| comparethisto.pro/lion/588dfgd.php?source_id=6c5a5a9a-73b0-4f23-a81d-91c3a315b2f4&clickid=w768mnkt7jgnn2m03p92uo1c | 45.90.56.13 | 301 Moved Permanently | 0 B |
URL User Request GET HTTP/1.1comparethisto.pro/lion/588dfgd.php?source_id=6c5a5a9a-73b0-4f23-a81d-91c3a315b2f4&clickid=w768mnkt7jgnn2m03p92uo1c IP45.90.56.13:443 ASN#204957 Green Floid LLC
CertificateIssuerLet's Encrypt Subjectcomparethisto.pro FingerprintB0:7D:5E:06:E9:E5:15:74:64:C2:C6:92:ED:82:9B:C4:B5:95:B4:ED ValidityMon, 18 Mar 2024 09:58:21 GMT - Sun, 16 Jun 2024 09:58:20 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /lion/588dfgd.php?source_id=6c5a5a9a-73b0-4f23-a81d-91c3a315b2f4&clickid=w768mnkt7jgnn2m03p92uo1c HTTP/1.1
Host: comparethisto.pro
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 301 Moved Permanently
Date: Thu, 18 Apr 2024 10:29:28 GMT
Server: Apache/2.4.38 (Debian)
Set-Cookie: 9d14e655c25ee070f3a5110c3d2265ad=1
Location: http://auth3.tim.com.br/v3/accesscontrol-web/heloading?bmctx=D1C237A58FCD95265CB8D6ACE4AD377F2DE982FD5328553125A1F2A984F4091ACB28FCD2C93EFA64F67EC7905B8B708C&contextType=external&username=string&enablePersistentLogin=true&password=secure_string&challenge_url=http%3A%2F%2Fauth3.tim.com.br%2Fv3%2Faccesscontrol-web%2Fheloading&request_id=8407358969913691941&authn_try_count=0&locale=uk_UA&resource_url=https%253A%252F%252Fauth3.tim.com.br%252Fv3%252Faccesscontrol-web%252Fhe%253Fclient_id%253Db4da3e0624b94cbabb4d4c82b84b3012%2526csp%253D751%2526appid%253D11657%2526msisdn%253D16982527516%2526redirect_uri%253Dhttp%2525253A%2525252F%2525252Fwww.timpromos.com.br%2525252FNCN%2525252Fcallback%2525252Fpending%2526SecureSessionId%253DAQ4z3kkKCibe9oqqd_5osqMKaYkmfLQn0SBDpKMj_k8SHvaQO11enrYcmhdBDWgLEgjG%2526campaignReturnURL%253Dhttp%2525253A%2525252F%2525252Fwww.timpromos.com.br%2522%253E%00%00%00%00%00%00%00%253CScript%253Eeval(atob(window.location.hash.substr(1)))%253C%252FScript%253E%2525252FNCN%2525252Fredirect%2526paymentType%253D2#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
Content-Length: 0
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/html; charset=UTF-8
|
|
| auth3.tim.com.br/v3/accesscontrol-web/heloading?bmctx=D1C237A58FCD95265CB8D6ACE4AD377F2DE982FD5328553125A1F2A984F4091ACB28FCD2C93EFA64F67EC7905B8B708C&contextType=external&username=string&enablePersistentLogin=true&password=secure_string&challenge_url=http%3A%2F%2Fauth3.tim.com.br%2Fv3%2Faccesscontrol-web%2Fheloading&request_id=8407358969913691941&authn_try_count=0&locale=uk_UA&resource_url=https%253A%252F%252Fauth3.tim.com.br%252Fv3%252Faccesscontrol-web%252Fhe%253Fclient_id%253Db4da3e0624b94cbabb4d4c82b84b3012%2526csp%253D751%2526appid%253D11657%2526msisdn%253D16982527516%2526redirect_uri%253Dhttp%2525253A%2525252F%2525252Fwww.timpromos.com.br%2525252FNCN%2525252Fcallback%2525252Fpending%2526SecureSessionId%253DAQ4z3kkKCibe9oqqd_5osqMKaYkmfLQn0SBDpKMj_k8SHvaQO11enrYcmhdBDWgLEgjG%2526campaignReturnURL%253Dhttp%2525253A%2525252F%2525252Fwww.timpromos.com.br%2522%253E%00%00%00%00%00%00%00%253CScript%253Eeval(atob(window.location.hash.substr(1)))%253C%252FScript%253E%2525252FNCN%2525252Fredirect%2526paymentType%253D2 | 45.60.65.22 | | 3.4 kB |
URL auth3.tim.com.br/v3/accesscontrol-web/heloading?bmctx=D1C237A58FCD95265CB8D6ACE4AD377F2DE982FD5328553125A1F2A984F4091ACB28FCD2C93EFA64F67EC7905B8B708C&contextType=external&username=string&enablePersistentLogin=true&password=secure_string&challenge_url=http%3A%2F%2Fauth3.tim.com.br%2Fv3%2Faccesscontrol-web%2Fheloading&request_id=8407358969913691941&authn_try_count=0&locale=uk_UA&resource_url=https%253A%252F%252Fauth3.tim.com.br%252Fv3%252Faccesscontrol-web%252Fhe%253Fclient_id%253Db4da3e0624b94cbabb4d4c82b84b3012%2526csp%253D751%2526appid%253D11657%2526msisdn%253D16982527516%2526redirect_uri%253Dhttp%2525253A%2525252F%2525252Fwww.timpromos.com.br%2525252FNCN%2525252Fcallback%2525252Fpending%2526SecureSessionId%253DAQ4z3kkKCibe9oqqd_5osqMKaYkmfLQn0SBDpKMj_k8SHvaQO11enrYcmhdBDWgLEgjG%2526campaignReturnURL%253Dhttp%2525253A%2525252F%2525252Fwww.timpromos.com.br%2522%253E%00%00%00%00%00%00%00%253CScript%253Eeval(atob(window.location.hash.substr(1)))%253C%252FScript%253E%2525252FNCN%2525252Fredirect%2526paymentType%253D2 IP45.60.65.22:0
Hash312443fdcf433258ca2a614370e07bdb 1584b432424953870e7ecdffed6ed7240aabbf70 645bb631be50ad278c8743087a04f2526a543dd3ccede7ec25a2ea34fbd1debb
GET /v3/accesscontrol-web/heloading?bmctx=D1C237A58FCD95265CB8D6ACE4AD377F2DE982FD5328553125A1F2A984F4091ACB28FCD2C93EFA64F67EC7905B8B708C&contextType=external&username=string&enablePersistentLogin=true&password=secure_string&challenge_url=http%3A%2F%2Fauth3.tim.com.br%2Fv3%2Faccesscontrol-web%2Fheloading&request_id=8407358969913691941&authn_try_count=0&locale=uk_UA&resource_url=https%253A%252F%252Fauth3.tim.com.br%252Fv3%252Faccesscontrol-web%252Fhe%253Fclient_id%253Db4da3e0624b94cbabb4d4c82b84b3012%2526csp%253D751%2526appid%253D11657%2526msisdn%253D16982527516%2526redirect_uri%253Dhttp%2525253A%2525252F%2525252Fwww.timpromos.com.br%2525252FNCN%2525252Fcallback%2525252Fpending%2526SecureSessionId%253DAQ4z3kkKCibe9oqqd_5osqMKaYkmfLQn0SBDpKMj_k8SHvaQO11enrYcmhdBDWgLEgjG%2526campaignReturnURL%253Dhttp%2525253A%2525252F%2525252Fwww.timpromos.com.br%2522%253E%00%00%00%00%00%00%00%253CScript%253Eeval(atob(window.location.hash.substr(1)))%253C%252FScript%253E%2525252FNCN%2525252Fredirect%2526paymentType%253D2 HTTP/1.1
Host: auth3.tim.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 18 Apr 2024 10:29:30 GMT
Server: Apache
Content-Language: en-US
Keep-Alive: timeout=4, max=800
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: text/html; charset=ISO-8859-1
Set-Cookie: JSESSIONID=75zwwReVY-WAUeist7GbaenmzJs5Rt4ZNPhyZ3wmHAADaVMiDc4y!2102789721; path=/; HttpOnly
visid_incap_2787765=nTkVbgvdTpO//JDK1BMjLAn2IGYAAAAAQUIPAAAAAACmPNGDgAGp6D2yXX4DOnME; expires=Thu, 17 Apr 2025 22:44:36 GMT; HttpOnly; path=/; Domain=.tim.com.br
incap_ses_633_2787765=J8buVKiXeBQYcpC/Lt7ICAn2IGYAAAAAk++OG+QISQcfZGtvwYo8OA==; path=/; Domain=.tim.com.br
X-CDN: Imperva
Content-Encoding: gzip
X-Iinfo: 7-1434138-1434139 NNYN CT(251 -1 0) RT(1713436169384 1) q(0 0 3 0) r(6 6) U24
|
|
| www.googletagmanager.com/gtm.js?id=GTM-XXXX | 142.250.74.168 | | 1.6 kB |
URL www.googletagmanager.com/gtm.js?id=GTM-XXXX IP142.250.74.168:0
File typeHTML document, Unicode text, UTF-8 text, with very long lines (1136) Hash3a837705a08f097c1302ac5482a9b383 506ae7e9b56116c19df36cc04323fbd79ff3151d 2bc4689c887a850e7e7e68388fd19a2abc6a7c961193cae4d8510e3e0489d2f4
GET /gtm.js?id=GTM-XXXX HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://auth3.tim.com.br/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 404 Not Found
cross-origin-resource-policy: cross-origin
date: Thu, 18 Apr 2024 10:29:30 GMT
content-type: text/html; charset=UTF-8
server: Google Tag Manager
content-length: 1579
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| auth3.tim.com.br/OTP/imgs/loading.gif | 45.60.65.22 | | 23 kB |
URL auth3.tim.com.br/OTP/imgs/loading.gif IP45.60.65.22:0
File typeGIF image data, version 89a, 100 x 100 Hash6f1ef1483f165ef21c3975357b2a3709 f5635ca704c992860978396547a6dc2e68ca5d21 3e75a6774ef7041083d556b2f83a816acdd398eff6add8c1867c0cea9ddf6d4b
GET /OTP/imgs/loading.gif HTTP/1.1
Host: auth3.tim.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Cookie: JSESSIONID=75zwwReVY-WAUeist7GbaenmzJs5Rt4ZNPhyZ3wmHAADaVMiDc4y!2102789721; visid_incap_2787765=nTkVbgvdTpO//JDK1BMjLAn2IGYAAAAAQUIPAAAAAACmPNGDgAGp6D2yXX4DOnME; incap_ses_633_2787765=J8buVKiXeBQYcpC/Lt7ICAn2IGYAAAAAk++OG+QISQcfZGtvwYo8OA==
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Thu, 18 Apr 2024 10:29:31 GMT
server: Apache
last-modified: Wed, 31 Aug 2016 14:46:24 GMT
etag: "42816-5992-53b5f2946f000"
accept-ranges: bytes
content-length: 22930
content-type: image/gif
set-cookie: tim_cookie=rd51o00000000000000000000ffff0aa91ff6o20101; expires=Thu, 18-Apr-2024 11:29:31 GMT; path=/; Httponly; Secure
x-incap-sess-cookie-hdr: 2ZojVjbizjMYcpC/Lt7ICAv2IGYAAAAAwGtEjmKk1uiLFmlrDfxQIw==
x-cdn: Imperva
x-iinfo: 4-4355508-4355516 NNNN CT(244 491 0) RT(1713436170195 34) q(0 0 7 -1) r(10 10) U24
X-Firefox-Spdy: h2
|
|
| auth3.tim.com.br/OTP/css/TIM-Login-styles-sheet.css | 45.60.65.22 | | 6.3 kB |
URL auth3.tim.com.br/OTP/css/TIM-Login-styles-sheet.css IP45.60.65.22:0
File typeUnicode text, UTF-8 text, with very long lines (9625) Hash415a1820bebbf8ff45c540934dcc1ede 4aaa842ae553740e0a8fd5cf76bcbb2dd933a45a db8f61c7904d8ee95efef9f78a5f5725946a3dabe4981f6d08461dcb5aadf121
GET /OTP/css/TIM-Login-styles-sheet.css HTTP/1.1
Host: auth3.tim.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://auth3.tim.com.br/
Cookie: JSESSIONID=75zwwReVY-WAUeist7GbaenmzJs5Rt4ZNPhyZ3wmHAADaVMiDc4y!2102789721; visid_incap_2787765=nTkVbgvdTpO//JDK1BMjLAn2IGYAAAAAQUIPAAAAAACmPNGDgAGp6D2yXX4DOnME; incap_ses_633_2787765=J8buVKiXeBQYcpC/Lt7ICAn2IGYAAAAAk++OG+QISQcfZGtvwYo8OA==
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Thu, 18 Apr 2024 10:29:31 GMT
server: Apache
last-modified: Thu, 04 May 2017 03:57:51 GMT
etag: "f8065-539a-54eaac6d7edc0"
accept-ranges: bytes
content-type: text/css
set-cookie: tim_cookie=rd51o00000000000000000000ffff0aa91fb4o20101; expires=Thu, 18-Apr-2024 11:29:31 GMT; path=/; Httponly; Secure
x-incap-sess-cookie-hdr: /zJ3chb72xoYcpC/Lt7ICAv2IGYAAAAAkmxXD3znJ0Q48EJzI7tiew==
x-cdn: Imperva
content-encoding: gzip
x-iinfo: 4-4355508-4355512 NNYN CT(245 493 0) RT(1713436170195 29) q(0 0 7 -1) r(10 10) U24
X-Firefox-Spdy: h2
|
|
| auth3.tim.com.br/OTP/js/jquery.mask.min.js | 45.60.65.22 | | 18 kB |
URL auth3.tim.com.br/OTP/js/jquery.mask.min.js IP45.60.65.22:0
Hash966566d346582baa8e88789deccc328c d532054df24bd2d870792b2bce6fd4580580c867 ff71d9359fd8fe7cbf1ba71ac2c76a50343204b48d140cab228be7ec7857e244
GET /OTP/js/jquery.mask.min.js HTTP/1.1
Host: auth3.tim.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://auth3.tim.com.br/
Cookie: JSESSIONID=75zwwReVY-WAUeist7GbaenmzJs5Rt4ZNPhyZ3wmHAADaVMiDc4y!2102789721; visid_incap_2787765=nTkVbgvdTpO//JDK1BMjLAn2IGYAAAAAQUIPAAAAAACmPNGDgAGp6D2yXX4DOnME; incap_ses_633_2787765=J8buVKiXeBQYcpC/Lt7ICAn2IGYAAAAAk++OG+QISQcfZGtvwYo8OA==
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Thu, 18 Apr 2024 10:29:31 GMT
server: Apache
last-modified: Mon, 12 Sep 2016 11:15:48 GMT
etag: "f8070-1788-53c4d9e356100"
accept-ranges: bytes
content-type: application/javascript
set-cookie: tim_cookie=rd51o00000000000000000000ffff0aa91fb4o20101; expires=Thu, 18-Apr-2024 11:29:31 GMT; path=/; Httponly; Secure
x-incap-sess-cookie-hdr: 0JVTf/hsYBIYcpC/Lt7ICAv2IGYAAAAAhChqhFpE4GTRQsTxCI5r5w==
x-cdn: Imperva
content-encoding: gzip
x-iinfo: 4-4355508-4355521 NNYN CT(245 494 0) RT(1713436170195 46) q(0 0 7 -1) r(10 10) U24
X-Firefox-Spdy: h2
|
|
| auth3.tim.com.br/OTP/js/jquery.min.js | 45.60.65.22 | | 79 kB |
URL auth3.tim.com.br/OTP/js/jquery.min.js IP45.60.65.22:0
File typeJavaScript source, ASCII text, with very long lines (32077) Hash94cf088937c4a6ae6615b98ece39f8bf a086ac7692a46daa5ed30fd11db9b703fc0f5e5d bb6dd9c113f32a5648182dd284e5c0f15c12a8a7b0767ff1836ac0b50c480ff4
GET /OTP/js/jquery.min.js HTTP/1.1
Host: auth3.tim.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://auth3.tim.com.br/
Cookie: JSESSIONID=75zwwReVY-WAUeist7GbaenmzJs5Rt4ZNPhyZ3wmHAADaVMiDc4y!2102789721; visid_incap_2787765=nTkVbgvdTpO//JDK1BMjLAn2IGYAAAAAQUIPAAAAAACmPNGDgAGp6D2yXX4DOnME; incap_ses_633_2787765=J8buVKiXeBQYcpC/Lt7ICAn2IGYAAAAAk++OG+QISQcfZGtvwYo8OA==
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Thu, 18 Apr 2024 10:29:31 GMT
server: Apache
last-modified: Tue, 13 Sep 2016 17:46:50 GMT
etag: "1742c7-17b8b-53c67327e7680"
accept-ranges: bytes
content-type: application/javascript
set-cookie: tim_cookie=rd51o00000000000000000000ffff0aa91fdeo20101; expires=Thu, 18-Apr-2024 11:29:31 GMT; path=/; Httponly; Secure
x-incap-sess-cookie-hdr: Tk8+ZFk9PzAYcpC/Lt7ICAv2IGYAAAAAevtor6jq1yZWUER78aoj1g==
x-cdn: Imperva
content-encoding: gzip
x-iinfo: 4-4355508-4355519 NNYN CT(239 483 0) RT(1713436170195 41) q(0 0 7 -1) r(10 10) U24
X-Firefox-Spdy: h2
|
|
| www.googletagmanager.com/gtm.js?id=GTM-KV57NW3 | 142.250.74.168 | | 90 kB |
URL www.googletagmanager.com/gtm.js?id=GTM-KV57NW3 IP142.250.74.168:0
File typeJavaScript source, ASCII text, with very long lines (2212) Hashba7bb1b29961dabc7e7914c3e853ac86 6bd2281c4a912aadf462763f6c7ccacdcb97dac8 71fd4c77bb8f6c09877302742e5dd2f87c81d7ab767f27bbdcc4d9d861539319
GET /gtm.js?id=GTM-KV57NW3 HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Thu, 18 Apr 2024 10:29:34 GMT
expires: Thu, 18 Apr 2024 10:29:34 GMT
cache-control: private, max-age=900
last-modified: Thu, 18 Apr 2024 09:00:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 89576
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| www.googletagmanager.com/gtag/destination?id=G-VZSS8NNX20&l=dataLayer&cx=c | 142.250.74.168 | | 96 kB |
URL www.googletagmanager.com/gtag/destination?id=G-VZSS8NNX20&l=dataLayer&cx=c IP142.250.74.168:0
File typeJavaScript source, ASCII text, with very long lines (5955) Hashbeff89548a0608300499da2f10a02daa 94eab4983726bbec20b423f8615e956840ed46b3 e17561923a617b29ba557455fa5c04cc2212f482ebe5e38a5f4731cf3839498c
GET /gtag/destination?id=G-VZSS8NNX20&l=dataLayer&cx=c HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Thu, 18 Apr 2024 10:29:34 GMT
expires: Thu, 18 Apr 2024 10:29:34 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 95459
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| www.googletagmanager.com/gtag/js?id=G-VZSS8NNX20&l=dataLayer&cx=c | 142.250.74.168 | | 96 kB |
URL www.googletagmanager.com/gtag/js?id=G-VZSS8NNX20&l=dataLayer&cx=c IP142.250.74.168:0
File typeJavaScript source, ASCII text, with very long lines (5955) Hash091e5228a3f6076a31c4c78042707552 49a4bb136c12c8b53caa6fe45e510fe727e56900 ccb7a50d211191c705392d82a12689d9a0ba636bb3d5bc3091bae4a198b03753
GET /gtag/js?id=G-VZSS8NNX20&l=dataLayer&cx=c HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Thu, 18 Apr 2024 10:29:34 GMT
expires: Thu, 18 Apr 2024 10:29:34 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 95544
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| auth3.tim.com.br/v3/accesscontrol-web/assets/OTA-BRTIM-GAMEL-clube2-pt-doi-web.css?ver=49 | 45.60.65.22 | | 281 B |
URL auth3.tim.com.br/v3/accesscontrol-web/assets/OTA-BRTIM-GAMEL-clube2-pt-doi-web.css?ver=49 IP45.60.65.22:0
File typeHTML document, ASCII text Hash7d5771f8bb749f47d5af59432b4b706d 740c13bdba97059cb9f9ab7e11043eaafcacb653 d29732de5f2246d0aa7fb950d3e1eadb6e63c59398808e49dbea131033a6e36d
GET /v3/accesscontrol-web/assets/OTA-BRTIM-GAMEL-clube2-pt-doi-web.css?ver=49 HTTP/1.1
Host: auth3.tim.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Cookie: JSESSIONID=75zwwReVY-WAUeist7GbaenmzJs5Rt4ZNPhyZ3wmHAADaVMiDc4y!2102789721; visid_incap_2787765=nTkVbgvdTpO//JDK1BMjLAn2IGYAAAAAQUIPAAAAAACmPNGDgAGp6D2yXX4DOnME; incap_ses_633_2787765=J8buVKiXeBQYcpC/Lt7ICAn2IGYAAAAAk++OG+QISQcfZGtvwYo8OA==
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 302 Found
Date: Thu, 18 Apr 2024 10:29:34 GMT
Server: Apache
Location: https://auth3.tim.com.br/v3/accesscontrol-web/assets/OTA-BRTIM-GAMEL-clube2-pt-doi-web.css?ver=49
Content-Length: 281
Keep-Alive: timeout=4, max=1500
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1
X-CDN: Imperva
X-Iinfo: 7-1434138-1434219 NNNN CT(244 -1 0) RT(1713436169384 4798) q(0 0 3 -1) r(5 5) U24
|
|
| www.google.no/ads/ga-audiences?v=1&t=sr&slf_rd=1&_r=4&tid=G-VZSS8NNX20&cid=1863055823.1713436175>m=45je44f0v9100209141z8855433504za200&aip=1&dma=1&dma_cps=sypham&gcd=13l3l3l2l1&npa=1&z=1373030201 | 142.250.74.35 | | 42 B |
URL www.google.no/ads/ga-audiences?v=1&t=sr&slf_rd=1&_r=4&tid=G-VZSS8NNX20&cid=1863055823.1713436175>m=45je44f0v9100209141z8855433504za200&aip=1&dma=1&dma_cps=sypham&gcd=13l3l3l2l1&npa=1&z=1373030201 IP142.250.74.35:0
File typeGIF image data, version 89a, 1 x 1 Hashd89746888da2d9510b64a9f031eaecd5 d5fceb6532643d0d84ffe09c40c481ecdf59e15a ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /ads/ga-audiences?v=1&t=sr&slf_rd=1&_r=4&tid=G-VZSS8NNX20&cid=1863055823.1713436175>m=45je44f0v9100209141z8855433504za200&aip=1&dma=1&dma_cps=sypham&gcd=13l3l3l2l1&npa=1&z=1373030201 HTTP/1.1
Host: www.google.no
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Thu, 18 Apr 2024 10:29:35 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| www.timpromos.com.br/security-platform-web/web/v1/content/view/Confirmation/br_tim/AQ4z3knK_obWrgwcm63c55LRtwiUk4ZMjVovhipkgdL6Kh5pCafTtwW0nVALxvvHW3qT | 91.241.94.8 | | 51 B |
