHpOoo_CVmSAWqMsGCHgMRyaSvlE8hY6sw%2Fm%3D__features__	1.7 kB	2023-03-07	2023-03-29
Pretty URL 810463162-atari-embeds.googleusercontent.com/embeds/16cb204cf3a9d4d223a0a3fd8b0eec5d/inner-frame-minified.html?jsh=m%3B%2F_%2Fscs%2Fabc-static%2F_%2Fjs%2Fk%3Dgapi.lb.en.Oupypiulh58.O%2Fd%3D1%2Frs%3DAHpOoo_CVmSAWqMsGCHgMRyaSvlE8hY6sw%2Fm%3D__features__ IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:35:43 Last Seen2023-03-29 22:26:37 Times Seen8 Hash 83a757d5c1f1978705cdcb2939de46ed 9cc529c0c0c4df3d3baeb0b7fe0d9df4e63fd38b c8994ab1a1ae929c963556e706008f25f06262e46f0be2684a5dec8c96f9fe3e Loading...

	www.students-help.ga/	59 B	2023-03-07	2024-04-24
Pretty URL www.students-help.ga/ IP 142.250.74.147 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:10:08 Last Seen2024-04-24 22:57:46 Times Seen1294 Hash a6e675093ac913b1b3c5bd616350e0ec 3fce18aa4c76382c7bd8be5a7d9da1d202419d5f 6024a6f0412fb6700a75e2c9221311c5230ae6b78a2e0b2e6b8800313c561b21 Loading...

	www.gstatic.com/_/atari/_/js/k=atari.vw.en_US.atqA6A2Tm0c.O/d=0/rs=AGEqA5nIlXtUuUmJpQ0nNwtI-q9UM9xbhQ/m=sy1b,sy1c,sy1a,FoQBg	37 kB	2023-03-26	2023-03-26
Pretty URL www.gstatic.com/_/atari/_/js/k=atari.vw.en_US.atqA6A2Tm0c.O/d=0/rs=AGEqA5nIlXtUuUmJpQ0nNwtI-q9UM9xbhQ/m=sy1b,sy1c,sy1a,FoQBg IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-26 07:57:49 Last Seen2023-03-26 12:42:32 Times Seen87 Hash 8858435b45b2f175f38583edf6a9abe9 effe9f0a73d433cf8bf4daeea49653f96f8c9b3f cca76f8391b261e4771e5be6b29543bb1d82f9b559e93fbce1efca4a4d9bb109 Loading...

	www.gstatic.com/_/atari/_/js/k=atari.vw.en_US.atqA6A2Tm0c.O/d=0/rs=AGEqA5nIlXtUuUmJpQ0nNwtI-q9UM9xbhQ/m=MpJwZc,n73qwf,A4UTCb,qAKInc,sy16,TGYpv,sy11,X85Uvc,HIeYee,QxOCld,syz,YXyON,sy2n,abQiW,W26a5e,hJUyqe,sy13,sy18,sy14,sy15,sy17,fuVYe,syj,ruhlUe,KUM7Z,XDKZTc,sy12,qkPXAf,zPx2U,qEW1W,oNFsLb,sy3m,yxTchf,sy3n,sy3o,xQtZb,yf2Bs,sy2,sy8,yyxWAc,qddgKe,sy2p,SM1lmd,sy6,sy5,syy,RRzQxe,zZvHmd,sy10,YV8yqd,sy7,sya,syk,sy9,fNFZH,sy2o,sy1g,sy1q,syl,RrXLpc,cgRV2c,sy1r,o1L5Wb,X4BaPc,syf,Md9ENb,sy1i,sy1j,sy1k,syn,syo,sy1e,sy1f,sy1h,sy1p,syp,syx,KlrXId,NlqxW,sy1n,sy1o,sy1m,syb,sys,sy1l,sy1t,sy1w,sy1y,sy23,sy1u,sy22,sy2a,sy1s,sy1v,sy20,sy1x,sy21,sy24,sy28,sy29,sy2c,sy2d,sy1d,T807ad,sy1z,ZDEHrf,sy25,sy26,sy27,sy2b,oy3iwb,dBhIIb,syq,Yr1Pcb,LUQjOd,J9ssyb,SB123c,UubMM,YoEZUb,JKfHhb,DJtOxf,pA2mAb,gypOCd,X4FC5,kYfebb,XMtvld,rrOIJc,ZdZQ6b,Euz7Lc,sAbmxd,heobjb,R4KMEc,sy2e,sy2f,sy2g,sy2h,UYjpC,vVEdxc,sy3,VYKRW,sy19,CG0Qwb,RZ9OZ,N0NZx,szRU7e	1.3 MB	2023-03-26	2023-03-26
Pretty URL www.gstatic.com/_/atari/_/js/k=atari.vw.en_US.atqA6A2Tm0c.O/d=0/rs=AGEqA5nIlXtUuUmJpQ0nNwtI-q9UM9xbhQ/m=MpJwZc,n73qwf,A4UTCb,qAKInc,sy16,TGYpv,sy11,X85Uvc,HIeYee,QxOCld,syz,YXyON,sy2n,abQiW,W26a5e,hJUyqe,sy13,sy18,sy14,sy15,sy17,fuVYe,syj,ruhlUe,KUM7Z,XDKZTc,sy12,qkPXAf,zPx2U,qEW1W,oNFsLb,sy3m,yxTchf,sy3n,sy3o,xQtZb,yf2Bs,sy2,sy8,yyxWAc,qddgKe,sy2p,SM1lmd,sy6,sy5,syy,RRzQxe,zZvHmd,sy10,YV8yqd,sy7,sya,syk,sy9,fNFZH,sy2o,sy1g,sy1q,syl,RrXLpc,cgRV2c,sy1r,o1L5Wb,X4BaPc,syf,Md9ENb,sy1i,sy1j,sy1k,syn,syo,sy1e,sy1f,sy1h,sy1p,syp,syx,KlrXId,NlqxW,sy1n,sy1o,sy1m,syb,sys,sy1l,sy1t,sy1w,sy1y,sy23,sy1u,sy22,sy2a,sy1s,sy1v,sy20,sy1x,sy21,sy24,sy28,sy29,sy2c,sy2d,sy1d,T807ad,sy1z,ZDEHrf,sy25,sy26,sy27,sy2b,oy3iwb,dBhIIb,syq,Yr1Pcb,LUQjOd,J9ssyb,SB123c,UubMM,YoEZUb,JKfHhb,DJtOxf,pA2mAb,gypOCd,X4FC5,kYfebb,XMtvld,rrOIJc,ZdZQ6b,Euz7Lc,sAbmxd,heobjb,R4KMEc,sy2e,sy2f,sy2g,sy2h,UYjpC,vVEdxc,sy3,VYKRW,sy19,CG0Qwb,RZ9OZ,N0NZx,szRU7e IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-26 09:46:04 Last Seen2023-03-26 11:38:43 Times Seen2 Hash 4b73c20d8c70f27e5e05a7d1eab61c8f 9d5b822d563aed84aae7809c2f9edcf645423e17 e7b03bb9f520aeca8a0caca18f26481e50f7da8ea86e97b6736c13b601aa777a Loading...

	apis.google.com/_/scs/abc-static/_/js/k=gapi.lb.en.Oupypiulh58.O/m=client/rt=j/sv=1/d=1/ed=1/rs=AHpOoo_CVmSAWqMsGCHgMRyaSvlE8hY6sw/cb=gapi.loaded_0?le=scs	322 kB	2023-03-14	2023-09-07
Pretty URL apis.google.com/_/scs/abc-static/_/js/k=gapi.lb.en.Oupypiulh58.O/m=client/rt=j/sv=1/d=1/ed=1/rs=AHpOoo_CVmSAWqMsGCHgMRyaSvlE8hY6sw/cb=gapi.loaded_0?le=scs IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-14 08:18:52 Last Seen2023-09-07 20:08:30 Times Seen198 Hash 8d2ef4e0bbf8671cd4ce57245a25eb21 247c630e40de902989668332e641173104715f53 06b63fb25753ca34ef15d1bebd2a7903d9a880bd1ee4459ec51db5f68597514c Loading...

	www.gstatic.com/_/atari/_/js/k=atari.vw.en_US.atqA6A2Tm0c.O/d=0/rs=AGEqA5nIlXtUuUmJpQ0nNwtI-q9UM9xbhQ/m=m9oV,syd,syi,Ae65rd,sy3i,NTMZac,rCcCxc,RAnnUd,mzzZzc,sy2q,uu7UOe,CuaHnc,nAFL3,sy2j,gJzDyc,sy2r,sy2s,soHxf,syv,syu,HYv29e,sy2t,uY3Nvd,mxS5xe	36 kB	2023-03-26	2023-03-26
Pretty URL www.gstatic.com/_/atari/_/js/k=atari.vw.en_US.atqA6A2Tm0c.O/d=0/rs=AGEqA5nIlXtUuUmJpQ0nNwtI-q9UM9xbhQ/m=m9oV,syd,syi,Ae65rd,sy3i,NTMZac,rCcCxc,RAnnUd,mzzZzc,sy2q,uu7UOe,CuaHnc,nAFL3,sy2j,gJzDyc,sy2r,sy2s,soHxf,syv,syu,HYv29e,sy2t,uY3Nvd,mxS5xe IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-26 07:57:49 Last Seen2023-03-26 11:38:43 Times Seen3 Hash 2efeb76d2aae75791b7a5f91eb4f5c2d f45c7138346a3e84c447d27415e6634acbdb91cf b0563c2c7f4df28b32d703d5bb50f1f03866b473f5741c3a8e298fd91656d6ba Loading...

	www.students-help.ga/	37 B	2023-03-07	2024-04-24
Pretty URL www.students-help.ga/ IP 142.250.74.147 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:10:08 Last Seen2024-04-24 22:57:46 Times Seen1365 Hash 278a1fde660b456524bac51f78574a09 9299ca406f8c85dcf8127283ad24b7c971eac8f8 537028ea4a4d59d93a18a6f92e8cc51ad5d8928f7406f69353b809ac4efba0fb Loading...

	www.students-help.ga/	4.3 kB	2023-03-26	2023-03-26
Pretty URL www.students-help.ga/ IP 142.250.74.147 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-26 09:46:04 Last Seen2023-03-26 09:46:04 Times Seen1 Hash a26cd726ad26ed03b0e2d1fbd2caacfe 958d8679a3ce5d47af10210dd58dc5aa8b9d5ba6 e6c2770799e4f9a86efe5aa432a99f5dfc14594ae66114fb38a1cc75859b5e42 Loading...

	www.gstatic.com/_/atari/_/js/k=atari.vw.en_US.atqA6A2Tm0c.O/d=0/rs=AGEqA5nIlXtUuUmJpQ0nNwtI-q9UM9xbhQ/m=sy3d,IZT63,vfuNJf,sy37,sy3b,sy3e,sy3r,sy3p,sy3q,siKnQd,sy35,sy3c,sy3g,YNjGDd,sy3f,sy3h,PrPYRd,iFQyKf,hc6Ubd,sy3s,SpsfSb,sy38,sy3a,wR5FRb,pXdRYb,dIoSBb,zbML3c	27 kB	2023-03-26	2023-03-26
Pretty URL www.gstatic.com/_/atari/_/js/k=atari.vw.en_US.atqA6A2Tm0c.O/d=0/rs=AGEqA5nIlXtUuUmJpQ0nNwtI-q9UM9xbhQ/m=sy3d,IZT63,vfuNJf,sy37,sy3b,sy3e,sy3r,sy3p,sy3q,siKnQd,sy35,sy3c,sy3g,YNjGDd,sy3f,sy3h,PrPYRd,iFQyKf,hc6Ubd,sy3s,SpsfSb,sy38,sy3a,wR5FRb,pXdRYb,dIoSBb,zbML3c IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-26 07:57:49 Last Seen2023-03-26 12:42:32 Times Seen92 Hash 8ba36cb3abe2782485084ebf24337184 1bbef932355adef5e41c65aab88d2654fd7d7cf3 4fad1cfd846c053b4fd049253853d829d4aa3a5258a41cc4f3bc43b234b1d9ef Loading...

	apis.google.com/js/api.js?checkCookie=1	18 kB	2023-03-14	2023-03-29
Pretty URL apis.google.com/js/api.js?checkCookie=1 IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-14 09:06:04 Last Seen2023-03-29 20:58:10 Times Seen56 Hash 7c4f3be6836535b2e643dfac5ab09665 d2bf744d3ff13a81610c3cd55055dd5244777fda 6f9239e033826c061c5561bfc1934cf4af0be52784167cb3c0b22a8110918f13 Loading...

	mc.yandex.ru/metrika/tag.js	216 kB	2023-03-14	2023-10-04
Pretty URL mc.yandex.ru/metrika/tag.js IP 93.158.134.119 ASN #13238 YANDEX LLC Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-14 05:33:27 Last Seen2023-10-04 05:22:07 Times Seen986 Hash 5fa6e88483315ca1aadaf90d6ac4d475 729b82d7bc8052741f5f48daeea1e6287f1fe73b 04afc90111de0665453b3f792bc1112feb5ee5bad24b9e206af915941da8c300 Loading...

	www.students-help.ga/	2.6 kB	2023-03-26	2023-03-26
Pretty URL www.students-help.ga/ IP 142.250.74.147 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-26 09:46:04 Last Seen2023-03-26 09:46:04 Times Seen1 Hash 73710917efe711b1b9b323b60469f1df b330f7123c470ff26bc6e479abec16b6ec9e76e3 7f5ea44c354851d7b368a1d9decab572c0990d5ef269c70561bb938524a6299c Loading...

	www.students-help.ga/	167 B	2023-03-08	2023-11-28
Pretty URL www.students-help.ga/ IP 142.250.74.147 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 14:24:26 Last Seen2023-11-28 03:07:22 Times Seen956 Hash b2e4025e8778a2dad8b55f32f753b9c0 156441e72f8380a2b4a7ba59dfb6cb828696502b d97d5d1b2889ff7d225c69788b178016838bba9e3ae41b1f01784ba75b3308d1 Loading...

	www.students-help.ga/	214 B	2023-03-26	2023-03-26
Pretty URL www.students-help.ga/ IP 142.250.74.147 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-26 09:46:04 Last Seen2023-03-26 09:46:04 Times Seen1 Hash 40914ba9415eb42d09461ffd0886b19a 4300a753d4edce285c1afe161242c7641fa23f7f 195500e65860fbdb4ca25e8b9df10da45a1c5b5edbe41b1702122ed8bc263d31 Loading...

	www.students-help.ga/	40 B	2023-03-07	2024-04-24
Pretty URL www.students-help.ga/ IP 142.250.74.147 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:10:08 Last Seen2024-04-24 22:57:47 Times Seen1294 Hash 8dc7198496a693002800c969535719d8 2af910a76b06855faba3c17d869440b55a29e893 a750528f499f276d2fd47264648a292994d3423ee1918dd48e033fc9dfa8f2e6 Loading...

	unknown	0 B	2023-03-07	2024-04-26
Pretty Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:01:59 Last Seen2024-04-26 11:06:26 Times Seen37090394 Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 Loading...

	apis.google.com/_/scs/abc-static/_/js/k=gapi.lb.en.Oupypiulh58.O/m=gapi_rpc/exm=client/rt=j/sv=1/d=1/ed=1/rs=AHpOoo_CVmSAWqMsGCHgMRyaSvlE8hY6sw/cb=gapi.loaded_1?le=scs	261 B	2023-03-14	2023-03-26
Pretty URL apis.google.com/_/scs/abc-static/_/js/k=gapi.lb.en.Oupypiulh58.O/m=gapi_rpc/exm=client/rt=j/sv=1/d=1/ed=1/rs=AHpOoo_CVmSAWqMsGCHgMRyaSvlE8hY6sw/cb=gapi.loaded_1?le=scs IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-14 09:29:22 Last Seen2023-03-26 13:09:27 Times Seen112 Hash 86b7b2516a1032925b9f3f79108d0f71 d2324271b2ac804f52794fca07ed8cffc44bf18b 59931fe9a9972b171343e67ce85b3452a07dd7bdc6e3e34631b9d6841f592591 Loading...

	810463162-atari-embeds.googleusercontent.com/embeds/16cb204cf3a9d4d223a0a3fd8b0eec5d/inner-frame-minified.html?jsh=m%3B%2F_%2Fscs%2Fabc-static%2F_%2Fjs%2Fk%3Dgapi.lb.en.Oupypiulh58.O%2Fd%3D1%2Frs%3DAHpOoo_CVmSAWqMsGCHgMRyaSvlE8hY6sw%2Fm%3D__features__	462 B	2023-03-26	2023-03-26
Pretty URL 810463162-atari-embeds.googleusercontent.com/embeds/16cb204cf3a9d4d223a0a3fd8b0eec5d/inner-frame-minified.html?jsh=m%3B%2F_%2Fscs%2Fabc-static%2F_%2Fjs%2Fk%3Dgapi.lb.en.Oupypiulh58.O%2Fd%3D1%2Frs%3DAHpOoo_CVmSAWqMsGCHgMRyaSvlE8hY6sw%2Fm%3D__features__ IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-26 09:46:04 Last Seen2023-03-26 09:46:04 Times Seen1 Hash 5958b7e634f18a2be7dff82d99517ae6 bcbf933fc5976d81c1d8633419e2db0940228c71 1f87832abb279cf19e2e60043451eafc22be9c902deab350de7dca65f2f1593a Loading...

		Size	First Seen	Last Seen
	#1 Write - 7cd083ae58e9d5d83a83aed107bfb30f	720 B	2023-03-26	2023-03-26
Pretty Observations First Seen2023-03-26 09:46:04 Last Seen2023-03-26 09:46:04 Times Seen1 Hash 7cd083ae58e9d5d83a83aed107bfb30f da13c40c93bf9f0d724ca8369c0ea559b894c0aa 9d1756ce386113863c680fbc1766da14f836e141c82bc397059f8b03553e63cd Loading...

	#2 Write - 2a5844d96ed8978c22bcd28b5e0bfe32	422 B	2023-03-26	2023-03-26
Pretty Observations First Seen2023-03-26 09:46:04 Last Seen2023-03-26 09:46:04 Times Seen1 Hash 2a5844d96ed8978c22bcd28b5e0bfe32 da8037f45efed94672ba40635d0858ff3149fbc5 7c0e1ec5b4310a25f900eac03d2743867409d0ee807f2f70748dac1aee904faf Loading...

HTTP Transactions (70)

URL IP Response Size

students-help.ga/

174.129.25.170

301 Moved Permanently

169 B

URL HTTP/1.1
students-help.ga/
IP
174.129.25.170:0
ASN
#14618 AMAZON-AES

File type
HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Size
169 B (169 bytes)
Hash
130d1009f10d4fb1cede97de52442d1f
20a7a05cc7df967bae4e1b71f5e8f299eb556003
c389e590871a87f27ad27393cf7f2947c3ede6ba1cca818cbcff4131e0d0eac4

Detections

NIDS	Severity	Alert
suricata	medium	ET INFO HTTP Request to a *.ga domain

HTTP Headers

GET / HTTP/1.1
Host: students-help.ga
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1

HTTP/1.1 301 Moved Permanently
Server: nginx/1.22.1
Date: Sat, 18 Mar 2023 14:28:08 GMT
Content-Type: text/html
Content-Length: 169
Connection: keep-alive
Location: http://www.students-help.ga/

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
2857be6f18459c7a4a7f00f6cd6076f1
570609086d72a9be57cde7bfefd25663c1035fba
bd8abb8f420d1e31462fca1d6a7caadf1e2bba6fc7db05684b5811e00e84107f

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "BD8ABB8F420D1E31462FCA1D6A7CAADF1E2BBA6FC7DB05684B5811E00E84107F"
Last-Modified: Fri, 17 Mar 2023 14:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7530
Expires: Sat, 18 Mar 2023 16:33:38 GMT
Date: Sat, 18 Mar 2023 14:28:08 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
3396075e8f2d9ceae3bd11f94111fed8
98ba4ccf6b0e38a91c69b76ac1dc07313773ed1d
e533d6bd6a8080facdff772bcbf359373dab2d5a6fe5eabe64f95e68a8cd23aa

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "E533D6BD6A8080FACDFF772BCBF359373DAB2D5A6FE5EABE64F95E68A8CD23AA"
Last-Modified: Fri, 17 Mar 2023 06:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7772
Expires: Sat, 18 Mar 2023 16:37:40 GMT
Date: Sat, 18 Mar 2023 14:28:08 GMT
Connection: keep-alive

firefox.settings.services.mozilla.com/v1/

35.241.9.150

200 OK

939 B

URL HTTP/2
firefox.settings.services.mozilla.com/v1/
IP
35.241.9.150:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Size
939 B (939 bytes)
Hash
bc86ef2a0cee04915bc360f5821adc8f
3658f9028cce204d38f7f48fcfaa2a8e4f54383a
aeecd718d03811322457de4f20828bdba86b277e7e0e328cae9c0a8075638454

HTTP Headers

GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Length, Retry-After, Content-Type, Alert, Backoff
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Sat, 18 Mar 2023 14:14:34 GMT
content-type: application/json
age: 814
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
eddc2a353d39e5ce5c30d7e90b3ed6a5
305e86e4b966344c135c50af9a6509ffd3a83e9e
bd775c38c2e11f1baedde5d92ab17ceaf4c2067f8ea996595a66801758a71813

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "BD775C38C2E11F1BAEDDE5D92AB17CEAF4C2067F8EA996595A66801758A71813"
Last-Modified: Fri, 17 Mar 2023 19:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9173
Expires: Sat, 18 Mar 2023 17:01:01 GMT
Date: Sat, 18 Mar 2023 14:28:08 GMT
Connection: keep-alive

content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-04-30-16-53-14.chain

34.160.144.191

200 OK

5.3 kB

URL HTTP/2
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-04-30-16-53-14.chain
IP
34.160.144.191:0
ASN
#15169 GOOGLE

File type
PEM certificate\012- , ASCII text
Size
5.3 kB (5348 bytes)
Hash
e7bace7c1e04d44012e37ddffe36e5d5
3ac8d7c0a9d3e3f0b28b2530c7b8d8407b4042c2
6b4f80f2e95b26f6122ea8dcd0ef8d762299be822c69e839fc37581ca2bcb5f2