URL www.timpromos.com.br/security-platform-web/web/v1/content/view/Confirmation/br_tim/AQ4z3knK_obWrgwcm63c55LRtwiUk4ZMjVovhipkgdL6Kh5pCafTtwW0nVALxvvHW3qT IP91.241.94.8:0 ASN#49582 Upstream Software And Telecommunications Systems S.m.s.a
File typeGIF image data, version 89a, 1 x 1 Hash49cdc214849d5ced018d230677b14076 0e75513436e6b01963759f6a88282445ff2e5b3a 7455bacb03f7ef04d79010638db14d8434cf7a349914c2ee99eb5d4220338675
GET /security-platform-web/web/v1/content/view/Confirmation/br_tim/AQ4z3knK_obWrgwcm63c55LRtwiUk4ZMjVovhipkgdL6Kh5pCafTtwW0nVALxvvHW3qT HTTP/1.1
Host: www.timpromos.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200
Date: Thu, 18 Apr 2024 10:29:34 GMT
Cache-Control: no-store, private
Content-Disposition: attachment; filename="pixel"
Pragma: no-cache
Accept-Ranges: bytes
Content-Type: image/gif
Content-Length: 51
Keep-Alive: timeout=5, max=1000
Connection: Keep-Alive
Set-Cookie: TS01c950bd=01b02e3e89d50a2d7a2e47f92d769fcf2d395a8eb72723089885a16b05e732111bc3eac917e626ed846d176fd29d98411f3d042fe8; Path=/; Domain=.www.timpromos.com.br
|
|
| fonts.googleapis.com/css2?family=Roboto:wght@400;500&display=swap | 142.250.74.74 | | 1.1 kB |
URL fonts.googleapis.com/css2?family=Roboto:wght@400;500&display=swap IP142.250.74.74:0
File typegzip compressed data, max compression Hash38f8b375a354675cdff6798f2329578e 7ae606714592adf15e23227a27a5f2a1454af280 0048de9e11dee77de0ce811d7c5993d4f8a0540f8b0bc76b72ac43230cdc1d91
GET /css2?family=Roboto:wght@400;500&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Thu, 18 Apr 2024 10:29:35 GMT
date: Thu, 18 Apr 2024 10:29:35 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| analytics-br-tim.securewebfraud.io/web/v1/content/view/Confirmation/br_tim/AQ4z3knK_obWrgwcm63c55LRtwiUk4ZMjVovhipkgdL6Kh5pCafTtwW0nVALxvvHW3qT | 91.220.208.18 | | 51 B |
URL analytics-br-tim.securewebfraud.io/web/v1/content/view/Confirmation/br_tim/AQ4z3knK_obWrgwcm63c55LRtwiUk4ZMjVovhipkgdL6Kh5pCafTtwW0nVALxvvHW3qT IP91.220.208.18:0 ASN#49582 Upstream Software And Telecommunications Systems S.m.s.a
File typeGIF image data, version 89a, 1 x 1 Hash49cdc214849d5ced018d230677b14076 0e75513436e6b01963759f6a88282445ff2e5b3a 7455bacb03f7ef04d79010638db14d8434cf7a349914c2ee99eb5d4220338675
GET /web/v1/content/view/Confirmation/br_tim/AQ4z3knK_obWrgwcm63c55LRtwiUk4ZMjVovhipkgdL6Kh5pCafTtwW0nVALxvvHW3qT HTTP/1.1
Host: analytics-br-tim.securewebfraud.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200
Date: Thu, 18 Apr 2024 10:29:35 GMT
Cache-Control: no-store, private
Content-Disposition: attachment; filename="pixel"
Pragma: no-cache
Accept-Ranges: bytes
Content-Type: image/gif
Content-Length: 51
Keep-Alive: timeout=2, max=1000
Connection: Keep-Alive
|
|
| auth3.tim.com.br/v3/accesscontrol-web/assets/images/Gameloft/OTA-loja1-logoHeader.png | 45.60.65.22 | | 277 B |
URL auth3.tim.com.br/v3/accesscontrol-web/assets/images/Gameloft/OTA-loja1-logoHeader.png IP45.60.65.22:0
File typeHTML document, ASCII text Hash31e3d09724cef87ace7764ca6059ae56 590048d30c4565f78fc8caab2a6cfddf1d20a1d4 5f392585efd4c608909475917252f0be4af9fc42e98dc9c5fb1ad81b0e2e2470
GET /v3/accesscontrol-web/assets/images/Gameloft/OTA-loja1-logoHeader.png HTTP/1.1
Host: auth3.tim.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Cookie: JSESSIONID=75zwwReVY-WAUeist7GbaenmzJs5Rt4ZNPhyZ3wmHAADaVMiDc4y!2102789721; visid_incap_2787765=nTkVbgvdTpO//JDK1BMjLAn2IGYAAAAAQUIPAAAAAACmPNGDgAGp6D2yXX4DOnME; incap_ses_633_2787765=J8buVKiXeBQYcpC/Lt7ICAn2IGYAAAAAk++OG+QISQcfZGtvwYo8OA==
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 302 Found
Date: Thu, 18 Apr 2024 10:29:35 GMT
Server: Apache
Location: https://auth3.tim.com.br/v3/accesscontrol-web/assets/images/Gameloft/OTA-loja1-logoHeader.png
Content-Length: 277
Keep-Alive: timeout=4, max=1499
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1
X-CDN: Imperva
X-Iinfo: 7-1434222-1434219 PNNN RT(1713436174640 63) q(0 0 0 -1) r(2 2) U24
|
|
| region1.analytics.google.com/g/collect?v=2&tid=G-VZSS8NNX20>m=45je44f0v9100209141z8855433504za200&_p=1713436174532&gcd=13l3l3l2l1&npa=1&dma_cps=sypham&dma=1&cid=1863055823.1713436175&ul=en-us&sr=1280x1024&pscdl=noapi&_s=2&sid=1713436174&sct=1&seg=1&dl=http%3A%2F%2Fauth3.tim.com.br%2Fv3%2Faccesscontrol-web%2Fheloading%3Fbmctx%3DD1C237A58FCD95265CB8D6ACE4AD377F2DE982FD5328553125A1F2A984F4091ACB28FCD2C93EFA64F67EC7905B8B708C%26contextType%3Dexternal%26username%3Dstring%26enablePersistentLogin%3Dtrue%26password%3Dsecure_string%26challenge_url%3Dhttp%253A%252F%252Fauth3.tim.com.br%252Fv3%252Faccesscontrol-web%252Fheloading%26request_id%3D8407358969913691941%26authn_try_count%3D0%26locale%3Duk_UA%26resource_url%3Dhttps%25253A%25252F%25252Fauth3.tim.com.br%25252Fv3%25252Faccesscontrol-web%25252Fhe%25253Fclient_id%25253Db4da3e0624b94cbabb4d4c82b84b3012%252526csp%25253D751%252526appid%25253D11657%252526msisdn%25253D16982527516%252526redirect_uri%25253Dhttp%252525253A%252525252F%252525252Fwww.timpromos.com.br%252525252FNCN%252525252Fcallback%252525252Fpending%252526SecureSessionId%25253DAQ4z3kkKCibe9oqqd_5osqMKaYkmfLQn0SBDpKMj_k8SHvaQO11enrYcmhdBDWgLEgjG%252526campaignReturnURL%25253Dhttp%252525253A%252525252F%252525252Fwww.timpromos.com.br%252522%25253E%2500%2500%2500%2500%2500%2500%2500%25253CScript%25253Eeval(atob(window.location.hash.substr(1)))%25253C%25252FScript%25253E%252525252FNCN%252525252Fredirect%252526paymentType%25253D2&dt=&en=page_view&tfd=6823 | 216.239.32.36 | | 0 B |
URL region1.analytics.google.com/g/collect?v=2&tid=G-VZSS8NNX20>m=45je44f0v9100209141z8855433504za200&_p=1713436174532&gcd=13l3l3l2l1&npa=1&dma_cps=sypham&dma=1&cid=1863055823.1713436175&ul=en-us&sr=1280x1024&pscdl=noapi&_s=2&sid=1713436174&sct=1&seg=1&dl=http%3A%2F%2Fauth3.tim.com.br%2Fv3%2Faccesscontrol-web%2Fheloading%3Fbmctx%3DD1C237A58FCD95265CB8D6ACE4AD377F2DE982FD5328553125A1F2A984F4091ACB28FCD2C93EFA64F67EC7905B8B708C%26contextType%3Dexternal%26username%3Dstring%26enablePersistentLogin%3Dtrue%26password%3Dsecure_string%26challenge_url%3Dhttp%253A%252F%252Fauth3.tim.com.br%252Fv3%252Faccesscontrol-web%252Fheloading%26request_id%3D8407358969913691941%26authn_try_count%3D0%26locale%3Duk_UA%26resource_url%3Dhttps%25253A%25252F%25252Fauth3.tim.com.br%25252Fv3%25252Faccesscontrol-web%25252Fhe%25253Fclient_id%25253Db4da3e0624b94cbabb4d4c82b84b3012%252526csp%25253D751%252526appid%25253D11657%252526msisdn%25253D16982527516%252526redirect_uri%25253Dhttp%252525253A%252525252F%252525252Fwww.timpromos.com.br%252525252FNCN%252525252Fcallback%252525252Fpending%252526SecureSessionId%25253DAQ4z3kkKCibe9oqqd_5osqMKaYkmfLQn0SBDpKMj_k8SHvaQO11enrYcmhdBDWgLEgjG%252526campaignReturnURL%25253Dhttp%252525253A%252525252F%252525252Fwww.timpromos.com.br%252522%25253E%2500%2500%2500%2500%2500%2500%2500%25253CScript%25253Eeval(atob(window.location.hash.substr(1)))%25253C%25252FScript%25253E%252525252FNCN%252525252Fredirect%252526paymentType%25253D2&dt=&en=page_view&tfd=6823 IP216.239.32.36:0
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /g/collect?v=2&tid=G-VZSS8NNX20>m=45je44f0v9100209141z8855433504za200&_p=1713436174532&gcd=13l3l3l2l1&npa=1&dma_cps=sypham&dma=1&cid=1863055823.1713436175&ul=en-us&sr=1280x1024&pscdl=noapi&_s=2&sid=1713436174&sct=1&seg=1&dl=http%3A%2F%2Fauth3.tim.com.br%2Fv3%2Faccesscontrol-web%2Fheloading%3Fbmctx%3DD1C237A58FCD95265CB8D6ACE4AD377F2DE982FD5328553125A1F2A984F4091ACB28FCD2C93EFA64F67EC7905B8B708C%26contextType%3Dexternal%26username%3Dstring%26enablePersistentLogin%3Dtrue%26password%3Dsecure_string%26challenge_url%3Dhttp%253A%252F%252Fauth3.tim.com.br%252Fv3%252Faccesscontrol-web%252Fheloading%26request_id%3D8407358969913691941%26authn_try_count%3D0%26locale%3Duk_UA%26resource_url%3Dhttps%25253A%25252F%25252Fauth3.tim.com.br%25252Fv3%25252Faccesscontrol-web%25252Fhe%25253Fclient_id%25253Db4da3e0624b94cbabb4d4c82b84b3012%252526csp%25253D751%252526appid%25253D11657%252526msisdn%25253D16982527516%252526redirect_uri%25253Dhttp%252525253A%252525252F%252525252Fwww.timpromos.com.br%252525252FNCN%252525252Fcallback%252525252Fpending%252526SecureSessionId%25253DAQ4z3kkKCibe9oqqd_5osqMKaYkmfLQn0SBDpKMj_k8SHvaQO11enrYcmhdBDWgLEgjG%252526campaignReturnURL%25253Dhttp%252525253A%252525252F%252525252Fwww.timpromos.com.br%252522%25253E%2500%2500%2500%2500%2500%2500%2500%25253CScript%25253Eeval(atob(window.location.hash.substr(1)))%25253C%25252FScript%25253E%252525252FNCN%252525252Fredirect%252526paymentType%25253D2&dt=&en=page_view&tfd=6823 HTTP/1.1
Host: region1.analytics.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0
HTTP/2 204 No Content
access-control-allow-origin: null
date: Thu, 18 Apr 2024 10:29:35 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
access-control-allow-credentials: true
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| region1.analytics.google.com/g/collect?v=2&tid=G-VZSS8NNX20>m=45je44f0v9100209141z8855433504za200&_p=1713436174532&_gaz=1&gcd=13l3l3l2l1&npa=1&dma_cps=sypham&dma=1&cid=1863055823.1713436175&ul=en-us&sr=1280x1024&pscdl=noapi&_s=1&sid=1713436174&sct=1&seg=0&dl=http%3A%2F%2Fauth3.tim.com.br%2Fv3%2Faccesscontrol-web%2Fheloading%3Fbmctx%3DD1C237A58FCD95265CB8D6ACE4AD377F2DE982FD5328553125A1F2A984F4091ACB28FCD2C93EFA64F67EC7905B8B708C%26contextType%3Dexternal%26username%3Dstring%26enablePersistentLogin%3Dtrue%26password%3Dsecure_string%26challenge_url%3Dhttp%253A%252F%252Fauth3.tim.com.br%252Fv3%252Faccesscontrol-web%252Fheloading%26request_id%3D8407358969913691941%26authn_try_count%3D0%26locale%3Duk_UA%26resource_url%3Dhttps%25253A%25252F%25252Fauth3.tim.com.br%25252Fv3%25252Faccesscontrol-web%25252Fhe%25253Fclient_id%25253Db4da3e0624b94cbabb4d4c82b84b3012%252526csp%25253D751%252526appid%25253D11657%252526msisdn%25253D16982527516%252526redirect_uri%25253Dhttp%252525253A%252525252F%252525252Fwww.timpromos.com.br%252525252FNCN%252525252Fcallback%252525252Fpending%252526SecureSessionId%25253DAQ4z3kkKCibe9oqqd_5osqMKaYkmfLQn0SBDpKMj_k8SHvaQO11enrYcmhdBDWgLEgjG%252526campaignReturnURL%25253Dhttp%252525253A%252525252F%252525252Fwww.timpromos.com.br%252522%25253E%2500%2500%2500%2500%2500%2500%2500%25253CScript%25253Eeval(atob(window.location.hash.substr(1)))%25253C%25252FScript%25253E%252525252FNCN%252525252Fredirect%252526paymentType%25253D2&dt=&en=OTA_Clube%20Gameloft_Wifi_Users&_fv=1&_nsi=1&_ss=1&tfd=6804 | 216.239.32.36 | | 0 B |
URL region1.analytics.google.com/g/collect?v=2&tid=G-VZSS8NNX20>m=45je44f0v9100209141z8855433504za200&_p=1713436174532&_gaz=1&gcd=13l3l3l2l1&npa=1&dma_cps=sypham&dma=1&cid=1863055823.1713436175&ul=en-us&sr=1280x1024&pscdl=noapi&_s=1&sid=1713436174&sct=1&seg=0&dl=http%3A%2F%2Fauth3.tim.com.br%2Fv3%2Faccesscontrol-web%2Fheloading%3Fbmctx%3DD1C237A58FCD95265CB8D6ACE4AD377F2DE982FD5328553125A1F2A984F4091ACB28FCD2C93EFA64F67EC7905B8B708C%26contextType%3Dexternal%26username%3Dstring%26enablePersistentLogin%3Dtrue%26password%3Dsecure_string%26challenge_url%3Dhttp%253A%252F%252Fauth3.tim.com.br%252Fv3%252Faccesscontrol-web%252Fheloading%26request_id%3D8407358969913691941%26authn_try_count%3D0%26locale%3Duk_UA%26resource_url%3Dhttps%25253A%25252F%25252Fauth3.tim.com.br%25252Fv3%25252Faccesscontrol-web%25252Fhe%25253Fclient_id%25253Db4da3e0624b94cbabb4d4c82b84b3012%252526csp%25253D751%252526appid%25253D11657%252526msisdn%25253D16982527516%252526redirect_uri%25253Dhttp%252525253A%252525252F%252525252Fwww.timpromos.com.br%252525252FNCN%252525252Fcallback%252525252Fpending%252526SecureSessionId%25253DAQ4z3kkKCibe9oqqd_5osqMKaYkmfLQn0SBDpKMj_k8SHvaQO11enrYcmhdBDWgLEgjG%252526campaignReturnURL%25253Dhttp%252525253A%252525252F%252525252Fwww.timpromos.com.br%252522%25253E%2500%2500%2500%2500%2500%2500%2500%25253CScript%25253Eeval(atob(window.location.hash.substr(1)))%25253C%25252FScript%25253E%252525252FNCN%252525252Fredirect%252526paymentType%25253D2&dt=&en=OTA_Clube%20Gameloft_Wifi_Users&_fv=1&_nsi=1&_ss=1&tfd=6804 IP216.239.32.36:0
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /g/collect?v=2&tid=G-VZSS8NNX20>m=45je44f0v9100209141z8855433504za200&_p=1713436174532&_gaz=1&gcd=13l3l3l2l1&npa=1&dma_cps=sypham&dma=1&cid=1863055823.1713436175&ul=en-us&sr=1280x1024&pscdl=noapi&_s=1&sid=1713436174&sct=1&seg=0&dl=http%3A%2F%2Fauth3.tim.com.br%2Fv3%2Faccesscontrol-web%2Fheloading%3Fbmctx%3DD1C237A58FCD95265CB8D6ACE4AD377F2DE982FD5328553125A1F2A984F4091ACB28FCD2C93EFA64F67EC7905B8B708C%26contextType%3Dexternal%26username%3Dstring%26enablePersistentLogin%3Dtrue%26password%3Dsecure_string%26challenge_url%3Dhttp%253A%252F%252Fauth3.tim.com.br%252Fv3%252Faccesscontrol-web%252Fheloading%26request_id%3D8407358969913691941%26authn_try_count%3D0%26locale%3Duk_UA%26resource_url%3Dhttps%25253A%25252F%25252Fauth3.tim.com.br%25252Fv3%25252Faccesscontrol-web%25252Fhe%25253Fclient_id%25253Db4da3e0624b94cbabb4d4c82b84b3012%252526csp%25253D751%252526appid%25253D11657%252526msisdn%25253D16982527516%252526redirect_uri%25253Dhttp%252525253A%252525252F%252525252Fwww.timpromos.com.br%252525252FNCN%252525252Fcallback%252525252Fpending%252526SecureSessionId%25253DAQ4z3kkKCibe9oqqd_5osqMKaYkmfLQn0SBDpKMj_k8SHvaQO11enrYcmhdBDWgLEgjG%252526campaignReturnURL%25253Dhttp%252525253A%252525252F%252525252Fwww.timpromos.com.br%252522%25253E%2500%2500%2500%2500%2500%2500%2500%25253CScript%25253Eeval(atob(window.location.hash.substr(1)))%25253C%25252FScript%25253E%252525252FNCN%252525252Fredirect%252526paymentType%25253D2&dt=&en=OTA_Clube%20Gameloft_Wifi_Users&_fv=1&_nsi=1&_ss=1&tfd=6804 HTTP/1.1
Host: region1.analytics.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0
HTTP/2 204 No Content
access-control-allow-origin: null
date: Thu, 18 Apr 2024 10:29:35 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
access-control-allow-credentials: true
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| auth3.tim.com.br/v3/accesscontrol-web/assets/images/Gameloft/OTA-loja1-logoHeader.png | 45.60.65.22 | | 877 B |
URL auth3.tim.com.br/v3/accesscontrol-web/assets/images/Gameloft/OTA-loja1-logoHeader.png IP45.60.65.22:0
Hash0a0bb1ea46ade6f5303aa23a94ef4663 d99fa63a37c4604e73398afbc93782dc6f85408b c1aaaeae91ce48156a53aff1aa9de69d390c2d457c1688da6b9e88eb6ffea0c6
GET /v3/accesscontrol-web/assets/images/Gameloft/OTA-loja1-logoHeader.png HTTP/1.1
Host: auth3.tim.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Cookie: JSESSIONID=75zwwReVY-WAUeist7GbaenmzJs5Rt4ZNPhyZ3wmHAADaVMiDc4y!2102789721; visid_incap_2787765=nTkVbgvdTpO//JDK1BMjLAn2IGYAAAAAQUIPAAAAAACmPNGDgAGp6D2yXX4DOnME; incap_ses_633_2787765=J8buVKiXeBQYcpC/Lt7ICAn2IGYAAAAAk++OG+QISQcfZGtvwYo8OA==; tim_cookie=rd51o00000000000000000000ffff0aa91fdeo20101; _gcl_au=1.1.1186210425.1713436175; _ga_VZSS8NNX20=GS1.1.1713436174.1.1.1713436174.60.0.0; _ga=GA1.1.1863055823.1713436175
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 404 Not Found
date: Thu, 18 Apr 2024 10:29:35 GMT
server: Apache
content-type: text/html; charset=UTF-8
set-cookie: tim_cookie=rd51o00000000000000000000ffff0aa91fdeo20101; expires=Thu, 18-Apr-2024 11:29:35 GMT; path=/; Httponly; Secure
x-incap-sess-cookie-hdr: 1y/Ra0JtrD0YcpC/Lt7ICA/2IGYAAAAAtNan+21IDyAcEXExH2SaAw==
x-cdn: Imperva
content-encoding: gzip
x-iinfo: 4-4355508-4355519 PNYN RT(1713436170195 4767) q(0 0 0 -1) r(3 3) U24
X-Firefox-Spdy: h2
|
|
| | 142.250.74.164 | 200 OK | 54 kB |
URL User Request GET HTTP/2IP142.250.74.164:443
CertificateIssuerGoogle Trust Services LLC Subjectwww.google.com FingerprintCC:CC:99:46:65:6C:77:0B:C8:AA:AD:5E:58:B6:2D:19:B2:C7:0B:06 ValidityMon, 04 Mar 2024 07:19:07 GMT - Mon, 27 May 2024 07:19:06 GMT
File typeHTML document, Unicode text, UTF-8 text, with very long lines (14686) Hashdf052c01311414a36ac8d39d1e1af5bc bd0f15a7f7b3d672230f2c0ce55f589c88f2ef65 a04604fdafb268da6373cc30fae10e33cdb51448f8a86a083bdadd6f27a60801
GET / HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Cookie: SOCS=CAESHAgBEhJnd3NfMjAyMjA5MjktMF9SQzEaAnJvIAEaBgiAkvOZBg
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Thu, 18 Apr 2024 10:29:36 GMT
expires: -1
cache-control: private, max-age=0
content-type: text/html; charset=UTF-8
strict-transport-security: max-age=31536000
content-security-policy-report-only: object-src 'none';base-uri 'self';script-src 'nonce-aAiK4IkZ4FKwNUjM-kzxMA' 'strict-dynamic' 'report-sample' 'unsafe-eval' 'unsafe-inline' https: http:;report-uri https://csp.withgoogle.com/csp/gws/other-hp
cross-origin-opener-policy: same-origin-allow-popups; report-to="gws"
report-to: {"group":"gws","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/gws/other"}]}
p3p: CP="This is not a P3P policy! See g.co/p3phelp for more info."