HTTP Headers

GET /chains/remote-settings.content-signature.mozilla.org-2023-04-30-16-53-14.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
x-amz-id-2: x/QuMOQFtN0rHSUWT+Pl6OMTlCZLLGUsj9p5coneFIpXnN3HF70FQuH0qwIG7emTgp3p3AZ7psA=
x-amz-request-id: CHGPFZWE5JM8CTQS
x-amz-server-side-encryption: AES256
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Sat, 18 Mar 2023 13:51:58 GMT
age: 2170
last-modified: Sat, 11 Mar 2023 16:53:15 GMT
etag: "e7bace7c1e04d44012e37ddffe36e5d5"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2

contile.services.mozilla.com/v1/tiles

34.117.237.239

200 OK

12 B

URL HTTP/2
contile.services.mozilla.com/v1/tiles
IP
34.117.237.239:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with no line terminators
Size
12 B (12 bytes)
Hash
23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3

HTTP Headers

GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
date: Sat, 18 Mar 2023 14:28:08 GMT
content-type: application/json
content-length: 12
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
access-control-allow-credentials: true
access-control-expose-headers: content-type
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2

www.students-help.ga/

142.250.74.147

301 Moved Permanently

0 B

URL HTTP/1.1
www.students-help.ga/
IP
142.250.74.147:0
ASN
#15169 GOOGLE

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

NIDS	Severity	Alert
suricata	medium	ET INFO HTTP Request to a *.ga domain

HTTP Headers

GET / HTTP/1.1
Host: www.students-help.ga
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1

HTTP/1.1 301 Moved Permanently
Content-Type: application/binary
Cache-Control: no-cache, no-store, max-age=0, must-revalidate
Pragma: no-cache
Expires: Mon, 01 Jan 1990 00:00:00 GMT
Date: Sat, 18 Mar 2023 14:28:08 GMT
Location: https://www.students-help.ga/
Server: ESF
Content-Length: 0
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
X-Content-Type-Options: nosniff

ocsp.pki.goog/s/gts1d4/Zlk5ibrKUiI

142.250.74.131

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/s/gts1d4/Zlk5ibrKUiI
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
fe2d4f52c16385577ced2bec5e670623
8b0ab73b117741bab9f4c7a4b4905342b3d44742
214807ff9961ffc4fcb576a9799dcc2f5e5491fe24f96ed5eabc979cbc08ac32

HTTP Headers

POST /s/gts1d4/Zlk5ibrKUiI HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 18 Mar 2023 14:28:09 GMT
Cache-Control: public, max-age=14400
Server: scaffolding on HTTPServer2
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US

35.241.9.150

200 OK

329 B

URL HTTP/2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP
35.241.9.150:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Size
329 B (329 bytes)
Hash
0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300

HTTP Headers

GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Retry-After, ETag, Pragma, Content-Type, Content-Length, Cache-Control, Expires, Backoff, Alert, Last-Modified
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Sat, 18 Mar 2023 14:17:21 GMT
age: 648
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
70f795f7a73fb087a4b08eebe6e2a970
faaa9283e766256900f3c3e00dee00973e7da2a6
4f7e4813f82f60ebf9c536d9342726307686931df7309a4c367f3b658602efde

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "4F7E4813F82F60EBF9C536D9342726307686931DF7309A4C367F3B658602EFDE"
Last-Modified: Fri, 17 Mar 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=15936
Expires: Sat, 18 Mar 2023 18:53:45 GMT
Date: Sat, 18 Mar 2023 14:28:09 GMT
Connection: keep-alive

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
886a55065537b0624371a82292fe26c2
5ff87d6a26d94e0ed10f0cb55d0ac0237efb135a
a0811f584403bcdb37925007e7d9df722591566885dcedf330fb13fed891905f

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 18 Mar 2023 14:28:09 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
886a55065537b0624371a82292fe26c2
5ff87d6a26d94e0ed10f0cb55d0ac0237efb135a
a0811f584403bcdb37925007e7d9df722591566885dcedf330fb13fed891905f

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 18 Mar 2023 14:28:09 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
a4fe1012a4d75c602aab58bcff2d9c28
b079e7b9e4da4d67ecdc3e11bff33462bd026899
f7e4c8251356329744c989f9194354f78b9d142a69db8cc5d92ade3d70efcc01

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 18 Mar 2023 14:28:09 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
886a55065537b0624371a82292fe26c2
5ff87d6a26d94e0ed10f0cb55d0ac0237efb135a
a0811f584403bcdb37925007e7d9df722591566885dcedf330fb13fed891905f

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 18 Mar 2023 14:28:09 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

www.gstatic.com/_/atari/_/ss/k=atari.vw.FSWui5jqiNM.L.F4.O/d=1/rs=AGEqA5kyijUe-3aB1IGc2sx7WerqTj6I2w

216.58.211.3

200 OK

139 kB

URL HTTP/2
www.gstatic.com/_/atari/_/ss/k=atari.vw.FSWui5jqiNM.L.F4.O/d=1/rs=AGEqA5kyijUe-3aB1IGc2sx7WerqTj6I2w
IP
216.58.211.3:0
ASN
#15169 GOOGLE

File type
ASCII text, with very long lines (65536), with no line terminators
Size
139 kB (138999 bytes)
Hash
73c3a6c314f1235870e51fa83b995c14
d30dc1058400b680f0b931091f93234609e0481d
506bfc3c18294a782118d5001dda8d587ffb020b3bd916b9243f5d2a3e156ca5

HTTP Headers

GET /_/atari/_/ss/k=atari.vw.FSWui5jqiNM.L.F4.O/d=1/rs=AGEqA5kyijUe-3aB1IGc2sx7WerqTj6I2w HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.students-help.ga/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
accept-ranges: bytes
content-encoding: gzip
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="apps-sites"
report-to: {"group":"apps-sites","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-sites"}]}
content-length: 138999
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 15 Mar 2023 23:37:22 GMT
expires: Thu, 14 Mar 2024 23:37:22 GMT
cache-control: public, max-age=31536000
last-modified: Tue, 07 Mar 2023 13:24:31 GMT
content-type: text/css; charset=UTF-8
vary: Accept-Encoding
age: 226247
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
a4fe1012a4d75c602aab58bcff2d9c28
b079e7b9e4da4d67ecdc3e11bff33462bd026899
f7e4c8251356329744c989f9194354f78b9d142a69db8cc5d92ade3d70efcc01

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 18 Mar 2023 14:28:09 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
886a55065537b0624371a82292fe26c2
5ff87d6a26d94e0ed10f0cb55d0ac0237efb135a
a0811f584403bcdb37925007e7d9df722591566885dcedf330fb13fed891905f

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 18 Mar 2023 14:28:09 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
84218ca0c6d2080f6c56f779ce2c10b5
4eb6e50352f2d63ccdf546ba1f3395f5128dda5e
d6effba6bc376c5e8cdedf0042cb30df6d1b8304346cc1d3bb58aec9ca8e3676

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 18 Mar 2023 14:28:09 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

apis.google.com/js/client.js?onload=gapiLoaded

142.250.74.46

200 OK

6.9 kB

URL HTTP/2
apis.google.com/js/client.js?onload=gapiLoaded
IP
142.250.74.46:0
ASN
#15169 GOOGLE

File type
ASCII text, with very long lines (2054)
Size
6.9 kB (6894 bytes)
Hash
f46619e06f439ccc33690c54d740390f
8f52d887200719be7140675b66d6982a065d317e
52f0209782f29b3defea5bee0ea42015147cde2ff986073168187d5219f73c0d

HTTP Headers

GET /js/client.js?onload=gapiLoaded HTTP/1.1
Host: apis.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.students-help.ga/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-type: text/javascript
access-control-allow-origin: *
content-security-policy: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/gapi-team
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="gapi-team"
report-to: {"group":"gapi-team","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/gapi-team"}]}
timing-allow-origin: *
content-length: 6894
date: Sat, 18 Mar 2023 14:28:09 GMT
expires: Sat, 18 Mar 2023 14:28:09 GMT
cache-control: private, max-age=1800, stale-while-revalidate=1800
etag: "e146e87ebc9f2947"
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

push.services.mozilla.com/

44.226.72.95

101 Switching Protocols

0 B

URL HTTP/1.1
push.services.mozilla.com/
IP
44.226.72.95:0
ASN
#16509 AMAZON-02

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: p2iokzB8/ghmzgTfy51OQQ==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket

HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: xfEqKd9J9gHHXt+m+kXIM5vrMHI=

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
10bb1da74cabb050bb1f1af5989d201a
a28a2ce1097c2bbbbd42869df64551a01d2c7de4
180b15454b4cd4d39194bee9ce00122c7cffb85decddb8083d3f1361ea01eb13

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 18 Mar 2023 14:28:09 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
5a2f6d953f946b542f1145cdcae9946e
00184b28856db5a12858eab98f97dc01c1471449
7f32b4afd160b8ecff360fc0e83e582cf49918a379c6c73f2a837c48439aab00

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 18 Mar 2023 14:28:09 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

www.googletagmanager.com/gtag/js?id=G-PRVQHGHZFQ

142.250.74.40

200 OK

78 kB

URL HTTP/2
www.googletagmanager.com/gtag/js?id=G-PRVQHGHZFQ
IP
142.250.74.40:0
ASN
#15169 GOOGLE

File type
ASCII text, with very long lines (19390)
Size
78 kB (78025 bytes)
Hash
e9d8d1b218e5a43cd467b04009ef883e
db1d77d3db0220169794998a126e4912462526c7
deb0b2c055f7dd998e5119f5b9777a6f2b4878305c8c767b7cb1c70ece53f222

HTTP Headers

GET /gtag/js?id=G-PRVQHGHZFQ HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.students-help.ga/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Sat, 18 Mar 2023 14:28:09 GMT
expires: Sat, 18 Mar 2023 14:28:09 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 78025
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

fonts.gstatic.com/s/googlesans/v45/4UasrENHsxJlGDuGo1OIlJfC6l_24rlCK1Yo_Iqcsih3SAyH6cAwhX9RPjIUvQ.woff2

142.250.74.35

200 OK

28 kB

URL HTTP/2
fonts.gstatic.com/s/googlesans/v45/4UasrENHsxJlGDuGo1OIlJfC6l_24rlCK1Yo_Iqcsih3SAyH6cAwhX9RPjIUvQ.woff2
IP
142.250.74.35:0
ASN
#15169 GOOGLE

File type
Web Open Font Format (Version 2), TrueType, length 28288, version 1.0\012- data
Size
28 kB (28288 bytes)
Hash
53b5e785dfdca21fa7adf7119fa1f8cc
a3a86dfd216ad29183ba5493ae39d45b62f9d8b8
4a6fab14bfe7b33fe5dc5349a2bb3720037e0ed7ebe621b352340f9514d83c08

HTTP Headers

GET /s/googlesans/v45/4UasrENHsxJlGDuGo1OIlJfC6l_24rlCK1Yo_Iqcsih3SAyH6cAwhX9RPjIUvQ.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.students-help.ga
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 28288
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 16 Mar 2023 14:34:21 GMT
expires: Fri, 15 Mar 2024 14:34:21 GMT
cache-control: public, max-age=31536000
age: 172429
last-modified: Wed, 01 Jun 2022 19:05:56 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

fonts.gstatic.com/s/ptsans/v17/jizaRExUiTo99u79D0KExQ.woff2

142.250.74.35

200 OK

45 kB

URL HTTP/2
fonts.gstatic.com/s/ptsans/v17/jizaRExUiTo99u79D0KExQ.woff2
IP
142.250.74.35:0
ASN
#15169 GOOGLE

File type
Web Open Font Format (Version 2), TrueType, length 45300, version 1.0\012- data
Size
45 kB (45300 bytes)
Hash
5fe660c3a23b871807b0e1d3ee973d23
62a9dd423b30b6ee3ab3dd40d573545d579af10a
e13ffa988be59cbf299d7ff68f019f902b60848203ac4990819eb7e4624ee52d

HTTP Headers

GET /s/ptsans/v17/jizaRExUiTo99u79D0KExQ.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.students-help.ga
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 45300
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 16 Mar 2023 17:39:58 GMT
expires: Fri, 15 Mar 2024 17:39:58 GMT
cache-control: public, max-age=31536000
age: 161292
last-modified: Wed, 27 Apr 2022 16:11:08 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

fonts.gstatic.com/s/robotoslab/v24/BngMUXZYTXPIvIBgJJSb6ufJ5qW54A.woff2

142.250.74.35

200 OK

22 kB

URL HTTP/2
fonts.gstatic.com/s/robotoslab/v24/BngMUXZYTXPIvIBgJJSb6ufJ5qW54A.woff2
IP
142.250.74.35:0
ASN
#15169 GOOGLE

File type
Web Open Font Format (Version 2), TrueType, length 21544, version 1.0\012- data
Size
22 kB (21544 bytes)
Hash
d89cae5474ac4464b71bd3c51794cee6
ba9e55412727b5050e61bca6b288ff1b27ba548d
b6872478482ee5d74077229ed5a9dad8d6f15e3d34e8ad7ef2192dbc837e6693

HTTP Headers

GET /s/robotoslab/v24/BngMUXZYTXPIvIBgJJSb6ufJ5qW54A.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.students-help.ga
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 21544
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 16 Mar 2023 14:24:43 GMT
expires: Fri, 15 Mar 2024 14:24:43 GMT
cache-control: public, max-age=31536000
age: 173007
last-modified: Mon, 11 Jul 2022 19:15:52 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

fonts.gstatic.com/s/droidsans/v18/SlGWmQWMvZQIdix7AFxXmMh3eDs1Zw.woff2

142.250.74.35

200 OK

22 kB

URL HTTP/2
fonts.gstatic.com/s/droidsans/v18/SlGWmQWMvZQIdix7AFxXmMh3eDs1Zw.woff2
IP
142.250.74.35:0
ASN
#15169 GOOGLE

File type
Web Open Font Format (Version 2), TrueType, length 22376, version 1.0\012- data
Size
22 kB (22376 bytes)
Hash
e6af16165f9bfda6aafd0088b8c01daa
c9c0ee8309619643e65ba1b22bfffcd1a7ca1e51
e803cd8c5031ac6b0d099a2d96ba1c3ee44782649a7f7c6f0d09b6410d93e216

HTTP Headers

GET /s/droidsans/v18/SlGWmQWMvZQIdix7AFxXmMh3eDs1Zw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.students-help.ga
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 22376
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 16 Mar 2023 17:45:39 GMT
expires: Fri, 15 Mar 2024 17:45:39 GMT
cache-control: public, max-age=31536000
age: 160951
last-modified: Tue, 19 Apr 2022 18:25:01 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmEU9fBBc4.woff2

142.250.74.35

200 OK

16 kB

URL HTTP/2
fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmEU9fBBc4.woff2
IP
142.250.74.35:0
ASN
#15169 GOOGLE

File type
Web Open Font Format (Version 2), TrueType, length 15920, version 1.0\012- data
Size
16 kB (15920 bytes)
Hash
3a44e06eb954b96aa043227f3534189d
23cef6993ddb2b2979e8e7647fc3763694e2ba7d
b019538234514166ec7665359d097403358f8a4c991901983922fb4d56989f1e

HTTP Headers

GET /s/roboto/v30/KFOlCnqEu92Fr1MmEU9fBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.students-help.ga
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15920
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 15 Mar 2023 07:51:59 GMT
expires: Thu, 14 Mar 2024 07:51:59 GMT
cache-control: public, max-age=31536000
age: 282971
last-modified: Wed, 11 May 2022 19:24:45 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

fonts.gstatic.com/s/ptsans/v17/jizYRExUiTo99u79D0e0x8mI.woff2

142.250.74.35

200 OK

42 kB

URL HTTP/2
fonts.gstatic.com/s/ptsans/v17/jizYRExUiTo99u79D0e0x8mI.woff2
IP
142.250.74.35:0
ASN
#15169 GOOGLE

File type
Web Open Font Format (Version 2), TrueType, length 42500, version 1.0\012- data
Size
42 kB (42500 bytes)
Hash
8c5246074400a5141ea18bf48dff17ee
b0650d9d042dfdc6e5fbc3b9f79f87822f9ee689
595c14bd7589b069e4570ba658cfab8850611639e8a077ca84ef263bfa4671f9

HTTP Headers

GET /s/ptsans/v17/jizYRExUiTo99u79D0e0x8mI.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.students-help.ga
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 42500
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sat, 18 Mar 2023 10:20:35 GMT
expires: Sun, 17 Mar 2024 10:20:35 GMT
cache-control: public, max-age=31536000
age: 14855
last-modified: Wed, 27 Apr 2022 16:01:40 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

fonts.gstatic.com/s/robotoslab/v24/BngMUXZYTXPIvIBgJJSb6ufN5qU.woff2

142.250.74.35

200 OK

33 kB

URL HTTP/2
fonts.gstatic.com/s/robotoslab/v24/BngMUXZYTXPIvIBgJJSb6ufN5qU.woff2
IP
142.250.74.35:0
ASN
#15169 GOOGLE

File type
Web Open Font Format (Version 2), TrueType, length 32860, version 1.0\012- data
Size
33 kB (32860 bytes)
Hash
d010a9f2d5c7a0374b3b84706a43d2ec
c1fe465db08785c3f115555d39db23838960cb66
9a3993918629dfd6a59c4563e9b4d464152b51d4113957ab8ebfbdcbcdc7f536

HTTP Headers

GET /s/robotoslab/v24/BngMUXZYTXPIvIBgJJSb6ufN5qU.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.students-help.ga
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 32860
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 15 Mar 2023 15:13:53 GMT
expires: Thu, 14 Mar 2024 15:13:53 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 11 Jul 2022 19:12:50 GMT
content-type: font/woff2
age: 256457
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

fonts.gstatic.com/s/ptsans/v17/jizYRExUiTo99u79D0e0w8mIEDQ.woff2

142.250.74.35

200 OK

29 kB

URL HTTP/2
fonts.gstatic.com/s/ptsans/v17/jizYRExUiTo99u79D0e0w8mIEDQ.woff2
IP
142.250.74.35:0
ASN
#15169 GOOGLE

File type
Web Open Font Format (Version 2), TrueType, length 29304, version 1.0\012- data
Size
29 kB (29304 bytes)
Hash
98e03106504cc3727fb4ee43e6a1f74a
f392f04165fd73fd730b89a9183936351517c4bf
3d039543ba70226b3a26ff11c2c004e322c5a6b68ba9e22699ded771267333b3

HTTP Headers

GET /s/ptsans/v17/jizYRExUiTo99u79D0e0w8mIEDQ.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.students-help.ga
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 29304
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 17 Mar 2023 02:09:55 GMT
expires: Sat, 16 Mar 2024 02:09:55 GMT
cache-control: public, max-age=31536000
age: 130695
last-modified: Wed, 27 Apr 2022 16:01:39 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

fonts.gstatic.com/s/ptsans/v17/jizaRExUiTo99u79D0aExdGM.woff2

142.250.74.35

200 OK

28 kB

URL HTTP/2
fonts.gstatic.com/s/ptsans/v17/jizaRExUiTo99u79D0aExdGM.woff2
IP
142.250.74.35:0
ASN
#15169 GOOGLE

File type
Web Open Font Format (Version 2), TrueType, length 28444, version 1.0\012- data
Size
28 kB (28444 bytes)
Hash
e996a4db02cc36705ce700e4b5d06b3a
c5fa1dff68d7d83689f58bc498caea9041cf7b75
7e9c22d02fc319b701844b334477a05fd32acee9668feb98672f6c27887f79cf

HTTP Headers

GET /s/ptsans/v17/jizaRExUiTo99u79D0aExdGM.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.students-help.ga
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 28444
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 16 Mar 2023 00:32:07 GMT
expires: Fri, 15 Mar 2024 00:32:07 GMT
cache-control: public, max-age=31536000
age: 222963
last-modified: Wed, 27 Apr 2022 16:45:23 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
5a2f6d953f946b542f1145cdcae9946e
00184b28856db5a12858eab98f97dc01c1471449
7f32b4afd160b8ecff360fc0e83e582cf49918a379c6c73f2a837c48439aab00

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 18 Mar 2023 14:28:10 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
89d57527c89c079687a9c8d685a47aaf
20170b647d294dd023bd1d0c2a554afc77d4caff
442332478ef19f8bb4814a12730e0066804f4709bbc282676d101e9c40c8ea45

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 18 Mar 2023 14:28:10 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
89d57527c89c079687a9c8d685a47aaf
20170b647d294dd023bd1d0c2a554afc77d4caff
442332478ef19f8bb4814a12730e0066804f4709bbc282676d101e9c40c8ea45

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 18 Mar 2023 14:28:10 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
89d57527c89c079687a9c8d685a47aaf
20170b647d294dd023bd1d0c2a554afc77d4caff
442332478ef19f8bb4814a12730e0066804f4709bbc282676d101e9c40c8ea45

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 18 Mar 2023 14:28:10 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
89d57527c89c079687a9c8d685a47aaf
20170b647d294dd023bd1d0c2a554afc77d4caff
442332478ef19f8bb4814a12730e0066804f4709bbc282676d101e9c40c8ea45

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 18 Mar 2023 14:28:10 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
89d57527c89c079687a9c8d685a47aaf
20170b647d294dd023bd1d0c2a554afc77d4caff
442332478ef19f8bb4814a12730e0066804f4709bbc282676d101e9c40c8ea45

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 18 Mar 2023 14:28:10 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

www.students-help.ga/_/view/logImpressions?authuser=0

142.250.74.147

200 OK

221 B

URL HTTP/2
www.students-help.ga/_/view/logImpressions?authuser=0
IP
142.250.74.147:0
ASN
#15169 GOOGLE

File type
ASCII text
Size
221 B (221 bytes)
Hash
875432b6931c34b9a0b6e3ca8acdb490
44775cb2186e3e24a66043bae0fb05adf72ee2b0
4d563a7a20caa3df201fe417c6783221c374441f5892130eedb870215d4a91ea

HTTP Headers

POST /_/view/logImpressions?authuser=0 HTTP/1.1
Host: www.students-help.ga
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.students-help.ga/
Content-Type: application/x-www-form-urlencoded;charset=utf-8
Content-Length: 3257
Origin: https://www.students-help.ga
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
content-type: application/json; charset=utf-8
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Sat, 18 Mar 2023 14:28:10 GMT
content-disposition: attachment; filename="response.bin"; filename*=UTF-8''response.bin
x-content-type-options: nosniff
cross-origin-opener-policy: same-origin-allow-popups
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
content-encoding: gzip
X-Firefox-Spdy: h2

lh3.googleusercontent.com/X5afp-Enju8QD1rZL24Wn8MefE2ilEldnk28fKkSbr1wVAWQs0UeobIbI8IDDnX12Ep_XfNs8CH5AQ6ZmQ28vd6Co-BPJcDIWa3YPYk_MxvRcTr3

216.58.211.1

200 OK

6.5 kB

URL HTTP/2
lh3.googleusercontent.com/X5afp-Enju8QD1rZL24Wn8MefE2ilEldnk28fKkSbr1wVAWQs0UeobIbI8IDDnX12Ep_XfNs8CH5AQ6ZmQ28vd6Co-BPJcDIWa3YPYk_MxvRcTr3
IP
216.58.211.1:0
ASN
#15169 GOOGLE