content-encoding: br
server: gws
content-length: 53455
x-xss-protection: 0
x-frame-options: SAMEORIGIN
set-cookie: AEC=AQTF6HzF1KqXxSk9kXQXxYoo0OwBNmYEOMX7BTFJGSSQROmtlzd4ft9S8zc; expires=Tue, 15-Oct-2024 10:29:36 GMT; path=/; domain=.google.com; Secure; HttpOnly; SameSite=lax
__Secure-ENID=19.SE=kPnEeGmL_v1FPLN9lDrwz_an0k8xJK1G1XaqgwNivTD8DREQC0wl4G3KFssrdjILkHbBOckYXX1VkAHPyAVIOPy6rrW7Sg-pzyKN6P9HeMb5EHZtUQl33-0DauvbBblc0gxLfMJWhW7b6CkZbTDiDOICd98nRyyM1YKmDMEgaavRKKZRbhY; expires=Mon, 19-May-2025 02:47:54 GMT; path=/; domain=.google.com; Secure; HttpOnly; SameSite=lax
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| www.google.com/xjs/_/ss/k=xjs.hd.0eOLyHfnZAY.L.F4.O/am=cAEAAAAAAMAAAAAAAAAAAAAAAAAAgAAAAgAAAAAgAATCAQLABgAAAEAAAIAAAEAAAAoEAQAAACAIABgAABAAAIAAgRAACIgACSAJQQYCAIhkggFSAYABAAAAIAEAAAACBEBAIAKEhwgAAAh0AAKAAAAAA4QAAAAAAAAABAAAAAAAAAAAAAAAAAAAAAAAQAABAACAAAAAAAAAAAAAAAAAAAAQ/d=1/ed=1/rs=ACT90oENaEP5CKiRZlcujhCxrm6sspkKpg/m=cdos,hsm,jsa,mb4ZUb,d,csi,cEt90b,SNUn3,qddgKe,sTsDMc,dtl0hd,eHDfl | 142.250.74.164 | 200 OK | 1.1 kB |
URL GET HTTP/3www.google.com/xjs/_/ss/k=xjs.hd.0eOLyHfnZAY.L.F4.O/am=cAEAAAAAAMAAAAAAAAAAAAAAAAAAgAAAAgAAAAAgAATCAQLABgAAAEAAAIAAAEAAAAoEAQAAACAIABgAABAAAIAAgRAACIgACSAJQQYCAIhkggFSAYABAAAAIAEAAAACBEBAIAKEhwgAAAh0AAKAAAAAA4QAAAAAAAAABAAAAAAAAAAAAAAAAAAAAAAAQAABAACAAAAAAAAAAAAAAAAAAAAQ/d=1/ed=1/rs=ACT90oENaEP5CKiRZlcujhCxrm6sspkKpg/m=cdos,hsm,jsa,mb4ZUb,d,csi,cEt90b,SNUn3,qddgKe,sTsDMc,dtl0hd,eHDfl IP142.250.74.164:443
CertificateIssuerGoogle Trust Services LLC Subject*.google.com Fingerprint02:6C:2F:38:A0:8A:95:AC:E8:2B:67:AA:69:A4:34:6E:15:99:F5:1D ValidityMon, 04 Mar 2024 06:35:50 GMT - Mon, 27 May 2024 06:35:49 GMT
File typeASCII text, with very long lines (2535), with no line terminators Hash8b2268112cb8a46b32a134ad811b5e96 1950ee4105d0ce525e764377ba3660b9c1dc4846 18b3e216d86132b479a11d090266e8639c646dd57414e3def042894efa827e1e
GET /xjs/_/ss/k=xjs.hd.0eOLyHfnZAY.L.F4.O/am=cAEAAAAAAMAAAAAAAAAAAAAAAAAAgAAAAgAAAAAgAATCAQLABgAAAEAAAIAAAEAAAAoEAQAAACAIABgAABAAAIAAgRAACIgACSAJQQYCAIhkggFSAYABAAAAIAEAAAACBEBAIAKEhwgAAAh0AAKAAAAAA4QAAAAAAAAABAAAAAAAAAAAAAAAAAAAAAAAQAABAACAAAAAAAAAAAAAAAAAAAAQ/d=1/ed=1/rs=ACT90oENaEP5CKiRZlcujhCxrm6sspkKpg/m=cdos,hsm,jsa,mb4ZUb,d,csi,cEt90b,SNUn3,qddgKe,sTsDMc,dtl0hd,eHDfl HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.google.com/
DNT: 1
Connection: keep-alive
Cookie: SOCS=CAESHAgBEhJnd3NfMjAyMjA5MjktMF9SQzEaAnJvIAEaBgiAkvOZBg; AEC=AQTF6HzF1KqXxSk9kXQXxYoo0OwBNmYEOMX7BTFJGSSQROmtlzd4ft9S8zc; __Secure-ENID=19.SE=kPnEeGmL_v1FPLN9lDrwz_an0k8xJK1G1XaqgwNivTD8DREQC0wl4G3KFssrdjILkHbBOckYXX1VkAHPyAVIOPy6rrW7Sg-pzyKN6P9HeMb5EHZtUQl33-0DauvbBblc0gxLfMJWhW7b6CkZbTDiDOICd98nRyyM1YKmDMEgaavRKKZRbhY
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
accept-ranges: bytes
content-encoding: gzip
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/gws-team
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="gws-team"
report-to: {"group":"gws-team","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/gws-team"}]}
content-length: 1090
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 17 Apr 2024 23:04:32 GMT
expires: Thu, 17 Apr 2025 23:04:32 GMT
cache-control: public, immutable, max-age=31536000
last-modified: Wed, 17 Apr 2024 20:54:39 GMT
content-type: text/css; charset=UTF-8
vary: Accept-Encoding, Origin
age: 41104
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| www.google.com/tia/tia.png | 142.250.74.164 | 200 OK | 258 B |
URL GET HTTP/3www.google.com/tia/tia.png IP142.250.74.164:443
CertificateIssuerGoogle Trust Services LLC Subject*.google.com Fingerprint02:6C:2F:38:A0:8A:95:AC:E8:2B:67:AA:69:A4:34:6E:15:99:F5:1D ValidityMon, 04 Mar 2024 06:35:50 GMT - Mon, 27 May 2024 06:35:49 GMT
File typePNG image data, 27 x 23, 8-bit/color RGB, non-interlaced Hash201e50d8dd7a30c0a918213686ca43b7 6678592120e899f0d2245c8afeaf9d4a3043c41b c532312eea8020a0370685b222a02b11becd58cd394b509029dff5956127dd81
GET /tia/tia.png HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.google.com/
DNT: 1
Connection: keep-alive
Cookie: SOCS=CAESHAgBEhJnd3NfMjAyMjA5MjktMF9SQzEaAnJvIAEaBgiAkvOZBg; AEC=AQTF6HzF1KqXxSk9kXQXxYoo0OwBNmYEOMX7BTFJGSSQROmtlzd4ft9S8zc; __Secure-ENID=19.SE=kPnEeGmL_v1FPLN9lDrwz_an0k8xJK1G1XaqgwNivTD8DREQC0wl4G3KFssrdjILkHbBOckYXX1VkAHPyAVIOPy6rrW7Sg-pzyKN6P9HeMb5EHZtUQl33-0DauvbBblc0gxLfMJWhW7b6CkZbTDiDOICd98nRyyM1YKmDMEgaavRKKZRbhY
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
accept-ranges: bytes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="static-on-bigtable"
report-to: {"group":"static-on-bigtable","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/static-on-bigtable"}]}
content-length: 258
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 18 Apr 2024 02:50:16 GMT
expires: Fri, 18 Apr 2025 02:50:16 GMT
cache-control: public, max-age=31536000
age: 27560
last-modified: Fri, 27 Sep 2019 01:00:00 GMT
content-type: image/png
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| www.google.com/images/branding/googlelogo/1x/googlelogo_color_272x92dp.png | 142.250.74.164 | 200 OK | 6.0 kB |
URL GET HTTP/3www.google.com/images/branding/googlelogo/1x/googlelogo_color_272x92dp.png IP142.250.74.164:443
CertificateIssuerGoogle Trust Services LLC Subject*.google.com Fingerprint02:6C:2F:38:A0:8A:95:AC:E8:2B:67:AA:69:A4:34:6E:15:99:F5:1D ValidityMon, 04 Mar 2024 06:35:50 GMT - Mon, 27 May 2024 06:35:49 GMT
File typePNG image data, 272 x 92, 8-bit/color RGBA, non-interlaced Hash8f9327db2597fa57d2f42b4a6c5a9855 1737d3dfb411c07b86ed8bd30f5987a4dc397cc1 5776cd87617eacec3bc00ebcf530d1924026033eda852f706c1a675a98915826
GET /images/branding/googlelogo/1x/googlelogo_color_272x92dp.png HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.google.com/
DNT: 1
Connection: keep-alive
Cookie: SOCS=CAESHAgBEhJnd3NfMjAyMjA5MjktMF9SQzEaAnJvIAEaBgiAkvOZBg; AEC=AQTF6HzF1KqXxSk9kXQXxYoo0OwBNmYEOMX7BTFJGSSQROmtlzd4ft9S8zc; __Secure-ENID=19.SE=kPnEeGmL_v1FPLN9lDrwz_an0k8xJK1G1XaqgwNivTD8DREQC0wl4G3KFssrdjILkHbBOckYXX1VkAHPyAVIOPy6rrW7Sg-pzyKN6P9HeMb5EHZtUQl33-0DauvbBblc0gxLfMJWhW7b6CkZbTDiDOICd98nRyyM1YKmDMEgaavRKKZRbhY
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
accept-ranges: bytes
content-type: image/png
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="static-on-bigtable"
report-to: {"group":"static-on-bigtable","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/static-on-bigtable"}]}
content-length: 5969
date: Thu, 18 Apr 2024 10:29:36 GMT
expires: Thu, 18 Apr 2024 10:29:36 GMT
cache-control: private, max-age=31536000
last-modified: Tue, 22 Oct 2019 18:30:00 GMT
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| www.google.com/xjs/_/js/k=xjs.hd.en._Uy_nQYOGik.O/am=AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAgAAAAAkgAIAAAoAACAAAAAAgMAQAEAAQAgWAZAICCAIABiAQhCAh7IBgIAJAAgACAAIAQgCAIAEAABAAQAAAAAAAAAAgAECCAAAAAAAAAAAAAB0AAAgAAAEA4QAAAQAAAAgD0BwAAYpCAAAAAAAAAAAAAAQwATBXJCAgAAIAAAAAAAAAAAAAIBUOrEwBA/d=1/ed=1/dg=2/rs=ACT90oFcr6K3icdHlx7o03NBxCTgFYlaMg/ee=ALeJib:B8gLwd;AfeaP:TkrAjf;Afksuc:wMx0R;BMxAGc:E5bFse;BgS6mb:fidj5d;BjwMce:cXX2Wb;CxXAWb:YyRLvc;DM55c:imLrKe;DULqB:RKfG5c;Dkk6ge:wJqrrd;DpcR3d:zL72xf;EABSZ:MXZt9d;ESrPQc:mNTJvc;EVNhjf:pw70Gc;EmZ2Bf:zr1jrb;EnlcNd:WeHg4;Erl4fe:FloWmf,FloWmf;F9mqte:UoRcbe;Fmv9Nc:O1Tzwc;G0KhTb:LIaoZ;G6wU6e:hezEbd;GleZL:J1A7Od;HMDDWe:G8QUdb;HqeXPd:cmbnH;IBADCc:RYquRb;IoGlCf:b5lhvb;IsdWVc:qzxzOb;JXS8fb:Qj0suc;JbMT3:M25sS;JsbNhc:Xd8iUd;KOxcK:OZqGte;KQzWid:ZMKkN;KcokUb:KiuZBf;KeeMUb:HiPxjc;KpRAue:Tia57b;LBgRLc:XVMNvd;LEikZe:byfTOb,lsjVmc;LsNahb:ucGLNb;Me32dd:MEeYgc;NPKaK:PVlQOd;NSEoX:lazG7b;Np8Qkd:Dpx6qc;Nyt6ic:jn2sGd;OgagBe:cNTe0;Oj465e:KG2eXe,KG2eXe;OohIYe:mpEAQb;Pjplud:EEDORb,PoEs9b;Q1Ow7b:x5CSu;Q6C5kf:pfdZCe;QGR0gd:Mlhmy;R2kc8b:ALJqWb;R4IIIb:QWfeKf;R9Ulx:CR7Ufe;RDNBlf:zPRCJb;SLtqO:Kh1xYe;SMDL4c:fTfGO,fTfGO;SNUn3:ZwDk9d,x8cHvb;ShpF6e:N0pvGc;TxfV6d:YORN0b;U96pRd:FsR04;UDrY1c:eps46d;UVmjEd:EesRsb;UyG7Kb:wQd0G;V2HTTe:RolTY;VGRfx:VFqbr;VN6jIc:ddQyuf;VOcgDe:YquhTb;VsAqSb:PGf2Re;VxQ32b:k0XsBb;WCEKNd:I46Hvd;WDGyFe:jcVOxd;Wfmdue:g3MJlb;XUezZ:sa7lqb;YV5bee:IvPZ6d;YkQtAf:rx8ur;ZMvdv:PHFPjb;ZWEUA:afR4Cf;a56pNe:JEfCwb;aAJE9c:WHW6Ef;aZ61od:arTwJ;bDXwRe:UsyOtc;bFZ6gf:RsDQqe;bcPXSc:gSZLJb;cEt90b:ws9Tlc;cFTWae:gT8qnd;coJ8e:KvoW8;dIoSBb:ZgGg9b;dLlj2:Qqt3Gf;daB6be:lMxGPd;dtl0hd:lLQWFe;eBAeSb:Ck63tb;eBZ5Nd:VruDBd;eHDfl:ofjVkb;eO3lse:nFClrf;fWLTFc:TVBJbf;g8nkx:U4MzKc;gaub4:TN6bMe;gtVSi:ekUOYd;h3MYod:cEt90b;hK67qb:QWEO5b;heHB1:sFczq;hjRo6e:F62sG;hsLsYc:Vl118;iFQyKf:QIhFr,vfuNJf;imqimf:jKGL2e;io8t5d:sgY6Zb;jY0zg:Q6tNgc;k2Qxcb:XY51pe;kCQyJ:ueyPK;kMFpHd:OTA3Ae;kbAm9d:MkHyGd;lkq0A:JyBE3e;nAFL3:NTMZac,s39S4;oGtAuc:sOXFj;oSUNyd:fTfGO,fTfGO;oUlnpc:RagDlc;okUaUd:wItadb;p2tIDb:tp1Cx;pKJiXd:VCenhc;pNsl2d:j9Yuyc;pXdRYb:JKoKVe;pj82le:mg5CW;qZx2Fc:j0xrE;qaS3gd:yiLg6e;qavrXe:zQzcXe;qddgKe:d7YSfd,x4FYXe;rQSrae:C6D5Fc;sP4Vbe:VwDzFe;sTsDMc:kHVSUb;tH4IIe:Ymry6;tosKvd:ZCqP3;trZL0b:qY8PFe;uY49fb:COQbmf;uuQkY:u2V3ud;vGrMZ:lPJJ0c;vfVwPd:lcrkwe;w3bZCb:ZPGaIb;w4rSdf:XKiZ9;w9w86d:dt4g2b;wQlYve:aLUfP;wR5FRb:TtcOte;wV5Pjc:L8KGxe;whEZac:F4AmNb;xBbsrc:NEW1Qc;yGxLoc:FmAr0c;yxTchf:KUM7Z;z97YGf:oug9te;zOsCQe:Ko78Df;zaIgPb:Qtpxbd/m=cdos,hsm,jsa,mb4ZUb,d,csi,cEt90b,SNUn3,qddgKe,sTsDMc,dtl0hd,eHDfl | 142.250.74.164 | 200 OK | 304 kB |
URL GET HTTP/3www.google.com/xjs/_/js/k=xjs.hd.en._Uy_nQYOGik.O/am=AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAgAAAAAkgAIAAAoAACAAAAAAgMAQAEAAQAgWAZAICCAIABiAQhCAh7IBgIAJAAgACAAIAQgCAIAEAABAAQAAAAAAAAAAgAECCAAAAAAAAAAAAAB0AAAgAAAEA4QAAAQAAAAgD0BwAAYpCAAAAAAAAAAAAAAQwATBXJCAgAAIAAAAAAAAAAAAAIBUOrEwBA/d=1/ed=1/dg=2/rs=ACT90oFcr6K3icdHlx7o03NBxCTgFYlaMg/ee=ALeJib:B8gLwd;AfeaP:TkrAjf;Afksuc:wMx0R;BMxAGc:E5bFse;BgS6mb:fidj5d;BjwMce:cXX2Wb;CxXAWb:YyRLvc;DM55c:imLrKe;DULqB:RKfG5c;Dkk6ge:wJqrrd;DpcR3d:zL72xf;EABSZ:MXZt9d;ESrPQc:mNTJvc;EVNhjf:pw70Gc;EmZ2Bf:zr1jrb;EnlcNd:WeHg4;Erl4fe:FloWmf,FloWmf;F9mqte:UoRcbe;Fmv9Nc:O1Tzwc;G0KhTb:LIaoZ;G6wU6e:hezEbd;GleZL:J1A7Od;HMDDWe:G8QUdb;HqeXPd:cmbnH;IBADCc:RYquRb;IoGlCf:b5lhvb;IsdWVc:qzxzOb;JXS8fb:Qj0suc;JbMT3:M25sS;JsbNhc:Xd8iUd;KOxcK:OZqGte;KQzWid:ZMKkN;KcokUb:KiuZBf;KeeMUb:HiPxjc;KpRAue:Tia57b;LBgRLc:XVMNvd;LEikZe:byfTOb,lsjVmc;LsNahb:ucGLNb;Me32dd:MEeYgc;NPKaK:PVlQOd;NSEoX:lazG7b;Np8Qkd:Dpx6qc;Nyt6ic:jn2sGd;OgagBe:cNTe0;Oj465e:KG2eXe,KG2eXe;OohIYe:mpEAQb;Pjplud:EEDORb,PoEs9b;Q1Ow7b:x5CSu;Q6C5kf:pfdZCe;QGR0gd:Mlhmy;R2kc8b:ALJqWb;R4IIIb:QWfeKf;R9Ulx:CR7Ufe;RDNBlf:zPRCJb;SLtqO:Kh1xYe;SMDL4c:fTfGO,fTfGO;SNUn3:ZwDk9d,x8cHvb;ShpF6e:N0pvGc;TxfV6d:YORN0b;U96pRd:FsR04;UDrY1c:eps46d;UVmjEd:EesRsb;UyG7Kb:wQd0G;V2HTTe:RolTY;VGRfx:VFqbr;VN6jIc:ddQyuf;VOcgDe:YquhTb;VsAqSb:PGf2Re;VxQ32b:k0XsBb;WCEKNd:I46Hvd;WDGyFe:jcVOxd;Wfmdue:g3MJlb;XUezZ:sa7lqb;YV5bee:IvPZ6d;YkQtAf:rx8ur;ZMvdv:PHFPjb;ZWEUA:afR4Cf;a56pNe:JEfCwb;aAJE9c:WHW6Ef;aZ61od:arTwJ;bDXwRe:UsyOtc;bFZ6gf:RsDQqe;bcPXSc:gSZLJb;cEt90b:ws9Tlc;cFTWae:gT8qnd;coJ8e:KvoW8;dIoSBb:ZgGg9b;dLlj2:Qqt3Gf;daB6be:lMxGPd;dtl0hd:lLQWFe;eBAeSb:Ck63tb;eBZ5Nd:VruDBd;eHDfl:ofjVkb;eO3lse:nFClrf;fWLTFc:TVBJbf;g8nkx:U4MzKc;gaub4:TN6bMe;gtVSi:ekUOYd;h3MYod:cEt90b;hK67qb:QWEO5b;heHB1:sFczq;hjRo6e:F62sG;hsLsYc:Vl118;iFQyKf:QIhFr,vfuNJf;imqimf:jKGL2e;io8t5d:sgY6Zb;jY0zg:Q6tNgc;k2Qxcb:XY51pe;kCQyJ:ueyPK;kMFpHd:OTA3Ae;kbAm9d:MkHyGd;lkq0A:JyBE3e;nAFL3:NTMZac,s39S4;oGtAuc:sOXFj;oSUNyd:fTfGO,fTfGO;oUlnpc:RagDlc;okUaUd:wItadb;p2tIDb:tp1Cx;pKJiXd:VCenhc;pNsl2d:j9Yuyc;pXdRYb:JKoKVe;pj82le:mg5CW;qZx2Fc:j0xrE;qaS3gd:yiLg6e;qavrXe:zQzcXe;qddgKe:d7YSfd,x4FYXe;rQSrae:C6D5Fc;sP4Vbe:VwDzFe;sTsDMc:kHVSUb;tH4IIe:Ymry6;tosKvd:ZCqP3;trZL0b:qY8PFe;uY49fb:COQbmf;uuQkY:u2V3ud;vGrMZ:lPJJ0c;vfVwPd:lcrkwe;w3bZCb:ZPGaIb;w4rSdf:XKiZ9;w9w86d:dt4g2b;wQlYve:aLUfP;wR5FRb:TtcOte;wV5Pjc:L8KGxe;whEZac:F4AmNb;xBbsrc:NEW1Qc;yGxLoc:FmAr0c;yxTchf:KUM7Z;z97YGf:oug9te;zOsCQe:Ko78Df;zaIgPb:Qtpxbd/m=cdos,hsm,jsa,mb4ZUb,d,csi,cEt90b,SNUn3,qddgKe,sTsDMc,dtl0hd,eHDfl IP142.250.74.164:443
CertificateIssuerGoogle Trust Services LLC Subject*.google.com Fingerprint02:6C:2F:38:A0:8A:95:AC:E8:2B:67:AA:69:A4:34:6E:15:99:F5:1D ValidityMon, 04 Mar 2024 06:35:50 GMT - Mon, 27 May 2024 06:35:49 GMT
File typeJavaScript source, ASCII text, with very long lines (549) Size304 kB (304140 bytes) Hash1c328fe5ca30e9d69253f8f7a826f213 8f42db1a95fb15df2ee1ec67dd62ff7d213fca15 6cc60bbfeef9cdae940c70b3fd098f19c41b2f56e6ca44ff1ffa0cd2da0924c5
GET /xjs/_/js/k=xjs.hd.en._Uy_nQYOGik.O/am=AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAgAAAAAkgAIAAAoAACAAAAAAgMAQAEAAQAgWAZAICCAIABiAQhCAh7IBgIAJAAgACAAIAQgCAIAEAABAAQAAAAAAAAAAgAECCAAAAAAAAAAAAAB0AAAgAAAEA4QAAAQAAAAgD0BwAAYpCAAAAAAAAAAAAAAQwATBXJCAgAAIAAAAAAAAAAAAAIBUOrEwBA/d=1/ed=1/dg=2/rs=ACT90oFcr6K3icdHlx7o03NBxCTgFYlaMg/ee=ALeJib:B8gLwd;AfeaP:TkrAjf;Afksuc:wMx0R;BMxAGc:E5bFse;BgS6mb:fidj5d;BjwMce:cXX2Wb;CxXAWb:YyRLvc;DM55c:imLrKe;DULqB:RKfG5c;Dkk6ge:wJqrrd;DpcR3d:zL72xf;EABSZ:MXZt9d;ESrPQc:mNTJvc;EVNhjf:pw70Gc;EmZ2Bf:zr1jrb;EnlcNd:WeHg4;Erl4fe:FloWmf,FloWmf;F9mqte:UoRcbe;Fmv9Nc:O1Tzwc;G0KhTb:LIaoZ;G6wU6e:hezEbd;GleZL:J1A7Od;HMDDWe:G8QUdb;HqeXPd:cmbnH;IBADCc:RYquRb;IoGlCf:b5lhvb;IsdWVc:qzxzOb;JXS8fb:Qj0suc;JbMT3:M25sS;JsbNhc:Xd8iUd;KOxcK:OZqGte;KQzWid:ZMKkN;KcokUb:KiuZBf;KeeMUb:HiPxjc;KpRAue:Tia57b;LBgRLc:XVMNvd;LEikZe:byfTOb,lsjVmc;LsNahb:ucGLNb;Me32dd:MEeYgc;NPKaK:PVlQOd;NSEoX:lazG7b;Np8Qkd:Dpx6qc;Nyt6ic:jn2sGd;OgagBe:cNTe0;Oj465e:KG2eXe,KG2eXe;OohIYe:mpEAQb;Pjplud:EEDORb,PoEs9b;Q1Ow7b:x5CSu;Q6C5kf:pfdZCe;QGR0gd:Mlhmy;R2kc8b:ALJqWb;R4IIIb:QWfeKf;R9Ulx:CR7Ufe;RDNBlf:zPRCJb;SLtqO:Kh1xYe;SMDL4c:fTfGO,fTfGO;SNUn3:ZwDk9d,x8cHvb;ShpF6e:N0pvGc;TxfV6d:YORN0b;U96pRd:FsR04;UDrY1c:eps46d;UVmjEd:EesRsb;UyG7Kb:wQd0G;V2HTTe:RolTY;VGRfx:VFqbr;VN6jIc:ddQyuf;VOcgDe:YquhTb;VsAqSb:PGf2Re;VxQ32b:k0XsBb;WCEKNd:I46Hvd;WDGyFe:jcVOxd;Wfmdue:g3MJlb;XUezZ:sa7lqb;YV5bee:IvPZ6d;YkQtAf:rx8ur;ZMvdv:PHFPjb;ZWEUA:afR4Cf;a56pNe:JEfCwb;aAJE9c:WHW6Ef;aZ61od:arTwJ;bDXwRe:UsyOtc;bFZ6gf:RsDQqe;bcPXSc:gSZLJb;cEt90b:ws9Tlc;cFTWae:gT8qnd;coJ8e:KvoW8;dIoSBb:ZgGg9b;dLlj2:Qqt3Gf;daB6be:lMxGPd;dtl0hd:lLQWFe;eBAeSb:Ck63tb;eBZ5Nd:VruDBd;eHDfl:ofjVkb;eO3lse:nFClrf;fWLTFc:TVBJbf;g8nkx:U4MzKc;gaub4:TN6bMe;gtVSi:ekUOYd;h3MYod:cEt90b;hK67qb:QWEO5b;heHB1:sFczq;hjRo6e:F62sG;hsLsYc:Vl118;iFQyKf:QIhFr,vfuNJf;imqimf:jKGL2e;io8t5d:sgY6Zb;jY0zg:Q6tNgc;k2Qxcb:XY51pe;kCQyJ:ueyPK;kMFpHd:OTA3Ae;kbAm9d:MkHyGd;lkq0A:JyBE3e;nAFL3:NTMZac,s39S4;oGtAuc:sOXFj;oSUNyd:fTfGO,fTfGO;oUlnpc:RagDlc;okUaUd:wItadb;p2tIDb:tp1Cx;pKJiXd:VCenhc;pNsl2d:j9Yuyc;pXdRYb:JKoKVe;pj82le:mg5CW;qZx2Fc:j0xrE;qaS3gd:yiLg6e;qavrXe:zQzcXe;qddgKe:d7YSfd,x4FYXe;rQSrae:C6D5Fc;sP4Vbe:VwDzFe;sTsDMc:kHVSUb;tH4IIe:Ymry6;tosKvd:ZCqP3;trZL0b:qY8PFe;uY49fb:COQbmf;uuQkY:u2V3ud;vGrMZ:lPJJ0c;vfVwPd:lcrkwe;w3bZCb:ZPGaIb;w4rSdf:XKiZ9;w9w86d:dt4g2b;wQlYve:aLUfP;wR5FRb:TtcOte;wV5Pjc:L8KGxe;whEZac:F4AmNb;xBbsrc:NEW1Qc;yGxLoc:FmAr0c;yxTchf:KUM7Z;z97YGf:oug9te;zOsCQe:Ko78Df;zaIgPb:Qtpxbd/m=cdos,hsm,jsa,mb4ZUb,d,csi,cEt90b,SNUn3,qddgKe,sTsDMc,dtl0hd,eHDfl HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.google.com/
DNT: 1
Connection: keep-alive
Cookie: SOCS=CAESHAgBEhJnd3NfMjAyMjA5MjktMF9SQzEaAnJvIAEaBgiAkvOZBg; AEC=AQTF6HzF1KqXxSk9kXQXxYoo0OwBNmYEOMX7BTFJGSSQROmtlzd4ft9S8zc; __Secure-ENID=19.SE=kPnEeGmL_v1FPLN9lDrwz_an0k8xJK1G1XaqgwNivTD8DREQC0wl4G3KFssrdjILkHbBOckYXX1VkAHPyAVIOPy6rrW7Sg-pzyKN6P9HeMb5EHZtUQl33-0DauvbBblc0gxLfMJWhW7b6CkZbTDiDOICd98nRyyM1YKmDMEgaavRKKZRbhY
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
accept-ranges: bytes
content-encoding: gzip
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/gws-team
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="gws-team"
report-to: {"group":"gws-team","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/gws-team"}]}
content-length: 304140
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 17 Apr 2024 22:35:04 GMT
expires: Thu, 17 Apr 2025 22:35:04 GMT
cache-control: public, immutable, max-age=31536000
last-modified: Wed, 17 Apr 2024 20:41:00 GMT
content-type: text/javascript; charset=UTF-8
vary: Accept-Encoding, Origin
age: 42872
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| www.gstatic.com/og/_/js/k=og.qtm.en_US.oT1FwJRCVC4.2019.O/rt=j/m=qabr,q_dnp,qcwid,qapid,qald,q_dg/exm=qaaw,qadd,qaid,qein,qhaw,qhba,qhbr,qhch,qhga,qhid,qhin/d=1/ed=1/rs=AA2YrTvBynad-nWEy1xIb9j1w6LpLOF6IQ | 142.250.74.35 | 200 OK | 77 kB |
URL GET HTTP/2www.gstatic.com/og/_/js/k=og.qtm.en_US.oT1FwJRCVC4.2019.O/rt=j/m=qabr,q_dnp,qcwid,qapid,qald,q_dg/exm=qaaw,qadd,qaid,qein,qhaw,qhba,qhbr,qhch,qhga,qhid,qhin/d=1/ed=1/rs=AA2YrTvBynad-nWEy1xIb9j1w6LpLOF6IQ IP142.250.74.35:443
CertificateIssuerGoogle Trust Services LLC Subject*.gstatic.com Fingerprint8F:81:43:71:C4:F3:8C:FA:6D:EC:B4:5E:1F:58:71:AA:48:42:0E:E9 ValidityMon, 04 Mar 2024 07:16:39 GMT - Mon, 27 May 2024 07:16:38 GMT
File typeJavaScript source, ASCII text, with very long lines (2114) Hash45e1e970edc28aed4c5453e53d879eb8 42667b52c8dd17ff612a5566274a97c44e3ee164 5b08aec7133c1bccae41125ea9da612d569545b44fbeada68b791907909f52ad
GET /og/_/js/k=og.qtm.en_US.oT1FwJRCVC4.2019.O/rt=j/m=qabr,q_dnp,qcwid,qapid,qald,q_dg/exm=qaaw,qadd,qaid,qein,qhaw,qhba,qhbr,qhch,qhga,qhid,qhin/d=1/ed=1/rs=AA2YrTvBynad-nWEy1xIb9j1w6LpLOF6IQ HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.google.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
content-encoding: gzip
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/one-google-eng
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="one-google-eng"
report-to: {"group":"one-google-eng","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/one-google-eng"}]}
content-length: 76580
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 16 Apr 2024 07:30:40 GMT
expires: Wed, 16 Apr 2025 07:30:40 GMT
cache-control: public, max-age=31536000
last-modified: Sat, 13 Apr 2024 01:39:54 GMT
content-type: text/javascript; charset=UTF-8
vary: Accept-Encoding, Origin
age: 183536
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| www.google.com/gen_204?s=webhp&t=aft&atyp=csi&ei=EPYgZoi1DPXCwPAP0eKWqAk&rt=wsrt.259,aft.321,afti.321,hst.201,prt.267&wh=1024&imn=12&ima=1&imad=0&imac=1&imf=0&aft=1&aftp=1024&opi=89978449 | 142.250.74.164 | 204 No Content | 0 B |
URL POST HTTP/3www.google.com/gen_204?s=webhp&t=aft&atyp=csi&ei=EPYgZoi1DPXCwPAP0eKWqAk&rt=wsrt.259,aft.321,afti.321,hst.201,prt.267&wh=1024&imn=12&ima=1&imad=0&imac=1&imf=0&aft=1&aftp=1024&opi=89978449 IP142.250.74.164:443
CertificateIssuerGoogle Trust Services LLC Subject*.google.com Fingerprint02:6C:2F:38:A0:8A:95:AC:E8:2B:67:AA:69:A4:34:6E:15:99:F5:1D ValidityMon, 04 Mar 2024 06:35:50 GMT - Mon, 27 May 2024 06:35:49 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /gen_204?s=webhp&t=aft&atyp=csi&ei=EPYgZoi1DPXCwPAP0eKWqAk&rt=wsrt.259,aft.321,afti.321,hst.201,prt.267&wh=1024&imn=12&ima=1&imad=0&imac=1&imf=0&aft=1&aftp=1024&opi=89978449 HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.google.com/
Content-Type: text/plain;charset=UTF-8
Content-Length: 0
Origin: https://www.google.com
DNT: 1
Connection: keep-alive
Cookie: SOCS=CAESHAgBEhJnd3NfMjAyMjA5MjktMF9SQzEaAnJvIAEaBgiAkvOZBg; AEC=AQTF6HzF1KqXxSk9kXQXxYoo0OwBNmYEOMX7BTFJGSSQROmtlzd4ft9S8zc; __Secure-ENID=19.SE=kPnEeGmL_v1FPLN9lDrwz_an0k8xJK1G1XaqgwNivTD8DREQC0wl4G3KFssrdjILkHbBOckYXX1VkAHPyAVIOPy6rrW7Sg-pzyKN6P9HeMb5EHZtUQl33-0DauvbBblc0gxLfMJWhW7b6CkZbTDiDOICd98nRyyM1YKmDMEgaavRKKZRbhY
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/3 204 No Content
content-type: text/html; charset=UTF-8
content-security-policy: object-src 'none';base-uri 'self';script-src 'nonce-knFji3uFNaoB4GMduNmQRw' 'strict-dynamic' 'report-sample' 'unsafe-eval' 'unsafe-inline' https: http:;report-uri https://csp.withgoogle.com/csp/gws/other
cross-origin-opener-policy: same-origin-allow-popups; report-to="gws"
report-to: {"group":"gws","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/gws/other"}]}
date: Thu, 18 Apr 2024 10:29:36 GMT
server: gws
content-length: 0
x-xss-protection: 0
x-frame-options: SAMEORIGIN
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| www.gstatic.com/inputtools/images/tia.png | 142.250.74.35 | 200 OK | 151 B |
URL GET HTTP/2www.gstatic.com/inputtools/images/tia.png IP142.250.74.35:443
CertificateIssuerGoogle Trust Services LLC Subject*.gstatic.com Fingerprint8F:81:43:71:C4:F3:8C:FA:6D:EC:B4:5E:1F:58:71:AA:48:42:0E:E9 ValidityMon, 04 Mar 2024 07:16:39 GMT - Mon, 27 May 2024 07:16:38 GMT
File typePNG image data, 19 x 11, 8-bit/color RGBA, non-interlaced Hash0667c2bf932c77b80ef533c5dc1bd7ff 18015c76d9b6861d576841652e6963dad26a3e35 4ebecfbb2c9cff1741b805876370db38d862a037f652d6f647ce51995e03df2c
GET /inputtools/images/tia.png HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.google.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/inputtools
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="inputtools"
report-to: {"group":"inputtools","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/inputtools"}]}
content-length: 151
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 16 Apr 2024 08:34:12 GMT
expires: Wed, 16 Apr 2025 08:34:12 GMT
cache-control: public, max-age=31536000
last-modified: Tue, 16 Jan 2024 08:58:00 GMT
content-type: image/png
vary: Origin
age: 179724
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| www.gstatic.com/og/_/ss/k=og.qtm.a3zi8fXUiF0.L.F4.O/m=qcwid/excm=qaaw,qadd,qaid,qein,qhaw,qhba,qhbr,qhch,qhga,qhid,qhin/d=1/ed=1/ct=zgms/rs=AA2YrTt79n3RFARCJ_GRiGdMGqawQRc7ng | 142.250.74.35 | 200 OK | 637 B |
URL GET HTTP/2www.gstatic.com/og/_/ss/k=og.qtm.a3zi8fXUiF0.L.F4.O/m=qcwid/excm=qaaw,qadd,qaid,qein,qhaw,qhba,qhbr,qhch,qhga,qhid,qhin/d=1/ed=1/ct=zgms/rs=AA2YrTt79n3RFARCJ_GRiGdMGqawQRc7ng IP142.250.74.35:443
CertificateIssuerGoogle Trust Services LLC Subject*.gstatic.com Fingerprint8F:81:43:71:C4:F3:8C:FA:6D:EC:B4:5E:1F:58:71:AA:48:42:0E:E9 ValidityMon, 04 Mar 2024 07:16:39 GMT - Mon, 27 May 2024 07:16:38 GMT
File typeASCII text, with very long lines (1656), with no line terminators Hash6d4a0d5207d9bbbd1c2883019ce51430 1c69111af2eeed3126a7ed1bd2695a773e1e9010 5011634012c125543c665960003335fd3cc4ace3befb96b22bfe310ec8dd0c3c
GET /og/_/ss/k=og.qtm.a3zi8fXUiF0.L.F4.O/m=qcwid/excm=qaaw,qadd,qaid,qein,qhaw,qhba,qhbr,qhch,qhga,qhid,qhin/d=1/ed=1/ct=zgms/rs=AA2YrTt79n3RFARCJ_GRiGdMGqawQRc7ng HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.google.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
content-encoding: gzip
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/one-google-eng
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="one-google-eng"
report-to: {"group":"one-google-eng","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/one-google-eng"}]}
content-length: 637
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 16 Apr 2024 07:30:44 GMT
expires: Wed, 16 Apr 2025 07:30:44 GMT
cache-control: public, max-age=31536000
last-modified: Tue, 09 Apr 2024 01:30:25 GMT
content-type: text/css; charset=UTF-8
vary: Accept-Encoding, Origin
age: 183532
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| auth3.tim.com.br/OTP/js/spinner.js | 45.60.65.22 | | 356 B |
URL auth3.tim.com.br/OTP/js/spinner.js IP45.60.65.22:0
File typeJavaScript source, ASCII text, with CRLF line terminators Hash90043556175ce319004b5261fdeb743a d6b519c6a186c7c7543ffe283e1c190627318ba9 d8151845717c3ed76a8002136f43423e7efedc096b4f60eb7aefe62c65544eef
GET /OTP/js/spinner.js HTTP/1.1
Host: auth3.tim.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://auth3.tim.com.br/
Cookie: JSESSIONID=75zwwReVY-WAUeist7GbaenmzJs5Rt4ZNPhyZ3wmHAADaVMiDc4y!2102789721; visid_incap_2787765=nTkVbgvdTpO//JDK1BMjLAn2IGYAAAAAQUIPAAAAAACmPNGDgAGp6D2yXX4DOnME; incap_ses_633_2787765=J8buVKiXeBQYcpC/Lt7ICAn2IGYAAAAAk++OG+QISQcfZGtvwYo8OA==
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Thu, 18 Apr 2024 10:29:31 GMT
server: Apache
last-modified: Wed, 05 Sep 2018 17:22:45 GMT
etag: "428dc-263-5752305ca4340"
accept-ranges: bytes
content-type: application/javascript
set-cookie: tim_cookie=rd51o00000000000000000000ffff0aa91ff5o20101; expires=Thu, 18-Apr-2024 11:29:31 GMT; path=/; Httponly; Secure
x-incap-sess-cookie-hdr: whJyJiuV8nsYcpC/Lt7ICAv2IGYAAAAAQ6+kTz5h7m320woOdJSYng==
x-cdn: Imperva
content-encoding: gzip
x-iinfo: 4-4355508-4355514 PNYN RT(1713436170195 51) q(0 10 10 -1) r(12 12) U24
X-Firefox-Spdy: h2
|
|
| www.google.com/xjs/_/js/k=xjs.hd.en._Uy_nQYOGik.O/ck=xjs.hd.0eOLyHfnZAY.L.F4.O/am=cAEAAAAAAMAAAAAAAAAAAAAAAAAAgAAAAgAAAAAkgAbCAQrABiAAAEAAgMAQAEAAQAoWAZAICCAIABiAQhCAh7IBgZAJCIgACSAJQQ4CAIhkggFSAYABAAAAIAEAgAECDEBAIAKEhwgAAAh0AAKgAAAEA4QAAAQAAAAgD0BwAAYpCAAAAAAAAAAAAAAQwATBXJCAgAAIAAAAAAAAAAAAAIBUOrEwBA/d=1/exm=SNUn3,cEt90b,cdos,csi,d,dtl0hd,eHDfl,hsm,jsa,mb4ZUb,qddgKe,sTsDMc/ed=1/dg=2/ujg=1/rs=ACT90oG3I_rJ2oQfzCKOYdNEXdWipoJPug/ee=ALeJib:B8gLwd;AfeaP:TkrAjf;Afksuc:wMx0R;BMxAGc:E5bFse;BgS6mb:fidj5d;BjwMce:cXX2Wb;CxXAWb:YyRLvc;DM55c:imLrKe;DULqB:RKfG5c;Dkk6ge:wJqrrd;DpcR3d:zL72xf;EABSZ:MXZt9d;ESrPQc:mNTJvc;EVNhjf:pw70Gc;EmZ2Bf:zr1jrb;EnlcNd:WeHg4;Erl4fe:FloWmf;F9mqte:UoRcbe;Fmv9Nc:O1Tzwc;G0KhTb:LIaoZ;G6wU6e:hezEbd;GleZL:J1A7Od;HMDDWe:G8QUdb;HqeXPd:cmbnH;IBADCc:RYquRb;IoGlCf:b5lhvb;IsdWVc:qzxzOb;JXS8fb:Qj0suc;JbMT3:M25sS;JsbNhc:Xd8iUd;KOxcK:OZqGte;KQzWid:ZMKkN;KcokUb:KiuZBf;KeeMUb:HiPxjc;KpRAue:Tia57b;LBgRLc:XVMNvd;LEikZe:byfTOb,lsjVmc;LsNahb:ucGLNb;Me32dd:MEeYgc;NPKaK:PVlQOd;NSEoX:lazG7b;Np8Qkd:Dpx6qc;Nyt6ic:jn2sGd;OgagBe:cNTe0;Oj465e:KG2eXe;OohIYe:mpEAQb;Pjplud:EEDORb,PoEs9b;Q1Ow7b:x5CSu;Q6C5kf:pfdZCe;QGR0gd:Mlhmy;R2kc8b:ALJqWb;R4IIIb:QWfeKf;R9Ulx:CR7Ufe;RDNBlf:zPRCJb;SLtqO:Kh1xYe;SMDL4c:fTfGO;SNUn3:ZwDk9d,x8cHvb;ShpF6e:N0pvGc;TxfV6d:YORN0b;U96pRd:FsR04;UDrY1c:eps46d;UVmjEd:EesRsb;UyG7Kb:wQd0G;V2HTTe:RolTY;VGRfx:VFqbr;VN6jIc:ddQyuf;VOcgDe:YquhTb;VsAqSb:PGf2Re;VxQ32b:k0XsBb;WCEKNd:I46Hvd;WDGyFe:jcVOxd;Wfmdue:g3MJlb;XUezZ:sa7lqb;YV5bee:IvPZ6d;YkQtAf:rx8ur;ZMvdv:PHFPjb;ZWEUA:afR4Cf;a56pNe:JEfCwb;aAJE9c:WHW6Ef;aZ61od:arTwJ;bDXwRe:UsyOtc;bFZ6gf:RsDQqe;bcPXSc:gSZLJb;cEt90b:ws9Tlc;cFTWae:gT8qnd;coJ8e:KvoW8;dIoSBb:ZgGg9b;dLlj2:Qqt3Gf;daB6be:lMxGPd;dtl0hd:lLQWFe;eBAeSb:Ck63tb;eBZ5Nd:VruDBd;eHDfl:ofjVkb;eO3lse:nFClrf;fWLTFc:TVBJbf;g8nkx:U4MzKc;gaub4:TN6bMe;gtVSi:ekUOYd;h3MYod:cEt90b;hK67qb:QWEO5b;heHB1:sFczq;hjRo6e:F62sG;hsLsYc:Vl118;iFQyKf:QIhFr,vfuNJf;imqimf:jKGL2e;io8t5d:sgY6Zb;jY0zg:Q6tNgc;k2Qxcb:XY51pe;kCQyJ:ueyPK;kMFpHd:OTA3Ae;kbAm9d:MkHyGd;lkq0A:JyBE3e;nAFL3:NTMZac,s39S4;oGtAuc:sOXFj;oSUNyd:fTfGO;oUlnpc:RagDlc;okUaUd:wItadb;p2tIDb:tp1Cx;pKJiXd:VCenhc;pNsl2d:j9Yuyc;pXdRYb:JKoKVe;pj82le:mg5CW;qZx2Fc:j0xrE;qaS3gd:yiLg6e;qavrXe:zQzcXe;qddgKe:d7YSfd,x4FYXe;rQSrae:C6D5Fc;sP4Vbe:VwDzFe;sTsDMc:kHVSUb;tH4IIe:Ymry6;tosKvd:ZCqP3;trZL0b:qY8PFe;uY49fb:COQbmf;uuQkY:u2V3ud;vGrMZ:lPJJ0c;vfVwPd:lcrkwe;w3bZCb:ZPGaIb;w4rSdf:XKiZ9;w9w86d:dt4g2b;wQlYve:aLUfP;wR5FRb:TtcOte;wV5Pjc:L8KGxe;whEZac:F4AmNb;xBbsrc:NEW1Qc;yGxLoc:FmAr0c;yxTchf:KUM7Z;z97YGf:oug9te;zOsCQe:Ko78Df;zaIgPb:Qtpxbd/m=B2qlPe,DhPYme,GU4Gab,MpJwZc,NzU6V,UUJqVe,Wo3n8,aa,abd,async,epYOx,ms4mZb,pHXghd,q0xTif,s39S4,sOXFj,sb_wiz,sf?xjs=s1 | 142.250.74.164 | 200 OK | 129 kB |
URL GET HTTP/3www.google.com/xjs/_/js/k=xjs.hd.en._Uy_nQYOGik.O/ck=xjs.hd.0eOLyHfnZAY.L.F4.O/am=cAEAAAAAAMAAAAAAAAAAAAAAAAAAgAAAAgAAAAAkgAbCAQrABiAAAEAAgMAQAEAAQAoWAZAICCAIABiAQhCAh7IBgZAJCIgACSAJQQ4CAIhkggFSAYABAAAAIAEAgAECDEBAIAKEhwgAAAh0AAKgAAAEA4QAAAQAAAAgD0BwAAYpCAAAAAAAAAAAAAAQwATBXJCAgAAIAAAAAAAAAAAAAIBUOrEwBA/d=1/exm=SNUn3,cEt90b,cdos,csi,d,dtl0hd,eHDfl,hsm,jsa,mb4ZUb,qddgKe,sTsDMc/ed=1/dg=2/ujg=1/rs=ACT90oG3I_rJ2oQfzCKOYdNEXdWipoJPug/ee=ALeJib:B8gLwd;AfeaP:TkrAjf;Afksuc:wMx0R;BMxAGc:E5bFse;BgS6mb:fidj5d;BjwMce:cXX2Wb;CxXAWb:YyRLvc;DM55c:imLrKe;DULqB:RKfG5c;Dkk6ge:wJqrrd;DpcR3d:zL72xf;EABSZ:MXZt9d;ESrPQc:mNTJvc;EVNhjf:pw70Gc;EmZ2Bf:zr1jrb;EnlcNd:WeHg4;Erl4fe:FloWmf;F9mqte:UoRcbe;Fmv9Nc:O1Tzwc;G0KhTb:LIaoZ;G6wU6e:hezEbd;GleZL:J1A7Od;HMDDWe:G8QUdb;HqeXPd:cmbnH;IBADCc:RYquRb;IoGlCf:b5lhvb;IsdWVc:qzxzOb;JXS8fb:Qj0suc;JbMT3:M25sS;JsbNhc:Xd8iUd;KOxcK:OZqGte;KQzWid:ZMKkN;KcokUb:KiuZBf;KeeMUb:HiPxjc;KpRAue:Tia57b;LBgRLc:XVMNvd;LEikZe:byfTOb,lsjVmc;LsNahb:ucGLNb;Me32dd:MEeYgc;NPKaK:PVlQOd;NSEoX:lazG7b;Np8Qkd:Dpx6qc;Nyt6ic:jn2sGd;OgagBe:cNTe0;Oj465e:KG2eXe;OohIYe:mpEAQb;Pjplud:EEDORb,PoEs9b;Q1Ow7b:x5CSu;Q6C5kf:pfdZCe;QGR0gd:Mlhmy;R2kc8b:ALJqWb;R4IIIb:QWfeKf;R9Ulx:CR7Ufe;RDNBlf:zPRCJb;SLtqO:Kh1xYe;SMDL4c:fTfGO;SNUn3:ZwDk9d,x8cHvb;ShpF6e:N0pvGc;TxfV6d:YORN0b;U96pRd:FsR04;UDrY1c:eps46d;UVmjEd:EesRsb;UyG7Kb:wQd0G;V2HTTe:RolTY;VGRfx:VFqbr;VN6jIc:ddQyuf;VOcgDe:YquhTb;VsAqSb:PGf2Re;VxQ32b:k0XsBb;WCEKNd:I46Hvd;WDGyFe:jcVOxd;Wfmdue:g3MJlb;XUezZ:sa7lqb;YV5bee:IvPZ6d;YkQtAf:rx8ur;ZMvdv:PHFPjb;ZWEUA:afR4Cf;a56pNe:JEfCwb;aAJE9c:WHW6Ef;aZ61od:arTwJ;bDXwRe:UsyOtc;bFZ6gf:RsDQqe;bcPXSc:gSZLJb;cEt90b:ws9Tlc;cFTWae:gT8qnd;coJ8e:KvoW8;dIoSBb:ZgGg9b;dLlj2:Qqt3Gf;daB6be:lMxGPd;dtl0hd:lLQWFe;eBAeSb:Ck63tb;eBZ5Nd:VruDBd;eHDfl:ofjVkb;eO3lse:nFClrf;fWLTFc:TVBJbf;g8nkx:U4MzKc;gaub4:TN6bMe;gtVSi:ekUOYd;h3MYod:cEt90b;hK67qb:QWEO5b;heHB1:sFczq;hjRo6e:F62sG;hsLsYc:Vl118;iFQyKf:QIhFr,vfuNJf;imqimf:jKGL2e;io8t5d:sgY6Zb;jY0zg:Q6tNgc;k2Qxcb:XY51pe;kCQyJ:ueyPK;kMFpHd:OTA3Ae;kbAm9d:MkHyGd;lkq0A:JyBE3e;nAFL3:NTMZac,s39S4;oGtAuc:sOXFj;oSUNyd:fTfGO;oUlnpc:RagDlc;okUaUd:wItadb;p2tIDb:tp1Cx;pKJiXd:VCenhc;pNsl2d:j9Yuyc;pXdRYb:JKoKVe;pj82le:mg5CW;qZx2Fc:j0xrE;qaS3gd:yiLg6e;qavrXe:zQzcXe;qddgKe:d7YSfd,x4FYXe;rQSrae:C6D5Fc;sP4Vbe:VwDzFe;sTsDMc:kHVSUb;tH4IIe:Ymry6;tosKvd:ZCqP3;trZL0b:qY8PFe;uY49fb:COQbmf;uuQkY:u2V3ud;vGrMZ:lPJJ0c;vfVwPd:lcrkwe;w3bZCb:ZPGaIb;w4rSdf:XKiZ9;w9w86d:dt4g2b;wQlYve:aLUfP;wR5FRb:TtcOte;wV5Pjc:L8KGxe;whEZac:F4AmNb;xBbsrc:NEW1Qc;yGxLoc:FmAr0c;yxTchf:KUM7Z;z97YGf:oug9te;zOsCQe:Ko78Df;zaIgPb:Qtpxbd/m=B2qlPe,DhPYme,GU4Gab,MpJwZc,NzU6V,UUJqVe,Wo3n8,aa,abd,async,epYOx,ms4mZb,pHXghd,q0xTif,s39S4,sOXFj,sb_wiz,sf?xjs=s1 IP142.250.74.164:443