File type
PNG image data, 240 x 240, 8-bit/color RGBA, non-interlaced\012- data
Size
6.5 kB (6514 bytes)
Hash
0f44976345a3cd22a718542e6d6639c9
d54c0b5423dba9c0dd6a566117a3cd5a169b7c5d
de84ce67c2ac9a6cb573ef0b4603ec6a0e7bfe20c4188c47f9792f233b1c989e

HTTP Headers

GET /X5afp-Enju8QD1rZL24Wn8MefE2ilEldnk28fKkSbr1wVAWQs0UeobIbI8IDDnX12Ep_XfNs8CH5AQ6ZmQ28vd6Co-BPJcDIWa3YPYk_MxvRcTr3 HTTP/1.1
Host: lh3.googleusercontent.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.students-help.ga/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
access-control-expose-headers: Content-Length
etag: "v1"
expires: Sun, 19 Mar 2023 14:28:10 GMT
cache-control: public, max-age=86400, no-transform
content-disposition: inline;filename="favicon 120.png"
content-type: image/png
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
x-content-type-options: nosniff
date: Sat, 18 Mar 2023 14:28:10 GMT
server: fife
content-length: 6514
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

lh3.googleusercontent.com/TgiVOmA5fwa1vIjI3IJmGo2FrbOmqZuoL-7H-Vdh480C4CaZxNsTmgYfxB859HM_BXH0xc07-f9uoNtJoZK_xWQ=w16383

216.58.211.1

200 OK

212 kB

URL HTTP/2
lh3.googleusercontent.com/TgiVOmA5fwa1vIjI3IJmGo2FrbOmqZuoL-7H-Vdh480C4CaZxNsTmgYfxB859HM_BXH0xc07-f9uoNtJoZK_xWQ=w16383
IP
216.58.211.1:0
ASN
#15169 GOOGLE

File type
PNG image data, 2160 x 2160, 8-bit/color RGBA, non-interlaced\012- data
Size
212 kB (211966 bytes)
Hash
8dce8cc160584b831bdb1805e3b3bd96
058d29dd1bcf278183153e570da29983a78c6ea5
c69f368afae12ff5f486c8df4c0230c914364b9ee1991607197cd92d61417219

HTTP Headers

GET /TgiVOmA5fwa1vIjI3IJmGo2FrbOmqZuoL-7H-Vdh480C4CaZxNsTmgYfxB859HM_BXH0xc07-f9uoNtJoZK_xWQ=w16383 HTTP/1.1
Host: lh3.googleusercontent.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.students-help.ga/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
access-control-expose-headers: Content-Length
etag: "v1"
expires: Sun, 19 Mar 2023 14:28:10 GMT
cache-control: public, max-age=86400, no-transform
content-disposition: inline;filename="____ 2.png";filename*=UTF-8''%D0%BB%D0%BE%D0%B3%D0%BE%202.png
content-type: image/png
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
x-content-type-options: nosniff
date: Sat, 18 Mar 2023 14:28:10 GMT
server: fife
content-length: 211966
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

lh4.googleusercontent.com/Yj6aTsM77L4nyEk8-BUwUDg0hQn1qkUGjIIGQATzku5_iIpBJoXYeCvMG93l2L_U2zAJUb8vuwVO2772Dy0MAhk=w1280

216.58.211.1

200 OK

12 kB

URL HTTP/2
lh4.googleusercontent.com/Yj6aTsM77L4nyEk8-BUwUDg0hQn1qkUGjIIGQATzku5_iIpBJoXYeCvMG93l2L_U2zAJUb8vuwVO2772Dy0MAhk=w1280
IP
216.58.211.1:0
ASN
#15169 GOOGLE

File type
PNG image data, 512 x 512, 8-bit/color RGBA, non-interlaced\012- data
Size
12 kB (11793 bytes)
Hash
64cfb2d9b6e93684485a5c21f451ebf8
2660b963b111edebc021915ea8f4f8db842680a5
11e846a39fb361457d01dd8ed3d747e6301145bfc5d70c26b1589accda24a305

HTTP Headers

GET /Yj6aTsM77L4nyEk8-BUwUDg0hQn1qkUGjIIGQATzku5_iIpBJoXYeCvMG93l2L_U2zAJUb8vuwVO2772Dy0MAhk=w1280 HTTP/1.1
Host: lh4.googleusercontent.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.students-help.ga/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
access-control-expose-headers: Content-Length
etag: "v1"
expires: Sun, 19 Mar 2023 14:28:10 GMT
cache-control: public, max-age=86400, no-transform
content-disposition: inline;filename="050-video.png"
content-type: image/png
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
x-content-type-options: nosniff
date: Sat, 18 Mar 2023 14:28:10 GMT
server: fife
content-length: 11793
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

lh3.googleusercontent.com/FXSxQwO5pTg819W8o_gO2HJGDrmzdNSKpwV1n9x8LGglnDl9fopQ4ISCSP7F9-KfkfI9qPnxLS5mLN30fiVZX0w=w1280

216.58.211.1

200 OK

7.6 kB

URL HTTP/2
lh3.googleusercontent.com/FXSxQwO5pTg819W8o_gO2HJGDrmzdNSKpwV1n9x8LGglnDl9fopQ4ISCSP7F9-KfkfI9qPnxLS5mLN30fiVZX0w=w1280
IP
216.58.211.1:0
ASN
#15169 GOOGLE

File type
PNG image data, 512 x 512, 8-bit/color RGBA, non-interlaced\012- data
Size
7.6 kB (7550 bytes)
Hash
881ebd21c6eaca560f202a2094ab5817
e662e69235277c1c4ceedad650ff2431ea33be92
349b154fd4af14fc08708e5ea5dd7143dd8a8be4dabd2b51c25cc2af5d7a5056

HTTP Headers

GET /FXSxQwO5pTg819W8o_gO2HJGDrmzdNSKpwV1n9x8LGglnDl9fopQ4ISCSP7F9-KfkfI9qPnxLS5mLN30fiVZX0w=w1280 HTTP/1.1
Host: lh3.googleusercontent.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.students-help.ga/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
access-control-expose-headers: Content-Length
etag: "v1"
expires: Sun, 19 Mar 2023 14:28:10 GMT
cache-control: public, max-age=86400, no-transform
content-disposition: inline;filename="022-file folder.png"
content-type: image/png
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
x-content-type-options: nosniff
date: Sat, 18 Mar 2023 14:28:10 GMT
server: fife
content-length: 7550
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
89d57527c89c079687a9c8d685a47aaf
20170b647d294dd023bd1d0c2a554afc77d4caff
442332478ef19f8bb4814a12730e0066804f4709bbc282676d101e9c40c8ea45

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 18 Mar 2023 14:28:10 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

lh6.googleusercontent.com/zRZRhrRTdAOHrpKNq08WUPD_o5Kf9qjqdRt5GnvUaOZ3RE_RPsC9vURyUdUgLD_Y07xVGhHWG3y1UMe7hpbkiOE=w1280

216.58.211.1

200 OK

7.1 kB

URL HTTP/2
lh6.googleusercontent.com/zRZRhrRTdAOHrpKNq08WUPD_o5Kf9qjqdRt5GnvUaOZ3RE_RPsC9vURyUdUgLD_Y07xVGhHWG3y1UMe7hpbkiOE=w1280
IP
216.58.211.1:0
ASN
#15169 GOOGLE

File type
PNG image data, 512 x 512, 8-bit/color RGBA, non-interlaced\012- data
Size
7.1 kB (7131 bytes)
Hash
0beaca9a78f8f6eee50e7b3af3d3d540
acc1e9bd1daacf2ffb40fe57c6f3f439b54ff1cc
8d7624abd8ff98b8b8280d5fdaf4ae52ad51afb6eed2d5c65ce5678863e386a1

HTTP Headers

GET /zRZRhrRTdAOHrpKNq08WUPD_o5Kf9qjqdRt5GnvUaOZ3RE_RPsC9vURyUdUgLD_Y07xVGhHWG3y1UMe7hpbkiOE=w1280 HTTP/1.1
Host: lh6.googleusercontent.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.students-help.ga/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
access-control-expose-headers: Content-Length
etag: "v1"
expires: Sun, 19 Mar 2023 14:28:10 GMT
cache-control: public, max-age=86400, no-transform
content-disposition: inline;filename="045-scroll.png"
content-type: image/png
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
x-content-type-options: nosniff
date: Sat, 18 Mar 2023 14:28:10 GMT
server: fife
content-length: 7131
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

lh5.googleusercontent.com/FizkKzrc9fLB27UFHo8L1TQFoQLx_MoPWnpQ52i1bQ89MrFEKdgljflQJT7ZwlHasEwT7h7XBWrxPGxDIBU9dL4=w1280

216.58.211.1

200 OK

15 kB

URL HTTP/2
lh5.googleusercontent.com/FizkKzrc9fLB27UFHo8L1TQFoQLx_MoPWnpQ52i1bQ89MrFEKdgljflQJT7ZwlHasEwT7h7XBWrxPGxDIBU9dL4=w1280
IP
216.58.211.1:0
ASN
#15169 GOOGLE

File type
PNG image data, 512 x 512, 8-bit/color RGBA, non-interlaced\012- data
Size
15 kB (14951 bytes)
Hash
f1ab27f3dbd7390874883f7fb7803377
4141fea54a4a66e47eaac292eb1dc19950687b8a
aa3f4de2477bfb8f3340af5deec26775b29ae7b791bb1b27537a1d02bf3419ea

HTTP Headers

GET /FizkKzrc9fLB27UFHo8L1TQFoQLx_MoPWnpQ52i1bQ89MrFEKdgljflQJT7ZwlHasEwT7h7XBWrxPGxDIBU9dL4=w1280 HTTP/1.1
Host: lh5.googleusercontent.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.students-help.ga/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
access-control-expose-headers: Content-Length
etag: "v1"
expires: Sun, 19 Mar 2023 14:28:10 GMT
cache-control: public, max-age=86400, no-transform
content-disposition: inline;filename="025-global.png"
content-type: image/png
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
x-content-type-options: nosniff
date: Sat, 18 Mar 2023 14:28:10 GMT
server: fife
content-length: 14951
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

lh5.googleusercontent.com/d3aF4wion8gcywDzAMDhebUpT4T9YZilLfQCKF_VyBL5p1pl27bZs91ElISH5EsSabEK8pR-7Weo8Kn5jb2yeQ=w1280

216.58.211.1

200 OK

9.7 kB

URL HTTP/2
lh5.googleusercontent.com/d3aF4wion8gcywDzAMDhebUpT4T9YZilLfQCKF_VyBL5p1pl27bZs91ElISH5EsSabEK8pR-7Weo8Kn5jb2yeQ=w1280
IP
216.58.211.1:0
ASN
#15169 GOOGLE

File type
PNG image data, 512 x 512, 8-bit/color RGBA, non-interlaced\012- data
Size
9.7 kB (9663 bytes)
Hash
21cb0774d10c1497131a55c208a9c0a1
94566a69153afd0eefceebb9711c0fa73e8d12a7
fe12fae4b8b080fc733f2199a97ce81df9cfb6dd85597401030d64e2526705dd