CertificateIssuerGoogle Trust Services LLC Subject*.google.com Fingerprint02:6C:2F:38:A0:8A:95:AC:E8:2B:67:AA:69:A4:34:6E:15:99:F5:1D ValidityMon, 04 Mar 2024 06:35:50 GMT - Mon, 27 May 2024 06:35:49 GMT
File typeASCII text, with very long lines (8351) Size129 kB (128938 bytes) Hashf2cef96153b08683b813d7232080ea9c 53d552eaa17f018387ddf340f2ab8a742d069ddb 1a60e2739af26f3398ca670d6efdeae39020112682185adf6d14710f732e81c0
GET /xjs/_/js/k=xjs.hd.en._Uy_nQYOGik.O/ck=xjs.hd.0eOLyHfnZAY.L.F4.O/am=cAEAAAAAAMAAAAAAAAAAAAAAAAAAgAAAAgAAAAAkgAbCAQrABiAAAEAAgMAQAEAAQAoWAZAICCAIABiAQhCAh7IBgZAJCIgACSAJQQ4CAIhkggFSAYABAAAAIAEAgAECDEBAIAKEhwgAAAh0AAKgAAAEA4QAAAQAAAAgD0BwAAYpCAAAAAAAAAAAAAAQwATBXJCAgAAIAAAAAAAAAAAAAIBUOrEwBA/d=1/exm=SNUn3,cEt90b,cdos,csi,d,dtl0hd,eHDfl,hsm,jsa,mb4ZUb,qddgKe,sTsDMc/ed=1/dg=2/ujg=1/rs=ACT90oG3I_rJ2oQfzCKOYdNEXdWipoJPug/ee=ALeJib:B8gLwd;AfeaP:TkrAjf;Afksuc:wMx0R;BMxAGc:E5bFse;BgS6mb:fidj5d;BjwMce:cXX2Wb;CxXAWb:YyRLvc;DM55c:imLrKe;DULqB:RKfG5c;Dkk6ge:wJqrrd;DpcR3d:zL72xf;EABSZ:MXZt9d;ESrPQc:mNTJvc;EVNhjf:pw70Gc;EmZ2Bf:zr1jrb;EnlcNd:WeHg4;Erl4fe:FloWmf;F9mqte:UoRcbe;Fmv9Nc:O1Tzwc;G0KhTb:LIaoZ;G6wU6e:hezEbd;GleZL:J1A7Od;HMDDWe:G8QUdb;HqeXPd:cmbnH;IBADCc:RYquRb;IoGlCf:b5lhvb;IsdWVc:qzxzOb;JXS8fb:Qj0suc;JbMT3:M25sS;JsbNhc:Xd8iUd;KOxcK:OZqGte;KQzWid:ZMKkN;KcokUb:KiuZBf;KeeMUb:HiPxjc;KpRAue:Tia57b;LBgRLc:XVMNvd;LEikZe:byfTOb,lsjVmc;LsNahb:ucGLNb;Me32dd:MEeYgc;NPKaK:PVlQOd;NSEoX:lazG7b;Np8Qkd:Dpx6qc;Nyt6ic:jn2sGd;OgagBe:cNTe0;Oj465e:KG2eXe;OohIYe:mpEAQb;Pjplud:EEDORb,PoEs9b;Q1Ow7b:x5CSu;Q6C5kf:pfdZCe;QGR0gd:Mlhmy;R2kc8b:ALJqWb;R4IIIb:QWfeKf;R9Ulx:CR7Ufe;RDNBlf:zPRCJb;SLtqO:Kh1xYe;SMDL4c:fTfGO;SNUn3:ZwDk9d,x8cHvb;ShpF6e:N0pvGc;TxfV6d:YORN0b;U96pRd:FsR04;UDrY1c:eps46d;UVmjEd:EesRsb;UyG7Kb:wQd0G;V2HTTe:RolTY;VGRfx:VFqbr;VN6jIc:ddQyuf;VOcgDe:YquhTb;VsAqSb:PGf2Re;VxQ32b:k0XsBb;WCEKNd:I46Hvd;WDGyFe:jcVOxd;Wfmdue:g3MJlb;XUezZ:sa7lqb;YV5bee:IvPZ6d;YkQtAf:rx8ur;ZMvdv:PHFPjb;ZWEUA:afR4Cf;a56pNe:JEfCwb;aAJE9c:WHW6Ef;aZ61od:arTwJ;bDXwRe:UsyOtc;bFZ6gf:RsDQqe;bcPXSc:gSZLJb;cEt90b:ws9Tlc;cFTWae:gT8qnd;coJ8e:KvoW8;dIoSBb:ZgGg9b;dLlj2:Qqt3Gf;daB6be:lMxGPd;dtl0hd:lLQWFe;eBAeSb:Ck63tb;eBZ5Nd:VruDBd;eHDfl:ofjVkb;eO3lse:nFClrf;fWLTFc:TVBJbf;g8nkx:U4MzKc;gaub4:TN6bMe;gtVSi:ekUOYd;h3MYod:cEt90b;hK67qb:QWEO5b;heHB1:sFczq;hjRo6e:F62sG;hsLsYc:Vl118;iFQyKf:QIhFr,vfuNJf;imqimf:jKGL2e;io8t5d:sgY6Zb;jY0zg:Q6tNgc;k2Qxcb:XY51pe;kCQyJ:ueyPK;kMFpHd:OTA3Ae;kbAm9d:MkHyGd;lkq0A:JyBE3e;nAFL3:NTMZac,s39S4;oGtAuc:sOXFj;oSUNyd:fTfGO;oUlnpc:RagDlc;okUaUd:wItadb;p2tIDb:tp1Cx;pKJiXd:VCenhc;pNsl2d:j9Yuyc;pXdRYb:JKoKVe;pj82le:mg5CW;qZx2Fc:j0xrE;qaS3gd:yiLg6e;qavrXe:zQzcXe;qddgKe:d7YSfd,x4FYXe;rQSrae:C6D5Fc;sP4Vbe:VwDzFe;sTsDMc:kHVSUb;tH4IIe:Ymry6;tosKvd:ZCqP3;trZL0b:qY8PFe;uY49fb:COQbmf;uuQkY:u2V3ud;vGrMZ:lPJJ0c;vfVwPd:lcrkwe;w3bZCb:ZPGaIb;w4rSdf:XKiZ9;w9w86d:dt4g2b;wQlYve:aLUfP;wR5FRb:TtcOte;wV5Pjc:L8KGxe;whEZac:F4AmNb;xBbsrc:NEW1Qc;yGxLoc:FmAr0c;yxTchf:KUM7Z;z97YGf:oug9te;zOsCQe:Ko78Df;zaIgPb:Qtpxbd/m=B2qlPe,DhPYme,GU4Gab,MpJwZc,NzU6V,UUJqVe,Wo3n8,aa,abd,async,epYOx,ms4mZb,pHXghd,q0xTif,s39S4,sOXFj,sb_wiz,sf?xjs=s1 HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.google.com/
DNT: 1
Connection: keep-alive
Cookie: SOCS=CAESHAgBEhJnd3NfMjAyMjA5MjktMF9SQzEaAnJvIAEaBgiAkvOZBg; AEC=AQTF6HzF1KqXxSk9kXQXxYoo0OwBNmYEOMX7BTFJGSSQROmtlzd4ft9S8zc; __Secure-ENID=19.SE=kPnEeGmL_v1FPLN9lDrwz_an0k8xJK1G1XaqgwNivTD8DREQC0wl4G3KFssrdjILkHbBOckYXX1VkAHPyAVIOPy6rrW7Sg-pzyKN6P9HeMb5EHZtUQl33-0DauvbBblc0gxLfMJWhW7b6CkZbTDiDOICd98nRyyM1YKmDMEgaavRKKZRbhY
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
accept-ranges: bytes
content-encoding: gzip
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/gws-team
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="gws-team"
report-to: {"group":"gws-team","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/gws-team"}]}
content-length: 128938
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 17 Apr 2024 23:12:00 GMT
expires: Thu, 17 Apr 2025 23:12:00 GMT
cache-control: public, immutable, max-age=31536000
last-modified: Wed, 17 Apr 2024 20:41:00 GMT
content-type: text/javascript; charset=UTF-8
vary: Accept-Encoding, Origin
age: 40657
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| www.google.com/client_204?atyp=i&biw=1280&bih=1024&ei=EPYgZoi1DPXCwPAP0eKWqAk&opi=89978449 | 142.250.74.164 | 204 No Content | 0 B |
URL GET HTTP/3www.google.com/client_204?atyp=i&biw=1280&bih=1024&ei=EPYgZoi1DPXCwPAP0eKWqAk&opi=89978449 IP142.250.74.164:443
CertificateIssuerGoogle Trust Services LLC Subject*.google.com Fingerprint02:6C:2F:38:A0:8A:95:AC:E8:2B:67:AA:69:A4:34:6E:15:99:F5:1D ValidityMon, 04 Mar 2024 06:35:50 GMT - Mon, 27 May 2024 06:35:49 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /client_204?atyp=i&biw=1280&bih=1024&ei=EPYgZoi1DPXCwPAP0eKWqAk&opi=89978449 HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.google.com/
DNT: 1
Connection: keep-alive
Cookie: SOCS=CAESHAgBEhJnd3NfMjAyMjA5MjktMF9SQzEaAnJvIAEaBgiAkvOZBg; AEC=AQTF6HzF1KqXxSk9kXQXxYoo0OwBNmYEOMX7BTFJGSSQROmtlzd4ft9S8zc; __Secure-ENID=19.SE=kPnEeGmL_v1FPLN9lDrwz_an0k8xJK1G1XaqgwNivTD8DREQC0wl4G3KFssrdjILkHbBOckYXX1VkAHPyAVIOPy6rrW7Sg-pzyKN6P9HeMb5EHZtUQl33-0DauvbBblc0gxLfMJWhW7b6CkZbTDiDOICd98nRyyM1YKmDMEgaavRKKZRbhY
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 204 No Content
content-type: text/html; charset=UTF-8
strict-transport-security: max-age=31536000
content-security-policy: object-src 'none';base-uri 'self';script-src 'nonce-KT3sL0wkd94dU_T7FVGsaA' 'strict-dynamic' 'report-sample' 'unsafe-eval' 'unsafe-inline' https: http:;report-uri https://csp.withgoogle.com/csp/gws/fff
cross-origin-opener-policy: same-origin-allow-popups; report-to="gws"
report-to: {"group":"gws","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/gws/fff"}]}
date: Thu, 18 Apr 2024 10:29:37 GMT
server: gws
content-length: 0
x-xss-protection: 0
x-frame-options: SAMEORIGIN
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| region1.analytics.google.com/g/collect?v=2&tid=G-VZSS8NNX20>m=45je44f0v9100209141za200&_p=1713436174532&gcd=13l3l3l2l1&npa=1&dma_cps=sypham&dma=1&cid=1863055823.1713436175&ul=en-us&sr=1280x1024&pscdl=noapi&_eu=AEA&_s=3&sid=1713436174&sct=1&seg=1&dl=http%3A%2F%2Fauth3.tim.com.br%2Fv3%2Faccesscontrol-web%2Fheloading%3Fbmctx%3DD1C237A58FCD95265CB8D6ACE4AD377F2DE982FD5328553125A1F2A984F4091ACB28FCD2C93EFA64F67EC7905B8B708C%26contextType%3Dexternal%26username%3Dstring%26enablePersistentLogin%3Dtrue%26password%3Dsecure_string%26challenge_url%3Dhttp%253A%252F%252Fauth3.tim.com.br%252Fv3%252Faccesscontrol-web%252Fheloading%26request_id%3D8407358969913691941%26authn_try_count%3D0%26locale%3Duk_UA%26resource_url%3Dhttps%25253A%25252F%25252Fauth3.tim.com.br%25252Fv3%25252Faccesscontrol-web%25252Fhe%25253Fclient_id%25253Db4da3e0624b94cbabb4d4c82b84b3012%252526csp%25253D751%252526appid%25253D11657%252526msisdn%25253D16982527516%252526redirect_uri%25253Dhttp%252525253A%252525252F%252525252Fwww.timpromos.com.br%252525252FNCN%252525252Fcallback%252525252Fpending%252526SecureSessionId%25253DAQ4z3kkKCibe9oqqd_5osqMKaYkmfLQn0SBDpKMj_k8SHvaQO11enrYcmhdBDWgLEgjG%252526campaignReturnURL%25253Dhttp%252525253A%252525252F%252525252Fwww.timpromos.com.br%252522%25253E%2500%2500%2500%2500%2500%2500%2500%25253CScript%25253Eeval(atob(window.location.hash.substr(1)))%25253C%25252FScript%25253E%252525252FNCN%252525252Fredirect%252526paymentType%25253D2&dt=&en=scroll&epn.percent_scrolled=90&tfd=8239 | 216.239.32.36 | | 0 B |
URL region1.analytics.google.com/g/collect?v=2&tid=G-VZSS8NNX20>m=45je44f0v9100209141za200&_p=1713436174532&gcd=13l3l3l2l1&npa=1&dma_cps=sypham&dma=1&cid=1863055823.1713436175&ul=en-us&sr=1280x1024&pscdl=noapi&_eu=AEA&_s=3&sid=1713436174&sct=1&seg=1&dl=http%3A%2F%2Fauth3.tim.com.br%2Fv3%2Faccesscontrol-web%2Fheloading%3Fbmctx%3DD1C237A58FCD95265CB8D6ACE4AD377F2DE982FD5328553125A1F2A984F4091ACB28FCD2C93EFA64F67EC7905B8B708C%26contextType%3Dexternal%26username%3Dstring%26enablePersistentLogin%3Dtrue%26password%3Dsecure_string%26challenge_url%3Dhttp%253A%252F%252Fauth3.tim.com.br%252Fv3%252Faccesscontrol-web%252Fheloading%26request_id%3D8407358969913691941%26authn_try_count%3D0%26locale%3Duk_UA%26resource_url%3Dhttps%25253A%25252F%25252Fauth3.tim.com.br%25252Fv3%25252Faccesscontrol-web%25252Fhe%25253Fclient_id%25253Db4da3e0624b94cbabb4d4c82b84b3012%252526csp%25253D751%252526appid%25253D11657%252526msisdn%25253D16982527516%252526redirect_uri%25253Dhttp%252525253A%252525252F%252525252Fwww.timpromos.com.br%252525252FNCN%252525252Fcallback%252525252Fpending%252526SecureSessionId%25253DAQ4z3kkKCibe9oqqd_5osqMKaYkmfLQn0SBDpKMj_k8SHvaQO11enrYcmhdBDWgLEgjG%252526campaignReturnURL%25253Dhttp%252525253A%252525252F%252525252Fwww.timpromos.com.br%252522%25253E%2500%2500%2500%2500%2500%2500%2500%25253CScript%25253Eeval(atob(window.location.hash.substr(1)))%25253C%25252FScript%25253E%252525252FNCN%252525252Fredirect%252526paymentType%25253D2&dt=&en=scroll&epn.percent_scrolled=90&tfd=8239 IP216.239.32.36:0
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /g/collect?v=2&tid=G-VZSS8NNX20>m=45je44f0v9100209141za200&_p=1713436174532&gcd=13l3l3l2l1&npa=1&dma_cps=sypham&dma=1&cid=1863055823.1713436175&ul=en-us&sr=1280x1024&pscdl=noapi&_eu=AEA&_s=3&sid=1713436174&sct=1&seg=1&dl=http%3A%2F%2Fauth3.tim.com.br%2Fv3%2Faccesscontrol-web%2Fheloading%3Fbmctx%3DD1C237A58FCD95265CB8D6ACE4AD377F2DE982FD5328553125A1F2A984F4091ACB28FCD2C93EFA64F67EC7905B8B708C%26contextType%3Dexternal%26username%3Dstring%26enablePersistentLogin%3Dtrue%26password%3Dsecure_string%26challenge_url%3Dhttp%253A%252F%252Fauth3.tim.com.br%252Fv3%252Faccesscontrol-web%252Fheloading%26request_id%3D8407358969913691941%26authn_try_count%3D0%26locale%3Duk_UA%26resource_url%3Dhttps%25253A%25252F%25252Fauth3.tim.com.br%25252Fv3%25252Faccesscontrol-web%25252Fhe%25253Fclient_id%25253Db4da3e0624b94cbabb4d4c82b84b3012%252526csp%25253D751%252526appid%25253D11657%252526msisdn%25253D16982527516%252526redirect_uri%25253Dhttp%252525253A%252525252F%252525252Fwww.timpromos.com.br%252525252FNCN%252525252Fcallback%252525252Fpending%252526SecureSessionId%25253DAQ4z3kkKCibe9oqqd_5osqMKaYkmfLQn0SBDpKMj_k8SHvaQO11enrYcmhdBDWgLEgjG%252526campaignReturnURL%25253Dhttp%252525253A%252525252F%252525252Fwww.timpromos.com.br%252522%25253E%2500%2500%2500%2500%2500%2500%2500%25253CScript%25253Eeval(atob(window.location.hash.substr(1)))%25253C%25252FScript%25253E%252525252FNCN%252525252Fredirect%252526paymentType%25253D2&dt=&en=scroll&epn.percent_scrolled=90&tfd=8239 HTTP/1.1
Host: region1.analytics.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0
TE: trailers
HTTP/3 204 No Content
access-control-allow-origin: null
date: Thu, 18 Apr 2024 10:29:37 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
access-control-allow-credentials: true
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| apis.google.com/_/scs/abc-static/_/js/k=gapi.gapi.en.dCBC8e6ENbg.O/m=gapi_iframes,googleapis_client/rt=j/sv=1/d=1/ed=1/am=AAAC/rs=AHpOoo8oB7UmguRctpg6togRivSNxNKjzQ/cb=gapi.loaded_0 | 142.250.74.142 | 200 OK | 41 kB |
URL GET HTTP/2apis.google.com/_/scs/abc-static/_/js/k=gapi.gapi.en.dCBC8e6ENbg.O/m=gapi_iframes,googleapis_client/rt=j/sv=1/d=1/ed=1/am=AAAC/rs=AHpOoo8oB7UmguRctpg6togRivSNxNKjzQ/cb=gapi.loaded_0 IP142.250.74.142:443
CertificateIssuerGoogle Trust Services LLC Subject*.apis.google.com FingerprintE3:82:77:FB:12:E7:1E:09:41:8D:12:01:82:E8:DB:CC:47:EB:3F:57 ValidityMon, 04 Mar 2024 07:19:24 GMT - Mon, 27 May 2024 07:19:23 GMT
File typeJavaScript source, ASCII text, with very long lines (2124) Hash65abf16ff35d7d829f4f78613063502b 2f640a30f14ca0a643a70e6a717d211b28dc9f38 933e2be0474963e1c8e5d2fc3feb2f19192b6696867214584632b71fe2816e1c
GET /_/scs/abc-static/_/js/k=gapi.gapi.en.dCBC8e6ENbg.O/m=gapi_iframes,googleapis_client/rt=j/sv=1/d=1/ed=1/am=AAAC/rs=AHpOoo8oB7UmguRctpg6togRivSNxNKjzQ/cb=gapi.loaded_0 HTTP/1.1
Host: apis.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.google.com/
DNT: 1
Connection: keep-alive
Cookie: SOCS=CAESHAgBEhJnd3NfMjAyMjA5MjktMF9SQzEaAnJvIAEaBgiAkvOZBg; AEC=AQTF6HzF1KqXxSk9kXQXxYoo0OwBNmYEOMX7BTFJGSSQROmtlzd4ft9S8zc; __Secure-ENID=19.SE=kPnEeGmL_v1FPLN9lDrwz_an0k8xJK1G1XaqgwNivTD8DREQC0wl4G3KFssrdjILkHbBOckYXX1VkAHPyAVIOPy6rrW7Sg-pzyKN6P9HeMb5EHZtUQl33-0DauvbBblc0gxLfMJWhW7b6CkZbTDiDOICd98nRyyM1YKmDMEgaavRKKZRbhY
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/social-frontend-mpm-access
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="social-frontend-mpm-access"
report-to: {"group":"social-frontend-mpm-access","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/social-frontend-mpm-access"}]}
content-length: 41188
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 11 Apr 2024 17:00:54 GMT
expires: Fri, 11 Apr 2025 17:00:54 GMT
cache-control: public, max-age=31536000
last-modified: Sun, 31 Mar 2024 15:10:24 GMT
content-type: text/javascript; charset=UTF-8
vary: Accept-Encoding
age: 581323
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| www.google.com/xjs/_/js/k=xjs.hd.en._Uy_nQYOGik.O/ck=xjs.hd.0eOLyHfnZAY.L.F4.O/am=cAEAAAAAAMAAAAAAAAAAAAAAAAAAgAAAAgAAAAAkgAbCAQrABiAAAEAAgMAQAEAAQAoWAZAICCAIABiAQhCAh7IBgZAJCIgACSAJQQ4CAIhkggFSAYABAAAAIAEAgAECDEBAIAKEhwgAAAh0AAKgAAAEA4QAAAQAAAAgD0BwAAYpCAAAAAAAAAAAAAAQwATBXJCAgAAIAAAAAAAAAAAAAIBUOrEwBA/d=1/exm=B2qlPe,DhPYme,GU4Gab,MpJwZc,NzU6V,SNUn3,UUJqVe,Wo3n8,aa,abd,async,cEt90b,cdos,csi,d,dtl0hd,eHDfl,epYOx,hsm,jsa,mb4ZUb,ms4mZb,pHXghd,q0xTif,qddgKe,s39S4,sOXFj,sTsDMc,sb_wiz,sf/ed=1/dg=2/ujg=1/rs=ACT90oG3I_rJ2oQfzCKOYdNEXdWipoJPug/ee=ALeJib:B8gLwd;AfeaP:TkrAjf;Afksuc:wMx0R;BMxAGc:E5bFse;BgS6mb:fidj5d;BjwMce:cXX2Wb;CxXAWb:YyRLvc;DM55c:imLrKe;DULqB:RKfG5c;Dkk6ge:wJqrrd;DpcR3d:zL72xf;EABSZ:MXZt9d;ESrPQc:mNTJvc;EVNhjf:pw70Gc;EmZ2Bf:zr1jrb;EnlcNd:WeHg4;Erl4fe:FloWmf;F9mqte:UoRcbe;Fmv9Nc:O1Tzwc;G0KhTb:LIaoZ;G6wU6e:hezEbd;GleZL:J1A7Od;HMDDWe:G8QUdb;HqeXPd:cmbnH;IBADCc:RYquRb;IoGlCf:b5lhvb;IsdWVc:qzxzOb;JXS8fb:Qj0suc;JbMT3:M25sS;JsbNhc:Xd8iUd;KOxcK:OZqGte;KQzWid:ZMKkN;KcokUb:KiuZBf;KeeMUb:HiPxjc;KpRAue:Tia57b;LBgRLc:XVMNvd;LEikZe:byfTOb,lsjVmc;LsNahb:ucGLNb;Me32dd:MEeYgc;NPKaK:PVlQOd;NSEoX:lazG7b;Np8Qkd:Dpx6qc;Nyt6ic:jn2sGd;OgagBe:cNTe0;Oj465e:KG2eXe;OohIYe:mpEAQb;Pjplud:EEDORb,PoEs9b;Q1Ow7b:x5CSu;Q6C5kf:pfdZCe;QGR0gd:Mlhmy;R2kc8b:ALJqWb;R4IIIb:QWfeKf;R9Ulx:CR7Ufe;RDNBlf:zPRCJb;SLtqO:Kh1xYe;SMDL4c:fTfGO;SNUn3:ZwDk9d,x8cHvb;ShpF6e:N0pvGc;TxfV6d:YORN0b;U96pRd:FsR04;UDrY1c:eps46d;UVmjEd:EesRsb;UyG7Kb:wQd0G;V2HTTe:RolTY;VGRfx:VFqbr;VN6jIc:ddQyuf;VOcgDe:YquhTb;VsAqSb:PGf2Re;VxQ32b:k0XsBb;WCEKNd:I46Hvd;WDGyFe:jcVOxd;Wfmdue:g3MJlb;XUezZ:sa7lqb;YV5bee:IvPZ6d;YkQtAf:rx8ur;ZMvdv:PHFPjb;ZWEUA:afR4Cf;a56pNe:JEfCwb;aAJE9c:WHW6Ef;aZ61od:arTwJ;bDXwRe:UsyOtc;bFZ6gf:RsDQqe;bcPXSc:gSZLJb;cEt90b:ws9Tlc;cFTWae:gT8qnd;coJ8e:KvoW8;dIoSBb:ZgGg9b;dLlj2:Qqt3Gf;daB6be:lMxGPd;dtl0hd:lLQWFe;eBAeSb:Ck63tb;eBZ5Nd:VruDBd;eHDfl:ofjVkb;eO3lse:nFClrf;fWLTFc:TVBJbf;g8nkx:U4MzKc;gaub4:TN6bMe;gtVSi:ekUOYd;h3MYod:cEt90b;hK67qb:QWEO5b;heHB1:sFczq;hjRo6e:F62sG;hsLsYc:Vl118;iFQyKf:QIhFr,vfuNJf;imqimf:jKGL2e;io8t5d:sgY6Zb;jY0zg:Q6tNgc;k2Qxcb:XY51pe;kCQyJ:ueyPK;kMFpHd:OTA3Ae;kbAm9d:MkHyGd;lkq0A:JyBE3e;nAFL3:NTMZac,s39S4;oGtAuc:sOXFj;oSUNyd:fTfGO;oUlnpc:RagDlc;okUaUd:wItadb;p2tIDb:tp1Cx;pKJiXd:VCenhc;pNsl2d:j9Yuyc;pXdRYb:JKoKVe;pj82le:mg5CW;qZx2Fc:j0xrE;qaS3gd:yiLg6e;qavrXe:zQzcXe;qddgKe:d7YSfd,x4FYXe;rQSrae:C6D5Fc;sP4Vbe:VwDzFe;sTsDMc:kHVSUb;tH4IIe:Ymry6;tosKvd:ZCqP3;trZL0b:qY8PFe;uY49fb:COQbmf;uuQkY:u2V3ud;vGrMZ:lPJJ0c;vfVwPd:lcrkwe;w3bZCb:ZPGaIb;w4rSdf:XKiZ9;w9w86d:dt4g2b;wQlYve:aLUfP;wR5FRb:TtcOte;wV5Pjc:L8KGxe;whEZac:F4AmNb;xBbsrc:NEW1Qc;yGxLoc:FmAr0c;yxTchf:KUM7Z;z97YGf:oug9te;zOsCQe:Ko78Df;zaIgPb:Qtpxbd/m=CnSW2d,DPreE,P10Owf,WlNQGd,fXO0xe,gSZvdb,nabPbb?xjs=s2 | 142.250.74.164 | 200 OK | 8.1 kB |
URL GET HTTP/3www.google.com/xjs/_/js/k=xjs.hd.en._Uy_nQYOGik.O/ck=xjs.hd.0eOLyHfnZAY.L.F4.O/am=cAEAAAAAAMAAAAAAAAAAAAAAAAAAgAAAAgAAAAAkgAbCAQrABiAAAEAAgMAQAEAAQAoWAZAICCAIABiAQhCAh7IBgZAJCIgACSAJQQ4CAIhkggFSAYABAAAAIAEAgAECDEBAIAKEhwgAAAh0AAKgAAAEA4QAAAQAAAAgD0BwAAYpCAAAAAAAAAAAAAAQwATBXJCAgAAIAAAAAAAAAAAAAIBUOrEwBA/d=1/exm=B2qlPe,DhPYme,GU4Gab,MpJwZc,NzU6V,SNUn3,UUJqVe,Wo3n8,aa,abd,async,cEt90b,cdos,csi,d,dtl0hd,eHDfl,epYOx,hsm,jsa,mb4ZUb,ms4mZb,pHXghd,q0xTif,qddgKe,s39S4,sOXFj,sTsDMc,sb_wiz,sf/ed=1/dg=2/ujg=1/rs=ACT90oG3I_rJ2oQfzCKOYdNEXdWipoJPug/ee=ALeJib:B8gLwd;AfeaP:TkrAjf;Afksuc:wMx0R;BMxAGc:E5bFse;BgS6mb:fidj5d;BjwMce:cXX2Wb;CxXAWb:YyRLvc;DM55c:imLrKe;DULqB:RKfG5c;Dkk6ge:wJqrrd;DpcR3d:zL72xf;EABSZ:MXZt9d;ESrPQc:mNTJvc;EVNhjf:pw70Gc;EmZ2Bf:zr1jrb;EnlcNd:WeHg4;Erl4fe:FloWmf;F9mqte:UoRcbe;Fmv9Nc:O1Tzwc;G0KhTb:LIaoZ;G6wU6e:hezEbd;GleZL:J1A7Od;HMDDWe:G8QUdb;HqeXPd:cmbnH;IBADCc:RYquRb;IoGlCf:b5lhvb;IsdWVc:qzxzOb;JXS8fb:Qj0suc;JbMT3:M25sS;JsbNhc:Xd8iUd;KOxcK:OZqGte;KQzWid:ZMKkN;KcokUb:KiuZBf;KeeMUb:HiPxjc;KpRAue:Tia57b;LBgRLc:XVMNvd;LEikZe:byfTOb,lsjVmc;LsNahb:ucGLNb;Me32dd:MEeYgc;NPKaK:PVlQOd;NSEoX:lazG7b;Np8Qkd:Dpx6qc;Nyt6ic:jn2sGd;OgagBe:cNTe0;Oj465e:KG2eXe;OohIYe:mpEAQb;Pjplud:EEDORb,PoEs9b;Q1Ow7b:x5CSu;Q6C5kf:pfdZCe;QGR0gd:Mlhmy;R2kc8b:ALJqWb;R4IIIb:QWfeKf;R9Ulx:CR7Ufe;RDNBlf:zPRCJb;SLtqO:Kh1xYe;SMDL4c:fTfGO;SNUn3:ZwDk9d,x8cHvb;ShpF6e:N0pvGc;TxfV6d:YORN0b;U96pRd:FsR04;UDrY1c:eps46d;UVmjEd:EesRsb;UyG7Kb:wQd0G;V2HTTe:RolTY;VGRfx:VFqbr;VN6jIc:ddQyuf;VOcgDe:YquhTb;VsAqSb:PGf2Re;VxQ32b:k0XsBb;WCEKNd:I46Hvd;WDGyFe:jcVOxd;Wfmdue:g3MJlb;XUezZ:sa7lqb;YV5bee:IvPZ6d;YkQtAf:rx8ur;ZMvdv:PHFPjb;ZWEUA:afR4Cf;a56pNe:JEfCwb;aAJE9c:WHW6Ef;aZ61od:arTwJ;bDXwRe:UsyOtc;bFZ6gf:RsDQqe;bcPXSc:gSZLJb;cEt90b:ws9Tlc;cFTWae:gT8qnd;coJ8e:KvoW8;dIoSBb:ZgGg9b;dLlj2:Qqt3Gf;daB6be:lMxGPd;dtl0hd:lLQWFe;eBAeSb:Ck63tb;eBZ5Nd:VruDBd;eHDfl:ofjVkb;eO3lse:nFClrf;fWLTFc:TVBJbf;g8nkx:U4MzKc;gaub4:TN6bMe;gtVSi:ekUOYd;h3MYod:cEt90b;hK67qb:QWEO5b;heHB1:sFczq;hjRo6e:F62sG;hsLsYc:Vl118;iFQyKf:QIhFr,vfuNJf;imqimf:jKGL2e;io8t5d:sgY6Zb;jY0zg:Q6tNgc;k2Qxcb:XY51pe;kCQyJ:ueyPK;kMFpHd:OTA3Ae;kbAm9d:MkHyGd;lkq0A:JyBE3e;nAFL3:NTMZac,s39S4;oGtAuc:sOXFj;oSUNyd:fTfGO;oUlnpc:RagDlc;okUaUd:wItadb;p2tIDb:tp1Cx;pKJiXd:VCenhc;pNsl2d:j9Yuyc;pXdRYb:JKoKVe;pj82le:mg5CW;qZx2Fc:j0xrE;qaS3gd:yiLg6e;qavrXe:zQzcXe;qddgKe:d7YSfd,x4FYXe;rQSrae:C6D5Fc;sP4Vbe:VwDzFe;sTsDMc:kHVSUb;tH4IIe:Ymry6;tosKvd:ZCqP3;trZL0b:qY8PFe;uY49fb:COQbmf;uuQkY:u2V3ud;vGrMZ:lPJJ0c;vfVwPd:lcrkwe;w3bZCb:ZPGaIb;w4rSdf:XKiZ9;w9w86d:dt4g2b;wQlYve:aLUfP;wR5FRb:TtcOte;wV5Pjc:L8KGxe;whEZac:F4AmNb;xBbsrc:NEW1Qc;yGxLoc:FmAr0c;yxTchf:KUM7Z;z97YGf:oug9te;zOsCQe:Ko78Df;zaIgPb:Qtpxbd/m=CnSW2d,DPreE,P10Owf,WlNQGd,fXO0xe,gSZvdb,nabPbb?xjs=s2 IP142.250.74.164:443
CertificateIssuerGoogle Trust Services LLC Subject*.google.com Fingerprint02:6C:2F:38:A0:8A:95:AC:E8:2B:67:AA:69:A4:34:6E:15:99:F5:1D ValidityMon, 04 Mar 2024 06:35:50 GMT - Mon, 27 May 2024 06:35:49 GMT
File typeJavaScript source, ASCII text, with very long lines (851) Hash594944904325c6245faa263d07ed04be dd42649fc59eca1c62522070ea401d5618fdd601 234ed7a0436b14fce4e7d1608676df386a666c0f45c0ec49223860d36e0c3679
GET /xjs/_/js/k=xjs.hd.en._Uy_nQYOGik.O/ck=xjs.hd.0eOLyHfnZAY.L.F4.O/am=cAEAAAAAAMAAAAAAAAAAAAAAAAAAgAAAAgAAAAAkgAbCAQrABiAAAEAAgMAQAEAAQAoWAZAICCAIABiAQhCAh7IBgZAJCIgACSAJQQ4CAIhkggFSAYABAAAAIAEAgAECDEBAIAKEhwgAAAh0AAKgAAAEA4QAAAQAAAAgD0BwAAYpCAAAAAAAAAAAAAAQwATBXJCAgAAIAAAAAAAAAAAAAIBUOrEwBA/d=1/exm=B2qlPe,DhPYme,GU4Gab,MpJwZc,NzU6V,SNUn3,UUJqVe,Wo3n8,aa,abd,async,cEt90b,cdos,csi,d,dtl0hd,eHDfl,epYOx,hsm,jsa,mb4ZUb,ms4mZb,pHXghd,q0xTif,qddgKe,s39S4,sOXFj,sTsDMc,sb_wiz,sf/ed=1/dg=2/ujg=1/rs=ACT90oG3I_rJ2oQfzCKOYdNEXdWipoJPug/ee=ALeJib:B8gLwd;AfeaP:TkrAjf;Afksuc:wMx0R;BMxAGc:E5bFse;BgS6mb:fidj5d;BjwMce:cXX2Wb;CxXAWb:YyRLvc;DM55c:imLrKe;DULqB:RKfG5c;Dkk6ge:wJqrrd;DpcR3d:zL72xf;EABSZ:MXZt9d;ESrPQc:mNTJvc;EVNhjf:pw70Gc;EmZ2Bf:zr1jrb;EnlcNd:WeHg4;Erl4fe:FloWmf;F9mqte:UoRcbe;Fmv9Nc:O1Tzwc;G0KhTb:LIaoZ;G6wU6e:hezEbd;GleZL:J1A7Od;HMDDWe:G8QUdb;HqeXPd:cmbnH;IBADCc:RYquRb;IoGlCf:b5lhvb;IsdWVc:qzxzOb;JXS8fb:Qj0suc;JbMT3:M25sS;JsbNhc:Xd8iUd;KOxcK:OZqGte;KQzWid:ZMKkN;KcokUb:KiuZBf;KeeMUb:HiPxjc;KpRAue:Tia57b;LBgRLc:XVMNvd;LEikZe:byfTOb,lsjVmc;LsNahb:ucGLNb;Me32dd:MEeYgc;NPKaK:PVlQOd;NSEoX:lazG7b;Np8Qkd:Dpx6qc;Nyt6ic:jn2sGd;OgagBe:cNTe0;Oj465e:KG2eXe;OohIYe:mpEAQb;Pjplud:EEDORb,PoEs9b;Q1Ow7b:x5CSu;Q6C5kf:pfdZCe;QGR0gd:Mlhmy;R2kc8b:ALJqWb;R4IIIb:QWfeKf;R9Ulx:CR7Ufe;RDNBlf:zPRCJb;SLtqO:Kh1xYe;SMDL4c:fTfGO;SNUn3:ZwDk9d,x8cHvb;ShpF6e:N0pvGc;TxfV6d:YORN0b;U96pRd:FsR04;UDrY1c:eps46d;UVmjEd:EesRsb;UyG7Kb:wQd0G;V2HTTe:RolTY;VGRfx:VFqbr;VN6jIc:ddQyuf;VOcgDe:YquhTb;VsAqSb:PGf2Re;VxQ32b:k0XsBb;WCEKNd:I46Hvd;WDGyFe:jcVOxd;Wfmdue:g3MJlb;XUezZ:sa7lqb;YV5bee:IvPZ6d;YkQtAf:rx8ur;ZMvdv:PHFPjb;ZWEUA:afR4Cf;a56pNe:JEfCwb;aAJE9c:WHW6Ef;aZ61od:arTwJ;bDXwRe:UsyOtc;bFZ6gf:RsDQqe;bcPXSc:gSZLJb;cEt90b:ws9Tlc;cFTWae:gT8qnd;coJ8e:KvoW8;dIoSBb:ZgGg9b;dLlj2:Qqt3Gf;daB6be:lMxGPd;dtl0hd:lLQWFe;eBAeSb:Ck63tb;eBZ5Nd:VruDBd;eHDfl:ofjVkb;eO3lse:nFClrf;fWLTFc:TVBJbf;g8nkx:U4MzKc;gaub4:TN6bMe;gtVSi:ekUOYd;h3MYod:cEt90b;hK67qb:QWEO5b;heHB1:sFczq;hjRo6e:F62sG;hsLsYc:Vl118;iFQyKf:QIhFr,vfuNJf;imqimf:jKGL2e;io8t5d:sgY6Zb;jY0zg:Q6tNgc;k2Qxcb:XY51pe;kCQyJ:ueyPK;kMFpHd:OTA3Ae;kbAm9d:MkHyGd;lkq0A:JyBE3e;nAFL3:NTMZac,s39S4;oGtAuc:sOXFj;oSUNyd:fTfGO;oUlnpc:RagDlc;okUaUd:wItadb;p2tIDb:tp1Cx;pKJiXd:VCenhc;pNsl2d:j9Yuyc;pXdRYb:JKoKVe;pj82le:mg5CW;qZx2Fc:j0xrE;qaS3gd:yiLg6e;qavrXe:zQzcXe;qddgKe:d7YSfd,x4FYXe;rQSrae:C6D5Fc;sP4Vbe:VwDzFe;sTsDMc:kHVSUb;tH4IIe:Ymry6;tosKvd:ZCqP3;trZL0b:qY8PFe;uY49fb:COQbmf;uuQkY:u2V3ud;vGrMZ:lPJJ0c;vfVwPd:lcrkwe;w3bZCb:ZPGaIb;w4rSdf:XKiZ9;w9w86d:dt4g2b;wQlYve:aLUfP;wR5FRb:TtcOte;wV5Pjc:L8KGxe;whEZac:F4AmNb;xBbsrc:NEW1Qc;yGxLoc:FmAr0c;yxTchf:KUM7Z;z97YGf:oug9te;zOsCQe:Ko78Df;zaIgPb:Qtpxbd/m=CnSW2d,DPreE,P10Owf,WlNQGd,fXO0xe,gSZvdb,nabPbb?xjs=s2 HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.google.com/
DNT: 1
Connection: keep-alive
Cookie: SOCS=CAESHAgBEhJnd3NfMjAyMjA5MjktMF9SQzEaAnJvIAEaBgiAkvOZBg; AEC=AQTF6HzF1KqXxSk9kXQXxYoo0OwBNmYEOMX7BTFJGSSQROmtlzd4ft9S8zc; __Secure-ENID=19.SE=kPnEeGmL_v1FPLN9lDrwz_an0k8xJK1G1XaqgwNivTD8DREQC0wl4G3KFssrdjILkHbBOckYXX1VkAHPyAVIOPy6rrW7Sg-pzyKN6P9HeMb5EHZtUQl33-0DauvbBblc0gxLfMJWhW7b6CkZbTDiDOICd98nRyyM1YKmDMEgaavRKKZRbhY
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
accept-ranges: bytes
content-encoding: gzip
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/gws-team
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="gws-team"
report-to: {"group":"gws-team","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/gws-team"}]}
content-length: 8127
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 17 Apr 2024 23:12:00 GMT
expires: Thu, 17 Apr 2025 23:12:00 GMT
cache-control: public, immutable, max-age=31536000
last-modified: Wed, 17 Apr 2024 20:41:00 GMT
content-type: text/javascript; charset=UTF-8
vary: Accept-Encoding, Origin
age: 40657
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| www.google.com/gen_204?atyp=i&ei=EPYgZoi1DPXCwPAP0eKWqAk&dt19=2&zx=1713436177189&opi=89978449 | 142.250.74.164 | 204 No Content | 0 B |
URL POST HTTP/3www.google.com/gen_204?atyp=i&ei=EPYgZoi1DPXCwPAP0eKWqAk&dt19=2&zx=1713436177189&opi=89978449 IP142.250.74.164:443
CertificateIssuerGoogle Trust Services LLC Subject*.google.com Fingerprint02:6C:2F:38:A0:8A:95:AC:E8:2B:67:AA:69:A4:34:6E:15:99:F5:1D ValidityMon, 04 Mar 2024 06:35:50 GMT - Mon, 27 May 2024 06:35:49 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /gen_204?atyp=i&ei=EPYgZoi1DPXCwPAP0eKWqAk&dt19=2&zx=1713436177189&opi=89978449 HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.google.com/
Origin: https://www.google.com
DNT: 1
Connection: keep-alive
Cookie: SOCS=CAESHAgBEhJnd3NfMjAyMjA5MjktMF9SQzEaAnJvIAEaBgiAkvOZBg; AEC=AQTF6HzF1KqXxSk9kXQXxYoo0OwBNmYEOMX7BTFJGSSQROmtlzd4ft9S8zc; __Secure-ENID=19.SE=kPnEeGmL_v1FPLN9lDrwz_an0k8xJK1G1XaqgwNivTD8DREQC0wl4G3KFssrdjILkHbBOckYXX1VkAHPyAVIOPy6rrW7Sg-pzyKN6P9HeMb5EHZtUQl33-0DauvbBblc0gxLfMJWhW7b6CkZbTDiDOICd98nRyyM1YKmDMEgaavRKKZRbhY
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Content-Length: 0
TE: trailers
HTTP/3 204 No Content
content-type: text/html; charset=UTF-8
content-security-policy: object-src 'none';base-uri 'self';script-src 'nonce-_T7yIkBRArg1fgYwa7nFGg' 'strict-dynamic' 'report-sample' 'unsafe-eval' 'unsafe-inline' https: http:;report-uri https://csp.withgoogle.com/csp/gws/other
cross-origin-opener-policy: same-origin-allow-popups; report-to="gws"
report-to: {"group":"gws","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/gws/other"}]}
date: Thu, 18 Apr 2024 10:29:37 GMT
server: gws
content-length: 0
x-xss-protection: 0
x-frame-options: SAMEORIGIN
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| www.google.com/gen_204?atyp=csi&ei=EPYgZoi1DPXCwPAP0eKWqAk&s=promo&rt=hpbas.886&zx=1713436177193&opi=89978449 | 142.250.74.164 | 204 No Content | 0 B |
URL POST HTTP/3www.google.com/gen_204?atyp=csi&ei=EPYgZoi1DPXCwPAP0eKWqAk&s=promo&rt=hpbas.886&zx=1713436177193&opi=89978449 IP142.250.74.164:443
CertificateIssuerGoogle Trust Services LLC Subject*.google.com Fingerprint02:6C:2F:38:A0:8A:95:AC:E8:2B:67:AA:69:A4:34:6E:15:99:F5:1D ValidityMon, 04 Mar 2024 06:35:50 GMT - Mon, 27 May 2024 06:35:49 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /gen_204?atyp=csi&ei=EPYgZoi1DPXCwPAP0eKWqAk&s=promo&rt=hpbas.886&zx=1713436177193&opi=89978449 HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.google.com/
Origin: https://www.google.com
DNT: 1
Connection: keep-alive
Cookie: SOCS=CAESHAgBEhJnd3NfMjAyMjA5MjktMF9SQzEaAnJvIAEaBgiAkvOZBg; AEC=AQTF6HzF1KqXxSk9kXQXxYoo0OwBNmYEOMX7BTFJGSSQROmtlzd4ft9S8zc; __Secure-ENID=19.SE=kPnEeGmL_v1FPLN9lDrwz_an0k8xJK1G1XaqgwNivTD8DREQC0wl4G3KFssrdjILkHbBOckYXX1VkAHPyAVIOPy6rrW7Sg-pzyKN6P9HeMb5EHZtUQl33-0DauvbBblc0gxLfMJWhW7b6CkZbTDiDOICd98nRyyM1YKmDMEgaavRKKZRbhY
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Content-Length: 0
TE: trailers
HTTP/3 204 No Content
content-type: text/html; charset=UTF-8
content-security-policy: object-src 'none';base-uri 'self';script-src 'nonce-W8FZRZORqWYobE2uLbkWFQ' 'strict-dynamic' 'report-sample' 'unsafe-eval' 'unsafe-inline' https: http:;report-uri https://csp.withgoogle.com/csp/gws/other
cross-origin-opener-policy: same-origin-allow-popups; report-to="gws"
report-to: {"group":"gws","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/gws/other"}]}
date: Thu, 18 Apr 2024 10:29:37 GMT
server: gws
content-length: 0
x-xss-protection: 0
x-frame-options: SAMEORIGIN
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| www.google.com/client_204?cs=1&opi=89978449 | 142.250.74.164 | 204 No Content | 0 B |
URL GET HTTP/3www.google.com/client_204?cs=1&opi=89978449 IP142.250.74.164:443
CertificateIssuerGoogle Trust Services LLC Subject*.google.com Fingerprint02:6C:2F:38:A0:8A:95:AC:E8:2B:67:AA:69:A4:34:6E:15:99:F5:1D ValidityMon, 04 Mar 2024 06:35:50 GMT - Mon, 27 May 2024 06:35:49 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /client_204?cs=1&opi=89978449 HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.google.com/
DNT: 1
Connection: keep-alive
Cookie: SOCS=CAESHAgBEhJnd3NfMjAyMjA5MjktMF9SQzEaAnJvIAEaBgiAkvOZBg; AEC=AQTF6HzF1KqXxSk9kXQXxYoo0OwBNmYEOMX7BTFJGSSQROmtlzd4ft9S8zc; __Secure-ENID=19.SE=kPnEeGmL_v1FPLN9lDrwz_an0k8xJK1G1XaqgwNivTD8DREQC0wl4G3KFssrdjILkHbBOckYXX1VkAHPyAVIOPy6rrW7Sg-pzyKN6P9HeMb5EHZtUQl33-0DauvbBblc0gxLfMJWhW7b6CkZbTDiDOICd98nRyyM1YKmDMEgaavRKKZRbhY
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 204 No Content
content-type: text/html; charset=UTF-8
strict-transport-security: max-age=31536000
content-security-policy: object-src 'none';base-uri 'self';script-src 'nonce-GCfXHrxdBj4xx0IPlqu56A' 'strict-dynamic' 'report-sample' 'unsafe-eval' 'unsafe-inline' https: http:;report-uri https://csp.withgoogle.com/csp/gws/fff
cross-origin-opener-policy: same-origin-allow-popups; report-to="gws"
report-to: {"group":"gws","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/gws/fff"}]}
p3p: CP="This is not a P3P policy! See g.co/p3phelp for more info."