HTTP Headers

GET /d3aF4wion8gcywDzAMDhebUpT4T9YZilLfQCKF_VyBL5p1pl27bZs91ElISH5EsSabEK8pR-7Weo8Kn5jb2yeQ=w1280 HTTP/1.1
Host: lh5.googleusercontent.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.students-help.ga/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
access-control-expose-headers: Content-Length
etag: "v1"
expires: Sun, 19 Mar 2023 14:28:10 GMT
cache-control: public, max-age=86400, no-transform
content-disposition: inline;filename="024-book.png"
content-type: image/png
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
x-content-type-options: nosniff
date: Sat, 18 Mar 2023 14:28:10 GMT
server: fife
content-length: 9663
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

lh5.googleusercontent.com/sbGqCROXXI5oAQBndXNQEcGXBQhiBJ3aeqi2lxcQe1s_0A0_DjfLLwKNxRy__snb0s3FOMBOOmJC7Cj-jcypGgM=w1280

216.58.211.1

200 OK

8.0 kB

URL HTTP/2
lh5.googleusercontent.com/sbGqCROXXI5oAQBndXNQEcGXBQhiBJ3aeqi2lxcQe1s_0A0_DjfLLwKNxRy__snb0s3FOMBOOmJC7Cj-jcypGgM=w1280
IP
216.58.211.1:0
ASN
#15169 GOOGLE

File type
PNG image data, 512 x 512, 8-bit/color RGBA, non-interlaced\012- data
Size
8.0 kB (8007 bytes)
Hash
c51472c69ce15b8d6c5bdc540390d618
f5020f477daab7183c6e4d6992953417dd6ee07d
06fa30435f34a2e46b77f32a960c8610b85a04d2f485e4deeb32c41b4ac2684c

HTTP Headers

GET /sbGqCROXXI5oAQBndXNQEcGXBQhiBJ3aeqi2lxcQe1s_0A0_DjfLLwKNxRy__snb0s3FOMBOOmJC7Cj-jcypGgM=w1280 HTTP/1.1
Host: lh5.googleusercontent.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.students-help.ga/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
access-control-expose-headers: Content-Length
etag: "v1"
expires: Sun, 19 Mar 2023 14:28:10 GMT
cache-control: public, max-age=86400, no-transform
content-disposition: inline;filename="020-exam.png"
content-type: image/png
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
x-content-type-options: nosniff
date: Sat, 18 Mar 2023 14:28:10 GMT
server: fife
content-length: 8007
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

lh5.googleusercontent.com/jfzrUCh1WWk3CzS24CAVW_RejwyUPwvuZ916ZGAeHFPYpWAi4hFJfVWfuASwVMmXIsHf5tPCUARxo9TAX09UWA=w1280

216.58.211.1

200 OK

21 kB

URL HTTP/2
lh5.googleusercontent.com/jfzrUCh1WWk3CzS24CAVW_RejwyUPwvuZ916ZGAeHFPYpWAi4hFJfVWfuASwVMmXIsHf5tPCUARxo9TAX09UWA=w1280
IP
216.58.211.1:0
ASN
#15169 GOOGLE

File type
PNG image data, 512 x 512, 8-bit/color RGBA, non-interlaced\012- data
Size
21 kB (21342 bytes)
Hash
2e0b319e78c67aca76c5485a2ea84f25
17fa257d6bcd341f321044c6d2bcee03a4d7abc1
481679e617bada75fc2cd962010425e5044e1d43e55497b52d3bcf0f6d9dd575

HTTP Headers

GET /jfzrUCh1WWk3CzS24CAVW_RejwyUPwvuZ916ZGAeHFPYpWAi4hFJfVWfuASwVMmXIsHf5tPCUARxo9TAX09UWA=w1280 HTTP/1.1
Host: lh5.googleusercontent.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.students-help.ga/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
access-control-expose-headers: Content-Length
etag: "v1"
expires: Sun, 19 Mar 2023 14:28:10 GMT
cache-control: public, max-age=86400, no-transform
content-disposition: inline;filename="listening.png"
content-type: image/png
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
x-content-type-options: nosniff
date: Sat, 18 Mar 2023 14:28:10 GMT
server: fife
content-length: 21342
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

lh4.googleusercontent.com/H0QmQf5xYMQPB8LDCNw2fEokqp21eOs5VC7fGddkB8zpv5bEr2oX7Qpw3UjctzmGasjsBRcyMkyQQ92DXHuunOU=w1280

216.58.211.1

200 OK

7.9 kB

URL HTTP/2
lh4.googleusercontent.com/H0QmQf5xYMQPB8LDCNw2fEokqp21eOs5VC7fGddkB8zpv5bEr2oX7Qpw3UjctzmGasjsBRcyMkyQQ92DXHuunOU=w1280
IP
216.58.211.1:0
ASN
#15169 GOOGLE

File type
PNG image data, 512 x 512, 8-bit/color RGBA, non-interlaced\012- data
Size
7.9 kB (7902 bytes)
Hash
2c6e93076681f7ff6a91ae62e8e6eefe
1d1abe0153dd182f5bd9e06dc126542e26d33b1c
951e8b1e9219d39af2179ec8e4080b9ccaf9c17cf0a61d073f3bb37f46cb6333

HTTP Headers

GET /H0QmQf5xYMQPB8LDCNw2fEokqp21eOs5VC7fGddkB8zpv5bEr2oX7Qpw3UjctzmGasjsBRcyMkyQQ92DXHuunOU=w1280 HTTP/1.1
Host: lh4.googleusercontent.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.students-help.ga/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
access-control-expose-headers: Content-Length
etag: "v1"
expires: Sun, 19 Mar 2023 14:28:10 GMT
cache-control: public, max-age=86400, no-transform
content-disposition: inline;filename="034-online learning.png"
content-type: image/png
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
x-content-type-options: nosniff
date: Sat, 18 Mar 2023 14:28:10 GMT
server: fife
content-length: 7902
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
84762efcb2e1535ae49fca6c1523df33
93e7f138a491d4276a793c2e5b947195ae69a88c
920778735cfb5f0395bbfa1391cb4e90c547d455cac77c8bb161a0c3b55a6a3f

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "920778735CFB5F0395BBFA1391CB4E90C547D455CAC77C8BB161A0C3B55A6A3F"
Last-Modified: Thu, 16 Mar 2023 15:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8659
Expires: Sat, 18 Mar 2023 16:52:29 GMT
Date: Sat, 18 Mar 2023 14:28:10 GMT
Connection: keep-alive

lh6.googleusercontent.com/gm8MH81jTAqeddQBfC140gYtvd_LSqaMXWxk2fQbfHq1oI6rEa9MD5rKrnFLLPoPHYMtglGjVI065CoTxTzlJv8Z7J3w9z6scfL5QGKH7-n3p1rVUVpFuDNshXjGYoN1Zg=w1280

216.58.211.1

200 OK

390 kB

URL HTTP/2
lh6.googleusercontent.com/gm8MH81jTAqeddQBfC140gYtvd_LSqaMXWxk2fQbfHq1oI6rEa9MD5rKrnFLLPoPHYMtglGjVI065CoTxTzlJv8Z7J3w9z6scfL5QGKH7-n3p1rVUVpFuDNshXjGYoN1Zg=w1280
IP
216.58.211.1:0
ASN
#15169 GOOGLE

File type
PNG image data, 503 x 596, 8-bit/color RGB, non-interlaced\012- data
Size
390 kB (389674 bytes)
Hash
1a4d6a37806e704a1023d1fb232e013b
9f8986f030f79f362aa14b87c293d7dee264e8e6
d3a44498238c207c04c60887fe7a4e634c796e127628249f6bab105ee5390239

HTTP Headers

GET /gm8MH81jTAqeddQBfC140gYtvd_LSqaMXWxk2fQbfHq1oI6rEa9MD5rKrnFLLPoPHYMtglGjVI065CoTxTzlJv8Z7J3w9z6scfL5QGKH7-n3p1rVUVpFuDNshXjGYoN1Zg=w1280 HTTP/1.1
Host: lh6.googleusercontent.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.students-help.ga/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
access-control-expose-headers: Content-Length
etag: "v1"
expires: Sun, 19 Mar 2023 14:28:10 GMT
cache-control: public, max-age=86400, no-transform
content-disposition: inline;filename="image.png"
content-type: image/png
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
x-content-type-options: nosniff
date: Sat, 18 Mar 2023 14:28:10 GMT
server: fife
content-length: 389674
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fdd477c41-ec4b-4410-9c2a-271787375125.webp

34.120.237.76

200 OK

3.4 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fdd477c41-ec4b-4410-9c2a-271787375125.webp
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
3.4 kB (3403 bytes)
Hash
43fc355515c5bd733af9a846700aa7d2
c923bcfca532c6addd909788f5f4ea111a9b0d76
4c31fc1068285b85cb2bf3d40f8626500e77dfef17e568fdd695624d36d39fc5

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fdd477c41-ec4b-4410-9c2a-271787375125.webp HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 3403
x-amzn-requestid: a6808ed6-c83c-456b-9e35-1660c603b358
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: B8eNfFWOoAMF4eg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6414dd89-2f9c25887c8338b25024bd01;Sampled=0
x-amzn-remapped-date: Fri, 17 Mar 2023 21:37:13 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C3
x-cache: Hit from cloudfront
x-amz-cf-id: CVW02FEm5UVWZnX1UtA1th2telwfvoT6SkjMmL7TKZA5txpNeX_ZRA==
via: 1.1 8f22423015641505b8c857a37450d6c0.cloudfront.net (CloudFront), 1.1 0906d4887f6625f4a4467d8d4fd268d2.cloudfront.net (CloudFront), 1.1 google
date: Fri, 17 Mar 2023 21:48:47 GMT
age: 59964
etag: "c923bcfca532c6addd909788f5f4ea111a9b0d76"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

12 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3a465734-2031-4538-bcbc-9d828ea81250.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
12 kB (11673 bytes)
Hash
7f53bb1fb90c97461035e7f9f7f7837e
961b5fcbca5b49ca9136e74931253bb300aa1985
dad960991444a4cbd8841e5c673b0e4337bdeb8c18672b5cfadb93d4ac70e8d2

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3a465734-2031-4538-bcbc-9d828ea81250.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
server: nginx
content-length: 11673
x-amzn-requestid: 3675d2d9-47ab-4712-9511-0ad7570dd3cd
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: B8eNfFXSIAMFbhQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6414dd89-53c9817044fda17b212f0237;Sampled=0
x-amzn-remapped-date: Fri, 17 Mar 2023 21:37:13 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C3
x-cache: Hit from cloudfront
x-amz-cf-id: RYqMTTPdmeDjKu7jhuuUFEn4Y420mbCQcZ8LN-vI9oBJ8LBkZEv0Ig==
via: 1.1 9c60d6224ac0b44e908b5c9dcf70e9a4.cloudfront.net (CloudFront), 1.1 ef8f66c83aecd87910ce2e1153544a20.cloudfront.net (CloudFront), 1.1 google
date: Fri, 17 Mar 2023 22:05:35 GMT
age: 58956
etag: "961b5fcbca5b49ca9136e74931253bb300aa1985"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

10 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8afa2cdb-a5f3-4c78-a2ab-132c8b752b4b.png
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
10 kB (10338 bytes)
Hash
78453ba98b72eff3879ef163b59c86ed
80519bb3726ee1f9f211344cd433cefaed3a7f2e
61adfeff11af9583355ac7d1500e8a8d97357b2846f151f2421001994fb06655