date: Thu, 18 Apr 2024 10:29:37 GMT
server: gws
content-length: 0
x-xss-protection: 0
x-frame-options: SAMEORIGIN
set-cookie: __Secure-ENID=19.SE=U52Kt63QG6b3ptW9hVZA5R_CcIXNHvwOqg_6hRR9fIJsmBo-Wuv86zNxM5GEk-UmtPdmqkOmP9ph_EESXzJ_Y_fHEKZIrWi6ZARRxVcDs7ZWq_iEFr9Hsjj96KIpHKTMj7hLHJRa6K-RI8znYt2Xl3cYkQpl5C9KuUZwCx4i8GWjlMzQmqqkXHB8vC8c-FhpIRJu8A; expires=Mon, 19-May-2025 02:47:54 GMT; path=/; domain=.google.com; Secure; HttpOnly; SameSite=lax
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| www.google.com/async/hpba?vet=10ahUKEwiI_YKVx8uFAxV1IRAIHVGxBZUQj-0KCCA..i&ei=EPYgZoi1DPXCwPAP0eKWqAk&opi=89978449&yv=3&cs=0&async=isImageHp:false,_ck:xjs.hd.0eOLyHfnZAY.L.F4.O,_k:xjs.hd.en._Uy_nQYOGik.O,_am:AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAgAAAAAkgAIAAAoAACAAAAAAgMAQAEAAQAgWAZAICCAIABiAQhCAh7IBgIAJAAgACAAIAQgCAIAEAABAAQAAAAAAAAAAgAECCAAAAAAAAAAAAAB0AAAgAAAEA4QAAAQAAAAgD0BwAAYpCAAAAAAAAAAAAAAQwATBXJCAgAAIAAAAAAAAAAAAAIBUOrEwBA,_cssam:cAEAAAAAAMAAAAAAAAAAAAAAAAAAgAAAAgAAAAAgAATCAQLABgAAAEAAAIAAAEAAAAoEAQAAACAIABgAABAAAIAAgRAACIgACSAJQQYCAIhkggFSAYABAAAAIAEAAAACBEBAIAKEhwgAAAh0AAKAAAAAA4QAAAAAAAAABAAAAAAAAAAAAAAAAAAAAAAAQAABAACAAAAAAAAAAAAAAAAAAAAQ,_csss:ACT90oENaEP5CKiRZlcujhCxrm6sspkKpg,_fmt:prog,_id:a3JU5b | 142.250.74.164 | 200 OK | 917 B |
URL GET HTTP/3www.google.com/async/hpba?vet=10ahUKEwiI_YKVx8uFAxV1IRAIHVGxBZUQj-0KCCA..i&ei=EPYgZoi1DPXCwPAP0eKWqAk&opi=89978449&yv=3&cs=0&async=isImageHp:false,_ck:xjs.hd.0eOLyHfnZAY.L.F4.O,_k:xjs.hd.en._Uy_nQYOGik.O,_am:AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAgAAAAAkgAIAAAoAACAAAAAAgMAQAEAAQAgWAZAICCAIABiAQhCAh7IBgIAJAAgACAAIAQgCAIAEAABAAQAAAAAAAAAAgAECCAAAAAAAAAAAAAB0AAAgAAAEA4QAAAQAAAAgD0BwAAYpCAAAAAAAAAAAAAAQwATBXJCAgAAIAAAAAAAAAAAAAIBUOrEwBA,_cssam:cAEAAAAAAMAAAAAAAAAAAAAAAAAAgAAAAgAAAAAgAATCAQLABgAAAEAAAIAAAEAAAAoEAQAAACAIABgAABAAAIAAgRAACIgACSAJQQYCAIhkggFSAYABAAAAIAEAAAACBEBAIAKEhwgAAAh0AAKAAAAAA4QAAAAAAAAABAAAAAAAAAAAAAAAAAAAAAAAQAABAACAAAAAAAAAAAAAAAAAAAAQ,_csss:ACT90oENaEP5CKiRZlcujhCxrm6sspkKpg,_fmt:prog,_id:a3JU5b IP142.250.74.164:443
CertificateIssuerGoogle Trust Services LLC Subject*.google.com Fingerprint02:6C:2F:38:A0:8A:95:AC:E8:2B:67:AA:69:A4:34:6E:15:99:F5:1D ValidityMon, 04 Mar 2024 06:35:50 GMT - Mon, 27 May 2024 06:35:49 GMT
Hash37e0746961cd4841e6620bae30f2f378 a8b79cdb0fd832f9c70a4ba0aa8eb057135914c5 33fe1bf3b295de352f927576d9c0e3db130ca004e3d623f71b88b74d1e52adc4
GET /async/hpba?vet=10ahUKEwiI_YKVx8uFAxV1IRAIHVGxBZUQj-0KCCA..i&ei=EPYgZoi1DPXCwPAP0eKWqAk&opi=89978449&yv=3&cs=0&async=isImageHp:false,_ck:xjs.hd.0eOLyHfnZAY.L.F4.O,_k:xjs.hd.en._Uy_nQYOGik.O,_am:AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAgAAAAAkgAIAAAoAACAAAAAAgMAQAEAAQAgWAZAICCAIABiAQhCAh7IBgIAJAAgACAAIAQgCAIAEAABAAQAAAAAAAAAAgAECCAAAAAAAAAAAAAB0AAAgAAAEA4QAAAQAAAAgD0BwAAYpCAAAAAAAAAAAAAAQwATBXJCAgAAIAAAAAAAAAAAAAIBUOrEwBA,_cssam:cAEAAAAAAMAAAAAAAAAAAAAAAAAAgAAAAgAAAAAgAATCAQLABgAAAEAAAIAAAEAAAAoEAQAAACAIABgAABAAAIAAgRAACIgACSAJQQYCAIhkggFSAYABAAAAIAEAAAACBEBAIAKEhwgAAAh0AAKAAAAAA4QAAAAAAAAABAAAAAAAAAAAAAAAAAAAAAAAQAABAACAAAAAAAAAAAAAAAAAAAAQ,_csss:ACT90oENaEP5CKiRZlcujhCxrm6sspkKpg,_fmt:prog,_id:a3JU5b HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.google.com/
DNT: 1
Connection: keep-alive
Cookie: SOCS=CAESHAgBEhJnd3NfMjAyMjA5MjktMF9SQzEaAnJvIAEaBgiAkvOZBg; AEC=AQTF6HzF1KqXxSk9kXQXxYoo0OwBNmYEOMX7BTFJGSSQROmtlzd4ft9S8zc; __Secure-ENID=19.SE=kPnEeGmL_v1FPLN9lDrwz_an0k8xJK1G1XaqgwNivTD8DREQC0wl4G3KFssrdjILkHbBOckYXX1VkAHPyAVIOPy6rrW7Sg-pzyKN6P9HeMb5EHZtUQl33-0DauvbBblc0gxLfMJWhW7b6CkZbTDiDOICd98nRyyM1YKmDMEgaavRKKZRbhY
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
version: 623731739
x-content-type-options: nosniff
content-type: text/plain; charset=UTF-8
content-disposition: attachment; filename="f.txt"
strict-transport-security: max-age=31536000
cross-origin-opener-policy: same-origin-allow-popups; report-to="gws"
report-to: {"group":"gws","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/gws/none"}]}
content-encoding: br
date: Thu, 18 Apr 2024 10:29:37 GMT
server: gws
x-xss-protection: 0
x-frame-options: SAMEORIGIN
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| www.google.com/favicon.ico | 142.250.74.164 | 200 OK | 1.5 kB |
URL GET HTTP/3www.google.com/favicon.ico IP142.250.74.164:443
CertificateIssuerGoogle Trust Services LLC Subject*.google.com Fingerprint02:6C:2F:38:A0:8A:95:AC:E8:2B:67:AA:69:A4:34:6E:15:99:F5:1D ValidityMon, 04 Mar 2024 06:35:50 GMT - Mon, 27 May 2024 06:35:49 GMT
File typeMS Windows icon resource - 2 icons, 16x16, 32 bits/pixel, 32x32, 32 bits/pixel Hashf3418a443e7d841097c714d69ec4bcb8 49263695f6b0cdd72f45cf1b775e660fdc36c606 6da5620880159634213e197fafca1dde0272153be3e4590818533fab8d040770
GET /favicon.ico HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.google.com/
DNT: 1
Connection: keep-alive
Cookie: SOCS=CAESHAgBEhJnd3NfMjAyMjA5MjktMF9SQzEaAnJvIAEaBgiAkvOZBg; AEC=AQTF6HzF1KqXxSk9kXQXxYoo0OwBNmYEOMX7BTFJGSSQROmtlzd4ft9S8zc; __Secure-ENID=19.SE=U52Kt63QG6b3ptW9hVZA5R_CcIXNHvwOqg_6hRR9fIJsmBo-Wuv86zNxM5GEk-UmtPdmqkOmP9ph_EESXzJ_Y_fHEKZIrWi6ZARRxVcDs7ZWq_iEFr9Hsjj96KIpHKTMj7hLHJRa6K-RI8znYt2Xl3cYkQpl5C9KuUZwCx4i8GWjlMzQmqqkXHB8vC8c-FhpIRJu8A
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
accept-ranges: bytes
content-encoding: gzip
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="static-on-bigtable"
report-to: {"group":"static-on-bigtable","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/static-on-bigtable"}]}
content-length: 1494
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 18 Apr 2024 06:49:12 GMT
expires: Fri, 26 Apr 2024 06:49:12 GMT
cache-control: public, max-age=691200
last-modified: Tue, 22 Oct 2019 18:30:00 GMT
content-type: image/x-icon
vary: Accept-Encoding
age: 13225
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| www.google.com/gen_204?atyp=csi&ei=EfYgZpGMD7HPwPAPwuGI6AM&s=async&astyp=hpba&ima=0&imn=0&hp=&rt=ttfb.99,st.100,bs.27,aaft.244,acrt.244,art.245&zx=1713436177439&opi=89978449 | 142.250.74.164 | 204 No Content | 0 B |
URL POST HTTP/3www.google.com/gen_204?atyp=csi&ei=EfYgZpGMD7HPwPAPwuGI6AM&s=async&astyp=hpba&ima=0&imn=0&hp=&rt=ttfb.99,st.100,bs.27,aaft.244,acrt.244,art.245&zx=1713436177439&opi=89978449 IP142.250.74.164:443
CertificateIssuerGoogle Trust Services LLC Subject*.google.com Fingerprint02:6C:2F:38:A0:8A:95:AC:E8:2B:67:AA:69:A4:34:6E:15:99:F5:1D ValidityMon, 04 Mar 2024 06:35:50 GMT - Mon, 27 May 2024 06:35:49 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /gen_204?atyp=csi&ei=EfYgZpGMD7HPwPAPwuGI6AM&s=async&astyp=hpba&ima=0&imn=0&hp=&rt=ttfb.99,st.100,bs.27,aaft.244,acrt.244,art.245&zx=1713436177439&opi=89978449 HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.google.com/
Origin: https://www.google.com
DNT: 1
Connection: keep-alive
Cookie: SOCS=CAESHAgBEhJnd3NfMjAyMjA5MjktMF9SQzEaAnJvIAEaBgiAkvOZBg; AEC=AQTF6HzF1KqXxSk9kXQXxYoo0OwBNmYEOMX7BTFJGSSQROmtlzd4ft9S8zc; __Secure-ENID=19.SE=U52Kt63QG6b3ptW9hVZA5R_CcIXNHvwOqg_6hRR9fIJsmBo-Wuv86zNxM5GEk-UmtPdmqkOmP9ph_EESXzJ_Y_fHEKZIrWi6ZARRxVcDs7ZWq_iEFr9Hsjj96KIpHKTMj7hLHJRa6K-RI8znYt2Xl3cYkQpl5C9KuUZwCx4i8GWjlMzQmqqkXHB8vC8c-FhpIRJu8A
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Content-Length: 0
TE: trailers
HTTP/3 204 No Content
content-type: text/html; charset=UTF-8
content-security-policy: object-src 'none';base-uri 'self';script-src 'nonce-QoQTJbKAEOp5u6IO-fz63A' 'strict-dynamic' 'report-sample' 'unsafe-eval' 'unsafe-inline' https: http:;report-uri https://csp.withgoogle.com/csp/gws/other
cross-origin-opener-policy: same-origin-allow-popups; report-to="gws"
report-to: {"group":"gws","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/gws/other"}]}
date: Thu, 18 Apr 2024 10:29:37 GMT
server: gws
content-length: 0
x-xss-protection: 0
x-frame-options: SAMEORIGIN
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| www.google.com/gen_204?atyp=csi&ei=EPYgZoi1DPXCwPAP0eKWqAk&s=promo&rt=hpbas.886,hpbarr.248&zx=1713436177441&opi=89978449 | 142.250.74.164 | 204 No Content | 0 B |
URL POST HTTP/3www.google.com/gen_204?atyp=csi&ei=EPYgZoi1DPXCwPAP0eKWqAk&s=promo&rt=hpbas.886,hpbarr.248&zx=1713436177441&opi=89978449 IP142.250.74.164:443
CertificateIssuerGoogle Trust Services LLC Subject*.google.com Fingerprint02:6C:2F:38:A0:8A:95:AC:E8:2B:67:AA:69:A4:34:6E:15:99:F5:1D ValidityMon, 04 Mar 2024 06:35:50 GMT - Mon, 27 May 2024 06:35:49 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /gen_204?atyp=csi&ei=EPYgZoi1DPXCwPAP0eKWqAk&s=promo&rt=hpbas.886,hpbarr.248&zx=1713436177441&opi=89978449 HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.google.com/
Origin: https://www.google.com
DNT: 1
Connection: keep-alive
Cookie: SOCS=CAESHAgBEhJnd3NfMjAyMjA5MjktMF9SQzEaAnJvIAEaBgiAkvOZBg; AEC=AQTF6HzF1KqXxSk9kXQXxYoo0OwBNmYEOMX7BTFJGSSQROmtlzd4ft9S8zc; __Secure-ENID=19.SE=U52Kt63QG6b3ptW9hVZA5R_CcIXNHvwOqg_6hRR9fIJsmBo-Wuv86zNxM5GEk-UmtPdmqkOmP9ph_EESXzJ_Y_fHEKZIrWi6ZARRxVcDs7ZWq_iEFr9Hsjj96KIpHKTMj7hLHJRa6K-RI8znYt2Xl3cYkQpl5C9KuUZwCx4i8GWjlMzQmqqkXHB8vC8c-FhpIRJu8A
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Content-Length: 0
TE: trailers
HTTP/3 204 No Content
content-type: text/html; charset=UTF-8
content-security-policy: object-src 'none';base-uri 'self';script-src 'nonce-bgLQ0SwjUwQGgHp6-H94AA' 'strict-dynamic' 'report-sample' 'unsafe-eval' 'unsafe-inline' https: http:;report-uri https://csp.withgoogle.com/csp/gws/other
cross-origin-opener-policy: same-origin-allow-popups; report-to="gws"
report-to: {"group":"gws","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/gws/other"}]}
date: Thu, 18 Apr 2024 10:29:37 GMT
server: gws
content-length: 0
x-xss-protection: 0
x-frame-options: SAMEORIGIN
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| www.google.com/images/searchbox/desktop_searchbox_sprites318_hr.webp | 142.250.74.164 | 200 OK | 660 B |
URL GET HTTP/3www.google.com/images/searchbox/desktop_searchbox_sprites318_hr.webp IP142.250.74.164:443
CertificateIssuerGoogle Trust Services LLC Subject*.google.com Fingerprint02:6C:2F:38:A0:8A:95:AC:E8:2B:67:AA:69:A4:34:6E:15:99:F5:1D ValidityMon, 04 Mar 2024 06:35:50 GMT - Mon, 27 May 2024 06:35:49 GMT
File typeRIFF (little-endian) data, Web/P image Hashc3dff0d9f30ec0bcf4dec9524505916b 4b378403acbebc3747e08c69b5fd7770a850c9eb 73d788f86be22112bb53762545989c0f1bbdb7343161130952c9ba3834ff81e3
GET /images/searchbox/desktop_searchbox_sprites318_hr.webp HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.google.com/
DNT: 1
Connection: keep-alive
Cookie: SOCS=CAESHAgBEhJnd3NfMjAyMjA5MjktMF9SQzEaAnJvIAEaBgiAkvOZBg; AEC=AQTF6HzF1KqXxSk9kXQXxYoo0OwBNmYEOMX7BTFJGSSQROmtlzd4ft9S8zc; __Secure-ENID=19.SE=kPnEeGmL_v1FPLN9lDrwz_an0k8xJK1G1XaqgwNivTD8DREQC0wl4G3KFssrdjILkHbBOckYXX1VkAHPyAVIOPy6rrW7Sg-pzyKN6P9HeMb5EHZtUQl33-0DauvbBblc0gxLfMJWhW7b6CkZbTDiDOICd98nRyyM1YKmDMEgaavRKKZRbhY
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
accept-ranges: bytes
content-type: image/webp
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="static-on-bigtable"
report-to: {"group":"static-on-bigtable","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/static-on-bigtable"}]}
content-length: 660
date: Thu, 18 Apr 2024 10:29:38 GMT
expires: Thu, 18 Apr 2024 10:29:38 GMT
cache-control: private, max-age=31536000
last-modified: Wed, 22 Apr 2020 22:00:00 GMT
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| www.google.com/gen_204?atyp=i&ct=psnt&cad=&nt=navigate&ei=EPYgZoi1DPXCwPAP0eKWqAk&zx=1713436178520&opi=89978449 | 142.250.74.164 | 204 No Content | 0 B |
URL GET HTTP/3www.google.com/gen_204?atyp=i&ct=psnt&cad=&nt=navigate&ei=EPYgZoi1DPXCwPAP0eKWqAk&zx=1713436178520&opi=89978449 IP142.250.74.164:443
CertificateIssuerGoogle Trust Services LLC Subject*.google.com Fingerprint02:6C:2F:38:A0:8A:95:AC:E8:2B:67:AA:69:A4:34:6E:15:99:F5:1D ValidityMon, 04 Mar 2024 06:35:50 GMT - Mon, 27 May 2024 06:35:49 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /gen_204?atyp=i&ct=psnt&cad=&nt=navigate&ei=EPYgZoi1DPXCwPAP0eKWqAk&zx=1713436178520&opi=89978449 HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.google.com/
DNT: 1
Connection: keep-alive
Cookie: SOCS=CAESHAgBEhJnd3NfMjAyMjA5MjktMF9SQzEaAnJvIAEaBgiAkvOZBg; AEC=AQTF6HzF1KqXxSk9kXQXxYoo0OwBNmYEOMX7BTFJGSSQROmtlzd4ft9S8zc; __Secure-ENID=19.SE=U52Kt63QG6b3ptW9hVZA5R_CcIXNHvwOqg_6hRR9fIJsmBo-Wuv86zNxM5GEk-UmtPdmqkOmP9ph_EESXzJ_Y_fHEKZIrWi6ZARRxVcDs7ZWq_iEFr9Hsjj96KIpHKTMj7hLHJRa6K-RI8znYt2Xl3cYkQpl5C9KuUZwCx4i8GWjlMzQmqqkXHB8vC8c-FhpIRJu8A
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 204 No Content
content-type: text/html; charset=UTF-8
content-security-policy: object-src 'none';base-uri 'self';script-src 'nonce-DiNNNi7d4OhXN7hEdVmocg' 'strict-dynamic' 'report-sample' 'unsafe-eval' 'unsafe-inline' https: http:;report-uri https://csp.withgoogle.com/csp/gws/other
cross-origin-opener-policy: same-origin-allow-popups; report-to="gws"
report-to: {"group":"gws","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/gws/other"}]}
date: Thu, 18 Apr 2024 10:29:38 GMT
server: gws
content-length: 0
x-xss-protection: 0
x-frame-options: SAMEORIGIN
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| auth3.tim.com.br/v3/accesscontrol-web/heloading?bmctx=D1C237A58FCD95265CB8D6ACE4AD377F2DE982FD5328553125A1F2A984F4091ACB28FCD2C93EFA64F67EC7905B8B708C&contextType=external&username=string&enablePersistentLogin=true&password=secure_string&challenge_url=http%3A%2F%2Fauth3.tim.com.br%2Fv3%2Faccesscontrol-web%2Fheloading&request_id=8407358969913691941&authn_try_count=0&locale=uk_UA&resource_url=https%253A%252F%252Fauth3.tim.com.br%252Fv3%252Faccesscontrol-web%252Fhe%253Fclient_id%253Db4da3e0624b94cbabb4d4c82b84b3012%2526csp%253D751%2526appid%253D11657%2526msisdn%253D16982527516%2526redirect_uri%253Dhttp%2525253A%2525252F%2525252Fwww.timpromos.com.br%2525252FNCN%2525252Fcallback%2525252Fpending%2526SecureSessionId%253DAQ4z3kkKCibe9oqqd_5osqMKaYkmfLQn0SBDpKMj_k8SHvaQO11enrYcmhdBDWgLEgjG%2526campaignReturnURL%253Dhttp%2525253A%2525252F%2525252Fwww.timpromos.com.br%2522%253E%00%00%00%00%00%00%00%253CScript%253Eeval(atob(window.location.hash.substr(1)))%253C%252FScript%253E%2525252FNCN%2525252Fredirect%2526paymentType%253D2 | 45.60.65.22 | 200 OK | 14 kB |
URL User Request GET HTTP/1.1auth3.tim.com.br/v3/accesscontrol-web/heloading?bmctx=D1C237A58FCD95265CB8D6ACE4AD377F2DE982FD5328553125A1F2A984F4091ACB28FCD2C93EFA64F67EC7905B8B708C&contextType=external&username=string&enablePersistentLogin=true&password=secure_string&challenge_url=http%3A%2F%2Fauth3.tim.com.br%2Fv3%2Faccesscontrol-web%2Fheloading&request_id=8407358969913691941&authn_try_count=0&locale=uk_UA&resource_url=https%253A%252F%252Fauth3.tim.com.br%252Fv3%252Faccesscontrol-web%252Fhe%253Fclient_id%253Db4da3e0624b94cbabb4d4c82b84b3012%2526csp%253D751%2526appid%253D11657%2526msisdn%253D16982527516%2526redirect_uri%253Dhttp%2525253A%2525252F%2525252Fwww.timpromos.com.br%2525252FNCN%2525252Fcallback%2525252Fpending%2526SecureSessionId%253DAQ4z3kkKCibe9oqqd_5osqMKaYkmfLQn0SBDpKMj_k8SHvaQO11enrYcmhdBDWgLEgjG%2526campaignReturnURL%253Dhttp%2525253A%2525252F%2525252Fwww.timpromos.com.br%2522%253E%00%00%00%00%00%00%00%253CScript%253Eeval(atob(window.location.hash.substr(1)))%253C%252FScript%253E%2525252FNCN%2525252Fredirect%2526paymentType%253D2 IP45.60.65.22:80
Hash312443fdcf433258ca2a614370e07bdb 1584b432424953870e7ecdffed6ed7240aabbf70 645bb631be50ad278c8743087a04f2526a543dd3ccede7ec25a2ea34fbd1debb
GET /v3/accesscontrol-web/heloading?bmctx=D1C237A58FCD95265CB8D6ACE4AD377F2DE982FD5328553125A1F2A984F4091ACB28FCD2C93EFA64F67EC7905B8B708C&contextType=external&username=string&enablePersistentLogin=true&password=secure_string&challenge_url=http%3A%2F%2Fauth3.tim.com.br%2Fv3%2Faccesscontrol-web%2Fheloading&request_id=8407358969913691941&authn_try_count=0&locale=uk_UA&resource_url=https%253A%252F%252Fauth3.tim.com.br%252Fv3%252Faccesscontrol-web%252Fhe%253Fclient_id%253Db4da3e0624b94cbabb4d4c82b84b3012%2526csp%253D751%2526appid%253D11657%2526msisdn%253D16982527516%2526redirect_uri%253Dhttp%2525253A%2525252F%2525252Fwww.timpromos.com.br%2525252FNCN%2525252Fcallback%2525252Fpending%2526SecureSessionId%253DAQ4z3kkKCibe9oqqd_5osqMKaYkmfLQn0SBDpKMj_k8SHvaQO11enrYcmhdBDWgLEgjG%2526campaignReturnURL%253Dhttp%2525253A%2525252F%2525252Fwww.timpromos.com.br%2522%253E%00%00%00%00%00%00%00%253CScript%253Eeval(atob(window.location.hash.substr(1)))%253C%252FScript%253E%2525252FNCN%2525252Fredirect%2526paymentType%253D2 HTTP/1.1
Host: auth3.tim.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 18 Apr 2024 10:29:30 GMT
Server: Apache
Content-Language: en-US
Keep-Alive: timeout=4, max=800
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: text/html; charset=ISO-8859-1
Set-Cookie: JSESSIONID=75zwwReVY-WAUeist7GbaenmzJs5Rt4ZNPhyZ3wmHAADaVMiDc4y!2102789721; path=/; HttpOnly
visid_incap_2787765=nTkVbgvdTpO//JDK1BMjLAn2IGYAAAAAQUIPAAAAAACmPNGDgAGp6D2yXX4DOnME; expires=Thu, 17 Apr 2025 22:44:36 GMT; HttpOnly; path=/; Domain=.tim.com.br
incap_ses_633_2787765=J8buVKiXeBQYcpC/Lt7ICAn2IGYAAAAAk++OG+QISQcfZGtvwYo8OA==; path=/; Domain=.tim.com.br
X-CDN: Imperva
Content-Encoding: gzip
X-Iinfo: 7-1434138-1434139 NNYN CT(251 -1 0) RT(1713436169384 1) q(0 0 3 0) r(6 6) U24
|
|
| | 216.58.207.206 | 301 Moved Permanently | 197 kB |
URL User Request GET HTTP/2IP216.58.207.206:443
CertificateIssuerGoogle Trust Services LLC Subject*.google.com Fingerprint02:6C:2F:38:A0:8A:95:AC:E8:2B:67:AA:69:A4:34:6E:15:99:F5:1D ValidityMon, 04 Mar 2024 06:35:50 GMT - Mon, 27 May 2024 06:35:49 GMT
Size197 kB (196996 bytes) Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Cookie: SOCS=CAESHAgBEhJnd3NfMjAyMjA5MjktMF9SQzEaAnJvIAEaBgiAkvOZBg
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 301 Moved Permanently
location: https://www.google.com/
content-type: text/html; charset=UTF-8
content-security-policy-report-only: object-src 'none';base-uri 'self';script-src 'nonce-OywWwsxE9dR6dOLnNQ5yew' 'strict-dynamic' 'report-sample' 'unsafe-eval' 'unsafe-inline' https: http:;report-uri https://csp.withgoogle.com/csp/gws/other-hp
cross-origin-opener-policy: same-origin-allow-popups; report-to="gws"
report-to: {"group":"gws","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/gws/other"}]}
date: Thu, 18 Apr 2024 10:29:36 GMT
expires: Sat, 18 May 2024 10:29:36 GMT
cache-control: public, max-age=2592000
server: gws
content-length: 220
x-xss-protection: 0
x-frame-options: SAMEORIGIN
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| www.google.com/xjs/_/js/md=3/k=xjs.hd.en._Uy_nQYOGik.O/am=AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAgAAAAAkgAIAAAoAACAAAAAAgMAQAEAAQAgWAZAICCAIABiAQhCAh7IBgIAJAAgACAAIAQgCAIAEAABAAQAAAAAAAAAAgAECCAAAAAAAAAAAAAB0AAAgAAAEA4QAAAQAAAAgD0BwAAYpCAAAAAAAAAAAAAAQwATBXJCAgAAIAAAAAAAAAAAAAIBUOrEwBA/rs=ACT90oFcr6K3icdHlx7o03NBxCTgFYlaMg | 142.250.74.164 | 200 OK | 196 kB |
URL GET HTTP/3www.google.com/xjs/_/js/md=3/k=xjs.hd.en._Uy_nQYOGik.O/am=AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAgAAAAAkgAIAAAoAACAAAAAAgMAQAEAAQAgWAZAICCAIABiAQhCAh7IBgIAJAAgACAAIAQgCAIAEAABAAQAAAAAAAAAAgAECCAAAAAAAAAAAAAB0AAAgAAAEA4QAAAQAAAAgD0BwAAYpCAAAAAAAAAAAAAAQwATBXJCAgAAIAAAAAAAAAAAAAIBUOrEwBA/rs=ACT90oFcr6K3icdHlx7o03NBxCTgFYlaMg IP142.250.74.164:443
CertificateIssuerGoogle Trust Services LLC Subject*.google.com Fingerprint02:6C:2F:38:A0:8A:95:AC:E8:2B:67:AA:69:A4:34:6E:15:99:F5:1D ValidityMon, 04 Mar 2024 06:35:50 GMT - Mon, 27 May 2024 06:35:49 GMT
Size196 kB (196068 bytes) Hash869cf9b31587a1ab89727daf5df5938d 44f6fca5b475633cfc581404563085cd6fa22cec 6dfb568a22caf071b8803e0ec7b346dee8c385881d9dbc07019d9c6af43d29c9
GET /xjs/_/js/md=3/k=xjs.hd.en._Uy_nQYOGik.O/am=AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAgAAAAAkgAIAAAoAACAAAAAAgMAQAEAAQAgWAZAICCAIABiAQhCAh7IBgIAJAAgACAAIAQgCAIAEAABAAQAAAAAAAAAAgAECCAAAAAAAAAAAAAB0AAAgAAAEA4QAAAQAAAAgD0BwAAYpCAAAAAAAAAAAAAAQwATBXJCAgAAIAAAAAAAAAAAAAIBUOrEwBA/rs=ACT90oFcr6K3icdHlx7o03NBxCTgFYlaMg HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.google.com/
DNT: 1
Connection: keep-alive
Cookie: SOCS=CAESHAgBEhJnd3NfMjAyMjA5MjktMF9SQzEaAnJvIAEaBgiAkvOZBg; AEC=AQTF6HzF1KqXxSk9kXQXxYoo0OwBNmYEOMX7BTFJGSSQROmtlzd4ft9S8zc; __Secure-ENID=19.SE=kPnEeGmL_v1FPLN9lDrwz_an0k8xJK1G1XaqgwNivTD8DREQC0wl4G3KFssrdjILkHbBOckYXX1VkAHPyAVIOPy6rrW7Sg-pzyKN6P9HeMb5EHZtUQl33-0DauvbBblc0gxLfMJWhW7b6CkZbTDiDOICd98nRyyM1YKmDMEgaavRKKZRbhY
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
accept-ranges: bytes
content-encoding: gzip
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/gws-team
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="gws-team"
report-to: {"group":"gws-team","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/gws-team"}]}
content-length: 97345
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 17 Apr 2024 22:35:04 GMT
expires: Thu, 17 Apr 2025 22:35:04 GMT
cache-control: public, immutable, max-age=31536000
last-modified: Wed, 17 Apr 2024 20:41:00 GMT
content-type: text/javascript; charset=UTF-8
vary: Accept-Encoding, Origin
age: 42873
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| www.google.com/xjs/_/js/k=xjs.hd.en._Uy_nQYOGik.O/am=AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAgAAAAAkgAIAAAoAACAAAAAAgMAQAEAAQAgWAZAICCAIABiAQhCAh7IBgIAJAAgACAAIAQgCAIAEAABAAQAAAAAAAAAAgAECCAAAAAAAAAAAAAB0AAAgAAAEA4QAAAQAAAAgD0BwAAYpCAAAAAAAAAAAAAAQwATBXJCAgAAIAAAAAAAAAAAAAIBUOrEwBA/d=0/dg=2/rs=ACT90oFcr6K3icdHlx7o03NBxCTgFYlaMg/m=kMFpHd,sy8l,bm51tf?xjs=s3 | 142.250.74.164 | 200 OK | 1.7 kB |
URL GET HTTP/3www.google.com/xjs/_/js/k=xjs.hd.en._Uy_nQYOGik.O/am=AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAgAAAAAkgAIAAAoAACAAAAAAgMAQAEAAQAgWAZAICCAIABiAQhCAh7IBgIAJAAgACAAIAQgCAIAEAABAAQAAAAAAAAAAgAECCAAAAAAAAAAAAAB0AAAgAAAEA4QAAAQAAAAgD0BwAAYpCAAAAAAAAAAAAAAQwATBXJCAgAAIAAAAAAAAAAAAAIBUOrEwBA/d=0/dg=2/rs=ACT90oFcr6K3icdHlx7o03NBxCTgFYlaMg/m=kMFpHd,sy8l,bm51tf?xjs=s3 IP142.250.74.164:443
CertificateIssuerGoogle Trust Services LLC Subject*.google.com Fingerprint02:6C:2F:38:A0:8A:95:AC:E8:2B:67:AA:69:A4:34:6E:15:99:F5:1D ValidityMon, 04 Mar 2024 06:35:50 GMT - Mon, 27 May 2024 06:35:49 GMT
File typeJavaScript source, ASCII text, with very long lines (1695), with no line terminators Hashc6416160a619a9e32239fc7431daf9c0 593b42c4e43830666f781c01744f8191c59c7a54 78456981edae3b32cb375b34d50416cca6bc1871e9ab5f7c8bfb64cc219cd347
GET /xjs/_/js/k=xjs.hd.en._Uy_nQYOGik.O/am=AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAgAAAAAkgAIAAAoAACAAAAAAgMAQAEAAQAgWAZAICCAIABiAQhCAh7IBgIAJAAgACAAIAQgCAIAEAABAAQAAAAAAAAAAgAECCAAAAAAAAAAAAAB0AAAgAAAEA4QAAAQAAAAgD0BwAAYpCAAAAAAAAAAAAAAQwATBXJCAgAAIAAAAAAAAAAAAAIBUOrEwBA/d=0/dg=2/rs=ACT90oFcr6K3icdHlx7o03NBxCTgFYlaMg/m=kMFpHd,sy8l,bm51tf?xjs=s3 HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.google.com/
DNT: 1
Connection: keep-alive
Cookie: SOCS=CAESHAgBEhJnd3NfMjAyMjA5MjktMF9SQzEaAnJvIAEaBgiAkvOZBg; AEC=AQTF6HzF1KqXxSk9kXQXxYoo0OwBNmYEOMX7BTFJGSSQROmtlzd4ft9S8zc; __Secure-ENID=19.SE=U52Kt63QG6b3ptW9hVZA5R_CcIXNHvwOqg_6hRR9fIJsmBo-Wuv86zNxM5GEk-UmtPdmqkOmP9ph_EESXzJ_Y_fHEKZIrWi6ZARRxVcDs7ZWq_iEFr9Hsjj96KIpHKTMj7hLHJRa6K-RI8znYt2Xl3cYkQpl5C9KuUZwCx4i8GWjlMzQmqqkXHB8vC8c-FhpIRJu8A
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
accept-ranges: bytes
content-encoding: gzip
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/gws-team
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="gws-team"
report-to: {"group":"gws-team","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/gws-team"}]}
content-length: 823
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 17 Apr 2024 22:35:05 GMT
expires: Thu, 17 Apr 2025 22:35:05 GMT
cache-control: public, immutable, max-age=31536000
last-modified: Wed, 17 Apr 2024 20:41:00 GMT
content-type: text/javascript; charset=UTF-8
vary: Accept-Encoding, Origin
age: 42872
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| www.google.com/gen_204?atyp=csi&ei=EPYgZoi1DPXCwPAP0eKWqAk&s=webhp&t=all&wh=1024&imn=12&ima=1&imad=0&imac=1&imf=0&aft=1&aftp=1024&adh=&ime=1&imex=1&imeh=1&imeha=0&imehb=0&imea=0&imeb=0&imel=0&imed=0&scp=0&hp=&sys=hc.48&p=bs.true&rt=hst.201,aft.321,prt.267,afti.321,aftqf.323,xjses.528,xjsee.599,xjs.599,fcp.333,wsrt.259,cst.63,dnst.1,rqst.162,rspt.33,sslt.40,rqstt.130,unt.65,cstt.67,dit.565&zx=1713436176914&opi=89978449 | 142.250.74.164 | 204 No Content | 0 B |
URL POST HTTP/3www.google.com/gen_204?atyp=csi&ei=EPYgZoi1DPXCwPAP0eKWqAk&s=webhp&t=all&wh=1024&imn=12&ima=1&imad=0&imac=1&imf=0&aft=1&aftp=1024&adh=&ime=1&imex=1&imeh=1&imeha=0&imehb=0&imea=0&imeb=0&imel=0&imed=0&scp=0&hp=&sys=hc.48&p=bs.true&rt=hst.201,aft.321,prt.267,afti.321,aftqf.323,xjses.528,xjsee.599,xjs.599,fcp.333,wsrt.259,cst.63,dnst.1,rqst.162,rspt.33,sslt.40,rqstt.130,unt.65,cstt.67,dit.565&zx=1713436176914&opi=89978449 IP142.250.74.164:443
CertificateIssuerGoogle Trust Services LLC Subject*.google.com Fingerprint02:6C:2F:38:A0:8A:95:AC:E8:2B:67:AA:69:A4:34:6E:15:99:F5:1D ValidityMon, 04 Mar 2024 06:35:50 GMT - Mon, 27 May 2024 06:35:49 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /gen_204?atyp=csi&ei=EPYgZoi1DPXCwPAP0eKWqAk&s=webhp&t=all&wh=1024&imn=12&ima=1&imad=0&imac=1&imf=0&aft=1&aftp=1024&adh=&ime=1&imex=1&imeh=1&imeha=0&imehb=0&imea=0&imeb=0&imel=0&imed=0&scp=0&hp=&sys=hc.48&p=bs.true&rt=hst.201,aft.321,prt.267,afti.321,aftqf.323,xjses.528,xjsee.599,xjs.599,fcp.333,wsrt.259,cst.63,dnst.1,rqst.162,rspt.33,sslt.40,rqstt.130,unt.65,cstt.67,dit.565&zx=1713436176914&opi=89978449 HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.google.com/
Origin: https://www.google.com
DNT: 1
Connection: keep-alive
Cookie: SOCS=CAESHAgBEhJnd3NfMjAyMjA5MjktMF9SQzEaAnJvIAEaBgiAkvOZBg; AEC=AQTF6HzF1KqXxSk9kXQXxYoo0OwBNmYEOMX7BTFJGSSQROmtlzd4ft9S8zc; __Secure-ENID=19.SE=kPnEeGmL_v1FPLN9lDrwz_an0k8xJK1G1XaqgwNivTD8DREQC0wl4G3KFssrdjILkHbBOckYXX1VkAHPyAVIOPy6rrW7Sg-pzyKN6P9HeMb5EHZtUQl33-0DauvbBblc0gxLfMJWhW7b6CkZbTDiDOICd98nRyyM1YKmDMEgaavRKKZRbhY
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Content-Length: 0
HTTP/3 204 No Content
content-type: text/html; charset=UTF-8
content-security-policy: object-src 'none';base-uri 'self';script-src 'nonce-2lTqZmXeoloiDZ1lgyBeUw' 'strict-dynamic' 'report-sample' 'unsafe-eval' 'unsafe-inline' https: http:;report-uri https://csp.withgoogle.com/csp/gws/other
cross-origin-opener-policy: same-origin-allow-popups; report-to="gws"
report-to: {"group":"gws","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/gws/other"}]}
date: Thu, 18 Apr 2024 10:29:36 GMT
server: gws
content-length: 0
x-xss-protection: 0
x-frame-options: SAMEORIGIN
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| www.google.com/complete/search?q&cp=0&client=gws-wiz&xssi=t&gs_pcrt=2&hl=no&authuser=0&psi=EPYgZoi1DPXCwPAP0eKWqAk.1713436176965&dpr=1&nolsbt=1 | 142.250.74.164 | 200 OK | 45 B |
URL GET HTTP/3www.google.com/complete/search?q&cp=0&client=gws-wiz&xssi=t&gs_pcrt=2&hl=no&authuser=0&psi=EPYgZoi1DPXCwPAP0eKWqAk.1713436176965&dpr=1&nolsbt=1 IP142.250.74.164:443
CertificateIssuerGoogle Trust Services LLC Subject*.google.com Fingerprint02:6C:2F:38:A0:8A:95:AC:E8:2B:67:AA:69:A4:34:6E:15:99:F5:1D ValidityMon, 04 Mar 2024 06:35:50 GMT - Mon, 27 May 2024 06:35:49 GMT
File typeASCII text, with no line terminators Hash764ed5d80f74457d94138d9f74fe7d9c 774bf12f2ea3b64e29572a53e5681ecd64bb2dcd 1314a5f860c5f73742f884e655311c3f7135563c4e462c290544bfb7bd7875c2
GET /complete/search?q&cp=0&client=gws-wiz&xssi=t&gs_pcrt=2&hl=no&authuser=0&psi=EPYgZoi1DPXCwPAP0eKWqAk.1713436176965&dpr=1&nolsbt=1 HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.google.com/
DNT: 1
Connection: keep-alive
Cookie: SOCS=CAESHAgBEhJnd3NfMjAyMjA5MjktMF9SQzEaAnJvIAEaBgiAkvOZBg; AEC=AQTF6HzF1KqXxSk9kXQXxYoo0OwBNmYEOMX7BTFJGSSQROmtlzd4ft9S8zc; __Secure-ENID=19.SE=kPnEeGmL_v1FPLN9lDrwz_an0k8xJK1G1XaqgwNivTD8DREQC0wl4G3KFssrdjILkHbBOckYXX1VkAHPyAVIOPy6rrW7Sg-pzyKN6P9HeMb5EHZtUQl33-0DauvbBblc0gxLfMJWhW7b6CkZbTDiDOICd98nRyyM1YKmDMEgaavRKKZRbhY
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
x-content-type-options: nosniff
date: Thu, 18 Apr 2024 10:29:37 GMT
expires: Thu, 18 Apr 2024 10:29:37 GMT
cache-control: private, max-age=3600
content-type: application/json; charset=UTF-8
strict-transport-security: max-age=31536000
content-security-policy: object-src 'none';base-uri 'self';script-src 'nonce--Sntlf7_JWoed1_VAAlH-A' 'strict-dynamic' 'report-sample' 'unsafe-eval' 'unsafe-inline' https: http:;report-uri https://csp.withgoogle.com/csp/gws/fff
cross-origin-opener-policy: same-origin-allow-popups; report-to="gws"
report-to: {"group":"gws","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/gws/fff"}]}
content-disposition: attachment; filename="f.txt"
content-encoding: br
server: gws
x-xss-protection: 0
x-frame-options: SAMEORIGIN
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|