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8afa2cdb-a5f3-4c78-a2ab-132c8b752b4b.png HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
server: nginx
content-length: 10338
x-amzn-requestid: 9f880b5b-056c-44bb-a811-36ea27c232aa
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: BvSgFGENoAMFuVw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-640f9799-2318d444248f7610300c658f;Sampled=0
x-amzn-remapped-date: Mon, 13 Mar 2023 21:37:29 GMT
x-amz-cf-pop: SEA19-C3
x-cache: Hit from cloudfront
x-amz-cf-id: bka10YWXvoKBRkwgvJNMzm1SSv_J1USzdugO9lPduHxe2uYFYkXh4w==
via: 1.1 2dc111aa3ead15d061e41a423155a53a.cloudfront.net (CloudFront), 1.1 e11ee4e3208082d534c251b36bbee268.cloudfront.net (CloudFront), 1.1 google
date: Sat, 18 Mar 2023 04:25:40 GMT
age: 36151
etag: "80519bb3726ee1f9f211344cd433cefaed3a7f2e"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

6.2 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F261ec986-2f8d-4ff1-a532-841fb845618b.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
6.2 kB (6151 bytes)
Hash
ae34f2fd5c842d15f05edef4c8b71dec
7e0306e3aa1b415cf9cae33b07da9f3303216a33
a5c1d1c217f6ebae09bbcb3c7ca6261e75773fdf32c1be4fedc29695f3233bf4

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F261ec986-2f8d-4ff1-a532-841fb845618b.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 6151
x-amzn-requestid: 3df3d28e-80d9-40ff-a524-1c8d07c5b5f5
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: B8eWhHeBIAMF2pA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6414ddc3-023ab8d94bf6b98a5c0b4260;Sampled=0
x-amzn-remapped-date: Fri, 17 Mar 2023 21:38:11 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C3
x-cache: Hit from cloudfront
x-amz-cf-id: Sf-LgGpKI-9JPfurhJ_S6vfH-mT0jEl77QDUUWeOE1jzGS6OU47QpA==
via: 1.1 efe54e8b68e074d39b2ecd249f85100a.cloudfront.net (CloudFront), 1.1 de2dd11312f7d5ad3bcd0cb112c7fd0e.cloudfront.net (CloudFront), 1.1 google
date: Fri, 17 Mar 2023 21:48:47 GMT
age: 59964
etag: "7e0306e3aa1b415cf9cae33b07da9f3303216a33"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

13 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9f030924-26fe-4a36-bf48-11d8ccfe470b.png
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3 DIY-Thermocam raw data\012- (Lepton 2.x), scale 772-769, spot sensor temperature 0.000000, unit celsius, color scheme 0, minimum point enabled, calibration: offset 0.000000, slope 1115717714480204991250653249536.000000\012- data
Size
13 kB (12699 bytes)
Hash
7c6233f649c3f84fcba3d244b3e5c35d
2820939892ab0d9b7c995043dc0f38642ac1e415
1ff87957f29a41db7bcbfcbc644cd434705b046b32e8d01467ec6b8c9f75c77b

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9f030924-26fe-4a36-bf48-11d8ccfe470b.png HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 12699
x-amzn-requestid: ebcd4e4c-f214-463e-a2c9-1392f278d6d9
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: B8eSgGFOIAMFt8A=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6414dda9-5ec892ee018fe3d118df30d6;Sampled=0
x-amzn-remapped-date: Fri, 17 Mar 2023 21:37:45 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C3
x-cache: Hit from cloudfront
x-amz-cf-id: Xm-KvGwI47UAZpwvXtnkLrSo18bFGJIdPrSvw3AayrUqyWVHlgbkqA==
via: 1.1 5a1753718d8b33365e5f693dd338c510.cloudfront.net (CloudFront), 1.1 82c2ab57bc9900898383f6b70681b9e6.cloudfront.net (CloudFront), 1.1 google
date: Fri, 17 Mar 2023 21:55:54 GMT
age: 59537
etag: "2820939892ab0d9b7c995043dc0f38642ac1e415"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

4.2 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa364ba84-a707-4abe-b4c4-02d5e6726ed4.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
4.2 kB (4230 bytes)
Hash
d9f21b4636bc8f91e6d456ae496c59ba
d7ca6a3c87043c863f1c23ff4e2062af0a2150ce
f4135a2239629fc461505652c7714515d22d99d8a1c911fdff19a590d68b10bb

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa364ba84-a707-4abe-b4c4-02d5e6726ed4.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 4230
x-amzn-requestid: a4e2dfd4-70d2-441e-bd8b-aa4b25491a3a
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: B8eNfH7RoAMF14w=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6414dd89-5c886cab698814b67d7ca624;Sampled=0
x-amzn-remapped-date: Fri, 17 Mar 2023 21:37:13 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C3
x-cache: Hit from cloudfront
x-amz-cf-id: vA7bj07jfn5xlHq61s8RRb4113bAYuP8m4bA-RSvqHLzW8VYHagIsg==
via: 1.1 e291f351a18746d40754b367095a2872.cloudfront.net (CloudFront), 1.1 31dfa94142c6eaf975b0e5454c00340a.cloudfront.net (CloudFront), 1.1 google
date: Fri, 17 Mar 2023 21:50:32 GMT
age: 59859
etag: "d7ca6a3c87043c863f1c23ff4e2062af0a2150ce"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

lh6.googleusercontent.com/iWjNEE6jBHGx_oFDtI8JJoQL8g7WnwpqjAGoNmRbRvF7xaJ936S07VAoZ6jwquT5v2dYu8PiFHRr02W7VZkBU2U=w16383

216.58.211.1

200 OK

5.9 MB

URL HTTP/2
lh6.googleusercontent.com/iWjNEE6jBHGx_oFDtI8JJoQL8g7WnwpqjAGoNmRbRvF7xaJ936S07VAoZ6jwquT5v2dYu8PiFHRr02W7VZkBU2U=w16383
IP
216.58.211.1:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 300x300, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=10, description=Mockup image of male hands using a laptop computer and holing a smart phone both with blank white screens. Focus on the index f, manufacturer=Canon, model=Canon EOS 6D, orientation=upper-left, xresolution=141, yresolution=149, resolutionunit=2, software=Adobe Photoshop CC 2018 (Windows), datetime=2018:07:25 12:37:24], baseline, precision 8, 5472x3648, components 3\012- data
Size
5.9 MB (5932426 bytes)
Hash
583707976208cc031c19c435e89e22d5
eb68b710bf4bbbbf9cf8c471d3bc4aba1f80cdf0
ba68015f07e9736c5ae384136e127c2088a3555d0ec1e550fea9f255fcca6e0a

HTTP Headers

GET /iWjNEE6jBHGx_oFDtI8JJoQL8g7WnwpqjAGoNmRbRvF7xaJ936S07VAoZ6jwquT5v2dYu8PiFHRr02W7VZkBU2U=w16383 HTTP/1.1
Host: lh6.googleusercontent.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.students-help.ga/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
access-control-expose-headers: Content-Length
etag: "v1"
expires: Sun, 19 Mar 2023 14:28:11 GMT
cache-control: public, max-age=86400, no-transform
content-disposition: inline;filename="EmbeddedImage.jpg"
content-type: image/jpeg
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
x-content-type-options: nosniff
date: Sat, 18 Mar 2023 14:28:11 GMT
server: fife
content-length: 5932426
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

lh3.googleusercontent.com/ajNk6oPFuW4xV5K9KhtNybrXI9QYrND_nz-Y8HlvHn1Wt75zsL0d_EwzmBGE6Azx7Dfc4OPtGPjlQjyMa_bkRgE=w1280

216.58.211.1

200 OK

347 kB

URL HTTP/2
lh3.googleusercontent.com/ajNk6oPFuW4xV5K9KhtNybrXI9QYrND_nz-Y8HlvHn1Wt75zsL0d_EwzmBGE6Azx7Dfc4OPtGPjlQjyMa_bkRgE=w1280
IP
216.58.211.1:0
ASN
#15169 GOOGLE

File type
PNG image data, 1280 x 1280, 8-bit/color RGBA, non-interlaced\012- data
Size
347 kB (346747 bytes)
Hash
7fb0f9e21713b5e250ea1aee5c50a27f
b456a86cc4696d5ada7117076238fcb807250c84
d152847f408d1e53e7694065466546142f90f79e7432af43ef6f6c31c0e9f37a

HTTP Headers

GET /ajNk6oPFuW4xV5K9KhtNybrXI9QYrND_nz-Y8HlvHn1Wt75zsL0d_EwzmBGE6Azx7Dfc4OPtGPjlQjyMa_bkRgE=w1280 HTTP/1.1
Host: lh3.googleusercontent.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.students-help.ga/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
access-control-expose-headers: Content-Length
etag: "v1"
expires: Sun, 19 Mar 2023 14:28:11 GMT
cache-control: public, max-age=86400, no-transform
content-disposition: inline;filename="____ 2.png";filename*=UTF-8''%D0%BB%D0%BE%D0%B3%D0%BE%202.png
content-type: image/png
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
x-content-type-options: nosniff
date: Sat, 18 Mar 2023 14:28:11 GMT
server: fife
content-length: 346747
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

region1.google-analytics.com/g/collect?v=2&tid=G-PRVQHGHZFQ&gtm=45je33f0&_p=1423987941&gdid=dZWRiYj&cid=1103246916.1679149690&ul=en-us&sr=1280x1024&_s=1&sid=1679149690&sct=1&seg=0&dl=https%3A%2F%2Fwww.students-help.ga%2F&dt=%D0%9F%D0%BE%D0%BC%D0%BE%D1%89%D1%8C%20%D1%81%D1%82%D1%83%D0%B4%D0%B5%D0%BD%D1%82%D0%B0%D0%BC%20%D0%9A%D0%B0%D0%B7%D0%B0%D1%85%D1%81%D1%82%D0%B0%D0%BD%D0%B0%2C%20%D0%A0%D0%BE%D1%81%D1%81%D0%B8%D0%B8.%20%D0%A1%D1%82%D1%83%D0%B4%D0%B5%D0%BD%D1%87%D0%B5%D1%81%D0%BA%D0%B8%D0%B5%20%D1%80%D0%B0%D0%B1%D0%BE%D1%82%D1%8B%3A%20%D0%BF%D1%80%D0%B5%D0%B7%D0%B5%D0%BD%D1%82%D0%B0%D1%86%D0%B8%D0%B8%2C%20%D1%8D%D1%81%D1%81%D1%8D%2C%20%D1%80%D1%84%D0%B5%D0%B5%D1%80%D0%B0%D1%82%D1%8B%2C%20%D0%BF%D0%B5%D1%80%D0%B5%D0%B2%D0%BE%D0%B4%D1%8B%2C%20%D1%82%D1%80%D0%B0%D0%BD%D1%81%D0%BA%D1%80%D0%B8%D0%B1%D0%B0%D1%86%D0%B8%D1%8F%2C%20%D0%A1%D0%A0%D0%A1.%20Students-help.&en=page_view&_fv=1&_nsi=1&_ss=1&_ee=1

216.239.32.36

204 No Content

0 B

URL HTTP/2
region1.google-analytics.com/g/collect?v=2&tid=G-PRVQHGHZFQ&gtm=45je33f0&_p=1423987941&gdid=dZWRiYj&cid=1103246916.1679149690&ul=en-us&sr=1280x1024&_s=1&sid=1679149690&sct=1&seg=0&dl=https%3A%2F%2Fwww.students-help.ga%2F&dt=%D0%9F%D0%BE%D0%BC%D0%BE%D1%89%D1%8C%20%D1%81%D1%82%D1%83%D0%B4%D0%B5%D0%BD%D1%82%D0%B0%D0%BC%20%D0%9A%D0%B0%D0%B7%D0%B0%D1%85%D1%81%D1%82%D0%B0%D0%BD%D0%B0%2C%20%D0%A0%D0%BE%D1%81%D1%81%D0%B8%D0%B8.%20%D0%A1%D1%82%D1%83%D0%B4%D0%B5%D0%BD%D1%87%D0%B5%D1%81%D0%BA%D0%B8%D0%B5%20%D1%80%D0%B0%D0%B1%D0%BE%D1%82%D1%8B%3A%20%D0%BF%D1%80%D0%B5%D0%B7%D0%B5%D0%BD%D1%82%D0%B0%D1%86%D0%B8%D0%B8%2C%20%D1%8D%D1%81%D1%81%D1%8D%2C%20%D1%80%D1%84%D0%B5%D0%B5%D1%80%D0%B0%D1%82%D1%8B%2C%20%D0%BF%D0%B5%D1%80%D0%B5%D0%B2%D0%BE%D0%B4%D1%8B%2C%20%D1%82%D1%80%D0%B0%D0%BD%D1%81%D0%BA%D1%80%D0%B8%D0%B1%D0%B0%D1%86%D0%B8%D1%8F%2C%20%D0%A1%D0%A0%D0%A1.%20Students-help.&en=page_view&_fv=1&_nsi=1&_ss=1&_ee=1
IP
216.239.32.36:0
ASN
#15169 GOOGLE

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

POST /g/collect?v=2&tid=G-PRVQHGHZFQ&gtm=45je33f0&_p=1423987941&gdid=dZWRiYj&cid=1103246916.1679149690&ul=en-us&sr=1280x1024&_s=1&sid=1679149690&sct=1&seg=0&dl=https%3A%2F%2Fwww.students-help.ga%2F&dt=%D0%9F%D0%BE%D0%BC%D0%BE%D1%89%D1%8C%20%D1%81%D1%82%D1%83%D0%B4%D0%B5%D0%BD%D1%82%D0%B0%D0%BC%20%D0%9A%D0%B0%D0%B7%D0%B0%D1%85%D1%81%D1%82%D0%B0%D0%BD%D0%B0%2C%20%D0%A0%D0%BE%D1%81%D1%81%D0%B8%D0%B8.%20%D0%A1%D1%82%D1%83%D0%B4%D0%B5%D0%BD%D1%87%D0%B5%D1%81%D0%BA%D0%B8%D0%B5%20%D1%80%D0%B0%D0%B1%D0%BE%D1%82%D1%8B%3A%20%D0%BF%D1%80%D0%B5%D0%B7%D0%B5%D0%BD%D1%82%D0%B0%D1%86%D0%B8%D0%B8%2C%20%D1%8D%D1%81%D1%81%D1%8D%2C%20%D1%80%D1%84%D0%B5%D0%B5%D1%80%D0%B0%D1%82%D1%8B%2C%20%D0%BF%D0%B5%D1%80%D0%B5%D0%B2%D0%BE%D0%B4%D1%8B%2C%20%D1%82%D1%80%D0%B0%D0%BD%D1%81%D0%BA%D1%80%D0%B8%D0%B1%D0%B0%D1%86%D0%B8%D1%8F%2C%20%D0%A1%D0%A0%D0%A1.%20Students-help.&en=page_view&_fv=1&_nsi=1&_ss=1&_ee=1 HTTP/1.1
Host: region1.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.students-help.ga/
Origin: https://www.students-help.ga
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0

HTTP/2 204 No Content
access-control-allow-origin: https://www.students-help.ga
date: Sat, 18 Mar 2023 14:28:11 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
access-control-allow-credentials: true
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

ocsp.globalsign.com/gseccovsslca2018

104.18.20.226

200 OK

940 B

URL HTTP/1.1
ocsp.globalsign.com/gseccovsslca2018
IP
104.18.20.226:0
ASN
#13335 CLOUDFLARENET

File type
data
Size
940 B (940 bytes)
Hash
47248bf32bb39062529b90f37bdc2d53
ff312abc314ce8a46ee923946d8765064f84107e
35477404bc46daaf9b65115be0f30bea15a7a4d5a5ab849edca4f30d66524065

HTTP Headers

POST /gseccovsslca2018 HTTP/1.1
Host: ocsp.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Sat, 18 Mar 2023 14:28:11 GMT
Content-Type: application/ocsp-response
Content-Length: 940
Connection: keep-alive
Expires: Wed, 22 Mar 2023 10:41:16 GMT
ETag: "ff312abc314ce8a46ee923946d8765064f84107e"
Last-Modified: Sat, 18 Mar 2023 10:41:17 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 1590
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7a9e292478aeb4fa-OSL

mc.yandex.ru/metrika/tag.js

93.158.134.119

200 OK

74 kB

URL HTTP/2
mc.yandex.ru/metrika/tag.js
IP
93.158.134.119:0
ASN
#13238 YANDEX LLC

File type
Unicode text, UTF-8 (with BOM) text, with very long lines (659)
Size
74 kB (73790 bytes)
Hash
6a599c9bd605553d6e8ea26b240017e5
ce6de2eaa815569841f1b16de3de7aa841ac7e88
8ee4a7bf51b198d826a7320c21965e73d95fd1642d9071a1a840e566ee9303de

HTTP Headers

GET /metrika/tag.js HTTP/1.1
Host: mc.yandex.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://810463162-atari-embeds.googleusercontent.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-length: 73790
date: Sat, 18 Mar 2023 14:28:11 GMT
access-control-allow-origin: *
etag: "6412d54e-1203e"
expires: Sat, 18 Mar 2023 15:28:11 GMT
last-modified: Thu, 16 Mar 2023 11:37:34 GMT
accept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
cache-control: max-age=3600
content-type: application/javascript
content-encoding: br
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2

mc.yandex.ru/metrika/advert.gif

93.158.134.119

200 OK

43 B

URL HTTP/2
mc.yandex.ru/metrika/advert.gif
IP
93.158.134.119:0
ASN
#13238 YANDEX LLC

File type
GIF image data, version 89a, 1 x 1\012- data
Size
43 B (43 bytes)
Hash
df3e567d6f16d040326c7a0ea29a4f41
ea7df583983133b62712b5e73bffbcd45cc53736
548f2d6f4d0d820c6c5ffbeffcbd7f0e73193e2932eefe542accc84762deec87

HTTP Headers

GET /metrika/advert.gif HTTP/1.1
Host: mc.yandex.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://810463162-atari-embeds.googleusercontent.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
content-length: 43
date: Sat, 18 Mar 2023 14:28:11 GMT
access-control-allow-origin: *
etag: "6412d54e-2b"
expires: Sat, 18 Mar 2023 15:28:11 GMT
accept-ranges: bytes
last-modified: Thu, 16 Mar 2023 11:37:34 GMT
accept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
cache-control: max-age=3600
content-type: image/gif
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2

www.students-help.ga/_/view/logImpressions?authuser=0

142.250.74.147

200 OK

449 B

URL HTTP/2
www.students-help.ga/_/view/logImpressions?authuser=0
IP
142.250.74.147:0
ASN
#15169 GOOGLE

File type
data
Size
449 B (449 bytes)
Hash
99a781fc139f8a0660133e7435d7e9cc
b6e0a7ba0fb3bf09ae10e5890e0990d91ac19063
07d14168c1fd228352874d8f02c4675e224a42db5a7b9e15a1dd8715c0d8256d

HTTP Headers

POST /_/view/logImpressions?authuser=0 HTTP/1.1
Host: www.students-help.ga
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.students-help.ga/
Content-Type: application/x-www-form-urlencoded;charset=utf-8
Content-Length: 12593
Origin: https://www.students-help.ga
Connection: keep-alive
Cookie: _ga_PRVQHGHZFQ=GS1.1.1679149690.1.0.1679149690.0.0.0; _ga=GA1.1.1103246916.1679149690
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
content-type: application/json; charset=utf-8
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Sat, 18 Mar 2023 14:28:13 GMT
content-disposition: attachment; filename="response.bin"; filename*=UTF-8''response.bin
x-content-type-options: nosniff
cross-origin-opener-policy: same-origin-allow-popups
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
content-encoding: gzip
X-Firefox-Spdy: h2

www.students-help.ga/

142.250.74.147

200 OK

0 B

URL HTTP/2
www.students-help.ga/
IP
142.250.74.147:0
ASN
#15169 GOOGLE

File type

Size
0 B (0 bytes)
Hash

Detections

NIDS	Severity	Alert
suricata	medium	ET INFO HTTP Request to a *.ga domain

HTTP Headers

GET / HTTP/1.1
Host: www.students-help.ga
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1

HTTP/2 200 OK
content-type: text/html; charset=utf-8
x-frame-options: DENY
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Sat, 18 Mar 2023 14:28:09 GMT
cross-origin-opener-policy: unsafe-none
content-security-policy: base-uri 'self';object-src 'none';report-uri /_/view/cspreport;script-src 'nonce-i2krsLh04ULCU99uHBQQWQ' 'unsafe-inline' 'unsafe-eval';worker-src 'self';frame-ancestors https://google-admin.corp.google.com/
referrer-policy: strict-origin-when-cross-origin
server: ESF
x-xss-protection: 0
x-content-type-options: nosniff
content-encoding: gzip
X-Firefox-Spdy: h2

fonts.googleapis.com/css?family=Roboto%20Slab%3A300%2C400%2C700%7CDroid%20Sans%3A400%2C700&display=swap

142.250.74.106

200 OK

0 B

URL HTTP/2
fonts.googleapis.com/css?family=Roboto%20Slab%3A300%2C400%2C700%7CDroid%20Sans%3A400%2C700&display=swap
IP
142.250.74.106:0
ASN
#15169 GOOGLE

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /css?family=Roboto%20Slab%3A300%2C400%2C700%7CDroid%20Sans%3A400%2C700&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.students-help.ga/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Sat, 18 Mar 2023 14:28:09 GMT
date: Sat, 18 Mar 2023 14:28:09 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

fonts.googleapis.com/css?family=Google+Sans:400,500|Roboto:300,400,500,700|Source+Code+Pro:400,700&display=swap

142.250.74.106

200 OK

0 B

URL HTTP/2
fonts.googleapis.com/css?family=Google+Sans:400,500|Roboto:300,400,500,700|Source+Code+Pro:400,700&display=swap
IP
142.250.74.106:0
ASN
#15169 GOOGLE

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /css?family=Google+Sans:400,500|Roboto:300,400,500,700|Source+Code+Pro:400,700&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.students-help.ga/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Sat, 18 Mar 2023 14:28:09 GMT
date: Sat, 18 Mar 2023 14:28:09 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

fonts.googleapis.com/css?family=PT%20Sans%3Ai%2Cbi%2C700%2C400&display=swap

142.250.74.106

200 OK

0 B

URL HTTP/2
fonts.googleapis.com/css?family=PT%20Sans%3Ai%2Cbi%2C700%2C400&display=swap
IP
142.250.74.106:0
ASN
#15169 GOOGLE

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /css?family=PT%20Sans%3Ai%2Cbi%2C700%2C400&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.students-help.ga/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Sat, 18 Mar 2023 14:28:09 GMT
date: Sat, 18 Mar 2023 14:28:09 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

OpenPhish

PhishTank

Fortinet's Web Filter

mnemonic secure dns

Quad9 DNS

ThreatFox

JavaScript (25)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML